+1 (binding)
- verified checksums/signatures/RAT
- built from sources on Ubuntu and JDK17
- ran a couple of smoke tests locally from the binaries
- ran all tests, they all pass, except from 2 C client tests, that fail
consistently (Given that CI is in good shape I think that this is a local
environment problem)
Details of the failures
[exec]
/home/xxxx/dev/release/zookeeper-3.8.6-candidate-1/apache-zookeeper-3.8.6/zookeeper-client/zookeeper-client-c/tests/TestReadOnlyClient.cc:118:
Assertion: equality assertion failed [Expected: 0, Actual : -15]
[exec]
/home/xxxx/dev/release/zookeeper-3.8.6-candidate-1/apache-zookeeper-3.8.6/zookeeper-client/zookeeper-client-c/tests/TestClient.cc:890:
Assertion: equality assertion failed [Expected: 0, Actual : -15]
Enrico
Il giorno mar 3 feb 2026 alle ore 13:37 Szalay-Bekő Máté <
[email protected]> ha scritto:
> +1 (binding)
>
> I found only a minor issue: in the NOTICE.TXT file we should update the end
> year for the copyright to 2026
> I don't consider this to be a blocker, IMO it's OK to fix this for the next
> release / RC... (fixing on master and backport it to all active branches)
> WDYT?
>
> I did the following tests for the release candidate:
> - verified checksum and gpg signature of the artifacts
> - I built the source code (incl. the C-client, using -Pfull-build) on
> Ubuntu 22.04.5 using OpenJDK 8u402, maven 3.9.6 and GCC version 11.4.0
> - all the java unit tests passed for me
> - all the C-client tests passed too
> - I also built and executed unit tests for zkpython
> - I also built the java code (without -Pfull-build) using other JDK
> versions: 11.0.28, 17.0.16, 21.0.8, 23.0.2 (but didn't run the tests this
> time, just used 'clean install -DskipTests')
> - checkstyle and spotbugs passed
> - apache-rat passed
> - owasp (CVE check) passed
> - fatjar built
> - I executed quick rolling-upgrade tests without SSL (using
> https://github.com/symat/zk-rolling-upgrade-test):
> - rolling upgrade from 3.6.4 to 3.8.6 RC1
> - rolling upgrade from 3.7.2 to 3.8.6 RC1
> - rolling upgrade from 3.8.5 to 3.8.6 RC1
> - rolling upgrade from 3.8.6 RC1 to 3.9.4
> - checked the uploaded documentation (
>
> https://dist.apache.org/repos/dist/dev/zookeeper/zookeeper-3.8.6-candidate-1/website/index.html
> )
> - compared generated release notes (
>
> https://dist.apache.org/repos/dist/dev/zookeeper/zookeeper-3.8.6-candidate-1/website/releasenotes.html
> )
> with Jira (
>
> https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310801&version=12356280
> )
>
> Regards,
> Máté
>
> On Wed, Jan 28, 2026 at 9:42 PM Andor Molnár <[email protected]> wrote:
>
> > Hi team,
> >
> > This is a release candidate for 3.8.6.
> >
> > This is a minor release with bug- and security fixes. Important to note
> > the upgrade of
> > Jetty / Netty / Jline libraries to address recent CVEs.
> >
> > The full release notes is available at:
> >
> >
> >
> https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310801&version=12356280
> >
> > *** Please download, test and vote by February 6th 2026, 23:59 UTC+0. ***
> >
> > Source files:
> >
> >
> https://dist.apache.org/repos/dist/dev/zookeeper/zookeeper-3.8.6-candidate-1/
> >
> > Maven staging repo:
> >
> https://repository.apache.org/content/repositories/orgapachezookeeper-1114/
> >
> > The release candidate tag in git to be voted upon: release-3.8.6-1
> > https://github.com/apache/zookeeper/tree/release-3.8.6-1
> >
> > ZooKeeper's KEYS file containing PGP keys we use to sign the release:
> > https://www.apache.org/dist/zookeeper/KEYS
> >
> > The staging version of the website is:
> >
> >
> https://dist.apache.org/repos/dist/dev/zookeeper/zookeeper-3.8.6-candidate-1/website/index.html
> >
> > Should we release this candidate?
> >
> > Andor
> >
> >
> >
>
