-
Notifications
You must be signed in to change notification settings - Fork 2.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add encrypt-node status to cilium status #24399
Add encrypt-node status to cilium status #24399
Conversation
075d500
to
2b33698
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Overall this looks good, but some minor fixes are needed. Thanks for the submission!
2b33698
to
1b4013c
Compare
Commit e288da6f20df73e11d49b03089998529d38c84bf does not contain "Signed-off-by". Please follow instructions provided in https://docs.cilium.io/en/stable/contributing/development/contributing_guide/#developer-s-certificate-of-origin |
e288da6
to
3ab4998
Compare
Thanks Nathan |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
nit: typos
3ab4998
to
ef3d926
Compare
/test Job 'Cilium-PR-K8s-1.25-kernel-4.19' failed: Click to show.Test Name
Failure Output
If it is a flake and a GitHub issue doesn't already exist to track it, comment |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks for the PR. Unfortunately, this approach will not work. I recommend implementing the logic in the WireGuard status getter here:
cilium/pkg/wireguard/agent/agent.go
Line 567 in 02e61a1
func (a *Agent) Status(withPeers bool) (*models.WireguardStatus, error) { |
ef3d926
to
9086262
Compare
a53795e
to
4ce05db
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks! This is looking much better. There are two issues with the API definition that needs to be addressed, but the high-level approach looks good to me.
4ce05db
to
6a40980
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks! Looks good in terms of API, but local testing revealed that the formatting seem off now.
6a40980
to
57c7b62
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Awesome, thanks! One last nit, then this should be good to go.
57c7b62
to
d5d5e61
Compare
This patch adds param "NodeEncryption" to the cilium status $ cilium status [...] Encryption: Wireguard [NodeEncryption: Enabled, cilium_wg0 (Pubkey: IoCvq0AB81XznieMpRyBl4XRcRxFuaN3Xhqefun5YQA=, Port: 51871, Peers: 0)] [...] Fixes: cilium#24239 Signed-off-by: Roman Ptitcyn <romanspb@yahoo.com>
d5d5e61
to
e465b57
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Awesome, thanks a lot for tackling this!
/test Job 'Cilium-PR-K8s-1.26-kernel-net-next' failed: Click to show.Test Name
Failure Output
If it is a flake and a GitHub issue doesn't already exist to track it, comment |
Failures in required tests are unrelated (see above). Marking ready to merge. |
Thanks a lot |
This patch adds param "NodeEncryption" to the cilium status
$ cilium status
[...]
Encryption: Wireguard [NodeEncryption: true, cilium_wg0 (Pubkey: UzRSJUmRqsxl82xvFG0joBheaiqOnM3BCgpByYjVtCE=, Port: 51871, Peers: 3)]
Fixes: #24239