Uploaded image for project: 'Apache Knox'
  1. Apache Knox
  2. KNOX-1230

Many Concurrent Requests to Knox causes URL Mangling

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 1.1.0
    • Server
    • None

    Description

      We have had some thread safety issues in both our crypto and dispatch machinery for what appears to be have been a long time - if not forever.

      This patch locks down access to the DefaultKeystoreService, synchronizes the creation and initialization of dispatches and removes most of the state in the ConfigurableEncryptor class. It also moves the responsibility of query string encryption and decryption into the SecureQueryEncrypt/DecryptProcessors themselves rather than leveraging the CryptoService by creating member variables for the required ConfigurableEncryptor.

      Attachments

        1. test-upload.sh
          0.6 kB
          Larry McCay
        2. KNOX-1230-002.patch
          41 kB
          Larry McCay
        3. KNOX-1230-001.patch
          40 kB
          Larry McCay

        Issue Links

          causes

          Bug - A problem which impairs or prevents the functions of the product. KNOX-1552 DefaultKeystoreService cache doesn't add entries to cache

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed
          is related to

          Improvement - An improvement or enhancement to an existing feature or task. KNOX-1881 DefaultKeystoreService should use Java NIO API locking as well

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Activity

            People

              lmccay Larry McCay
              lmccay Larry McCay
              Votes:
              1 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: