HIVE-25098: Upgrade thrift from 0.13.0 to 0.14.1 #2330
Conversation
kgyrtkirk
added
tests pending
tests failed
tests unstable
and removed
tests failed
tests pending
tests unstable
labels
kgyrtkirk
added
tests pending
tests unstable
tests failed
and removed
tests unstable
tests pending
labels
kgyrtkirk
added
tests pending
tests passed
and removed
tests failed
tests pending
labels
mattmccline-microsoft
left a comment
mattmccline-microsoft
left a comment
There was a problem hiding this comment.
For the new 0.14.1 methods such as getMinSerializedSize, do we understand:
- why the method was added?
- Is it possible the Thrift library call it on our objects now? What is the expected behavior? Is there a way to indicate not implemented like returning -1
mattmccline-microsoft
left a comment
mattmccline-microsoft
left a comment
There was a problem hiding this comment.
What about the seperate standalone-metastore Hive project? It specifies the libthrift.version
mattmccline-microsoft
left a comment
mattmccline-microsoft
left a comment
There was a problem hiding this comment.
What about the separate standalone-metastore Hive project? It specifies the libthrift.version, too.
Yes seperate standalone-metastore also specifies the libthrift.version. I have bumped the version for that also. |
This methods got added as part of interface changes in thrift 0.14.1. We don't understand and use this methods as of now. So i will return -1; |
kgyrtkirk
added
tests pending
tests unstable
tests passed
and removed
tests passed
tests pending
tests unstable
labels
sankarh
changed the title
4 participants
What changes were proposed in this pull request?
Thrift version bump from 0.13.0 to 0.14.1
Why are the changes needed?
To fix existing security issued in 0.13.0 https://nvd.nist.gov/vuln/detail/CVE-2020-13949
Does this PR introduce any user-facing change?
No
How was this patch tested?
Since this is version upgrade only. If all the existing test case cleared then we are good to go.