Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Kubernetes - The Universal Control Plane

Nabarun Pal
December 08, 2023
30

Kubernetes - The Universal Control Plane

KubeDay India 2023

Nabarun Pal

December 08, 2023
Tweet

Transcript

  1. $ whoami • Kubernetes Maintainer and Steering Committee member •

    Chair of Kubernetes Special Interest Group Contributor Experience • Work on Auth, API Machinery, Release and ContribEx • CNCF Ambassador • Building Kubernetes based SaaS control planes for Tanzu at Broadcom @theonlynabarun
  2. 🚨🚨🚨 The legacy Linux package repositories for Kubernetes are going

    away in January 2024! https://kubernetes.io/blog/2023/08/31/legacy-package-repository-deprecation/ @theonlynabarun
  3. What do you end up with? @theonlynabarun Declarative configuration Single

    Source of Truth Extensibility Unification Automation
  4. What do you end up with? @theonlynabarun Declarative configuration Single

    Source of Truth Extensibility Unification Automation Separation
  5. A working kube-based control plane is more than just an

    apiserver component built on k/apiserver. It includes standard resources (depending on context namespaces, CRDs, RBAC, secrets, configmaps), and standard controllers (think of garbage collection, namespace deletion, etc.). kube-apiserver today is a bundle of those resources with container orchestration, kube-controller-manager equally for the corresponding controllers. Separating the generic parts from container orchestration will allow new use-cases building upon k/apimachinery and k/apiserver, while keeping a unified codebase and ecosystem, and by improving the factoring of kube-apiserver for easier maintenance due to less complexity by clear layering. @theonlynabarun https://github.com/kubernetes/enhancements/tree/master/keps/sig-api-machinery/4080-generic-controlplane
  6. What’s in and What’s out @theonlynabarun Bundled • CRDs •

    Namespaces Optional • Secrets • Configmaps • RBAC • Service accounts • Admission webhooks + policies • Quota • Aggregation, APIServices