fix(onboard): skip CoreDNS patching on WSL2 to fix sandbox DNS#1207
Merged
cv merged 1 commit intoNVIDIA:mainfrom Mar 31, 2026
Merged
fix(onboard): skip CoreDNS patching on WSL2 to fix sandbox DNS#1207cv merged 1 commit intoNVIDIA:mainfrom
cv merged 1 commit intoNVIDIA:mainfrom
Conversation
On WSL2 + Docker Desktop, fix-coredns.sh picks up the host DNS from /etc/resolv.conf which is not routable from k3s pods. This breaks CoreDNS and all sandbox DNS resolution. Skip CoreDNS patching on WSL2 and rely on setup-dns-proxy.sh to bridge the sandbox namespace to CoreDNS via its default k3s configuration.
Contributor
📝 WalkthroughWalkthroughThe Changes
Estimated code review effort🎯 2 (Simple) | ⏱️ ~8 minutes Poem
🚥 Pre-merge checks | ✅ 2 | ❌ 1❌ Failed checks (1 warning)
✅ Passed checks (2 passed)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing Touches🧪 Generate unit tests (beta)
Comment |
![coderabbitai[bot]](https://avatars.githubusercontent.com/in/347564?s=60&v=4){kind=small}
Contributor
There was a problem hiding this comment.
🧹 Nitpick comments (1)
bin/lib/platform.js (1)
38-44: Add a unit test for the new WSL short-circuit path.Line 43 adds a new branch, but existing
shouldPatchCorednstests only validate runtime values. Please add coverage for WSL detection (e.g., Linux +WSL_INTEROP) to lock this regression fix.Suggested test addition
describe("shouldPatchCoredns", () => { it("patches CoreDNS for all known runtimes", () => { expect(shouldPatchCoredns("colima")).toBe(true); expect(shouldPatchCoredns("docker-desktop")).toBe(true); expect(shouldPatchCoredns("docker")).toBe(true); expect(shouldPatchCoredns("podman")).toBe(true); }); it("skips unknown runtimes", () => { expect(shouldPatchCoredns("unknown")).toBe(false); }); + + it("skips patching on WSL even for known runtimes", () => { + expect( + shouldPatchCoredns("docker", { + platform: "linux", + env: { WSL_INTEROP: "1" }, + }), + ).toBe(false); + }); });🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@bin/lib/platform.js` around lines 38 - 44, Add a unit test covering the new WSL short-circuit in shouldPatchCoredns: verify that when isWsl(...) returns true (simulate WSL by mocking isWsl or by passing opts that include WSL_INTEROP in the environment), shouldPatchCoredns(...) returns false regardless of runtime, and include a control case asserting the original runtime-based behavior when isWsl(...) is false; reference the shouldPatchCoredns function and the isWsl helper when locating where to mock/simulate.
🤖 Prompt for all review comments with AI agents
Verify each finding against the current code and only fix it if needed.
Nitpick comments:
In `@bin/lib/platform.js`:
- Around line 38-44: Add a unit test covering the new WSL short-circuit in
shouldPatchCoredns: verify that when isWsl(...) returns true (simulate WSL by
mocking isWsl or by passing opts that include WSL_INTEROP in the environment),
shouldPatchCoredns(...) returns false regardless of runtime, and include a
control case asserting the original runtime-based behavior when isWsl(...) is
false; reference the shouldPatchCoredns function and the isWsl helper when
locating where to mock/simulate.
ℹ️ Review info
⚙️ Run configuration
Configuration used: Path: .coderabbit.yaml
Review profile: CHILL
Plan: Pro
Run ID: 317f7da5-9095-4a6f-bb8c-0271c77de426
📒 Files selected for processing (1)
bin/lib/platform.js
cv
approved these changes
Mar 31, 2026
ericksoa
reviewed
Mar 31, 2026
Contributor
ericksoa
left a comment
ericksoa
left a comment
There was a problem hiding this comment.
Nice fix — the WSL2 early return is clean and the comment explaining the delegation to setup-dns-proxy.sh is helpful.
