Merge branch 'main' into chaos-palybook

Author: SQxiaoxiaomeng

README.md

@@ -1,4 +1,4 @@
-# Kubernetes Control Plane Chaos Testing Playbooks Guide
+# Kubernetes Chaos Testing Playbooks Guide
 
 [English](README.md) | [中文](README_zh.md)
 
@@ -10,7 +10,11 @@ Kubernetes' centralized architecture and declarative management model, while ena
 - Control plane overload: In a large OpenAI cluster, deploying a DaemonSet monitoring component triggered control plane failures and coredns overload. The coredns scaling depended on control plane recovery, affecting the data plane and causing global OpenAI service outages.
 - Data plane's strong dependency on control plane: In open-source Flink on Kubernetes scenarios, kube-apiserver outages may cause Flink task checkpoint failures and leader election anomalies. In severe cases, it may trigger abnormal exits of all existing task Pods, leading to complete data plane collapse and major incidents.
 
-These cases are not uncommon. The root cause lies in Kubernetes' architecture vulnerability chain - a single component failure or incorrect command can trigger global failures through centralized pathways. To proactively understand the impact duration and severity of control plane failures on services, we should conduct regular fault simulation and assessments to improve failure response capabilities, ensuring Kubernetes environment stability and reliability. This project provides Kubernetes chaos testing capabilities covering scenarios like node shutdown, accidental resource deletion, and control plane component (etcd, kube-apiserver, coredns, etc.) overload/outage.
+These cases are not uncommon. The root cause lies in Kubernetes' architecture vulnerability chain - a single component failure or incorrect command can trigger global failures through centralized pathways. 
+
+To proactively understand the impact duration and severity of control plane failures on services, we should conduct regular fault simulation and assessments to improve failure response capabilities, ensuring Kubernetes environment stability and reliability. 
+
+This project provides Kubernetes chaos testing capabilities covering scenarios like node shutdown, accidental resource deletion, and control plane component (etcd, kube-apiserver, coredns, etc.) overload/outage, it will help you minimize blast radius of cluster failures.
 
