Re: Wrong SSL messages when handshake fails

Sure, I created bug KAFKA-13360 Thanks! Rodolfo Kohn Wayaga LLC, Principal Consultant +1 (208) 206 7324 https://www.linkedin.com/in/rodolfo-kohn-31032/ From: Ismael Juma Sent: Thursday, October 7, 2021 4:09 PM

[jira] [Created] (KAFKA-13360) Wrong SSL messages when handshake fails

Rodolfo Kohn created KAFKA-13360: Summary: Wrong SSL messages when handshake fails Key: KAFKA-13360 URL: https://issues.apache.org/jira/browse/KAFKA-13360 Project: Kafka Issue Type: Bug

Re: [DISCUSS] KIP-778 KRaft Upgrades

Hi, David, Thanks for the KIP. A few comments below. 10. It would be useful to describe how the controller node determines the RPC version used to communicate to other controller nodes. There seems to be a bootstrap problem. A controller node can't read the log and therefore the feature level

Re: Wrong SSL messages when handshake fails

Hi, Thanks for the report. Can you please file a JIRA ticket? Ismael On Thu, Oct 7, 2021 at 3:47 PM Rodolfo Kohn wrote: > Hello, I’d like to report an error I noticed while testing Kafka with a > tool I developed to detect network issues in applications. > > When a consumer tries to connect

Wrong SSL messages when handshake fails

Hello, I’d like to report an error I noticed while testing Kafka with a tool I developed to detect network issues in applications.  When a consumer tries to connect to a Kafka broker and there is an error in the SSL handshake, like the server sending a certificate that cannot be validated for

Re: [DISCUSS] KIP-768: Extend SASL/OAUTHBEARER with Support for OIDC

Hi Kirk, Thanks for the updates. Looks good. Just one comment on the naming of configs. For configs that are very specific to OAUTHBEARER, can we add `sasl.oauthbearer` as the prefix, similar to `sasl.kerberos.` that we use for Kerberos configs, e.g. ` sasl.login.sub.claim.name`. For configs

Build failed in Jenkins: Kafka » Kafka Branch Builder » trunk #512

See Changes: -- [...truncated 495044 lines...] [2021-10-07T18:48:46.405Z] [2021-10-07T18:48:46.405Z] PlaintextConsumerTest > testMultiConsumerDefaultAssignor() STARTED

Re: [DISCUSS] KIP-768: Extend SASL/OAUTHBEARER with Support for OIDC

Hi Rajini, I've updated the KIP with your feedback. Let me know if there's anything still amiss. Thanks, Kirk On Wed, Oct 6, 2021, at 5:27 PM, Kirk True wrote: > Hi Rajini, > > Thank you very much for your in-depth review! You highlighted a lot of dark > corners :) > > >1. The diagram

Re: CVE Back Port?

Hi Mickael, That issue was more severe and we decided to go beyond what we would normally do. Having said that, you are welcome to drive the releases if you have the cycles. My general advice stands, a bunch of open-source dependencies have CVEs regularly so it's best to stick with one of the two

Re: [DISCUSS] KIP-714: Client metrics and observability

Hi all, I've updated the KIP following our recent discussions on the mailing list: - split the protocol in two, one for getting the metrics subscriptions, and one for pushing the metrics. - simplifications: initially only one supported metrics format, no client.id in the instance id, etc. -

Re: CVE Back Port?

Hi Mikael, That would be much appreciated; I doubt that I can change a policy that has been in effect for many years. Our version that uses the 2.5.x clients is already out of OSS support (and goes out of commercial support early next year). So 2.6.x and 2.7.x versions would be fine (for us).

Re: CVE Back Port?

Hi Ismael, While we only produce releases for the 2 most recent branches, many users are still running older releases such as 2.6 and 2.7. In the past, for security issues we produced releases for older versions too. For example, for CVE-2018-1288, we released 0.10.2.2, 0.11.0.3, 1.1.0 and

[jira] [Created] (KAFKA-13359) Round Robin Kafka Producer Routes to only half the partitions when even number of partitions

David G created KAFKA-13359: --- Summary: Round Robin Kafka Producer Routes to only half the partitions when even number of partitions Key: KAFKA-13359 URL: https://issues.apache.org/jira/browse/KAFKA-13359

[jira] [Created] (KAFKA-13358) Not able to replicate groups in MirrorMaker 2.0

Hemanth Savasere created KAFKA-13358: Summary: Not able to replicate groups in MirrorMaker 2.0 Key: KAFKA-13358 URL: https://issues.apache.org/jira/browse/KAFKA-13358 Project: Kafka