talos

Author	SHA1	Message	Date
Dmitriy Matrenichev	53f5489130	fix: increase host dns packet ttl for pods This PR fixes incorrect packet TTL if `forwardKubeDNSToHost` is enabled. Credits go to Julian Wiedmann. Closes #8698. Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2024-05-15 17:40:32 +03:00
Dmitriy Matrenichev	908f67fa15	feat: add host dns support for resolving member addrs Closes #8330 Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2024-04-18 15:29:30 +03:00
Dmitriy Matrenichev	ec69d7a785	chore: replace math/rand with math/rand/v2 New package arrived in Go 1.22 which provides better rand primitives and functions. Use it instead of the old one. Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2024-04-18 13:20:59 +03:00
Dmitriy Matrenichev	ba7cdc8c8b	chore: optimize DNSResolveCacheController Optimize `DNSResolveCacheController` type, including `dns.Server` optimization for easy start/stop. This PR ensures that we delete server from runners on stop (even unexpected) and restart it properly. Also fixes incorrect assumption on unit-tests. Fixes #8563 This PR also does those things: - Removes `utils.Runner` - Removes `ctxutil.MonitorFn` - Removes `dns.Runner` - Removes `network.dnsRunner` Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2024-04-10 17:24:19 +03:00
Andrey Smirnov	862c76001b	feat: add support for CoreDNS forwarding to host DNS This PR adds the support for CoreDNS forwarding to host DNS. We try to bind on 9th address on the first element from `serviceSubnets` and create a simple service so k8s will not attempt to rebind it. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com> Co-authored-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com> Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2024-04-03 23:36:17 +03:00
Dmitriy Matrenichev	f8c556a1ce	chore: listen for dns requests on 127.0.0.53 Turns out there is actually no black magic in systemd, they simply listen on 127.0.0.53 and forward dns requests there in resolv.conf. Reason is the same as ours — to preserve compatibility with other applications. So we do the same in our code. This PR also does two things: - Adds `::1` into resolv.conf for IPv6 only resolvers. - Drops `SO_REUSEPORT` from control options (it works without them). Closes #8328 Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2024-02-26 20:59:12 +03:00
Dmitriy Matrenichev	fa2d34dd88	chore: enable v6 support on the same port Replace `SO_REUSEPORT` with `SO_REUSEPORT`. Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2024-02-13 01:02:27 +03:00
Dmitriy Matrenichev	83e0b0c19a	chore: adjust dns sockets settings Enable some TCP optimization, set minimal TTL, set socket reuse. Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2024-02-12 17:13:03 +03:00
Dmitriy Matrenichev	afa71d6b02	chore: use "handle-like" resource in `DNSResolveCacheController` Rework (and simplify) `DNSResolveCacheController` to use `DNSUpstream` "handle-like" resources. Depends on https://github.com/cosi-project/runtime/pull/400 Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2024-02-08 21:40:57 +03:00
Dmitriy Matrenichev	ebeef28525	feat: implement local caching dns server This PR adds a new controller - `DNSServerController` that starts tcp and udp dns servers locally. Just like `EtcFileController` it monitors `ResolverStatusType` and updates the list of destinations from there. Most of the caching logic is in our "lobotomized" "`CoreDNS` fork. We need this fork because default `CoreDNS` carries full Caddy server and various other modules that we don't need in Talos. On our side we implement random selection of the actual dns and request forwarding. Closes #7693 Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2024-01-29 20:26:38 +03:00

10 Commits