[jira] [Created] (KAFKA-13544) Deadlock during shutting down kafka broker because of connectivity problem with zookeeper

Andrei Lakhmanets created KAFKA-13544: - Summary: Deadlock during shutting down kafka broker because of connectivity problem with zookeeper Key: KAFKA-13544 URL: https://issues.apache.org/jira/browse/KAFKA-135

[jira] [Resolved] (KAFKA-13539) Improve propagation and processing of SSL handshake failures

[ https://issues.apache.org/jira/browse/KAFKA-13539?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Rajini Sivaram resolved KAFKA-13539. Reviewer: Manikumar Resolution: Fixed > Improve propagation and processing of SSL ha

Jenkins build is still unstable: Kafka » Kafka Branch Builder » trunk #579

See

[DISCUSS] Enable links from Github commits to Jira Issues

Hi all, A number of Apache projects have enabled JIRA links in Github commits. You can see it in action in the following repositories for example: - https://github.com/apache/camel - https://github.com/apache/spark where the CAMEL-XXX and SPARK-XXX prefixes link to individual JIRAs I find this fe

Re: [DISCUSS] Enable links from Github commits to Jira Issues

Hi Mickael, I love this idea. That would be very helpful for reviewers to check the original problem description in JIRA. Thank you for raising this! Luke On Tue, Dec 14, 2021 at 10:36 PM Mickael Maison wrote: > Hi all, > > A number of Apache projects have enabled JIRA links in Github commits

Re: [DISCUSS] Enable links from Github commits to Jira Issues

Hi Mickael, I agree that your proposal would be useful. Thank you for starting this. Best, Bruno On 14.12.21 15:55, Luke Chen wrote: Hi Mickael, I love this idea. That would be very helpful for reviewers to check the original problem description in JIRA. Thank you for raising this! Luke O

[jira] [Created] (KAFKA-13545) Workaround for mitigating CVE-2021-4104 Kafka

Akansh Shandilya created KAFKA-13545: Summary: Workaround for mitigating CVE-2021-4104 Kafka Key: KAFKA-13545 URL: https://issues.apache.org/jira/browse/KAFKA-13545 Project: Kafka Issue

Re: [DISCUSS] Enable links from Github commits to Jira Issues

Hi Mickael, Thanks for highlighting this, it seems very useful. It's a +1 for me. -Bill On Tue, Dec 14, 2021 at 9:58 AM Bruno Cadonna wrote: > Hi Mickael, > > I agree that your proposal would be useful. > > Thank you for starting this. > > Best, > Bruno > > On 14.12.21 15:55, Luke Chen wrote:

Re: [DISCUSS] Enable links from Github commits to Jira Issues

+1 I didn't know this was possible, thanks Mickael! On Tue, Dec 14, 2021 at 3:57 PM Bill Bejeck wrote: > Hi Mickael, > > Thanks for highlighting this, it seems very useful. > > It's a +1 for me. > > -Bill > > On Tue, Dec 14, 2021 at 9:58 AM Bruno Cadonna wrote: > > > Hi Mickael, > > > > I agr

Re: [DISCUSS] Apache Kafka 3.1.0 release

Hi Jason, Thanks for bringing this up. I do agree with you that it makes sense to include this follow up to correctly fix the entire issue in 3.1. Thanks, David On Mon, Dec 13, 2021 at 9:01 PM Jason Gustafson wrote: > > Hi David, > > I think we should get https://issues.apache.org/jira/browse/K

Re: [DISCUSS] Enable links from Github commits to Jira Issues

Sounds like a good idea Mickael! ——— Josep Prat Aiven Deutschland GmbH Immanuelkirchstraße 26, 10405 Berlin Amtsgericht Charlottenburg, HRB 209739 B Geschäftsführer: Oskari Saarenmaa & Hannu Valtonen m: +491715557497 w: aiven.io e: josep.p...@aiven.io On Tue, Dec 14, 2021, 17:07 Tom Bentle

Re: [DISCUSS] KIP-801: Implement an Authorizer that stores metadata in __cluster_metadata

Thanks for the additional information Colin. On Mon, Dec 13, 2021 at 4:43 PM Colin McCabe wrote: > > Hi José, > > I think these are good questions. We have a few situations like this where > there is something brokers have to know before they can contact the > controller quorum -- or something

[GitHub] [kafka-site] scott-confluent opened a new pull request #388: adding new CVEs to list

scott-confluent opened a new pull request #388: URL: https://github.com/apache/kafka-site/pull/388 Per https://docs.google.com/document/d/1zar4nlhIQnDB7qm9i4RqFUFXM5pWP7_a0WERcLlR0Wo/edit#heading=h.jp7xjzp1clqe -- This is an automated message from the Apache Git Service. To respond to th

Re: [DISCUSS] KIP-719: Add Log4J2 Appender

Hi Dongjin, Sorry for the late reply. Can we do step 3 without breaking any compatibility? If so then that sounds like a good idea. Thanks, Mickael On Tue, Nov 23, 2021 at 2:08 PM Dongjin Lee wrote: > > Hi Mickael, > > I also thought over the issue thoroughly and would like to propose a minor

[jira] [Created] (KAFKA-13546) Explicitly specifying default topic creation groups should not make connector fail

venkat teki created KAFKA-13546: --- Summary: Explicitly specifying default topic creation groups should not make connector fail Key: KAFKA-13546 URL: https://issues.apache.org/jira/browse/KAFKA-13546 Proj

Re: [DISCUSS] KIP-801: Implement an Authorizer that stores metadata in __cluster_metadata

Thanks for the KIP, Colin! 4) For the various "Type" fields in the AccessControlEntityRecord, is it worth explicitly enumerating the allowed types in the KIP? E.g., PermissionType = {Any, Deny, Allow}. If these are listed out in another KIP, maybe we can just reference that. 5) You mention "Stand

[jira] [Created] (KAFKA-13547) Kafka - 1.0.0 | Remove log4j.jar

masood created KAFKA-13547: -- Summary: Kafka - 1.0.0 | Remove log4j.jar Key: KAFKA-13547 URL: https://issues.apache.org/jira/browse/KAFKA-13547 Project: Kafka Issue Type: Bug Reporter: ma

[GitHub] [kafka-site] scott-confluent commented on pull request #388: adding new CVEs to list

scott-confluent commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-993854475 We can't get a preview up, but here's the full page screenshot from my local: ![screencapture-localhost-cve-list-html-2021-12-14-12_14_14](https://user-images.githubu

[GitHub] [kafka-site] junrao commented on a change in pull request #388: adding new CVEs to list

junrao commented on a change in pull request #388: URL: https://github.com/apache/kafka-site/pull/388#discussion_r768937548 ## File path: cve-list.html ## @@ -9,6 +9,63 @@ Apache Kafka Security Vulnerabilities This page lists all security vulnerabilities fixed in released ve

[GitHub] [kafka-site] scott-confluent commented on a change in pull request #388: adding new CVEs to list

scott-confluent commented on a change in pull request #388: URL: https://github.com/apache/kafka-site/pull/388#discussion_r768941484 ## File path: cve-list.html ## @@ -9,6 +9,63 @@ Apache Kafka Security Vulnerabilities This page lists all security vulnerabilities fixed in re

[GitHub] [kafka-site] junrao commented on a change in pull request #388: adding new CVEs to list

junrao commented on a change in pull request #388: URL: https://github.com/apache/kafka-site/pull/388#discussion_r768947897 ## File path: cve-list.html ## @@ -9,6 +9,63 @@ Apache Kafka Security Vulnerabilities This page lists all security vulnerabilities fixed in released ve

[GitHub] [kafka-site] junrao commented on a change in pull request #388: adding new CVEs to list

junrao commented on a change in pull request #388: URL: https://github.com/apache/kafka-site/pull/388#discussion_r768953613 ## File path: cve-list.html ## @@ -9,6 +9,63 @@ Apache Kafka Security Vulnerabilities This page lists all security vulnerabilities fixed in released ve

[GitHub] [kafka-site] scott-confluent commented on a change in pull request #388: adding new CVEs to list

scott-confluent commented on a change in pull request #388: URL: https://github.com/apache/kafka-site/pull/388#discussion_r768958081 ## File path: cve-list.html ## @@ -9,6 +9,63 @@ Apache Kafka Security Vulnerabilities This page lists all security vulnerabilities fixed in re

[jira] [Resolved] (KAFKA-13532) Flaky test KafkaStreamsTest.testInitializesAndDestroysMetricsReporters

[ https://issues.apache.org/jira/browse/KAFKA-13532?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] John Roesler resolved KAFKA-13532. -- Resolution: Cannot Reproduce I looked in every branch build I could find, and didn't see any f

