Posts in 2019
Building a Kubernetes Edge (Ingress) Control Plane for Envoy v2
By Daniel Bryant (Datawire), Flynn (Datawire), Richard Li (Datawire) | Tuesday, February 12, 2019 in Blog
Kubernetes has become the de facto runtime for container-based microservice applications, but this orchestration framework alone does not provide all of the infrastructure necessary for running a distributed system. Microservices typically …
Runc and CVE-2019-5736
By Kubernetes Product Security Committee | Monday, February 11, 2019 in Blog
This morning a container escape vulnerability in runc was announced. We wanted to provide some guidance to Kubernetes users to ensure everyone is safe and secure. What is runc? Very briefly, runc is the low-level tool which does the heavy lifting of …
Poseidon-Firmament Scheduler – Flow Network Graph Based Scheduler
By Deepak Vij (Huawei), Shivram Shrivastava (Huawei) | Wednesday, February 06, 2019 in Blog
Introduction Cluster Management systems such as Mesos, Google Borg, Kubernetes etc. in a cloud scale datacenter environment (also termed as Datacenter-as-a-Computer or Warehouse-Scale Computing - WSC) typically manage application workloads by …
Update on Volume Snapshot Alpha for Kubernetes
By DJing Xu (Google), Xing Yang (Huawei), Saad Ali (Google) | Thursday, January 17, 2019 in Blog
Volume snapshotting support was introduced in Kubernetes v1.12 as an alpha feature. In Kubernetes v1.13, it remains an alpha feature, but a few enhancements were added and some breaking changes were made. This post summarizes the changes. Breaking …
Container Storage Interface (CSI) for Kubernetes GA
By Saad Ali (Google) | Tuesday, January 15, 2019 in Blog
The Kubernetes implementation of the Container Storage Interface (CSI) has been promoted to GA in the Kubernetes v1.13 release. Support for CSI was introduced as alpha in Kubernetes v1.9 release, and promoted to beta in the Kubernetes v1.10 release. …
APIServer dry-run and kubectl diff
By Antoine Pelisse (Google Cloud) | Monday, January 14, 2019 in Blog
Declarative configuration management, also known as configuration-as-code, is one of the key strengths of Kubernetes. It allows users to commit the desired state of the cluster, and to keep track of the different versions, improve auditing and …
Posts in 2018
Kubernetes Federation Evolution
By Irfan Ur Rehman (Huawei), Paul Morie (RedHat), Shashidhara T D (Huawei) | Wednesday, December 12, 2018 in Blog
Kubernetes provides great primitives for deploying applications to a cluster: it can be as simple as kubectl create -f app.yaml. Deploy apps across multiple clusters has never been that simple. How should app workloads be distributed? Should the app …
etcd: Current status and future roadmap
By Gyuho Lee (Amazon), Joe Betz (Google Cloud) | Tuesday, December 11, 2018 in Blog
etcd is a distributed key value store that provides a reliable way to manage the coordination state of distributed systems. etcd was first announced in June 2013 by CoreOS (part of Red Hat as of 2018). Since its adoption in Kubernetes in 2014, etcd …
New Contributor Workshop Shanghai
By Josh Berkus (Red Hat), Yang Li (The Plant), Puja Abbassi (Giant Swarm), XiangPeng Zhao (ZTE) | Wednesday, December 05, 2018 in Blog
Kubecon Shanghai New Contributor Summit attendees. Photo by Jerry Zhang We recently completed our first New Contributor Summit in China, at the first KubeCon in China. It was very exciting to see all of the Chinese and Asian developers (plus a few …
Production-Ready Kubernetes Cluster Creation with kubeadm
By Lucas Käldström (CNCF), Luc Perkins (CNCF) | Tuesday, December 04, 2018 in Blog
kubeadm is a tool that enables Kubernetes administrators to quickly and easily bootstrap minimum viable clusters that are fully compliant with Certified Kubernetes guidelines. It's been under active development by SIG Cluster Lifecycle since 2016 and …