proposal for ipsec e2e test

[xiaojiangao123]

What type of PR is this?

/kind documentation

What this PR does / why we need it:

The lack of end-to-end (e2e) testing for the IPsec functionality and offload Authorization in Kmesh.

Does this PR introduce a user-facing change?:
NONE

[kmesh-bot]

@xiaojiangao123: The label(s) kind/documentation cannot be applied, because the repository doesn't have them.

In response to this:

What type of PR is this?

/kind documentation

What this PR does / why we need it:

The lack of end-to-end (e2e) testing for the IPsec functionality in Kmesh.

Does this PR introduce a user-facing change?:
NONE

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[kmesh-bot]

Welcome @xiaojiangao123! It looks like this is your first PR to kmesh-net/kmesh 🎉

[Copilot]

Pull Request Overview

This PR proposes adding documentation for developing end-to-end tests for the IPsec functionality in Kmesh, detailing test scenarios and environment requirements.

• Introduces a new IPsec E2E testing proposal document in Chinese.
• Outlines three core test scenarios: basic connectivity, key update, and failure recovery.
• Specifies the test environment requirements and includes detailed testing steps.

[LiZhenCheng9527]

Can you tell us about your thinking at this week's meeting?

[LiZhenCheng9527]

You should also add the results that each test expects.

[LiZhenCheng9527]

Do you have to redeploy sleep and httpbin every step?

[YaoZengzeng]

FYI:

Design doc of Kmesh E2E framework: https://github.com/kmesh-net/kmesh/blob/main/docs/proposal/e2e.md

User guide: https://kmesh.net/en/docs/developer/e2e-guide/

and all test cases should be added in https://github.com/kmesh-net/kmesh/tree/main/test/e2e

You can write new test cases based on existing ones.

[YaoZengzeng]

Also English doc is prefered

[kmesh-bot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign yaozengzeng for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[LiZhenCheng9527]

offload Authorization only support port and IP address.
The remaining Authorization types are handled in user space.

[xiaojiangao123]

In the project description of OSPP, there is a requirement for E2E testing excluding IP and port authentication.

[xiaojiangao123]

[LiZhenCheng9527]

Yes. Kmesh supports these types of Authorization through offload authorization and user space Authorization.
Just a note that there is a difference between offload Authorization and User space Authorization in Kmesh's Authorization.

[LiZhenCheng9527]

If you want to do this project, go to #1408 and leave a comment under it to let people know you are doing something on it. The mentor will assign you when he is sure.

[kmesh-bot]

Adding label do-not-merge/contains-merge-commits because PR contains merge commits, which are not allowed in this repository.
Use git rebase to reapply your commits on top of the target branch. Detailed instructions for doing so can be found here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.