[GitHub] [kafka-site] junrao commented on a change in pull request #388: adding new CVEs to list

junrao commented on a change in pull request #388: URL: https://github.com/apache/kafka-site/pull/388#discussion_r768987825 ## File path: cve-list.html ## @@ -9,6 +9,63 @@ Apache Kafka Security Vulnerabilities This page lists all security vulnerabilities fixed in released ve

[GitHub] [kafka-site] junrao commented on pull request #388: adding new CVEs to list

junrao commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-993920823 @scott-confluent : Have you pushed the new changes? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the

[GitHub] [kafka-site] junrao commented on pull request #388: adding new CVEs to list

junrao commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-993922371 @ijuma : Does the content look good to you? Thanks. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the

[GitHub] [kafka-site] izzyacademy commented on pull request #388: adding new CVEs to list

izzyacademy commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-993942492 Do we want to add a disclaimer that users need to check their connectors to see if it uses log4j2? Though the core library does not use this dependency, it is possibl

[GitHub] [kafka-site] scott-confluent commented on pull request #388: adding new CVEs to list

scott-confluent commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-993960076 > Do we want to add a disclaimer that users need to check their connectors to see if it uses log4j2? > > Though the core library does not use this dependency, it

[GitHub] [kafka-site] scott-confluent commented on pull request #388: adding new CVEs to list

scott-confluent commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-993980560 @junrao I have pushed all updates from the doc as well as your comments here -- This is an automated message from the Apache Git Service. To respond to the message, pl

[GitHub] [kafka-site] scott-confluent edited a comment on pull request #388: adding new CVEs to list

scott-confluent edited a comment on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-993980560 @junrao I have pushed all updates from the doc as well as your comments here ![screencapture-localhost-cve-list-html-2021-12-14-12_14_14](https://user-imag

[GitHub] [kafka-site] scott-confluent edited a comment on pull request #388: adding new CVEs to list

scott-confluent edited a comment on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-993980560 @junrao I have pushed all updates from the doc as well as your comments here -- This is an automated message from the Apache Git Service. To respond to the mess

[GitHub] [kafka-site] scott-confluent edited a comment on pull request #388: adding new CVEs to list

scott-confluent edited a comment on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-993980560 @junrao I have pushed all updates from the doc as well as your comments here: ![screencapture-localhost-cve-list-html-2021-12-14-15_54_20](https://user-ima

[GitHub] [kafka-site] scott-confluent removed a comment on pull request #388: adding new CVEs to list

scott-confluent removed a comment on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-993854475 We can't get a preview up, but here's the full page screenshot from my local: ![screencapture-localhost-cve-list-html-2021-12-14-12_14_14](https://user-images

Re: [DISCUSS] KIP-801: Implement an Authorizer that stores metadata in __cluster_metadata

On Tue, Dec 14, 2021, at 08:27, José Armando García Sancio wrote: > Thanks for the additional information Colin. > ... > > It sounds to me like KIP-801 is assuming that this "bootstrapping KIP" > will at least generate a snapshot with this information in all of the > controllers. I would like to un

Re: [DISCUSS] KIP-801: Implement an Authorizer that stores metadata in __cluster_metadata

On Tue, Dec 14, 2021, at 10:13, David Arthur wrote: > Thanks for the KIP, Colin! > > 4) For the various "Type" fields in the AccessControlEntityRecord, is it > worth explicitly enumerating the allowed types in the KIP? E.g., > PermissionType = {Any, Deny, Allow}. If these are listed out in another

[GitHub] [kafka-site] scott-confluent commented on a change in pull request #388: adding new CVEs to list

scott-confluent commented on a change in pull request #388: URL: https://github.com/apache/kafka-site/pull/388#discussion_r769068111 ## File path: cve-list.html ## @@ -9,6 +9,63 @@ Apache Kafka Security Vulnerabilities This page lists all security vulnerabilities fixed in re

[GitHub] [kafka-site] junrao commented on a change in pull request #388: adding new CVEs to list

junrao commented on a change in pull request #388: URL: https://github.com/apache/kafka-site/pull/388#discussion_r769082582 ## File path: cve-list.html ## @@ -9,6 +9,70 @@ Apache Kafka Security Vulnerabilities This page lists all security vulnerabilities fixed in released ve

