Release notes for DataStax Enterprise 6.8

DSE 6.8.x is compatible with Apache Cassandra™ 3.11 and adds additional production-certified changes, if any. Components that are indicated with an asterisk (*) (if any) are known to be updated since the prior patch version.

Release notes for 6.8.17

4 November 2021

Components versions for DSE 6.8.17

Apache Solr™ 6.0.1.4.2887
Apache Spark™ 2.4.0.18
Apache TinkerPop™ 3.4.5-20210816-c28c0de2
Apache Tomcat® 8.5.70
DSE Java Driver 1.10.0-dse+20210424
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.50

6.8.17 DSE Cassandra

Enables periodic logging of system status (default every 5 minutes, configurable)
Fix a possible issue that shell tool could break with -h/--help in package install

6.8.17 DSE Core

Fixed a bug in the authenticator that would use the default management mode instead of the defined mode by authentication when authenticating
Fixes stack overflow with secondary indexes on collections
Fixed an issue in preloading prepared statements that queries static columns

6.8.17 DSE Security

Fixes issue that when disabling system_info_encryption configuration in dse.yaml, encryption for tables in the system_backups keyspace would not turn off

6.8.17 DSE CQL

Prints TLS protocol information when running cqlsh with --debug parameter

6.8.17 DSE Spark/Hive

Fixes broken partition filtering in hive metastore leading to missing data in the spark-sql queries results for queries involving numeric partition keys or complex conditions

Release notes for 6.8.16

7 October 2021

Components versions for DSE 6.8.16

Apache Solr™ 6.0.1.4.2887*
Apache Spark™ 2.4.0.18
Apache TinkerPop™ 3.4.5-20210816-c28c0de2*
Apache Tomcat® 8.5.70*
DSE Java Driver 1.10.0-dse+20210424
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.50

6.8.16 DSE Cassandra

The Change Data Capture (CDC) is now near real time as in Cassandra 4.x. Active commitlog segments can be processed from the CDC raw directory defined in your cassandra.yaml without flushing tables. It also allows you to read the last mutation form the most recent commitlog file. See the Datastax Change Data Capture documentation page for more details. (DSP-21992)

6.8.16 DSE core

Added check against the negative value in local stream throughput stream_throughput_outbound_megabits_per_sec and inter dc stream throughput inter_dc_stream_throughput_outbound_megabits_per_sec (DB-5010)
Fixes output of compaction file progress. (DB-5028)

6.8.16 DSE Local Write-Read Paths

Resolves a TPC weakness with large rows and collections, where DSE 6 would repeatedly attempt to read the same row and create a lot of on-heap garbage. (DB-3962)

6.8.16 DSE CVE

Ported fix from SOLR-12514 to dse lucene-Solr to fix CVE-2018-11802. (DSP-21685)
Upgraded version of PDFBox and FontBox to 2.0.24, and version of JempBox to 1.8.16 to fix CVE-2018-8036 and CVE-2018-11797. (DSP-21688)
Upgraded version of groovy to 2.4.21 (DSE 5.1/6.0/67) and to 2.5.14 (DSE 6.8) to fix CVE-2020-17521. (DSP-21767)
Upgraded version of Tomcat from 8.5.65 to 8.5.70 to fix CVE-2021-33037. (DSP-21996)

Addition to Release Notes for 6.8.15

31 August 2021

6.8.15 DSE Platform

Provide DSE support for Centos8, Red Hat Enterprise Linux 8 and Oracle Linux (DSP-19104). Please note that certification was done using Python 2.7 and Python 2.7 needs to be available on the target system. SparkR version included in DSE 6.8.15 is not compatible with the default R version >= 4.0.0.