One ask: could you add test coverage for the new branch? Something like:
it("skips patching on WSL2 even for known runtimes", () => {
expect(shouldPatchCoredns("docker-desktop", {
platform: "linux",
env: { WSL_DISTRO_NAME: "Ubuntu" },
release: "6.6.87.2-microsoft-standard-WSL2",
})).toBe(false);
});
it("still patches on non-WSL Linux", () => {
expect(shouldPatchCoredns("docker", {
platform: "linux",
env: {},
release: "6.8.0-generic",
procVersion: "",
})).toBe(true);
});This path is platform-conditional and easy to regress without explicit coverage.
Contributor
Author
Ah the PR was already merged by the time I saw this comment! Will do as a follow up. |
jieunl24
added a commit
that referenced
this pull request
Apr 1, 2026
Follow up of #1207 dd tests verifying CoreDNS patching is skipped on WSL2 and still applied on non-WSL runtimes. Existing tests updated to pass explicit platform opts so they work correctly when run from a WSL2 host.
jieunl24
added a commit
that referenced
this pull request
Apr 1, 2026
Follow up of #1207 Add tests verifying CoreDNS patching is skipped on WSL2 and still applied on non-WSL runtimes. Existing tests updated to pass explicit platform opts so they work correctly when run from a WSL2 host.
16 tasks
cv
added a commit
that referenced
this pull request
Apr 1, 2026
<!-- markdownlint-disable MD041 --> ## Summary Follow up of #1207 to add unit tests ## Changes Add tests verifying CoreDNS patching is skipped on WSL2 and still applied on non-WSL runtimes. Existing tests updated to pass explicit platform opts so they work correctly when run from a WSL2 host. ## Type of Change <!-- Check the one that applies. --> - [ ] Code change for a new feature, bug fix, or refactor. - [ ] Code change with doc updates. - [ ] Doc only. Prose changes without code sample modifications. - [ ] Doc only. Includes code sample changes. ## Testing <!-- What testing was done? --> - [X] `npx prek run --all-files` passes (or equivalently `make check`). - [X] `npm test` passes. - [ ] `make docs` builds without warnings. (for doc-only changes) ## Checklist ### General - [X] I have read and followed the [contributing guide](https://github.com/NVIDIA/NemoClaw/blob/main/CONTRIBUTING.md). - [ ] I have read and followed the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). (for doc-only changes) ### Code Changes <!-- Skip if this is a doc-only PR. --> - [X] Formatters applied — `npx prek run --all-files` auto-fixes formatting (or `make format` for targeted runs). - [X] Tests added or updated for new or changed behavior. - [X] No secrets, API keys, or credentials committed. - [ ] Doc pages updated for any user-facing behavior changes (new commands, changed defaults, new features, bug fixes that contradict existing docs). ### Doc Changes <!-- Skip if this PR has no doc changes. --> - [ ] Follows the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). Try running the `update-docs` agent skill to draft changes while complying with the style guide. For example, prompt your agent with "`/update-docs` catch up the docs for the new changes I made in this PR." - [ ] New pages include SPDX license header and frontmatter, if creating a new page. - [ ] Cross-references and links verified. <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **Tests** * Improved platform runtime tests to pass full context options and validate behavior for specific known runtimes. * Added a coverage case ensuring WSL detection prevents the patch in the appropriate scenario. * Retained the existing test for skipping unknown runtimes. <!-- end of auto-generated comment: release notes by coderabbit.ai --> --------- Co-authored-by: Carlos Villela <cvillela@nvidia.com>
laitingsheng
pushed a commit
that referenced
this pull request
Apr 2, 2026
