[11578] in Kerberos-V5-bugs
[krbdev.mit.edu #6741] bug report: "too many SRV records" becomes "no
daemon@ATHENA.MIT.EDU (\"\"Richard E. Silverman\" via RT\)
Mon Jun 14 16:01:10 2010
Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "\"\"Richard E. Silverman\" via RT\"" <rt-comment@krbdev.MIT.EDU>
In-Reply-To: <rt-6741@krbdev.mit.edu>
Message-ID: <rt-6741-32941.6.46517181363357@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #6741'":;"'AdminCc of krbdev.mit.edu Ticket #6741'":;@MIT.EDU
Date: Mon, 14 Jun 2010 16:01:09 -0400 (EDT)
Reply-To: rt-comment@krbdev.MIT.EDU
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
The following message is a courtesy copy of an article
that has been posted to comp.protocols.kerberos as well.
In 1.8.1, there is the following code in src/lib/krb5/os/dnsglue.c:
krb5int_dns_init(struct krb5int_dns_state **dsp,
char *host, int nclass, int ntype)
{
...
nextincr = 2048;
maxincr = INT_MAX;
...
One day, due to an error, the number of KDC SRV records for one of our
realms doubled from 27 to 54... and KDC lookups via DNS prompty broke. I
bumped up the nextincr value above, and it started working again.
Probably not the right fix, but just letting you know that there's a bug
here.
--
Richard Silverman
res@qoxp.net
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
