Ubicloud: Open-source AWS-like cloud for bare-metal

Ubicloud offers an open‑source, bare‑metal IaaS as an alternative to public clouds, emphasizing cost control and auditability; it suits projects with operational expertise but currently has limited community size and non‑replicated storage.

GitHub ubicloud/ubicloud Updated 2025-09-09 Branch main Stars 11.3K Forks 506

Ruby Go Bare-metal IaaS Block storage (SPDK) IPsec networking ABAC authorization nftables firewall AGPLv3

💡 Deep Analysis

What specific infrastructure problems does Ubicloud solve? How does it implement the core capability of "cloudifying" hosts in bare-metal environments?

Core Analysis ¶

Project Positioning: Ubicloud focuses on the core problem of “cloudifying” bare-metal hosts—providing essential IaaS capabilities (compute, virtual networking, block storage, firewall/load balancing, IAM) as an open-source, self-hostable or managed alternative to public clouds.

Technical Features ¶

Control/Data Plane Separation: A Ruby + PostgreSQL control plane handles API, policy, and auditing; the data plane uses Cloud Hypervisor, Linux namespaces, IPsec, nftables, and SPDK on bare metal to implement resources.
Composition of Mature Components: Rather than reinventing, it leverages Cloud Hypervisor for lightweight VMs, SPDK for high-performance block IO, and nftables for firewall/load balancing.
Multi-tenancy & Fine-grained Auth: Uses ABAC to support attribute-based, flexible authorization models.

Usage Recommendations ¶

Validate with Elastic Workloads: Start with CI/CD, batch jobs, or inference workloads to assess behavior.
Prefer Managed Console for Onboarding: If lacking ops maturity, use the managed control plane to reduce operational risk.
Storage Strategy: Because block storage is currently non-replicated, implement off-platform backups or replication before using it for critical data.

Caveats ¶

Non-replicated Block Storage: Not suitable as the sole storage for critical databases without extra backup strategies.
Operational Complexity: Self-hosting requires knowledge of SPDK, VMMs, IPv6/IPsec networking, and SSH automation.

Important Notice: Ubicloud is most suitable for teams seeking cost control and auditability, and for running elastic or non-critical data workloads on bare metal.

Summary: Ubicloud assembles proven open-source primitives to provide a lightweight, auditable bare-metal cloud layer. It offers control and cost advantages but requires careful storage and ops design for production-critical uses.

91.0%

What are the primary network and IPv6-related challenges when deploying Ubicloud? How should you plan networking to avoid common failures?

Core Analysis ¶

Issue Core: Ubicloud assigns IPv6 by default and uses IPsec for encryption—this is a primary source of deployment network complexity for bare-metal or colocated environments.

Technical Analysis ¶

IPv6 dependency: If the host network or ISP lacks native IPv6 support, you must configure tunnel/VPN (e.g., Hurricane Electric, Mullvad) or add an IPv4 address pool for control plane/VMs.
IPsec overhead: IPsec adds CPU overhead, connection management complexity, and potential MTU/fragmentation issues, which affect throughput and latency.
Rules & isolation: nftables + namespaces provide tenant isolation and load balancing, but rule complexity grows with scale.

Practical Recommendations ¶

Network pre-evaluation: Confirm provider IPv6 support, IPsec passthrough policies, and public IP allocation procedures.
Prepare tunnel options: If no IPv6, set up HE tunnel or VPN and test connectivity and latency impact.
MTU & fragmentation testing: IPsec often reduces MTU—test large packets and tune PMTU settings.
Rule management: Template and version-control nftables configs and automate audits to avoid conflicts and performance regressions.

Caveats ¶

Provider differences: Demo scripts target providers like Hetzner; migrating to other providers may require adapting cloudify scripts.
Performance monitoring: Continuously monitor IPsec CPU usage, latency, and packet loss as inputs to capacity planning.

Important Notice: Deployments without native IPv6 support will face longer rollout times and higher ops costs. Validate network connectivity and performance early in PoC.

Summary: Prioritize network and IPv6/tunnel evaluation before deployment; combine it with automated rule management and monitoring to reduce rollout risk.

90.0%

What are the performance advantages and limitations of Ubicloud's virtualization and storage (Cloud Hypervisor + SPDK)? How should one safely use the current non-replicated block storage in production?

Core Analysis ¶

Issue Core: Ubicloud uses Cloud Hypervisor (lightweight VMM) and SPDK (user-space high-performance I/O) in the data plane. While this yields performance benefits, block storage is currently non-replicated, so safe production use requires care.

Technical Analysis ¶

Performance Advantages:
Cloud Hypervisor reduces virtualization overhead and improves VM start-up and density.
SPDK bypasses the kernel I/O path, reducing latency and boosting throughput—especially for NVMe/high-concurrency workloads.
Operational Complexity: SPDK is sensitive to hardware, drivers, and NUMA/CPU affinity and requires careful tuning; Cloud Hypervisor also demands hardware compatibility.
Durability Risk: Non-replicated block storage means a single disk or host failure can cause data loss—unsuitable as the sole store for critical data.

Practical Recommendations ¶

Use Cases: Target SPDK-backed storage for short-lived or reconstructable data (CI artifacts, inference caches, batch intermediate results).
Protect Critical Data: For production databases, implement:
- application-level replication (DB master/replica),
- off-platform snapshots/backups,
- or place critical DBs on external/managed replicated storage.
Ops Readiness: Maintain a hardware compatibility matrix, set up NUMA/CPU pinning, manage drivers/firmware, and automate health checks and disk replacement.