Release notes for 6.8.15

26 August 2021

Components versions for DSE 6.8.15

Apache Solr™ 6.0.1.4.2840
Apache Spark™ 2.4.0.18
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.5.65
DSE Java Driver 1.10.0-dse+20210424
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.50

6.8.15 DSE CVE

upgraded Bootstrap version from 3.1.1 to 3.4.1, upgraded Flask from 0.10.1 to 1.1.4. (DSP-21682)
Upgraded version of directory-ldap-api from DSE 1.0.0.2.dse to OSS 1.0.3 (DSP-21758)

6.8.15 DSE Spark

Spark had an unused dependency on azure-storage-blob jar files version 12.4.0 which was removed from Azure repos. This fix removes the dependency. (DSP-21978)

6.8.15 DSE TPC

Execution of the back pressure task can be rejected in TPC, leading to the back pressure job being dropped entirely and then deadlocking. This was fixed by properly rescheduling the task. (DB-5027)

Release notes for 6.8.14

07 July 2021

6.8.14 DSE Platform

Provide DSE support for Ubuntu 20.04 (Focal) (DSP-21330). Please note that certification was done using Python 2.7 and Python 2.7 needs to be available on the target system.

Components versions for DSE 6.8.14

Apache Solr™ 6.0.1.4.2840
Apache Spark™ 2.4.0.18
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.5.65
DSE Java Driver 1.10.0-dse+20210424
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.50

6.8.14 DSE Cassandra

Added warning message in case of dse start failure due to this issue (DSP-21795)

6.8.14 DSE Core

Fixed concurrent modification exception in consistent replace (DSP-21836)

6.8.14 DSE CVE

Upgraded version of resteasy to 4.6.0.Final (DSP-21683)
Upgraded jetty version from 9.4.34.v20201102 to 9.4.41.v20210516 (DSP-21684, DSP-21687)

6.8.14 DSE Search

Fixed a bug where in rare cases search query routing might start to spin endlessly for a particular query (DSP-21838)

6.8.14 DSE Security

Fixed an issue in the LDAP group_search_filter default value that meant that group hierarchies were not being loaded if the group_search_filter was not explicitly set in the dse.yaml. (DSP-21874)

6.8.14 DSE Auth

Removed a possible false-positive error message in the log that would cause confusion when multiple authentication schemes are defined. (DB-5015)

6.8.14 DSE CQL

Added unit Testcases for logic cqlsh TLS version. (DB-4979)

6.8.14 DSE SSTables

When the Bloom filter is recreated due to FP chance change, sstable metadata is loaded and re-written in order to update validation metadata with the new fp chance. However, the loaded metadata lacked compaction metadata, so when rewritten, compaction metadata got truncated. (DB-5005)

6.8.14 DSE Streaming

Fixed nodetool not able to setstreamthroughput and setinterdcstreamthroughput (DB-4940)

6.8.14 DSE Tools

Updated the python driver version used by cqlsh from 3.24.0 to 3.25.0 (DB-4978)

Release notes for DSE 6.8.13

18 May 2021

Components versions for DSE 6.8.13

Apache Solr™ 6.0.1.4.2840
Apache Spark™ 2.4.0.18
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.5.65
DSE Java Driver 1.10.0-dse+20210424
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.50

DSE 6.8.13 AOSS

AOSS returns additional parameter in status endpoint: "connection_hostname". The new parameter is a FQDN of the node hosting AOSS, it may be used for connections (instead of connection_address) if needed. (DSP-21811)

DSE 6.8.13 Core

Fixed an issue with DSE daemon being unable to stop after the default timeout expired. This issue only affected systems that use package install and init.d, such as centos. (DSP-21804)

DSE 6.8.13 Graph

Fixed a problem where the Gremlin phrase() predicate may not match Solr results for equivalent search. (DSP-21724)

DSE 6.8.13 Search

A new JVM option is added: dse.search.fc.warmup: AUTO, ALWAYS & NEVER. (DSP-21813)

Release notes for DSE 6.8.12

26 April 2021

Components versions for DSE 6.8.12

Apache Solr™ 6.0.1.4.2840*
Apache Spark™ 2.4.0.18
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.5.65*
DSE Java Driver 1.10.0-dse+20200217
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.50

