You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@kafka.apache.org by ma...@apache.org on 2023/02/07 18:35:27 UTC

[kafka] branch trunk updated (a0a9b6ffeaa -> c2aaea3519c)

This is an automated email from the ASF dual-hosted git repository.

manikumar pushed a change to branch trunk
in repository https://gitbox.apache.org/repos/asf/kafka.git


    from a0a9b6ffeaa MINOR: Remove unnecessary code (#13210)
     new 8cdf9564ab0 MINOR: Add FeatureZNode ZK node path to ZK root paths
     new c2aaea3519c MINOR: Add 3.4 notable changes section to upgrade docs

The 2 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Summary of changes:
 core/src/main/scala/kafka/zk/ZkData.scala                          | 3 ++-
 .../test/scala/unit/kafka/security/auth/ZkAuthorizationTest.scala  | 2 ++
 docs/upgrade.html                                                  | 7 +++++++
 3 files changed, 11 insertions(+), 1 deletion(-)

[kafka] 02/02: MINOR: Add 3.4 notable changes section to upgrade docs

Posted by ma...@apache.org.

This is an automated email from the ASF dual-hosted git repository.

manikumar pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/kafka.git

commit c2aaea3519c503cd1715a4ffc041e5c08db4d181
Author: Manikumar Reddy <ma...@gmail.com>
AuthorDate: Wed Feb 8 00:04:06 2023 +0530

    MINOR: Add 3.4 notable changes section to upgrade docs
---
 docs/upgrade.html | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/docs/upgrade.html b/docs/upgrade.html
index f395b3085a4..1c092d7b55e 100644
--- a/docs/upgrade.html
+++ b/docs/upgrade.html
@@ -80,6 +80,13 @@
             However, it is possible to downgrade to production versions such as 3.3-IV0, 3.3-IV1, etc.</li>
     </ol>
 
+<h5><a id="upgrade_340_notable" href="#upgrade_340_notable">Notable changes in 3.4.0</a></h5>
+<ul>
+    <li>Since Apache Kafka 3.4.0, we have added a system property ("org.apache.kafka.disallowed.login.modules") to disable the problematic
+        login modules usage in SASL JAAS configuration. Also by default "com.sun.security.auth.module.JndiLoginModule" is disabled from Apache Kafka 3.4.0.
+    </li>
+</ul>
+
 <h4><a id="upgrade_3_3_1" href="#upgrade_3_3_1">Upgrading to 3.3.1 from any version 0.8.x through 3.2.x</a></h4>
 
 <p><b>If you are upgrading from a version prior to 2.1.x, please see the note below about the change to the schema used to store consumer offsets.

[kafka] 01/02: MINOR: Add FeatureZNode ZK node path to ZK root paths

Posted by ma...@apache.org.

This is an automated email from the ASF dual-hosted git repository.

manikumar pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/kafka.git

commit 8cdf9564ab0f56845bb0cc0192a43b39c26c3375
Author: Manikumar Reddy <ma...@gmail.com>
AuthorDate: Mon Feb 6 17:59:22 2023 +0530

    MINOR: Add FeatureZNode ZK node path to ZK root paths
---
 core/src/main/scala/kafka/zk/ZkData.scala                              | 3 ++-
 core/src/test/scala/unit/kafka/security/auth/ZkAuthorizationTest.scala | 2 ++
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/core/src/main/scala/kafka/zk/ZkData.scala b/core/src/main/scala/kafka/zk/ZkData.scala
index cc48c46ef72..15457ac009a 100644
--- a/core/src/main/scala/kafka/zk/ZkData.scala
+++ b/core/src/main/scala/kafka/zk/ZkData.scala
@@ -1088,7 +1088,8 @@ object ZkData {
     LogDirEventNotificationZNode.path,
     DelegationTokenAuthZNode.path,
     ExtendedAclZNode.path,
-    MigrationZNode.path) ++ ZkAclStore.securePaths
+    MigrationZNode.path,
+    FeatureZNode.path) ++ ZkAclStore.securePaths
 
   // These are persistent ZK paths that should exist on kafka broker startup.
   val PersistentZkPaths = Seq(
diff --git a/core/src/test/scala/unit/kafka/security/auth/ZkAuthorizationTest.scala b/core/src/test/scala/unit/kafka/security/auth/ZkAuthorizationTest.scala
index 3c35fd7d429..aab892b3346 100644
--- a/core/src/test/scala/unit/kafka/security/auth/ZkAuthorizationTest.scala
+++ b/core/src/test/scala/unit/kafka/security/auth/ZkAuthorizationTest.scala
@@ -255,6 +255,8 @@ class ZkAuthorizationTest extends QuorumTestHarness with Logging {
     assertTrue(isAclCorrect(consumersAcl, false, false), ConsumerPathZNode.path)
     assertTrue(isAclCorrect(firstZk.getAcl("/kafka-acl-extended"), secondZk.secure,
       ZkData.sensitivePath(ExtendedAclZNode.path)), "/kafka-acl-extended")
+    assertTrue(isAclCorrect(firstZk.getAcl("/feature"), secondZk.secure,
+      ZkData.sensitivePath(FeatureZNode.path)), "ACL mismatch for /feature path")
   }
 
   /**