DB2 V9.8, V10.5 for Linux, UNIX, and Windows (LUW)
DB2 I 7.2 (DB2 UDB V7R2 for iSeries)
Greenplum 4.2, 4.3
Informix Dynamic Server 12.1
Microsoft SQL Server 2012, 2014
Microsoft Windows Azure for SQL Database
MySQL Enterprise Edition 5.6
OpenEdge 11.1, 11.2, 11.3, 11.4, 11.5
Oracle 12c R1 (12.1)
Pivotal HAWQTM 1.1, 1.2
PostgreSQL 9.2, 9.3, 9.4
Salesforce API Version 26, 27, 28, 29, 33, 34
SAP Adaptive Server Enterprise 16
SAP IQ 16
Sybase IQ Server 15.4
Teradata 14.00, 14.10
New operating system version support
CentOS Linux 7.0, 7.1
Oracle Linux 7.0, 7.1
Oracle Solaris 11.1
Red Hat Linux 6.3, 7.0, 7.1
SUSE Enterprise Server 12
Windows 10
Windows 8, 8.1
Windows Server 2012
New drivers DataDirect Connect XE and DataDirect Connect64 XE forODBC
Driver for Apache Hive™
Supported with the following Hive versions
▪ Amazon Elastic MapReduce (Amazon EMR)
▪ Apache Hadoop Hive
▪ Cloudera's Distribution Including Apache Hadoop (CDH)
▪ MapR Distribution for Apache Hadoop
Returns result set metadata for parameterized statements that have been prepared but not yet executed.
Supports parameter arrays, processing the arrays as a series of executions, one execution for each row in the array.
Provides a connection option that allows you to configure the driver to report that it supports transactions, although Hive does not support transactions. This provides a workaround for applications that do not operate with a driver that reports that transactions are not supported.
Supports the following standard SQL functionality:
▪ Create Index, Create Table, and Create View
▪ Insert, Update, and Delete
▪ Drop Index, Drop Table, and Drop View
Impala™ Wire Protocol Driver
Certified with Cloudera Impala 1.0 database servers and formally certified with the following file formats and storage handlers:
▪ File Formats:
▪ Parquet
▪ TextFile
▪ Storage Handlers:
▪ HBase
Returns result set metadata for parameterized statements that have been prepared by not yet executed.
Supports parameter arrays, processing the arrays as a series of executions, one execution for each row in the array.
Provides a connection option that allows you to configure the driver to report that it supports transactions, although Impala does not support transactions. This provides a workaround for applications that do not operate with a driver that reports that transcations are not supported.
Provides a connection option that allows you to set a default limit for the number of rows returned when an ORDER BY clause is submitted. This provides a workaround for applications that are not compatible with Impala's requirement that ORDER BY clauses limit the number of rows returned.
Supports the following standard SQL functionality:
▪ Create Index and Create Table
▪ Insert, Update, and Delete
▪ Drop Index and Drop Table
SSL Enhancement (OpenSSL 1.0.2h)
The default OpenSSL library version has been updated to 1.0.2h, which fixes the following security vulnerabilities:
"Padding oracle in AES-NI CBC MAC check" (CVE-2016-2107)
"EVP_EncodeUpdate overflow" (CVE-2016-2105)
"EVP_EncryptUpdate overflow" (CVE-2016-2106)
"ASN.1 BIO excessive memory allocation" (CVE-2016-2109)
"EBCDIC overread" (CVE-2016-2176)
Version 1.0.2h also addresses vulnerabilities resolved by earlier versions of the library:
Originally resolved in 1.0.2g:
"missing Memory allocation success checks in doapr_outch function in crypto/bio/b_print.c" (CVE-2016-2842)
"Cross-protocol attack on TLS using SSLv2 (DROWN)" (CVE-2016-0800)
"memory issues in BIO_*printf functions" (CVE-2016-0799)
"Memory leak in SRP database lookups" (CVE-2016-0798)
"Double-free in DSA code" (CVE-2016-0705)
"Side channel attack on modular exponentiation" (CVE-2016-0702)
Originally resolved in 1.0.2f:
Provides stronger cryptographic assurance against the "Logjam" vulnerability (CVE-2015-4000)
Version 1.0.2h provides multiple advantages over earlier versions of the library; however, some characteristics of the library can cause connections to certain databases to fail. In an effort to reduce the risk associated with upgrading to 1.0.2h, the driver also installs earlier versions of the library. Refer to the readme that is packaged with the product for a description of these libraries. For instructions on selecting an earlier version of the library, see Designating an OpenSSL Library.
SSL Enhancement (OpenSSL 1.0.2f)
The driver has been updated with OpenSSL library version 1.0.2f.
