Anonymous | Login
Project:
RSS
  
News | My View | View Issues | Roadmap | Summary

View Issue DetailsJump to Notes ] Issue History ] Print ]
ID
0045968
TypeCategorySeverityReproducibilityDate SubmittedLast Update
feature request[Openbravo ERP] A. Platformmajorhave not tried2021-03-01 10:112021-03-01 17:46
ReporteralostaleView Statuspublic 
Assigned Toplatform 
PrioritynormalResolutionopenFixed in Version
StatusnewFix in branchFixed in SCM revision
ProjectionnoneETAnoneTarget Version
OSAnyDatabaseAnyJava version
OS VersionDatabase versionAnt version
Product VersionSCM revision 
Review Assigned To
Web browser
ModulesCore
Regression level
Regression date
Regression introduced in release
Regression introduced by commit
Triggers an Emergency PackNo
Summary

0045968: update to the latests 5.4.x Hibernate version

DescriptionCurrently Openbravo depends on Hibernate 5.4.2.

This version was released in 2019. As of today the latest 5.4.x [1] version is 5.4.28 which includes several fixes and improvements.

---
[1] https://hibernate.org/orm/releases/5.4/ [^]
Steps To Reproduce-
TagsNo tags attached.
Attached Files

- Relationships Relation Graph ] Dependency Graph ]
related to feature request 0045969 newplatform upgrade to Hibernate 6.x (prototype) 
blocks design defect 0045922 newplatform Extra self-join with main table when using computed columns 

-  Notes
(0126430)
shuehner (administrator)
2021-03-01 17:46

Going through all release notes from 5.4.3 to current 5.4.28 (backwards) showed

following especially bigger topics as especially interesting (grouped by minor version)
- 24 security fix (probably doesn't apply to us)
- 23 'Save some memory'
    retained
- 18 security fix (sql/hql injection via Criteria)
- 10 the ob issue re-found recently (extra left-join for computed columns)
- 5 'strong perf improvements' reduce overhead for trivial queries (up to 400%)

All 'maybe interesting for us' from the releases list:
5.4.28
- [HHH-14415] - Upgrade to Jandex 2.2.3.Final
- jdk16+ fixes to their own build-system

5.4.27 (and .26)
- The Micrometer integration with Hibernate ORM was now moved into the Hibernate ORM repository.

5.4.25
- [HHH-14334] - Make dom4j and jaxb-api optional if hibernate.xml_mapping_enabled=false
    SHU comment: check if that could apply to our usage


5.4.24
- SECURITY-UPATE: fixing CVE-2020-25638.
    hibernate.use_sql_comments=false
    This property also happens to be disabled by default, so unless you had it enabled explicitly you are not affected.
- [HHH-14158] - Upgrade Javassist to the latest version

5.4.23
- Memory improvements
  "this has shown to reduce memory consumption up to 50%"
- several jar dep updates

5.4.22
nothing

5.4.21
nothing

5.4.20
nothing

5.4.19
nothing

5.4.18
- SECURITY FIX: CVe-2019-14900
  [HHH-14077] - CVE-2019-14900 SQL injection issue using JPA Criteria API
  https://hibernate.atlassian.net/browse/HHH-14077 [^]

5.4.17
nothing

5.4.16
nothing

5.4.15
- several 3rd party jar updates (dom4j,jandex,bytebuddy)
- [HHH-13960] - Add SAXReader sec features to match the defaults

5.4.14

5.4.13

    [HHH-13874] - Deprecate relevant methods that are supposed to be removed in v6.0
    To see now what needs to be fixed for eventual 6.x udpate

5.4.12
- Janxdex based entity scanner
    'Faster boot-up'
    Note: we use explicitely mapped entities, unclear if applies
5.4.11
- https://hibernate.atlassian.net/browse/HHH-13704 [^]
  make javassist really optional
    could allow to drop that having having byte-buddy (which we have)
- https://hibernate.atlassian.net/browse/HHH-13821 [^]
  Update Byte Buddy to 1.10.7
- https://hibernate.atlassian.net/browse/HHH-13833 [^]
  Byte Buddy enhancer should use ASM7 opcodes to improve compatibility with code compiled for Java 11

5.4.10
- https://hibernate.atlassian.net/browse/HHH-12895 [^]
  Extra LEFT JOIN generated with @ManyToOne and @JoinTable when projecting on main entity id
    aka OB-Issue https://issues.openbravo.com/view.php?id=45922 [^]
- https://hibernate.atlassian.net/browse/HHH-8091 [^]
  Hibernate produces SQL - "in ()" - which is invalid in at least Oracle, MySQL and Postgres

5.4.9
- https://hibernate.atlassian.net/browse/HHH-13730 [^]
  Upgrade to Classmate 1.4.0
- https://hibernate.atlassian.net/browse/HHH-13731 [^]
  Upgrade to Classmate 1.5.1
- https://hibernate.atlassian.net/browse/HHH-13733 [^]
  Upgrade to Jandex 2.1.1.Final

5.4.8
none

5.4.7
- https://hibernate.atlassian.net/browse/HHH-13680 [^]
  Upgrade to Byte Buddy 1.10.2

5.4.6
none

5.4.5
NEWS:
- Tested with jd13
- several strong performance improvements
  A lot of 'reduce overhead' if hibernate used for 'tiny operations'
    up to 400%
- https://hibernate.atlassian.net/browse/HHH-13249 [^]
  Introduce an option to Log slow queries instead of all queries
    SHU-note: maybe useful oracle (as missing log_min_duration_statement as we have easily as postgresql feature)

5.4.4
- https://hibernate.atlassian.net/browse/HHH-13504 [^]
Upgrade ByteBuddy to 1.9.11

5.4.3
none

- Issue History
Date Modified Username Field Change
2021-03-01 10:11 alostale New Issue
2021-03-01 10:11 alostale Assigned To => platform
2021-03-01 10:11 alostale Modules => Core
2021-03-01 10:11 alostale Triggers an Emergency Pack => No
2021-03-01 10:12 alostale Relationship added blocks 0045922
2021-03-01 10:24 alostale Relationship added related to 0045969
2021-03-01 11:09 shuehner Issue Monitored: shuehner
2021-03-01 17:46 shuehner Note Added: 0126430


Copyright © 2000 - 2009 MantisBT Group
Powered by Mantis Bugtracker