karafka-rdkafka 0.20.0.rc3-x86_64-linux-gnu → 0.20.0.rc5-x86_64-linux-gnu

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8d2a5aa11f12382418392f01e4ec107949661fec05506f0201346f126525c434
-  data.tar.gz: b55416183eeed99b3440c9d8f65d13748fce7cb3d315984e5b6fccb0e2b20b0a
+  metadata.gz: 89b5b7ab7269112cd5816d40293395df9208e6929eca11140a3bfb17f8a48cc2
+  data.tar.gz: 6fea31eaa2c84f6c5d13dd4df7aae1808283a5c82f9fe83a73e46d675625c49c
 SHA512:
-  metadata.gz: e91fe7846b57967aeef2bce1cd3bf72e3ee206cfdb4ed50099684cbef1b1a347420cdda5d3002429d6ab0e94b78cc8a28864a6a6e1886f9223b60145706fbac0
-  data.tar.gz: d22c1226b32a671145323e52a9e22edb94aaa4e9188791912958d104f93e27a15e6b16883ba5f36e3beccaf9132e5155a67db5c2728381ec59b72220ba171ce1
+  metadata.gz: 4e1d26e6e3c76f82c9dabc5de8b98bcad8df7b59c4052524ea58325a554b1a8ca83d1b4e3ba2baeb2f35d0fd114287866a1fa71cbcf75d7ca6345cfae8227504
+  data.tar.gz: 352839be9a5499a6eda10f98f10c8ef5c147c1cf0fae7646a1e925abd03ad1dbb38b7e21306defdc52b2bfca24d416fb02f1b8f319d253ad6610f67e17cc9ee9

data/.github/workflows/ci_linux_x86_64_gnu.yml

@@ -1,4 +1,5 @@
 name: CI Linux x86_64 GNU
+
 concurrency:
   group: ${{ github.workflow }}-${{ github.ref }}
   cancel-in-progress: true

data/.github/workflows/ci_linux_x86_64_musl.yml

@@ -0,0 +1,205 @@
+name: CI Linux x86_64 musl
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+on:
+  pull_request:
+    branches: [ main, master ]
+  push:
+    branches: [ main, master ]
+  schedule:
+    - cron: '0 1 * * *'
+
+permissions:
+  contents: read
+
+env:
+  BUNDLE_RETRY: 6
+  BUNDLE_JOBS: 4
+
+jobs:
+  build_install:
+    timeout-minutes: 30
+    runs-on: ubuntu-latest
+    container:
+      image: alpine:3.22@sha256:8a1f59ffb675680d47db6337b49d22281a139e9d709335b492be023728e11715
+    steps:
+      - name: Install dependencies
+        run: |
+          apk add --no-cache git curl ca-certificates build-base linux-headers \
+            pkgconf perl autoconf automake libtool bison flex file \
+            ruby ruby-dev ruby-bundler bash zstd-dev zlib zlib-dev openssl-dev cyrus-sasl-dev
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          fetch-depth: 0
+      - name: Configure git safe directory
+        run: git config --global --add safe.directory /__w/karafka-rdkafka/karafka-rdkafka
+      - name: Build gem with mini_portile
+        run: |
+          set -e
+          bundle config set --local path 'vendor/bundle'
+          bundle install
+          cd ext && bundle exec rake
+          cd ..
+      - name: Upload built gem and bundle
+        uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
+        with:
+          name: rdkafka-built-gem-musl
+          path: |
+            vendor/bundle/
+            .bundle/
+            ext/
+            lib/
+          retention-days: 1
+
+  specs_install:
+    timeout-minutes: 30
+    runs-on: ubuntu-latest
+    needs: build_install
+    strategy:
+      fail-fast: false
+      matrix:
+        ruby:
+          - '3.4'
+          - '3.3'
+          - '3.2'
+          - '3.1'
+        include:
+          - ruby: '3.4'
+            coverage: 'true'
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          fetch-depth: 0
+      - name: Download built gem
+        uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
+        with:
+          name: rdkafka-built-gem-musl
+          path: ./
+      - name: Start Kafka with Docker Compose
+        run: |
+          docker compose up -d
+          echo "Waiting for Kafka to be ready..."
+          sleep 10
+
+          for i in {1..30}; do
+            if docker compose exec -T kafka kafka-topics --bootstrap-server localhost:9092 --list >/dev/null 2>&1; then
+              echo "Kafka topics command succeeded!"
+              break
+            fi
+            sleep 2
+          done
+      - name: Run all specs
+        env:
+          GITHUB_COVERAGE: ${{ matrix.coverage }}
+          RDKAFKA_EXT_PATH: ${{ github.workspace }}/ext
+        run: |
+          docker run --rm \
+            --network host \
+            -v "${{ github.workspace }}:/workspace" \
+            -w /workspace \
+            -e "GITHUB_COVERAGE=${{ matrix.coverage }}" \
+            -e "RDKAFKA_EXT_PATH=/workspace/ext" \
+            ruby:${{ matrix.ruby }}-alpine \
+            sh -c 'apk add --no-cache git build-base linux-headers bash \
+              cyrus-sasl \
+              cyrus-sasl-login \
+              cyrus-sasl-crammd5 \
+              cyrus-sasl-digestmd5 \
+              cyrus-sasl-gssapiv2 \
+              cyrus-sasl-scram \
+              krb5-libs \
+              openssl \
+              zlib \
+              zlib-dev \
+              zstd-libs && \
+              git config --global --add safe.directory /workspace && \
+              bundle config set --local path vendor/bundle && \
+              bundle install && \
+              bundle exec ruby -S rspec'
+  build_precompiled:
+    timeout-minutes: 45
+    runs-on: ubuntu-latest
+    container:
+      image: alpine:3.22@sha256:8a1f59ffb675680d47db6337b49d22281a139e9d709335b492be023728e11715
+    steps:
+      - name: Install dependencies
+        run: |
+          apk add --no-cache git curl ca-certificates build-base linux-headers \
+            pkgconf perl autoconf automake libtool bison flex file bash wget zstd-dev \
+            openssl-dev cyrus-sasl-dev cyrus-sasl cyrus-sasl-login \
+            cyrus-sasl-crammd5 cyrus-sasl-digestmd5 cyrus-sasl-gssapiv2 cyrus-sasl-scram \
+            krb5-libs openssl zlib zlib-dev zstd-libs
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          fetch-depth: 0
+      - name: Configure git safe directory
+        run: git config --global --add safe.directory /__w/karafka-rdkafka/karafka-rdkafka
+      - name: Cache build-tmp directory
+        uses: actions/cache@5a3ec84eff668545956fd18022155c47e93e2684 # v4.2.3
+        with:
+          path: ext/build-tmp-musl
+          key: build-tmp-musl-${{ runner.os }}-${{ hashFiles('ext/*.sh', 'ext/Rakefile') }}-v2
+      - name: Build precompiled librdkafka.so
+        run: |
+          cd ext
+          bash ./build_linux_x86_64_musl.sh
+      - name: Upload precompiled library
+        uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
+        with:
+          name: librdkafka-precompiled-musl
+          path: ext/
+          retention-days: 1
+
+  specs_precompiled:
+    timeout-minutes: 30
+    runs-on: ubuntu-latest
+    needs: build_precompiled
+    strategy:
+      fail-fast: false
+      matrix:
+        ruby:
+          - '3.4'
+          - '3.3'
+          - '3.2'
+          - '3.1'
+        include:
+          - ruby: '3.4'
+            coverage: 'true'
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          fetch-depth: 0
+      - name: Download precompiled library
+        uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
+        with:
+          name: librdkafka-precompiled-musl
+          path: ext/
+      - name: Start Kafka with Docker Compose
+        run: |
+          docker compose up -d
+          echo "Waiting for Kafka to be ready..."
+          sleep 10
+
+          for i in {1..30}; do
+            if docker compose exec -T kafka kafka-topics --bootstrap-server localhost:9092 --list >/dev/null 2>&1; then
+              echo "Kafka topics command succeeded!"
+              break
+            fi
+            sleep 2
+          done
+      - name: Run specs with precompiled library
+        env:
+          GITHUB_COVERAGE: ${{ matrix.coverage }}
+          RDKAFKA_EXT_PATH: ${{ github.workspace }}/ext
+        run: |
+          docker run --rm \
+            --network host \
+            -v "${{ github.workspace }}:/workspace" \
+            -w /workspace \
+            -e "GITHUB_COVERAGE=${{ matrix.coverage }}" \
+            -e "RDKAFKA_EXT_PATH=/workspace/ext" \
+            ruby:${{ matrix.ruby }}-alpine \
+            sh -c 'apk add --no-cache git build-base linux-headers bash && git config --global --add safe.directory /workspace && bundle config set --local path vendor/bundle && bundle install && bundle exec ruby -S rspec'

