Microservices Expo Authors: Pat Romanski, Elizabeth White, Mehdi Daoudi, Flint Brenton, Gordon Haff

Related Topics: FinTech Journal, Microservices Expo, Linux Containers, Containers Expo Blog, @DevOpsSummit

FinTech Journal: Article

Art of Rollback | @DevOpsSummit #API #APM #DevOps #ContinuousTesting

Learn about rollback strategies for static and dynamic objects and how to set your rollback budget

Art of Rollback III: Rollback Strategies Through the Ages
By Pierre-Boris Bonafous

Let's recap what we learned from the previous chapters in the series: episode 1 and episode 2.

We learned that a good rollback mechanism cannot be designed without having an intimate knowledge of the application architecture, the nature of your components and their dependencies. Now that we know what we have to restore and in which order, the question is how?

There are always different possible strategies available to restore your services. The only criteria for deciding which one to choose is speed. For this reason, the rollback must be automated and the best rollback features available must be leveraged for each of your application components and technologies. The automation tool will be in charge of the orchestration of the different technologies involved in the rollback process.

How Much Money Should You Spend on Rollback?
Always go for the fastest process you can afford. No company can afford data loss, data corruption and service interruption. Never cut cost on this part. Trying to reuse old backup systems or mutualized backup, for example, is not advisable, as investing in new technologies can give you more reactivity with an immediate ROI.

The budget of rollback implementation should be calculated at the beginning of your project, according to the cost of an error for the business and not by looking at best solution price or providers' bundles available on the market.

The acceptable cost of an error should not be estimated by Ops or Devs but by the business itself, as it can be a mix of unexpected factors. Some are part of the company plan and should not be shared internally. For example, it can be related to the company share price, risk assessment, compliance and compensation, SLA and penalties, customer retention, sales objectives, transactions per days and so on...

Time is money, so the equation is really easy to solve for Ops: the maximum recovery time objective (RTO) of an application depends on the maximum acceptable loss for the business. Your company may already have defined this metric in the disaster recovery plan.

Unfortunately, like most other technical services, the rollback system is too often taken in account at the end of a project. This is a big mistake as the cost of implementing the rollback can be huge, sometimes higher than essential features like automated deployment or monitoring. The rollback cost does not only include the cost of the implementation and the possible additional tools but also the cost of maintenance and regular testing of the rollback system.

Automic is helping his customers to create value with automation. Automated deployments and automated rollbacks must be considered together as a whole when you want to cover the Release Automation activities.

Static Components
Let's take a look at the most popular rollback strategies implemented today for static components. There are two different ways to manage immutable components: restore and switch.

Restore Rollback: This is the traditional way to roll back, from a time when applications were installed on premise, on physical boxes, and when the materials and software were expensive. Thanks to virtualization, containers and automated provisioning, the restore approach has enjoyed a renaissance. The original intent was to simply to reinstall the previous version of the application(s). That can be done by overriding files, uninstalling/reinstalling binaries or going back to a restoration point.

Today it's more about redelivering the previous complete application stack, pre-configured: the OS, the middleware and the application layer itself. Virtualization has paved the way with templates and Gold VMs. But container technologies like Docker do even better, as you can instantiate a container from an image in a couple of seconds. You have to re-instantiate a container from the previous images instead of delivering old binaries

Automic Release Automation enables you to define rollback at the workflow or job/task level. When the default rollback is activated, you can assign backup and rollback tasks. The backup task will be executed before the main action, while the rollback task will be executed in case of failure.

However, not every application today is a good candidate for containerization. If this is the case, you can go for the switch strategy, to achieve the same outstanding performance but for old systems.

Switch Rollback: Switch rollback maintains two releases of your application in parallel but makes only one accessible to your users while the other remains offline. When you want to deploy a new application release, you install the new release on the offline system. Once the new version is ready you just have to put the old version offline and new version online. If you want to rollback your application, you just switch back.

The switch can be really transparent when the application is a bunch of files in a flat directory. All you have to do is to switch two repositories with the old and the new release content. Sometimes it can be trickier if you rely on an application server or a cluster.

