[HIVE-8893] Implement whitelist for builtin UDFs to avoid untrused code execution in multiuser mode - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 0.14.0
Fix Version/s: 1.1.0
Component/s: Authorization, HiveServer2, SQL
Labels:
None

Description

The udfs like reflect() or java_method() enables executing a java method as udf. While this offers lot of flexibility in the standalone mode, it can become a security loophole in a secure multiuser environment. For example, in HiveServer2 one can execute any available java code with user hive's credentials.
We need a whitelist and blacklist to restrict builtin udfs in Hiveserver2.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HIVE-8893.3.patch
17/Nov/14 23:19
27 kB
Prasad Suresh Mujumdar
HIVE-8893.4.patch
18/Nov/14 07:56
27 kB
Prasad Suresh Mujumdar
HIVE-8893.5.patch
18/Nov/14 08:38
27 kB
Prasad Suresh Mujumdar
HIVE-8893.6.patch
19/Nov/14 23:54
32 kB
Prasad Suresh Mujumdar

Issue Links

relates to

HIVE-9473 sql std auth should disallow built-in udfs that allow any java methods to be called

Closed

links to

Review #28115

Activity

People

Assignee:: Prasad Suresh Mujumdar

Reporter:: Prasad Suresh Mujumdar

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: 17/Nov/14 02:45

Updated:: 12/Feb/15 23:41

Resolved:: 20/Nov/14 19:34