Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Kafka Output fails to publish events due to Bug in Sarama #19216

Closed
simioa opened this issue Jun 16, 2020 · 7 comments
Closed

Kafka Output fails to publish events due to Bug in Sarama #19216

simioa opened this issue Jun 16, 2020 · 7 comments
Labels
bug Team:Services (Deprecated) Label for the former Integrations-Services team

Comments

@simioa
Copy link
Contributor

simioa commented Jun 16, 2020
edited
Loading

  • Version: Metricbeat 7.7.1
  • Operating System: RHEL 7.8

It looks like the recent Sarama Update introduced a bug which causes the Kafka Output, if configured to use multiple TLS broker, to fail because the Server Name does not match to the actual connected node.

More about this issue can be found here: Connection with multiple TLS brokers fails to negotiate

  • Steps to Reproduce:
    • Update Metricbeat to 7.7.1
    • Use Kafka Output with TLS enabled and multiple brokers

Example Output Configuration:

output.kafka:
  enabled: true
  hosts: ["kafka-01:9093","kafka-02:9093","kafka-03:9093","kafka-04:9093"]

  topic: metricbeat
  max_message_bytes: 1900000

  client_id: client

  ssl.certificate_authorities: ["ca.pem"]
  ssl.certificate: "cert.pem"
  ssl.key: "key.pem"

Error in Log:

2020-06-16T15:15:55.974+0200	INFO	[publisher_pipeline_output]	pipeline/output.go:111	Connection to kafka(kafka-01:9093,kafka-02:9093,kafka-03:9093,kafka-04:9093) established
2020-06-16T15:15:56.515+0200	DEBUG	[kafka]	kafka/client.go:276	finished kafka batch
2020-06-16T15:15:56.515+0200	DEBUG	[kafka]	kafka/client.go:290	Kafka publish failed with: x509: certificate is valid for kafka-04, not kafka-01

This does not happen when using Metricbeat 7.7.0
@botelastic botelastic bot added the needs_team Indicates that the issue/PR needs a Team:* label label Jun 16, 2020
@jsoriano jsoriano added bug Team:Services (Deprecated) Label for the former Integrations-Services team and removed needs_team Indicates that the issue/PR needs a Team:* label labels Jun 16, 2020
@elasticmachine
Copy link
Collaborator

Pinging @elastic/integrations-services (Team:Services)

@jsoriano
Copy link
Member

Probably related to #18711.

@sim0nx
Copy link

sim0nx commented Jun 17, 2020
edited
Loading

Facing the same issue in filebeats after an upgrade to the mentioned version.

@jsoriano
Copy link
Member

This kubernetes manifest can be used to reproduce a failing scenario: https://gist.github.com/jsoriano/32ea46daa1e24ae4c86c5f91f729264d

@dedemorton dedemorton mentioned this issue Jun 17, 2020
Merged
@dedemorton
Copy link
Contributor

dedemorton commented Jun 19, 2020
edited
Loading

When you fix this bug, can you please update the docs to say that the issue is resolved (or let me know, and I'll do it)? Here's an issue with details about where to make the updates: #19308

@dedemorton dedemorton mentioned this issue Jun 19, 2020
Closed
@lucabelluccini
Copy link
Contributor

Hello @jsoriano
It seems the Sarama bug was fixed in https://github.com/Shopify/sarama/tree/v1.26.4 ?

@jsoriano
Copy link
Member

@lucabelluccini yes, this issue seems to be fixed after #19527, closing this.

@zube zube bot removed the [zube]: Done label Oct 20, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Team:Services (Deprecated) Label for the former Integrations-Services team
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
7 participants
@jsoriano @lucabelluccini @andresrc @sim0nx @dedemorton @elasticmachine @simioa