Blue-green deployment is a typical example of switch rollback. The blue environment is offline and the green is online. An environment can be a cluster or collection of machines. The switch (or change of color) can be done quickly by reassigning the IP addresses between the blue and the green machines in the DNS, in the load balancer or at the proxy level. Another advantage of blue-green deployment is that the rollback does not need a specific procedure because it the same procedure used for the initial rollout.

How much does this cost? Well, you must maintain a duplicated platform. That can be quite expensive if your platform is a cluster or a server farm. However, virtualization and automated provisioning can help you to limit the cost of administration, licenses and maintenance of the blue platform if you build and destroy the environments on the fly.

Dynamic Components
As you may be aware, immutable components are not an issue anymore. The problem we must solve today is rolling back dynamic components. Data is now stored on various formats: files, relational databases, NoSQL databases and so on... each technology with its own properties for recovery management.

In this scenario it's difficult to rollback without downtime or data loss if you do not have specific features embedded in the application itself. Some examples of possible function could be a data resilience system, a database virtualization layer, a data cache mechanism or treating your database structure as code.

Let's take an even more simple use case: a database upgrade with zero downtime. Not all databases can support that feature. There is no set plan to follow so you must exploit the best technologies available on the market like checkpoints or point-in-time recovery for databases and snapshots for virtual machines when your software architecture does not support rollback natively.

In fact, the only way to achieve zero downtime and to keep control of your data during deployments and rollbacks is to design backward and forward compatibility in the application itself. But this is another story...

Next Episode
Rolling forward; Why is it better than rollback? Because rolling forward is the best way of accepting that we, Dev and Ops, are intimately involved in time-flow, no matter what Albert Einstein or Brian Green told us! Stay tuned.

More Stories By Automic Blog

Automic, a leader in business automation, helps enterprises drive competitive advantage by automating their IT factory - from on-premise to the Cloud, Big Data and the Internet of Things.

With offices across North America, Europe and Asia-Pacific, Automic powers over 2,600 customers including Bosch, PSA, BT, Carphone Warehouse, Deutsche Post, Societe Generale, TUI and Swisscom. The company is privately held by EQT. More information can be found at www.automic.com.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.

