Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.
MattWho
MattWho
Master Guru

Re: Nifi process consuming >100%CPU while executi...

by Master Collaborator stevenmatison in Support Questions
‎04-02-2020 11:45 AM
‎04-02-2020 11:45 AM
@Gubbi   I think your ListFile proc is still executing 0 sec.   Reference our private message.   ... View more

Re: Unable to open NIFI web UI after TLS

by New Contributor Thoma1s in Support Questions
‎04-01-2020 06:09 AM
‎04-01-2020 06:09 AM
The site does not use SSL, but shares an IP address with some other site that does. ... View more

Re: NiFi SSL mutual authentication issue - Unable ...

by Guru alopresto Guru in Support Questions
‎03-31-2020 08:31 AM
‎03-31-2020 08:31 AM
There was a bug [1] in the TLS handshake negotiation process in Apache NiFi 1.11.0 - 1.11.3. NiFi 1.11.4 was released on March 22, 2020, which fixes this issue. I recommend upgrading to the latest version. [1] https://issues.apache.org/jira/browse/NIFI-7223 ... View more

Re: HDF 3.4 NIFI & NIFI Registry Integration (secu...

by Explorer venkii in Support Questions
‎03-30-2020 10:10 PM
‎03-30-2020 10:10 PM
Yes @MattWho, you are awesome, adding the node resolved the issue ... View more

Re: [Nifi ] [Ceph] [S3] Nifi miss some file when c...

by Super Guru TimothySpann Super Guru in Support Questions
‎03-30-2020 06:39 AM
‎03-30-2020 06:39 AM
Was MiNiO running?   Did it crash?   Not run on supported ports?  Need admin permissions?  Reboot?   Firewall something blocking it.   This error is either it is down or needs HTTPS.   can you connect from amazon s3 client or telnet on that port.   wireshark debugging? ... View more

Re: NiFi wait processor huge number of events IN c...

by Master Guru MattWho Master Guru in Support Questions
‎03-27-2020 01:39 PM
‎03-27-2020 01:39 PM
@Petr_Simik    No matter which processor you are looking at the stats presented all tell you the same information: In  <-- Tells you how many FlowFile were processed from one or more inbound connections over the last rolling 5 minute window.  With this processor you have it configured the "wait mode" to leave the FlowFile on the inbound connection.  So the processor is constantly looking at the file over and over again until the configured expiration time has elapsed. Read/Write. <-- Tells you how much FlowFile content was read from or written to the NiFi content repository (helps user identify processors that may be disk I/O heavy)   Out. <-- Tells you how many FlowFiles have been released to an outbound connection over the last rolling 5 minute window.  Here you see a number that reflects only those flowfiles that expired and where sent to your outbound expired connection. Tasks/Time. <-- Tells you how many threads this processor completed execution over the last rolling 5 minutes and the total cumulative time those threads consumed from the CPU.   (helps user identify what processors consume lots of CPU time) So the stats you are seeing are not surprising. While this processor works for your use case i guess, it has overhead needing to connect to a distributed map cache on every execution against an inbound FlowFile.  If your intent is only to delay a FlowFile for 1 second before it proceeds down the flow path, a better solution may be to just use an updateAttribute processor that creates an attribute with current time and RouteOnAttribute processor that checks to see if that recorded time plus 1000 ms is less than current time.  Then loop that check until it is not. Hope this helps, Matt ... View more

Re: can we list flow files in nifi server by their...

by Master Guru MattWho Master Guru in Support Questions
‎03-27-2020 01:20 PM
‎03-27-2020 01:20 PM
@NY    Anything you can do via the NiFi canvas, you can also accomplish via the rest-api. So you can create a queue listing via a rest-api call: curl http://<nifi-hostname>:<port>/nifi-api/flowfile-queues/<connection-uuid>/listing-requests The above call will return a response that includes the URL you need to use to retrieve those results. for example: http://<nifi-hostname>:<port>/nifi-api/flowfile-queues/<connection-uuid>/listing-requests/1d98d557-0171-1000-ffff-ffffd559ca47 Then query for the listings results curl http://<nifi-hostname>:<port>/nifi-api/flowfile-queues/<connection-uuid>/listing-requests/1d98d557-0171-1000-ffff-ffffd559ca47 This return a json with all the FlowFiles from that specific connection queue from all nodes in your NiFi cluster.  That json would need to be parsed for info like nodes where the "lineageDuration" epoch time is x amount of time older then now, the "clusterNodeAddress" (which node holds the file), and maybe filename". and then delete the queue listing when done. (this is important or it stays around using heap space). curl -X DELETE http://<nifi-hostname>:<port>/nifi-api/flowfile-queues/<connection-uuid>/listing-requests/1d98d557-0171-1000-ffff-ffffd559ca47 Hope this helps, Matt ... View more

Re: HDF 3.4 nifi new cluster self signed ssl enabl...

by Explorer venkii in Support Questions
‎03-27-2020 01:18 PM
‎03-27-2020 01:18 PM
exactly, for some reason though my nifi is 2 nodes secured cluster when I logged in it shows 4 nodes . two with secured and two with unsecured ports. stopped and followed the shared process. It came up clean.   ... View more

Re: Merge Attribute values from FlowFiles

by Master Guru MattWho Master Guru in Support Questions
‎03-25-2020 02:37 PM
‎03-25-2020 02:37 PM
@Faerballert  Perhaps you clone your flowfile before the mergeContent processors. So whichever relationship you are connecting to your current mergeContent, you drag a second connection containing that same relationship to a parallel notification flow. Down this parallel flow path you use a replaceText processor to replace the content with the value from the attribute you want to merge.  Then you use a mergeContent processor on this path to merge these files using a "," as your delimiter.   Then from this mergeContent you do you notification. You may also want to open an Apache Jira with your use case and desired improvement for the existing mergeContent.  The more details the better. Hope this helps, Matt ... View more

Re: NiFi 1.10.0 Repository and Management Pack

by New Contributor valentintyhonov in Support Questions
‎03-25-2020 12:27 PM
‎03-25-2020 12:27 PM
@MattWho Is HDF 3.5 already released? If not, do you know when it is planned to be released? I saw page with release notes, but repository locations are still not updated. https://docs.cloudera.com/HDPDocuments/HDF3/HDF-3.5.0/release-notes/content/hdf_repository_locations.html ... View more

Re: NiFi - List SFTP / HDFS Processors - State

by New Contributor domR in Support Questions
‎03-24-2020 04:16 PM
‎03-24-2020 04:16 PM
Thanks for clearing this up Matt, was a big help. Cheers, Dom ... View more

Re: Data Provenance not showing on imported templa...

by Explorer Alexandros in Support Questions
‎03-24-2020 03:43 PM
‎03-24-2020 03:43 PM
Ok, this is all me for not understanding permissions correctly, I thought that if a permission wasn't configured it heredates the the permissions of NiFi. So: I'm Admin, I generated a group I should have access. You made me check again and I thank you for that!     ... View more

Re: Can't connect to the nifi UI

by Master Guru MattWho Master Guru in Support Questions
‎03-24-2020 12:24 PM
‎03-24-2020 12:24 PM
@Koffi    When a NiFi node attempts to connect to an existing NiFi cluster, there are three files that are checked to make sure they match exactly between the connecting node and the existing copies in the cluster.  Those files are: 1. flow.xml.gz 2. users.xml (will only exist if NiFi is secured over https) 3. authorizations.xml (not to be confused with the NiFi authorizers.xml file.  Will only exist if NiFi is secured over https) The output in the nifi-app.log of the node should explain exactly what the mismatch was the first time it tried to connect to the cluster.   Hope this helps, Matt     ... View more

Re: apache Nifi getFTP regex filter?

by Master Guru MattWho Master Guru in Support Questions
‎03-24-2020 10:52 AM
‎03-24-2020 10:52 AM
@mary_b    You could use a Java Regular expression like this: .*_(20)\d\d(0[1-9]|1[012])(0[1-9]|[12][0-9]|3[01]).txt   The above will match everything before "_" and then must match a number that starts with "20", followed by  to digits "\d\d" (this matches any year in 2001-2099), followed by  "(0[1-9]|1[012])" (this matches months 01-09 or 10,11,12), followed by "(0[1-9]|[12][0-9]|3[01])" (this matches days 01-09 or 10-29 or 30 or 31), ending with the text string ".txt".   There are some good regex testers available on the web you may find useful. https://regexr.com/ http://myregexp.com/ https://www.freeformatter.com/java-regex-tester.html   Hope this helps, Matt   ... View more

Re: Option to acces AWS3 Secret without exposing k...

