12 KiB
Conduit Development Guide
🎈 Welcome to the Conduit development guide! 👋
This document will help you build and run Conduit from source. More information about testing from source can be found in the TEST.md guide.
Table of contents
Repo layout
Conduit is primarily written in Rust, Go, and React. At its core is a high-performance data plane written in Rust. The control plane components are written in Go. The dashboard UI is a React application.
Control Plane (Go/React)
cli: Command-lineconduitutility, view and drive the control plane.controllerdestination: Serves service discovery information to theproxy.proxy-api: Accepts requests fromproxyinstances and forwards those requests to the appropriate controller service.public-api: Accepts requests from API clients such ascliandweb, provides access to and control of the conduit service mesh.tap: Provides a live pipeline of requests.
proxy-init: Adds a Kubernetes pod to join the Conduit Service Mesh.web: Provides a UI dashboard to view and drive the control plane. This component is written in Go and React.
Data Plane (Rust)
proxy: High-performance data plane, injected as a sidecar with every service.
Components
conduit_components digraph G { rankdir=LR;
node [style=filled, shape=rect];
"cli" [color=lightblue];
"destination" [color=lightblue];
"proxy-api" [color=lightblue];
"public-api" [color=lightblue];
"tap" [color=lightblue];
"web" [color=lightblue];
"proxy" [color=orange];
"cli" -> "public-api";
"web" -> "public-api";
"web" -> "grafana";
"public-api" -> "tap";
"public-api" -> "kubernetes api";
"public-api" -> "prometheus";
"tap" -> "kubernetes api";
"tap" -> "proxy";
"proxy" -> "proxy-api";
"proxy-api" -> "destination";
"destination" -> "kubernetes api";
"grafana" -> "prometheus";
"prometheus" -> "kubernetes api";
"prometheus" -> "proxy";
} conduit_components
Development configurations
Depending on use case, there are several configurations with which to develop and run Conduit:
- Comprehensive: Integrated configuration using Minikube, most closely matches release.
- Web: Development of the Conduit Dashboard.
- Rust: Standalone development of the Rust
proxy.
Comprehensive
This configuration builds all Conduit components in Docker images, and deploys them onto Minikube. This setup most closely parallels our recommended production installation, documented at https://conduit.io/getting-started/.
These commands assume a working Minikube environment.
# build all docker images, using minikube as our docker repo
DOCKER_TRACE=1 bin/mkube bin/docker-build
# install conduit
bin/conduit install | kubectl apply -f -
# verify cli and server versions
bin/conduit version
# validate installation
kubectl --namespace=conduit get all
bin/conduit check --expected-version $(bin/root-tag)
# view conduit dashboard
bin/conduit dashboard
# install the demo app
curl https://raw.githubusercontent.com/linkerd/linkerd2-examples/master/emojivoto/emojivoto.yml | bin/conduit inject - | kubectl apply -f -
# view demo app
minikube -n emojivoto service web-svc --url
# view details per deployment
bin/conduit -n emojivoto stat deployments
# view a live pipeline of requests
bin/conduit -n emojivoto tap deploy voting
A note about Go run
Our instructions use a bin/go-run script in lieu go run.
This is a convenience script that leverages caching via go build to make your
build/run/debug loop faster.
In general, replace commands like this:
go run cli/main.go
with this:
bin/go-run cli
You may also leverage go-run to execute our conduit cli command. While in a
release context you may run:
conduit check
In development you can run:
bin/go-run cli check
Building the CLI for development
When Conduit's CLI is built using bin/docker-build it always creates binaries
for all three platforms. For local development and a faster edit-build-test
cycle you might want to avoid that. For those situations you can use the
bin/fast-build script, which builds the CLI using the local Go toolchain
outside of Docker.
bin/fast-build
Running the control plane for development
Conduit's control plane is composed of several Go microservices. You can run these components in a Kubernetes (or Minikube) cluster, or even locally.
To run an individual component locally, you can use the go-run command, and
pass in valid Kubernetes credentials via the -kubeconfig flag. For instance,
to run the destination service locally, run:
bin/go-run controller/cmd/destination -kubeconfig ~/.kube/config -log-level debug
You can send test requests to the destination service using the
destination-client in the controller/script directory. For instance:
bin/go-run controller/script/destination-client -path hello.default.svc.cluster.local:80
Web
This is a React app fronting a Go process. It uses webpack to bundle assets, and postcss to transform css.
These commands assume working Go and Yarn environments.
First time setup
Install Yarn and use it to install dependencies:
brew install yarn
bin/web setup
Run web standalone
bin/web run
The web server will be running on localhost:8084.
Webpack dev server
To develop with a webpack dev server, run:
bin/web dev
Note: you'll want to install conduit on a Kubernetes cluster first.
To add a JS dependency:
cd web/app
yarn add [dep]
Rust
These commands assume a working Rust environment.
Note that we only support the most recent stable version of Rust.
To build and run the Rust proxy:
cargo build -p conduit-proxy
LINKERD2_PROXY_LOG=trace \
LINKERD2_PROXY_PUBLIC_LISTENER=tcp://0.0.0.0:5432 \
LINKERD2_PROXY_PRIVATE_FORWARD=tcp://127.0.0.1:1234 \
LINKERD2_PROXY_CONTROL_URL=tcp://127.0.0.1:8086 \
target/debug/conduit-proxy
To connect to a live proxy-api at localhost:8086:
bin/go-run controller/cmd/proxy-api
Docker
The bin/docker-build-proxy script builds the proxy:
DOCKER_TRACE=1 PROXY_UNOPTIMIZED=1 bin/docker-build-proxy
It supports two environment variables:
PROXY_UNOPTIMIZED-- When set and non-empty, produces unoptimized build artifacts, which reduces build times at the expense of runtime performance. Changing this will likely invalidate a substantial portion of Docker's cache.