@MicroservicesExpo Stories
There is a huge demand for responsive, real-time mobile and web experiences, but current architectural patterns do not easily accommodate applications that respond to events in real time. Common solutions using message queues or HTTP long-polling quickly lead to resiliency, scalability and development velocity challenges. In his session at 21st Cloud Expo, Ryland Degnan, a Senior Software Engineer on the Netflix Edge Platform team, will discuss how by leveraging a reactive stream-based protocol,...
"We started a Master of Science in business analytics - that's the hot topic. We serve the business community around San Francisco so we educate the working professionals and this is where they all want to be," explained Judy Lee, Associate Professor and Department Chair at Golden Gate University, in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
For over a decade, Application Programming Interface or APIs have been used to exchange data between multiple platforms. From social media to news and media sites, most websites depend on APIs to provide a dynamic and real-time digital experience. APIs have made its way into almost every device and service available today and it continues to spur innovations in every field of technology. There are multiple programming languages used to build and run applications in the online world. And just li...
The general concepts of DevOps have played a central role advancing the modern software delivery industry. With the library of DevOps best practices, tips and guides expanding quickly, it can be difficult to track down the best and most accurate resources and information. In order to help the software development community, and to further our own learning, we reached out to leading industry analysts and asked them about an increasingly popular tenet of a DevOps transformation: collaboration.
We call it DevOps but much of the time there’s a lot more discussion about the needs and concerns of developers than there is about other groups. There’s a focus on improved and less isolated developer workflows. There are many discussions around collaboration, continuous integration and delivery, issue tracking, source code control, code review, IDEs, and xPaaS – and all the tools that enable those things. Changes in developer practices may come up – such as developers taking ownership of code ...
The dynamic nature of the cloud means that change is a constant when it comes to modern cloud-based infrastructure. Delivering modern applications to end users, therefore, is a constantly shifting challenge. Delivery automation helps IT Ops teams ensure that apps are providing an optimal end user experience over hybrid-cloud and multi-cloud environments, no matter what the current state of the infrastructure is. To employ a delivery automation strategy that reflects your business rules, making r...
Cloud Governance means many things to many people. Heck, just the word cloud means different things depending on who you are talking to. While definitions can vary, controlling access to cloud resources is invariably a central piece of any governance program. Enterprise cloud computing has transformed IT. Cloud computing decreases time-to-market, improves agility by allowing businesses to adapt quickly to changing market demands, and, ultimately, drives down costs.
Modern software design has fundamentally changed how we manage applications, causing many to turn to containers as the new virtual machine for resource management. As container adoption grows beyond stateless applications to stateful workloads, the need for persistent storage is foundational - something customers routinely cite as a top pain point. In his session at @DevOpsSummit at 21st Cloud Expo, Bill Borsari, Head of Systems Engineering at Datera, explored how organizations can reap the bene...
How is DevOps going within your organization? If you need some help measuring just how well it is going, we have prepared a list of some key DevOps metrics to track. These metrics can help you understand how your team is doing over time. The word DevOps means different things to different people. Some say it a culture and every vendor in the industry claims that their tools help with DevOps. Depending on how you define DevOps, some of these metrics may matter more or less to you and your team.
"CA has been doing a lot of things in the area of DevOps. Now we have a complete set of tool sets in order to enable customers to go all the way from planning to development to testing down to release into the operations," explained Aruna Ravichandran, Vice President of Global Marketing and Strategy at CA Technologies, in this SYS-CON.tv interview at DevOps Summit at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
"We are an integrator of carrier ethernet and bandwidth to get people to connect to the cloud, to the SaaS providers, and the IaaS providers all on ethernet," explained Paul Mako, CEO & CTO of Massive Networks, in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
"Grape Up leverages Cloud Native technologies and helps companies build software using microservices, and work the DevOps agile way. We've been doing digital innovation for the last 12 years," explained Daniel Heckman, of Grape Up in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
"NetApp's vision is how we help organizations manage data - delivering the right data in the right place, in the right time, to the people who need it, and doing it agnostic to what the platform is," explained Josh Atwell, Developer Advocate for NetApp, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"Outscale was founded in 2010, is based in France, is a strategic partner to Dassault Systémes and has done quite a bit of work with divisions of Dassault," explained Jackie Funk, Digital Marketing exec at Outscale, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"I focus on what we are calling CAST Highlight, which is our SaaS application portfolio analysis tool. It is an extremely lightweight tool that can integrate with pretty much any build process right now," explained Andrew Siegmund, Application Migration Specialist for CAST, in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
Let's do a visualization exercise. Imagine it's December 31, 2018, and you're ringing in the New Year with your friends and family. You think back on everything that you accomplished in the last year: your company's revenue is through the roof thanks to the success of your product, and you were promoted to Lead Developer. 2019 is poised to be an even bigger year for your company because you have the tools and insight to scale as quickly as demand requires. You're a happy human, and it's not just...
The enterprise data storage marketplace is poised to become a battlefield. No longer the quiet backwater of cloud computing services, the focus of this global transition is now going from compute to storage. An overview of recent storage market history is needed to understand why this transition is important. Before 2007 and the birth of the cloud computing market we are witnessing today, the on-premise model hosted in large local data centers dominated enterprise storage. Key marketplace play...
Cavirin Systems has just announced C2, a SaaS offering designed to bring continuous security assessment and remediation to hybrid environments, containers, and data centers. Cavirin C2 is deployed within Amazon Web Services (AWS) and features a flexible licensing model for easy scalability and clear pay-as-you-go pricing. Although native to AWS, it also supports assessment and remediation of virtual or container instances within Microsoft Azure, Google Cloud Platform (GCP), or on-premise. By dr...
With continuous delivery (CD) almost always in the spotlight, continuous integration (CI) is often left out in the cold. Indeed, it's been in use for so long and so widely, we often take the model for granted. So what is CI and how can you make the most of it? This blog is intended to answer those questions. Before we step into examining CI, we need to look back. Software developers often work in small teams and modularity, and need to integrate their changes with the rest of the project code b...
Kubernetes is an open source system for automating deployment, scaling, and management of containerized applications. Kubernetes was originally built by Google, leveraging years of experience with managing container workloads, and is now a Cloud Native Compute Foundation (CNCF) project. Kubernetes has been widely adopted by the community, supported on all major public and private cloud providers, and is gaining rapid adoption in enterprises. However, Kubernetes may seem intimidating and complex ...