From 64c1278345b36bca40fab01b187a584507b1c7a9 Mon Sep 17 00:00:00 2001
From: Timo Beckers <timo@isovalent.com>
Date: Thu, 21 Dec 2023 14:18:10 +0100
Subject: [PATCH] defaults: add 'Host datapath not ready' to expected drop
 reasons

This excludes the drop reason introduced in https://github.com/cilium/cilium/pull/29482.
It occurs when Cilium is first installed on a node, the host firewall is
enabled, a workload endpoint gets created before the host endpoint, and the
workload endpoint in question tries to talk to the host.

Preventing these drops would require redesigning parts of the datapath,
particularly the clustermesh bootstrap procedure. This is not feasible
at the moment, and maybe it's not the right thing to do.

Signed-off-by: Timo Beckers <timo@isovalent.com>
---
 defaults/defaults.go | 1 +
 1 file changed, 1 insertion(+)

diff --git a/defaults/defaults.go b/defaults/defaults.go
index 57414c89ef..ff7e5de54f 100644
--- a/defaults/defaults.go
+++ b/defaults/defaults.go
@@ -202,6 +202,7 @@ var (
 		"Invalid source ip",
 		"Unknown L3 target address",
 		"No tunnel/encapsulation endpoint (datapath BUG!)",
+		"Host datapath not ready",
 	}
 
 	ExpectedXFRMErrors = []string{