linkerd
/
linkerd2
mirror of https://github.com/linkerd/linkerd2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
linkerd2/pkg/charts/values.go

249 lines
6.3 KiB
Go
Raw Blame History

package charts
import (
"fmt"
"time"
"github.com/imdario/mergo"
"github.com/linkerd/linkerd2/pkg/k8s"
"k8s.io/helm/pkg/chartutil"
"sigs.k8s.io/yaml"
)
const (
helmDefaultChartDir = "linkerd2"
helmDefaultHAValuesFile = "values-ha.yaml"
)
type (
// Values contains the top-level elements in the Helm charts
Values struct {
Stage string
Namespace string
ClusterDomain string
ControllerImage string
ControllerImageVersion string
WebImage string
PrometheusImage string
GrafanaImage string
ImagePullPolicy string
UUID string
CliVersion string
ControllerReplicas uint
ControllerLogLevel string
PrometheusLogLevel string
ControllerComponentLabel string
ControllerNamespaceLabel string
CreatedByAnnotation string
ProxyContainerName string
ProxyInjectAnnotation string
ProxyInjectDisabled string
LinkerdNamespaceLabel string
ControllerUID int64
EnableH2Upgrade bool
EnablePodAntiAffinity bool
HighAvailability bool
NoInitContainer bool
WebhookFailurePolicy string
OmitWebhookSideEffects bool
RestrictDashboardPrivileges bool
HeartbeatSchedule string
Configs ConfigJSONs
Identity *Identity
ProxyInjector *ProxyInjector
ProfileValidator *ProfileValidator
Tap *Tap
Proxy *Proxy
ProxyInit *ProxyInit
DestinationResources,
GrafanaResources,
HeartbeatResources,
IdentityResources,
PrometheusResources,
ProxyInjectorResources,
PublicAPIResources,
SPValidatorResources,
TapResources,
WebResources *Resources
}
// ConfigJSONs is the JSON encoding of the Linkerd configuration
ConfigJSONs struct{ Global, Proxy, Install string }
// Proxy contains the fields to set the proxy sidecar container
Proxy struct {
Capabilities *Capabilities
Component string
DisableIdentity bool
DisableTap bool
EnableExternalProfiles bool
Image *Image
LogLevel string
SAMountPath *SAMountPath
Ports *Ports
Resources *Resources
UID int64
}
// ProxyInit contains the fields to set the proxy-init container
ProxyInit struct {
Capabilities *Capabilities
IgnoreInboundPorts string
IgnoreOutboundPorts string
Image *Image
SAMountPath *SAMountPath
Resources *Resources
}
// DebugContainer contains the fields to set the debugging sidecar
DebugContainer struct {
Image *Image
}
// Image contains the details to define a container image
Image struct {
Name string
PullPolicy string
Version string
}
// Ports contains all the port-related setups
Ports struct {
Admin int32
Control int32
Inbound int32
Outbound int32
}
// Constraints wraps the Limit and Request settings for computational resources
Constraints struct {
Limit string
Request string
}
// Capabilities contains the SecurityContext capabilities to add/drop into the injected
// containers
Capabilities struct {
Add []string
Drop []string
}
// SAMountPath contains the details for ServiceAccount volume mount
SAMountPath struct {
Name string
MountPath string
ReadOnly bool
}
// Resources represents the computational resources setup for a given container
Resources struct {
CPU Constraints
Memory Constraints
}
// Identity contains the fields to set the identity variables in the proxy
// sidecar container
Identity struct {
TrustAnchorsPEM string
TrustDomain string
Issuer *Issuer
}
// Issuer has the Helm variables of the identity issuer
Issuer struct {
ClockSkewAllowance string
IssuanceLifetime string
CrtExpiryAnnotation string
CrtExpiry time.Time
TLS *TLS
}
// ProxyInjector has all the proxy injector's Helm variables
ProxyInjector struct {
*TLS
}
// ProfileValidator has all the profile validator's Helm variables
ProfileValidator struct {
*TLS
}
// Tap has all the Tap's Helm variables
Tap struct {
*TLS
}
// TLS has a pair of PEM-encoded key and certificate variables used in the
// Helm templates
TLS struct {
KeyPEM, CrtPEM string
}
)
// NewValues returns a new instance of the Values type.
func NewValues(ha bool) (*Values, error) {
chartDir := fmt.Sprintf("%s/", helmDefaultChartDir)
v, err := readDefaults(chartDir, ha)
if err != nil {
return nil, err
}
v.CliVersion = k8s.CreatedByAnnotationValue()
v.ProfileValidator = &ProfileValidator{TLS: &TLS{}}
v.ProxyInjector = &ProxyInjector{TLS: &TLS{}}
v.ProxyContainerName = k8s.ProxyContainerName
v.Tap = &Tap{TLS: &TLS{}}
return v, nil
}
// readDefaults read all the default variables from the values.yaml file.
// chartDir is the root directory of the Helm chart where values.yaml is.
func readDefaults(chartDir string, ha bool) (*Values, error) {
valuesFiles := []*chartutil.BufferedFile{
{Name: chartutil.ValuesfileName},
}
if ha {
valuesFiles = append(valuesFiles, &chartutil.BufferedFile{
Name: helmDefaultHAValuesFile,
})
}
if err := filesReader(chartDir, valuesFiles); err != nil {
return nil, err
}
values := Values{}
for _, valuesFile := range valuesFiles {
var v Values
if err := yaml.Unmarshal(valuesFile.Data, &v); err != nil {
return nil, err
}
var err error
values, err = values.merge(v)
if err != nil {
return nil, err
}
}
return &values, nil
}
// merge merges the non-empty properties of src into v.
// A new Values instance is returned. Neither src nor v are mutated after
// calling merge.
func (v Values) merge(src Values) (Values, error) {
// By default, mergo.Merge doesn't overwrite any existing non-empty values
// in its first argument. So in HA mode, we are merging values.yaml into
// values-ha.yaml, instead of the other way round (like Helm). This ensures
// that all the HA values take precedence.
if err := mergo.Merge(&src, v); err != nil {
return Values{}, err
}
return src, nil
}
Reference in New Issue View Git Blame Copy Permalink