openova/openova
1
0
Fork 0
Code Issues Pull Requests Actions 4 Packages Projects Releases Wiki Activity
790fc7efb0
openova/platform/powerdns/chart/Chart.yaml
hatiyildiz 20c0543806 fix(powerdns): correct dnsdist image tag + drop readOnlyRootFilesystem (1.0.2) 
Two runtime issues caught during first contabo-mkt rollout:

1. dnsdist image tag was "1.9" (default) — that tag doesn't exist in
   docker.io/powerdns/dnsdist-19. The 1.9.x line publishes 1.9.0 .. 1.9.14
   (no rolling "1.9" alias). Pinned to 1.9.14 (current latest).

2. PowerDNS pod crash-looped on Errno 30 (Read-only file system:
   /etc/powerdns/pdns.d/0-api.conf.conf). The upstream pdns_server-startup
   script writes rendered config files to /etc/powerdns/pdns.d/ at
   container start, and the upstream template doesn't expose an emptyDir
   we could redirect that path to. Set readOnlyRootFilesystem=false with
   a verbose comment explaining why; the rest of the security context
   (runAsNonRoot, runAsUser=953, drop ALL caps) stays in place.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-04-29 08:06:39 +02:00

32 lines
1.4 KiB
YAML
Raw Blame History

apiVersion: v2
name: bp-powerdns
version: 1.0.2
description: |
Catalyst-curated Blueprint wrapper for PowerDNS Authoritative.
Carries Catalyst-specific values.yaml + templates (CNPG cluster, dnsdist
companion, Traefik api-ingress, placeholder anycast endpoint) on top of
the upstream Helm chart. The bootstrap-kit installer
(products/catalyst/bootstrap/api/internal/bootstrap/) reads the upstream
chart reference from values.yaml's catalystBlueprint metadata block and
applies the values overlay at helm install time.
Mirrors the bp-cilium / bp-keycloak / bp-cert-manager wrapper shape:
Chart.yaml lists the upstream chart as a Helm dependency so
`helm dependency build` resolves it; values.yaml carries both the
catalystBlueprint metadata block and the upstream subchart values.
type: application
keywords: [catalyst, blueprint, powerdns, dns, dnssec, lua-records, dnsdist]
maintainers:
- name: OpenOva Catalyst
email: catalyst@openova.io
# Upstream chart pulled in as a Helm subchart so `helm dependency build`
# bundles it into the OCI artifact. Pinned to pschichtel/powerdns 0.10.0
# (verified publisher on Artifact Hub, tracks docker.io/powerdns/pdns-auth-50
# at appVersion 5.0.3 — see values.yaml `catalystBlueprint.upstream` for
# the rationale).
dependencies:
- name: powerdns
version: "0.10.0"
repository: "https://schich.tel/helm-charts"
Reference in New Issue View Git Blame Copy Permalink