Support custom list of services to be added to /etc/hosts in cluster DNS operator - RFE-4145

openapi/openapi.json

@@ -28801,6 +28801,26 @@
         }
       }
     },
+    "com.github.openshift.api.operator.v1.DNSNodeService": {
+      "description": "DNSNodeService represents a Kubernetes service by name and namespace for node services.",
+      "type": "object",
+      "required": [
+        "name",
+        "namespace"
+      ],
+      "properties": {
+        "name": {
+          "description": "name is the name of the service. The name should consist of at most 63 characters, and of only lowercase alphanumeric characters and hyphens, and should start with an alphabetic character and end with an alphanumeric character.",
+          "type": "string",
+          "default": ""
+        },
+        "namespace": {
+          "description": "namespace is the namespace of the service. The namespace should consist of at most 63 characters, and of only lowercase alphanumeric characters and hyphens, and should start and end with an alphanumeric character.",
+          "type": "string",
+          "default": ""
+        }
+      }
+    },
     "com.github.openshift.api.operator.v1.DNSOverTLSConfig": {
       "description": "DNSOverTLSConfig describes optional DNSTransportConfig fields that should be captured.",
       "type": "object",
@@ -28842,6 +28862,19 @@
           "default": {},
           "$ref": "#/definitions/com.github.openshift.api.operator.v1.DNSNodePlacement"
         },
+        "nodeServices": {
+          "description": "nodeServices specifies a list of service objects for which host level resolvable entries should be added. Services in this list will be added to /etc/hosts on each node in the cluster by the node resolver. When not specified, only the default image registry service is resolvable. Services in this list will be added in addition to the default \"image-registry.openshift-image-registry.svc\" service. The default image registry service cannot be removed. For each service reference, entries will be created using the format \"<name>.<namespace>.svc\" and an alias with the CLUSTER_DOMAIN suffix of cluster.local will also be added.",
+          "type": "array",
+          "items": {
+            "default": {},
+            "$ref": "#/definitions/com.github.openshift.api.operator.v1.DNSNodeService"
+          },
+          "x-kubernetes-list-map-keys": [
+            "name",
+            "namespace"
+          ],
+          "x-kubernetes-list-type": "map"
+        },
         "operatorLogLevel": {
           "description": "operatorLogLevel controls the logging level of the DNS Operator. Valid values are: \"Normal\", \"Debug\", \"Trace\". Defaults to \"Normal\". setting operatorLogLevel: Trace will produce extremely verbose logs.",
           "type": "string"

operator/v1/types_dns.go

@@ -95,6 +95,22 @@ type DNSSpec struct {
 	// +kubebuilder:default=Normal
 	OperatorLogLevel DNSLogLevel `json:"operatorLogLevel,omitempty"`
 
+	// nodeServices specifies a list of service objects for which host level resolvable entries should be added.
+	// Services in this list will be added to /etc/hosts on each node in the cluster by the node resolver.
+	// When not specified, only the default image registry service is resolvable.
+	// Services in this list will be added in addition to the default "image-registry.openshift-image-registry.svc" service.
+	// The default image registry service cannot be removed.
+	// For each service reference, entries will be created using the format "<name>.<namespace>.svc"
+	// and an alias with the CLUSTER_DOMAIN suffix of cluster.local will also be added.
+	//
+	// +optional
+	// +kubebuilder:validation:MaxItems=20
+	// +kubebuilder:validation:MinItems=1
+	// +listType=map
+	// +listMapKey=name
+	// +listMapKey=namespace
+	NodeServices []DNSNodeService `json:"nodeServices,omitempty"`
+
 	// logLevel describes the desired logging verbosity for CoreDNS.
 	// Any one of the following values may be specified:
 	// * Normal logs errors from upstream resolvers.
@@ -163,6 +179,27 @@ var (
 	DNSLogLevelTrace DNSLogLevel = "Trace"
 )
 
+// DNSNodeService represents a Kubernetes service by name and namespace for node services.
+type DNSNodeService struct {
+	// name is the name of the service.
+	// The name should consist of at most 63 characters, and of only lowercase alphanumeric characters and hyphens,
+	// and should start with an alphabetic character and end with an alphanumeric character.
+	// +required
+	// +kubebuilder:validation:MinLength=1
+	// +kubebuilder:validation:MaxLength=63
+	// +kubebuilder:validation:XValidation:rule=`!format.dns1035Label().validate(self).hasValue()`,message="a DNS-1035 label must consist of lower case alphanumeric characters or '-', start with an alphabetic character, and end with an alphanumeric character"
+	Name string `json:"name"`
+
+	// namespace is the namespace of the service.
+	// The namespace should consist of at most 63 characters, and of only lowercase alphanumeric characters and hyphens,
+	// and should start and end with an alphanumeric character.
+	// +required
+	// +kubebuilder:validation:MinLength=1
+	// +kubebuilder:validation:MaxLength=63
+	// +kubebuilder:validation:XValidation:rule=`!format.dns1123Label().validate(self).hasValue()`,message="the value must consist of only lowercase alphanumeric characters and hyphens"
+	Namespace string `json:"namespace"`
+}
+
 // Server defines the schema for a server that runs per instance of CoreDNS.
 type Server struct {
 	// name is required and specifies a unique name for the server. Name must comply

