Details
-
Bug
-
Status: Open
-
Major
-
Resolution: Unresolved
-
3.6.3
-
None
-
None
Description
We have extended ServerAuthenticationProvider with x509 scheme based on 3.6.3 zookeeper server. We are trying to understand connection retry scenario. On auth failure, we see that zookeeper client (native java client client) retries to establish connection with server until the timeout or infinitely if no timeout is set. We are using org.apache.zookeeper.server.NettyServerCnxnFactory as Server connection factory.
Couple of questions :
- Is zookeeper client supposed to retry infinitely on auth failure from zookeeper server?
- Is there a way zookeeper client does not perform infinitely retries on auth failure errors and bails out after first auth failure itself?
- We can’t find anything about auth failure errors in zookeeper client logs but just that connection is closed. After looking into Netty Server code, we see the auth failure is not communicated to client but got masked here. So we were wondering if we are missing something here?