Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

The async resolver only tries the first nameserver in /etc/resolv.conf #1909

Closed
sssd-bot opened this issue May 2, 2020 · 0 comments
Closed

The async resolver only tries the first nameserver in /etc/resolv.conf #1909

sssd-bot opened this issue May 2, 2020 · 0 comments
Assignees
@jhrozek
Labels
Closed: Fixed Issue was closed as fixed.

Comments

@sssd-bot
Copy link

sssd-bot commented May 2, 2020

Cloned from Pagure issue: https://pagure.io/SSSD/sssd/issue/867

  • Created at 2011-05-11 22:20:14 by sgallagh
  • Closed as Fixed
  • Assigned to jhrozek

We're not properly failing over to secondary DNS servers if the first server in the list is broken.

Steps to reproduce:

  1. Set up a valid /etc/resolv.conf with a working primary DNS server
  2. Add {{{nameserver 127.0.0.2}}} to the above the working DNS entries (simulates having an unreachable DNS server in the list)
  3. Enable debug logs and restart SSSD

The debug log will contain

(Wed May 11 16:08:52 2011) [sssd[be[example.com]]] [fo_resolve_service_done] (1): Failed to resolve server 'ldap.example.com': Could not contact DNS servers

and SSSD will operate permanently in offline mode because it can never resolve the SRV records.

It's unclear right now whether the bug is in SSSD's async resolver or internal to the c-ares library.

Comments

Comment from sgallagh at 2011-05-11 22:22:35

Fields changed

description: We're not properly failing over to secondary DNS servers if the first server in the list is broken.

Steps to reproduce:

  1. Set up a valid /etc/resolv.conf with a working primary DNS server
  2. Add {{{nameserver 127.0.0.2}}} to the above the working DNS entries
  3. Enable debug logs and restart SSSD

The debug log will contain
{{{
(Wed May 11 16:08:52 2011) [sssd[be[example.com]]] [fo_resolve_service_done] (1): Failed to resolve server 'ldap.example.com': Could not contact DNS servers
}}}
and SSSD will operate permanently in offline mode because it can never resolve the SRV records.

It's unclear right now whether the bug is in SSSD's async resolver or internal to the c-ares library. => We're not properly failing over to secondary DNS servers if the first server in the list is broken.

Steps to reproduce:

  1. Set up a valid /etc/resolv.conf with a working primary DNS server
  2. Add {{{nameserver 127.0.0.2}}} to the above the working DNS entries (simulates having an unreachable DNS server in the list)
  3. Enable debug logs and restart SSSD

The debug log will contain
{{{
(Wed May 11 16:08:52 2011) [sssd[be[example.com]]] [fo_resolve_service_done] (1): Failed to resolve server 'ldap.example.com': Could not contact DNS servers
}}}
and SSSD will operate permanently in offline mode because it can never resolve the SRV records.

It's unclear right now whether the bug is in SSSD's async resolver or internal to the c-ares library.

Comment from jhrozek at 2011-05-12 13:36:55

Fields changed

patch: 0 => 1
status: new => assigned

Comment from sgallagh at 2011-05-12 21:47:21

Fixed by
- 4ebd399 (master)
- a5c7d86 (sssd-1-5)

resolution: => fixed
status: assigned => closed

Comment from dpal at 2012-01-19 03:10:32

Fields changed

rhbz: => 0

Comment from sgallagh at 2017-02-24 14:48:43

Metadata Update from @sgallagh:

  • Issue assigned to jhrozek
  • Issue set to the milestone: SSSD 1.5.8
@sssd-bot sssd-bot added the Closed: Fixed Issue was closed as fixed. label May 2, 2020
@sssd-bot sssd-bot closed this as completed May 2, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jhrozek jhrozek

Labels
Closed: Fixed Issue was closed as fixed.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jhrozek @sssd-bot