Release 413-e LTS (30 May 2023)#
Starburst Enterprise platform (SEP) 413-e LTS is the follow up release to the 413-e STS release and the 407-e LTS release.
This release is a promotion of the original 413-e STS release in April 2023 into a long term support (LTS) release.
The 413-e release includes all improvements from the following Trino project releases:
It contains all improvements from the Starburst Enterprise releases since 407-e LTS:
Highlights since 407-e#
Added support for securing data products with Apache Ranger.
Added support for PingIdentity as an OAuth 2.0 identity provider.
Added Managed statistics to the Redshift, Snowflake, MySQL, and SQL Server connectors as a public preview.
Added support for Fault-tolerant execution of write operations in SingleStore and IBM Db2.
Added query sharing to the Starburst Enterprise web UI query editor as a public preview.
Breaking changes since 407-e#
SEP now disallows setting
access-control.name=starburst
as an access control system when built-in access control is not enabled on the coordinator. If this property is configured in an access control properties file butstarburst.access-control.enabled
is not set totrue
inconfig.properties
on the coordinator node, the cluster fails to start.Upgrades to this release involve an automated migration in the query logger database. If the cluster fails to start with an error message
Migration of schema "public" to version "413.2 - Category" failed
, contact Starburst Support for assistance.SEP configuration validation now verifies that there is no combination of insecure and secure authentication types between the
web-ui.authentication.type
andhttp-server.authentication.type
configuration properties. If this validation fails, the cluster fails to start and a descriptive error message appears. It is strongly recommended to fix this misconfiguration by setting both configuration properties to secure authentication types. You may also disable configuration validation by settingstarburst.config-validation.enabled=false
in yourconfig.properties
file.The accelerated Parquet reader was removed, and replaced with an improved implementation in Trino. The catalog configuration properties
iceberg.accelerated-parquet-reader.enabled
,hive.accelerated-parquet-reader.enabled
, anddelta.accelerated-parquet-reader.enabled
, and the related catalog session properties are deprecated and must be removed from catalog configurations or the cluster does not start. The new implemenetation is enabled by default, see Parquet format configuration properties for details applicable to all object storage connectors.The following connector names have been removed and must be changed to allow successful cluster starts:
hive-hadoop2
tohive
memsql
tosinglestore
The following connector names have been changed. The old connector names continue to work but it is strongly recommended to change catalog configurations to the new names:
delta-lake
todelta_lake
generic-jdbc
togeneric_jdbc
sap-hana
tosap_hana
snowflake-jdbc
tosnowflake_jdbc
snowflake-distributed
tosnowflake_distributed
teradata-direct
toteradata_direct
warp-speed
towarp_speed
This release introduced a {{site.terms.oss}} bug that causes some
INSERT INTO ... SELECT
statements to fail with an “invalid offset” exception when exchange data compression is enabled as part of a Fault-tolerant execution configuration. For a temporary workaround, set theexchange.compression-enabled
configuration property tofalse
.
413-e initial changes#
The following changes from the 413-e STS are all part of the first public release.
General#
Added support for usage metrics to be uploaded through a proxy server.
Updated the Saved queries tab to hide the Share button when built-in access control is not enabled.
Security#
Added support for securing data products in Apache Ranger.
Added support for DML operations in Lake Formation access control.
Added Apache Ranger support for
SHOW
privilege.Fixed issue that allowed Built-in access control privileges grants to have more than one entity category.
IBM Db2 connector#
Added support for fault-tolerant execution of read operations with a
TASK
retry policy.
MongoDB connector#
Added support for Kerberos authentication using a keytab.
MySQL connector#
Added support for Managed statistics as a public preview.
413-e.1 changes (30 May 2023)#
Fixed Starburst Enterprise web UI Overview page error when internal TLS is enabled.
Fixed incorrect handling of BOOLEAN data type in Starburst Warp Speed.
Fixed a potential internal communication secret leak. See the security advisory for more information.
Remediated CVE-2023-1370.
Fixed read permissions for columns required by table functions. See the full security advisory for more information.