Skip to content

Overall Roadmap

Jump to bottom
Pat Norton edited this page Feb 25, 2016 · 10 revisions

OVERALL ROADMAP

This page outlines the project-wide roadmap for Mistify and as with any roadmap is constantly evolving.

2015 (Q1 - Q3)

  • Add user namespace support into Docker (Complete)

  • Testing using zfs_allow as initial pathway for ZoL delegation (Complete)

  • Integrate Docker and Image sub-agents with image service (Complete)

  • Plan new ZFS namespaces (Complete)

  • Begin fill In / Enhance API endpoints (Complete)

  • Implement new ZFS namespaces (Complete)

  • Replace ZFS zone code with namespace checks (kernel) (Complete)

  • Replace ZFS zone code with namespace checks (ZoL) (Complete)

  • Move to new libzfs core API (Complete pending changes to ZoL)

Remainder of 2015

  • Implement mounting of ZFS datasets to namespaces (Complete)

  • Address ZoL Container Integration Security Issues (Complete)

    • Check privileges/capabilities for non-root users (currently have full access)
    • Implement support for delegation of ZFS datasets to users/groups
    • Implement user namespace support to allow containers with remapped UID/GID ranges (including UID 0)

  • Establish easily bootable/build-able DEV instance of Mistify (Complete)

2016 Projected Goals

Remainder of Q1

Kernel

* Complete Final Enhancements of ZoL Delegation
* Container Security
  * Justifications for seccomp whitelisted syscalls
* Fork Linux repo and put kernel changes in fork instead of patches
* Begin more deliberate interaction with Linux community
* Attempt initial upstream of Linux kernel modifications for Delegation

System Level

* Complete re-architecture of agent level to task based system
* Implement new tasks on top of new architecture
* Distribute a container for building Mistify
* Transition from etcd to consul

Q2 - Q3

Kernel

* Tracinig (EBPF)
* Hire additional kernel dev

System Level

* Convert node layer to newly architected task system
* Create working implementation of coordinator layer
* Create demo products for controller layer (Image service, “container runner”)
* Improve upon container build
* Convert node layer to newly architected task system
* Move off of docker to task level process management
* Ultimately have something consumable by the community
* Improved documentation

General

* Complete initial website for Mistify
Clone this wiki locally