The goal is to provide a kubernetes service suitable to manage a desktop workstation:
- Minimal services to be started early.
- Basic auth enough to let a container starts more containers.
This process is pretty much an experimental work in progress, use at your own risk.
Note that running the display server in a kubernetes pod presently does not work rootless. It seems like systemd-login does some magic to authorize this, and it is not clear if and how that can be forwarded to the kubelet context.
- On a fedora-36 system, install the pre-built package:
sudo dnf install -y $SILVERKUBE_RPM_RELEASE_URL- Or build the package locally using:
python3 build.py- Or build the package inside a container:
mkdir -p ~/.cache/silverkube
podman run --rm -it \
-v $HOME/.cache/silverkube:/root/.cache/silverkube:Z \
-v $(pwd):/data:Z --workdir /data \
registry.fedoraproject.org/fedora:33 python3 build.py-
Make sure the hostname resolve to localhost, and run
systemctl stop systemd-resolved -
Start the services rootless
$ silverkube start
[...]
up!
alias kubectl='/home/fedora/.local/bin/rootless-join kubectl --kubeconfig /home/fedora/.config/silverkube/kubeconfig'- Or start the services as root
$ sudo silverkube start
[...]
up!
alias kubectl='kubectl --kubeconfig /etc/silverkube/kubeconfig'- Stop the services using
stopargument