DSE 6.8.12 CQL

Fixed an error in cqlsh encoding unicode in multi-line statements (DB-4855)
Make cqlsh prefer newer TLS versions. (DB-4966)

DSE 6.8.12 Cassandra

Address a problem where new or rebooted nodes may not be able to gossip with peers. (DSP-21753)

DSE 6.8.12 CVE

Upgrade apache commons-compress to address CVE-2019-12402 (DSP-21679)
Update tomcat version 8.5.61 to 8.5.65 (DSP-21798)

DSE 6.8.12 Search

Fixed a bug where under heavy load solr query worker threads would use 100% CPU due to contention on thread local map (DSP-21746)

Release notes for DSE 6.8.11

9 April 2021

Components versions for DSE 6.8.11

Apache Solr™ 6.0.1.4.2814
Apache Spark™ 2.4.0.18
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.5.61*
DSE Java Driver 1.10.0-dse+20200217
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.50*

DSE 6.8.11 Auth

Fixes an issue where a login attempt with missing credentials logged a misleading warning message with stack trace instead of an error message about the missing username or password. (DB-4806)

DSE 6.8.11 Legacy Repair

Fixes a bug when in rare cases a terminated repair session would leak on-heap memory (DB-4833)

DSE 6.8.11 Streaming

Print a timestamp when nodetool exits due to an error (DB-4826)

DSE 6.8.11 Cassandra

Data export from cqlsh is now less noisy in the logs (DSP-21494)
Fixes intermittent ERROR: java.util.ConcurrentModificationException at org.apache.cassandra.transport.CBUtil.writeStringList (DSP-21336)
Fix for DESCRIBE TYPES in cqlsh (DSP-21667)
Add asynchronous update to KMIP key cache to fix blocking of commit log (DSP-20582)
Fixes CVE-2020-1945 affecting Apache Ant (DSP-21716)
Fixes SRCCLR-SID-22742: Insecure Input Validation Vulnerability in the Apache Commons Codec library (DSP-21747)
Update Tomcat version 8.0.53 to 8.5.61 (fixes CVE-2002-0493 CVE-2009-3548 CVE-2013-2185 CVE-2016-1240 CVE-2016-5018 CVE-2016-5388 CVE-2016-6796 CVE-2016-6797 CVE-2016-8745 CVE-2016-9774 CVE-2016-9775 CVE-2020-8022) (DSP-21394)

DSE 6.8.11 Indexing

Fixes a severe issue where flushing an empty MemtableIndex causes the index to not be queryable (DB-4934)

DSE 6.8.11 Search

Fixes a bug where FilterCache warmup triggered by node health change can block GossipStage-1 thread for several seconds (DSP-21674)

DSE 6.8.11 Spark

Fixes CVE-2014-0114, CVE-2014-0114 (DSP-21668)

Release notes for DSE 6.8.10

11 March 2021

Components versions for DSE 6.8.10

Apache Solr™ 6.0.1.4.2814
Apache Spark™ 2.4.0.18*
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.0.53
DSE Java Driver 1.10.0-dse+20200217
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.49

DSE 6.8.10 Auth

Works around a bug in JDK 1.8u282 (JDK-8260018) (DB-4884)

DSE 6.8.10 Bootstrap

Fixes a Null Pointer Excpetion in Gossip when upgrading from 5.1 to 6.8.6 (DB-4810)

DSE 6.8.10 Configuration

During package upgrade yum and apt managers overwrite unedited old jvm.options file. (DB-4705)

DSE 6.8.10 core

Fixes a problem where FSReadError during streaming could causes DSE to shutdown (DB-4878)

DSE 6.8.10 Distributed Read/Write

Port fix of CVE-2020-17516 onto DSE 6.8 (DB-4923)

DSE 6.8.10 Local Write-Read Paths

Dropped messages metrics calculation doesn't cause assertion errors when dropped messages contain remote batch mutation. (DB-3905)

