Deis v1.8 - Optional Ceph
The Deis project is proud to announce v1.8.0, which makes installation of store, database, and logger optional when running external backing stores, adds deisctl ssh
and deis auth:regenerate
commands, and unleashes Deis onto Linode.
If you are coming from an earlier version of Deis, please read the "Upgrading Deis" documentation for details.
What is Deis?
Deis is an open source PaaS that makes it easy to deploy and manage applications on your own servers. Deis builds upon Docker and CoreOS to provide a lightweight PaaS with a Heroku-inspired workflow.
1.8.0 Summary
New Features
- Deis can be provisioned without Ceph by using an external backing store
- deis-router uses new nginx
reuseport
socket sharding - Deis can be provisioned on Linode, thanks to community support!
deisctl ssh <component>
opens a shell directly to the node running the specified Deis component- deis-router features security configuration for DHE ciphersuites, SSL ciphers, and HSTS
deis auth:regenerate
creates a new authentication token- deis-controller will properly roll back a release if some containers weren't created
Improvements
- Source code for
deisctl
is substantially refactored, with beefier, parallelized test coverage - Numerous enhancements to API reference documentation and generated code docs
- Fixed "invalid tar magic" error when pushing without a Procfile
- Fixed JSON decoding errors in test suite due to premature SSH close
- deis-builder generates SSH keys on boot when needed
- Doc updates to upgrade procedure, EC2 PROXY protocol, and cluster sizing for etcd
- Contrib README.md mentions new community tools for monitoring and backup/restore
- Added Engine Yard provisioning and Deis Pro to docs
deisctl
won't hang forever waiting for a missing service- deis-builder only builds slugrunner/slugbuilder if they're missing
- Amazon EC2 m4 instance types are now supported in provisioning
- DigitalOcean support added a couple of eligible regions
DEIS_DRINK_OF_CHOICE=slurm
won't break integration tests now- deis-registry will SIGHUP its processes correctly on restart
- deis-builder won't log
etcdctl watch
output periodically - integration tests will retry
docker push
on Docker Hub errors
Under the Hood
- deis-router updated nginx to 1.9.2
- deis-registry incorporates some upstream fixes to the "classic" V1 registry
- deis-database updated wal-e to 0.8.1
- deis-controller updated psycopg2 to 2.6.1
- Several components updated to confd 0.10.0
For more details, please see CHANGELOG.md.
What's Next
Configurable Healthchecks
To enable publishing of new app releases with zero downtime, Deis needs a more strict, configurable HTTP healthcheck facility. Substantial progress has been made, but more coding and testing remains. Look forward to true zero-downtime deploys in the next release!
TTY Broker
Today Deis cannot provide bi-directional streams needed for log tailing and interactive batch processes. By having the Controller drive a TTY Broker component, Deis can securely open WebSockets through the routing mesh.
See TTY Broker at the Deis Roadmap for more detail.
Scheduling and Orchestration
Today Deis uses Fleet for scheduling. Unfortunately, Fleet does not support resource-based scheduling, which results in poor cluster utilization at scale.
Fortunately, Deis is composable and can easily hot-swap orchestration APIs. Because the most promising container orchestration solutions are under heavy development, the Deis project is focused on releasing "technology previews".
These technology previews will help the community try different orchestration solutions easily, report their findings and help guide the future direction of Deis.
See Scheduling and Orchestration at the Deis Roadmap for more detail.
Etcd 2
A CP database like etcd
is central to Deis, which requires a distributed lock service and key/value store. As problems with etcd directly impact platform stability, Deis must move to the more stable etcd2.
See Etcd 2 at the Deis Roadmap for more detail.
Community Shout-Outs
We want to thank the following Deis community members for creating GitHub issues, providing support to others, and working on various Deis branches:
- @adrianandreias: Feature: rkt (rocket) support
- @Aendrew: 404 after upgrading to 1.7.0
- @ainux4mrvce: deis create issue, dockerfile, not able to push on deis master , deis login error
- @bastilian: deisctl seems to ignore options
- @crigor: Don't exclude .git on the slug, Update Installing SSL on a Load Balancer Doc, Admins should be able to delete users
- @Crispy1975: Vagrant: error: failed to push some refs, Cannot deploy using Heroku buildpack and private repositories.
