From 1a761636092673b44bd63ada5d52c0ea84c9fa9a Mon Sep 17 00:00:00 2001 From: stevenhorsman Date: Mon, 2 Dec 2024 15:31:19 +0000 Subject: [PATCH] test/e2e: Skip s390x encrypted image test The current encrypted image seems to only be amd64 and the kata CI's multi-arch image has a decryption key that is 44 bytes and our code rejects it as it only works with 32 byte keys Signed-off-by: stevenhorsman --- src/cloud-api-adaptor/test/e2e/common_suite.go | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/src/cloud-api-adaptor/test/e2e/common_suite.go b/src/cloud-api-adaptor/test/e2e/common_suite.go index 13a4dce61..cc9822618 100644 --- a/src/cloud-api-adaptor/test/e2e/common_suite.go +++ b/src/cloud-api-adaptor/test/e2e/common_suite.go @@ -8,6 +8,7 @@ import ( "fmt" "math/rand" "os" + "runtime" "strconv" "strings" "testing" @@ -501,6 +502,11 @@ func DoTestPodsMTLSCommunication(t *testing.T, e env.Environment, assert CloudAs } func DoTestImageDecryption(t *testing.T, e env.Environment, assert CloudAssert, kbs *pv.KeyBrokerService) { + // TODO create a multi-arch encrypted image. Note the Kata CI version doesn't work as the key length is 44, not 32 which is wanted + if runtime.GOARCH == "s390x" { + t.Skip("Encrypted image test not currently support on s390x") + } + image := "ghcr.io/confidential-containers/cloud-api-adaptor/nginx-encrypted:20240123" var kbsEndpoint string if ep := os.Getenv("KBS_ENDPOINT"); ep != "" {