OCPBUGS-1731: Merge 1.10.0 by gcs278 · Pull Request #76 · openshift/coredns

gcs278 · 2022-09-27T15:41:40Z

Rebased to CoreDNS 1.10.0 so that we use the Kubernetes 1.25 packages.

I made this PR using the same process as #73, #52, #60, and #70:

git remote update
git checkout v1.10.0
git checkout -b merge-1.10.0-tmp
git checkout origin/master
echo 'merge coredns/coredns v1.10.0' | git commit-tree 'merge-1.10.0-tmp^{tree}' -p HEAD -p merge-1.10.0-tmp -F -
ead3b6507d7bd2fc3e67b79d8ff0dff296396bac
git branch merge-1.10.0 ead3b6507d7bd2fc3e67b79d8ff0dff296396bac
git checkout merge-1.10.0
git rev-list --reverse --no-merges 555dd549ee36ba7f626cf8c53707c74af318ec09..origin/master | git cherry-pick --stdin
Note: 555dd549ee36ba7f626cf8c53707c74af318ec09 is the merge commit from the last merge Bug 2090827: Merge 1.9.2 #73
My merge commit from the above process was commit ead3b65.

Before the rebase, we had the following commits:

% git --no-pager log --oneline --no-merges 555dd549ee36ba7f626cf8c53707c74af318ec09..origin/master
ad24eacf6 Updating coredns images to be consistent with ART Reconciling with https://github.com/openshift/ocp-build-data/tree/2e5eba0108299087402c119ba0dc979a0a6c0bd1/images/coredns.yml
349db7a33 UPSTREAM: <carry>: openshift: Revert "Revert "add wildcard warnings (#5030)" (#5167)"
461cbbf60 UPSTREAM: <carry>: openshift: Revert "remove wildcard query functionality (#5019)"
7a41d2b87 UPSTREAM: <carry>: openshift: Disable dependabot
1d2d4f767 UPSTREAM: <carry>: openshift: Vendor required modules
3dc197d15 UPSTREAM: <carry>: openshift: .gitignore: Properly ignore coredns binary
9176cd5bf UPSTREAM: <carry>: openshift: Make coredns exclusion more specific
488cc73b1 UPSTREAM: <carry>: openshift: Add a `make test` target
b648be195 UPSTREAM: <carry>: openshift: Add product build config
1e6995352 UPSTREAM: <carry>: openshift: Add OWNERS
%

I edited the "Vendor required modules" commit by running go mod vendor and go mod tidy and ammend commit 1d2d4f767 UPSTREAM: <carry>: openshift: Vendor required modules.

I squashed/merged the following commit into the existing "Add product build config" commit:

ad24eacf6 Updating coredns images to be consistent with ART Reconciling with https://github.com/openshift/ocp-build-data/tree/2e5eba0108299087402c119ba0dc979a0a6c0bd1/images/coredns.ym

Git merge conflicts for 461cbbf60 UPSTREAM: <carry>: openshift: Revert "remove wildcard query functionality (#5019)":
plugin/kubernetes/kubernetes.go

Line 630: matchPortAndProtocol function comment update, but matchPortAndProtocol function has been removed so I ignored the updates (see PR Delta)

plugin/kubernetes/external.go

Line 52: changes to variables declaration conflicted because they added endpoint as a string. I merged by taking upstream variable declarations, but added port = "*" and protocol = "*" assignment below for reversion (see PR Delta)
Line 114 & 134: Refactoring moved calls to matchPortAndProtocol and added it in an additional location for resolving headless services (see PR delta)
- I'm assuming we want wildcard support for headless and that wildcard support is remove via matchPortAndProtocol, but we don't have that function anyways so just using the match function.

