From ee4b6f9ebbeb4ca85d88307ea2ae35f2770299fd Mon Sep 17 00:00:00 2001
From: kahirokunn <okinakahiro@gmail.com>
Date: Thu, 15 Jun 2023 11:17:07 +0900
Subject: [PATCH] chore: When hostNetwork is enabled, dnsPolicy is now set to
 ClusterFirstWithHostNet.

https://kubernetes.io/docs/concepts/services-networking/dns-pod-service/#pod-s-dns-policy

> For Pods running with hostNetwork, you should explicitly set its DNS policy to "ClusterFirstWithHostNet".
---
 deploy/charts/cert-manager/templates/webhook-deployment.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/deploy/charts/cert-manager/templates/webhook-deployment.yaml b/deploy/charts/cert-manager/templates/webhook-deployment.yaml
index 6c13ec376bf..93354deb8c7 100644
--- a/deploy/charts/cert-manager/templates/webhook-deployment.yaml
+++ b/deploy/charts/cert-manager/templates/webhook-deployment.yaml
@@ -55,6 +55,9 @@ spec:
       {{- if .Values.webhook.hostNetwork }}
       hostNetwork: true
       {{- end }}
+      {{- if .Values.webhook.hostNetwork }}
+      dnsPolicy: ClusterFirstWithHostNet
+      {{- end }}
       containers:
         - name: {{ .Chart.Name }}-webhook
           {{- with .Values.webhook.image }}