<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Capacity on Azarudeen.com</title><link>http://azarudeen.com/tags/capacity/</link><description>Recent content in Capacity on Azarudeen.com</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Mon, 01 Apr 2019 10:00:00 +0530</lastBuildDate><atom:link href="http://azarudeen.com/tags/capacity/index.xml" rel="self" type="application/rss+xml"/><item><title>One Regex and a Pandemic: Global Blast Radius Meets Global Load</title><link>http://azarudeen.com/posts/06-apr-2019-to-jun-2020-one-regex-and-a-pandemic/</link><pubDate>Mon, 01 Apr 2019 10:00:00 +0530</pubDate><guid>http://azarudeen.com/posts/06-apr-2019-to-jun-2020-one-regex-and-a-pandemic/</guid><description>&lt;h1 id="one-regex-and-a-pandemic-apr-2019--jun-2020"&gt;One Regex and a Pandemic (Apr 2019 – Jun 2020)&lt;/h1&gt;
&lt;p&gt;This window bookends neatly: it opens with self-inflicted global outages at
Cloudflare and Google that sharpened the industry&amp;rsquo;s thinking about staged
rollouts, and closes with COVID-19 stress-testing every capacity plan on Earth.&lt;/p&gt;
&lt;h2 id="the-incidents-that-defined-the-period"&gt;The incidents that defined the period&lt;/h2&gt;
&lt;ul&gt;
&lt;li&gt;&lt;strong&gt;Google Cloud, June 2, 2019&lt;/strong&gt; — A maintenance automation event descheduled
network control-plane jobs across multiple regions; congestion throttled
Google Cloud, YouTube, and Gmail for ~4 hours. The postmortem detail everyone
remembers: &lt;strong&gt;the outage impaired the tools engineers needed to fix the outage.&lt;/strong&gt;&lt;/li&gt;
&lt;li&gt;&lt;strong&gt;Cloudflare, July 2, 2019&lt;/strong&gt; — A single WAF rule containing a
&lt;strong&gt;catastrophically backtracking regex&lt;/strong&gt; was pushed globally (WAF rules were
exempt from staged rollout, by design, for emergency response) and pinned every
CPU on Cloudflare&amp;rsquo;s edge. 27 minutes of global 502s, and one of the finest
postmortems ever written
(&lt;a href="https://blog.cloudflare.com/details-of-the-cloudflare-outage-on-july-2-2019/"&gt;blog.cloudflare.com&lt;/a&gt;) —
including a mini-lecture on regex complexity and why their kill switch was slow.&lt;/li&gt;
&lt;li&gt;&lt;strong&gt;Verizon BGP route leak, June 24, 2019&lt;/strong&gt; — A small ISP&amp;rsquo;s route optimizer leaked
routes through Verizon, blackholing chunks of the internet including Cloudflare.
Cloudflare&amp;rsquo;s blunt public writeup (&amp;ldquo;a small heart attack&amp;rdquo;) pushed RPKI adoption
into the mainstream.&lt;/li&gt;
&lt;li&gt;&lt;strong&gt;Stripe, July 2019&lt;/strong&gt; — Two coupled database failures; Stripe published a
detailed root-cause report, notable for a payments company.&lt;/li&gt;
&lt;li&gt;&lt;strong&gt;Salesforce, May 2019&lt;/strong&gt; — A database script granted broad permissions across
orgs; the remediation (revoking permissions widely) caused more disruption than
the bug. Recovery-as-second-incident became a named pattern.&lt;/li&gt;
&lt;li&gt;&lt;strong&gt;COVID-19 surge, March–June 2020&lt;/strong&gt; — Zoom grew ~30x; Robinhood suffered
repeated trading-day outages (thundering-herd load on launch-day architecture);
streaming services voluntarily degraded quality in Europe; unemployment systems
running on mainframes buckled. Not one incident but a planetary load test.&lt;/li&gt;
&lt;/ul&gt;
&lt;h2 id="what-the-postmortems-reveal"&gt;What the postmortems reveal&lt;/h2&gt;
&lt;p&gt;&lt;strong&gt;1. Emergency paths are the most dangerous paths.&lt;/strong&gt; Cloudflare&amp;rsquo;s WAF pipeline
skipped staged rollout &lt;em&gt;on purpose&lt;/em&gt; — speed against attackers. The lesson wasn&amp;rsquo;t
&amp;ldquo;never ship fast&amp;rdquo; but &amp;ldquo;your fastest pipeline needs the strongest circuit
breakers.&amp;rdquo; Global-instant anything became a red flag in design reviews.&lt;/p&gt;</description></item></channel></rss>