Note: OpenSSL library 1.0.2f has been replaced with version 1.0.2h. In addition to fixing multiple new vulnerabilities, version 1.0.2h also addresses all the vulnerabilities resolved by version 1.0.2f.
Support for setting the value of undocumented connection options using the setup dialog for the following drivers on Windows:
DB2 Wire Protocol
Driver for Apache Hive
MySQL Wire Protocol
Greenplum Wire Protocol
Oracle Wire Protocol
Salesforce
PostgreSQL Wire Protocol
Sybase IQ Wire Protocol
Progress OpenEdge Wire Protocol
SQL Server Wire Protocol
Sybase Wire Protocol
Oracle
Impala Wire Protocol
Driver for Apache Hive enhancements since General Availability
Added support for HiverServer2
Certified with Hive 0.10, 0.11, 0.12, 0.13, 0.14
Certified with Cloudera 4.1, 4.2, 4.5, 5.2, 5.3
Certified with Hortonworks 1.3, 2.0, 2.1, 2.2, 2.3, 2.4
Certified with IBM BigInsights v3.0, v4.0, v4.1
Certified with Pivotal HD Enterprise 2.0.1, 2.1, 3.0
The driver has been enhanced to support row-level inserts when connected to Hive 0.14 or higher.
The Batch Mechanism connection option has been added to the driver. By setting Batch Mechanism to 2 (MultiRowInsert), you enable the driver to use a parameterized multi-row insert statement to execute batch inserts. MultiRowInsert is the default setting and provides substantial performance gains when performing batch inserts.
The Authentication Method connection option has been refreshed with a new valid value for enabling Kerberos Authentication. To use Kerberos authentication with the driver, set AuthenticationMethod=4.
The legacy setting for enabling Kerberos Authentication (AuthenticationMethod=1) will continue to be valid for this release; however, it will be disabled in future versions of the product.
Added support for SSL encryption, including the following connection options:
The CryptoLibName connection option allows you to determine the cryptographic library used when SSL is enabled.
The Encryption Method connection option now allows you to encrypt data sent between the driver and the database.
The Host Name In Certificate connection option now allows you to specify the host name for certificate validation when SSL encryption and validation are enabled.
The Key Password connection option now allows you to specify the key password that is used to access the individual keys in the keystore file when SSL and SSL client authentication are enabled on the database server.
The Key Store connection option now allows you to specify the directory containing the keystore file that is to be used when SSL and SSL client authentication are enabled on the database server.
The Key Store Password connection option allows you to specify the keystore password that is used to access the keystore file when SSL and SSL client authentication are enabled on the database server.
The SSLLibName connection option allows you to determine the SSL library used when SSL is enabled.
The Truststore connection option now allows you to specify the directory that contains the truststore file and the truststore file name that is to be used when SSL is enabled and the server authentication is used.
The User Name connection option now allows you to specify the user ID that is used to connect to your database.
The Validate Server Certificate connection option now determines whether the driver validates the certificates that are sent by the database server when SSL encryption is enabled.
The Array Size configuration option has been refreshed to allow specifying the number of cells retrieved instead of rows. By determining the fetch size based on the number of cells, the driver can avoid out of memory errors when fetching from tables containing a large number of columns.
Certified with Apache Hive Sentry, which enables HiveServer2 administrators to enforce role-based authorization for Apache Hadoop clusters.
The driver has been enhanced to support the Char data type when connected to Hive 0.13 and higher.
The driver has been enhanced to support the Decimal data type when connected to Hive 0.11 and higher.
The driver has been enhanced to support the Date and Varchar data types in Hive 0.12 and higher.
The TCP Keep Alive connection option allows you to use TCP Keep Alive to maintain idle TCP connections.
The Use rName and Password connection options are now required for a connection to HiveServer2
When connection to HiveServer2, simultaneous connections per port are supported
The new Wire Protocol Version connection option specifies the version of the HiveServer to which the driver will connect.
The String Describe Type connection option now allows you to describe string columns as SQL_WLONGVARCHAR or SQL_WVARCHAR.
The Use Native Catalog Function connection option allows you to specify whether the driver uses native catalog functions to retrieve information returned by the SQLTables, SQLColumns, and SQLStatistics catalog functions.
Added support for Kerberos authentication, including the following connection options:
The GSS Client Library connection option now allows you to specify the name of the GSS client library that the driver uses to communicate with the Key Distribution center (KDC).
The Authentication Method connection option now allows you to specify the method the driver uses to authenticate the user to the server when a connection is established.
The Service Principal Name connection option allows you to specify the service principal name to be used by the driver for Kerberos authentication.
DB2 Wire Protocol driver enhancements
Certified with DB2 I 7.2 (DB2 UDB V7R2 for iSeries)
The new CryptoLibName and SSLLibName connection options allow you to designate the OpenSSL libraries used when SSL is enabled.
