external-dns icon indicating copy to clipboard operation
external-dns copied to clipboard

Published 20 hours ago verified publisher icon kubernetes-sigs

Try #3: Support encrypted DNS txt records

Open vsychov opened this issue 4 years ago • 25 comments

Hi guys,

I found few pull request about txt records encryption (#1314, #1115, #1538), that have conflicts now, or not merged. This PR have latest PR (#1538) with resolved conflicts, hope it will help you to review and merge it.

Fixes #1825 Fixes #854

Checklist

  • [x] Unit tests updated
  • [x] End user documentation updated

vsychov avatar Oct 20 '20 10:10 vsychov

/assign @njuettner

vsychov avatar Oct 20 '20 10:10 vsychov

/kind feature

vsychov avatar Oct 20 '20 12:10 vsychov

@Raffo, I made some code refactoring, fixed error handling, and crypto functions logic little bit, do you have any other comments?

vsychov avatar Oct 22 '20 14:10 vsychov

Hi @Raffo , is all good, or something more changes needed for merge it?

vsychov avatar Nov 06 '20 11:11 vsychov

Anything missing in this PR beside conflicts? I am really interested in this new feature. 😄

marcgascon avatar Dec 14 '20 08:12 marcgascon

I fixed conflicts with master, do It need more changes for be merged, @Raffo?

vsychov avatar Mar 02 '21 20:03 vsychov

@Raffo, fixed

vsychov avatar Mar 03 '21 21:03 vsychov

@Raffo Sorry for tagging you but it seems you need to approve this change. Is there any way you can look into this? We would like to use the txt-registry but don't want to expose any more information to the outside world.

Mattie112 avatar Jun 03 '21 10:06 Mattie112

Any reason why this PR not merged yet? It is a very good new feature to not leak any data about your cluster

SCLogo avatar Jul 08 '21 10:07 SCLogo

@Raffo @njuettner Can we help in anything to merge this PR ? It fixes a huge security leak I think. Thanks

SCLogo avatar Jul 13 '21 10:07 SCLogo

@vsychov could you please change request change to review request? maybe this is the only issue here.

SCLogo avatar Jul 27 '21 10:07 SCLogo

The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.

This bot triages issues and PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the issue is closed

You can:

  • Mark this issue or PR as fresh with /remove-lifecycle stale
  • Mark this issue or PR as rotten with /lifecycle rotten
  • Close this issue or PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

k8s-triage-robot avatar Oct 25 '21 10:10 k8s-triage-robot

We still very much want this feature and it is already a PR, so please /remove-lifecycle stale ?

Mattie112 avatar Oct 25 '21 10:10 Mattie112

/remove-lifecycle stale

vsychov avatar Oct 25 '21 14:10 vsychov

@sheerun @seanmalloy @njuettner @vinny-sabatini Hi guys, any chance that it will be reviewed and merged?

vsychov avatar Dec 28 '21 18:12 vsychov

@sheerun @seanmalloy @njuettner @vinny-sabatini Hi guys, any chance that it will be reviewed and merged?

I am really look to see this for months, seriously consider a fork because of this.

Mario-F avatar Dec 28 '21 18:12 Mario-F

We already did a fork :(

SCLogo avatar Feb 18 '22 14:02 SCLogo

We already did a fork :(

@SCLogo I don't suppose you could share a link? It doesn't appear to be on your profile

mrobinson-wavehq avatar Apr 05 '22 19:04 mrobinson-wavehq

The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.

This bot triages issues and PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the issue is closed

You can:

  • Mark this issue or PR as fresh with /remove-lifecycle stale
  • Mark this issue or PR as rotten with /lifecycle rotten
  • Close this issue or PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

k8s-triage-robot avatar Jul 19 '22 08:07 k8s-triage-robot

/remove-lifecycle stale

Mattie112 avatar Jul 19 '22 08:07 Mattie112

@vsychov could you please do a rebase ?

SCLogo avatar Aug 09 '22 11:08 SCLogo

We already did a fork :(

@SCLogo I don't suppose you could share a link? It doesn't appear to be on your profile

sorry, it is in our private repo :(

SCLogo avatar Aug 09 '22 11:08 SCLogo

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: vsychov Once this PR has been reviewed and has the lgtm label, please ask for approval from raffo by writing /assign @raffo in a comment. For more information see:The Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment Approvers can cancel approval by writing /approve cancel in a comment

k8s-ci-robot avatar Aug 09 '22 14:08 k8s-ci-robot

@SCLogo , done

vsychov avatar Aug 09 '22 14:08 vsychov

@vsychov: PR needs rebase.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

k8s-ci-robot avatar Sep 21 '22 23:09 k8s-ci-robot

The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.

This bot triages issues and PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the issue is closed

You can:

  • Mark this issue or PR as fresh with /remove-lifecycle stale
  • Mark this issue or PR as rotten with /lifecycle rotten
  • Close this issue or PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

k8s-triage-robot avatar Dec 21 '22 00:12 k8s-triage-robot

/remove-lifecycle stale

(I understand that everybody is busy, but this was created, then reviewed, improved but now: total silence, why?)

Mattie112 avatar Dec 21 '22 08:12 Mattie112

@Raffo @njuettner , any chance that it will be merged?

vsychov avatar Dec 22 '22 09:12 vsychov

The Kubernetes project currently lacks enough contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the PR is closed

You can:

  • Mark this PR as fresh with /remove-lifecycle stale
  • Close this PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

k8s-triage-robot avatar Apr 07 '23 22:04 k8s-triage-robot

So strange that there is ZERO response on this completed feature.

/remove-lifecycle stale

Mattie112 avatar Apr 08 '23 06:04 Mattie112

/ok-to-test

szuecs avatar Apr 11 '23 19:04 szuecs

@vsychov sorry that we are so unresponsive. There are too many PRs and issues to respond to, but I try to get something done. PR looks fine from my side, besides the panic I commented. If this is a severe issue, which I don't think it is you should rather log.Fatal then panic, because there is no helpful context that the panic provides in this case.

Another thing that I miss is end-user documentation. Every feature comes with tests and documentation, otherwise no merge.

szuecs avatar Apr 11 '23 19:04 szuecs