mirror of https://github.com/k3s-io/k3s
36 lines
679 B
Go
36 lines
679 B
Go
|
package proxy
|
||
|
|
||
|
import (
|
||
|
"crypto/tls"
|
||
|
"net/http"
|
||
|
|
||
|
"github.com/pkg/errors"
|
||
|
"github.com/rancher/k3s/pkg/daemons/config"
|
||
|
"github.com/rancher/norman/pkg/proxy"
|
||
|
"github.com/sirupsen/logrus"
|
||
|
)
|
||
|
|
||
|
func Run(config *config.Node) error {
|
||
|
proxy, err := proxy.NewSimpleProxy(config.ServerAddress, config.CACerts, true)
|
||
|
if err != nil {
|
||
|
return err
|
||
|
}
|
||
|
|
||
|
listener, err := tls.Listen("tcp", config.LocalAddress, &tls.Config{
|
||
|
Certificates: []tls.Certificate{
|
||
|
*config.Certificate,
|
||
|
},
|
||
|
})
|
||
|
|
||
|
if err != nil {
|
||
|
return errors.Wrap(err, "Failed to start tls listener")
|
||
|
}
|
||
|
|
||
|
go func() {
|
||
|
err := http.Serve(listener, proxy)
|
||
|
logrus.Fatalf("TLS proxy stopped: %v", err)
|
||
|
}()
|
||
|
|
||
|
return nil
|
||
|
}
|