DevOps Patterns & Antipatterns for Continuous Software Updates

DevOps Patterns and Antipatterns for Continuous Updates DevOps Patterns & Antipatterns for Continuous Software Updates Kat Cosgrove What could possibly go wrong?

Kat Cosgrove IoT Engineer Developer Advocate @Dixie3Flatline katc@jfrog.com jfrog.com/shownotes

Why do we update software?

@dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

WHO ARE WE? WHAT DO WE WANT? USERS! FEATURES!

@dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

“As every company become a software company, Security vulnerabilities are the new oil spills” @dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

Fix Identify @dixie3flatline @jbaruch #DODBuf Deploy jfrog.com/shownotes

Identify Immediate Fix OS Update Deploy Years

Identify 2 Months Fix Struts Upgrade Deploy 2 Months

@dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

@dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

@dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

Identify Fix Deploy @dixie3flatline @jbaruch #DODBuf As Fast as Possible As Fast as Possible As Fast as Possible jfrog.com/shownotes

@dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

This is not a new idea! @dixie3flatline • XP: short feedback • Scrum: reducing cycle time to absolute minimum • TPS: Decide as late as possible and Deliver as fast as possible • Kanban: Incremental change @jbaruch #DODBuf jfrog.com/shownotes

@dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

@jbaruch #LiquidSoftware #AzureDayRome http://jfrog.com/shownotes

How do we update? @dixie3flatline #LiquidSoftware #KubeCon http://jfrog.com/shownotes

Update available Yes No Why not? Do we trust the update? Yes Let’s update! How about no Yes Are there any high risks? No Do we want it? No

The problem is not the code, it’s the data. Big data. @dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

Update available Yes No Can we verify the update? No Yes Yes How about no Do we trust the update? Time consuming verification Let’s update! Yes Are there any high risks? No Do we want it? No

Features that we want @dixie3flatline Acceptance tests costs @jbaruch #DODBuf jfrog.com/shownotes

Users defer the updates Vendors pack more features The vicious cycle or ever-growing updates Updates are more expensive to test

•Your browser •Twitter in your browser •Twitter on your smartphone •Your smartphone OS?! Update available Yes Are there any high risks? No Let’s update! Do we want it? No one asked you (auto update)

What could possibly go wrong?

@dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates pattern: Local Rollback @dixie3flatline • Problem: update went catastrophically wrong and an over the-air patch can’t reach the device • Solution: Have a previous version saved on the device prior to update. Rollback in case problem occurred @jbaruch #DODBuf jfrog.com/shownotes

@dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates pattern: OTA Software Updates @dixie3flatline • Problem: physical recalls are costly. Extremely costly. Also, you can’t force an upgrade. • Solution: Implement over the air software updates, preferably, continuous updates. @jbaruch #DODBuf jfrog.com/shownotes

Continuous OTA updates are like normal OTA updates, but better @dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates pattern: Continuous Updates @dixie3flatline • Problem: In batch updates, important features wait for unimportant features. • Solution: Implement continuous updates. @jbaruch #DODBuf jfrog.com/shownotes

You thought your problems were hard? Things under your control @dixie3flatline @jbaruch Server-side Updates #DODBuf IoT (Mobile, Automotive, Edge) Updates jfrog.com/shownotes

You thought your problems were hard? Things under your control Server-side Updates IoT (Mobile, Automotive, Edge) Updates ✓ ✕ The availability of the target @dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

You thought your problems were hard? Things under your control Server-side Updates IoT (Mobile, Automotive, Edge) Updates ✓ ✓ ✕ ✕ The availability of the target The state of the target @dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

You thought your problems were hard? Things under your control Server-side Updates IoT (Mobile, Automotive, Edge) Updates ✓ ✓ ✓ ✕ ✕ ✕ The availability of the target The state of the target The version on the target @dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

You thought your problems were hard? Things under your control Server-side Updates IoT (Mobile, Automotive, Edge) Updates ✓ ✓ ✓ ✓ ✕ ✕ ✕ ✕ The availability of the target The state of the target The version on the target The access to the target @dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

KNIGHT-MARE @dixie3flatline • New system reused old APIs • 1 out of 8 servers was not updated • New clients sent requests to machine contained old code •Engineers removed working code from updated servers, increasing the load on the un-updated server •No monitoring, no alerting, no debugging @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates pattern: Automated Deployment @dixie3flatline • Problem: People suck at repetitive tasks. • Solution: Automate everything. @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates pattern: Frequent Updates @dixie3flatline • Problem: Seldom deployments generate anxiety and stress, leading to errors. • Solution: Update frequently to develop skill and habit. @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates pattern: State awareness @dixie3flatline • Problem: Target state can affect the update process and the behavior of the system after the update. • Solution: Know and consider target state when updating. Reverting might require reverting the state. @jbaruch #DODBuf jfrog.com/shownotes

Cloud-dark @dixie3flatline • New rules are deployed frequently to battle attacks • Deployment of a single misconfigured rule • Included regex to spike CPU to 100% • “Affected region: Earth” @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates pattern: Progressive Delivery @dixie3flatline • Problem: Releasing a bug affects ALL the users. • Solution: Release to a small number of users first effectively reducing the blast radius and observe. If a problem occurs, stop the release, revert or update the affected users. @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates pattern: Observability @dixie3flatline • Problem: Some problems are hard to trace relying on user feedback only • Solution: Implement tracing, monitoring and logging @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates pattern: Rollbacks @dixie3flatline • Problem: Fixes might take time, users suffer in the interim • Solution: Implement rollback, the ability to deploy a previous version without delay @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates pattern: Feature Flags @dixie3flatline • Problem: Rollbacks are not always supported by the deployment target platform • Solution: Embed 2 versions of the features in the app itself and trigger them with API calls @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates @dixie3flatline • Frequent • Automatic • Tested • Progressively delivered • State-aware • Observability • *Local Rollbacks @jbaruch #DODBuf jfrog.com/shownotes

@jbaruch #LiquidSoftware #DevOpsTO http://jfrog.com/shownotes

• While doing maintenance on Newark->Chicago segment, engineers wanted to route that traffic through Atlanta Cloud-dark (the sequel) • They updated the config manually • They routed ALL THE TRAFFIC through Atlanta instead • Atlanta crashed, in chain reaction everything else crashed as well • “Affected region: Earth” @dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

Continuous updates pattern: Automated deployment @dixie3flatline • Problem: People suck at repetitive tasks. • Solution: Automate everything. @jbaruch #DODBuf jfrog.com/shownotes

Update available Yes Do we trust the update? Yes Let’s update! Yes Are there any high risks? No Do we want it? Sure, why not? (auto update)

” Our goal is to transition from bulk and rare software updates to extremely tiny and extremely frequent software updates; so tiny and so frequent that they provide an illusion of software flowing from development to the update target. We call it the Liquid Software vision. @dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

@dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

Corner cases? @dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

@dixie3flatline @jbaruch #DODBuf jfrog.com/shownotes

● Q&A and twitter ads @dixie3flatline ● @jbaruch ● #DODBuf ● https://liquidsoftware.com ● https://jfrog.com/shownotes