Docker Swarm Overlay encryption is broken in WSL2

[ACoderLife]

• [X] I have tried with the latest version of Docker Desktop
• [X] I have tried disabling enabled experimental features
• [X] I have uploaded Diagnostics
• Diagnostics ID: 8563AB64-0E70-4F6A-80B5-512854B14841/20230502062437

Actual behavior

Error starting encrypted swarm network on windows docker desktop.

Expected behavior

Was working on older docker versions.

Information

I have raised the issue here, but so far have had no response: https://github.com/microsoft/WSL/issues/10029

Thanks!

[ACoderLife]

Has docker changed the way network encryption is done? WSL seem to think it was never supported:

https://github.com/microsoft/WSL/issues/10029

[neersighted]

This is related to security patches in Moby (Docker Engine); please see my comments at https://github.com/microsoft/WSL/issues/10029#issuecomment-1574440255 for an explanation.

There's not much we can do as the Microsoft team controls the WSL2 kernel; that being said, maybe we should leave this open as a tracking issue on our side while we work with Microsoft to get kernel support in.

[ghost]

It’s important to track dependent (outstanding) upstream issues related to DD. Folks must know that the DD team is dependent on those blocking issues being resolved. Maybe a special label could be applied?

[cowwoc]

The tickets were all closed on Microsoft's side. No one is working on this issue.

Can the Moby folks please ask Microsoft to reopen the issues? In the meantime, I've filed: https://github.com/microsoft/WSL/issues/12277

In the meantime, Docker for Windows should return a clean error message indicating that WSL2 does not support Swarm Overlay encryption, and this issue should be documented under https://docs.docker.com/desktop/features/networking/#known-limitations so developers can stop wasting their time trying to figure this out.