The new Crypto Protocol Version connection option allows you to specify the cryptographic protocols used when SSL is enabled.
Certified with DB2 11 for z/OS
Certified with DB2 V9.8, V10.12, V10.5 for Linux, UNIX, and Windows (LUW)
The new Min Long Varchar Size connection option allows you to fetch SQL_LONGVARCHAR columns whose size is smaller than the minimum imposed by some third-party applications.
The new Varchar Threshold connection option allows you to fetch columns that would otherwise exceed the upper limit of the SQL_VARCHAR type for some third-party applications.
The TCP Keep Alive connection option allows you to use TCP Keep Alive to maintain idle TCP connections.
Greenplum driver enhancements
Certified with Pivotal HAWQ 1.1, 1.2
Certified with Greenplum 4.2, 4.3
Added support for Kerberos authentication, including the following connection options:
The Authentication Method connection option now allows you to specify the method the driver uses to authenticate the user to the server when a connection is established.
The GSS Client Library connection option now allows you to specify the name of the GSS client library that the driver uses to communicate with the Key Distribution center (KDC).
The Service Principal Name connection option allows you to specify the service principal name to be used by the driver for Kerberos authentication.
The new CryptoLibName and SSLLibName connection options allow you to designate the OpenSSL libraries used when SSL is enabled.
The new Crypto Protocol Version connection option allows you to specify the cryptographic protocols used when SSL is enabled.
The new Unbounded Numeric Precision connection option allows you to define the precision for unbounded NUMERIC columns when described within the column, parameter, result set, or table metadata.
The new Unbounded Numeric Scale connection option allows you to define the scale for unbounded NUMERIC columns described within the column, parameter, result set, or table metadata.
The TCP Keep Alive connection option allows you to use TCP Keep Alive to maintain idle TCP connections.
The Max Char Size connection option specifies the maximum size of columns of type SQL_VARCHAR that the driver describes through result set descriptions and catalog functions.
The Max Long Varchar Size connection option specifies the maximum size of columns of type SQL_LONGVARCHAR that the driver describes through result set descriptions and catalog functions.
The Enable Keyset Cursors connection option enables emulated Keyset cursors to provide scrollable cursors to an ODBC application.
The Keyset Cursor Options connection option determines which columns are used to comprise the keyset that the driver uses to create the initial keyset on which cursor operations are based.
Added support for SSL encryption with Greenplum 4.2 and higher, including the following connection options:
The Encryption Method connection option now allows you to encrypt data sent between the driver and the database.
The Host Name In Certificate connection option now allows you to specify the host name for certificate validation when SSL encryption and validation are enabled.
The Key Password connection option now allows you to specify the key password that is used to access the individual keys in the keystore file when SSL and SSL client authentication are enabled on the database server.
The Key Store connection option now allows you to specify the directory containing the keystore file that is to be used when SSL and SSL client authentication are enabled on the database server.
The Key Store Password connection option allows you to specify the keystore password that is used to access the keystore file when SSL and SSL client authentication are enabled on the database server.
The Truststore connection option now allows you to specify the directory that contains the truststore file and the truststore file name that is to be used when SSL is enabled and the server authentication is used.
The Truststore Password connection option now allows you to specify the truststore password that is used to access the truststore file when SSL is enabled and the server authentication is used.
The User Name connection option now allows you to specify the user ID that is used to connect to your database.
The Validate Server Certificate connection option now determines whether the driver validates the certificates that are sent by the database server when SSL encryption is enabled.
Impala driver enhancements since General Availability
Certified with Cloudera Impala Server 1.1, 1.2, 1.3, 1.4, 2.0, 2.1, 2.2
The Authentication Method connection option has been refreshed with a new valid value for enabling Kerberos Authentication. To use Kerberos authentication with the driver, set AuthenticationMethod=4.
The legacy setting for enabling Kerberos Authentication (AuthenticationMethod=1) will continue to be valid for this release; however, it will be disabled in future versions of the product.
Support for Kerberos Authentication, which can be configured using the following connection options:
Authentication Method specifies the method the driver uses to authenticate the user to the server when a connection is established.
GSS Client Library specifies the GSS client library that the driver uses to communicate with the Key Distribution Center (KDC).
Service Principal Name specifies the service principal name to be used by driver for Kerberos authentication.
Certified with Apache Sentry for Impala 1.1 and higher. Sentry enables administrators to control access to data and metadata stored on an Hadoop cluster by defining user roles and permissions.
The driver has been enhanced to support the Char, Decimal, and Varchar data types when connected to Impala 2.0 and higher.
