a kubernetes operator for etcd
play

A Kubernetes Operator for etcd jetstack.io Open Source Tools - PowerPoint PPT Presentation

Dec 12, 2022 •346 likes •1.09k views

Presented by James Laverack, Solutions Engineer A Kubernetes Operator for etcd jetstack.io Open Source Tools Subscription Consulting Training Enhancing the Kubernetes Reference architecture, online Consulting and engineering to Learn and

  1. Presented by James Laverack, Solutions Engineer A Kubernetes Operator for etcd jetstack.io

  2. Open Source Tools Subscription Consulting Training Enhancing the Kubernetes Reference architecture, online Consulting and engineering to Learn and engage directly experience with open source training and SLA support 24x7 for make the most of Kubernetes and alongside our team, with courses tooling. Includes provisioning, your production Kubernetes move you to production quickly for all stages of your Kubernetes stateful services and security deployment journey related projects jetstack.io

  3. “We need to run etcd in Kubernetes.” jetstack.io

  4. jetstack.io

  5. etcd-0.example.com LEADER client-app.example.com etcd-1.example.com CLIENT APPLICATION etcd.example.com etcd-2.example.com jetstack.io

  6. “What about a stateful set?” jetstack.io

  7. jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  8. etcd-0.example.com LEADER etcd-1.example.com etcd-0.example.com etcd-1.example.com etcd-2.example.com etcd-2.example.com jetstack.io

  9. etcd-0.example.com LEADER etcd-1.example.com etcd-0.example.com etcd-1.example.com etcd-2.example.com etcd-3.example.com etcd-2.example.com jetstack.io

  10. etcd-0.example.com LEADER etcd-3.example.com etcd-1.example.com etcd-2.example.com jetstack.io

  11. etcd-0.example.com LEADER etcd-1.example.com etcd-0.example.com etcd-1.example.com etcd-2.example.com etcd-2.example.com jetstack.io

  12. etcd-0.example.com LEADER etcd-1.example.com etcd-0.example.com etcd-1.example.com jetstack.io

  13. jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  14. Pre-stop hook: Init container: err := removePeerFromEtcd(peer) if !bootstrap and firstLaunch { if err != nil { err := addPeerToEtcd(peer) // Uhh… if err != nil { // Shut down anyway? // Comms failure? } fail() } markAsLaunched() } jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  15. Pre-stop hook: Init container: err := removePeerFromEtcd(peer) if !bootstrap and firstLaunch { if err != nil { err := addPeerToEtcd(peer) // Uhh… if err != nil { // Shut down anyway? // Comms failure? } Only if we’re really fail() removing a peer, not if } we just move the Pod... markAsLaunched() } jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  16. Pre-stop hook: Init container: err := removePeerFromEtcd(peer) if !bootstrap and firstLaunch { if err != nil { err := addPeerToEtcd(peer) // Uhh… if err != nil { // Shut down anyway? // Comms failure? } Only if we’re really fail() removing a peer, not if } we just move the Pod... markAsLaunched() } jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  17. Pre-stop hook: Init container: err := removePeerFromEtcd(peer) if !bootstrap and firstLaunch { if err != nil { err := addPeerToEtcd(peer) // Uhh… if err != nil { // Shut down anyway? // Comms failure? } Only if we’re really fail() removing a peer, not if } we just move the Pod... markAsLaunched() If we are bootstrapping, how } do we determine the domain names of all the other peers? Detect bootstrap Query the STS to check the by trying to dial the size? What if someone scales cluster? What if it’s it while we’re bootstrapping? just a comms failure? Means the etcd pod needs How do we recover permissions to list stateful from that? sets... Detect firstLaunch by presence of file on the filesystem? What if we crash halfway through adding ourselves to If we scale to zero do we delete all the etcd? Can we retry safely? PVCs and all the data? jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  18. We need an Operator. jetstack.io

  19. “Operators are software extensions to Kubernetes that make use of custom resources to manage applications and their components.” jetstack.io kubernetes.io/docs/concepts/extend-kubernetes/operator

  20. “The Operator pattern aims to capture the key aim of a human operator […] Human operators […] have deep knowledge of how the system ought to behave, how to deploy it, and how to react if there are problems.” jetstack.io kubernetes.io/docs/concepts/extend-kubernetes/operator

  21. An Operator encodes knowledge. jetstack.io

  22. cert-manager.io strimzi.io And many more jetstack.io

  23. jetstack.io coreos.com/blog/introducing-operators

  24. “How do you actually build an Operator?” jetstack.io

  25. EtcdCluster jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  26. $ kubectl api-resources NAME SHORTNAMES APIGROUP NAMESPACED KIND deployments deploy apps true Deployment replicasets rs apps true ReplicaSet statefulsets sts apps true StatefulSet pods po true Pod etcdclusters etcd.improbable.io true EtcdCluster < many lines omitted > jetstack.io

  27. eco-system jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  28. - apiGroups: - apiGroups: - apiGroups: - etcd.improbable.io - apps - "" resources: resources: resources: - etcdclusters - replicasets - services verbs: verbs: verbs: - get - create - create - list - get - get - watch - list - list - watch - watch jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  29. jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  30. jetstack.io

  31. jetstack.io github.com/kubernetes-sigs/kubebuilder

  32. Operator logic jetstack.io

  33. Replica Set, Persistent Volume Claim, EtcdCluster Service, etc. 1 2 etcd-cluster-operator jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  34. Replica Set, 2 Persistent Volume Claim, EtcdCluster Service, etc. 1 3 etcd-cluster-operator jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  35. EtcdCluster EtcdPeer jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  36. 1 3 EtcdCluster 2 EtcdPeer, Service 5 EtcdPeer Replica Set, Persistent 4 Volume Claim jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  37. Design considerations jetstack.io

  38. Be level-triggered. jetstack.io

  39. Do one thing at a time. jetstack.io

  40. The cache might lie to you. jetstack.io

  41. Deploying an etcd Cluster jetstack.io

  42. apiVersion: etcd.improbable.io/v1alpha1 kind: EtcdCluster metadata: name: my-etcd namespace: foo spec: replicas: 3 jetstack.io

  43. foo CLUSTER my-etcd PEER PEER PEER my-etcd my-etcd-0 my-etcd-1 my-etcd-2 jetstack.io Custom Resource Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  44. ¯\_( ツ )_/¯ 1 3 EtcdCluster 2 EtcdPeer, Service 5 EtcdPeer Replica Set, Persistent 4 Volume Claim jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  45. apiVersion: etcd.improbable.io/v1alpha1 kind: EtcdPeer metadata: name: my-etcd-0 Namespace: foo spec: clusterName: my-etcd bootstrap: initialClusterState: New static: initialCluster: - name: my-etcd-0 host: my-etcd-0.my-etcd.foo.svc - name: my-etcd-1 host: my-etcd-1.my-etcd.foo.svc - name: my-etcd-2 host: my-etcd-2.my-etcd.foo.svc jetstack.io

  46. foo my-etcd-0.my-etcd.foo.svc PEER CLUSTER my-etcd-0 my-etcd-0 my-etcd my-etcd my-etcd-0 my-etcd.foo.svc jetstack.io Custom Resource Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  47. my-etcd-0.my-etcd.foo.svc my-etcd-0.my-etcd.foo.svc my-etcd-1.my-etcd.foo.svc my-etcd-2.my-etcd.foo.svc my-etcd-1.my-etcd.foo.svc my-etcd-2.my-etcd.foo.svc jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  48. Scale up jetstack.io

  49. apiVersion: etcd.improbable.io/v1alpha1 kind: EtcdCluster metadata: name: my-etcd spec: replicas: 3 5 jetstack.io

  50. $ kubectl scale etcdcluster my-etcd --replicas 5 jetstack.io

  51. my-etcd-0.my-etcd.foo.svc my-etcd-0.my-etcd.foo.svc my-etcd-1.my-etcd.foo.svc my-etcd-2.my-etcd.foo.svc my-etcd-3.my-etcd.foo.svc my-etcd-1.my-etcd.foo.svc my-etcd-2.my-etcd.foo.svc jetstack.io Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  52. foo CLUSTER my-etcd PEER PEER PEER PEER my-etcd my-etcd-0 my-etcd-1 my-etcd-2 my-etcd-3 jetstack.io Custom Resource Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  53. apiVersion: etcd.improbable.io/v1alpha1 kind: EtcdPeer metadata: name: my-etcd-3 namespace: foo spec: clusterName: my-etcd bootstrap: initialClusterState: Existing static: initialCluster: - name: my-etcd-0 host: my-etcd-0.my-etcd.foo.svc - name: my-etcd-1 host: my-etcd-1.my-etcd.foo.svc - name: my-etcd-2 host: my-etcd-2.my-etcd.foo.svc - name: my-etcd-3 host: my-etcd-3.my-etcd.foo.svc jetstack.io

  54. foo CLUSTER my-etcd PEER PEER PEER PEER my-etcd-0 my-etcd-1 my-etcd-2 my-etcd-3 my-etcd-0 my-etcd-1 my-etcd-2 my-etcd-3 my-etcd my-etcd-0 my-etcd-1 my-etcd-2 my-etcd-3 jetstack.io Custom Resource Kubernetes Icons Set — The Linux Foundation — CC-BY-4.0

