mirror of https://github.com/linkerd/linkerd2.git
75 lines
2.3 KiB
Go
75 lines
2.3 KiB
Go
package main
|
|
|
|
import (
|
|
"flag"
|
|
"net/http"
|
|
"os"
|
|
"os/signal"
|
|
|
|
"github.com/linkerd/linkerd2/controller/k8s"
|
|
injector "github.com/linkerd/linkerd2/controller/proxy-injector"
|
|
"github.com/linkerd/linkerd2/pkg/admin"
|
|
"github.com/linkerd/linkerd2/pkg/flags"
|
|
"github.com/linkerd/linkerd2/pkg/tls"
|
|
log "github.com/sirupsen/logrus"
|
|
)
|
|
|
|
func main() {
|
|
metricsAddr := flag.String("metrics-addr", ":9995", "address to serve scrapable metrics on")
|
|
addr := flag.String("addr", ":8443", "address to serve on")
|
|
kubeconfig := flag.String("kubeconfig", "", "path to kubeconfig")
|
|
controllerNamespace := flag.String("controller-namespace", "linkerd", "namespace in which Linkerd is installed")
|
|
webhookServiceName := flag.String("webhook-service", "linkerd-proxy-injector.linkerd.io", "name of the admission webhook")
|
|
noInitContainer := flag.Bool("no-init-container", false, "whether to use an init container or the linkerd-cni plugin")
|
|
flags.ConfigureAndParse()
|
|
|
|
stop := make(chan os.Signal, 1)
|
|
defer close(stop)
|
|
signal.Notify(stop, os.Interrupt, os.Kill)
|
|
|
|
k8sAPI, err := k8s.InitializeAPI(*kubeconfig, k8s.NS, k8s.RS)
|
|
if err != nil {
|
|
log.Fatalf("failed to initialize Kubernetes API: %s", err)
|
|
}
|
|
|
|
rootCA, err := tls.GenerateRootCAWithDefaults("Proxy Injector Mutating Webhook Admission Controller CA")
|
|
if err != nil {
|
|
log.Fatalf("failed to create root CA: %s", err)
|
|
}
|
|
|
|
webhookConfig, err := injector.NewWebhookConfig(k8sAPI, *controllerNamespace, *webhookServiceName, rootCA)
|
|
if err != nil {
|
|
log.Fatalf("failed to read the trust anchor file: %s", err)
|
|
}
|
|
|
|
mwc, err := webhookConfig.Create()
|
|
if err != nil {
|
|
log.Fatalf("failed to create the mutating webhook configurations resource: %s", err)
|
|
}
|
|
log.Infof("created mutating webhook configuration: %s", mwc.ObjectMeta.SelfLink)
|
|
|
|
s, err := injector.NewWebhookServer(k8sAPI, *addr, *controllerNamespace, *noInitContainer, rootCA)
|
|
if err != nil {
|
|
log.Fatalf("failed to initialize the webhook server: %s", err)
|
|
}
|
|
|
|
k8sAPI.Sync()
|
|
|
|
go func() {
|
|
log.Infof("listening at %s", *addr)
|
|
if err := s.ListenAndServeTLS("", ""); err != nil {
|
|
if err == http.ErrServerClosed {
|
|
return
|
|
}
|
|
log.Fatal(err)
|
|
}
|
|
}()
|
|
go admin.StartServer(*metricsAddr)
|
|
|
|
<-stop
|
|
log.Info("shutting down webhook server")
|
|
if err := s.Shutdown(); err != nil {
|
|
log.Error(err)
|
|
}
|
|
}
|