of upgrading the Operator, or • Operand can be upgraded as part of changing the CR • Operator understands how to upgrade older versions of the Operand, managed previously by an older version of the versions of the Operand or update them • Operator conveys inability to manage an unsupported version of the Operand in the status section of the CR Lifecycle features • Operator provides the ability // If a reference to the same object already exists, it'll be overwritten with the newly provided version. func SetOwnerReference(owner, object metav1.Object, scheme *runtime.Scheme) error {...} ⚠️ Owns

apply -f kube-proxy.yaml Simplify k8s lifecycle management Manage your cluster with only kubectl Upgrading a self-hosted Kubernetes cluster: Launching a self-hosted cluster Need an initial control plane running v1.4.3 and configured to run v1.4.5 ● API Server is v1.4.3 ● Scheduler is v1.4.3 Kubernetes Version Operator Differences from desired config ● API Server should be v1.4.5 ● Scheduler should be v1

pip2 install jinja2 --upgrade 出现类似如下的提示： You are using pip version 9.0.1, however version 18.0 is available. You should consider upgrading via the 'pip install --upgrade pip' command. 则执⾏ pip install ⼤概20分钟左右，Kubernetes即可安装完毕。 验证 验证1：查看Node状态 ]# kubectl get nodes NAME STATUS ROLES AGE VERSION node1 Ready master,node 2m v1.11.2 node2 Ready master,node 2m 组，它的REST路径是 /api/v1 。例如 apiVersion: v1 。 2. 命名组是REST路径 /apis/$GROUP_NAME/$VERSION ，并使⽤ apiVersion: $GROUP_NAME/$VERSION （例如 apiVersion: batch/v1 ）。 ⽀持的API组的完整列表可详⻅：Kubernetes API reference 。 使⽤

the possible value. 2. Success rate A rate value indicates the rate of success about creating/upgrading pod. 3. Number of Terminating Pod A number value indicates the count of pods that can not be deleted

apply -f calico.yaml Step6: 查看节点 kubectl get nodes NAME STATUS ROLES AGE VERSION k8s-master Ready master 27m v1.18.2 F. 部署 k8s node 节点 Step1: k8s master 上查看/创建 e23e5b2b Step3: k8s master 上查看节点 kubectl get nodes NAME STATUS ROLES AGE VERSION k8s-master Ready master 4d19h v1.18.2 k8s-node2 Ready 31m v1.18.2 ingressroutes.traefik.containo.us spec: scope: Namespaced group: traefik.containo.us version: v1alpha1 names: kind: IngressRoute plural: ingressroutes singular: ingressroute

(Vertical Workload Autoscaler) Ø Keep share memory during Pod upgrade Ø Scaled Up with LGV (Last Good Version) Ø Per Pod Per PV Ø Per Workload Per PV Ø Pod Auto Migrate when Node Abnormal Ø Gray Release Pod biz-container:v2 EmptyDir Volume version1=1 version2=1 filelock.lc EmptyDir Volume version1=1 version2=2 filelock.lc EmptyDir Volume version1=2 version2=2 filelock.lc ������������� ��������������� ���������� ������������ filelock.lc version1=1 filelock.lc version2=1 filelock.lc version1=1 filelock.lc version2=2 filelock.lc version2=2 filelock.lc version1=2 ��������������������������������

#安装k8s二进制组件 （<=1.23版本） # systemctl enable kubelet # systemctl start kubelet ③k8s集群初始化 # kubeadm version #先查看k8s版本 # GitVersion:"v1.19.4" # kubeadm config images list #查看k8s其他组件的docker镜像名，默认用 7个镜像） ★直接使用命令行方式初始化集群 （以下是非HA模式的master初始化，如果要部署高可用集群，则参考第4章） kubeadm init --kubernetes- version=v1.19.4 \ --apiserver-adver�se- address=10.99.1.51 \ # api server地址 --pod-network-cidr=10.244 gpgkey=h�ps://mirrors.aliyun.com/docker-ce/linux/centos/gpg # yum install containerd.io -y # containerd --version #查看版本 containerd containerd.io 1.6.24 61f9fd88f79f081d64d6fa3bb1a0dc71ec870523 ★配置containerd服务

Encrypt(DEK) etcd KMS 1.10 KMS plugin version management etcd KMS 1.10 KMS plugin version management KEKv1 Nov 12-Dec 12 etcd KMS 1.10 KMS plugin version management {SECRET1}DEK1 + {DEK1}KEKv1 12-Dec 12 etcd KMS 1.10 KMS plugin version management {SECRET1}DEK1 + {DEK1}KEKv1 {SECRET2}DEK2 + {DEK2}KEKv1 KEKv1 Nov 12-Dec 12 etcd KMS 1.10 KMS plugin version management {SECRET1}DEK1 + {DEK1}KEKv1 KMS plugin version management {SECRET1}DEK1 + {DEK1}KEKv1 {SECRET2}DEK2 + {DEK2}KEKv1 KEKv1 KEKv2 KEKv3 Nov 12-Dec 12 Dec 12 - Jan 11 Jan 11 - Feb 10 etcd KMS 1.10 KMS plugin version management

不同检测点动态定制检测策略 Report cluster.version > 1.16.1 and cluster.type = Edge and report.type = upgrade Policy cluster.addon.terway.version > 1.0.9.14 Checkpoint terway.version terway.status Ver.2 动态扩展 不同检测策略动态扩展检测任务 • KCQL + Data Driver = 泛化调用 Policy cluster.addon.terway.version > 1.0.9.14 Expression Engine KCQL cluster.addon.terway.version Check Expression ${data.expression} > 1.0.9.14 Data Driver

Architecture and Features • CRD and operator design • Pipeline / Stage/ Task / Task Template / Version Control • Logging, monitoring, autoscaling, high availability • Extensibility / Integration Solution • Architecture and Features • CRD and operator design • Pipeline/Stage/Task/Task Template/Version Control/UI generation/Volume... • Logging, monitoring, autoscaling, high availability • Exte BuildJob / Job status Pipeline / Stage / Task Task Template Pipeline / Stage / Task build logs Version Control sync / watch clean history jobs Basic Concepts（partial） Repository Managed Project