Description
Receive buffer used in Kafka servers to process SASL packets is unbounded. This can results in brokers crashing with OutOfMemory error when an invalid SASL packet is received.
There is a standard SASL property in Java javax.security.sasl.maxbuffer that can be used to specify buffer size. When properties are added to the Sasl implementation in KAFKA-3149, we can use the standard property to limit receive buffer size.
But since this is a potential DoS issue, we should set a reasonable limit in 0.9.0.1.