Skip to content

docs: Fix max SPI value for IPsec key rotations #19893

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 25, 2022
Merged

docs: Fix max SPI value for IPsec key rotations #19893

merged 1 commit into from
May 25, 2022

Conversation

pchaigno
Copy link
Member

@pchaigno pchaigno commented May 20, 2022
edited
Loading

The SPI value is expected to take 4 bits at most so it's maximum value should be 15 not 16. Let's fix that in the key rotation documentation.

The agent also rejects value 0, so allowed values are [1;15].

@pchaigno pchaigno added area/documentation Impacts the documentation, including textual changes, sphinx, or other doc generation code. area/encryption Impacts encryption support such as IPSec, WireGuard, or kTLS. release-note/misc This PR makes changes that have no direct user impact. needs-backport/1.9 labels May 20, 2022
@pchaigno pchaigno requested a review from a team as a code owner May 20, 2022 11:14
@pchaigno pchaigno requested a review from qmonnet May 20, 2022 11:14
@qmonnet qmonnet added the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label May 20, 2022
@pchaigno
docs: Fix max SPI value for IPsec key rotations
a5b9524 
The SPI value is expected to take 4 bits at most so it's maximum value
should be 15 not 16. Let's fix that in the key rotation documentation.

The agent also rejects value 0, so allowed values are [1;15].

Reported-by: Odin Ugedal via Slack
Signed-off-by: Paul Chaignon <paul@cilium.io>
@pchaigno pchaigno force-pushed the docs-fix-ipsec-spi-interval branch from 9ec0c81 to a5b9524 Compare May 20, 2022 11:44
@pchaigno pchaigno removed the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label May 20, 2022
@pchaigno pchaigno requested a review from jrfastab May 20, 2022 11:44
odinuge
odinuge approved these changes May 20, 2022
View reviewed changes
Copy link
Member

@odinuge odinuge left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks @pchaigno! This looks good!

@pchaigno pchaigno added the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label May 24, 2022
@jibi jibi merged commit 54d708e into cilium:master May 25, 2022
@pchaigno pchaigno deleted the docs-fix-ipsec-spi-interval branch May 25, 2022 09:27
@odinuge odinuge mentioned this pull request May 26, 2022
Merged
@jibi jibi mentioned this pull request May 26, 2022
Merged
@jibi jibi mentioned this pull request May 31, 2022
Merged
@jibi jibi mentioned this pull request May 31, 2022
Merged
@tklauser tklauser added backport-done/1.11 The backport for Cilium 1.11.x for this PR is done. and removed backport-pending/1.11 labels Jun 2, 2022
This was referenced Jun 10, 2022
Merged
Merged
Merged
@aanm aanm mentioned this pull request Jun 22, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@qmonnet qmonnet qmonnet approved these changes

@jrfastab jrfastab Awaiting requested review from jrfastab

+1 more reviewer

@odinuge odinuge odinuge approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
area/documentation Impacts the documentation, including textual changes, sphinx, or other doc generation code. area/encryption Impacts encryption support such as IPSec, WireGuard, or kTLS. backport-done/1.11 The backport for Cilium 1.11.x for this PR is done. ready-to-merge This PR has passed all tests and received consensus from code owners to merge. release-note/misc This PR makes changes that have no direct user impact.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@pchaigno @odinuge @qmonnet @jibi @tklauser @joamaki