New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ci: Disable wireguard in v1.13 conformance datapath #24804
ci: Disable wireguard in v1.13 conformance datapath #24804
Conversation
d6e4778
to
790faaf
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
That won't work. All those configs have KPR=strict which isn't compatible with IPsec.
I think we need to disable Transparent Encryption instead.
ci-datapath-1.13 workflow is failing in the configs with wireguard enable due to an incompatibility with the L7 proxy: `level=fatal msg="Wireguard (--enable-wireguard) is not compatible with L7 proxy (--enable-l7-proxy)" subsys=daemon` An example of that failure can be found here: https://github.com/cilium/cilium/actions/runs/4620306511/jobs/8170228050 All the workflow configs with wireguard enabled are changed to disable encryption. Signed-off-by: Fabio Falzoi <fabio.falzoi@isovalent.com>
790faaf
to
67f59ea
Compare
Thanks for the suggestion, I've changed it to disable encryption. |
I'm confused, why are we only hitting this now? Do the datapath tests make use of L7 proxy? If not, then I think it might be the better option to disable L7 instead (which is what the Cilium CLI was supposed to do for v1.13 and older). (Having said that, I'm fine with merging this as is, to unblock the v1.13 branch.) |
ci-datapath-1.13 workflow is failing in the configs with wireguard enable due to an incompatibility with the L7 proxy:
level=fatal msg="Wireguard (--enable-wireguard) is not compatible with L7 proxy (--enable-l7-proxy)" subsys=daemon
An example of that failure can be found here: https://github.com/cilium/cilium/actions/runs/4620306511/jobs/8170228050
All the workflow configs with wireguard enabled are changed to disable encryption.