remote-session: use --net=host for remote cosa

It seems like podman purposely filters out local DNS resolvers like systemd-resolved in favour of directly mentioning specifying the upstream DNS servers. That messes up with a VPN setup we have though where we need to go through systemd-resolved to resolve hosts located on the VPN. Passing `--dns=127.0.0.53` would also work, but let's just simplify things further and pass through the host network. Ref: containers/podman#3277
coreos · Nov 30, 2023 · ff0e41d · ff0e41d
1 parent 13583cc
commit ff0e41d
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/cmd/remote-session.go b/cmd/remote-session.go
@@ -135,7 +135,7 @@ func preRunCheckEnv(c *cobra.Command, args []string) error {
 // COREOS_ASSEMBLER_REMOTE_SESSION environment variable.
 func runCreate(c *cobra.Command, args []string) error {
 	podmanargs := []string{"--remote", "run", "--rm", "-d",
-		"--pull=always", "--privileged", "--security-opt=label=disable",
+		"--pull=always", "--net=host", "--privileged", "--security-opt=label=disable",
 		"--volume", remoteSessionOpts.CreateWorkdir,
 		"--workdir", remoteSessionOpts.CreateWorkdir,
 		// Mount required volume for buildextend-secex, it will be empty on