mirror of https://github.com/linkerd/linkerd2.git
309e8d1210
When users use CNI, we want to ensure that network rewriting inside the pod is setup before allowing linkerd to start. When rewriting isn't happening, we want to exit with a clear error message and enough information in the container log for the administrator to either file a bug report with us or fix their configuration. This change adds a validator initContainer to all injected workloads, when linkerd is installed with "cniEnabled=false". The validator replaces the noop init container, and will prevent pods from starting up if iptables is not configured. Part of #8120 Signed-off-by: Steve Jenson <stevej@buoyant.io> |
||
|---|---|---|
| .. | ||
| cmd | ||
| flag | ||
| table | ||
| Dockerfile | ||
| main.go | ||