<!-- markdownlint-disable MD041 --> ## Summary On WSL2 + Docker Desktop, fix-coredns.sh picks up the host DNS from /etc/resolv.conf which is not routable from k3s pods. This breaks CoreDNS and all DNS resolution inside the gateway - sandbox web tools fail with getaddrinfo EAI_AGAIN, and cloud inference onboarding fails because openshell inference set cannot verify the endpoint (e.g. integrate.api.nvidia.com). ## Related Issue #414 + Cloud inference onboarding failure regression was reported offline and was reproducible ## Changes Skip CoreDNS patching on WSL2 and rely on setup-dns-proxy.sh to handle sandbox DNS resolution instead. ## Type of Change <!-- Check the one that applies. --> - [X] Code change for a new feature, bug fix, or refactor. - [ ] Code change with doc updates. - [ ] Doc only. Prose changes without code sample modifications. - [ ] Doc only. Includes code sample changes. ## Testing <!-- What testing was done? --> - [X] `npx prek run --all-files` passes (or equivalently `make check`). - [X] `npm test` passes. - [ ] `make docs` builds without warnings. (for doc-only changes) - Cloud inference onboarding -> openclaw tui - Connect to sandbox -> run `node -e "fetch('https://wttr.in/SanFrancisco?format=3').then(r => r.text()).then(t => console.log('OK', t)).catch(e => console.log('FAIL', e.code, e.cause))"` with following rule added to policy ``` weather: name: weather endpoints: - host: wttr.in port: 443 access: full - host: api.open-meteo.com port: 443 access: full binaries: - { path: /usr/local/bin/node } ``` ## Checklist ### General - [X] I have read and followed the [contributing guide](https://github.com/NVIDIA/NemoClaw/blob/main/CONTRIBUTING.md). - [ ] I have read and followed the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). (for doc-only changes) ### Code Changes <!-- Skip if this is a doc-only PR. --> - [X] Formatters applied — `npx prek run --all-files` auto-fixes formatting (or `make format` for targeted runs). - [ ] Tests added or updated for new or changed behavior. - [X] No secrets, API keys, or credentials committed. - [ ] Doc pages updated for any user-facing behavior changes (new commands, changed defaults, new features, bug fixes that contradict existing docs). ### Doc Changes <!-- Skip if this PR has no doc changes. --> - [ ] Follows the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). Try running the `update-docs` agent skill to draft changes while complying with the style guide. For example, prompt your agent with "`/update-docs` catch up the docs for the new changes I made in this PR." - [ ] New pages include SPDX license header and frontmatter, if creating a new page. - [ ] Cross-references and links verified. --- <!-- DCO sign-off (required by CI). Replace with your real name and email. --> Signed-off-by: Ji-Eun Lee <jieunl24@nvidia.com> <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **Bug Fixes** * Fixed CoreDNS patching behavior for Windows Subsystem for Linux (WSL) environments to prevent unnecessary modifications. <!-- end of auto-generated comment: release notes by coderabbit.ai -->
laitingsheng
pushed a commit
that referenced
this pull request
Apr 2, 2026
<!-- markdownlint-disable MD041 --> ## Summary Follow up of #1207 to add unit tests ## Changes Add tests verifying CoreDNS patching is skipped on WSL2 and still applied on non-WSL runtimes. Existing tests updated to pass explicit platform opts so they work correctly when run from a WSL2 host. ## Type of Change <!-- Check the one that applies. --> - [ ] Code change for a new feature, bug fix, or refactor. - [ ] Code change with doc updates. - [ ] Doc only. Prose changes without code sample modifications. - [ ] Doc only. Includes code sample changes. ## Testing <!-- What testing was done? --> - [X] `npx prek run --all-files` passes (or equivalently `make check`). - [X] `npm test` passes. - [ ] `make docs` builds without warnings. (for doc-only changes) ## Checklist ### General - [X] I have read and followed the [contributing guide](https://github.com/NVIDIA/NemoClaw/blob/main/CONTRIBUTING.md). - [ ] I have read and followed the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). (for doc-only changes) ### Code Changes <!-- Skip if this is a doc-only PR. --> - [X] Formatters applied — `npx prek run --all-files` auto-fixes formatting (or `make format` for targeted runs). - [X] Tests added or updated for new or changed behavior. - [X] No secrets, API keys, or credentials committed. - [ ] Doc pages updated for any user-facing behavior changes (new commands, changed defaults, new features, bug fixes that contradict existing docs). ### Doc Changes <!-- Skip if this PR has no doc changes. --> - [ ] Follows the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). Try running the `update-docs` agent skill to draft changes while complying with the style guide. For example, prompt your agent with "`/update-docs` catch up the docs for the new changes I made in this PR." - [ ] New pages include SPDX license header and frontmatter, if creating a new page. - [ ] Cross-references and links verified. <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **Tests** * Improved platform runtime tests to pass full context options and validate behavior for specific known runtimes. * Added a coverage case ensuring WSL detection prevents the patch in the appropriate scenario. * Retained the existing test for skipping unknown runtimes. <!-- end of auto-generated comment: release notes by coderabbit.ai --> --------- Co-authored-by: Carlos Villela <cvillela@nvidia.com>