by Master Guru MattWho Master Guru in Support Questions
‎03-24-2020 08:41 AM
‎03-24-2020 08:41 AM
@Gubbi    The Credentials File you created should be owned and only accessible by the NiFi service user.  Since all components in NiFi are executed by the NiFi service user, technically anyone who has access to the NiFi UI and knows where this credentials file exists on the server would be able to use it in a new processor they add to canvas. Above being said, you should be setting up proper authorization policies on your NiFi to limit what users can actually view the configuration of your putS3Object processor.  If a user cannot view its configuration, that user will not know the bucket or location of your credentials file on disk.  Or you configure the access and secret key directly in processor so it never in a file on disk where unauthorized users could find it and use it.   You may also consider using the AWSCredentialsProviderControllerService as well and limited access to that controller service to only select users.  Then if others unauthorized users add S3 processors to the canvas they would not be able to select that AWSCredentialsProviderControllerService.   You can further protect  your access key and secret key by not using the credentials file and instead enter  those values directly in the corresponding properties in the processor or AWS controller service.  Then they do not exist on disk anywhere for a user to find and use. The advantage to using the AWS controller service is that you can still give users access to the processor but block all but specific users access to the AWS controller service.  This allows users to operate the processor, look at data provenance for that processor, etc while still not having access to view the secret and access keys in the referenced AWS controller service.   Hope this helps, Matt ... View more

Re: Move entire folder based on date to S3

by Master Guru MattWho Master Guru in Support Questions
‎03-16-2020 05:09 PM
1 Kudo
‎03-16-2020 05:09 PM
1 Kudo
@Gubbi  Depending on which processor is being used to create your FlowFile from you source linux directory, you will likely have an "absolute.path" FlowFile attribute created on the FlowFile. absolute.path =  /users/abc/ 20200312 /gtry/   You can pass that FlowFile to an UpdateAttribute processor which can use NiFi Expression Language (EL) to extract the date from that absolute path in to a new FlowFile attribute Add new property (property name becomes new FlowFile attribute): Property:          Value: pathDate          ${absolute.path:getDelimitedField('4','/')}   The resulting FlowFile will have a new attribute: pathDate = 20200312 Now you can use that FlowFile attribute later when writing to your target directory in S3. I assume you would use the putS3Object processor for this? If so, you can configure the "Object Key" property with the following: /Users/datastore/${pathDate}/${filename}   NiFi EL will replace ${pathDate} with "20200312" and ${filename} will be replaced with "gyyy.csv".   Hope this helps you, Matt ... View more

Re: NIFI Content Storage is running out of space

by Master Guru MattWho Master Guru in Support Questions
‎03-16-2020 04:45 PM
‎03-16-2020 04:45 PM
@saivenkatg55    Sorry to hear you are having space issues with your content repository.  The most common reason for space issues is because there are still active FlowFiles referencing the content claims.  Since a content claim cannot be moved to archive sub-directory or deleted until there are no FlowFiles referencing that claim, even a small FlowFile can still queued somewhere within a dataflow can result in a large claim not being able to be removed.  I recommend using the NiFi Summary UI (Global menu --> Summary) to locate connections with flowfiles just sitting in them not getting processed.  Look at the connections tab and click on "queue" to sort connections based on queued FlowFiles.  A connection with queued FlowFiles, but shows 0 for both "In/Size" and "Out/Size" are what I would be looking for.  This indicates in the last 5 minutes that queue has not changed in amount of queued FlowFiles.  You can use the got to arrow to far right to jump to that connection on the canvas.  If that data is not needed (just left over in some non active dataflow), right click on the connection to empty the queue.  See if after clearing some queues the content repo usage drops. Is is also possible that not enough file handles exist for your NiFi service user making clean-up not to work efficiently.  I recommend increasing the open files limit and process limits for your NiFi service user.  Check to see if your flowfile_repository is large or if you have content claims moved to archive sub-directories that have not yet been purged.  Does restart of NiFi which would release file handles trigger some cleanup of the repo(s) on startup? It is also dangerous to have all your NiFi repos co-located on the same disk for risk of corruption to your flowfile repository which can lead to data loss.  The flowfile_repository should always be on its own disk, the content_repository should be on its own disk, and the provenance_repository should be on its own disk.  The database repository can exist on a disk used for other NiFi files (config files, local state, etc.) https://community.cloudera.com/t5/Community-Articles/HDF-NIFI-Best-practices-for-setting-up-a-high-performance/ta-p/244999 Here are some additional articles that may help you: https://community.cloudera.com/t5/Community-Articles/Understanding-how-NiFi-s-Content-Repository-Archiving-works/ta-p/249418 https://community.cloudera.com/t5/Community-Articles/How-to-determine-which-FlowFiles-are-associated-to-the-same/ta-p/249185   Hope this helps, Matt           ... View more

Re: How to map/select controller service in proces...

by New Contributor anil35759 in Support Questions
‎03-11-2020 02:07 AM
‎03-11-2020 02:07 AM
Thank you it helped and worked. ... View more

Re: How to validate the number of flow files in an...

by Explorer kumar993498 in Support Questions
‎03-10-2020 12:18 AM
‎03-10-2020 12:18 AM
@Matt   Thanks for your input, I solved this. Will post the template here  ... View more