To run cargo test inside of the latest proxy Docker image, run:
bin/docker-test-proxy
This is primarily useful for testing Linux-only proxy features when developing on another operating system.
Dependencies
Updating protobuf dependencies
If you make Protobuf changes, run:
bin/dep ensure
bin/protoc-go.sh
Updating Docker dependencies
The Rust proxy and Go Docker images rely on base dependency images with hard-coded SHA's:
gcr.io/linkerd-io/go-deps depends on
bin/update-go-deps-shas must be run when go dependencies change.
Build Architecture
build_architecture digraph G { rankdir=LR;
"Dockerfile-base" [color=lightblue, style=filled, shape=rect];
"Dockerfile-go-deps" [color=lightblue, style=filled, shape=rect];
"controller/Dockerfile" [color=lightblue, style=filled, shape=rect];
"cli/Dockerfile-bin" [color=lightblue, style=filled, shape=rect];
"grafana/Dockerfile" [color=lightblue, style=filled, shape=rect];
"proxy/Dockerfile" [color=lightblue, style=filled, shape=rect];
"proxy-init/Dockerfile" [color=lightblue, style=filled, shape=rect];
"proxy-init/integration_test/iptables/Dockerfile-tester" [color=lightblue, style=filled, shape=rect];
"web/Dockerfile" [color=lightblue, style=filled, shape=rect];
"proxy-init/integration_test/run_tests.sh" -> "proxy-init/integration_test/iptables/Dockerfile-tester";
"_docker.sh" -> "_log.sh";
"_gcp.sh";
"_log.sh";
"_tag.sh";
"conduit" -> "docker-build-cli-bin";
"dep";
"docker-build" -> "docker-build-cli-bin";
"docker-build" -> "docker-build-controller";
"docker-build" -> "docker-build-grafana";
"docker-build" -> "docker-build-proxy";
"docker-build" -> "docker-build-proxy-init";
"docker-build" -> "docker-build-web";
"docker-build-base" -> "_docker.sh";
"docker-build-base" -> "Dockerfile-base";
"docker-build-cli-bin" -> "_docker.sh";
"docker-build-cli-bin" -> "_tag.sh";
"docker-build-cli-bin" -> "docker-build-base";
"docker-build-cli-bin" -> "docker-build-go-deps";
"docker-build-cli-bin" -> "cli/Dockerfile-bin";
"docker-build-controller" -> "_docker.sh";
"docker-build-controller" -> "_tag.sh";
"docker-build-controller" -> "docker-build-base";
"docker-build-controller" -> "docker-build-go-deps";
"docker-build-controller" -> "controller/Dockerfile";
"docker-build-go-deps" -> "_docker.sh";
"docker-build-go-deps" -> "_tag.sh";
"docker-build-go-deps" -> "Dockerfile-go-deps";
"docker-build-grafana" -> "_docker.sh";
"docker-build-grafana" -> "_tag.sh";
"docker-build-grafana" -> "grafana/Dockerfile";
"docker-build-proxy" -> "_docker.sh";
"docker-build-proxy" -> "_tag.sh";
"docker-build-proxy" -> "proxy/Dockerfile";
"docker-build-proxy-init" -> "_docker.sh";
"docker-build-proxy-init" -> "_tag.sh";
"docker-build-proxy-init" -> "docker-build-base";
"docker-build-proxy-init" -> "docker-build-go-deps";
"docker-build-proxy-init" -> "proxy-init/Dockerfile";
"docker-build-web" -> "_docker.sh";
"docker-build-web" -> "_tag.sh";
"docker-build-web" -> "docker-build-base";
"docker-build-web" -> "docker-build-go-deps";
"docker-build-web" -> "web/Dockerfile";
"docker-images" -> "_docker.sh";
"docker-images" -> "_tag.sh";
"docker-pull" -> "_docker.sh";
"docker-pull-deps" -> "_docker.sh";
"docker-pull-deps" -> "_tag.sh";
"docker-push" -> "_docker.sh";
"docker-push-deps" -> "_docker.sh";
"docker-push-deps" -> "_tag.sh";
"docker-retag-all" -> "_docker.sh";
"go-run" -> ".gorun";
"go-run" -> "root-tag";
"minikube-start-hyperv.bat";
"mkube";
"protoc" -> ".protoc";
"protoc-go.sh" -> "protoc";
"root-tag" -> "_tag.sh";
"test-cleanup";
"test-run";
".travis.yml" -> "_gcp.sh";
".travis.yml" -> "_tag.sh";
".travis.yml" -> "dep";
".travis.yml" -> "docker-build";
".travis.yml" -> "docker-pull";
".travis.yml" -> "docker-pull-deps";
".travis.yml" -> "docker-push";
".travis.yml" -> "docker-push-deps";
".travis.yml" -> "docker-retag-all";
".travis.yml" -> "protoc-go.sh";
"update-go-deps-shas" -> "_tag.sh";
"update-go-deps-shas" -> "cli/Dockerfile-bin";
"update-go-deps-shas" -> "controller/Dockerfile";
"update-go-deps-shas" -> "proxy-init/Dockerfile";
"update-go-deps-shas" -> "web/Dockerfile";
} build_architecture