You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by Mateen Mansoori <ma...@gmail.com> on 2021/03/18 13:06:24 UTC

Review Request 73241: Upgrade Tomcat to 8.5.63

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/73241/
-----------------------------------------------------------

Review request for ranger, Dineshkumar Yadav, Abhay Kulkarni, Madhan Neethiraj, Mahesh Bandal, Mehul Parikh, and Velmurugan Periasamy.


Bugs: RANGER-3210
    https://issues.apache.org/jira/browse/RANGER-3210


Repository: ranger


Description
-------

Upgrade Tomcat to 8.5.63 or later.

See CVE-2021-25329 Incomplete fix for CVE-2020-9484 (RCE via session
persistence)


Diffs
-----

  pom.xml 0ba0d6fc0 


Diff: https://reviews.apache.org/r/73241/diff/1/


Testing
-------

Ran : mvn clean compile test verify install - build was successful.

Kerberos env.
1. Performed basic CRUD operations with respect to policies, services and security zones in SSL, HA and SSL-HA enviornments.
2. Verified various types of user lookup (internal and external) works in policies, services and security zones in SSL, HA and SSL-HA enviornments.
3. As keyadmin user, performed basic CRUD operations with respect to policies, services and security zones in SSL, HA and SSL-HA enviornments.
4. As keyadmin user,Verified various types of user lookup (internal and external) works in policies, services and security zones in SSL, HA and SSL-HA enviornments..
5. Performed basic enforcement scenarios for following components in SSL-HA environment:
HBASE,HIVE,HIVE (masking),HIVE (Row filter),YARN,KNOX,KAFKA,ATLAS,TAG,KMS
6. Reports in new UI in SSL-HA environment.


Thanks,

Mateen Mansoori

Re: Review Request 73241: Upgrade Tomcat to 8.5.63

Posted by Mehul Parikh <xs...@gmail.com>.

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/73241/#review222723
-----------------------------------------------------------


Ship it!




Ship It!

- Mehul Parikh


On March 18, 2021, 1:06 p.m., Mateen Mansoori wrote:
> 
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/73241/
> -----------------------------------------------------------
> 
> (Updated March 18, 2021, 1:06 p.m.)
> 
> 
> Review request for ranger, Dineshkumar Yadav, Abhay Kulkarni, Madhan Neethiraj, Mahesh Bandal, Mehul Parikh, and Velmurugan Periasamy.
> 
> 
> Bugs: RANGER-3210
>     https://issues.apache.org/jira/browse/RANGER-3210
> 
> 
> Repository: ranger
> 
> 
> Description
> -------
> 
> Upgrade Tomcat to 8.5.63 or later.
> 
> 
> Diffs
> -----
> 
>   pom.xml 0ba0d6fc0 
> 
> 
> Diff: https://reviews.apache.org/r/73241/diff/1/
> 
> 
> Testing
> -------
> 
> Ran : mvn clean compile test verify install - build was successful.
> 
> Kerberos env.
> 1. Performed basic CRUD operations with respect to policies, services and security zones in SSL, HA and SSL-HA enviornments.
> 2. Verified various types of user lookup (internal and external) works in policies, services and security zones in SSL, HA and SSL-HA enviornments.
> 3. As keyadmin user, performed basic CRUD operations with respect to policies, services and security zones in SSL, HA and SSL-HA enviornments.
> 4. As keyadmin user,Verified various types of user lookup (internal and external) works in policies, services and security zones in SSL, HA and SSL-HA enviornments..
> 5. Performed basic enforcement scenarios for following components in SSL-HA environment:
> HBASE,HIVE,HIVE (masking),HIVE (Row filter),YARN,KNOX,KAFKA,ATLAS,TAG,KMS
> 6. Reports in new UI in SSL-HA environment.
> 
> 
> Thanks,
> 
> Mateen Mansoori
> 
>

Re: Review Request 73241: Upgrade Tomcat to 8.5.63

Posted by bhavik patel <bh...@gmail.com>.

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/73241/#review222711
-----------------------------------------------------------


Ship it!




Ship It!

- bhavik patel


On March 18, 2021, 1:06 p.m., Mateen Mansoori wrote:
> 
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/73241/
> -----------------------------------------------------------
> 
> (Updated March 18, 2021, 1:06 p.m.)
> 
> 
> Review request for ranger, Dineshkumar Yadav, Abhay Kulkarni, Madhan Neethiraj, Mahesh Bandal, Mehul Parikh, and Velmurugan Periasamy.
> 
> 
> Bugs: RANGER-3210
>     https://issues.apache.org/jira/browse/RANGER-3210
> 
> 
> Repository: ranger
> 
> 
> Description
> -------
> 
> Upgrade Tomcat to 8.5.63 or later.
> 
> 
> Diffs
> -----
> 
>   pom.xml 0ba0d6fc0 
> 
> 
> Diff: https://reviews.apache.org/r/73241/diff/1/
> 
> 
> Testing
> -------
> 
> Ran : mvn clean compile test verify install - build was successful.
> 
> Kerberos env.
> 1. Performed basic CRUD operations with respect to policies, services and security zones in SSL, HA and SSL-HA enviornments.
> 2. Verified various types of user lookup (internal and external) works in policies, services and security zones in SSL, HA and SSL-HA enviornments.
> 3. As keyadmin user, performed basic CRUD operations with respect to policies, services and security zones in SSL, HA and SSL-HA enviornments.
> 4. As keyadmin user,Verified various types of user lookup (internal and external) works in policies, services and security zones in SSL, HA and SSL-HA enviornments..
> 5. Performed basic enforcement scenarios for following components in SSL-HA environment:
> HBASE,HIVE,HIVE (masking),HIVE (Row filter),YARN,KNOX,KAFKA,ATLAS,TAG,KMS
> 6. Reports in new UI in SSL-HA environment.
> 
> 
> Thanks,
> 
> Mateen Mansoori
> 
>