Simulate AWS faults
AWSChaos simulates fault scenarios on the specified AWS instance. Currently, AWSChaos supports the following fault types:
- EC2 Stop: stops the specified instance.
- EC2 Restart: restarts the specified instance.
- Detach Volume: uninstalls the storage volume from the specified instance.
Before you start
-
By default, the AWS authentication information for local code has been imported. If you have not imported the authentication, follow the steps in Prerequisite.
-
To connect to the AWS cluster easily, you can create a Kubernetes Secret file in advance to store authentication information. A
Secretfile sample is as follows:apiVersion: v1
kind: Secret
metadata:
name: cloud-key-secret-aws
namespace: default
type: Opaque
stringData:
aws_access_key_id: your-aws-access-key-id
aws_secret_access_key: your-aws-secret-access-keynamemeans the Kubernetes Secret object.namespacemeans the namespace of the Kubernetes Secret object.aws_access_key_idstores the ID of the access key to the AWS cluster.aws_secret_access_keystores the secret access key to the AWS cluster.
Simulate fault injections by kbcli
Stop
The command below injects an instance-stop fault into the specified EC2 instance so that this instance will be unavailable in 3 minutes.
kbcli fault node stop [node1] -c=aws --region=cn-northwest-1 --duration=3m
Restart
The command below injects an instance-restart fault into the specified EC2 instance so that this instance will be restarted.
kbcli fault node restart [node1] -c=aws --region=cn-northwest-1 --duration=3m
Detach volume
The command below injects a detach-volume fault into the specified EC2 instance so that this instance is detached from the specified storage volume within 1 minute.
kbcli fault node detach-volume [node1] -c=aws --region=cn-northwest-1 --duration=1m --volume-id=vol-xxx --device-name=/dev/xvdaa
You can also add multiple nodes and their volumes. For example,
kbcli fault node detach-volume [node1] [node2] -c=aws --region=cn-northwest-1 --duration=1m --volume-id=vol-xxx,vol-xxx --device-name=/dev/sda,/dev/sdb
Simulate fault injections by YAML file
This section introduces the YAML configuration file examples. You can also refer to the Chaos Mesh official docs for details.
AWS-stop example
-
Write the experiment configuration to the
aws-stop.yamlfile.In the following example, Chaos Mesh injects an
ec2-stopfault into the specified EC2 instance so that this instance will be unavailable in 3 minutes.apiVersion: chaos-mesh.org/v1alpha1
kind: AWSChaos
metadata:
creationTimestamp: null
generateName: node-chaos-
namespace: default
spec:
action: ec2-stop
awsRegion: cn-northwest-1
duration: 3m
ec2Instance: i-037b1f38debb59bd7
secretName: cloud-key-secret-aws -
Run
kubectlto start an experiment.kubectl apply -f ./aws-stop.yaml
AWS-restart example
-
Write the experiment configuration to the
aws-restart.yamlfile.In the following example, Chaos Mesh injects an
ec2-restartfault into the specified EC2 instance so that this instance will be restarted.apiVersion: chaos-mesh.org/v1alpha1
kind: AWSChaos
metadata:
creationTimestamp: null
generateName: node-chaos-
namespace: default
spec:
action: ec2-restart
awsRegion: cn-northwest-1
duration: 3m
ec2Instance: i-037b1f38debb59bd7
secretName: cloud-key-secret-aws -
Run
kubectlto start an experiment.kubectl apply -f ./aws-restart.yaml
AWS-detach-volume example
-
Write the experiment configuration to the
aws-detach-volume.yamlfile.In the following example, Chaos Mesh injects a
detach-volumefault into the two specified EC2 instance so that these two instances are detached from their own storage volume within 1 minute.apiVersion: chaos-mesh.org/v1alpha1
kind: AWSChaos
metadata:
creationTimestamp: null
generateName: node-chaos-
namespace: default
spec:
action: detach-volume
awsRegion: cn-northwest-1
deviceName: /dev/xvda
duration: 1m
ec2Instance: i-0e368667e544fa955
secretName: cloud-key-secret-aws
volumeID: vol-01b3d68c074cd93a9
status:
experiment: {}
apiVersion: chaos-mesh.org/v1alpha1
kind: AWSChaos
metadata:
creationTimestamp: null
generateName: node-chaos-
namespace: default
spec:
action: detach-volume
awsRegion: cn-northwest-1
deviceName: /dev/xvdaa
duration: 1m
ec2Instance: i-01da8eef32743b5de
secretName: cloud-key-secret-aws
volumeID: vol-0f1ecf66cb8d0328e -
Run
kubectlto start an experiment.kubectl apply -f ./aws-detach-volume.yaml
Field description
The fields in the YAML configuration file are described in the following table:
| Parameter | Type | Description | Default value | Required |
|---|---|---|---|---|
| action | string | It indicates the specific type of faults. Only ec2-stop, ec2-restart, and detach-volume are supported. | ec2-stop | Yes |
| mode | string | It specifies the mode of the experiment. The mode options include one (selecting a random Pod), all (selecting all eligible Pods), fixed (selecting a specified number of eligible Pods), fixed-percent (selecting a specified percentage of Pods from the eligible Pods), and random-max-percent (selecting the maximum percentage of Pods from the eligible Pods). | None | Yes |
| value | string | It provides parameters for the mode configuration, depending on mode.For example, when mode is set to fixed-percent, value specifies the percentage of Pods. | None | No |
| secretName | string | It specifies the name of the Kubernetes Secret that stores the AWS authentication information. | None | No |
| awsRegion | string | It specifies the AWS region. | None | Yes |
| ec2Instance | string | It specifies the ID of the EC2 instance. | None | Yes |
| volumeID | string | This is a required field when the action is detach-volume. This field specifies the EBS volume ID. | None | No |
| deviceName | string | This is a required field when the action is detach-volume. This field specifies the machine name. | None | No |
| duration | string | It specifies the duration of the experiment. | None | Yes |