forked from kiali/kiali
-
Notifications
You must be signed in to change notification settings - Fork 0
/
destination_rules_checker.go
71 lines (53 loc) · 2.43 KB
/
destination_rules_checker.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
package checkers
import (
"github.com/kiali/kiali/business/checkers/destinationrules"
"github.com/kiali/kiali/kubernetes"
"github.com/kiali/kiali/models"
)
const DestinationRuleCheckerType = "destinationrule"
type DestinationRulesChecker struct {
DestinationRules []kubernetes.IstioObject
MTLSDetails kubernetes.MTLSDetails
ServiceEntries []kubernetes.IstioObject
Namespaces []models.Namespace
}
func (in DestinationRulesChecker) Check() models.IstioValidations {
validations := models.IstioValidations{}
validations = validations.MergeValidations(in.runIndividualChecks())
validations = validations.MergeValidations(in.runGroupChecks())
return validations
}
func (in DestinationRulesChecker) runGroupChecks() models.IstioValidations {
validations := models.IstioValidations{}
seHosts := kubernetes.ServiceEntryHostnames(in.ServiceEntries)
enabledDRCheckers := []GroupChecker{
destinationrules.MultiMatchChecker{Namespaces: in.Namespaces, DestinationRules: in.DestinationRules, ServiceEntries: seHosts},
destinationrules.TrafficPolicyChecker{DestinationRules: in.DestinationRules, MTLSDetails: in.MTLSDetails},
}
for _, checker := range enabledDRCheckers {
validations = validations.MergeValidations(checker.Check())
}
return validations
}
func (in DestinationRulesChecker) runIndividualChecks() models.IstioValidations {
validations := models.IstioValidations{}
for _, destinationRule := range in.DestinationRules {
validations.MergeValidations(in.runChecks(destinationRule))
}
return validations
}
func (in DestinationRulesChecker) runChecks(destinationRule kubernetes.IstioObject) models.IstioValidations {
destinationRuleName := destinationRule.GetObjectMeta().Name
key, rrValidation := EmptyValidValidation(destinationRuleName, destinationRule.GetObjectMeta().Namespace, DestinationRuleCheckerType)
enabledCheckers := []Checker{
destinationrules.MeshWideMTLSChecker{DestinationRule: destinationRule, MTLSDetails: in.MTLSDetails},
destinationrules.NamespaceWideMTLSChecker{DestinationRule: destinationRule, MTLSDetails: in.MTLSDetails},
destinationrules.DisabledNamespaceWideMTLSChecker{DestinationRule: destinationRule, MTLSDetails: in.MTLSDetails},
}
for _, checker := range enabledCheckers {
checks, validChecker := checker.Check()
rrValidation.Checks = append(rrValidation.Checks, checks...)
rrValidation.Valid = rrValidation.Valid && validChecker
}
return models.IstioValidations{key: rrValidation}
}