Caveats ¶

Do not rely on the non-replicated block store as the sole durable store—single-host failures can be catastrophic.
SPDK increases ops complexity and requires experienced system tuning and monitoring.

Important Notice: If you need high I/O performance and can accept reconstructable data semantics, the Cloud Hypervisor + SPDK stack is compelling; for critical persistent data, add replication or use managed replicated services.

Summary: High performance with durability caveats—use for high-throughput or ephemeral workloads and protect critical data via replication/backup.

89.0%

How does Ubicloud support multi-tenant security isolation? What are the practical effects and boundaries of using ABAC?

Core Analysis ¶

Issue Core: Ubicloud combines ABAC (attribute-based access control) with Linux primitives (namespaces, nftables, IPsec) to implement multi-tenant isolation. The crux is ABAC’s expressiveness and the practical boundaries of OS-level isolation.

Technical Analysis ¶

ABAC Benefits: Allows dynamic authorization based on attributes (tenant ID, resource tags, time, environment), which fits complex multi-dimensional tenancy policies.
Isolation Mechanisms: Uses Linux namespaces for process/network boundaries, nftables for traffic filtering/load balancing, and IPsec for link encryption.
Boundaries & Risks: ABAC depends on trusted attribute sources and correct policy definitions; polluted attributes or miswritten policies can lead to privilege escalation. OS-level isolation can be undermined by kernel vulnerabilities or incorrect capability settings.

Practical Recommendations ¶

Ensure trusted attributes: Source attributes from the control plane or an identity provider—not client-supplied values.
Least privilege & policy audits: Enforce least-privilege, policy review/rollback workflows, and write policy changes and access events to audit logs.
Verification & hardening: Conduct periodic escape/penetration tests, keep kernels patched, and automate vulnerability management.

Caveats ¶

Policy complexity: ABAC’s flexibility increases management overhead—use templates and tests to cover common authorization paths.
Underlying security matters: ABAC controls are only as strong as the underlying kernel and network rule correctness.

Important Notice: ABAC provides fine-grained control but not automatic security. Trusted attribute sources, strict policy governance, and continuous validation are required.

Summary: Ubicloud provides a powerful multi-tenant stack (ABAC + Linux primitives), but actual security depends heavily on implementation rigor and operational discipline.

88.0%

Why is Ruby + PostgreSQL chosen for the control plane? What implications does this choice have for maintainability and scalability?

Core Analysis ¶

Issue Core: Ubicloud’s control plane uses Ruby (Roda + Sequel + Rodauth) with PostgreSQL. This choice balances rapid development, secure authentication, and transactional consistency. Understanding its maintainability and scalability implications is crucial for self-hosting.

Technical Analysis ¶

Development Velocity: Ruby’s expressiveness and light frameworks (Roda) speed up API, auth, and ops workflow development.
Data Consistency & Auditing: Postgres provides ACID guarantees and rich query/index capabilities suitable for storing ABAC policies and audit logs.
Operational Considerations: Ruby’s ecosystem has fewer cloud-native, compiled-binary distribution patterns compared to Go, though it’s favorable for teams experienced with Ruby. At high load, Postgres will require sharding/replication or caching to scale.

Practical Recommendations ¶

If you have Ruby expertise: Self-hosting the control plane allows fast customization and integration.
Design for scale early: Plan Postgres HA (replication/backup), partitioning, read/write splitting, and make the control plane stateless (multiple frontends + load balancer).
CI/CD: Use the repo’s CI and DB-migrator patterns to automate migrations and deployments.

Caveats ¶

Potential bottlenecks: Postgres single-writer patterns and Ruby process state can limit scale; plan for caching or DB scaling.
License considerations: AGPLv3 affects hosted/derivative services—perform legal review for enterprise use.

Important Notice: Ruby + Postgres is a pragmatic choice for developer productivity and data correctness, but requires proactive design for database scaling and stateless control plane to serve large multi-tenant deployments.

Summary: The stack prioritizes engineering speed and consistency. For teams with the right skills, it is maintainable and extensible, but not without deliberate infrastructure work for high-scale scenarios.

86.0%

✨ Highlights

Open-source alternative to public clouds, reduces vendor lock-in
Supports bare-metal and SPDK-accelerated block storage
Built-in ABAC authorization and namespace isolation
Small community size; limited contributors and release activity
Block storage is currently non-replicated, posing durability risk

🔧 Engineering

Provides a control plane for bare-metal cloudification, supporting VM lifecycle management and isolation
Uses Cloud Hypervisor and Linux namespaces for virtualization and isolation
Implements private networking and firewall policies using IPsec dual-stack and nftables
SPDK-based block storage enables high-performance I/O and future snapshot/replication extensions
Built-in ABAC design enables fine-grained permissions and auditability for compliance

⚠️ Risks

Only ~10 contributors; community activity and long-term maintenance are uncertain
No formal releases; release/upgrade strategy and compatibility guarantees are limited
Default block storage is non-replicated; production deployments must assess durability and backup strategies
Relies on IPv6 (or VPN/tunnel); deployment experience depends on network environment
AGPLv3 license has legal/compliance implications for closed-source hosting or proprietary extensions

👥 For who?

SMBs or teams needing to build clouds on bare-metal or third‑party bare servers
Organizations seeking cost control and auditability and willing to invest in ops/security
Users wanting to avoid cloud lock-in or meet compliance/data‑sovereignty requirements