Provider uses Go's resolver rather than the OS'sΒ #241
Description
Terraform Version
Terraform v1.2.6
on darwin_arm64
+ provider registry.terraform.io/cyrilgdn/postgresql v1.16.0
Affected Resource(s)
postgresql_*
Expected Behavior
The provider should use the OS's resolver, so that DNS behaves as the user expects.
Actual Behavior
The provider uses the primitive resolver built in to Go, causing it to behave differently than all other software running on the same system.
Steps to Reproduce
(This is one example, using one specific feature of the macOS resolver that Go doesn't implement, but the issue is a general one and affects all platforms in some way or another.)
echo "nameserver 1.2.3.4" > /etc/resolver/internal.example.com- configure the provider to connect to
db.internal.example.com - observe that the provider tries to look up
db.internal.example.comon the system default nameserver rather than on1.2.3.4
Important Factoids
This issue affects more than just macOS. The Go resolver deviates from the system resolver behaviour in at least one way on all platforms. But to use macOS as an example, as shown above it is possible to set different resolvers for different domain name suffixes, for example in order to look up names for internal infrastructure via the DNS server on a VPN while sending public queries to the default resolver. This does not work with this provider because it doesn't use the system resolver. That's particularly problematic with this provider given how common it is to use private DNS zones for internal infrastructure like databases.
By using Go's built-in resolver, DNS resolution for the provider differs from all other software running on the same system, leading to confusing situations that cannot be solved easily.
Terraform core builds with CGO_ENABLED=1 on all platforms since 1.0.1 to avoid this issue, and most providers (all major ones) have also moved to building with CGo, so hopefully this should be easily fixed in this provider too.