data/.github/workflows/ci_macos_arm64.yml

@@ -1,7 +1,9 @@
 name: CI macOS ARM64
+
 concurrency:
   group: ${{ github.workflow }}-${{ github.ref }}
   cancel-in-progress: true
+
 on:
   pull_request:
     branches: [ main, master ]
@@ -9,13 +11,16 @@ on:
     branches: [ main, master ]
   schedule:
     - cron: '0 1 * * *'
+
 permissions:
   contents: read
+
 env:
   BUNDLE_RETRY: 6
   BUNDLE_JOBS: 4
   # Renovate can track and update this version
   CONFLUENT_VERSION: "8.0.0"
+
 jobs:
   build_install:
     timeout-minutes: 30

data/.github/workflows/push_linux_x86_64_gnu.yml

@@ -1,13 +1,17 @@
 name: Push Linux x86_64 GNU Platform Gem
+
 on:
   push:
     tags:
       - v*
+
 permissions:
   contents: read
+
 env:
   BUNDLE_RETRY: 6
   BUNDLE_JOBS: 4
+
 jobs:
   push:
     if: github.repository_owner == 'karafka'
@@ -51,7 +55,7 @@ jobs:
           cd ext
           ./build_linux_x86_64_gnu.sh
       - name: Configure trusted publishing credentials
-        uses: rubygems/configure-rubygems-credentials@v1.0.0
+        uses: rubygems/configure-rubygems-credentials@bc6dd217f8a4f919d6835fcfefd470ef821f5c44 # v1.0.0
       - name: Build and push platform-specific gem
         run: |
           gem build *.gemspec

data/.github/workflows/push_linux_x86_64_musl.yml

@@ -0,0 +1,77 @@
+name: Push Linux x86_64 musl Platform Gem
+on:
+  push:
+    tags:
+      - v*
+permissions:
+  contents: read
+env:
+  BUNDLE_RETRY: 6
+  BUNDLE_JOBS: 4
+jobs:
+  build:
+    if: github.repository_owner == 'karafka'
+    timeout-minutes: 30
+    runs-on: ubuntu-latest
+    environment: deployment
+    container:
+      image: alpine:3.22@sha256:8a1f59ffb675680d47db6337b49d22281a139e9d709335b492be023728e11715
+    steps:
+      - name: Install dependencies
+        run: |
+          apk add --no-cache git curl ca-certificates build-base linux-headers \
+            pkgconf perl autoconf automake libtool bison flex file bash wget zstd-dev \
+            openssl-dev cyrus-sasl-dev cyrus-sasl cyrus-sasl-login \
+            cyrus-sasl-crammd5 cyrus-sasl-digestmd5 cyrus-sasl-gssapiv2 cyrus-sasl-scram \
+            krb5-libs openssl zlib zlib-dev zstd-libs
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          fetch-depth: 0
+      - name: Configure git safe directory
+        run: git config --global --add safe.directory /__w/karafka-rdkafka/karafka-rdkafka
+      - name: Cache build-tmp directory
+        uses: actions/cache@5a3ec84eff668545956fd18022155c47e93e2684 # v4.2.3
+        with:
+          path: ext/build-tmp-musl
+          key: build-tmp-musl-${{ runner.os }}-${{ hashFiles('ext/*.sh', 'ext/Rakefile') }}-v2
+      - name: Build precompiled librdkafka.so
+        run: |
+          cd ext
+          bash ./build_linux_x86_64_musl.sh
+      - name: Upload precompiled library
+        uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
+        with:
+          name: librdkafka-precompiled-musl
+          path: ext/
+          retention-days: 1
+  push:
+    if: github.repository_owner == 'karafka'
+    timeout-minutes: 30
+    runs-on: ubuntu-latest
+    needs: build
+    environment: deployment
+    permissions:
+      contents: write
+      id-token: write
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          fetch-depth: 0
+      - name: Download precompiled library
+        uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
+        with:
+          name: librdkafka-precompiled-musl
+          path: ext/
+      - name: Set up Ruby
+        uses: ruby/setup-ruby@a4effe49ee8ee5b8b5091268c473a4628afb5651 # v1.245.0
+        with:
+          ruby-version: '3.4'
+          bundler-cache: false
+      - name: Configure trusted publishing credentials
+        uses: rubygems/configure-rubygems-credentials@bc6dd217f8a4f919d6835fcfefd470ef821f5c44 # v1.0.0
+      - name: Build and push platform-specific gem
+        run: |
+          gem build *.gemspec
+          gem push *.gem
+        env:
+          RUBY_PLATFORM: 'x86_64-linux-musl'

data/.github/workflows/push_macos_arm64.yml

@@ -0,0 +1,54 @@
+name: Push macOS ARM64 Platform Gem
+
+on:
+  push:
+    tags:
+      - v*
+
+permissions:
+  contents: read
+
+env:
+  BUNDLE_RETRY: 6
+  BUNDLE_JOBS: 4
+
+jobs:
+  push:
+    if: github.repository_owner == 'karafka'
+    timeout-minutes: 30
+    runs-on: macos-latest
+    environment: deployment
+    permissions:
+      contents: write
+      id-token: write
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          fetch-depth: 0
+      - name: Install Bash 4+ and Kerberos
+        run: |
+          brew install bash
+          brew list krb5 &>/dev/null || brew install krb5
+          echo "/opt/homebrew/bin" >> $GITHUB_PATH
+      - name: Cache build-tmp directory
+        uses: actions/cache@5a3ec84eff668545956fd18022155c47e93e2684 # v4.2.3
+        with:
+          path: ext/build-tmp-macos
+          key: build-tmp-${{ runner.os }}-${{ hashFiles('ext/*.sh', 'ext/Rakefile') }}-v2
+      - name: Set up Ruby
+        uses: ruby/setup-ruby@a4effe49ee8ee5b8b5091268c473a4628afb5651 # v1.245.0
+        with:
+          ruby-version: '3.4'
+          bundler-cache: false
+      - name: Build precompiled librdkafka for macOS ARM64
+        run: |
+          cd ext
+          /opt/homebrew/bin/bash ./build_macos_arm64.sh
+      - name: Configure trusted publishing credentials
+        uses: rubygems/configure-rubygems-credentials@bc6dd217f8a4f919d6835fcfefd470ef821f5c44 # v1.0.0
+      - name: Build and push platform-specific gem
+        run: |
+          gem build *.gemspec
+          gem push *.gem
+        env:
+          RUBY_PLATFORM: 'arm64-darwin'

data/CHANGELOG.md

@@ -2,7 +2,12 @@
 
 ## 0.20.0 (Unreleased)
 - **[Feature]** Add precompiled `x86_64-linux-gnu` setup.
+- **[Feature]** Add precompiled `x86_64-linux-musl` setup.
 - **[Feature]** Add precompiled `macos_arm64` setup.
+- [Enhancement] Run all specs on each of the platforms with and without precompilation.
+- [Fix] Fix a case where using empty key on the `musl` architecture would cause a segfault.
+
+**Note**: Precompiled extensions are a new feature in this release. While they significantly improve installation speed and reduce build dependencies, they should be thoroughly tested in your staging environment before deploying to production. If you encounter any issues with precompiled extensions, you can fall back to building from sources.
 
 ## 0.19.5 (2025-05-30)
 - [Enhancement] Allow for producing to non-existing topics with `key` and `partition_key` present.

