This is a concept-proving codebase, a very early prototype. Code quality and architectural concerns will be improved with time.
Be warned, this codebase currently incorporates lots of hacks, and several known but unresolved issues.
Private cloud environments benefit greatly from the performance gains of bare-metal Kubernetes, but simultaneously require isolated administrative domains for individual customers (i.e. internal teams).
Operations teams need the flexibility of establishing a single, uniform platform for governing all computing resources. Application teams need the ability to tune, upgrade, and administer their own Kubernetes clusters independent of the underlying infrastructure management.
- Prove the viability of a "guest cluster" model, where Kubernetes operates within Kubernetes.
- Rely predominantly on Kubernetes primitives and its functionality, and avoid extensive reliance on intermediate virtualization layers.
Some concerns are not addressed (yet) in this model:
- Failure domains relevant to private infrastructure environments.
- Stringent isolation of virtual networks for guest clusters.
(probably lots of others... feel free to file issues.)
The following steps are intentionally separated to support phase testing. Some components will produce
make up # brings up minikube
make certs # generates keypairs for secrets
make deploy # creates inner cluster w/ secrets in host cluster
make kubeception.kubeconfig
export KUBECONFIG=$(PWD)/kubeception.kubeconfig
kubectl cluster-info # show status of inner clustermake deployment-cleanup # destroys deployments in cluster, keeps minikube cluster up
make down # destroys minikube clusterMoved to GitHub issues, actually. :)
Related Project Board.