1752133 – glibc: Do not fail name resolution if CNAMEs involve aliases which are not host names

Bug 1752133 - glibc: Do not fail name resolution if CNAMEs involve aliases which are not host names

Summary: glibc: Do not fail name resolution if CNAMEs involve aliases which are not ho...

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	Red Hat Enterprise Linux 8
Classification:	Red Hat
Component:	glibc
Sub Component:
Version:	8.4
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	rc
Target Release:	8.0
Assignee:	Florian Weimer
QA Contact:	Martin Coufal
Docs Contact:
URL:
Whiteboard:
Depends On:	1297099
Blocks:	1203710
TreeView+	depends on / blocked

Reported:	2019-09-13 19:54 UTC by Rupesh Patel
Modified:	2023-07-18 14:30 UTC (History)
CC List:	15 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:	Cause: The glibc DNS stub resolver treats CNAME records with owner names that are not host names as DNS packet errors. Consequence: If the DNS stub resolver encounters such a bogus CNAME record, the DNS query is treated as failed, even though there are useful address records among the response. Fix: The glibc stub resolver now skips such invalid CNAME records, not extracting the associated alias information. Result: DNS lookups now succeed even if the server response includes a CNAME chain that contains a domain name that is not a host name.
Clone Of:	1297099
Environment:
Last Closed:	2022-09-22 13:28:05 UTC
Type:	Bug
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Red Hat Bugzilla	2129005	unspecified	CLOSED	glibc: Do not fail name resolution if CNAMEs involve aliases which are not host names [rhel-9.2.0]	2023-06-27 06:24:49 UTC
Red Hat Knowledge Base (Solution)	2116941	None	None	None	2019-09-13 19:57:40 UTC
Sourceware	12154	P2	RESOLVED	Cannot resolve hosts which have wildcard aliases	2022-09-21 19:01:12 UTC

Internal Links: 2129005

Comment 3 Florian Weimer 2022-08-10 09:36:00 UTC

Upstream patches posted:

[PATCH 00/13] nss_dns: Fix handling of non-host CNAMEs (bug 12154)
https://sourceware.org/pipermail/libc-alpha/2022-August/141338.html

Comment 4 Florian Weimer 2022-08-30 08:21:27 UTC

Upstream patches have been committed.

Comment 7 Carlos O'Donell 2022-09-22 13:28:05 UTC

The Red Hat Enterprise Linux Platform Tools team has reviewed this bug with support from our Customer Experience & Engagement team and we have decided that this change is going to be too invasive for the current interfaces as they are implemented in RHEL8.

We will be reviewing fixing this for RHEL9 as part of https://bugzilla.redhat.com/show_bug.cgi?id=2129005.

Note You need to log in before you can comment on or make changes to this bug.