#2043 sudo: do not fail when unable to resolve fqdn
Closed: Fixed None Opened 6 years ago by pbrezina.

When sssd with sudo fails to obtain fqdn from hostname, we fail to download rules from the server. We should just disable host filter. Logs already suggest this solution:

From the logs attached to this bugzilla, I can see that sssd was unable to contact DNS server to retrieve FQDN:
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [resolv_gethostbyname_done] (0x0040): querying hosts database failed [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostnames_done] (0x0040): Could not resolve fqdn for this machine, error [5]: Input/output error, resolver returned: [11]: Could not contact DNS servers
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve hostnames [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve host information - (host filter will be disabled) [5]: Input/output error

Fields changed

description: When sssd with sudo fails to obtain fqdn from hostname, we fail to download rules from the server. We should just disable host filter. Logs already suggest this solution:

From the logs attached to this bugzilla, I can see that sssd was unable to contact DNS server to retrieve FQDN:
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [resolv_gethostbyname_done] (0x0040): querying hosts database failed [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostnames_done] (0x0040): Could not resolve fqdn for this machine, error [5]: Input/output error, resolver returned: [11]: Could not contact DNS servers
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve hostnames [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve host information - (host filter will be disabled) [5]: Input/output error => When sssd with sudo fails to obtain fqdn from hostname, we fail to download rules from the server. We should just disable host filter. Logs already suggest this solution:

{{{
From the logs attached to this bugzilla, I can see that sssd was unable to contact DNS server to retrieve FQDN:
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [resolv_gethostbyname_done] (0x0040): querying hosts database failed [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostnames_done] (0x0040): Could not resolve fqdn for this machine, error [5]: Input/output error, resolver returned: [11]: Could not contact DNS servers
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve hostnames [5]: Input/output error
(Tue Jul 16 14:37:49 2013) [sssd[be[LDAP]]] [sdap_sudo_get_hostinfo_done] (0x0020): Unable to retrieve host information - (host filter will be disabled) [5]: Input/output error
}}}

Fields changed

patch: 0 => 1

Fields changed

owner: somebody => pbrezina
status: new => assigned

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.10.2

resolution: => fixed
status: assigned => closed

Metadata Update from @pbrezina:
- Issue assigned to pbrezina
- Issue set to the milestone: SSSD 1.10.2

3 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/3085

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.

Metadata