Release Notes

    Notes:

  • With the Apcera Platform 3.2.0 release, unresolved known issues are provided in the Known Issues document.
  • As of Apcera Platform release 3.0.0, Apcera Setup has been discontinued and is no longer available or supported.
  • Release notes for versions prior to 3.0.0 can be found on the Apcera Platform Release 2.6 and Release 2.4 documentation sites.

Mar 29, 2018

Cluster (3.2.0)

  • Upgrade Notes
    • Apcera Platform release 3.2.0 is an LTS release with significant platform changes. Before upgrading to this release, be sure to read the upgrade instructions.

  • Cluster changes
    • DEPRECATION NOTICE: The use of Gluster to provide cluster configured NAS for user applications running in the cluster is deprecated in the Apcera Platform 3.2 release. For user applications requiring HA NAS running in a cluster, Apcera's recommended configuration is to manage external NFS systems and configure an NFS provider for jobs running in the cluster, for example AWS EFS. (The use of Gluster in a cluster for package storage is unaffected by this announcement and is still supported.)

    • Job Rolling Restarts are now supported as an alternative job updating mechanism that support updating jobs with no downtime or loss in level of service.

    • Job routes now support UDP.

    • Enhanced job health monitoring is now available via TCP based "liveness" check for jobs with non-optional ports. The interval between checks is configurable via cluster.conf settings.

    • Fixed issue with Apcera installation error on Azure platform (Raw Terraform install).

    • Fixed issue with terraform bundle for different providers.

    • Updated API/Data changes for new UPD port type and route, including support for separate UDP router component.

    • Fixed bug regarding application performance degradation when writing to STDOUT.

    • Fixed issue with events server performance that can overload central host CPU and DOS the cluster.

    • Fixed issue where active events server clients can cause restart to timeout, and a deploy to fail.

    • Fixed issue with v3.0 / Virtual Network / Stale Discovery Address.

    • Fixed issue where PM gluster client log file names disrupt logrotate.

    • Apache packages configured to log original client IP.

    • Improved addition values in Job syslog output. When log forwarding is initialized, a 'marker' log message is now sent which includes the FQN of the job whose logs are being forwarded.

    • Improved netfilter logs.

  • Chef changes
    • Added sanity check in Chef to ensure that remote_subnets are CIDRs.

    • Implemented changes in Chef to support UDP router as separate component.

    • Added Chef support for CEP-MNO default route.

    • Add Chef support for TCP Liveness Probe variable.

Orchestrator (2.0.22)

  • Fixed issue with timeout receiving result message from server when attempting to execute chef.

  • Fixed issue with orchestrator unit test flapper.

  • Fixed issue with with failure during cluster update: unexpected EOF.

  • Improved orchestrator-cli deploy error message.

  • Fixed issue where restoring an orchestrator backup fails during client reconfiguration.

APC (3.2.0)

  • Updated LDAP underlying library to support UTF-8.

  • Improved logging from apc to allow for better diagnostics when troubleshooting.

  • Fixed issue in apc so that encrypt value for job can be changed with curl.

  • Improved user accessibility of PM migration status.

  • Fixed an issue with the event subscription API where it was leaking user authorization tokens into logs.

  • Improved apc cluster usage report.

  • Added discovery address to information displayed in apc network show.

  • Fixed issue with apc download where in some cases it was not downloading the full package.

  • Improved exporting of quotas.

  • Fixed support of special characters in LDAP Password.

  • Fixed issue with unability to use policy matching Job FQN or Network FQN.

  • Fixed issue with internal server error after retiring a package using apc app create.

  • Fixed issue with setting https-only value using apc route update.

  • Updated default policy to display serviceParam encrypt.

  • Improved how apc job show command displays the routes.

  • Corrected behavior for apc login –batch option, which should fail if the user is already logged-in.

  • Fixed issue where apc app from package command may stage a package even if it isn't supposed to.

  • Improved how apc job show command displays whichh ports on a job are marked optional.

  • Improved how apc network show command displays the subnet pool name.

  • Fixed issue with apc job show nfs-admin.

  • Improved how apc app stats should handle unbound resources.

  • Fixed issue with apc job update job_name hard/soft tags remove should not require restart.

Web Console (9.1.0)

  • UDP ports can be added to jobs. UDP routes can be mapped to jobs on UDP ports.

  • Job Rolling Restarts added to jobs. Docker job and capsule may be created with rolling mode enabled. Instances table on job scheduling page shows two additional fields: number of instances up-to-date and running and instances that will be restarted. Online progress modal is shown in job update and multi-resource manifest upload when rolling mode on job is enabled.

  • Certificates/Secrets are now supported.

  • Autoscaling added to jobs.

  • Converted IEC unit to SI unit for reporting RAM and Disk usage.

  • Added network graph to cluster page.

  • Instance manager table can be filtered by tags.

  • Added confirmation restart prompt when enabling and disabling ssh.

  • A job is now restarted when an environment update fails.

  • Added more repositories from where you can create a job using a docker image.

  • Password field for a job is now more secure.

  • Enhanced job graphs.

  • Added OS version in help section.

  • Cross-site requests using credentials like cookies can be enabled using environment variable on lucid job.

  • Success/Error notification messages are always stick on top of the window.

  • Empty environment variables are now ignored.

  • Tutorial links now link to the correct site.

Guide (3.2.0)

  • Updated API documentation for rolling restart functionality, including new flags in existing APC commands.

  • Added documentation for configuring and managing rolling restarts of jobs.

  • Updated API documentation for working with UDP ports/routes.

  • Added documentation for configuring and managing UDP ports/routes in APC, MRM and web console.

  • Added documentation for configurating TCP Liveness Probe checks.

  • Updated documentation about new orchestrator-cli capabilities.

  • Updated documentation about Azure Terraform installation sections.

  • Removed Apcera Install CLI (beta) documentation.

  • General documentation corrections throughout for typos, etc.

  • Updated documentation to make exporting serviceParams clear.

Mar 01, 2018

Cluster (3.0.3)

  • Cluster changes
    • NOTE: The 3.0.3 release has not been tested on OpenStack.

    • Updated the kernel with OS vendor latest release that address the Meltdown vulnerability.

    • Improved timeout and retry logic when checking AWS S3 for package resources.

  • Chef changes
    • No changes.

Orchestrator (2.0.21)

  • No changes.

APC (3.0.3)

  • No changes.

Web Console (9.0.0)

  • No changes.

Guide (3.0.3)

  • No changes.

Oct 23, 2017

Cluster (3.0.1)

  • Cluster changes
    • NOTE: The 3.0.1 release has not been tested on OpenStack.

    • Fixed issue in virtual networks where DNS entries for a job's discovery address would become stale. This would occur if a member job in a virtual network was deleted, recreated, and re-joined to the same virtual network.

    • Fixed issue where PPIDs were incorrectly parsed in /proc/<pid>/stat.

    • Fixed policy error when joining a job to a virtual network for some policy configurations.

  • Chef changes
    • No changes.

Orchestrator (2.0.22)

  • Fixed issue when restoring an Orchestrator database backup using the orchestrator-cli restore command.

  • Improvements to orchestrator-cli backup command.

APC (3.0.1)

  • Fixed issue with data reported by the apc cluster usage command. Previously, usage reports for a given day would change depending on when the query was executed. This was due to side-effects of the data retention policy configured for the cluster's metrics storage system (Graphite). Note that the new command will only display cluster usage that occurred since the cluster was updated to this release (3.0.1). See the APC documentation for more information.

Web Console (9.0.0)

  • No changes.

Guide (3.0.1)

  • Added Metrics API documentation.

  • Updated NFS service gateway documentation.

Sep 22, 2017

Cluster (3.0.0)

  • Upgrade Notes
    • Apcera Platform release 3.0.0 is an LTS release with significant platform changes. Before upgrading to this release, be sure to read the upgrade instructions.

    • The Apcera-provided Terraform modules have been updated, including the retirement of previous generation instance types in favor of new ones (for example,replacing the M3 type with T2 for AWS). Note that these will be destructive changes if you download and use these updated modules to perform the upgrade. The recommendation is to upgrade using your existing Terraform modules and then migrate to the new instance types over time.

    • If you previously enabled local IPAM (beta) for your 2.6.x installation, you will need to disable local IPAM (by commenting it out) and revert to global IPAM before upgrading to release 3.0.

    • Apcera Platform release 3.0.0 features a new component store component that improves availability. If you want to migrate from Store 2 to Store 3, you should upgrade the 3.0.0 first, then migrate at a later time.

  • Cluster changes
    • Added container log truncation which prevents logs from growing more than 10MB.

    • Job Autoscaling added as part of the platform.

    • Added subnet pools for virtual networks.

    • Fixed an issue where the JM would incorrectly state a job update contained no changes when certain environment variable changes were made.

    • Fixed an issue where soft negative scheduling tags were not being applied correctly.

    • Added new OvS driver for virtual networks.

    • Integrated with Hashicorp Vault backed by Consul for secure storage of cluster secrets. This first phase of integration stores component keys, database passwords and (optionally) external auth server connection credentials.

    • Return empty HTML pages on HTTP Router errors. Previously used Apcera-branded pages.

    • Fixed issue where instance errors could permanently penalize IM and introduce scheduling artifacts.

    • Added an event message for decreasing a job's instance count. (there was only one for increasing before).

    • Added the "domain" endpoints for installing, uninstalling and listing (POST, DELETE and GET, respectively) certificates and private-keys for domains on the router.

    • Added the subnet pool resource for configurable virtual networks. Supports POST, DELETE and GET actions on the resource.

    • Significantly sped up the /v1/version endpoint.

    • When updating a job (i.e. PUT /v1/jobs/:uuid:), if there are no changes to the job, you receive an HTTP 200 response with the unmodified job instead of an error.

    • Added the 'secret' set of endpoints for certificate/secret functionality. Supports POST, GET and DELETE actions for the importation, listing and deletion of secrets/certificates.

  • Chef changes
    • If you have deployed an APCFS high-availability file system, this release will upgrade GlusterFS from version 3.7.8 to version 3.8.12 and Ganesha NFS from version 2.3.0 to version 2.4.5.

    • Added some missing certificate authorities to the system CA list, requiring for validating connections to some external services signed by those CAs.

    • Correct typo in splunk-forwarder tag, when untagging.

    • Deploy, configure and populate Hashicorp Vault. Migrates component keys and database password out of orchestrator/chef database and cluster file system and into Vault.

    • Orchestrator version updated to 2.0. This version of orchestrator includes Vault support.

    • Introduce new dynamic taint adjustment options.

    • Allow for the forced rotation of router http access logs.

    • Updated Splunk (where used) to version 6.5.3.

Orchestrator (2.0.7)

  • Improved 'Downloading' progress message.

  • Retained CA key and database password between multiple deploys.

  • Deploy command outputs a warning message if audit logging on Vault cannot be enabled.

  • Fixed an issue vault status check during deploy.

  • Enable vault audit logging to syslog.

  • Fixed an issue in orchestrator agent that causes the agent process to panic.

  • Fixed an issue in teardown command when machine number cannot be reclaimed.

  • Reusable valut token is employed to replace one-time use vault token during deploy.

  • Enabled Consul backend functionality, set comp ACL.

  • Add secret/encfs to jm and im vault permissions.

  • Updated the Zabbix token on deploy and refresh commands.

  • Updated Component secret reliability

  • Fixed a bug in deploy. Orchestrator does not exit after a Chef error.

  • Fixed an issue in reclaiming machine number when rescaling cluster down.

  • Enable Consul secret backend functionality.

  • Add secret encfs to JM and IM Vault permissions.

  • Increased IM ID limit to 4096.

  • Added the ability to store component secrets in vault.

  • Fixed an issue in log collection.

  • Fixed an issue in backup command.

  • Support components revoking already-used tokens.

  • Removes the refresh-vault-token command and implements the security command.

  • Added configuration of Vault, including enforcement of cluster passphrase and encryption/decryption of persisted answers.

  • Fixed chef output log collection issue.

APC (3.0.0)

  • Added multiple commands (apc subnet pool create/delete/list/show) associated with the newly defined subnet pool resource.

  • Updated the apc network create command to take in a user specified subnet pool (--pool).

  • Fixed an issue where apc job list output would be indeterministic of a job was an more than one of app gateway stager pipeline.
  • Fixed a bug where apc app delete would consider the app name in a manifest file, but not the namespace.

  • Fixed a bug which caused temporary files to be left on the user's machine after updating APC.

  • Updated multiple APC commands to consistently use flags -i, –instance-id when specifying an instance id.

  • Fixed an issue where app deploy –keep-previous=false would not remove the old package if the app was stopped.

  • Updated APC help for default route naming scheme.

  • Add ANSI terminal emulation support on Windows for a better experience, especially when connected to a Linux container.

Web Console (9.0.0)

  • Added new UI for creating routes and mapping routes to jobs.

  • Added new ability to manage secrets/certificates.

  • Added UI for configuring job auto-scaling.

  • Docker launcher UI does not include a curated list of Docker images, in prior releases.

  • Added the cluster OS version to the Help popup menu.

Guide (3.0.0)

  • New API documentation generated from OpenAPI specification.

  • Updated API documentation to include "v2" endpoints and new API features, including for managing secrets and routes.

  • API documentation is now auto-generated from the OpenAPI specification.

  • Added documentation for configuring and managing secret storage and encryption.

  • Added documentation for managing SSL certificates and keys.

  • Added documentation for data encryption at rest.

  • Added new architecture diagram.

  • Added documentation for configurable networks.

  • Added documentation for configuring job auto-scaling.