data/ext/build_linux_x86_64_musl.sh

@@ -0,0 +1,763 @@
+#!/usr/bin/env bash
+#
+# Build self-contained librdkafka.so for Linux x86_64 musl with checksum verification
+# Usage: ./build-librdkafka-linux-musl.sh
+#
+# Expected directory structure:
+#   ext/build_linux_x86_64_musl.sh       (this script)
+#   ext/build_common.sh                   (shared functions)
+#   dist/librdkafka-*.tar.gz              (librdkafka source tarball)
+#   dist/patches/*.patch                  (optional Ruby-specific patches)
+#
+set -euo pipefail
+
+# Source common functions and constants
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+source "$SCRIPT_DIR/build_common.sh"
+
+# Override secure_download for musl/Alpine compatibility
+secure_download() {
+    local url="$1"
+    local filename="$2"
+
+    if [ -f "$filename" ]; then
+        log "File $filename already exists, verifying checksum..."
+        verify_checksum "$filename"
+        return 0
+    fi
+
+    log "Downloading $filename from $url..."
+
+    # Use platform-appropriate download command
+    if command -v wget &> /dev/null; then
+        # Check if we have GNU wget or BusyBox wget
+        if wget --help 2>&1 | grep -q "secure-protocol"; then
+            # GNU wget - use security options
+            if ! wget --secure-protocol=TLSv1_2 \
+                     --https-only \
+                     --timeout=30 \
+                     --tries=3 \
+                     --progress=bar \
+                     "$url" \
+                     -O "$filename"; then
+                error "Failed to download $filename from $url"
+            fi
+        else
+            # BusyBox wget (Alpine) - use basic options
+            if ! wget -T 30 \
+                     -t 3 \
+                     -q \
+                     "$url" \
+                     -O "$filename"; then
+                error "Failed to download $filename from $url"
+            fi
+        fi
+    elif command -v curl &> /dev/null; then
+        # curl with security options
+        if ! curl -L \
+                 --tlsv1.2 \
+                 --connect-timeout 30 \
+                 --max-time 300 \
+                 --retry 3 \
+                 --progress-bar \
+                 "$url" \
+                 -o "$filename"; then
+            error "Failed to download $filename from $url"
+        fi
+    else
+        error "No download utility found (tried wget, curl)"
+    fi
+
+    # Verify checksum immediately after download
+    verify_checksum "$filename"
+}
+
+# Platform-specific paths
+DIST_DIR="$SCRIPT_DIR/../dist"
+PATCHES_DIR="$DIST_DIR/patches"
+BUILD_DIR="$(pwd)/build-tmp-musl"
+DEPS_PREFIX="/tmp/musl-deps"
+
+# musl-specific dependency check
+check_musl_dependencies() {
+    log "Checking musl-specific build dependencies..."
+
+    # Check if we're actually on musl
+    if command -v ldd &> /dev/null && ldd --version 2>&1 | grep -q musl; then
+        log "✅ musl libc detected"
+    elif [ -f /lib/ld-musl-x86_64.so.1 ]; then
+        log "✅ musl detected via loader presence"
+    else
+        warn "Not clearly detected as musl system. This script is optimized for musl-based distributions (Alpine, etc.)"
+        warn "Continuing anyway, but glibc-specific optimizations may be used instead..."
+    fi
+
+    # Check for essential build tools
+    local missing_tools=()
+
+    command -v gcc &> /dev/null || missing_tools+=("gcc")
+    command -v perl &> /dev/null || missing_tools+=("perl")
+    command -v make &> /dev/null || missing_tools+=("make")
+    command -v autoconf &> /dev/null || missing_tools+=("autoconf")
+    command -v automake &> /dev/null || missing_tools+=("automake")
+    command -v libtool &> /dev/null || missing_tools+=("libtool")
+    command -v bison &> /dev/null || missing_tools+=("bison")
+    command -v flex &> /dev/null || missing_tools+=("flex")
+
+    # Check for system libraries that dependencies expect
+    if [ ! -f /usr/include/sys/types.h ]; then
+        missing_tools+=("musl-dev (for system headers)")
+    fi
+
+    # On Alpine, these packages provide the tools:
+    # build-base: gcc, make, musl-dev, libc-dev, etc.
+    # linux-headers: kernel headers for system calls
+    # pkgconf: pkg-config for dependency detection
+    # perl: required by OpenSSL and other build systems
+    # autoconf, automake, libtool: GNU autotools for configure scripts
+    # bison, flex: parser generators (needed by some dependencies)
+    # file: for file type detection
+
+    if [ ${#missing_tools[@]} -gt 0 ]; then
+        error "Missing required tools: ${missing_tools[*]}
+
+On Alpine Linux, install ALL required packages with:
+    apk add build-base linux-headers pkgconf perl \\
+            autoconf automake libtool bison flex file
+
+Or install individually as needed."
+    fi
+
+    log "✅ All required musl build tools found"
+}
+
+# musl-specific compiler setup
+setup_musl_compiler() {
+    # musl-specific compiler flags
+    export CC="gcc"
+    export CFLAGS="-fPIC -O2 -static-libgcc"
+    export CXXFLAGS="-fPIC -O2 -static-libgcc" 
+    export CPPFLAGS=""
+    export LDFLAGS="-static-libgcc"
+
+    log "Applied musl-specific compiler flags"
+}
+
+# Build OpenSSL for musl
+build_openssl_musl() {
+    local openssl_prefix="$1"
+    local openssl_dir="$2"
+
+    cd "$openssl_dir"
+
+    # Check both lib and lib64 directories for existing installation
+    if [ ! -f "$openssl_prefix/lib/libssl.a" ] && [ ! -f "$openssl_prefix/lib64/libssl.a" ]; then
+        log "Configuring and building OpenSSL for musl..."
+        make clean 2>/dev/null || true
+
+        setup_musl_compiler
+
+        # Create the prefix directory first
+        mkdir -p "$openssl_prefix"
+
+        # Configure OpenSSL for musl (linux-x86_64 works fine)
+        ./Configure linux-x86_64 \
+            no-shared \
+            no-dso \
+            no-engine \
+            --prefix="$openssl_prefix" \
+            --openssldir="$openssl_prefix/ssl"
+
+        make -j$(get_cpu_count)
+
+        # Try the install and capture any errors
+        log "Installing OpenSSL..."
+        if ! make install_sw install_ssldirs 2>&1; then
+            warn "install_sw failed, trying full install..."
+            make install || {
+                # If install fails, check if libraries were actually built
+                if [ -f "libssl.a" ] && [ -f "libcrypto.a" ]; then
+                    log "Install failed but libraries exist, copying manually..."
+                    mkdir -p "$openssl_prefix/lib" "$openssl_prefix/include"
+                    cp libssl.a libcrypto.a "$openssl_prefix/lib/"
+                    cp -r include/openssl "$openssl_prefix/include/" 2>/dev/null || true
+                else
+                    error "OpenSSL build failed - no libraries found"
+                fi
+            }
+        fi
+
+        # Verify the build - check both possible lib locations
+        if [ -f "$openssl_prefix/lib/libssl.a" ] || [ -f "$openssl_prefix/lib64/libssl.a" ]; then
+            if [ -f "$openssl_prefix/lib64/libssl.a" ]; then
+                log "OpenSSL installed to lib64 directory"
+                # Create symlinks in lib for consistency
+                mkdir -p "$openssl_prefix/lib"
+                ln -sf ../lib64/libssl.a "$openssl_prefix/lib/libssl.a" 2>/dev/null || true
+                ln -sf ../lib64/libcrypto.a "$openssl_prefix/lib/libcrypto.a" 2>/dev/null || true
+                ln -sf ../lib64/pkgconfig "$openssl_prefix/lib/pkgconfig" 2>/dev/null || true
+            fi
+            log "✅ Static OpenSSL built successfully"
+        else
+            error "Failed to build static OpenSSL - libraries not found in lib or lib64"
+        fi
+    else
+        log "Static OpenSSL already built, skipping..."
+    fi
+}
+
+# Build MIT Kerberos for musl
+build_krb5_musl() {
+    local krb5_prefix="$1"
+    local krb5_dir="$2"
+
+    cd "$krb5_dir/src"
+
+    if [ ! -f "$krb5_prefix/lib/libgssapi_krb5.a" ]; then
+        log "Configuring and building MIT Kerberos for musl..."
+        make clean 2>/dev/null || true
+
+        setup_musl_compiler
+
+        # musl-specific configuration for Kerberos
+        # Disable some features that can be problematic on musl
+        ./configure \
+            --disable-shared \
+            --enable-static \
+            --prefix="$krb5_prefix" \
+            --without-ldap \
+            --without-tcl \
+            --without-keyutils \
+            --disable-rpath \
+            --without-system-verto \
+            --disable-thread-support \
+            --disable-dns-for-realm \
+            --without-readline
+
+        # Build with limited parallelism to avoid musl-specific race conditions
+        log "Building Kerberos (will ignore kadmin build failures)..."
+        make -j$(( $(get_cpu_count) / 2 )) || {
+            log "Full build failed (expected due to kadmin), continuing with libraries..."
+            true
+        }
+
+        # Install what was successfully built
+        make install || {
+            log "Full install failed, installing individual components..."
+            make install-mkdirs 2>/dev/null || true
+            make -C util install 2>/dev/null || true
+            make -C lib install 2>/dev/null || true
+            make -C plugins/kdb/db2 install 2>/dev/null || true
+        }
+
+        # Verify we got the essential libraries
+        if [ ! -f "$krb5_prefix/lib/libgssapi_krb5.a" ]; then
+            error "Failed to build essential Kerberos libraries"
+        fi
+
+        log "✅ Static MIT Kerberos built successfully"
+    else
+        log "Static MIT Kerberos already built, skipping..."
+    fi
+}
+
+# Build Cyrus SASL for musl with proper OpenSSL linking
+build_sasl_musl() {
+    local sasl_prefix="$1"
+    local sasl_dir="$2"
+    local krb5_prefix="$3"
+    local openssl_prefix="$4"  # Add OpenSSL prefix parameter
+
+    cd "$sasl_dir"
+
+    if [ ! -f "$sasl_prefix/lib/libsasl2.a" ]; then
+        log "Configuring and building Cyrus SASL for musl..."
+        make clean 2>/dev/null || true
+
+        # Apply comprehensive patches for missing time.h includes
+        log "Applying comprehensive time.h patches..."
+
+        # Create backups first
+        cp lib/saslutil.c lib/saslutil.c.backup 2>/dev/null || true
+        cp plugins/cram.c plugins/cram.c.backup 2>/dev/null || true
+
+        # Use perl for more reliable in-place editing
+        log "Patching lib/saslutil.c..."
+        perl -i -pe 's/^#include "saslint\.h"$/#include "saslint.h"\n#include <time.h>/' lib/saslutil.c
+
+        log "Patching plugins/cram.c..."
+        perl -i -pe 's/^#include "plugin_common\.h"$/#include "plugin_common.h"\n#include <time.h>/' plugins/cram.c
+
+        # Verify patches applied
+        if ! grep -q "#include <time.h>" lib/saslutil.c; then
+            log "Perl approach failed, using awk fallback for saslutil.c..."
+            awk '/^#include "saslint\.h"$/ {print; print "#include <time.h>"; next} {print}' lib/saslutil.c.backup > lib/saslutil.c
+        fi
+
+        if ! grep -q "#include <time.h>" plugins/cram.c; then
+            log "Perl approach failed, using awk fallback for cram.c..."
+            awk '/^#include "plugin_common\.h"$/ {print; print "#include <time.h>"; next} {print}' plugins/cram.c.backup > plugins/cram.c
+        fi
+
+        # Clean up backup files
+        rm -f lib/saslutil.c.backup plugins/cram.c.backup
+
+        # Verify patches were applied
+        if ! grep -q "#include <time.h>" lib/saslutil.c || ! grep -q "#include <time.h>" plugins/cram.c; then
+            error "Failed to patch time.h includes - this is required for compilation"
+        fi
+
+        log "✅ time.h patches applied successfully"
+
+        # Determine correct OpenSSL lib directory
+        local openssl_lib_dir
+        if [ -f "$openssl_prefix/lib64/libssl.a" ]; then
+            openssl_lib_dir="$openssl_prefix/lib64"
+            log "Using OpenSSL libraries from lib64"
+        else
+            openssl_lib_dir="$openssl_prefix/lib"
+            log "Using OpenSSL libraries from lib"
+        fi
+
+        # Verify OpenSSL libraries exist
+        if [ ! -f "$openssl_lib_dir/libssl.a" ] || [ ! -f "$openssl_lib_dir/libcrypto.a" ]; then
+            error "OpenSSL static libraries not found in $openssl_lib_dir"
+        fi
+
+        setup_musl_compiler
+
+        # Set comprehensive OpenSSL and Kerberos flags
+        export CPPFLAGS="$CPPFLAGS -I$krb5_prefix/include -I$openssl_prefix/include"
+        export LDFLAGS="$LDFLAGS -L$krb5_prefix/lib -L$openssl_lib_dir"
+        export LIBS="-lssl -lcrypto -ldl -lpthread"
+
+        # Also set PKG_CONFIG_PATH for better library detection
+        export PKG_CONFIG_PATH="$openssl_lib_dir/pkgconfig:$krb5_prefix/lib/pkgconfig:${PKG_CONFIG_PATH:-}"
+
+        log "Environment variables set:"
+        log "  CPPFLAGS: $CPPFLAGS"
+        log "  LDFLAGS: $LDFLAGS"
+        log "  LIBS: $LIBS"
+        log "  PKG_CONFIG_PATH: $PKG_CONFIG_PATH"
+
+        # Configure SASL with explicit OpenSSL paths and comprehensive options
+        ./configure \
+            --disable-shared \
+            --enable-static \
+            --prefix="$sasl_prefix" \
+            --with-openssl="$openssl_prefix" \
+            --with-ssl="$openssl_prefix" \
+            --enable-gssapi="$krb5_prefix" \
+            --without-dblib \
+            --disable-gdbm \
+            --disable-sample \
+            --disable-obsolete_cram_attr \
+            --disable-obsolete_digest_attr \
