#2043 sudo: do not fail when unable to resolve fqdn
Closed: Fixed None Opened 5 years ago by pbrezina.

When sssd with sudo fails to obtain fqdn from hostname, we fail to download rules from the server. We should just disable host filter. Logs already suggest this solution:

From the logs attached to this bugzilla, I can see that sssd was unable to contact DNS server to retrieve FQDN:
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [resolv_gethostbyname_done] (0x0040): querying hosts database failed [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostnames_done] (0x0040): Could not resolve fqdn for this machine, error [5]: Input/output error, resolver returned: [11]: Could not contact DNS servers
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve hostnames [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve host information - (host filter will be disabled) [5]: Input/output error

Fields changed

description: When sssd with sudo fails to obtain fqdn from hostname, we fail to download rules from the server. We should just disable host filter. Logs already suggest this solution:

From the logs attached to this bugzilla, I can see that sssd was unable to contact DNS server to retrieve FQDN:
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [resolv_gethostbyname_done] (0x0040): querying hosts database failed [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostnames_done] (0x0040): Could not resolve fqdn for this machine, error [5]: Input/output error, resolver returned: [11]: Could not contact DNS servers
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve hostnames [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve host information - (host filter will be disabled) [5]: Input/output error => When sssd with sudo fails to obtain fqdn from hostname, we fail to download rules from the server. We should just disable host filter. Logs already suggest this solution:

{{{
From the logs attached to this bugzilla, I can see that sssd was unable to contact DNS server to retrieve FQDN:
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [resolv_gethostbyname_done] (0x0040): querying hosts database failed [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostnames_done] (0x0040): Could not resolve fqdn for this machine, error [5]: Input/output error, resolver returned: [11]: Could not contact DNS servers
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve hostnames [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve host information - (host filter will be disabled) [5]: Input/output error
}}}

Fields changed

patch: 0 => 1

Fields changed

owner: somebody => pbrezina
status: new => assigned

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.10.2

resolution: => fixed
status: assigned => closed

Metadata Update from @pbrezina:
- Issue assigned to pbrezina
- Issue set to the milestone: SSSD 1.10.2

2 years ago

Login to comment on this ticket.

Metadata