Host OS Upgrading

Platform9 deploys and operates Kubernetes, the ownership and maintenance of the supporting Operating System is outside of Platform9 Management. To ensure that your clusters remain secure we recommend that the OS be patched on a regular basis following vendor specific guidelines. When an OS upgrade is invoked, it is important to ensure that the packages installed by Platform9 as part of the Cluster lifecycle are not inadvertently upgraded as this may cause an outage.

In order to update nodes that are deployed as part of a Platform9 Managed Kubernetes clusters and mitigate any impact to running workloads, the following packages should be held or version-locked as its important to not impact the underlying container runtime.

Docker-CE
Containerd.io

If these packages are not held or locked in place and are upgraded as part of an OS upgrade, your pods/containers may be evicted from the node and/or re-scheduled.

The instructions below detail how to place a Hold on each package for Platform9 supported operating systems.

Ubuntu

How to Hold packages on Ubuntu: Ubuntu – apt-mark

Bash
    
 
apt-mark hold docker-ce*apt-mark hold containerd.io
Copy

RHEL/CentOS

Yum

A guide to Restricting a Package to a Fixed Version Number with yum

Bash
    
 
yum versionlock docker-ce*yum versionlock containerd.io
Copy

DNF

How to version lock a package using DNF – versionlock Plugin

Bash
    
 
dnf versionlock add docker-ce*dnf versionlock add containerd.io
Copy

Last updated by Madhura Maskasky on Jan 22, 2022

Was this page helpful?