lakamsani
pushed a commit
to lakamsani/NemoClaw
that referenced
this pull request
Apr 4, 2026
…A#1207) <!-- markdownlint-disable MD041 --> ## Summary On WSL2 + Docker Desktop, fix-coredns.sh picks up the host DNS from /etc/resolv.conf which is not routable from k3s pods. This breaks CoreDNS and all DNS resolution inside the gateway - sandbox web tools fail with getaddrinfo EAI_AGAIN, and cloud inference onboarding fails because openshell inference set cannot verify the endpoint (e.g. integrate.api.nvidia.com). ## Related Issue NVIDIA#414 + Cloud inference onboarding failure regression was reported offline and was reproducible ## Changes Skip CoreDNS patching on WSL2 and rely on setup-dns-proxy.sh to handle sandbox DNS resolution instead. ## Type of Change <!-- Check the one that applies. --> - [X] Code change for a new feature, bug fix, or refactor. - [ ] Code change with doc updates. - [ ] Doc only. Prose changes without code sample modifications. - [ ] Doc only. Includes code sample changes. ## Testing <!-- What testing was done? --> - [X] `npx prek run --all-files` passes (or equivalently `make check`). - [X] `npm test` passes. - [ ] `make docs` builds without warnings. (for doc-only changes) - Cloud inference onboarding -> openclaw tui - Connect to sandbox -> run `node -e "fetch('https://wttr.in/SanFrancisco?format=3').then(r => r.text()).then(t => console.log('OK', t)).catch(e => console.log('FAIL', e.code, e.cause))"` with following rule added to policy ``` weather: name: weather endpoints: - host: wttr.in port: 443 access: full - host: api.open-meteo.com port: 443 access: full binaries: - { path: /usr/local/bin/node } ``` ## Checklist ### General - [X] I have read and followed the [contributing guide](https://github.com/NVIDIA/NemoClaw/blob/main/CONTRIBUTING.md). - [ ] I have read and followed the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). (for doc-only changes) ### Code Changes <!-- Skip if this is a doc-only PR. --> - [X] Formatters applied — `npx prek run --all-files` auto-fixes formatting (or `make format` for targeted runs). - [ ] Tests added or updated for new or changed behavior. - [X] No secrets, API keys, or credentials committed. - [ ] Doc pages updated for any user-facing behavior changes (new commands, changed defaults, new features, bug fixes that contradict existing docs). ### Doc Changes <!-- Skip if this PR has no doc changes. --> - [ ] Follows the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). Try running the `update-docs` agent skill to draft changes while complying with the style guide. For example, prompt your agent with "`/update-docs` catch up the docs for the new changes I made in this PR." - [ ] New pages include SPDX license header and frontmatter, if creating a new page. - [ ] Cross-references and links verified. --- <!-- DCO sign-off (required by CI). Replace with your real name and email. --> Signed-off-by: Ji-Eun Lee <jieunl24@nvidia.com> <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **Bug Fixes** * Fixed CoreDNS patching behavior for Windows Subsystem for Linux (WSL) environments to prevent unnecessary modifications. <!-- end of auto-generated comment: release notes by coderabbit.ai -->
lakamsani
pushed a commit
to lakamsani/NemoClaw
that referenced
this pull request
Apr 4, 2026
