[
https://issues.apache.org/jira/browse/IMPALA-11195?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17755194#comment-17755194
]
ASF subversion and git services commented on IMPALA-11195:
----------------------------------------------------------
Commit df018556b72295f05210166bb50a97d9cf1a741c in impala's branch
refs/heads/master from Michael Smith
[ https://gitbox.apache.org/repos/asf?p=impala.git;h=df018556b ]
IMPALA-11195: (Addendum) fix build on older OpenSSL
Caught by tests on CentOS 7.9. Upstream test infrastructure all use
newer OpenSSL.
Change-Id: I86b22a14a5baca6ca5e87dd3840f78f6697462d8
Reviewed-on: http://gerrit.cloudera.org:8080/20370
Reviewed-by: Zoltan Borok-Nagy <[email protected]>
Tested-by: Michael Smith <[email protected]>
> Disable SSL session renegotiation
> ---------------------------------
>
> Key: IMPALA-11195
> URL: https://issues.apache.org/jira/browse/IMPALA-11195
> Project: IMPALA
> Issue Type: Bug
> Components: Backend
> Reporter: Zoltán Borók-Nagy
> Assignee: Zoltán Borók-Nagy
> Priority: Major
> Fix For: Impala 4.3.0
>
>
> SSL renegotiations has had a couple of CVEs in the past. We should figure out
> how to disable it.
> Kudu disabled SSL renegotations in KUDU-1926, so we can do something similar.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
