[jira] [Commented] (HIVE-23461) Needs to capture input/output entities in explainRewrite
[ https://issues.apache.org/jira/browse/HIVE-23461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17120082#comment-17120082 ] Hive QA commented on HIVE-23461: Here are the results of testing the latest attachment: https://issues.apache.org/jira/secure/attachment/13004393/HIVE-23461.3.patch {color:red}ERROR:{color} -1 due to no test(s) being added or modified. {color:red}ERROR:{color} -1 due to 2 failed/errored test(s), 17219 tests executed *Failed tests:* {noformat} org.apache.hive.hcatalog.api.TestHCatClient.testBasicDDLCommands (batchId=139) org.apache.hive.hcatalog.streaming.TestStreaming.testConcurrentTransactionBatchCommits (batchId=151) {noformat} Test results: https://builds.apache.org/job/PreCommit-HIVE-Build/22692/testReport Console output: https://builds.apache.org/job/PreCommit-HIVE-Build/22692/console Test logs: http://104.198.109.242/logs/PreCommit-HIVE-Build-22692/ Messages: {noformat} Executing org.apache.hive.ptest.execution.TestCheckPhase Executing org.apache.hive.ptest.execution.PrepPhase Executing org.apache.hive.ptest.execution.YetusPhase Executing org.apache.hive.ptest.execution.ExecutionPhase Executing org.apache.hive.ptest.execution.ReportingPhase Tests exited with: TestsFailedException: 2 tests failed {noformat} This message is automatically generated. ATTACHMENT ID: 13004393 - PreCommit-HIVE-Build > Needs to capture input/output entities in explainRewrite > > > Key: HIVE-23461 > URL: https://issues.apache.org/jira/browse/HIVE-23461 > Project: Hive > Issue Type: Bug > Components: Authorization >Reporter: Wenchao Li >Assignee: Naresh P R >Priority: Major > Attachments: HIVE-23461.1.patch, HIVE-23461.2.patch, > HIVE-23461.3.patch, HIVE-23461.patch > > > HIVE-18778(CVE-2018-1314) capture input/output entitles in explain semantic > analyzer so when a query is disallowed by Ranger, Sentry or Sqlstd > authorizizer, the corresponding explain statement will be disallowed either. > However, ExplainSQRewriteSemanticAnalyzer also uses an instance of > DDLSemanticAnalyzer to analyze the explain rewrite query. > {code:java} > SemanticAnalyzer sem = (SemanticAnalyzer) > SemanticAnalyzerFactory.get(queryState, input); > sem.analyze(input, ctx); > sem.validate();{code} > > The inputs/outputs entities for this query are never set on the instance of > ExplainSQRewriteSemanticAnalyzer itself and thus is not propagated into the > HookContext in the calling Driver code. It is a similar issue to HIVE-18778. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (HIVE-23461) Needs to capture input/output entities in explainRewrite
[ https://issues.apache.org/jira/browse/HIVE-23461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17120068#comment-17120068 ] Hive QA commented on HIVE-23461: | (/) *{color:green}+1 overall{color}* | \\ \\ || Vote || Subsystem || Runtime || Comment || || || || || {color:brown} Prechecks {color} || | {color:green}+1{color} | {color:green} @author {color} | {color:green} 0m 0s{color} | {color:green} The patch does not contain any @author tags. {color} | || || || || {color:brown} master Compile Tests {color} || | {color:green}+1{color} | {color:green} mvninstall {color} | {color:green} 9m 33s{color} | {color:green} master passed {color} | | {color:green}+1{color} | {color:green} compile {color} | {color:green} 1m 0s{color} | {color:green} master passed {color} | | {color:green}+1{color} | {color:green} checkstyle {color} | {color:green} 0m 49s{color} | {color:green} master passed {color} | | {color:blue}0{color} | {color:blue} findbugs {color} | {color:blue} 3m 44s{color} | {color:blue} ql in master has 1524 extant Findbugs warnings. {color} | | {color:green}+1{color} | {color:green} javadoc {color} | {color:green} 0m 54s{color} | {color:green} master passed {color} | || || || || {color:brown} Patch Compile Tests {color} || | {color:green}+1{color} | {color:green} mvninstall {color} | {color:green} 1m 24s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} compile {color} | {color:green} 0m 59s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} javac {color} | {color:green} 0m 59s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} checkstyle {color} | {color:green} 0m 49s{color} | {color:green} ql: The patch generated 0 new + 4 unchanged - 3 fixed = 4 total (was 7) {color} | | {color:green}+1{color} | {color:green} whitespace {color} | {color:green} 0m 0s{color} | {color:green} The patch has no whitespace issues. {color} | | {color:green}+1{color} | {color:green} findbugs {color} | {color:green} 3m 55s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} javadoc {color} | {color:green} 0m 55s{color} | {color:green} the patch passed {color} | || || || || {color:brown} Other Tests {color} || | {color:green}+1{color} | {color:green} asflicense {color} | {color:green} 0m 12s{color} | {color:green} The patch does not generate ASF License warnings. {color} | | {color:black}{color} | {color:black} {color} | {color:black} 24m 51s{color} | {color:black} {color} | \\ \\ || Subsystem || Report/Notes || | Optional Tests | asflicense javac javadoc findbugs checkstyle compile | | uname | Linux hiveptest-server-upstream 3.16.0-4-amd64 #1 SMP Debian 3.16.43-2+deb8u5 (2017-09-19) x86_64 GNU/Linux | | Build tool | maven | | Personality | /data/hiveptest/working/yetus_PreCommit-HIVE-Build-22692/dev-support/hive-personality.sh | | git revision | master / 60ff1fc | | Default Java | 1.8.0_111 | | findbugs | v3.0.1 | | modules | C: ql U: ql | | Console output | http://104.198.109.242/logs//PreCommit-HIVE-Build-22692/yetus.txt | | Powered by | Apache Yetushttp://yetus.apache.org | This message was automatically generated. > Needs to capture input/output entities in explainRewrite > > > Key: HIVE-23461 > URL: https://issues.apache.org/jira/browse/HIVE-23461 > Project: Hive > Issue Type: Bug > Components: Authorization >Reporter: Wenchao Li >Assignee: Naresh P R >Priority: Major > Attachments: HIVE-23461.1.patch, HIVE-23461.2.patch, > HIVE-23461.3.patch, HIVE-23461.patch > > > HIVE-18778(CVE-2018-1314) capture input/output entitles in explain semantic > analyzer so when a query is disallowed by Ranger, Sentry or Sqlstd > authorizizer, the corresponding explain statement will be disallowed either. > However, ExplainSQRewriteSemanticAnalyzer also uses an instance of > DDLSemanticAnalyzer to analyze the explain rewrite query. > {code:java} > SemanticAnalyzer sem = (SemanticAnalyzer) > SemanticAnalyzerFactory.get(queryState, input); > sem.analyze(input, ctx); > sem.validate();{code} > > The inputs/outputs entities for this query are never set on the instance of > ExplainSQRewriteSemanticAnalyzer itself and thus is not propagated into the > HookContext in the calling Driver code. It is a similar issue to HIVE-18778. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (HIVE-23461) Needs to capture input/output entities in explainRewrite