<!-- markdownlint-disable MD041 --> ## Summary Follow up of NVIDIA#1207 to add unit tests ## Changes Add tests verifying CoreDNS patching is skipped on WSL2 and still applied on non-WSL runtimes. Existing tests updated to pass explicit platform opts so they work correctly when run from a WSL2 host. ## Type of Change <!-- Check the one that applies. --> - [ ] Code change for a new feature, bug fix, or refactor. - [ ] Code change with doc updates. - [ ] Doc only. Prose changes without code sample modifications. - [ ] Doc only. Includes code sample changes. ## Testing <!-- What testing was done? --> - [X] `npx prek run --all-files` passes (or equivalently `make check`). - [X] `npm test` passes. - [ ] `make docs` builds without warnings. (for doc-only changes) ## Checklist ### General - [X] I have read and followed the [contributing guide](https://github.com/NVIDIA/NemoClaw/blob/main/CONTRIBUTING.md). - [ ] I have read and followed the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). (for doc-only changes) ### Code Changes <!-- Skip if this is a doc-only PR. --> - [X] Formatters applied — `npx prek run --all-files` auto-fixes formatting (or `make format` for targeted runs). - [X] Tests added or updated for new or changed behavior. - [X] No secrets, API keys, or credentials committed. - [ ] Doc pages updated for any user-facing behavior changes (new commands, changed defaults, new features, bug fixes that contradict existing docs). ### Doc Changes <!-- Skip if this PR has no doc changes. --> - [ ] Follows the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). Try running the `update-docs` agent skill to draft changes while complying with the style guide. For example, prompt your agent with "`/update-docs` catch up the docs for the new changes I made in this PR." - [ ] New pages include SPDX license header and frontmatter, if creating a new page. - [ ] Cross-references and links verified. <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **Tests** * Improved platform runtime tests to pass full context options and validate behavior for specific known runtimes. * Added a coverage case ensuring WSL detection prevents the patch in the appropriate scenario. * Retained the existing test for skipping unknown runtimes. <!-- end of auto-generated comment: release notes by coderabbit.ai --> --------- Co-authored-by: Carlos Villela <cvillela@nvidia.com>
gemini2026
pushed a commit
to gemini2026/NemoClaw
that referenced
this pull request
Apr 14, 2026
…A#1207) <!-- markdownlint-disable MD041 --> ## Summary On WSL2 + Docker Desktop, fix-coredns.sh picks up the host DNS from /etc/resolv.conf which is not routable from k3s pods. This breaks CoreDNS and all DNS resolution inside the gateway - sandbox web tools fail with getaddrinfo EAI_AGAIN, and cloud inference onboarding fails because openshell inference set cannot verify the endpoint (e.g. integrate.api.nvidia.com). ## Related Issue NVIDIA#414 + Cloud inference onboarding failure regression was reported offline and was reproducible ## Changes Skip CoreDNS patching on WSL2 and rely on setup-dns-proxy.sh to handle sandbox DNS resolution instead. ## Type of Change <!-- Check the one that applies. --> - [X] Code change for a new feature, bug fix, or refactor. - [ ] Code change with doc updates. - [ ] Doc only. Prose changes without code sample modifications. - [ ] Doc only. Includes code sample changes. ## Testing <!-- What testing was done? --> - [X] `npx prek run --all-files` passes (or equivalently `make check`). - [X] `npm test` passes. - [ ] `make docs` builds without warnings. (for doc-only changes) - Cloud inference onboarding -> openclaw tui - Connect to sandbox -> run `node -e "fetch('https://wttr.in/SanFrancisco?format=3').then(r => r.text()).then(t => console.log('OK', t)).catch(e => console.log('FAIL', e.code, e.cause))"` with following rule added to policy ``` weather: name: weather endpoints: - host: wttr.in port: 443 access: full - host: api.open-meteo.com port: 443 access: full binaries: - { path: /usr/local/bin/node } ``` ## Checklist ### General - [X] I have read and followed the [contributing guide](https://github.com/NVIDIA/NemoClaw/blob/main/CONTRIBUTING.md). - [ ] I have read and followed the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). (for doc-only changes) ### Code Changes <!-- Skip if this is a doc-only PR. --> - [X] Formatters applied — `npx prek run --all-files` auto-fixes formatting (or `make format` for targeted runs). - [ ] Tests added or updated for new or changed behavior. - [X] No secrets, API keys, or credentials committed. - [ ] Doc pages updated for any user-facing behavior changes (new commands, changed defaults, new features, bug fixes that contradict existing docs). ### Doc Changes <!-- Skip if this PR has no doc changes. --> - [ ] Follows the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). Try running the `update-docs` agent skill to draft changes while complying with the style guide. For example, prompt your agent with "`/update-docs` catch up the docs for the new changes I made in this PR." - [ ] New pages include SPDX license header and frontmatter, if creating a new page. - [ ] Cross-references and links verified. --- <!-- DCO sign-off (required by CI). Replace with your real name and email. --> Signed-off-by: Ji-Eun Lee <jieunl24@nvidia.com> <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **Bug Fixes** * Fixed CoreDNS patching behavior for Windows Subsystem for Linux (WSL) environments to prevent unnecessary modifications. <!-- end of auto-generated comment: release notes by coderabbit.ai -->