Re: Nifi - SFTP and Input Port

by New Contributor justjoe in Support Questions
‎03-09-2020 11:44 PM
‎03-09-2020 11:44 PM
Solved it.   I had to switch "Strict Host Key Checking" to false.  Works just fine. Thanks for the help   ... View more

Re: Is it possible to create NiFi workflows using ...

by New Contributor vineet_harkut in Support Questions
‎03-08-2020 11:01 PM
‎03-08-2020 11:01 PM
Thanks @MattWho  ... View more

Re: Nifi PGP Encrypt and Sign

by Explorer sfishman in Support Questions
‎03-06-2020 01:16 PM
‎03-06-2020 01:16 PM
Ok. will do ... View more

Re: Can Nifi put a file to an FTPS server

by Explorer sfishman in Support Questions
‎03-06-2020 11:23 AM
‎03-06-2020 11:23 AM
Thanks for getting back with this info. ... View more

Re: NiFi : Getting error in ExecuteStreamCommand w...

by Master Guru MattWho Master Guru in Support Questions
‎03-06-2020 10:41 AM
‎03-06-2020 10:41 AM
@vikrant_kumar24  You would not configure your python script to write to an XML file on disk   NiFi handles the FlowFile creation in the framework. Any data passed by your Python script to  STDOUT  will be populated into the content of the resulting flowfile passed to the  output stream  relationship of the  ExecuteStreamCommand  processor. Your script does not need to have any awareness of what. FlowFile is or how it is created.   So you simply have your python script send the XML content to STDOUT and NiFi will take care of putting that content in to the FlowFile that will be produced and routed to the "output.stream" relationship of the processor.  You can then use the updateAttribute processor the change the filename associated with that content.   Hope this helps, Matt ... View more

Re: How to replace Windows linefeed with Linux lin...

by Master Guru MattWho Master Guru in Support Questions
‎03-05-2020 10:52 AM
‎03-05-2020 10:52 AM
@sfishman  In the "Replacement value" configuration property just hold the <shift> key and hit enter instead of using "\n". Here is example of what you would see: This will create the line return you are looking for.   Hope this helps, Matt ... View more

Re: NiFi mergeontent max file size handle

by Master Guru MattWho Master Guru in Support Questions
‎03-05-2020 10:47 AM
‎03-05-2020 10:47 AM
@varun_rathinam    Observations from your configuration: 1. You are using "Defragment" merge strategy which tells me that somewhere upstream in your dataflow you are splitting some FlowFile in to fragments and then you are using this processor to merge those fragments back in to the original FlowFile.  Correct?  When using Defragment you can not use multiple MergeContent processors in series as i mentioned earlier because the defragment strategy is expecting to find all fragments from the fragment count before merging them. 2. When using the defragment strategy it is the  fragment.count attribute on the FlowFiles that dictates when the bin should be merged and not the min number of entries.  3. Each FlowFile that has a unique value in the fragment.identifier will be allocated to a different bin. Setting the number of bins to "1" will never work no matter which merge strategy you choose to use.  When the MergeContent processor executes it first checks to see if a free bin is available (if not it merges oldest bin or routes oldest bins FlowFiles to failure in case of Defragment to free up a bin), then it looks at the current FlowFiles in the inbound connection at that exact moment in time and starts allocating them to existing bins or new bins.  So at a minimum you should always have at least "2" bins.  The default is "5" bins.  Having multiple bins does not mean that all those available bins will be used. 4. I see you changed Maximum Number of Entries from default 1000 to 100000.  Is this because you know each of the FlowFiles you split will produce up to 100,000 FlowFiles?  As i mentioned the  ALL FlowFiles allocated to bins have their attributes held in heap memory.  Adding to that... If you have multiple bins being filled because you have unique fragment.identifiers being defragmented, you could have even more than 100,000 FlowFiles worth of attributes in heap memory. So your NiFi JVM heap memory being set at only 2GB may lead you to hitting Out Of Memory (OOM) conditions with such a dataflow design.  Also want to add that where ever you are doing the original splitting of your FlowFile in your dataflow will also have an impact on heap memory because the FlowFile Attributes for every FlowFile being produced during the split process is held in heap memory until every new split FlowFile being produced is committed to a downstream connection.  NiFi connections between processors have swapping enabled by default to help reduce heap usage when queues get large, but same does not apply within the internals of a processors execution.   As i mentioned before, the MergeContent does not load FlowFile content in heap memory, so the size of your FlowFiles does not impact heap here. So you really want to step back and look at your use case again and ask yourself: "do I really need to split my source FlowFile and merge it back in to the original FlowFile to satisfy my use case?" NiFi has numerous record based processors for working with records avoiding the need to split them in many use cases. Hope this helps, Matt ... View more

