Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-14889

Beeline leaks sensitive environment variables of HiveServer2 when you type set;

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 2.1.1, 2.2.0
    • Component/s: Beeline
    • Labels:
      None

      Description

      When you type set; beeline prints all the environment variables including passwords which could be major security risk. Eg: HADOOP_CREDENTIAL_PASSWORD below is leaked.

      | env:HADOOP_CREDSTORE_PASSWORD=password             |
      | env:HADOOP_DATANODE_OPTS=-Dhadoop.security.logger=ERROR,RFAS  |
      | env:HADOOP_HOME_WARN_SUPPRESS=true                 |
      | env:HADOOP_IDENT_STRING=vihang                     |
      | env:HADOOP_PID_DIR=                                |
      

        Attachments

        1. HIVE-14889.1.patch
          9 kB
          Vihang Karajgaonkar
        2. HIVE-14889.2.patch
          8 kB
          Vihang Karajgaonkar

          Activity

            People

            • Assignee:
              vihangk1 Vihang Karajgaonkar
              Reporter:
              vihangk1 Vihang Karajgaonkar
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: