[
https://issues.apache.org/jira/browse/HIVE-23062?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17063706#comment-17063706
]
Kevin Risden commented on HIVE-23062:
-------------------------------------
In the patch ssl check is on HS2 instead of checking for YARN TLS instead?
{code}
sslForHS2 = conf.getBoolVar(HiveConf.ConfVars.HIVE_SERVER2_USE_SSL);
{code}
This will work if HS2 TLS and YARN TLS are varied together, but that might not
be true?
Usually yarn-site.xml would have "yarn.http.policy=HTTPS_ONLY" which would be
what indicates if YARN is in SSL or not. Reference is here:
https://hadoop.apache.org/docs/current3/hadoop-yarn/hadoop-yarn-common/yarn-default.xml
Since this patch is already checking for other YARN configurations, it probably
makes sense to check for YARN TLS/SSL explicitly and not the HS2 value.
> Hive to check Yarn RM URL in TLS and Yarn HA mode for custom Tez queue
> ----------------------------------------------------------------------
>
> Key: HIVE-23062
> URL: https://issues.apache.org/jira/browse/HIVE-23062
> Project: Hive
> Issue Type: Improvement
> Components: HiveServer2
> Reporter: Sam An
> Assignee: Sam An
> Priority: Major
> Attachments: HIVE-23062.1.patch
>
>
> Currently if custom Tez queue is used, Hive will only check the Http port, so
> it is not handling TLS and Yarn HA mode URL.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
