istio: [BUG] Is that normal after adding tls acceleration with cryptomb annotation only worked for the default secret?

Bug Description

Istio version: 1.14.3

After I add the crypto annotation to my istio-ingressgatewa Envoy annotations followed https://istio.io/latest/blog/2022/cryptomb-privatekeyprovider/ this blog, I found it only worked for the default secret. Is that normal? Why my own “kubernetes://cert-0n3pjjjue21g-helloworld” secret don’t have that config. It can still accelerate my helloworld https request?

k8s:
        podAnnotations:
          proxy.istio.io/config: |
            privateKeyProvider:
              cryptomb:
                pollDelay: 10ms

my istio-ingressgateway envoy config dump shows:

{
   "@type": "type.googleapis.com/envoy.admin.v3.SecretsConfigDump",
   "dynamic_active_secrets": [
    {
     "name": "kubernetes://cert-0n3pjjjue21g-helloworld",
     "version_info": "2023-02-14T12:01:06Z/23",
     "last_updated": "2023-02-14T12:30:58.474Z",
     "secret": {
      "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.Secret",
      "name": "kubernetes://cert-0n3pjjjue21g-helloworld",
      "tls_certificate": {
       "certificate_chain": {
        "inline_bytes": "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"
       },
       "private_key": {
        "inline_bytes": "W3JlZGFjdGVkXQ=="
       }
      }
     }
    },
    {
     "name": "default",
     "last_updated": "2023-02-14T12:30:57.858Z",
     "secret": {
      "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.Secret",
      "name": "default",
      "tls_certificate": {
       "certificate_chain": {
        "inline_bytes": "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"
       },
       "private_key_provider": {
        "provider_name": "cryptomb",
        "typed_config": {
         "@type": "type.googleapis.com/envoy.extensions.private_key_providers.cryptomb.v3alpha.CryptoMbPrivateKeyMethodConfig",
         "private_key": {
          "inline_bytes": "W3JlZGFjdGVkXQ=="
         },
         "poll_delay": "0s"
        }
       }
      }
     }
    },
    {
     "name": "ROOTCA",
     "last_updated": "2023-02-14T12:30:57.858Z",
     "secret": {
      "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.Secret",
      "name": "ROOTCA",
      "validation_context": {
       "trusted_ca": {
        "inline_bytes": "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"
       }
      }
     }
    }
   ]
  }
 ]
}

You can also check the screen shot here: https://github.com/Huixxi/Huixxi/blob/main/config_map1.jpg https://github.com/Huixxi/Huixxi/blob/main/config_map2.jpg

Version

$ kubectl version --short
Client Version: v1.23.5

Additional Information

No response

About this issue

  • Original URL
  • State: closed
  • Created a year ago
  • Comments: 29 (4 by maintainers)

Most upvoted comments

This bug has been fixed by this https://github.com/istio/istio/pull/41761 PR. I think this PR should cherry-pick-up to 1.16, 1.15, 1.14 branches. @soulxu @Chen-Xintong @Huixxi @ipuustin

+3
tanjunchen on Feb 22, 2023

@Huixxi I added the cherry-pick label to this PR, and after cherry-pick PR merged, this issue can be fixed in the old version.

+2
Chen-Xintong on Feb 22, 2023

Thanks, the step looks the same, maybe I add the annotation in wrong place of the deployment. Could you tell me your istio version?

np, I build from master branch

I still met the same problem on istio v15.3, but for v17.0, the problem was disappeared, may be that bug has been fixed in the latest release version. But thanks a lot.

+2
Huixxi on Feb 21, 2023

So you mean even if I use the command like: k6 run --insecure-skip-tls-verify helloworld-load-test.js, I can still get the acceleration effect of tls handshake procedure by adding the crypto annotation to my ingressgateway envoy pod?

+1
Huixxi on Feb 17, 2023
Read more comments on GitHub
← istio: Broken Multicluster Installation Task
istio: buildGatewayListeners: Have zero listeners: 1 error occurred →