[
https://issues.apache.org/jira/browse/SPARK-54293?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Xin Zhao updated SPARK-54293:
-----------------------------
Description:
In jetty 9->10 upgrade (SPARK-45522), SNI host check is disabled in Spark UI
jetty server,
[https://github.com/HiuKwok/spark/blob/master/core/src/main/scala/org/apache/spark/ui/JettyUtils.scala#L328-L332]
However, there are two more places
([RestSubmissionServer|https://github.com/apache/spark/blob/master/core/src/main/scala/org/apache/spark/deploy/rest/RestSubmissionServer.scala#L108-L112]
and
[ThriftHttpCLIService|https://github.com/apache/spark/blob/master/sql/hive-thriftserver/src/main/java/org/apache/hive/service/cli/thrift/ThriftHttpCLIService.java#L95])
where jetty server is used but SNI host check is not disabled, is it on
purpose?
was:
In jetty 9->10 upgrade (SPARK-45522), SNI host check is disabled in Spark UI,
[https://github.com/HiuKwok/spark/blob/master/core/src/main/scala/org/apache/spark/ui/JettyUtils.scala#L328-L332]
However, there are two more places
([RestSubmissionServer|https://github.com/apache/spark/blob/master/core/src/main/scala/org/apache/spark/deploy/rest/RestSubmissionServer.scala#L108-L112]
and
[ThriftHttpCLIService|https://github.com/apache/spark/blob/master/sql/hive-thriftserver/src/main/java/org/apache/hive/service/cli/thrift/ThriftHttpCLIService.java#L95])
where jetty is used but SNI host check is not disabled, is it on purpose?
> SNI host check is not disabled in RestSubmissionServer and
> ThriftHttpCLIService
> -------------------------------------------------------------------------------
>
> Key: SPARK-54293
> URL: https://issues.apache.org/jira/browse/SPARK-54293
> Project: Spark
> Issue Type: Bug
> Components: Deploy, SQL
> Affects Versions: 4.1.0, 4.0.1, 4.2.0
> Reporter: Xin Zhao
> Priority: Major
>
> In jetty 9->10 upgrade (SPARK-45522), SNI host check is disabled in Spark UI
> jetty server,
> [https://github.com/HiuKwok/spark/blob/master/core/src/main/scala/org/apache/spark/ui/JettyUtils.scala#L328-L332]
>
> However, there are two more places
> ([RestSubmissionServer|https://github.com/apache/spark/blob/master/core/src/main/scala/org/apache/spark/deploy/rest/RestSubmissionServer.scala#L108-L112]
> and
> [ThriftHttpCLIService|https://github.com/apache/spark/blob/master/sql/hive-thriftserver/src/main/java/org/apache/hive/service/cli/thrift/ThriftHttpCLIService.java#L95])
> where jetty server is used but SNI host check is not disabled, is it on
> purpose?
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