[GitHub] [kafka-site] scott-confluent commented on a change in pull request #388: adding new CVEs to list

scott-confluent commented on a change in pull request #388: URL: https://github.com/apache/kafka-site/pull/388#discussion_r769105156 ## File path: cve-list.html ## @@ -9,6 +9,70 @@ Apache Kafka Security Vulnerabilities This page lists all security vulnerabilities fixed in re

[GitHub] [kafka-site] scott-confluent removed a comment on pull request #388: adding new CVEs to list

scott-confluent removed a comment on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-993980560 @junrao I have pushed all updates from the doc as well as your comments here: ![screencapture-localhost-cve-list-html-2021-12-14-15_54_20](https://user-im

[GitHub] [kafka-site] scott-confluent commented on pull request #388: adding new CVEs to list

scott-confluent commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-994121512 

[GitHub] [kafka-site] scott-confluent removed a comment on pull request #388: adding new CVEs to list

scott-confluent removed a comment on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-994121512 ![screencapture-localhost-cve-list-html-2021-12-14-17_54_58](https://user-images.githubusercontent.com/66280178/146093132-8eb8d32d-bcfb-4542-a0d9-86a545459ac6.pn

[GitHub] [kafka-site] scott-confluent commented on pull request #388: adding new CVEs to list

scott-confluent commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-994133552 

[GitHub] [kafka-site] rhauch commented on pull request #388: adding new CVEs to list

rhauch commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-994134387 As background for Connect: * Connect runtime puts all JARs from each connector plugin on a separate classloader, and the Connect runtime nor other connector plugins have acce

[GitHub] [kafka-site] rhauch edited a comment on pull request #388: adding new CVEs to list

rhauch edited a comment on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-994134387 As background for Connect: * Connect runtime puts all JARs from each connector plugin on a separate classloader, and the Connect runtime nor other connector plugins ha

[GitHub] [kafka-site] rhauch edited a comment on pull request #388: adding new CVEs to list

rhauch edited a comment on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-994134387 As background for Connect: * Connect runtime puts all JARs from each connector plugin on a separate classloader, and the Connect runtime nor other connector plugins ha

[GitHub] [kafka-site] rhauch commented on pull request #388: adding new CVEs to list

rhauch commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-994136975 Or, if we want something even simpler, maybe we could just add a sentence to the `CVE-2021-44228` section that says: > Check with the vendor of any connector plugin that

[GitHub] [kafka-site] junrao commented on pull request #388: adding new CVEs to list

junrao commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-994141826 Thanks, @rhauch. The simpler version is probably enough. @scott-confluent : Could you add that? -- This is an automated message from the Apache Git Service. To respond to the

[GitHub] [kafka-site] scott-confluent commented on pull request #388: adding new CVEs to list

scott-confluent commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-994151250 @junrao @rhauch Does adding it here make sense? https://user-images.githubusercontent.com/66280178/146098304-984b64f1-4a58-4e53-b69a-4fb0d1fa1197.png";> --

[GitHub] [kafka-site] junrao commented on pull request #388: adding new CVEs to list

junrao commented on pull request #388: URL: https://github.com/apache/kafka-site/pull/388#issuecomment-994163284 @scott-confluent : Thanks for the updated PR. LGTM -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the U

[GitHub] [kafka-site] junrao merged pull request #388: adding new CVEs to list

junrao merged pull request #388: URL: https://github.com/apache/kafka-site/pull/388 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr..

[GitHub] [kafka-site] mkcops opened a new pull request #389: Added CVE-2021-45046

mkcops opened a new pull request #389: URL: https://github.com/apache/kafka-site/pull/389 Adding new CVE-2021-45046 to the list -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comm

[GitHub] [kafka-site] junrao merged pull request #389: Added CVE-2021-45046

junrao merged pull request #389: URL: https://github.com/apache/kafka-site/pull/389 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr..

[GitHub] [kafka-site] showuon commented on pull request #389: Added CVE-2021-45046

showuon commented on pull request #389: URL: https://github.com/apache/kafka-site/pull/389#issuecomment-994229870 Thanks for your quick response! Hope there will be no more vulnerabilities! -- This is an automated message from the Apache Git Service. To respond to the message, please log

[jira] [Resolved] (KAFKA-13545) Workaround for mitigating CVE-2021-4104 Kafka

[ https://issues.apache.org/jira/browse/KAFKA-13545?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Luke Chen resolved KAFKA-13545. --- Resolution: Won't Fix > Workaround for mitigating CVE-2021-4104 Kafka > ---