DSE 6.8.10 Tools

SSTablePartitions tool will no longer fail with "histogram overflowed" when its working for the server code (DB-2952)

DSE 6.8.10 Cassandra

Fixes a problem where sstablescrub could not fix a corrupted file (DSP-21672)

DSE 6.8.10 Core

Addressed several Jackson databind vulnerabilities by upgrading jackson-databind to version 2.9.10.8 in DSE 5.1.21, 6.0.15 and 6.7.13 and version 2.10.5.1 in DSP 6.8.10. (DSP-21503) (DSP-21503)
Fixes a problem where nodetool rebuild could fail intermittently with zerocopy streaming enabled (DSP-21564)

DSE 6.8.10 Spark

Update Jetty to 9.4.34.v20201102 and update Spark Versions: DSE 5.1: 2.0.2.38; DSE 6.0: 2.2.3.16; DSE 6.7: 2.2.3.16; DSE 6.8: 2.4.0.17 (DSP-21506)
SCC by default enables direct join optimization only when size_estimates for both tables are available. (DSP-21628)
Fix: Spark Master fails to start if keystore (used by web UI) contains more than one certificate (DSP-21703)

DSE 6.8.10 Graph

Both graph engines now accept either byte[] or ByteBuffer for blob-typed property values. (DSP-21643)

DSE 6.8.10 Indexing

Index segments are now merged into a single segment, after the index build. (DSP-19608)

DSE 6.8.10 Search

Fixes a problem where lucene threads were getting interrupted, causing problems with solr cores (DSP-21339)
Search queries will no longer fail when querying clustering columns of certain types on which the order is reversed (DSP-21363)

DSE 6.8.10 SparkConnector

Spark Cassandra Connector supports Storage Attached Indexes (SAI). The connector pushes down predicates defined on columns with SAI indexes. (DSP-21655)
DSE Spark supports connections to Astra clusters (DSP-21510)

Release notes for DSE 6.8.9

7 January 2021

Component versions for DSE 6.8.9

Apache Solr™ 6.0.1.4.2814
Apache Spark™ 2.4.0.16
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.0.53
DSE Java Driver 1.10.0-dse+20200217
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.49

DSE 6.8.9 Streaming

Addresses a severe issue where streaming an older file format to a new node could crash sending and receiving nodes. (DB-4846)

DSE 6.8.9 Core

Add support for multiple authorization sources (LDAP + DSE Internal) (DSP-14233)

DSE 6.8.9 SparkConnector

Fixed direct join optimization for spark sql. (DSP-21498)

Release notes for DSE 6.8.8

15 December 2020

⚠️ NOTE: Due to a serious bug which affects DSE 6.8.7 and DSE 6.8.8, these releases have been retracted. We recommend against upgrading to these versions at this time. If you have already upgraded to these versions, please EITHER set zerocopy_streaming_enabled=false in the cassandra.yaml and perform a rolling restart AND/OR run upgradesstables on all nodes in your cluster before adding new nodes, running repair, or restoring from backups. This bug has been addressed in DSE 6.8.9. All features and fixes for 6.8.8 and 6.8.7 are present in 6.8.9.

Components versions for DSE 6.8.8

Apache Solr™ 6.0.1.4.2814*
Apache Spark™ 2.4.0.16
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.0.53
DSE Java Driver 1.10.0-dse+20200217
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.49

DSE 6.8.8 Backup and Restore

During Backup Service startup, to avoid stalling during service initialization, check cluster readiness in response to endpoint "on alive" events. (DB-4818)

DSE 6.8.8 Management API

Fixed an issue in DSE that prevented the Management API to work with DSE versions 6.8.5 - 6.8.7 (DSP-21607)

DSE 6.8.8 Indexing

The issue: When flushing text column indexes, the internal ordering of terms can be processed out of order causing an "*java.lang.AssertionError: Incremental trie requires sorted keys*" error. When this happens, all flushing of indexes involved in this transaction is aborted and the indexes are marked non-queryable. Recovering from this issue involves either rebuilding the indexes or restarting the nodes. (DSP-21580)
Fixes a performance regression in SAI for versions 6.8.6 and 6.8.7 regarding *MultiRangeReadCommand*. (DSP-21601)

