[v17] Fix Desktop Connection Error When HostID Is Not a UUID (#63908)

[rhammonds-teleport]

Backports #63908

Changelog: Fixed bug that causes Windows desktop connection errors on EC2 joined nodes.

Manual Test Plan

Test Environment

• Local cluster with Windows Desktop Service and a reachable Windows Desktop instance in EC2.

Test Cases

• Unit test coverage validates proper handling of UUID strings, non-UUID strings, and empty strings.
• Manual validation of RDP client connection.

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 103237d7b6

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".

[chatgpt-codex-connector]

Hash non-UUID host IDs before truncating to 16 bytes

For non-UUID HostID values, md5.New().Sum([]byte(id)) does not compute md5(id); Hash.Sum appends the current digest to the provided slice, so this returns id || md5(""). Because the next line copies only 16 bytes, any non-empty IDs are effectively truncated/prefixed rather than hashed, which can cause client ID collisions (for example IDs sharing the same first 16 bytes) and undermines the fallback uniqueness this change is meant to preserve.

Useful? React with 👍 / 👎.

[rhammonds-teleport]

This is correct. I misunderstood the Hash interface. I've updated both backports and will need to get this change into master as well.

Side note: It would be nice to have the codex run its review in the draft stage so that we can find and fix things before pinging reviewers.