  55. Scale down jetstack.io

  56. $ kubectl scale etcdcluster my-etcd --replicas 1 jetstack.io

Recommend

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes Overview 1 Airflows integration with Kubernetes 2 Deployment of Airflow on Kubernetes 3 Kubernetes Pod Operator and its benefits 4 DAG Development

2.79k views • 14 slides
Summary of etcd benchmarks Exploring etcd as a potential back-end for the O 2 Configuration module

Summary of etcd benchmarks Exploring etcd as a potential back-end for the O 2 Configuration module

Summary of etcd benchmarks Exploring etcd as a potential back-end for the O 2 Configuration module Pascal Boeschoten 1 / 18 Outline Objective Test setup Results Next steps Notes 2 / 18 Objective Evaluate the

318 views • 18 slides
@coreoslinux About Me @brandonphilips CTO/CO-FOUNDER github.com/philips systems engineer etcd

@coreoslinux About Me @brandonphilips CTO/CO-FOUNDER github.com/philips systems engineer etcd

@coreoslinux About Me @brandonphilips CTO/CO-FOUNDER github.com/philips systems engineer etcd /etc distributed open source software failure tolerant durable watchable exposed via HTTP runtime reconfigurable Data Store API -X GET Get

1.35k views • 83 slides
Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like -

Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like -

Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like - Sec-ish - Ops-y Is this Kubernetes cluster secure? EPIC FAIL GIF How secure is Kubernetes? What this Kubernetes talk is about Common Pwns

1.18k views • 113 slides
Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source

Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source

Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source platform designed to automate deploying , scaling , and operating application containers . Kubernetes v1.0 was released in 2015. It utilizes

916 views • 52 slides
K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi @marcoceppi Ryan Beisner @ryanbeisner Why Kubernetes Computing in the modern age Virtual Process Machines Containers Traditional Container

516 views • 24 slides
Kubernetes as a Streaming Data Platform A Federated Operator Approach Data Council - Barcelona,

Kubernetes as a Streaming Data Platform A Federated Operator Approach Data Council - Barcelona,

Kubernetes as a Streaming Data Platform A Federated Operator Approach Data Council - Barcelona, October 2nd, 2019 Gerard Maas Principal Engineer, Lightbend, Inc. @maasg Gerard Maas Principal Engineer gerard.maas@lightbend.com @maasg

1.07k views • 58 slides
From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang

From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang

From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang Developer Advocate Google Cloud Platform @saturnism | +RayTsang @saturnism @googlecloud #kubernetes Ray Tsang Developer Architect Traveler

1.29k views • 65 slides
Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes

Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes

Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes &amp; Cloud Native Meetups in Jakarta and Bandung https://www.meetup.com/jakarta-kubernetes/ https://www.meetup.com/Microservice-JKT/ You can find

709 views • 47 slides
Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes?

Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes?

@MELANIECEBULA / MARCH 2019 / CON LONDON Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes? @MELANIECEBULA Who am I? A BRIEF HISTORY @MELANIECEBULA Why Microservices? 4000000 3000000 2000000 MONOLITH

1.74k views • 111 slides
Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker &amp; Kubernetes

Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker &amp; Kubernetes

Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker &amp; Kubernetes Enthusiast Speaker at Meetups Email: apurvbhandari@gmail.com LinkedIn: https://www.linkedin.com/in/apurvabhandari-linux GitHub:

2.17k views • 28 slides
Kubernetes APIs Under the Hood @pwittrock Who Am I? Phillip Wittrock (@pwittrock) Software

Kubernetes APIs Under the Hood @pwittrock Who Am I? Phillip Wittrock (@pwittrock) Software

Kubernetes APIs Under the Hood @pwittrock Who Am I? Phillip Wittrock (@pwittrock) Software Engineer at Google working on GKE and OSS Kubernetes My mission is to make using Kubernetes simple and enjoyable You might have come across me

1.12k views • 27 slides
Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes

Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes

Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes Ceph Storage Operation NVRAMOS 2019 10/28/2019 Cloud Service Model On Premises IaaS CaaS PaaS SaaS Applications Applications

660 views • 36 slides
Kubernetes Administration from Zero to (junior) Hero Lszl Budai Component Soft Ltd.

Kubernetes Administration from Zero to (junior) Hero Lszl Budai Component Soft Ltd.

