hive-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Sergio Peña (JIRA) <j...@apache.org>
Subject [jira] [Updated] (HIVE-9994) Hive query plan returns sensitive data to external applications
Date Wed, 18 Mar 2015 19:41:38 GMT

     [ https://issues.apache.org/jira/browse/HIVE-9994?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Sergio Peña updated HIVE-9994:
------------------------------
    Attachment: HIVE-9994.2.patch

This patch checks that the input variables passed to redactLogString() are not null.

> Hive query plan returns sensitive data to external applications
> ---------------------------------------------------------------
>
>                 Key: HIVE-9994
>                 URL: https://issues.apache.org/jira/browse/HIVE-9994
>             Project: Hive
>          Issue Type: Bug
>    Affects Versions: 1.0.0
>            Reporter: Sergio Peña
>            Assignee: Sergio Peña
>         Attachments: HIVE-9994.1.patch, HIVE-9994.2.patch
>
>
> Some applications are using getQueryString() method from the QueryPlan class to get the
query that is being executed by Hive. The query string returned is not redacted, and it is
returning sensitive information that is logged in Navigator.
> We need to return data redacted from the QueryPlan to avoid other applications to log
sensitive data.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message