DSE 6.8.8 Search

A system property dse.solr.fuzzy.max.expansion was added which allows the user to define a custom number of fuzzy query expansions. The maximal possible value is 1024. When unset, the default number of max expansions is 50. (DSP-21605)

DSE 6.8.8 Spark

Adjust available framework values for --framework parameter. (DSP-21500)

Release notes for DSE 6.8.7

23 November 2020

⚠️ NOTE: Due to a serious bug which affects DSE 6.8.7 and DSE 6.8.8, these releases have been retracted. We recommend against upgrading to these versions at this time. If you have already upgraded to these versions, please EITHER set zerocopy_streaming_enabled=false in the cassandra.yaml and perform a rolling restart AND/OR run upgradesstables on all nodes in your cluster before adding new nodes, running repair, or restoring from backups. This bug has been addressed in DSE 6.8.9. All features and fixes for 6.8.8 and 6.8.7 are present in 6.8.9.

Components versions for DSE 6.8.7

Apache Solr™ 6.0.1.4.2794
Apache Spark™ 2.4.0.16
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.0.53
DSE Java Driver 1.10.0-dse+20200217
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.49

DSE 6.8.7 Cassandra

Fixed a bug where the slow query log would fill with queries that do not meet the slow query threshold (DSP-21417)

DSE 6.8.7 Core

Fixed a bug where a single partition read might fail if the following conditions were true:
1. several sstables had the same partition level deletion info
2. some of the sstables had wide rows whereas others had not
3. the sstables in question contained range tombstone markers (DSP-21346)
Fixed a bug in cassandra.repair.mutation_repair_rows_per_batch setting that caused sending all repair mutations at once (DSP-21429)

DSE 6.8.7 Indexing

On the CQLSH CREATE CUSTOM INDEX ... WITH OPTIONS statement, SAI adds support for an ascii option. If set to true, converts alphabetic, numeric, and symbolic characters that are not in the Basic Latin Unicode block (first 127 ASCII characters) to their ASCII equivalent, if one exists. For example, the filter changes à to a. The default is false. (DSP-21409)
Make the SAI read path synchronous. (DSP-21451)
Fixed "java.lang.ArithmeticException: integer overflow" printing in system.log when retrieving the SAI index segmentRowID (DSP-21522

DSE 6.8.7 Graph

A meaningful error message is logged when two properties with the same name but different types are used in a single core graph. Classic graph was not affected. (DSP-21490)

DSE 6.8.7 Security

Optimized retrieval when memberof_search used the wrong attribute to retrieve groups of the user. (DSP-21537)

DSE 6.8.7 Backup and Restore

Multi-datacenter backup and restore, new CompositeStore type of backup store. (DB-4489)
Adds the possibility to restore a backup marked as INCOMPLETE by using the new FORCE RESTORE statement.

DSE 6.8.7 CommitLog

Addressed a bug where a "CommitLogReplayException" is caused by a bad header but correct CRC after restart (DB-3996)
Fixed a bug where some part of the commit log might not be replayed after injecting a foreign sstable to a node or, on 6.8, after zero-copy streaming of an sstable (DB-4629)

DSE 6.8.7 Streaming

Fixed an issue where zero copy streaming could cause file descriptor leakage (DB-4594)

DSE 6.8.7 Tools

SStableloader now uses native_transport_port_ssl over native_transport_port when passed a config file with the property set (DB-4632)

DSE 6.8.7 TPC

Fixed memory leak in Netty resulting in OOM. (DB-4664)
Fixed a problem in the scheduling and counting of active materialized view updates that could cause too many to be executed concurrently, overwhelming the node. (DB-4782)

