Skip Menu |

This queue is for tickets about the Kafka CPAN distribution.

Report information
The Basics
Id: 101291
Status: resolved
Priority: 0/
Queue: Kafka
People
Owner: Nobody in particular
Requestors: harisekhon [...] gmail.com
Cc:
AdminCc:
Bug Information
Severity: (no value)
Broken in: (no value)
Fixed in: (no value)

History Show all quoted text
  Sun Jan 04 17:39:31 2015 harisekhon [...] gmail.com - Ticket created
Subject: Kafka::IO Insecure Dependency error in Perl taint mode
Date: Sun, 4 Jan 2015 22:38:40 +0000
To: bug-Kafka [...] rt.cpan.org
From: Hari Sekhon <harisekhon [...] gmail.com>
Hi, When trying to use the Perl Kafka library version 0.8008 I get the following error message when running in perl secure taint mode (perl -T) Insecure dependency in connect while running with -T switch at /usr/local/share/perl5/Kafka/IO.pm line 401. The output from PERL_KAFKA_DEBUG=1 is [Sun Jan 4 22:29:10 2015 ] name = 'sandbox.hortonworks.com', number of wallclock seconds = 2 [Sun Jan 4 22:29:10 2015 ] _connect: ip = '10.0.2.15, error = '', $? = 0, $! = '0' [Sun Jan 4 22:29:10 2015 ] _connect: 10 (remaining) - 0 (elapsed) = 10 [Sun Jan 4 22:29:10 2015 ] _connect: remaining - elapsed > 0 (to alarm restart) [Sun Jan 4 22:29:10 2015 ] _connect: after alarm 'recalled' Insecure dependency in connect while running with -T switch at /usr/local/share/perl5/Kafka/IO.pm line 401. I believe this occurs when my program hit this point: my $offsets = $consumer->offsets($topic, 0, -1); I use taint mode all the time and $topic is untainted via regex capture. Best Regards, Hari Sekhon http://www.linkedin.com/in/harisekhon
  Tue Jan 13 19:56:47 2015 SGLADKOV [...] cpan.org - Correspondence added
Thank you for your comment. We've added taint mode support in 0.8009 .
  Tue Jan 13 19:56:47 2015 The RT System itself - Status changed from 'new' to 'open'
  Tue Jan 13 19:56:53 2015 SGLADKOV [...] cpan.org - Status changed from 'open' to 'resolved'
  Sat Jan 17 13:32:27 2015 harisekhon [...] gmail.com - Correspondence added
Subject: Re: [rt.cpan.org #101291] Kafka::IO Insecure Dependency error in Perl taint mode
Date: Sat, 17 Jan 2015 18:31:34 +0000
To: bug-Kafka [...] rt.cpan.org
From: Hari Sekhon <harisekhon [...] gmail.com>
Thanks that works now. Best Regards, Hari Sekhon http://www.linkedin.com/in/harisekhon On 14 January 2015 at 00:56, Sergey Gladkov via RT <bug-Kafka@rt.cpan.org> wrote: Show quoted text
> <URL: https://rt.cpan.org/Ticket/Display.html?id=101291 > > > Thank you for your comment. > We've added taint mode support in 0.8009 . >