Kubernetes Administration from Zero to (junior) Hero Lszl Budai Component Soft Ltd. Agenda 1.Introduction 2.Accessing the kubernetes API 3.Kubernetes workloads 4.Accessing applications 5.Volumes and persistent storage 2 (c) 2018

1.17k views • 57 slides
OpenStack on Kubernetes: Make OpenStack and Kubernetes Fail-Safe Seungkyu Ahn (ahnsk@sk.com)

OpenStack on Kubernetes: Make OpenStack and Kubernetes Fail-Safe Seungkyu Ahn (ahnsk@sk.com)

OpenStack on Kubernetes: Make OpenStack and Kubernetes Fail-Safe Seungkyu Ahn (ahnsk@sk.com) Jaesuk Ahn (jay.ahn@sk.com) Open System Lab Network IT Convergence R&amp;D Center SK Telecom Wil Reichert (wil@solinea.com) Solinea What will

1.26k views • 46 slides
Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie

Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie

Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie and Joe Beda 2/3rds of a pod Connaissez-vous Kubernetes? Kubernetes is an open-source system for automating deployment, scaling, and

747 views • 63 slides
Kubernetes on ARM64 Kubernetes on ARM64 Raspberry PI 4 Kubernetes cloud for a Raspberry PI 4

Kubernetes on ARM64 Kubernetes on ARM64 Raspberry PI 4 Kubernetes cloud for a Raspberry PI 4

Kubernetes on ARM64 Kubernetes on ARM64 Raspberry PI 4 Kubernetes cloud for a Raspberry PI 4 Kubernetes cloud for a few Euros! few Euros! Jean-Frederic Clere Jean-Frederic Clere @jfclere @jfclere Fosdem 2020 Feb. 1-2, 2020 TM Who am I?

529 views • 26 slides
Lecture 3: Kubernetes AC295 AC295 Advanced Practical Data Science Pavlos Protopapas Outline

Lecture 3: Kubernetes AC295 AC295 Advanced Practical Data Science Pavlos Protopapas Outline

Lecture 3: Kubernetes AC295 AC295 Advanced Practical Data Science Pavlos Protopapas Outline 1: Communications 2: Recap 3: Introduction to Kubernetes 4: Creating and Running Containers | Review 5: Anatomy of a Kubernetes Cluster 6:

821 views • 38 slides
Data Management in Kubernetes Using Kanister T om Manville | April 25th, 2018 2 3 4 yes* 5

Data Management in Kubernetes Using Kanister T om Manville | April 25th, 2018 2 3 4 yes* 5

Data Management in Kubernetes Using Kanister T om Manville | April 25th, 2018 2 3 4 yes* 5 Database Operations in Kubernetes kanister.io 6 Agenda Background DB in a container DB in Kubernetes Kanister Use

767 views • 42 slides
OPENSTACK + KUBERNETES + HYPERCONTAINER The Container Platform for NFV ABOUT ME Harry Zhang

OPENSTACK + KUBERNETES + HYPERCONTAINER The Container Platform for NFV ABOUT ME Harry Zhang

OPENSTACK + KUBERNETES + HYPERCONTAINER The Container Platform for NFV ABOUT ME Harry Zhang ID: @resouer Coder, Author, Speaker Member of Hyper Feature Maintainer &amp; Project Manager of Kubernetes sig-scheduling,

3.57k views • 46 slides
Rootless Kubernetes Running Kubernetes and CRI/OCI Runtimes as an unprivileged user Akihiro Suda

Rootless Kubernetes Running Kubernetes and CRI/OCI Runtimes as an unprivileged user Akihiro Suda

FOSDEM (Feb 3, 2019) Rootless Kubernetes Running Kubernetes and CRI/OCI Runtimes as an unprivileged user Akihiro Suda / NTT (@_AkihiroSuda_) Giuseppe Scrivano / Red Hat (@gscrivano) 1 Who are we? Akihiro Suda Giuseppe Scrivano Software

552 views • 23 slides
2 2 f f + = 0 2 2 x y Laplacian operator is discretized version

2 2 f f + = 0 2 2 x y Laplacian operator is discretized version

IIT Bombay Slide 75 Laplacian Operator The Laplacian operator is based on the Laplace equation given by 2 2 f f + = 0 2 2 x y Laplacian operator

731 views • 26 slides
Operator overloading (1 of 9) Operator overloading (2 of 9) Let us assume a class to handle

Operator overloading (1 of 9) Operator overloading (2 of 9) Let us assume a class to handle

Operator overloading (1 of 9) Operator overloading (2 of 9) Let us assume a class to handle complex numbers exist, and This is the rules for an operator named OP: create a few variables (class instances, objects): left-hand-side OP

261 views • 3 slides
Bringing Security and Multi- tenancy to Kubernetes Lei (Harry) Zhang About Me Lei (Harry)

Bringing Security and Multi- tenancy to Kubernetes Lei (Harry) Zhang About Me Lei (Harry)

Bringing Security and Multi- tenancy to Kubernetes Lei (Harry) Zhang About Me Lei (Harry) Zhang @resouer #CNCF member, #Microsoft MVP Previous: VMware, Baidu Feature Maintainer of Kubernetes HyperCrew: https://hyper.sh/

609 views • 40 slides

More recommend