- @croemmich: Can't start builder on 1.7.2., docs(backing_up_data): Add community tools for reference, docs(contrib): add link to Deis Backup and Restore, feat(contrib/linode): add Linode provision scripts and docs
- @dpanelli: Deploy of a new version fails with: "tar: invalid tar magic " after Deis update 1.5 to 1.7
- @etcinit: Client may break if enforceHTTPS=true and the client config points to http
- @fabiob: AffinityArg hangs router on 1.7.3, docs(*): update references to the new base image, alpine
- @glenwong: Multiple clusters for dev, staging, and production?
- @glogiotatidis: App users should be able to add/edit/delete domains for app
- @ineu: deisctl installation script output is not colorized in bash or zsh, Pull new versions of deis in advance?
- @kalbasit: fix(deisctl): avoid blocking if output is empty
- @krancour: API / controller logging should be via logspout, bug(docs): Inaccurate description of builder responsibilities, fix(docs): Correct and clarify description of builder component, fix(tests): fix assertions on default beverage
- @linki: fix(router): fix markdown table rendering
- @liuyang1204: Gateway Key not found (/deis/store/gateway/masterLock) [8462114]
- @lorieri: deis domains doesn't check for existing apps, restarting builder requires app destroy
- @megastef: docs(manage_deis) - add SPM Performance Monitoring
- @mikepack: already don't -> don't already, ot -> to
- @nathansamson: Use flocker to replace Ceph for database & builder & ..., fix(client): Fix attribute errors on windows
- @ngerakines: Errors in logs, possibly from store.
- @olalonde: deis-builder won't start after 1.6.1 -> 1.7.3 upgrade,
deis config:push -a someappname
doesn't work, "Welcome to nginx!" page after git push, journalctl shows "[WARNING] - 501: All the given peers are not reachable (Tried to connect to each peer twice and failed) [0]" on a machine, Auto restart app when it crashes?, Can't push to deis afterdeisctl restart builder
,deis logs
doesn't show log with Procfile based deployment, Weirddeis ps
output after runningdeis config:set ...
andgit push
at the "same" time, "Welcome to NGINX" after switching from Dockerfile based deployment to Procfile, HTTPS 504 GATEWAY_TIMEOUT after setting AWS ELB https - @phspagiari: Deis scale isnt respecting the cluster.
- @s20691033: store daemon is giving errors,
deis run
writes output to logs, and not to the client, noise in logs on non-ipv6 hosts - @sbuss: Starting platform hangs on the builder, can't find an image
- @scottrobertson: deis run throws 500 error, /home/git/repo.git/build not being cleaned up, Idea: Deployment Keys, After upgrade to 1.7, sites are 404'ing and cannot push
- @sockeye44: Go build failed, Play framework build failed
- @sstarcher: Connection Draining, deisctl --version returns exit code of 1
- @szymonpk: Sanitize/filter config variables from client, no output from deis run while using ruby's puts or pp, create_bucket should use secure transport if external s3 is used and it should respect s3 region, proposal feat(client) allow for custom git hostname, deis client can't setup ssl connection via cloudflare, deis-logger is eating whole cpu
- @wenzowski: HPKP Public-Key-Pins Header, feat(router): add Diffie-Hellman parameter for DHE ciphersuites, feat(router): read list of preferred ciphers, feat(router): enable HSTS when enforceHTTPS is set, fix(router): set_random belongs in a
location
block - @wgrrrr: chore(contrib/ec2): add m4 instance types
- @woopstar: Installator hanged, but platform is up and running
- @zag2art: Builder can't start after upgrade 1.5.2 -> 1.7.3
The Deis community continues to grow, and Deis wouldn't be here without you! If we slighted your contribution to this release, please let us know so we can update.
How can you help?
- Star our GitHub repository
- Help spread the word about @opendeis on Twitter
- Join the conversation in the #deis channel on Freenode
- Voice your opinion on the Deis Roadmap by attending the monthly Release Planning Meeting
- Pick an easy-fix or help wanted issue and start contributing!
Learn about other ways to get involved on our website.