+            --without-pam \
+            --without-saslauthd \
+            --without-pwcheck \
+            --without-des \
+            --without-authdaemond \
+            --disable-java \
+            --disable-sql \
+            --disable-ldapdb \
+            --enable-plain \
+            --enable-login \
+            --enable-digest \
+            --enable-cram \
+            --enable-otp \
+            --enable-ntlm \
+            --enable-scram \
+            ac_cv_func_getnameinfo=yes \
+            ac_cv_func_getaddrinfo=yes \
+            OPENSSL_CFLAGS="-I$openssl_prefix/include" \
+            OPENSSL_LIBS="-L$openssl_lib_dir -lssl -lcrypto"
+
+        log "Configuration completed, starting build..."
+
+        # Build with reduced parallelism to avoid race conditions
+        make -j$(( $(get_cpu_count) / 2 )) || {
+            log "Build failed, trying single-threaded build..."
+            make clean
+            make -j1
+        }
+
+        # Install
+        make install
+
+        # Verify the build
+        if [ ! -f "$sasl_prefix/lib/libsasl2.a" ]; then
+            error "Failed to build static Cyrus SASL"
+        fi
+
+        # Additional verification - check if OTP plugin was built (this was failing)
+        if [ -f "$sasl_prefix/lib/sasl2/libotp.a" ] || [ -f "$sasl_prefix/lib/sasl2/libotp.la" ]; then
+            log "✅ OTP plugin built successfully"
+        else
+            log "⚠️  OTP plugin may not have built, but core SASL library is available"
+        fi
+
+        log "✅ Static Cyrus SASL built successfully"
+    else
+        log "Static Cyrus SASL already built, skipping..."
+    fi
+}
+
+# Build static library with musl-specific configuration
+build_static_lib_musl() {
+    local lib_name="$1"
+    local prefix="$2"
+    local source_dir="$3"
+    local configure_args="$4"
+
+    cd "$source_dir"
+
+    local lib_file="$prefix/lib/lib${lib_name}.a"
+    if [ ! -f "$lib_file" ]; then
+        log "Configuring and building static $lib_name for musl..."
+        make clean 2>/dev/null || true
+
+        setup_musl_compiler
+
+        # Run configure with provided arguments
+        eval "./configure --prefix=\"$prefix\" $configure_args"
+
+        make -j$(get_cpu_count)
+        make install
+
+        # Verify the build
+        if [ ! -f "$lib_file" ]; then
+            error "Failed to build static $lib_name"
+        fi
+
+        log "✅ Static $lib_name built successfully"
+    else
+        log "Static $lib_name already built, skipping..."
+    fi
+}
+
+# Check common and musl-specific dependencies
+check_common_dependencies
+check_musl_dependencies
+
+# Auto-detect librdkafka tarball
+log "Looking for librdkafka tarball in $DIST_DIR..."
+LIBRDKAFKA_TARBALL=$(find_librdkafka_tarball "$DIST_DIR")
+log "Found librdkafka tarball: $LIBRDKAFKA_TARBALL"
+
+# Verify librdkafka tarball checksum if available
+verify_librdkafka_checksum "$LIBRDKAFKA_TARBALL"
+
+# Find patches
+PATCHES_FOUND=()
+find_patches "$PATCHES_DIR" PATCHES_FOUND
+
+security_log "Starting secure build with checksum verification enabled"
+log "Building self-contained librdkafka.so for Linux x86_64 musl (WITH SASL)"
+log "Dependencies to build:"
+log "  - OpenSSL: $OPENSSL_VERSION"
+log "  - Cyrus SASL: $CYRUS_SASL_VERSION (with official GCC 14+ patches)"
+log "  - MIT Kerberos: $KRB5_VERSION"
+log "  - zlib: $ZLIB_VERSION"
+log "  - ZStd: $ZSTD_VERSION"
+log "librdkafka source: $LIBRDKAFKA_TARBALL"
+log "Build directory: $BUILD_DIR"
+
+# Create build directory
+mkdir -p "$BUILD_DIR"
+cd "$BUILD_DIR"
+
+# Build OpenSSL
+log "Building OpenSSL $OPENSSL_VERSION for musl..."
+OPENSSL_PREFIX="$DEPS_PREFIX/static-openssl-$OPENSSL_VERSION"
+OPENSSL_TARBALL="openssl-$OPENSSL_VERSION.tar.gz"
+OPENSSL_DIR="openssl-$OPENSSL_VERSION"
+
+secure_download "$(get_openssl_url)" "$OPENSSL_TARBALL"
+extract_if_needed "$OPENSSL_TARBALL" "$OPENSSL_DIR"
+build_openssl_musl "$OPENSSL_PREFIX" "$OPENSSL_DIR"
+
+cd "$BUILD_DIR"
+
+# Determine OpenSSL lib directory (could be lib or lib64)
+if [ -f "$OPENSSL_PREFIX/lib64/libssl.a" ]; then
+    OPENSSL_LIB_DIR="$OPENSSL_PREFIX/lib64"
+    log "Using OpenSSL libraries from lib64"
+else
+    OPENSSL_LIB_DIR="$OPENSSL_PREFIX/lib"
+    log "Using OpenSSL libraries from lib"
+fi
+
+# Build MIT Kerberos
+log "Building MIT Kerberos $KRB5_VERSION for musl..."
+KRB5_PREFIX="$DEPS_PREFIX/static-krb5-$KRB5_VERSION"
+KRB5_TARBALL="krb5-$KRB5_VERSION.tar.gz"
+KRB5_DIR="krb5-$KRB5_VERSION"
+
+secure_download "$(get_krb5_url)" "$KRB5_TARBALL"
+extract_if_needed "$KRB5_TARBALL" "$KRB5_DIR"
+build_krb5_musl "$KRB5_PREFIX" "$KRB5_DIR"
+
+cd "$BUILD_DIR"
+
+# Build SASL with official patches (updated call)
+log "Building Cyrus SASL $CYRUS_SASL_VERSION for musl..."
+SASL_PREFIX="$DEPS_PREFIX/static-sasl-$CYRUS_SASL_VERSION"
+SASL_TARBALL="cyrus-sasl-$CYRUS_SASL_VERSION.tar.gz"
+SASL_DIR="cyrus-sasl-$CYRUS_SASL_VERSION"
+
+secure_download "$(get_sasl_url)" "$SASL_TARBALL"
+extract_if_needed "$SASL_TARBALL" "$SASL_DIR"
+build_sasl_musl "$SASL_PREFIX" "$SASL_DIR" "$KRB5_PREFIX" "$OPENSSL_PREFIX"  # Added OPENSSL_PREFIX parameter
+
+cd "$BUILD_DIR"
+
+# Build zlib
+log "Building zlib $ZLIB_VERSION for musl..."
+ZLIB_PREFIX="$DEPS_PREFIX/static-zlib-$ZLIB_VERSION"
+ZLIB_TARBALL="zlib-$ZLIB_VERSION.tar.gz"
+ZLIB_DIR="zlib-$ZLIB_VERSION"
+
+secure_download "$(get_zlib_url)" "$ZLIB_TARBALL"
+extract_if_needed "$ZLIB_TARBALL" "$ZLIB_DIR"
+build_static_lib_musl "z" "$ZLIB_PREFIX" "$ZLIB_DIR" "--static"
+
+cd "$BUILD_DIR"
+
+# Build ZStd
+log "Building ZStd $ZSTD_VERSION for musl..."
+ZSTD_PREFIX="$DEPS_PREFIX/static-zstd-$ZSTD_VERSION"
+ZSTD_TARBALL="zstd-$ZSTD_VERSION.tar.gz"
+ZSTD_DIR="zstd-$ZSTD_VERSION"
+
+secure_download "$(get_zstd_url)" "$ZSTD_TARBALL"
+extract_if_needed "$ZSTD_TARBALL" "$ZSTD_DIR"
+cd "$ZSTD_DIR"
+
+if [ ! -f "$ZSTD_PREFIX/lib/libzstd.a" ]; then
+    log "Building ZStd for musl..."
+    make clean 2>/dev/null || true
+
+    setup_musl_compiler
+
+    # Build static library using ZStd's Makefile
+    make lib-mt CFLAGS="$CFLAGS" PREFIX="$ZSTD_PREFIX" -j$(get_cpu_count)
+    make install PREFIX="$ZSTD_PREFIX"
+
+    # Verify the build
+    if [ ! -f "$ZSTD_PREFIX/lib/libzstd.a" ]; then
+        error "Failed to build static ZStd"
+    fi
+
+    log "✅ Static ZStd built successfully"
+else
+    log "Static ZStd already built, skipping..."
+fi
+
+cd "$BUILD_DIR"
+
+# Extract and patch librdkafka
+log "Extracting librdkafka..."
+tar xzf "$LIBRDKAFKA_TARBALL"
+cd "librdkafka-$LIBRDKAFKA_VERSION"
+
+# Fix permissions and apply patches
+fix_configure_permissions
+apply_patches PATCHES_FOUND
+
+# Configure librdkafka for musl (with SASL)
+log "Configuring librdkafka for musl (with SASL support)..."
+
+setup_musl_compiler
+
+# musl-specific configuration with SASL
