Receive buffer used in Kafka servers to process SASL packets is unbounded. This can results in brokers crashing with OutOfMemory error when an invalid SASL packet is received.
There is a standard SASL property in Java javax.security.sasl.maxbuffer that can be used to specify buffer size. When properties are added to the Sasl implementation in
KAFKA-3149, we can use the standard property to limit receive buffer size.
But since this is a potential DoS issue, we should set a reasonable limit in 0.9.0.1.