-
Notifications
You must be signed in to change notification settings - Fork 2.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
libpod,netavark: correctly set /etc/resolv.conf
for custom dns server and make --dns
functional
#16297
libpod,netavark: correctly set /etc/resolv.conf
for custom dns server and make --dns
functional
#16297
Conversation
/etc/resolv.conf
for custom dns server when using netavark/aardvark-dns
/etc/resolv.conf
for custom dns server and make --dns
functional
Following PR needs |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
How does this behave with --dns=none? Does it still work, it should ignore /etc/resolv.conf setup.
In case of |
401ce6e
to
1938e9b
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
I think we have skip the test until me make new nv/av releases and get them into the CI VMs.
@Luap99 Problem with skipping is that I will also have to skip some older nameserver tests as well since now nameservers are being returned from |
Lets wait then, there is no rush to get this in, the next feature release is 4.4 which I assume is at least over a month away. |
/etc/resolv.conf
for custom dns server and make --dns
functional/etc/resolv.conf
for custom dns server and make --dns
functional
18544c4
to
2fbe263
Compare
I think CI should pass if new |
/etc/resolv.conf
for custom dns server and make --dns
functional/etc/resolv.conf
for custom dns server and make --dns
functional
Just leaving a reminder that we promised to have this upstream for QE testing on November 28. @flouthoc , if that's not likely to happen, that's fine, but we'll just need to adjust expectations. |
@TomSweeneyRedHat Recently there was change of requirements for original RFE so this PR does not covers the epic, this is the old implementation before requirements were changed so this PR might not be applicable for epic anymore but still needed for docker compat. Scope of new RFE is bigger and requirement is still under consideration, work on that part has not been started yet so definitely it will not make it on nov28. But I am not aware when requirements will be finalized but @baude can help better here. Overall this PR is still needed for docker compatibility so I think this will be still merged. |
2fbe263
to
2ef38c1
Compare
A friendly reminder that this PR had no activity for 30 days. |
What's going on here - is this abandoned in favor of a newer PR? |
This is still needed AFAIK |
@mheon This is still needed but needs newer versions of |
when you rebase and make sure test passes with newer nv/av I am fine with merging this with the test skipped like the other PR. |
Aardvark-dns and netavark now accepts custom DNS servers for containers via new config field `dns_servers`. New field allows containers to use custom resolvers instead of host's default resolvers. Following commit instruments libpod to pass these custom DNS servers set via `--dns` or central config to the network stack. Depends-on: * Common: containers/common#1189 * Netavark: containers/netavark#452 * Aardvark-dns: containers/aardvark-dns#240 Signed-off-by: Aditya R <[email protected]>
…server After containers/netavark#452 `netavark` is incharge of deciding `custom_dns_servers` if any so lets honor that and libpod should not set these manually. This also ensures docker parity Podman populates container's `/etc/resolv.conf` with custom DNS servers ( specified via `--dns` or `dns_server` in containers.conf ) even when container is connected to a network where `dns_enabled` is `true`. Current behavior does not matches with docker, hence following commit ensures that podman only populates custom DNS server when container is not connected to any network where DNS is enabled and for the cases where `dns_enabled` is `true` the resolution for custom DNS server will happen via ( `aardvark-dns` or `dnsname` ). Reference: https://docs.docker.com/config/containers/container-networking/#dns-services Closes: containers#16172 Signed-off-by: Aditya R <[email protected]>
Set search domain irrespective of nameservers. Signed-off-by: Aditya R <[email protected]>
2ef38c1
to
e2c44c3
Compare
Failing tests seems unrelated. |
db19977
to
47bbbb2
Compare
I think this should become green now. |
Signed-off-by: Aditya R <[email protected]>
47bbbb2
to
b7ab889
Compare
@Luap99 @containers/podman-maintainers PTAL |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: flouthoc, Luap99 The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
/lgtm |
Following PR ensures two things
podman: relay custom DNS servers to network stack
via new config field
dns_servers
. New field allows containers to usecustom resolvers instead of host's default resolvers.
dns_servers
for containers netavark#452and aardvark-dns: add support for container's custom
dns_servers
aardvark-dns#240libpod,netavark: correctly populate /etc/resolv.conf with custom dns server
dns_servers
for containers netavark#452netavark
isincharge of deciding
custom_dns_servers
if any so lets honor that andlibpod should not set these manually.
This also ensures docker parity since Podman populates container's
/etc/resolv.conf
with custom DNS servers( specified via
--dns
ordns_server
in containers.conf ) even when container is connected to a network wheredns_enabled
istrue
. Current behavior does not matches with docker, hence following commit ensures that podman only populates custom DNS server when container is not connected to any network where DNS is enabled and for the cases wheredns_enabled
istrue
the resolution for custom DNS server will happen via (
aardvark-dns
).Reference: https://docs.docker.com/config/containers/container-networking/#dns-services
Closes: #16172
Closes: RFC in BZ#2128675