+export CPPFLAGS="$CPPFLAGS -I$KRB5_PREFIX/include -I$SASL_PREFIX/include"
+export LDFLAGS="$LDFLAGS -L$KRB5_PREFIX/lib -L$SASL_PREFIX/lib"
+
+if [ -f configure ]; then
+    log "Using mklove configure script"
+
+    # mklove-specific configure options with SASL
+    ./configure \
+        --enable-static \
+        --disable-shared \
+        --disable-curl \
+        --enable-gssapi \
+        --enable-sasl \
+        --disable-c11threads
+else
+    error "No configure script found"
+fi
+
+# Build librdkafka
+log "Compiling librdkafka..."
+make clean || true
+make -j$(get_cpu_count)
+
+# Verify librdkafka.a exists
+if [ ! -f src/librdkafka.a ]; then
+    error "librdkafka.a not found after build"
+fi
+
+log "librdkafka.a built successfully"
+
+# Create self-contained shared library for musl (with SASL)
+log "Creating self-contained librdkafka.so for musl (with SASL support)..."
+
+# First, verify all static libraries exist
+log "Verifying static libraries exist..."
+for lib_path in \
+    "$SASL_PREFIX/lib/libsasl2.a" \
+    "$KRB5_PREFIX/lib/libgssapi_krb5.a" \
+    "$KRB5_PREFIX/lib/libkrb5.a" \
+    "$KRB5_PREFIX/lib/libk5crypto.a" \
+    "$KRB5_PREFIX/lib/libcom_err.a" \
+    "$KRB5_PREFIX/lib/libkrb5support.a" \
+    "$OPENSSL_LIB_DIR/libssl.a" \
+    "$OPENSSL_LIB_DIR/libcrypto.a" \
+    "$ZLIB_PREFIX/lib/libz.a" \
+    "$ZSTD_PREFIX/lib/libzstd.a"
+do
+    if [ ! -f "$lib_path" ]; then
+        error "Required static library not found: $lib_path"
+    else
+        log "✅ Found: $lib_path"
+    fi
+done
+
+gcc -shared -fPIC \
+    -Wl,--whole-archive src/librdkafka.a -Wl,--no-whole-archive \
+    -o librdkafka.so \
+    -Wl,-Bstatic \
+    "$SASL_PREFIX/lib/libsasl2.a" \
+    "$KRB5_PREFIX/lib/libgssapi_krb5.a" \
+    "$KRB5_PREFIX/lib/libkrb5.a" \
+    "$KRB5_PREFIX/lib/libk5crypto.a" \
+    "$KRB5_PREFIX/lib/libcom_err.a" \
+    "$KRB5_PREFIX/lib/libkrb5support.a" \
+    "$OPENSSL_LIB_DIR/libssl.a" \
+    "$OPENSSL_LIB_DIR/libcrypto.a" \
+    "$ZLIB_PREFIX/lib/libz.a" \
+    "$ZSTD_PREFIX/lib/libzstd.a" \
+    -Wl,-Bdynamic \
+    -lpthread -lm -ldl -lc \
+    -static-libgcc \
+    -Wl,--as-needed \
+    -Wl,--no-undefined
+
+if [ ! -f librdkafka.so ]; then
+    error "Failed to create librdkafka.so"
+fi
+
+log "librdkafka.so created successfully"
+
+# Enhanced verification
+log "Verifying static linking of SASL..."
+if command -v ldd &> /dev/null; then
+    SASL_DEPS=$(ldd librdkafka.so 2>/dev/null | grep -i sasl || true)
+    if [ -n "$SASL_DEPS" ]; then
+        error "SASL is still dynamically linked: $SASL_DEPS"
+    else
+        log "✅ SASL successfully statically linked - no dynamic SASL dependencies found"
+    fi
+
+    # Check for any other problematic dynamic dependencies
+    PROBLEMATIC_DEPS=$(ldd librdkafka.so 2>/dev/null | grep -E "(libssl|libcrypto|libz|libzstd|libkrb|libgssapi)" || true)
+    if [ -n "$PROBLEMATIC_DEPS" ]; then
+        warn "Found other dynamic dependencies that should be static: $PROBLEMATIC_DEPS"
+    else
+        log "✅ All major dependencies appear to be statically linked"
+    fi
+else
+    log "ldd not available, skipping dynamic dependency check"
+fi
+
+# Additional verification using nm if available
+if command -v nm &> /dev/null; then
+    log "Checking for SASL symbols in the library..."
+    SASL_SYMBOLS=$(nm -D librdkafka.so 2>/dev/null | grep -i sasl | head -5 || true)
+    if [ -n "$SASL_SYMBOLS" ]; then
+        log "✅ SASL symbols found in library (first 5):"
+        echo "$SASL_SYMBOLS"
+    else
+        warn "No SASL symbols found - this might indicate a linking issue"
+    fi
+fi
+
+# Verify the build (musl-compatible)
+log "Verifying musl build..."
+if command -v file &> /dev/null; then
+    file librdkafka.so
+else
+    log "file command not available, skipping file type check"
+fi
+
+log "Checking dependencies with ldd:"
+if command -v ldd &> /dev/null; then
+    ldd librdkafka.so
+else
+    log "ldd not available, skipping dependency check"
+fi
+
+log "Checking for external dependencies (should only show musl and system libraries):"
+if command -v ldd &> /dev/null; then
+    EXTERNAL_DEPS=$(ldd librdkafka.so 2>/dev/null | grep -v "musl" | grep -v "ld-musl" | grep -v "librdkafka.so" | grep -v "=>" | grep -v "statically linked" | grep -v "not a dynamic executable" || true)
+    if [ -n "$EXTERNAL_DEPS" ]; then
+        # Filter out expected system dependencies that are OK on musl
+        FILTERED_DEPS=$(echo "$EXTERNAL_DEPS" | grep -v "linux-vdso.so" | grep -v "/lib/ld-musl" || true)
+        if [ -n "$FILTERED_DEPS" ]; then
+            warn "Found some external dependencies (may be acceptable for musl): $FILTERED_DEPS"
+        else
+            log "✅ All dependencies are musl system libraries - build is self-contained!"
+        fi
+    else
+        log "✅ No unexpected external dependencies found - library is self-contained!"
+    fi
+else
+    log "ldd not available, skipping external dependency check"
+fi
+
+# Check for musl compatibility
+log "Verifying musl compatibility..."
+if command -v ldd &> /dev/null; then
+    if ldd librdkafka.so 2>&1 | grep -q "musl"; then
+        log "✅ Library is linked against musl libc"
+    elif ldd librdkafka.so 2>&1 | grep -q "statically linked"; then
+        log "✅ Library appears to be statically linked (good for musl)"
+    else
+        warn "Library linking may not be optimal for musl systems"
+    fi
+else
+    log "ldd not available, skipping musl compatibility check"
+fi
+
+# Copy to output directory
+OUTPUT_DIR="$SCRIPT_DIR"
+cp librdkafka.so "$OUTPUT_DIR/"
+log "librdkafka.so copied to: $OUTPUT_DIR/librdkafka.so"
+
+# Print summaries
+print_security_summary
+
+# Enhanced summary for musl (with SASL)
+log "Build completed successfully!"
+log "📦 Self-contained librdkafka built for Linux x86_64 musl:"
+log "   ✅ OpenSSL $OPENSSL_VERSION (SSL/TLS support) - checksum verified"
+log "   ✅ Cyrus SASL $CYRUS_SASL_VERSION (authentication for AWS MSK) - checksum verified"
+log "   ✅ MIT Kerberos $KRB5_VERSION (GSSAPI/Kerberos authentication) - checksum verified"
+log "   ✅ zlib $ZLIB_VERSION (compression) - checksum verified"
+log "   ✅ ZStd $ZSTD_VERSION (high-performance compression) - checksum verified"
+log ""
+log "🎯 Ready for deployment on musl-based systems (Alpine Linux, Docker containers)"
+log "☁️  Compatible with AWS MSK and other secured Kafka clusters"
+log "🔐 Supply chain security: All dependencies cryptographically verified"
+log "🐳 Docker-optimized: Perfect for Alpine-based container deployments"
+log "🛠️  GCC 14+ compatible: Official patches applied to Cyrus SASL"
+log ""
+log "Location: $OUTPUT_DIR/librdkafka.so"
+
+# Cleanup
+cleanup_build_dir "$BUILD_DIR"
+
+# Reset environment variables
+unset CFLAGS CXXFLAGS CPPFLAGS LDFLAGS CC

data/karafka-rdkafka.gemspec

@@ -41,7 +41,9 @@ Gem::Specification.new do |gem|
   end
 
   gem.add_dependency 'ffi', '~> 1.15'
+  gem.add_dependency 'logger'
   gem.add_dependency 'mini_portile2', '~> 2.6'
+  gem.add_dependency 'ostruct'
   gem.add_dependency 'rake', '> 12'
 
   gem.add_development_dependency 'pry'

data/lib/rdkafka/bindings.rb

@@ -406,12 +406,15 @@ module Rdkafka
     def self.partitioner(str, partition_count, partitioner_name = "consistent_random")
       # Return RD_KAFKA_PARTITION_UA(unassigned partition) when partition count is nil/zero.
       return -1 unless partition_count&.nonzero?
+      # musl architecture crashes with empty string
+      return 0 if str.empty?
 
-      str_ptr = str.empty? ? FFI::MemoryPointer::NULL : FFI::MemoryPointer.from_string(str)
+      str_ptr = FFI::MemoryPointer.from_string(str)
       method_name = PARTITIONERS.fetch(partitioner_name) do
         raise Rdkafka::Config::ConfigError.new("Unknown partitioner: #{partitioner_name}")
       end
-      public_send(method_name, nil, str_ptr, str.size > 0 ? str.size : 1, partition_count, nil, nil)
+
+      public_send(method_name, nil, str_ptr, str.size, partition_count, nil, nil)
     end
 
     # Create Topics

data/lib/rdkafka/version.rb

@@ -1,7 +1,7 @@
 # frozen_string_literal: true
 
 module Rdkafka
-  VERSION = "0.20.0.rc3"
+  VERSION = "0.20.0.rc5"
   LIBRDKAFKA_VERSION = "2.8.0"
   LIBRDKAFKA_SOURCE_SHA256 = "5bd1c46f63265f31c6bfcedcde78703f77d28238eadf23821c2b43fc30be3e25"
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: karafka-rdkafka
 version: !ruby/object:Gem::Version
-  version: 0.20.0.rc3
+  version: 0.20.0.rc5
 platform: x86_64-linux-gnu
 authors:
 - Thijs Cadier
@@ -24,6 +24,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.15'
+- !ruby/object:Gem::Dependency
+  name: logger
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: mini_portile2
   requirement: !ruby/object:Gem::Requirement
@@ -38,6 +52,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '2.6'
+- !ruby/object:Gem::Dependency
+  name: ostruct
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -118,8 +146,11 @@ files:
 - ".github/CODEOWNERS"
 - ".github/FUNDING.yml"
 - ".github/workflows/ci_linux_x86_64_gnu.yml"
+- ".github/workflows/ci_linux_x86_64_musl.yml"
 - ".github/workflows/ci_macos_arm64.yml"
 - ".github/workflows/push_linux_x86_64_gnu.yml"
+- ".github/workflows/push_linux_x86_64_musl.yml"
+- ".github/workflows/push_macos_arm64.yml"
 - ".github/workflows/push_ruby.yml"
 - ".github/workflows/verify-action-pins.yml"
 - ".gitignore"
@@ -137,6 +168,7 @@ files:
 - ext/Rakefile
 - ext/build_common.sh
 - ext/build_linux_x86_64_gnu.sh
+- ext/build_linux_x86_64_musl.sh
 - ext/build_macos_arm64.sh
 - ext/librdkafka.so
 - karafka-rdkafka.gemspec