Release notes for DataStax Enterprise version 6.8.6

12 November 2020

Components versions for DSE 6.8.6

Apache Solr™ 6.0.1.4.2794
Apache Spark™ 2.4.0.16
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.0.53
DSE Java Driver 1.10.0-dse+20200217
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.49

DSE 6.8.6 Bootstrap

A node may be stuck in repair while joining the cluster if broadcast_address is set differently than local_address (DB-4786)

Release notes for DataStax Enterprise version 6.8.5

20 October 2020

Components versions for DSE 6.8.5

Apache Solr™ 6.0.1.4.2794
Apache Spark™ 2.4.0.16
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.0.53
DSE Java Driver 1.10.0-dse+20200217
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.49

DSE 6.8.5 Backup and Restore

Server side backup and restore now supports Microsoft Azure cloud storage as a backup target. (DB-3894)
snapshot schema.cql files will now contain IF NOT EXISTS clause for CREATE TYPE statements (DB-4685)

DSE 6.8.5 Compaction

Fixes a problem where races in notifying compaction strategies of added and removed sstables can cause compaction to try to use non-existing sstables and repeatedly fail to make progress. (DB-4711)

DSE 6.8.5 Core

Fixed node restart issue after dropping a PointType column. (DSP-21326)
Fixed extreme local pauses on all nodes in the cluster on a node restart. (DB-4657)

DSE 6.8.5 Local Write-Read Paths

Improves performance of estimation of partition counts for subranges. (DB-3679)

DSE 6.8.5 Virtual Tables

Fsync nodes metadata to prevent FSReadError issues on startup. (DB-4672)

DSE 6.8.5 Cassandra

Fixes LDAP user permissions problem following LDAP server restart. (DSP-21284)

DSE 6.8.5 Security

Fixes LDAP user permissions problem following LDAP server restart. (DSP-21284)

DSE 6.8.5 Graph

Escape single-quotes in certain graph-search query predicates. (DSP-21450)

DSE 6.8.5 Spark

Fix: Spark Application contacting Nodes in Non Local DC (DSP-19961)

TinkerPop changes for DSE 6.8.5

DataStax Enterprise (DSE) 6.8.4 includes all changes from previous DSE versions. See TinkerPop upgrade documentation for all changes.

Release notes for DataStax Enterprise version 6.8.4

17 September 2020

Component versions for DSE 6.8.4

Apache Solr™ 6.0.1.4.2794
Apache Spark™ 2.4.0.16
Apache TinkerPop™ 3.4.5-20200107-6cec00d8
Apache Tomcat® 8.0.53
DSE Java Driver 1.10.0-dse+20200217
Netty 4.1.25.7.dse
Spark JobServer 0.8.0.49

DSE 6.8.4 Compaction

Fixes compaction getting stuck on acquiring references for non-existing sstables. (DB-4290)

DSE 6.8.4 CQL

Distributes Netty connections more uniformly across TPC cores (DB-4683)

DSE 6.8.4 MessagingService

Distributes Netty connections more uniformly across TPC cores (DB-4683)

DSE 6.8.4 Core

Adds TTL and TimeWindowCompactionStrategy (TWCS) to system_distributed.repair_history and system_distributed.parent_repair_history tables. (DB-2009)
DNS Service Discovery is now a part of the DSE/LDAP integration. (DSP-11450)
New system property to cap the maximum amount of memory used by bloom filters: -Dcassandra.max_bf_memory_mb}. By default, this is unlimited. (DSP-21344)

DSE 6.8.4 Security

DNS Service Discovery is now a part of the DSE/LDAP integration. (DSP-11450)

DSE 6.8.4 DSEFS

DSEFS waits for a schema agreement before starting and issuing the first CQL query. (DSP-20743)

DSE 6.8.4 Indexing

Storage-Attached Indexing (SAI) adds support for creating multiple SAI indexes on the same collection map column. See SAI collection map examples with keys, values, and entries. (DSP-21306)

TinkerPop changes for DSE 6.8.4