gemini2026
pushed a commit
to gemini2026/NemoClaw
that referenced
this pull request
Apr 14, 2026
<!-- markdownlint-disable MD041 --> ## Summary Follow up of NVIDIA#1207 to add unit tests ## Changes Add tests verifying CoreDNS patching is skipped on WSL2 and still applied on non-WSL runtimes. Existing tests updated to pass explicit platform opts so they work correctly when run from a WSL2 host. ## Type of Change <!-- Check the one that applies. --> - [ ] Code change for a new feature, bug fix, or refactor. - [ ] Code change with doc updates. - [ ] Doc only. Prose changes without code sample modifications. - [ ] Doc only. Includes code sample changes. ## Testing <!-- What testing was done? --> - [X] `npx prek run --all-files` passes (or equivalently `make check`). - [X] `npm test` passes. - [ ] `make docs` builds without warnings. (for doc-only changes) ## Checklist ### General - [X] I have read and followed the [contributing guide](https://github.com/NVIDIA/NemoClaw/blob/main/CONTRIBUTING.md). - [ ] I have read and followed the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). (for doc-only changes) ### Code Changes <!-- Skip if this is a doc-only PR. --> - [X] Formatters applied — `npx prek run --all-files` auto-fixes formatting (or `make format` for targeted runs). - [X] Tests added or updated for new or changed behavior. - [X] No secrets, API keys, or credentials committed. - [ ] Doc pages updated for any user-facing behavior changes (new commands, changed defaults, new features, bug fixes that contradict existing docs). ### Doc Changes <!-- Skip if this PR has no doc changes. --> - [ ] Follows the [style guide](https://github.com/NVIDIA/NemoClaw/blob/main/docs/CONTRIBUTING.md). Try running the `update-docs` agent skill to draft changes while complying with the style guide. For example, prompt your agent with "`/update-docs` catch up the docs for the new changes I made in this PR." - [ ] New pages include SPDX license header and frontmatter, if creating a new page. - [ ] Cross-references and links verified. <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **Tests** * Improved platform runtime tests to pass full context options and validate behavior for specific known runtimes. * Added a coverage case ensuring WSL detection prevents the patch in the appropriate scenario. * Retained the existing test for skipping unknown runtimes. <!-- end of auto-generated comment: release notes by coderabbit.ai --> --------- Co-authored-by: Carlos Villela <cvillela@nvidia.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
On WSL2 + Docker Desktop, fix-coredns.sh picks up the host DNS from /etc/resolv.conf which is not routable from k3s pods. This breaks CoreDNS and all DNS resolution inside the gateway - sandbox web tools fail with getaddrinfo EAI_AGAIN, and cloud inference onboarding fails because openshell inference set cannot verify the endpoint (e.g. integrate.api.nvidia.com).
Related Issue
#414 + Cloud inference onboarding failure regression was reported offline and was reproducible
Changes
Skip CoreDNS patching on WSL2 and rely on setup-dns-proxy.sh to handle sandbox DNS resolution instead.
Type of Change
Testing
npx prek run --all-filespasses (or equivalentlymake check).npm testpasses.make docsbuilds without warnings. (for doc-only changes)node -e "fetch('https://wttr.in/SanFrancisco?format=3').then(r => r.text()).then(t => console.log('OK', t)).catch(e => console.log('FAIL', e.code, e.cause))"with following rule added to policyChecklist
General
Code Changes
npx prek run --all-filesauto-fixes formatting (ormake formatfor targeted runs).Doc Changes
update-docsagent skill to draft changes while complying with the style guide. For example, prompt your agent with "/update-docscatch up the docs for the new changes I made in this PR."Summary by CodeRabbit