[ https://issues.apache.org/jira/browse/HIVE-23461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17118430#comment-17118430 ] Hive QA commented on HIVE-23461: Here are the results of testing the latest attachment: https://issues.apache.org/jira/secure/attachment/13004193/HIVE-23461.2.patch {color:red}ERROR:{color} -1 due to no test(s) being added or modified. {color:red}ERROR:{color} -1 due to 1 failed/errored test(s), 17285 tests executed *Failed tests:* {noformat} TestStatsReplicationScenariosACID - did not produce a TEST-*.xml file (likely timed out) (batchId=186) {noformat} Test results: https://builds.apache.org/job/PreCommit-HIVE-Build/22662/testReport Console output: https://builds.apache.org/job/PreCommit-HIVE-Build/22662/console Test logs: http://104.198.109.242/logs/PreCommit-HIVE-Build-22662/ Messages: {noformat} Executing org.apache.hive.ptest.execution.TestCheckPhase Executing org.apache.hive.ptest.execution.PrepPhase Executing org.apache.hive.ptest.execution.YetusPhase Executing org.apache.hive.ptest.execution.ExecutionPhase Executing org.apache.hive.ptest.execution.ReportingPhase Tests exited with: TestsFailedException: 1 tests failed {noformat} This message is automatically generated. ATTACHMENT ID: 13004193 - PreCommit-HIVE-Build > Needs to capture input/output entities in explainRewrite > > > Key: HIVE-23461 > URL: https://issues.apache.org/jira/browse/HIVE-23461 > Project: Hive > Issue Type: Bug > Components: Authorization >Reporter: Wenchao Li >Assignee: Naresh P R >Priority: Major > Attachments: HIVE-23461.1.patch, HIVE-23461.2.patch, HIVE-23461.patch > > > HIVE-18778(CVE-2018-1314) capture input/output entitles in explain semantic > analyzer so when a query is disallowed by Ranger, Sentry or Sqlstd > authorizizer, the corresponding explain statement will be disallowed either. > However, ExplainSQRewriteSemanticAnalyzer also uses an instance of > DDLSemanticAnalyzer to analyze the explain rewrite query. > {code:java} > SemanticAnalyzer sem = (SemanticAnalyzer) > SemanticAnalyzerFactory.get(queryState, input); > sem.analyze(input, ctx); > sem.validate();{code} > > The inputs/outputs entities for this query are never set on the instance of > ExplainSQRewriteSemanticAnalyzer itself and thus is not propagated into the > HookContext in the calling Driver code. It is a similar issue to HIVE-18778. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (HIVE-23461) Needs to capture input/output entities in explainRewrite
[ https://issues.apache.org/jira/browse/HIVE-23461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17118410#comment-17118410 ] Hive QA commented on HIVE-23461: | (/) *{color:green}+1 overall{color}* | \\ \\ || Vote || Subsystem || Runtime || Comment || || || || || {color:brown} Prechecks {color} || | {color:green}+1{color} | {color:green} @author {color} | {color:green} 0m 0s{color} | {color:green} The patch does not contain any @author tags. {color} | || || || || {color:brown} master Compile Tests {color} || | {color:green}+1{color} | {color:green} mvninstall {color} | {color:green} 11m 27s{color} | {color:green} master passed {color} | | {color:green}+1{color} | {color:green} compile {color} | {color:green} 1m 13s{color} | {color:green} master passed {color} | | {color:green}+1{color} | {color:green} checkstyle {color} | {color:green} 0m 59s{color} | {color:green} master passed {color} | | {color:blue}0{color} | {color:blue} findbugs {color} | {color:blue} 4m 28s{color} | {color:blue} ql in master has 1524 extant Findbugs warnings. {color} | | {color:green}+1{color} | {color:green} javadoc {color} | {color:green} 1m 7s{color} | {color:green} master passed {color} | || || || || {color:brown} Patch Compile Tests {color} || | {color:green}+1{color} | {color:green} mvninstall {color} | {color:green} 1m 40s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} compile {color} | {color:green} 1m 15s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} javac {color} | {color:green} 1m 15s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} checkstyle {color} | {color:green} 0m 59s{color} | {color:green} ql: The patch generated 0 new + 4 unchanged - 3 fixed = 4 total (was 7) {color} | | {color:green}+1{color} | {color:green} whitespace {color} | {color:green} 0m 