Hive 2.1.1-2009 (EEP 5.0.5) Release Notes
This section provides reference information, including new features, fixes, known issues, and limitations for Hive 2.1.1-2009 in EEP 5.0.5.
Below are release notes for the Hive component included in the MapR Converged Data Platform. You may also be interested in the Apache Hive 2.1.1 Release Notes or the Apache Hive homepage.
These release notes contain only MapR-specific information and are not necessarily cumulative in nature. For information about how to use the release notes, see Ecosystem Component Release Notes.
Hive Version | 2.1.1 |
Release Date | September 2020 |
MapR Version Interoperability | See Hive and HCatalog Support Matrix and Ecosystem Support Matrix (Pre-5.2 releases) and EEP Components and OS Support. |
Source on GitHub | https://github.com/mapr/hive |
GitHub Release Tag | 2.1.1-mapr-2009 |
Maven Artifacts | See Maven Artifacts for the HPE Ezmeral Data Fabric. |
Package Names | Navigate to https://package.ezmeral.hpe.com/releases/MEP/, and select your EEP and OS to view the list of package names. |
Feature Support
- MapR supports Hive-2.1.1 on Tez-0.8.4. For more information, see Tez 0.8.4-2009 (MEP 5.0.5) Release Notes.
- MapR does not support Hive on Spark, so you cannot use Spark as an execution engine for Hive. However, you can run Hive and Spark on the same cluster. You can also use Spark SQL and Drill to query Hive tables.
- MapR does not support HDFS encryption in Hive tables.
- MapR does not support HBase with Hive-2.1.1 starting from mapr-core-6.0.0.
- MapR does not support LLAP with Hive-2.1.1, as Apache Slider is not a MapR ecosystem component.
- Starting from Hive 2.1, Hive needs to run the
schematool
command as an initialization step.
New Features
- None.
Changes in Security with Default Configuration
- None.
Because hive.users.in.admin.role
and
hive.security.authorization.manager
were added to the default Hive
configuration, some actions in Hive are restricted according to security best practices
and CVE-2018-11777
The new class
FallbackHiveAuthorizerFactory
does the following to mitigate the
above-mentioned CVE-2018-11777:
- Disallows local file location in SQL statements for all except the administrator.
- Allows
set
only selected white list parameters. - Disallows
dfs
commands for all except the administrator. - Disallows
ADD JAR
statements for all except the administrator. - Disallows
COMPILE
statements for all except the administrator. - Disallows
TRANSFORM
statements.
FallbackHiveAuthorizerFactory
.Known Issues
- None.
Fixes
This release by MapR includes the following fixes on the base Apache release. For complete details, refer to the commit log for this project in GitHub.
Commit | Date (YYYY-MM-DD) | Comment |
---|---|---|
f0bb560a | 2020-07-30 | MAPR-HIVE-782 : Failed to start Hive services due to Password file not found: jmxremote.password [non-secure cluster] |
27f9c9a8 | 2020-05-22 | MAPR-HIVE-687 : Hiveserver2 Java JMX Server Insecure Configuration Remote Code Execution Vulnerability |
a640d53 | 2020-05-12 | MAPR-HIVE-730 : Update MapR Maven repository URL to use https |
3cb01c9f | 2019-12-06 | MAPR-HIVE-652: SQL Standard Based Authorization does not allow to create a function over HiveServer2 even to Admin user |
This release by MapR also includes the following backported issues. For complete details, refer to the commit log for this project in GitHub.
Commit | Date (YYYY-MM-DD) | Comment |
---|---|---|
0f2eeb4b |
2020-07-13 |
HIVE-18699: Check for duplicate partitions in HiveMetastore.exchange_partitions (Marta Kuczora, reviewed by Adam Szita, Peter Vary) |
88661e19d76 | 2020-02-26 | HIVE-16321 Possible deadlock in metastore with Acid enabled |
4e60249 | 2019-12-17 | HIVE-22151 : Turn off hybrid grace hash join by default (Ashutosh Chauhan via Vineet Garg) |
40792d03 | 2019-12-17 | HIVE-15338: Wrong result from non-vectorized DATEDIFF with scalar parameter of type DATE/TIMESTAMP (Matt McCline, reviewed by Jason Dere) |