Skip to content

feat: fully Kubernetes native #160

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
jgkawell wants to merge 79 commits into
base: main
Choose a base branch
from
Draft

feat: fully Kubernetes native #160

jgkawell wants to merge 79 commits into from
+15,361 −30,405

Conversation

@jgkawell
Copy link
Member

@jgkawell jgkawell commented Sep 28, 2025
edited
Loading

This PR is a big rework to how Home Cloud functions internally. The initial idea was simply to have the operator handle the installation of Home Cloud system components, but the idea expanded over time to push all Home Cloud components into Kubernetes.

Previously, the daemon ran on the host and handled the complicated networking features like mDNS and Wireguard through NixOS config. With the new pattern of running all components in Kubernetes, we are able to move to Talos as the base OS for Home Cloud instead of NixOS. NixOS is excellent, but the lack of an network-addressable API was a real problem for our specific use case.

This PR brings all of the above ideas together. It includes:

  • Extension of the operator to handle installation, upgrades, and uninstalls of all Home Cloud components
    • This includes installation of Gateway API and Istio
    • This also includes an API for the user to selectively disable certain components as well as set specific images/tags for each component
  • The addition of two new services:
    • tunnel - manages Wireguard servers and peers using a CRD
    • mdns - manages mDNS registration by watching for annotations on Services
  • A whole new update system based on a manifest.yaml file included in GitHub releases instead of just always pulling latest published images
  • WIP: a rework to the daemon service to run in Kubernetes and interact with the Talos API

@jgkawell
wip: daemon -> k8s pod
2bca350
@jgkawell
wip: working on operator install
1d59446
@jgkawell
wip: more work on install (gateway api, draft and home cloud server)
3394775
@jgkawell
some fixes - mostly working install/uninstall
e8ee401
@jgkawell
fix nix system bin
723e05c
@jgkawell
fix blueprint volume source
c6c2934
@jgkawell
expanded install spec for basic customization
b087598
@jgkawell
support helm value overrides
563e903
@jgkawell
added update logic
59d8c51
@jgkawell
added limits to sample install
68208b1
@jgkawell
working on talos install
ff36fc9
@jgkawell
adding back the mDNS service for Talos compat
663f79b
@jgkawell
patching android support for mDNS
d9545e0
@jgkawell
wip: removing nixos daemon logic
f665ab1
@jgkawell
read mdns values from service annotations
945bea7
@jgkawell
start work on daemon installation
6a2ae4b
@jgkawell
remove mdns configuration from operator (happens with service labels …
4237920 
…now)
@jgkawell
reworked daemon<->server from stream to unary
71b9b5d
@jgkawell
beginning talos support for operator
1023243
@jgkawell
beginning work on making daemon runnable in k8s (and removing all the…
53152ac 
… old nixos stuff)
@jgkawell
rework server to use new unary daemon api
c3bcd8b
@jgkawell
better kube client setup
1d2660b
@jgkawell
added operator and mdns to debugger
a6dc002
@jgkawell
started on locator docs
98c697e
@jgkawell
updated .gitignore
c1146dd
@jgkawell
scaffolding wireguard service
0947573
@jgkawell
added todo
9cb9498
@jgkawell
update secrets to stop using deprecated "golang.org/x/exp/rand"
6e7b887
@jgkawell
update operator to use draft chassis
09ca2a7
@jgkawell
add health/ready checks
2b234da
@jgkawell jgkawell changed the title feat: operator-based install feat: fully-Kubernetes native Jan 23, 2026
@jgkawell jgkawell changed the title feat: fully-Kubernetes native feat: fully Kubernetes native Jan 23, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jgkawell