Uploaded image for project: 'Kudu'
  1. Kudu
  2. KUDU-2989

SASL server fails when FQDN is greater than 63 characters long

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Critical
    • Resolution: Fixed
    • 1.10.0, 1.11.0
    • 1.12.0, 1.11.1
    • rpc, security
    • None

    Description

      Currently, on the server side, Kudu doesn't explicitly pass the host's FQDN into the SASL library. Due to an upstream SASL bug (https://github.com/cyrusimap/cyrus-sasl/issues/583) the FQDN gets truncated when trying to determine the server's principal, in the case that the server's fQDN is longer than 64 characters.

      This results in startup failures where the preflight checks fail due to not finding the appropriate keytab entry (after searching for a truncated host name)

      To work around this, we should use our own code to compute the FQDN.

      Attachments

        Activity

          People

            Unassigned Unassigned
            tlipcon Todd Lipcon
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: