Versions Compared

Old Version 5

changes.mady.by.user Badai Aqrandista

Saved on

compared with

New Version Current

changes.mady.by.user Badai Aqrandista

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents


Status

Current state: "Under DiscussionAccepted"

Discussion thread: here

JIRA:

Jira
serverASF JIRA
serverId5aa69414-a9e9-3523-82ec-879b028fb15b
keyKAFKA-9313

...

With this KIP, we would like to argue that it is desirable to make "use_all_dns_ips" or its behaviour as  as the default value for client.dns.lookup  for these reasons:

  1. reduce connection failure rates by using all the possible IP addresses of a hostname
  2. common expectation of applications dealing with hostname resolved to multiple IP addresses is to attempt connecting to all of them and use the one it can connect successfully, not to use the first one
  3. resolving hostname to multiple IP addresses is becoming more common due to the rise of cloud and containerised environment


Public Interfaces

The behaviour of " default " value for of client.dns.lookup changes from "default" (using the first resolved IP" to ") to "use_all_dns_ips" (using one of the resolved IP's, whichever gets successful connection first").

To achieve the old behaviour of using the first resolved IP, add new possible value for , explicitly set the value of client.dns.lookup configuration to "default".

Note that this KIP preserves KIP-302 behaviour to only use multiple IPs of the same type (IPv4/IPv6) as the first one, to avoid any change in the network stack while trying multiple IPs.


With this KIP, client connection to bootstrap server will behave as per the following based on the value of client.dns.lookup configuration:

  • If set to "use_all_dns_ips", connect to each returned IP address in sequence until a successful connection is established. After a disconnection, the next IP is used. Once all IPs have been used once, the client resolves the IP(s) from the hostname again (both the JVM and the OS may cache DNS name lookups, however).
  • If set to "

...

  • resolve_canonical_bootstrap_servers_only"expands each bootstrap address into a list of canonical names. After the bootstrap phase, each of the canonical names is resolved with the same behaviour as "use_all_dns_ips"
  • If set to "default" (deprecated), attempt to connect to the first IP address returned by the lookup, even if the lookup returns multiple IP addresses.

Proposed Changes

Change ClientUtils#resolve toThe behaviour of ClientUtils#resolve stays the same, which is:

  • If client.dns.lookup value is either "default" or is "use_all_dns_ips" or "resolve_canonical_bootstrap_servers_only": Attempt connecting to each resolved IP addresses and use the first one that connects successfully.
  • If client.dns.lookup value is value is "default": Use the first resolved IP address.


Change the default value of client.dns.lookup configuration in AdminClientConfig, ProducerConfig and ConsumerConfig from "default" to "use_all_dns_ips".

Change all server, tool and test code that literally use "default" value to use "use_

...

all_dns_ips"

...

instead.

Print a warning if "default" value is used: "The 'client.dns.lookup' value 'default' is deprecated and will be removed in future version."

Compatibility, Deprecation, and Migration Plan

  • The value "default" will be marked as deprecated. And this value will be removed in version 3.0.
  • If client.dns.lookup is set to "resolve_canonical_bootstrap_servers_only", it will use the behaviour of "use_all_dns_ips" when resolving the individual broker address, instead of using the first resolved IP address
  • If a hostname resolves to multiple IP addresses and connecting to the first IP failed, the client will attempt to connect to the other IP's instead of failing. Based on the common expectation, this is what is expected.
  • If a hostname resolves to a single IP address and connecting to it failed, then the connection will fail.


Please note that the concern about breaking SSL hostname verification raised in KIP-235 does not apply to this KIP . The concern was raised because KIP-235 proposed to modify ClientUtils#parseAndValidateAddresses to resolve an address alias (i.e. bootstrap server) into multiple addresses. This would break SSL hostname verification when the bootstrap server is an IP address, i.e. it will resolve the IP address to an FQDN and use that FQDN in the SSL handshake.this KIP does not propose to modify ClientUtils#parseAndValidateAddresses. This KIP is proposing to only modify ClientUtils#resolve, which is only used in ClusterConnectionStates#currentAddress, to get the resolved InetAddress of an address. And ClusterConnectionStates#currentAddress is only used by NetworkClient#initiateConnect to create InetSocketAddress to which is then used in NetworkClient#initiateConnect to establish the socket connection to the broker. In other words, this KIP only change the behaviour of resolving address to the IP address used by the socket to connect to the broker.

...

  • Keep the default behaviour of client.dns.lookup to connect to the first resolved IP. The reason this is rejected is because it does not match with the common expectation when a hostname resolves to multiple IP addresses.Remove "default" value from client.dns.lookup. There is a lot of places in the server code that uses "default" value, so removing "default" value would require changing many server code, which is high risk.