search

aurae-runtime / architecture

Design Docs and Decisions. Where the magic happens.
Apache License 2.0
18 stars 2 forks source link

Defining a single fault domain #13

Open bpmooch opened 1 year ago

bpmooch commented 1 year ago

From GLOSSARY.md:

Aurae Node is the set of services that provide an Aurae service that exist as a single fault domain

I take the ambiguity of "single fault domain" as a conviction for auraed to work well in multiple production scenarios:

  1. Bare metal / VM pid 1
  2. Container
  3. Bare-metal / VM integrates w/ systemd to replace systemd-nspawn

Is this a correct read on the definition of an Aurae Node?

krisnova commented 1 year ago

CC @taniwha3 who has a better grasp here

This language should also define "tenant" as it is referred to by the expression "multi tenant".

I believe a fault domain is different than an isolation/trust boundary.

A namespace should be a trust zone or isolation zone (or both?).

A rack in a data center with unique power is a fault domain.

krisnova commented 1 year ago

Feel free to PR a change/update @bpmooch if you are interested in taking a stab at capturing all this.