Details
-
Bug
-
Status: Resolved
-
Blocker
-
Resolution: Fixed
-
Impala 3.3.0
-
None
-
ghx-label-1
Description
Recent work has added support for HTTP authentication both for the thrift hs2 interface and for the webserver. In both cases, we mishandle HTTP keep-alive semantics when returning a 401 to indicate an unauthorized request because we close the connection but don't return a "Connection: closed" header, which can cause clients to incorrectly believe that the connection has remained open.