You are viewing a plain text version of this content. The canonical link for it is here.
Posted to yarn-issues@hadoop.apache.org by "Hudson (JIRA)" <ji...@apache.org> on 2018/06/04 23:39:00 UTC

[jira] [Commented] (YARN-8365) Revisit the record type used by Registry DNS for upstream resolution

    [ https://issues.apache.org/jira/browse/YARN-8365?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16501036#comment-16501036 ] 

Hudson commented on YARN-8365:
------------------------------

SUCCESS: Integrated in Jenkins build Hadoop-trunk-Commit #14358 (See [https://builds.apache.org/job/Hadoop-trunk-Commit/14358/])
YARN-8365.  Set DNS query type according to client request.             (eyang: rev 5cf37418bdc6ff09c0c1ae3ac8ac4b0867de0de4)
* (edit) hadoop-yarn-project/hadoop-yarn/hadoop-yarn-registry/src/main/java/org/apache/hadoop/registry/server/dns/RegistryDNS.java
* (edit) hadoop-yarn-project/hadoop-yarn/hadoop-yarn-registry/src/test/java/org/apache/hadoop/registry/server/dns/TestRegistryDNS.java


> Revisit the record type used by Registry DNS for upstream resolution
> --------------------------------------------------------------------
>
>                 Key: YARN-8365
>                 URL: https://issues.apache.org/jira/browse/YARN-8365
>             Project: Hadoop YARN
>          Issue Type: Bug
>          Components: yarn-native-services
>            Reporter: Shane Kumpf
>            Assignee: Shane Kumpf
>            Priority: Major
>             Fix For: 3.2.0, 3.1.1
>
>         Attachments: YARN-8365.001.patch
>
>
> YARN-7326 leveraged the ANY record type for upstream resolution, but some implementations [don't support ANY|https://tools.ietf.org/html/draft-ietf-dnsop-refuse-any-06] due to the potential for abuse, namely Cloudflare. Docker Hub leverages Cloudflare for image distribution, so when Registry DNS is used as the sole resolver, docker image downloads are failing. 
> {code:java}
> [root@host ~]# docker run -u root -it centos bash
> Unable to find image 'centos:latest' locally
> latest: Pulling from library/centos
> 469cfcc7a4b3: Already exists
> docker: error pulling image configuration: Get https://production.cloudflare.docker.com/registry-v2/docker/registry/v2/blobs/sha256/e9/e934aafc22064b7322c0250f1e32e5ce93b2d19b356f4537f5864bd102e8531f/data?verify=1527265495-nG8jk%2Bya9qrdPVlXRKGMnOhSnV0%3D: dial tcp: lookup production.cloudflare.docker.com on registry.dns.host:53: no such host.
> {code}
> {code:java}
> [root@host~]# nslookup production.cloudflare.docker.com registry.dns.host
> Server:		registry.dns.host
> Address:	registry.dns.host#53
> Non-authoritative answer:
> production.cloudflare.docker.com	hinfo = "ANY obsoleted" "See draft-ietf-dnsop-refuse-any"
> {code}



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: yarn-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: yarn-issues-help@hadoop.apache.org