zy-kkk opened a new pull request, #31153: URL: https://github.com/apache/doris/pull/31153
## Proposed changes Issue Number: close #xxx ### Enhancements This PR introduces enhanced security measures for managing and verifying driver packages when creating Catalogs in Doris. Specifically, it adds path management and checksum verification to ensure the security of driver jars specified by the `driver_url`. The key highlights include: 1. For driver packages specified by filename within the `jdbc_drivers/` directory (configured via `fe.conf` and `be.conf`), Doris assumes these are secure and does not perform additional path checks. 2. For driver packages specified through absolute local paths or HTTP URLs, Doris enforces checks against allowed paths configured via the `jdbc_driver_secure_path` FE configuration item. This setting supports multiple paths separated by semicolons. If the `driver_url`'s path does not match any prefix in `jdbc_driver_secure_path`, the creation of the Catalog is denied. 3. A `checksum` parameter can be specified when creating a Catalog, allowing Doris to verify the driver package's integrity post-load. Catalog creation is aborted if verification fails. ### Upgrade Impact - The default configuration for `jdbc_driver_secure_path` is `*`, indicating that all driver package paths are allowed. This ensures backward compatibility and does not affect existing Catalogs upon upgrade. - Since the verification is only performed during Catalog creation, existing Catalogs remain unaffected. ## Further comments If this is a relatively large or complex change, kick off the discussion at [d...@doris.apache.org](mailto:d...@doris.apache.org) by explaining why you chose the solution you did and what alternatives you considered, etc... -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: commits-unsubscr...@doris.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@doris.apache.org For additional commands, e-mail: commits-h...@doris.apache.org