operator/v1/zz_generated.crd-manifests/0000_70_dns_00_dnses.crd.yaml

@@ -191,6 +191,55 @@ spec:
                       type: object
                     type: array
                 type: object
+              nodeServices:
+                description: |-
+                  nodeServices specifies a list of service objects for which host level resolvable entries should be added.
+                  Services in this list will be added to /etc/hosts on each node in the cluster by the node resolver.
+                  When not specified, only the default image registry service is resolvable.
+                  Services in this list will be added in addition to the default "image-registry.openshift-image-registry.svc" service.
+                  The default image registry service cannot be removed.
+                  For each service reference, entries will be created using the format "<name>.<namespace>.svc"
+                  and an alias with the CLUSTER_DOMAIN suffix of cluster.local will also be added.
+                items:
+                  description: DNSNodeService represents a Kubernetes service by name
+                    and namespace for node services.
+                  properties:
+                    name:
+                      description: |-
+                        name is the name of the service.
+                        The name should consist of at most 63 characters, and of only lowercase alphanumeric characters and hyphens,
+                        and should start with an alphabetic character and end with an alphanumeric character.
+                      maxLength: 63
+                      minLength: 1
+                      type: string
+                      x-kubernetes-validations:
+                      - message: a DNS-1035 label must consist of lower case alphanumeric
+                          characters or '-', start with an alphabetic character, and
+                          end with an alphanumeric character
+                        rule: '!format.dns1035Label().validate(self).hasValue()'
+                    namespace:
+                      description: |-
+                        namespace is the namespace of the service.
+                        The namespace should consist of at most 63 characters, and of only lowercase alphanumeric characters and hyphens,
+                        and should start and end with an alphanumeric character.
+                      maxLength: 63
+                      minLength: 1
+                      type: string
+                      x-kubernetes-validations:
+                      - message: the value must consist of only lowercase alphanumeric
+                          characters and hyphens
+                        rule: '!format.dns1123Label().validate(self).hasValue()'
+                  required:
+                  - name
+                  - namespace
+                  type: object
+                maxItems: 20
+                minItems: 1
+                type: array
+                x-kubernetes-list-map-keys:
+                - name
+                - namespace
+                x-kubernetes-list-type: map
               operatorLogLevel:
                 default: Normal
                 description: |-

operator/v1/zz_generated.featuregated-crd-manifests/dnses.operator.openshift.io/AAA_ungated.yaml

@@ -192,6 +192,55 @@ spec:
                       type: object
                     type: array
                 type: object
+              nodeServices:
+                description: |-
+                  nodeServices specifies a list of service objects for which host level resolvable entries should be added.
+                  Services in this list will be added to /etc/hosts on each node in the cluster by the node resolver.
+                  When not specified, only the default image registry service is resolvable.
+                  Services in this list will be added in addition to the default "image-registry.openshift-image-registry.svc" service.
+                  The default image registry service cannot be removed.
+                  For each service reference, entries will be created using the format "<name>.<namespace>.svc"
+                  and an alias with the CLUSTER_DOMAIN suffix of cluster.local will also be added.
+                items:
+                  description: DNSNodeService represents a Kubernetes service by name
+                    and namespace for node services.
+                  properties:
+                    name:
+                      description: |-
+                        name is the name of the service.
+                        The name should consist of at most 63 characters, and of only lowercase alphanumeric characters and hyphens,
+                        and should start with an alphabetic character and end with an alphanumeric character.
+                      maxLength: 63
+                      minLength: 1
+                      type: string
+                      x-kubernetes-validations:
+                      - message: a DNS-1035 label must consist of lower case alphanumeric
+                          characters or '-', start with an alphabetic character, and
+                          end with an alphanumeric character
+                        rule: '!format.dns1035Label().validate(self).hasValue()'
+                    namespace:
+                      description: |-
+                        namespace is the namespace of the service.
+                        The namespace should consist of at most 63 characters, and of only lowercase alphanumeric characters and hyphens,
+                        and should start and end with an alphanumeric character.
+                      maxLength: 63
+                      minLength: 1
+                      type: string
+                      x-kubernetes-validations:
+                      - message: the value must consist of only lowercase alphanumeric
+                          characters and hyphens
+                        rule: '!format.dns1123Label().validate(self).hasValue()'
+                  required:
+                  - name
+                  - namespace
+                  type: object
+                maxItems: 20
+                minItems: 1
+                type: array
+                x-kubernetes-list-map-keys:
+                - name
+                - namespace
+                x-kubernetes-list-type: map
               operatorLogLevel:
                 default: Normal
                 description: |-