...
kafka.coordinator.transaction.TransactionMarkerChannelManager
kafka.server.ReplicaFetcherBlockingSend
kafka.common.InterBrokerSendThread
...
There is no intent to include code in the PR to re-authenticate connections originating from these classes:
kafka.admin.AdminClient
(this class is deprecated)kafka.tools.ReplicaVerificationTool
(a low-priority edge case?)kafka.server.KafkaServer
(aNetworkClient
instance is only instantiated for shutdown and is therefore not long-lived enough to require re-authentication)org.apache.kafka.trogdor.workload.ConnectionStressWorker
(this class simply connects and doesn’t do anything else with the connection)
The PR does not yet have unit or integration tests – I will add these if/when the general implementation approach is verified by the community as being appropriate. I have stepped through the code in the debugger, and I can see from this exercise as well as from the emitted log messages that it does work as currently implemented.
The final issue to describe is how/when a KafkaChannel
instance (each of which corresponds to a unique network connection) is told to re-authenticate.
...