* plugin/dnstap: support FQDN TCP endpoint Signed-off-by: lob <pengyu@pingcap.com> * plugin/dnstap: remove unused variable Signed-off-by: lob <pengyu@pingcap.com>

Signed-off-by: Chris O'Haver <cohaver@infoblox.com>

…s#5379) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.78.0 to 0.79.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.78.0...v0.79.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…#5380) Bumps [github.com/miekg/dns](https://github.com/miekg/dns) from 1.1.48 to 1.1.49. - [Release notes](https://github.com/miekg/dns/releases) - [Changelog](https://github.com/miekg/dns/blob/master/Makefile.release) - [Commits](miekg/dns@v1.1.48...v1.1.49) --- updated-dependencies: - dependency-name: github.com/miekg/dns dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…oredns#5382) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.9 to 1.44.14. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.9...v1.44.14) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [github.com/Azure/azure-sdk-for-go](https://github.com/Azure/azure-sdk-for-go) from 63.4.0+incompatible to 64.1.0+incompatible. - [Release notes](https://github.com/Azure/azure-sdk-for-go/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/CHANGELOG.md) - [Commits](Azure/azure-sdk-for-go@v63.4.0...v64.1.0) --- updated-dependencies: - dependency-name: github.com/Azure/azure-sdk-for-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.0.0 to 3.1.0. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@f6164bd...fcdc436) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…5385) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.9 to 2.1.10. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@7502d6e...2f58583) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…ns#5381) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.46.0 to 1.46.2. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.46.0...v1.46.2) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

> Dependency Review GitHub Action in your repository to enforce dependency > reviews on your pull requests. > The action scans for vulnerable versions of dependencies introduced by package version > changes in pull requests, > and warns you about the associated security vulnerabilities. > This gives you better visibility of what's changing in a pull request, > and helps prevent vulnerabilities being added to your repository. https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-dependency-review#dependency-review-enforcement Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>

Signed-off-by: coredns[bot] <bot@bot.coredns.io>

…oredns#5387) * Fixing coredns#5376 by adding a check to parse out Zone information Signed-off-by: Tintin <samrath.sodi@gmail.com> * using IndexByte instead of strings.Split() Signed-off-by: Tintin <samrath.sodi@gmail.com> * using plugin logger for logging parsing failure Signed-off-by: Tintin <samrath.sodi@gmail.com> * using var keywork instead of short declaration operator Signed-off-by: Tintin <samrath.sodi@gmail.com> * reordering imports Signed-off-by: Tintin <samrath.sodi@gmail.com>

…s#5397)

…#5395)

coredns#5396)

…oredns#5400) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.14 to 1.44.19. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.14...v1.44.19) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…s#5398) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.79.0 to 0.80.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.79.0...v0.80.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.12.1 to 1.12.2. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](prometheus/client_golang@v1.12.1...v1.12.2) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

coredns#5392)

It looks like dependabot couldn't update golang.org/x/crypto automatically to fix the CVE-2022-27191: coredns#5403 (comment) This PR manually fix the dependency. Signed-off-by: Yong Tang <yong.tang.github@outlook.com>

…s#5405) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.80.0 to 0.81.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.80.0...v0.81.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [github.com/Azure/azure-sdk-for-go](https://github.com/Azure/azure-sdk-for-go) from 64.1.0+incompatible to 65.0.0+incompatible. - [Release notes](https://github.com/Azure/azure-sdk-for-go/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/CHANGELOG.md) - [Commits](Azure/azure-sdk-for-go@v64.1.0...v65.0.0) --- updated-dependencies: - dependency-name: github.com/Azure/azure-sdk-for-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…oredns#5406) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.19 to 1.44.22. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.19...v1.44.22) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

As the dependabot cannot update the go-yaml automatically, this PR updates gopkg.in/yaml.v3 to v3.0.0 to fix CVE-2022-28948 (See go-yaml/yaml#666) Signed-off-by: Yong Tang <yong.tang.github@outlook.com>

* Update version and release note to 1.9.3 This PR update version and release note to prepare for 1.9.3. Main reason is to address CVE-2022-27191 and CVE-2022-28948 Signed-off-by: Yong Tang <yong.tang.github@outlook.com> * Update notes/coredns-1.9.3.md Co-authored-by: Chris O'Haver <cohaver@infoblox.com> Signed-off-by: Yong Tang <yong.tang.github@outlook.com> * Update notes/coredns-1.9.3.md Co-authored-by: Chris O'Haver <cohaver@infoblox.com> Signed-off-by: Yong Tang <yong.tang.github@outlook.com> Co-authored-by: Chris O'Haver <cohaver@infoblox.com>

Signed-off-by: coredns[bot] <bot@bot.coredns.io>

…oredns#5417)

coredns#5419)

brandisher

Overall the changes look good and match what we discussed yesterday. I left one question for @Miciah about whether we need a release note for the change in SERVFAIL response caching; I'm assuming that SERVFAILs were not cached previously and will now be cached for 5s.

brandisher · 2022-09-29T16:31:09Z

@Miciah this could be a nit so I'll defer to you, but would it be worth including in the release notes that SERVFAIL responses will now be cached for 5s (the value of minNTTL)?

