Red Hat Bugzilla – Bug 717378
Backport getaddrinfo workaround
Last modified: 2016-01-22 12:07:53 EST
getaddrinfo() apparently does PTR lookups if anything but AF_UNSPEC is set for the family.
In krb5_snam_to_principal() AF_INET was used and this causes PTR requests to be done even when rdns = false is set in krb5.conf
Moreover checking PTR records yields wrong canonicalization on networks where PTR records are wrong and can't be easily fixed.
This caused issues on a customer network.
Upstream has fixed this issue with ticket #6922
It would be nice to backport this fix asap.
Upstream bug #6923 is also related, but not critical so backporting can be postponed if considered too risky.
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.