From cdda8af0e0446d231117210b30f9d95ca057da4f Mon Sep 17 00:00:00 2001
From: Vadim Rutkovsky <vrutkovs@redhat.com>
Date: Sat, 21 Nov 2020 19:14:44 +0100
Subject: [PATCH] overlay: disable systemd-resolved DNS stub listener

CoreDNS doesn't play nice with default systemd-resolved configuration - see coredns/coredns@master/plugin/loop/README.md#troubleshooting-loops-in-kubernetes-clusters.
OKD should boot with systemd-resolved enabled, but without DNS stub listener (127.0.0.53)
so that external DNS would be used

Fixes https://github.com/openshift/okd/issues/380
---
 overlay/etc/systemd/resolved.conf.d/no-dns-stub.conf |  2 ++
 .../system/systemd-resolved.service.d/disabled.conf  |  2 --
 overlay/usr/lib/tmpfiles.d/etc.conf                  | 12 ------------
 3 files changed, 2 insertions(+), 14 deletions(-)
 create mode 100644 overlay/etc/systemd/resolved.conf.d/no-dns-stub.conf
 delete mode 100644 overlay/etc/systemd/system/systemd-resolved.service.d/disabled.conf
 delete mode 100644 overlay/usr/lib/tmpfiles.d/etc.conf

diff --git a/overlay/etc/systemd/resolved.conf.d/no-dns-stub.conf b/overlay/etc/systemd/resolved.conf.d/no-dns-stub.conf
new file mode 100644
index 00000000..6e959674
--- /dev/null
+++ b/overlay/etc/systemd/resolved.conf.d/no-dns-stub.conf
@@ -0,0 +1,2 @@
+[Resolve]
+DNSStubListener=no
diff --git a/overlay/etc/systemd/system/systemd-resolved.service.d/disabled.conf b/overlay/etc/systemd/system/systemd-resolved.service.d/disabled.conf
deleted file mode 100644
index 922625e5..00000000
--- a/overlay/etc/systemd/system/systemd-resolved.service.d/disabled.conf
+++ /dev/null
@@ -1,2 +0,0 @@
-[Unit]
-ConditionPathExists=/enoent
diff --git a/overlay/usr/lib/tmpfiles.d/etc.conf b/overlay/usr/lib/tmpfiles.d/etc.conf
deleted file mode 100644
index 9b1b252c..00000000
--- a/overlay/usr/lib/tmpfiles.d/etc.conf
+++ /dev/null
@@ -1,12 +0,0 @@
- #  This file is part of systemd.
-#
-#  systemd is free software; you can redistribute it and/or modify it
-#  under the terms of the GNU Lesser General Public License as published by
-#  the Free Software Foundation; either version 2.1 of the License, or
-#  (at your option) any later version.
-# See tmpfiles.d(5) for details
-L /etc/os-release - - - - ../usr/lib/os-release
-L+ /etc/mtab - - - - ../proc/self/mounts
-C! /etc/nsswitch.conf - - - -
-C! /etc/pam.d - - - -
-C! /etc/issue - - - -