From 9b3ceffcf01a350eafd2770e8bae29db97eff5f6 Mon Sep 17 00:00:00 2001
From: Kasturi Narra <knarra@knarra-thinkpadp1gen7.rmtinbg.csb>
Date: Tue, 10 Feb 2026 23:49:14 +0530
Subject: [PATCH] Add -dns-search=. to podman run command

Remove podman's 'dns.podman' search domain to fix DNS conformance
tests. The extra search domain triggers a dig 9.9.5 TCP+search bug
that causes 3 DNS tests to fail.
---
 src/cluster_manager.sh | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/src/cluster_manager.sh b/src/cluster_manager.sh
index 915b0995..5397973e 100755
--- a/src/cluster_manager.sh
+++ b/src/cluster_manager.sh
@@ -110,8 +110,13 @@ _add_node() {
     done
 
     local network_opts="--network ${network_name}"
+    local dns_opts=""
     if [ "${ISOLATED_NETWORK}" = "0" ]; then
         network_opts="${network_opts} --ip ${ip_address}"
+        # Prevent podman from adding 'dns.podman' to the container's
+        # /etc/resolv.conf search domains. The extra search domain
+        # breaks CNCF DNS conformance tests with older dig versions.
+        dns_opts="--dns-search=."
     fi
 
     local port_opts=""
@@ -126,6 +131,7 @@ _add_node() {
     # shellcheck disable=SC2086
     sudo podman run --privileged -d \
         --ulimit nofile=524288:524288 \
+        ${dns_opts} \
         ${vol_opts} \
         ${network_opts} \
         ${port_opts} \