You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@knox.apache.org by "Kevin Risden (JIRA)" <ji...@apache.org> on 2018/04/03 02:42:00 UTC
[jira] [Commented] (KNOX-1230) Many Concurrent Requests to Knox
causes URL Mangling
[ https://issues.apache.org/jira/browse/KNOX-1230?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16423398#comment-16423398 ]
Kevin Risden commented on KNOX-1230:
------------------------------------
Thanks Larry for the added detail. We would use PAM but can't currently due to some operating system things out of our control. I'll keep digging on the 401s to see what pops out. I tried the patch here and it didn't reduce the 401s either.
> Many Concurrent Requests to Knox causes URL Mangling
> ----------------------------------------------------
>
> Key: KNOX-1230
> URL: https://issues.apache.org/jira/browse/KNOX-1230
> Project: Apache Knox
> Issue Type: Bug
> Components: Server
> Reporter: Larry McCay
> Assignee: Larry McCay
> Priority: Major
> Fix For: 1.1.0
>
> Attachments: KNOX-1230-001.patch, KNOX-1230-002.patch, test-upload.sh
>
>
> We have had some thread safety issues in both our crypto and dispatch machinery for what appears to be have been a long time - if not forever.
> This patch locks down access to the DefaultKeystoreService, synchronizes the creation and initialization of dispatches and removes most of the state in the ConfigurableEncryptor class. It also moves the responsibility of query string encryption and decryption into the SecureQueryEncrypt/DecryptProcessors themselves rather than leveraging the CryptoService by creating member variables for the required ConfigurableEncryptor.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)