Hypernetes: Bringing Security and Multi-tenancy to Kubernetes
https://kubernetes.io/blog/2016/05/hypernetes-security-and-multi-tenancy-in-kubernetes/
- HyperContainer - hypervisor-based container, allows you to launch Docker images with KVM, XEN, etc
- OCI support
- HyperKernel - minimal Linux kernel inside a pod
- Pod = VM + docker image FS
- use OpenStack components
- Keystone project to manage different tenants (which has network isolation): manifest for Network, tenantID,
- Network for Namespace
Advanced Testing with Go
https://speakerdeck.com/mitchellh/advanced-testing-with-go
- Table Driven Tests
- Test Fixtures (read data from files located in prepared place)
- Golden Files (compare with “correct version”, “—update” if needed)
- Split into packages/functions. Test only exported ones
- To test network - make a real network connection (!), don’t mock
- Mock subprocesses
- Interfaces are mocking points
- We don’t use ‘fake time’ (haven’t found an effective way)
- Don’t use