[ACCESS-1138] Domain Verifications Fails if Too many TXT records in DNS

Type: Bug
Resolution: Timed out
Priority: Low
Component/s: Domain Claim - Initial Setup
Labels:
None

Support reference count:
5
Symptom Severity:
Minor
Bug Fix Policy:
View Atlassian Cloud bug fix policy

Issue Summary

If DNS contains a large number of unique TXT record items in the root of the domain (including the Atlassian Verification), the Domain cannot be verified or re-verified during the normal checks.

Steps to Reproduce

set up 30 TXT record entries with a lot of text in them
Wait for the changes to propagate to our system. Please note that the change may take up to 72 hours for our system to stop caching the old results.
Attempt to claim the domain (or reclaim it)

Expected Results

The domain claims as expected

Actual Results

The domain claim fails and the following error is thrown in the logs:
Error: queryTxt ESERVFAIL EXAMPLE.com at QueryReqWrap.onresolve [as oncomplete] (dns.js:213:19)

Notes

Domain Verification is checked on standard DNS (not EDNS) and if the Message Size is greater than 512 bytes for TXT Records, the verification can fail

Workaround

Currently, there are only two methods that can be used to bypass this issue:
1. Delete some of the TXT record entries so that the message size is less than 512 bytes
2. Use HTTPS verification instead.

relates to

ACCESS-1830 Organization verified domain functionality is bro...

Closed

mentioned in: Page Failed to load; Page Failed to load; Page Failed to load; Page Failed to load; Page Loading...

(1 mentioned in)

Form Name

Assignee:: Geoff

Reporter:: Jared Long

Affected customers:: 7 This affects my team

Watchers:: 8 Start watching this issue

Created:: 21/Jun/2019 9:15 PM

Updated:: 19/Dec/2024 7:40 PM

Resolved:: 19/Dec/2024 7:40 PM

Details

Description

Issue Summary

Steps to Reproduce

Expected Results

Actual Results

Notes

Workaround

Attachments

Issue Links

Forms

Activity

People

Dates