0s{color} | {color:green} The patch has no whitespace issues. {color} | | {color:green}+1{color} | {color:green} findbugs {color} | {color:green} 4m 49s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} javadoc {color} | {color:green} 1m 10s{color} | {color:green} the patch passed {color} | || || || || {color:brown} Other Tests {color} || | {color:green}+1{color} | {color:green} asflicense {color} | {color:green} 0m 14s{color} | {color:green} The patch does not generate ASF License warnings. {color} | | {color:black}{color} | {color:black} {color} | {color:black} 30m 2s{color} | {color:black} {color} | \\ \\ || Subsystem || Report/Notes || | Optional Tests | asflicense javac javadoc findbugs checkstyle compile | | uname | Linux hiveptest-server-upstream 3.16.0-4-amd64 #1 SMP Debian 3.16.43-2+deb8u5 (2017-09-19) x86_64 GNU/Linux | | Build tool | maven | | Personality | /data/hiveptest/working/yetus_PreCommit-HIVE-Build-22662/dev-support/hive-personality.sh | | git revision | master / 0cde39a | | Default Java | 1.8.0_111 | | findbugs | v3.0.1 | | modules | C: ql U: ql | | Console output | http://104.198.109.242/logs//PreCommit-HIVE-Build-22662/yetus.txt | | Powered by | Apache Yetushttp://yetus.apache.org | This message was automatically generated. > Needs to capture input/output entities in explainRewrite > > > Key: HIVE-23461 > URL: https://issues.apache.org/jira/browse/HIVE-23461 > Project: Hive > Issue Type: Bug > Components: Authorization >Reporter: Wenchao Li >Assignee: Naresh P R >Priority: Major > Attachments: HIVE-23461.1.patch, HIVE-23461.2.patch, HIVE-23461.patch > > > HIVE-18778(CVE-2018-1314) capture input/output entitles in explain semantic > analyzer so when a query is disallowed by Ranger, Sentry or Sqlstd > authorizizer, the corresponding explain statement will be disallowed either. > However, ExplainSQRewriteSemanticAnalyzer also uses an instance of > DDLSemanticAnalyzer to analyze the explain rewrite query. > {code:java} > SemanticAnalyzer sem = (SemanticAnalyzer) > SemanticAnalyzerFactory.get(queryState, input); > sem.analyze(input, ctx); > sem.validate();{code} > > The inputs/outputs entities for this query are never set on the instance of > ExplainSQRewriteSemanticAnalyzer itself and thus is not propagated into the > HookContext in the calling Driver code. It is a similar issue to HIVE-18778. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (HIVE-23461) Needs to capture input/output entities in explainRewrite
[ https://issues.apache.org/jira/browse/HIVE-23461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17117525#comment-17117525 ] Hive QA commented on HIVE-23461: Here are the results of testing the latest attachment: https://issues.apache.org/jira/secure/attachment/13004094/HIVE-23461.1.patch {color:red}ERROR:{color} -1 due to no test(s) being added or modified. {color:red}ERROR:{color} -1 due to 2 failed/errored test(s), 17286 tests executed *Failed tests:* {noformat} org.apache.hadoop.hive.ql.parse.TestScheduledReplicationScenarios.testAcidTablesReplLoadBootstrapIncr (batchId=207) org.apache.hadoop.hive.ql.parse.TestScheduledReplicationScenarios.testExternalTablesReplLoadBootstrapIncr (batchId=207) {noformat} Test results: https://builds.apache.org/job/PreCommit-HIVE-Build/22640/testReport Console output: https://builds.apache.org/job/PreCommit-HIVE-Build/22640/console Test logs: http://104.198.109.242/logs/PreCommit-HIVE-Build-22640/ Messages: {noformat} Executing org.apache.hive.ptest.execution.TestCheckPhase Executing org.apache.hive.ptest.execution.PrepPhase Executing org.apache.hive.ptest.execution.YetusPhase Executing org.apache.hive.ptest.execution.ExecutionPhase Executing org.apache.hive.ptest.execution.ReportingPhase Tests exited with: TestsFailedException: 2 tests failed {noformat} This message is automatically generated. ATTACHMENT ID: 13004094 - PreCommit-HIVE-Build > Needs to capture input/output entities in explainRewrite > > > Key: HIVE-23461 > URL: https://issues.apache.org/jira/browse/HIVE-23461 > Project: Hive > Issue Type: Bug > Components: Authorization >Reporter: Wenchao Li >Assignee: Naresh P R >Priority: Major > Attachments: HIVE-23461.1.patch, HIVE-23461.patch > > > HIVE-18778(CVE-2018-1314) capture input/output entitles in explain semantic > analyzer so when a query is disallowed by Ranger, Sentry or Sqlstd > authorizizer, the corresponding explain statement will be disallowed either. > However, ExplainSQRewriteSemanticAnalyzer also uses an instance of > DDLSemanticAnalyzer to analyze the explain rewrite query. > {code:java} > SemanticAnalyzer sem = (SemanticAnalyzer) > SemanticAnalyzerFactory.get(queryState, input); > sem.analyze(input, ctx); > sem.validate();{code} > > The inputs/outputs entities for this query are never set on the instance of > ExplainSQRewriteSemanticAnalyzer itself and thus is not propagated into the > HookContext in the calling Driver code. It is a similar issue to HIVE-18778. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (HIVE-23461) Needs to capture input/output entities in explainRewrite
[ https://issues.apache.org/jira/browse/HIVE-23461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17117497#comment-17117497 ] Hive QA commented on HIVE-23461: | (/) *{color:green}+1 overall{color}* | \\ \\ || Vote || Subsystem || Runtime || Comment || || || || || {color:brown} Prechecks {color} || | {color:green}+1{color} | {color:green} @author {color} | {color:green} 0m 1s{color} | {color:green} The patch does not contain any @author tags. {color} | || || || || {color:brown} master Compile Tests {color} || | {color:green}+1{color} | {color:green} mvninstall {color} | {color:green} 11m 10s{color} | {color:green} master passed {color} | | {color:green}+1{color} | {color:green} compile {color} | {color:green} 1m 11s{color} | {color:green} master passed {color} | | {color:green}+1{color} | {color:green} checkstyle {color} | {color:green} 1m 0s{color} | {color:green} master passed {color} | | {color:blue}0{color} | {color:blue} findbugs {color} | {color:blue} 4m 27s{color} | {color:blue} ql in master has 1524 extant Findbugs warnings. {color} | | {color:green}+1{color} | {color:green} javadoc {color} | {color:green} 1m 12s{color} | {color:green} master passed {color} | || || || || {color:brown} Patch Compile Tests {color} || | {color:green}+1{color} | {color:green} mvninstall {color} | {color:green} 1m 40s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} compile {color} | {color:green} 1m 12s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} javac {color} | {color:green} 1m 12s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} checkstyle {color} | {color:green} 0m 56s{color} | {color:green} ql: The patch generated 0 new + 4 unchanged - 3 fixed = 4 total (was 7) {color} | | {color:green}+1{color} | {color:green} whitespace {color} | {color:green} 0m 0s{color} | {color:green} The patch has no whitespace issues. {color} | | {color:green}+1{color} | {color:green} findbugs {color} | {color:green} 4m 35s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} javadoc {color} | {color:green} 1m 8s{color} | {color:green} the patch passed {color} | || || || || {color:brown} Other Tests {color} || | {color:green}+1{color} | {color:green} asflicense {color} | {color:green} 0m 14s{color} | {color:green} The patch does not generate ASF License warnings. {color} | | {color:black}{color} | {color:black} {color} | {color:black} 29m 24s{color} | {color:black} {color} | \\ \\ || Subsystem || Report/Notes || | Optional Tests | asflicense javac javadoc findbugs checkstyle compile | | uname | Linux hiveptest-server-upstream 3.16.0-4-amd64 #1 SMP Debian 3.16.43-2+deb8u5 (2017-09-19) x86_64 GNU/Linux | | Build tool | maven | | Personality | /data/hiveptest/working/yetus_PreCommit-HIVE-Build-22640/dev-support/hive-personality.sh | | git revision | master / 65e947e | | Default Java | 1.8.0_111 | | findbugs | v3.0.1 | | modules | C: ql U: ql | | Console output | http://104.198.109.242/logs//PreCommit-HIVE-Build-22640/yetus.txt | | Powered by | Apache Yetushttp://yetus.apache.org | This message was automatically generated. > Needs to capture input/output entities in explainRewrite > > > Key: HIVE-23461 > URL: https://issues.apache.org/jira/browse/HIVE-23461 > Project: Hive > Issue Type: Bug > Components: Authorization >Reporter: Wenchao Li >Assignee: Naresh P R >Priority: Major > Attachments: HIVE-23461.1.patch, HIVE-23461.patch > > > HIVE-18778(CVE-2018-1314) capture input/output entitles in explain semantic > analyzer so when a query is disallowed by Ranger, Sentry or Sqlstd > authorizizer, the corresponding explain statement will be disallowed either. > However, ExplainSQRewriteSemanticAnalyzer also uses an instance of > DDLSemanticAnalyzer to analyze the explain rewrite query. > {code:java} > SemanticAnalyzer sem = (SemanticAnalyzer) > SemanticAnalyzerFactory.get(queryState, input); > sem.analyze(input, ctx); > sem.validate();{code} > > The inputs/outputs entities for this query are never set on the instance of > ExplainSQRewriteSemanticAnalyzer itself and thus is not propagated into the > HookContext in the calling Driver code. It is a similar issue to HIVE-18778. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (HIVE-23461) Needs to capture input/output entities in explainRewrite
[ https://issues.apache.org/jira/browse/HIVE-23461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17117380#comment-17117380 ] Hive QA commented on HIVE-23461: Here are the results of testing the latest attachment: https://issues.apache.org/jira/secure/attachment/13004078/HIVE-23461.patch {color:red}ERROR:{color} -1 due to no test(s) being added or modified. {color:red}ERROR:{color} -1 due to 1 failed/errored test(s), 17286 tests executed *Failed tests:* {noformat} org.apache.hive.beeline.TestBeeLineWithArgs.testRowsAffected (batchId=210) {noformat} Test results: https://builds.apache.org/job/PreCommit-HIVE-Build/22637/testReport Console output: https://builds.apache.org/job/PreCommit-HIVE-Build/22637/console Test logs: http://104.198.109.242/logs/PreCommit-HIVE-Build-22637/ Messages: {noformat} Executing org.apache.hive.ptest.execution.TestCheckPhase Executing org.apache.hive.ptest.execution.PrepPhase Executing org.apache.hive.ptest.execution.YetusPhase Executing org.apache.hive.ptest.execution.ExecutionPhase Executing org.apache.hive.ptest.execution.ReportingPhase Tests exited with: TestsFailedException: 1 tests failed {noformat} This message is automatically generated. ATTACHMENT ID: 13004078 - PreCommit-HIVE-Build > Needs to capture input/output entities in explainRewrite > > > Key: HIVE-23461 > URL: https://issues.apache.org/jira/browse/HIVE-23461 > Project: Hive > Issue Type: Bug > Components: Authorization >Reporter: Wenchao Li >Assignee: Naresh P R >Priority: Major > Attachments: HIVE-23461.patch > > > HIVE-18778(CVE-2018-1314) capture input/output entitles in explain semantic > analyzer so when a query is disallowed by Ranger, Sentry or Sqlstd > authorizizer, the corresponding explain statement will be disallowed either. > However, ExplainSQRewriteSemanticAnalyzer also uses an instance of > DDLSemanticAnalyzer to analyze the explain rewrite query. > {code:java} > SemanticAnalyzer sem = (SemanticAnalyzer) > SemanticAnalyzerFactory.get(queryState, input); > sem.analyze(input, ctx); > sem.validate();{code} > > The inputs/outputs entities for this query are never set on the instance of > ExplainSQRewriteSemanticAnalyzer itself and thus is not propagated into the > HookContext in the calling Driver code. It is a similar issue to HIVE-18778. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (HIVE-23461) Needs to capture input/output entities in explainRewrite
[ https://issues.apache.org/jira/browse/HIVE-23461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17117324#comment-17117324 ] Hive QA commented on HIVE-23461: | (/) *{color:green}+1 overall{color}* | \\ \\ || Vote || Subsystem || Runtime || Comment || || || || || {color:brown} Prechecks {color} || | {color:green}+1{color} | {color:green} @author {color} | {color:green} 0m 0s{color} | {color:green} The patch does not contain any @author tags. {color} | || || || || {color:brown} master Compile Tests {color} || | {color:green}+1{color} | {color:green} mvninstall {color} | {color:green} 11m 19s{color} | {color:green} master passed {color} | | {color:green}+1{color} | {color:green} compile {color} | {color:green} 1m 12s{color} | {color:green} master passed {color} | | {color:green}+1{color} | {color:green} checkstyle {color} | {color:green} 1m 1s{color} | {color:green} master passed {color} | | {color:blue}0{color} | {color:blue} findbugs {color} | {color:blue} 4m 19s{color} | {color:blue} ql in master has 1524 extant Findbugs warnings. {color} | | {color:green}+1{color} | {color:green} javadoc {color} | {color:green} 1m 9s{color} | {color:green} master passed {color} | || || || || {color:brown} Patch Compile Tests {color} || | {color:green}+1{color} | {color:green} mvninstall {color} | {color:green} 1m 41s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} compile {color} | {color:green} 1m 12s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} javac {color} | {color:green} 1m 12s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} checkstyle {color} | {color:green} 0m 59s{color} | {color:green} ql: The patch generated 0 new + 4 unchanged - 3 fixed = 4 total (was 7) {color} | | {color:green}+1{color} | {color:green} whitespace {color} | {color:green} 0m 0s{color} | {color:green} The patch has no whitespace issues. {color} | | {color:green}+1{color} | {color:green} findbugs {color} | {color:green} 4m 43s{color} | {color:green} the patch passed {color} | | {color:green}+1{color} | {color:green} javadoc {color} | {color:green} 1m 6s{color} | {color:green} the patch passed {color} | || || || || {color:brown} Other Tests {color} || | {color:green}+1{color} | {color:green} asflicense {color} | {color:green} 0m 14s{color} | {color:green} The patch does not generate ASF License warnings. {color} | | {color:black}{color} | {color:black} {color} | {color:black} 29m 31s{color} | {color:black} {color} | \\ \\ || Subsystem || Report/Notes || | Optional Tests | asflicense javac javadoc findbugs checkstyle compile | | uname | Linux hiveptest-server-upstream 3.16.0-4-amd64 #1 SMP Debian 3.16.43-2+deb8u5 (2017-09-19) x86_64 GNU/Linux | | Build tool | maven | | Personality | /data/hiveptest/working/yetus_PreCommit-HIVE-Build-22637/dev-support/hive-personality.sh | | git revision | master / 6aeb63a | | Default Java | 1.8.0_111 | | findbugs | v3.0.1 | | modules | C: ql U: ql | | Console output | http://104.198.109.242/logs//PreCommit-HIVE-Build-22637/yetus.txt | | Powered by | Apache Yetushttp://yetus.apache.org | This message was automatically generated. > Needs to capture input/output entities in explainRewrite > > > Key: HIVE-23461 > URL: https://issues.apache.org/jira/browse/HIVE-23461 > Project: Hive > Issue Type: Bug > Components: Authorization >Reporter: Wenchao Li >Assignee: Naresh P R >Priority: Major > Attachments: HIVE-23461.patch > > > HIVE-18778(CVE-2018-1314) capture input/output entitles in explain semantic > analyzer so when a query is disallowed by Ranger, Sentry or Sqlstd > authorizizer, the corresponding explain statement will be disallowed either. > However, ExplainSQRewriteSemanticAnalyzer also uses an instance of > DDLSemanticAnalyzer to analyze the explain rewrite query. > {code:java} > SemanticAnalyzer sem = (SemanticAnalyzer) > SemanticAnalyzerFactory.get(queryState, input); > sem.analyze(input, ctx); > sem.validate();{code} > > The inputs/outputs entities for this query are never set on the instance of > ExplainSQRewriteSemanticAnalyzer itself and thus is not propagated into the > HookContext in the calling Driver code. It is a similar issue to HIVE-18778. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (HIVE-23461) Needs to capture input/output entities in explainRewrite
[ https://issues.apache.org/jira/browse/HIVE-23461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17114603#comment-17114603 ] Wenchao Li commented on HIVE-23461: --- [~nareshpr] I haven't started to work on it and I will assign it to you. > Needs to capture input/output entities in explainRewrite > > > Key: HIVE-23461 > URL: https://issues.apache.org/jira/browse/HIVE-23461 > Project: Hive > Issue Type: Bug > Components: Authorization >Reporter: Wenchao Li >Assignee: Wenchao Li >Priority: Major > > HIVE-18778(CVE-2018-1314) capture input/output entitles in explain semantic > analyzer so when a query is disallowed by Ranger, Sentry or Sqlstd > authorizizer, the corresponding explain statement will be disallowed either. > However, ExplainSQRewriteSemanticAnalyzer also uses an instance of > DDLSemanticAnalyzer to analyze the explain rewrite query. > {code:java} > SemanticAnalyzer sem = (SemanticAnalyzer) > SemanticAnalyzerFactory.get(queryState, input); > sem.analyze(input, ctx); > sem.validate();{code} > > The inputs/outputs entities for this query are never set on the instance of > ExplainSQRewriteSemanticAnalyzer itself and thus is not propagated into the > HookContext in the calling Driver code. It is a similar issue to HIVE-18778. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (HIVE-23461) Needs to capture input/output entities in explainRewrite
[ https://issues.apache.org/jira/browse/HIVE-23461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17114594#comment-17114594 ] Naresh P R commented on HIVE-23461: --- [~1wc] I am interested to work on this jira, please let me know if you are already working on the patch. > Needs to capture input/output entities in explainRewrite > > > Key: HIVE-23461 > URL: https://issues.apache.org/jira/browse/HIVE-23461 > Project: Hive > Issue Type: Bug > Components: Authorization >Reporter: Wenchao Li >Assignee: Wenchao Li >Priority: Major > > HIVE-18778(CVE-2018-1314) capture input/output entitles in explain semantic > analyzer so when a query is disallowed by Ranger, Sentry or Sqlstd > authorizizer, the corresponding explain statement will be disallowed either. > However, ExplainSQRewriteSemanticAnalyzer also uses an instance of > DDLSemanticAnalyzer to analyze the explain rewrite query. > {code:java} > SemanticAnalyzer sem = (SemanticAnalyzer) > SemanticAnalyzerFactory.get(queryState, input); > sem.analyze(input, ctx); > sem.validate();{code} > > The inputs/outputs entities for this query are never set on the instance of > ExplainSQRewriteSemanticAnalyzer itself and thus is not propagated into the > HookContext in the calling Driver code. It is a similar issue to HIVE-18778. -- This message was sent by Atlassian Jira (v8.3.4#803005)