SERVFAIL was cached for 5s in CoreDNS 1.9.2.
https://github.com/coredns/coredns/blob/092c144491e7f62d71eda98a07e4ce815d9df035/plugin/cache/cache.go#L159-L161
This change only makes it configurable, but the default is 5 seconds, and we aren't changing the default.

Ah okay, thanks for catching that and the link! That's what I get for making an assumption :-)

gcs278 · 2022-09-29T22:09:12Z

Just OVN alerts now.

openshift-ci · 2022-09-29T22:25:23Z

@gcs278: The /retest command does not accept any targets.
The following commands are available to trigger required jobs:

/test e2e-aws
/test e2e-aws-upgrade
/test e2e-gcp-serial
/test images
/test unit

The following commands are available to trigger optional jobs:

/test e2e-metal-ipi
/test e2e-metal-ipi-dualstack

Use /test all to run the following jobs that were automatically triggered:

pull-ci-openshift-coredns-master-e2e-aws
pull-ci-openshift-coredns-master-e2e-aws-upgrade
pull-ci-openshift-coredns-master-e2e-gcp-serial
pull-ci-openshift-coredns-master-e2e-metal-ipi
pull-ci-openshift-coredns-master-images
pull-ci-openshift-coredns-master-unit

Details

In response to this:

/retest ci/prow/e2e-metal-ipi
May be fixed now.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

gcs278 · 2022-09-29T22:25:47Z

/test ci/prow/e2e-metal-ipi
may be fixed now.

openshift-ci · 2022-09-29T22:25:50Z

@gcs278: The specified target(s) for /test were not found.
The following commands are available to trigger required jobs:

/test e2e-aws
/test e2e-aws-upgrade
/test e2e-gcp-serial
/test images
/test unit

The following commands are available to trigger optional jobs:

/test e2e-metal-ipi
/test e2e-metal-ipi-dualstack

Use /test all to run the following jobs that were automatically triggered:

pull-ci-openshift-coredns-master-e2e-aws
pull-ci-openshift-coredns-master-e2e-aws-upgrade
pull-ci-openshift-coredns-master-e2e-gcp-serial
pull-ci-openshift-coredns-master-e2e-metal-ipi
pull-ci-openshift-coredns-master-images
pull-ci-openshift-coredns-master-unit

Details

In response to this:

/test ci/prow/e2e-metal-ipi
may be fixed now.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

gcs278 · 2022-09-29T22:26:15Z

/test e2e-metal-ipi
may be fixed now.

cybertron · 2022-09-30T13:49:21Z

/test e2e-metal-ipi

I'm seeing a lot of io timeouts in the coredns logs and it looks like the whole deployment timed out. Maybe the test node was having issues?

brandisher · 2022-09-30T15:44:09Z

OVNKubernetesControllerDisconnectedSouthboundDatabase
/test e2e-gcp-serial

gcs278 · 2022-09-30T16:41:39Z

e2e-metal-ipi worked ✔️ thanks @cybertron

e2e-gcp-serial is a lost cause given the outstanding OVN and disruption bugs. I think we need an override now.

Should be reevaluated next rebase. Co-authored-by: Ryan Fredette <rfredette@redhat.com> Modified-by: Grant Spence <gspence@redhat.com>

Disable dependabot in the openshift fork

Miciah · 2022-09-30T17:24:41Z

There's some weird re-indentation going on here.

I think you mean spaces vs. indents? Great catch, I didn't see that my edits used spaces in github diff or in my editors.
fixed

…lity (coredns#5019)" This reverts commit abaf938. We will carry this commit in OpenShift 4.11 to provide any users with applications that use wildcard DNS lookups more time to migrate their applications. Modified-by: Grant Spence <gspence@redhat.com>

…oredns#5030)" (coredns#5167)" This reverts commit 4693f40.