Re: NiFi - Signalling Another Flow on the Same Ca...

by Master Guru MattWho Master Guru in Support Questions
‎03-05-2020 10:21 AM
‎03-05-2020 10:21 AM
@domR    I see no issues with using a publish and consume design for triggering follow on flows. That provide a slightly more robust setup than using the postHTTP to ListenHTTP example I provided since any NiFi node can consume the trigger file. When using Kafka you will want to make sure you have the same number of partitions as you have consumer in the same consumer group.  When you add a consumeKafka processor to the NiFi canvas it is really being added to every node in your cluster and is configured the same on every node. Let's assume you have a 3 node NiFi cluster, that means you have at a minimum 3 consumers in that consumer group so your Kafka topic should have 3 partitions; otherwise, you may see a lot of rebalancing happen.  To improve performance even more you can increase the concurrent task on your consumeKafka processor.  With a 3 node NiFi cluster and a consumeKafka configured with 2 concurrent tasks, you now have 6 total consumers in the consumer group; therefore, your Kafka topic should have 6 partitions.   If a NiFi node goes down Kafka will assign multiple partitions to the same consumer, so no need to worry about messages not being consumed. Hope this information was useful in finding a solution, Matt ... View more

Re: Reset ListSFTP state for entity on FetchSFTP f...

by Master Guru MattWho Master Guru in Support Questions
‎03-04-2020 01:39 PM
‎03-04-2020 01:39 PM
@NickH    The FetchSFTP processor has multiple different relationships. For your use case of the file really not being there when the FetchSFTP tries to fetch the content, the expected outcome would be that the FlowFile is routed to the "not.found" relationship which you should auto-terminate, If you encountered some sort of communications failure (network issue during Fetch), the FlowFile should have been routed to the "comms.failure" relationship which should be looped back on processor to try again. The FetchSFTP also has a "permission.denied" relationship which you can perhaps handle via dataflow design as well. Perhaps sending an email alert? Hope this helps, Matt ... View more

Re: How to generate reports in NiFi ?

by Master Guru MattWho Master Guru in Support Questions
‎03-04-2020 10:55 AM
‎03-04-2020 10:55 AM
@Umakanth    The API is exposed out of the box, it is not something you need to enable. Every action you take while performing actions within the UI makes a call to the NiFi rest-api. When learning how to use the rest-api calls, you may find using the developer tools in your browser helpful. Open the developer tools  while you are accessing your NiFi UI.  Then perform some action and you will see those requests being made by your browser to NiFi.  In the below example (Using Chrome browser developer tools), I opened NiFi's summary UI from the global menu in the upper right corner of the UI: You'll notice that several requests were made.  I can write click on any one of those request and select "Copy as cURL" to copy the full request to the system clipboard. I can then paste the request in a terminal window and see what the rest-api call returns.  You will notice that the curl command that is copied will have numerous additional headers (-H) that are not always necessary depending on the rest-api endpoint being used.  Example: curl 'http://<nifi-hostname>:<nifi-port>/nifi-api/flow/process-groups/root/status?recursive=true' Of course you will need to parse the rest-api returns yourself to extract in many cases the specific details/stats you want to monitor. Hope this helps, Matt ... View more

Re: Nifi: How to get the error generated at bullet...

by Master Guru MattWho Master Guru in Support Questions
‎03-04-2020 09:57 AM
‎03-04-2020 09:57 AM
@MahipalRathore    The bulletin is not going to include anything more than what would be found in the nifi-app.log.  The Bulletin if produced as a result of some failure while processing a FlowFile, will have details about the FlowFiles assigned UUID and filename as well as it size relative to content claim in which the FlowFiles content can be found.  You could the use NiFi data provenance to obtain details on the FlowFile including all its FlowFile attributes.  Some bulletins are for exceptions that occur unrelated to a FlowFile directly and thus will contain no FlowFile info.  But if a FlowFile is routed to failure as a result of for example an exception thrown by the putHDFS processor, details on that FlowFile record should be included in the bulletin. Note: If the bulletin is being produced by a processor that creates a FlowFile, no FlowFile will have been created, so there is no FlowFile created from which to get FlowFile details. Hope this helps, Matt ... View more
Contact Me
Online
Offline
Last Visited
‎03-31-2020 06:54 PM
Public Statistics
Date Registered ‎07-30-2019 10:41 AM
Last Visited ‎03-31-2020 06:54 PM
Total Messages Posted 1,843
Total Kudos Received 1114