-
Notifications
You must be signed in to change notification settings - Fork 25
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Sandbox] Kmesh #108
Comments
@hzxuzhonghu please coordinate a project presentation with TAG Network |
Sure, we plan to present at next Network meeting |
@nicholasjackson @leecalcote @Zachbutcher Does the TAG have a recommendation regarding Kmesh? Was the project able to present? @hzxuzhonghu (CC @linsun ) Can you provide any additional clarification on how this project compares with Istio's Ambient Mesh? |
FYI, we had a discussion in Istio community meeting yesterday, and we don't intend to host any piece of kmesh in Istio. I'll let Zhonghu to comment on how it differs from Istio in details. |
@TheFoxAtWork I drafted a picture on the traffic flow try to clarify we can see that kmesh support two working modes:
And for the istio ambient:
So the conclusion should be clear now:
|
Apologies, I have had flu for the last week, I will update the DTR document as soon as I am back at work. Until that is done, TagNetwork believe that Kmesh takes an innovative and unique approach to providing a dataplane for Istio. One which according to the published figures, delivers increased speed and efficiency for the end user. Assuming all the other requirements around governance and project maintenance are satisfied we believe it is a great benefit to the community and should be moved forward to TOC vote. |
Interesting technologies to do service mesh, which should render enhanced network performance. A good addition to CNCF service mesh. |
TAG Contributor strategy has reviewed this project and found the following:
This review is for the TOC’s information only. Sandbox projects are not required to have full governance or contributor documentation. |
Project has been given the okay to move to a vote in today's sandbox review |
Vote created@mrbobbytables has called for a vote on The members of the following teams have binding votes:
Non-binding votes are also appreciated as a sign of support! How to voteYou can cast your vote by reacting to
Please note that voting for multiple options is not allowed and those votes won't be counted. The vote will be open for |
/check-vote |
Vote statusSo far Summary
Binding votes (6)
|
User | Vote | Timestamp |
---|---|---|
hzxuzhonghu | In favor | 2024-10-09 7:51:35.0 +00:00:00 |
I will be abstaining due to a conflict of interest, thanks |
/check-vote |
Vote statusSo far Summary
Binding votes (9)
|
User | Vote | Timestamp |
---|---|---|
hzxuzhonghu | In favor | 2024-10-09 7:51:35.0 +00:00:00 |
LiZhenCheng9527 | In favor | 2024-10-10 1:39:19.0 +00:00:00 |
Vote closedThe vote passed! 🎉
Summary
Binding votes (9)
|
User | Vote | Timestamp |
---|---|---|
@hzxuzhonghu | In favor | 2024-10-09 7:51:35.0 +00:00:00 |
@LiZhenCheng9527 | In favor | 2024-10-10 1:39:19.0 +00:00:00 |
Congrats on being accepted into the CNCF Sandbox! If you have any questions or concerns, please don't hesitate to reach out! |
With the onboarding issue created, we can go ahead and close this out. :) |
Application contact emails
[email protected], [email protected]
Project Summary
Kmesh is a service mesh dataplane which manages service to service communication transparently based on eBPF and programmable kernel.
Project Description
Kmesh is a cloud-native high-performance and low overhead service mesh data plane based on eBPF and programmable kernel. It brings advanced traffic management, security and monitoring to service communications. It is natively sidecarless, zero intrusion and without adding any resource cost to application container.
Kmesh leverages eBPF technology to perform traffic management in kernel mode, ensuring that traffic management operates seamlessly with traffic flows. By preventing service connections from being cut off, Kmesh largely reduces the number of connections along the traffic path and minimizes application access delays.
Org repo URL (provide if all repos under the org are in scope of the application)
https://github.com/kmesh-net
Project repo URL in scope of application
https://github.com/kmesh-net/kmesh
Additional repos in scope of the application
No response
Website URL
https://kmesh.net
Roadmap
https://github.com/kmesh-net/community/blob/main/roadmap.md
Roadmap context
No response
Contributing Guide
https://github.com/kmesh-net/kmesh/blob/main/CONTRIBUTING.md
Code of Conduct (CoC)
https://github.com/kmesh-net/kmesh/blob/main/CODE_OF_CONDUCT.md
Adopters
No response
Contributing or Sponsoring Org
No response
Maintainers file
https://github.com/kmesh-net/kmesh/blob/main/OWNERS
IP Policy
Trademark and accounts
Why CNCF?
To grow sustainably as an open source project, Kmesh needs contunuous contibutions and innovations from its community, the CNCF is at the forefront of fostering innovation and collaboration within the open-source community. Becoming a CNCF donor enhances KMesh's visibility and credibility within the cloud-native landscape. It demonstrates KMesh's commitment to the open-source community and its dedication to supporting industry standards and best practices. This can lead to increased trust and recognition from peers, partners, and customers, positioning KMesh as a leader in the cloud-native space.
Benefit to the Landscape
It is widely accepted that sidecar traffic management mode can result in high resource overhead and great latency. And the underlying connection termination and initiation can increase connection numbers between two service instances and also cause mismatch on connection level settings like timeout. Kmesh is natively sidecarless, it makes use of ebpf and programmable kernel technology to get rid of the sidecar's defects. In doing so, Kmesh gains a substantial industry advantage over resource overhead and latency.
Kmesh also provides an slicing mode that enhances L7 traffic management by separating L4 and L7. For L4 taffic, we make use of ebpf to do simple redirecting and loadbalancing, and for L7 we automatically make use of waypoint, a userspace proxy based on istio proxy.
The greatest benefit with kmesh is that during upgrade, we donot influence application's traffic.
Cloud Native 'Fit'
Kmesh natively runns on kubernets, and manage traffic from or to pods. As a service mesh data plane, it interates with istio and subscribes xDS configurations from istiod. Kmesh has two important components, kmesh daemon that runns on each node and is responsible of subscribing xDS configuration and managing ebpf prog. The other one is ebpf progs, which works on cgroups, sockops and other hook points.
Cloud Native 'Integration'
Istio, Envoy, Gateway APIs, Prometheus
Kmesh makes use of istio as its controlplane, so it natively supports Gateway APIS. The Kmesh waypoint component adds an additional filter to istio-prxy and envoy, so the advanced L7 protocol management is mosytly exploiting envoy capabilities.
Cloud Native Overlap
No response
Similar projects
Linkerd, Istio and Cilium ServiceMesh
But Kmesh provides a totally different dataplane architecture, and in future we may provide its own control plane for simplicity.
Landscape
Yes, here it is
Business Product or Service to Project separation
N/A
Project presentations
No response
Project champions
No response
Additional information
No response
The text was updated successfully, but these errors were encountered: