Uploaded image for project: 'Kudu'
  1. Kudu
  2. KUDU-2989

SASL server fails when FQDN is greater than 63 characters long

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 1.10.0, 1.11.0
    • Fix Version/s: 1.12.0, 1.11.1
    • Component/s: rpc, security
    • Labels:
      None

      Description

      Currently, on the server side, Kudu doesn't explicitly pass the host's FQDN into the SASL library. Due to an upstream SASL bug (https://github.com/cyrusimap/cyrus-sasl/issues/583) the FQDN gets truncated when trying to determine the server's principal, in the case that the server's fQDN is longer than 64 characters.

      This results in startup failures where the preflight checks fail due to not finding the appropriate keytab entry (after searching for a truncated host name)

      To work around this, we should use our own code to compute the FQDN.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              tlipcon Todd Lipcon
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: