[jira] [Created] (KAFKA-10642) Expose the real stack trace if any exception occurred during SSL Client Trust Verification in extension

Senthilnathan Muthusamy (Jira) Sat, 24 Oct 2020 12:32:07 -0700

Senthilnathan Muthusamy created KAFKA-10642:
-----------------------------------------------


             Summary: Expose the real stack trace if any exception occurred 
during SSL Client Trust Verification in extension
                 Key: KAFKA-10642
                 URL: https://issues.apache.org/jira/browse/KAFKA-10642
             Project: Kafka
          Issue Type: Bug
          Components: clients
    Affects Versions: 2.5.1, 2.6.0, 2.4.1, 2.5.0, 2.3.1, 2.4.0, 2.3.0
            Reporter: Senthilnathan Muthusamy
            Assignee: Senthilnathan Muthusamy
             Fix For: 2.7.0


If there is any exception occurred in the custom implementation of client trust 
verification (i.e. using security.provider), the inner exception is suppressed 
or hidden and not logged to the log file...

 

Below is an example stack trace not showing actual exception from the 
extension/custom implementation.

 

[2020-05-13 14:30:26,892] ERROR [KafkaServer id=423810470] Fatal error during 
KafkaServer startup. Prepare to shutdown (kafka.server.KafkaServer)[2020-05-13 
14:30:26,892] ERROR [KafkaServer id=423810470] Fatal error during KafkaServer 
startup. Prepare to shutdown (kafka.server.KafkaServer) 
org.apache.kafka.common.KafkaException: 
org.apache.kafka.common.config.ConfigException: Invalid value 
java.lang.RuntimeException: Delegated task threw Exception/Error for 
configuration A client SSLEngine created with the provided settings can't 
connect to a server SSLEngine created with those settings. at 
org.apache.kafka.common.network.SslChannelBuilder.configure(SslChannelBuilder.java:71)
 at 
org.apache.kafka.common.network.ChannelBuilders.create(ChannelBuilders.java:146)
 at 
org.apache.kafka.common.network.ChannelBuilders.serverChannelBuilder(ChannelBuilders.java:85)
 at kafka.network.Processor.<init>(SocketServer.scala:753) at 
kafka.network.SocketServer.newProcessor(SocketServer.scala:394) at 
kafka.network.SocketServer.$anonfun$addDataPlaneProcessors$1(SocketServer.scala:279)
 at scala.collection.immutable.Range.foreach$mVc$sp(Range.scala:158) at 
kafka.network.SocketServer.addDataPlaneProcessors(SocketServer.scala:278) at 
kafka.network.SocketServer.$anonfun$createDataPlaneAcceptorsAndProcessors$1(SocketServer.scala:241)
 at 
kafka.network.SocketServer.$anonfun$createDataPlaneAcceptorsAndProcessors$1$adapted(SocketServer.scala:238)
 at scala.collection.mutable.ResizableArray.foreach(ResizableArray.scala:62) at 
scala.collection.mutable.ResizableArray.foreach$(ResizableArray.scala:55) at 
scala.collection.mutable.ArrayBuffer.foreach(ArrayBuffer.scala:49) at 
kafka.network.SocketServer.createDataPlaneAcceptorsAndProcessors(SocketServer.scala:238)
 at kafka.network.SocketServer.startup(SocketServer.scala:121) at 
kafka.server.KafkaServer.startup(KafkaServer.scala:265) at 
kafka.server.KafkaServerStartable.startup(KafkaServerStartable.scala:44) at 
kafka.Kafka$.main(Kafka.scala:84) at kafka.Kafka.main(Kafka.scala)Caused by: 
org.apache.kafka.common.config.ConfigException: Invalid value 
java.lang.RuntimeException: Delegated task threw Exception/Error for 
configuration A client SSLEngine created with the provided settings can't 
connect to a server SSLEngine created with those settings. at 
org.apache.kafka.common.security.ssl.SslFactory.configure(SslFactory.java:100) 
at 
org.apache.kafka.common.network.SslChannelBuilder.configure(SslChannelBuilder.java:69)
 ... 18 more



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Created] (KAFKA-10642) Expose the real stack trace if any exception occurred during SSL Client Trust Verification in extension

Reply via email to