[NIFI-7758] Site-to-Site and ListenTCP unnecessarily perform Reverse DNS Lookup - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.13.0, 1.12.1
Component/s: Core Framework, Extensions
Labels:
None

Description

The SSLSocketChannel class in nifi-security-utils obtains the remote address's hostname via a call to InetAddress.getHostName():

final Socket socket = socketChannel.socket();
this.hostname = socket.getInetAddress().getHostName();

This hostname is captured only for use in the message of Exceptions or logging and not programmatically. The use of this reverse DNS lookup, though, can be expensive and cause long delays in an environment where reverse DNS lookups are not available. As a result, we should use InetAddress.toString() instead, which will provide the hostname, if it is available, and the IP address without performing a reverse DNS lookup.

Attachments

Issue Links

links to

GitHub Pull Request #4487

Activity

People

Assignee:: Mark Payne

Reporter:: Mark Payne

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 24/Aug/20 13:06

Updated:: 02/Sep/20 16:01

Resolved:: 24/Aug/20 14:27

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

20m