You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@hive.apache.org by "ASF GitHub Bot (Jira)" <ji...@apache.org> on 2021/10/07 21:25:00 UTC

[jira] [Work logged] (HIVE-25479) Browser SSO auth may fail intermittently on chrome browser in virtual environments

     [ https://issues.apache.org/jira/browse/HIVE-25479?focusedWorklogId=661931&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-661931 ]

ASF GitHub Bot logged work on HIVE-25479:
-----------------------------------------

                Author: ASF GitHub Bot
            Created on: 07/Oct/21 21:24
            Start Date: 07/Oct/21 21:24
    Worklog Time Spent: 10m 
      Work Description: vihangk1 commented on pull request #2601:
URL: https://github.com/apache/hive/pull/2601#issuecomment-938166688


   The test failures seem unrelated to this patch. Rebasing the patch again.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: gitbox-unsubscribe@hive.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


Issue Time Tracking
-------------------

    Worklog Id:     (was: 661931)
    Time Spent: 20m  (was: 10m)

> Browser SSO auth may fail intermittently on chrome browser in virtual environments
> ----------------------------------------------------------------------------------
>
>                 Key: HIVE-25479
>                 URL: https://issues.apache.org/jira/browse/HIVE-25479
>             Project: Hive
>          Issue Type: Bug
>          Components: JDBC
>            Reporter: Vihang Karajgaonkar
>            Assignee: Vihang Karajgaonkar
>            Priority: Major
>              Labels: pull-request-available
>          Time Spent: 20m
>  Remaining Estimate: 0h
>
> When browser based SSO is enabled the Hive JDBC driver might miss the POST requests coming from the browser which provide the one-time token issued by HS2s after the SAML flow completes. The issue was observed mostly in virtual environments on Windows.
> The issue seems to be that when the driver binds to a port even though the port is in LISTEN state, if the browser issues posts request on the port before it goes into ACCEPT state the result is non-deterministic. On native OSes we observed that the connection is buffered and is received by the driver when it begins accepting the connections. In case of VMs it is observed that even though the connection is buffered and presented when the port goes into ACCEPT mode, the payload of the request or the connection itself is lost. This race condition causes the driver to wait for the browser until it timesout and the browser keeps waiting for a response from the driver.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)