Miciah · 2022-09-30T22:10:33Z

In the course of reviewing the wildcard carry patch (where @gcs278 had to resolve some conflicts for this rebase), I found and reported coredns#5657. If I apply coredns#5657 on top of #76, then this test case for TestExternal fails:

	{
		Qname: "*._not-udp-or-tcp.svc1.testns.example.com.", Rcode: dns.RcodeSuccess,
	},

However, the same test fails if I check out the v1.8.7 tag (the last upstream version that supported wildcard lookups) and fix TestExternal there. I believe that this test case was always incorrect: The test case has a query for a wildcard with no match, so it should expect an error response.

Additionally, I tried the following two test cases:

	{
		Qname: "any._tcp.svc1.testns.example.com.", Rcode: dns.RcodeSuccess,
		Msg: []msg.Service{
			{Host: "1.2.3.4", Port: 80, TTL: 5, Key: "/c/org/example/testns/svc1"},
		},
	},
	{
		Qname: "_any._tcp.svc1.testns.example.com.", Rcode: dns.RcodeSuccess,
		Msg: []msg.Service{
			{Host: "1.2.3.4", Port: 80, TTL: 5, Key: "/c/org/example/testns/svc1"},
		},
	},

These test cases both pass on v1.8.7 with TestExternal fixed and on coredns#5657, so I believe there has always been a bug in the wildcard logic (that is, both "any" and "_any" are treated as wildcards), and this PR maintains bug-for-bug compatibility.

Let's get this PR merged and let it soak.

If upstream accepts coredns#5657 and someone asks for us to fix the bug in openshift/coredns, then we can treat it as a bug like any other and fix it with a carry patch for coredns#5657.

/lgtm
/approve

openshift-ci · 2022-09-30T22:10:44Z

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: Miciah

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

~~OWNERS~~ [Miciah]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

Miciah · 2022-09-30T22:19:34Z

e2e-aws-upgrade failed with the following failure:

[sig-arch] events should not repeat pathologically
{  1 events happened too frequently  event happened 27 times, something is wrong: ns/openshift-console-operator pod/console-operator-55ff985f74-zbf64 node/ip-10-0-155-208.ec2.internal - reason/ProbeError Readiness probe error: Get "https://10.130.0.35:8443/readyz": dial tcp 10.130.0.35:8443: connect: connection refused body:  }

The closest match for this failure that I found is BZ#1990419 [sig-arch] events should not repeat pathologically - event happened more than 20 times, something is wrong: ns/openshift-console pod/console-XXX node/XXX - reason/Unhealthy Readiness probe failed, which was closed due to insufficient data. Let's see if the same failure re-occurs.

/test e2e-aws-upgrade

openshift-ci · 2022-10-01T00:32:59Z

@gcs278: all tests passed!

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

openshift-ci-robot · 2022-10-01T00:36:01Z

@gcs278: All pull requests linked via external trackers have merged:

openshift/coredns#76

Jira Issue OCPBUGS-1731 has been moved to the MODIFIED state.

Details

In response to this:

Rebased to CoreDNS 1.10.0 so that we use the Kubernetes 1.25 packages.

I made this PR using the same process as #73, #52, #60, and #70:

git remote update

git checkout v1.10.0

git checkout -b merge-1.10.0-tmp

git checkout origin/master

echo 'merge coredns/coredns v1.10.0' | git commit-tree 'merge-1.10.0-tmp^{tree}' -p HEAD -p merge-1.10.0-tmp -F -
ead3b6507d7bd2fc3e67b79d8ff0dff296396bac

git branch merge-1.10.0 ead3b6507d7bd2fc3e67b79d8ff0dff296396bac

git checkout merge-1.10.0

git rev-list --reverse --no-merges 555dd549ee36ba7f626cf8c53707c74af318ec09..origin/master | git cherry-pick --stdin
Note: 555dd549ee36ba7f626cf8c53707c74af318ec09 is the merge commit from the last merge Bug 2090827: Merge 1.9.2 #73

My merge commit from the above process was commit ead3b65.

Before the rebase, we had the following commits:
% git --no-pager log --oneline --no-merges 555dd549ee36ba7f626cf8c53707c74af318ec09..origin/master
ad24eacf6 Updating coredns images to be consistent with ART Reconciling with https://github.com/openshift/ocp-build-data/tree/2e5eba0108299087402c119ba0dc979a0a6c0bd1/images/coredns.yml
349db7a33 UPSTREAM: <carry>: openshift: Revert "Revert "add wildcard warnings (#5030)" (#5167)"
461cbbf60 UPSTREAM: <carry>: openshift: Revert "remove wildcard query functionality (#5019)"
7a41d2b87 UPSTREAM: <carry>: openshift: Disable dependabot
1d2d4f767 UPSTREAM: <carry>: openshift: Vendor required modules
3dc197d15 UPSTREAM: <carry>: openshift: .gitignore: Properly ignore coredns binary
9176cd5bf UPSTREAM: <carry>: openshift: Make coredns exclusion more specific
488cc73b1 UPSTREAM: <carry>: openshift: Add a `make test` target
b648be195 UPSTREAM: <carry>: openshift: Add product build config
1e6995352 UPSTREAM: <carry>: openshift: Add OWNERS
% 
I edited the "Vendor required modules" commit by running go mod vendor and go mod tidy and ammend commit 1d2d4f767 UPSTREAM: <carry>: openshift: Vendor required modules.

I squashed/merged the following commit into the existing "Add product build config" commit:
ad24eacf6 Updating coredns images to be consistent with ART Reconciling with https://github.com/openshift/ocp-build-data/tree/2e5eba0108299087402c119ba0dc979a0a6c0bd1/images/coredns.ym
Git merge conflicts for 461cbbf60 UPSTREAM: <carry>: openshift: Revert "remove wildcard query functionality (#5019)":
plugin/kubernetes/kubernetes.go

Line 630: matchPortAndProtocol function comment update, but matchPortAndProtocol function has been removed so I ignored the updates (see PR Delta)

plugin/kubernetes/external.go

Line 52: changes to variables declaration conflicted because they added endpoint as a string. I merged by taking upstream variable declarations, but added port = "*" and protocol = "*" assignment below for reversion (see PR Delta)

Line 114 & 134: Refactoring moved calls to matchPortAndProtocol and added it in an additional location for resolving headless services (see PR delta)

I'm assuming we want wildcard support for headless and that wildcard support is remove via matchPortAndProtocol, but we don't have that function anyways so just using the match function.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

openshiftGH-75 dns record lifecycle notes

OCPBUGS-1731: Merge 1.10.0

lobshunter and others added 30 commits May 12, 2022 14:13

plugin/dnstap: support FQDN TCP endpoint (coredns#5377)

dbb8a12

* plugin/dnstap: support FQDN TCP endpoint Signed-off-by: lob <pengyu@pingcap.com> * plugin/dnstap: remove unused variable Signed-off-by: lob <pengyu@pingcap.com>

fix and document zone-match regex-no-match case (coredns#5180)

4d1d9ad

Signed-off-by: Chris O'Haver <cohaver@infoblox.com>

auto remove trailing whitespaces

68316f4

Signed-off-by: coredns[bot] <bot@bot.coredns.io>

Correct timeout description (coredns#5388)

d594d61

build(deps): bump actions/upload-artifact from 3.0.0 to 3.1.0 (coredn…

90d4a39

…s#5397)

build(deps): bump github/codeql-action from 2.1.10 to 2.1.11 (coredns…

f2b7003

…#5395)

build(deps): bump actions/dependency-review-action from 1.0.0 to 1.0.1 (

3a02f26

coredns#5396)

recover from panic log including stacktrace to help finding the origin (

91bcbc2

coredns#5392)

Update golang.org/x/crypto to the latest version (coredns#5407)

2c05834

It looks like dependabot couldn't update golang.org/x/crypto automatically to fix the CVE-2022-27191: coredns#5403 (comment) This PR manually fix the dependency. Signed-off-by: Yong Tang <yong.tang.github@outlook.com>

Update gopkg.in/yaml.v3 to v3.0.0 to fix security issues (coredns#5408)

bd4675b

As the dependabot cannot update the go-yaml automatically, this PR updates gopkg.in/yaml.v3 to v3.0.0 to fix CVE-2022-28948 (See go-yaml/yaml#666) Signed-off-by: Yong Tang <yong.tang.github@outlook.com>

auto go fmt

8f7f150

Signed-off-by: coredns[bot] <bot@bot.coredns.io>

build(deps): bump k8s.io/api from 0.24.0 to 0.24.1 (coredns#5415)

6b15279

build(deps): bump github.com/aws/aws-sdk-go from 1.44.22 to 1.44.24 (c…

33234a2

…oredns#5417)

build(deps): bump actions/dependency-review-action from 1.0.1 to 1.0.2 (

0a75e7c

coredns#5419)

brandisher reviewed Sep 29, 2022

View reviewed changes

Miciah and others added 2 commits September 30, 2022 10:19

UPSTREAM: <carry>: openshift: Vendor required modules

d922347

Should be reevaluated next rebase. Co-authored-by: Ryan Fredette <rfredette@redhat.com> Modified-by: Grant Spence <gspence@redhat.com>

UPSTREAM: <carry>: openshift: Disable dependabot

1b37b38

Disable dependabot in the openshift fork

gcs278 force-pushed the merge-1.10.0 branch from 042d888 to 5fb29d4 Compare September 30, 2022 17:21

Miciah reviewed Sep 30, 2022

View reviewed changes

Miciah added 2 commits September 30, 2022 10:34

UPSTREAM: <carry>: openshift: Revert "Revert "add wildcard warnings (c…

b912bfd

…oredns#5030)" (coredns#5167)" This reverts commit 4693f40.

gcs278 force-pushed the merge-1.10.0 branch from 5fb29d4 to b912bfd Compare September 30, 2022 17:35

openshift-ci Bot added the lgtm Indicates that a PR is ready to be merged. label Sep 30, 2022

openshift-ci Bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Sep 30, 2022

openshift-merge-robot merged commit c791eb6 into openshift:master Oct 1, 2022

gcs278 mentioned this pull request Feb 15, 2023

OCPBUGS-7558: Merge 1.10.1 #88

Merged

gcs278 mentioned this pull request Aug 8, 2023

OCPBUGS-13968: Merge 1.11.1 #93

Closed

gcs278 mentioned this pull request Aug 16, 2023

OCPBUGS-13968: Merge 1.11.1 #94

Merged

gcs278 mentioned this pull request May 9, 2024

NE-1721: Merge 1.11.3 #118

Merged

jjkiely pushed a commit to Kuadrant/coredns that referenced this pull request Sep 24, 2025

Merge pull request openshift#76 from Kuadrant/openshiftGH-75

68b0577

openshiftGH-75 dns record lifecycle notes

bentito pushed a commit to bentito/coredns that referenced this pull request Nov 21, 2025

Merge pull request openshift#76 from gcs278/merge-1.10.0

444eec0

OCPBUGS-1731: Merge 1.10.0

Conversation

gcs278 commented Sep 27, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

brandisher left a comment

Choose a reason for hiding this comment

Uh oh!

brandisher Sep 29, 2022

Choose a reason for hiding this comment

Uh oh!

Miciah Sep 30, 2022

Choose a reason for hiding this comment

Uh oh!

brandisher Sep 30, 2022

Choose a reason for hiding this comment

Uh oh!

gcs278 commented Sep 29, 2022

Uh oh!

openshift-ci Bot commented Sep 29, 2022

Uh oh!

gcs278 commented Sep 29, 2022

Uh oh!

openshift-ci Bot commented Sep 29, 2022

Uh oh!

gcs278 commented Sep 29, 2022

Uh oh!

cybertron commented Sep 30, 2022

Uh oh!

brandisher commented Sep 30, 2022

Uh oh!

gcs278 commented Sep 30, 2022

Uh oh!

Miciah Sep 30, 2022

Choose a reason for hiding this comment

Uh oh!

gcs278 Sep 30, 2022

Choose a reason for hiding this comment

Uh oh!

Miciah commented Sep 30, 2022

Uh oh!

openshift-ci Bot commented Sep 30, 2022

Uh oh!

Miciah commented Sep 30, 2022

Uh oh!

openshift-ci Bot commented Oct 1, 2022

Uh oh!

openshift-ci-robot commented Oct 1, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

20 participants

gcs278 commented Sep 27, 2022 •

edited

Loading