 ## Prerequisites
 
@@ -77,21 +81,23 @@ kubectl get workflow
 kubectl delete workflow {workflow-name}
 ```
 
-## Feature Roadmap
-
-| Supported Features               | Priority | Status      | Planned Release | Description                  |
-|----------------------------------|----------|-------------|-----------------|------------------------------|
-| apiserver overload         |   -      | Completed   |      -          | Simulate kube-apiserver high load |
-| etcd overload              |   -      | Completed   |      -          | Simulate etcd high load       |
-| coredns outage             |   -      | Completed   |      -          | Simulate coredns service outage |
-| kubernetes-proxy outage    |   -      | Completed   |      -          | Simulate kubernetes-proxy outage |
-| accidental deletion scenario     |   -      | Completed |  -          | Simulate accidental resource deletion |
-| kube-apiserver outage      |  P0      | In Progress |  2025-06-15     | Simulate kube-apiserver outage |
-| etcd outage                | P0       | In Progress |  2025-06-15     | Simulate etcd cluster failure |
-| kube-scheduler outage      | P0       | In Progress |  2025-06-15     | Test scheduling behavior during scheduler failure |
-| kube-controller-manager outage   | P0       | In Progress |  2025-06-15     | Validate controller component failure scenarios |
-| cloud-controller-manager outage  | P0       | In Progress |  2025-06-15     | Validate controller component failure scenarios |
-| master node shutdown             | P1       | In Progress |  2025-06-15     | Simulate master node poweroff |
+## Roadmap
+
+| Supported Features                         | Priority | Status      | Planned Release | Description                                                     |
+|--------------------------------------------|----------|-------------|-----------------|-----------------------------------------------------------------|
+| apiserver overload                         |   -      | Completed   |      -          | Simulate kube-apiserver high load                               |
+| etcd overload                              |   -      | Completed   |      -          | Simulate etcd high load                                         |
+| apiserver overload (APF)                   |   -      | Completed   |      -          | Add Expensive List APF Policy,Simulate kube-apiserver high load |
+| etcd overload (ReadCache/Consistent cache) |   -      | Completed   |      -          | Add Etcd Overload Protect Policy, Simulate etcd high load       |
+| coredns outage                             |   -      | Completed   |      -          | Simulate coredns service outage                                 |
+| kubernetes-proxy outage                    |   -      | Completed   |      -          | Simulate kubernetes-proxy outage                                |
+| accidental deletion scenario               |   -      | Completed   |      -          | Simulate accidental resource deletion                           |
+| kube-apiserver outage                      |  P0      | In Progress |  2025-06-15     | Simulate kube-apiserver outage                                  |
+| etcd outage                                | P0       | In Progress |  2025-06-15     | Simulate etcd cluster failure                                   |
+| kube-scheduler outage                      | P0       | In Progress |  2025-06-15     | Test scheduling behavior during scheduler failure               |
+| kube-controller-manager outage             | P0       | In Progress |  2025-06-15     | Validate controller component failure scenarios                 |
+| cloud-controller-manager outage            | P0       | In Progress |  2025-06-15     | Validate controller component failure scenarios                 |
+| master node shutdown                       | P1       | In Progress |  2025-06-15     | Simulate master node poweroff                                   |
 
 ## FAQ
 1. Why use two clusters for fault simulation?

README_zh.md

@@ -1,4 +1,4 @@
-# K8s控制面故障演练Playbooks指南
+# Kubernetes故障演练Playbooks指南
 
 [English](README.md) | [中文](README_zh.md)
 
@@ -10,7 +10,11 @@
 - 控制面过载：`OpenAI`大集群在部署了`DaemonSet`监控组件后，引发控制面故障、`coredns`过载，`coredns`扩容又依赖控制面恢复，导致数据面受影响，`OpenAI`全球业务出现中断。  
 - 数据面强依赖控制面：开源`Flink on K8s`场景中，`kube-apiserver`中断可能会导致`flink`任务`checkpoint`失败，选主异常，严重情况下还可能会触发所有存量任务`Pod`异常退出，数据面全线崩溃，进而引发重大故障。 
 
-类似的案例并非少数，这些风险的本质是`K8s`架构的脆弱性传导链，一次组件异常、一条错误指令，都可能通过中心化链路引发全局故障。为了提前掌控控制面故障对业务的影响时长和严重程度，我们应定期开展演练与评估，提升业务对故障的应对能力，为`K8s`环境的稳定性和可靠性提供强有力的保障。本项目围绕上述场景提供K8s故障演练相关能力，支持节点关机、资源误删除、控制面组件（如etcd、kube-apiserver、coredns等）过载和停服等演练场景。
+类似的案例并非少数，这些风险的本质是`K8s`架构的脆弱性传导链，一次组件异常、一条错误指令，都可能通过中心化链路引发全局故障。
+
+为了提前掌控控制面故障对业务的影响时长和严重程度，我们应定期开展演练与评估，提升业务对故障的应对能力，为`K8s`环境的稳定性和可靠性提供强有力的保障。
+
+本项目围绕上述场景提供K8s故障演练相关能力，支持节点关机、资源误删除、控制面组件（如etcd、kube-apiserver、coredns等）过载和停服等演练场景，帮助你降低集群故障爆炸半径。
 
 ## 前置条件
 
@@ -80,20 +84,21 @@ kubectl delete worflow {workflow-name}
 
 ## 功能规划路线图
 
-| 支持功能                         | 优先级  | 当前状态     | 计划发布时间  |              描述             |
-|---------------------------------|--------|------------|---------------|-----------------------------|
-| apiserver高负载演练              |   -   |      完成     |      -       | 模拟kube-apiserver服务高负载   |
-| etcd高负载演练                   |   -   |      完成     |      -       | 模拟etcd服务高负载             |
-| coredns停服                     |   -   |      完成     |      -       | 模拟coredns服务中断场景        |
-| kubernetes-proxy停服            |   -   |      完成     |      -       | 模拟kubernetes-proxy服务中断场景 |
-| 资源误删除场景                    |   -   |      完成     |      -       |     模拟资源被误删除场景        |
-| kube-apiserver停服演练           |  P0   |    开发中     |  2025-06-15  | 模拟kube-apiserver服务中断场景 |
-| etcd停服演练                     | P0    |    开发中     |  2025-06-15  |      模拟etcd集群故障场景      |
-| kube-scheduler停服演练           | P0    |    开发中     |  2025-06-15  |  测试调度器故障期间的集群调度行为 |
-| kube-controller-manager停服演练  | P0    |    开发中     |  2025-06-15  |      验证控制器组件故障场景     |
-| cloud-controller-manager停服演练 | P0    |    开发中     |  2025-06-15  |      验证控制器组件故障场景     |
-| master节点停机                   | P1    |    开发中     |  2025-06-15  |       模拟master关机场景      |
-
+| 支持功能                         | 优先级  | 当前状态     | 计划发布时间  | 描述                                                |
+|------------------------------|--------|------------|---------------|---------------------------------------------------|
+| apiserver高负载演练               |   -   |      完成     |      -       | 模拟kube-apiserver服务高负载                             |
+| etcd高负载演练                    |   -   |      完成     |      -       | 模拟etcd服务高负载                                       |
+| apiserver高负载演练(增加APF策略保护）    |   -   |      完成     |      -       | 增加Expensive List APF过载保护策略，并模拟kube-apiserver服务高负载 |
+| etcd高负载演练(增加etcd过载保护策略)      |   -   |      完成     |      -       | 增加etcd过载保护策略，并模拟etcd服务高负载                         |
+| coredns停服                    |   -   |      完成     |      -       | 模拟coredns服务中断场景                                   |
+| kubernetes-proxy停服           |   -   |      完成     |      -       | 模拟kubernetes-proxy服务中断场景                          |
+| 资源误删除场景                      |  -   |    完成     |      -       | 模拟资源被误删除场景                                        |
+| kube-apiserver停服演练           |  P0   |    开发中     |  2025-06-15  | 模拟kube-apiserver服务中断场景                            |
+| etcd停服演练                     | P0    |    开发中     |  2025-06-15  | 模拟etcd集群故障场景                                      |
+| kube-scheduler停服演练           | P0    |    开发中     |  2025-06-15  | 测试调度器故障期间的集群调度行为                                  |
+| kube-controller-manager停服演练  | P0    |    开发中     |  2025-06-15  | 验证控制器组件故障场景                                       |
+| cloud-controller-manager停服演练 | P0    |    开发中     |  2025-06-15  | 验证控制器组件故障场景                                       |
+| master节点停机                   | P1    |    开发中     |  2025-06-15  | 模拟master关机场景                                      |
 
 ## 常见问题
 1. 为什么要用两个集群来执行演练测试?