hadoop-hdfs-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Haohui Mai (JIRA)" <j...@apache.org>
Subject [jira] [Created] (HDFS-5502) Fix HTTPS support for HsftpFileSystem
Date Tue, 12 Nov 2013 02:52:17 GMT
Haohui Mai created HDFS-5502:

             Summary: Fix HTTPS support for HsftpFileSystem
                 Key: HDFS-5502
                 URL: https://issues.apache.org/jira/browse/HDFS-5502
             Project: Hadoop HDFS
          Issue Type: Sub-task
            Reporter: Haohui Mai
            Assignee: Haohui Mai

The current implementation of HsftpFileSystem suffers from the following issues:

* It initializes the SSLContext incorrectly. It blindly trusts all server certificates which
creates a security hole.
* It tries to cancel delegation token through http, not https, which leads to HDFS-5295.
* It overrides the default socket factory for HttpsConnection. Given the fact that it trusts
all server-side certificate, it accidentally disables all checks on server certificates for
all https connections.

This jira tracks the effort to fix the above issues. 

This message was sent by Atlassian JIRA

View raw message