The Array Size configuration option has been refreshed to allow specifying the number of cells retrieved instead of rows. By determining the fetch size based on the number of cells, the driver can avoid out of memory errors when fetching from tables containing a large number of columns.
Informix driver enhancements
Certified with Informix Dynamic Server 12.1
Informix Wire Protocol driver enhancements
Certified with Informix Dynamic Server 12.1
MySQL driver enhancements
Certified with MySQL Enterprise Edition 5.6
The new CryptoLibName and SSLLibName connection options allow you to designate the OpenSSL libraries used when SSL is enabled.
The new Crypto Protocol Version connection option allows you to specify the cryptographic protocols used when SSL is enabled.
The TCP Keep Alive connection option allows you to use TCP Keep Alive to maintain idle TCP connections.
Oracle driver enhancements
Certified with Oracle 12c R1 (12.1)
Oracle Wire Protocol driver enhancements
Certified with Oracle 12c R1 (12.1)
The new CryptoLibName and SSLLibName connection options allow you to designate the OpenSSL libraries used when SSL is enabled.
The new Crypto Protocol Version connection option allows you to specify the cryptographic protocols used when SSL is enabled.
The TCP Keep Alive connection option allows you to use TCP Keep Alive to maintain idle TCP connections.
Oracle Advanced Security support, which can be configured using the following connection options:
Data Integrity Level sets the level of OAS data integrity used for data sent between the driver and database server.
Data Integrity Types specifies one or multiple algorithms to protect against attacks that intercept and modify data being transmitted between the client and server when OAS data integrity is enabled using the Data Integrity Level option.
Encryption Level determines whether data is encrypted and decrypted when transmitted over the network between the driver and database server using OAS encryption.
Encryption Types specifies one or multiple algorithms to use if OAS encryption is enabled using the Encryption Level property.
Modified to support all Oracle 11g R2 Kerberos encryption algorithms.
PostgreSQL driver enhancements
Certified with PostgreSQL 9.2, 9.3, 9.4
Support for Kerberos Authentication, which can be configured using the following connection options:
Authentication Method specifies the method the driver uses to authenticate the user to the server when a connection is established.
GSS Client Library specifies the GSS client library that the driver uses to communicate with the Key Distribution Center (KDC).
Service Principal Name specifies the service principal name to be used by driver for Kerberos authentication.
The new CryptoLibName and SSLLibName connection options allow you to designate the OpenSSL libraries used when SSL is enabled.
The new Crypto Protocol Version connection option allows you to specify the cryptographic protocols used when SSL is enabled.
The new Unbounded Numeric Precision connection option allows you to define the precision for unbounded NUMERIC columns when described within the column, parameter, result set, or table metadata.
The new Unbounded Numeric Scale connection option allows you to define the scale for unbounded NUMERIC columns described within the column, parameter, result set, or table metadata.
The TCP Keep Alive connection option allows you to use TCP Keep Alive to maintain idle TCP connections.
The Max Char Size connection option specifies the maximum size of columns of type SQL_CHAR that the driver describes through result set descriptions and catalog functions.
The Max Long Varchar Size connection option specifies the maximum size of columns of type SQL_LONGVARCHAR that the driver describes through result set descriptions and catalog functions.
The Enable Keyset Cursors connection option enables emulated Keyset cursors to provide scrollable cursors to an ODBC application.
The Keyset Cursor Options connection option determines which columns are used to comprise the keyset that the driver uses to create the initial keyset on which cursor operations are based.
The Encryption Method connection option now supports Request SSL functionality.
Progress OpenEdge driver enhancements
Certified with OpenEdge 11.1, 11.2, 11.3, 11.4, 11.5
The new CryptoLibName and SSLLibName connection options allow you to designate the OpenSSL libraries used when SSL is enabled.
The new Crypto Protocol Version connection option allows you to specify the cryptographic protocols used when SSL is enabled.
The TCP Keep Alive connection option allows you to use TCP Keep Alive to maintain idle TCP connections.
Salesforce driver enhancements
Certified with Salesforce API Version 26, 27, 28, 29, 33, 34
The Salesforce driver has been updated to require a JVM that is version Java SE 7 or higher. This change is being implemented to comply with recent revisions to Salesforce security standards.
In keeping with best security practices, Salesforce will begin deprecating support for the TLS 1.0 encryption protocol within inbound and outbound connections on June 25th, 2016. TLS 1.0 will initially be disabled in Sandbox instances, before being retired for all services in early 2017. To maintain compatibility with services after TLS 1.0 is disabled, the driver must employ a JVM that allows TLS 1.0 to be disabled independently from other encryption protocols, functionality that was first introduced in Java SE 7.
By default, the driver uses the Java SE 7 JVM that is installed with the driver. If you designate a JVM that is version Java SE 6 or earlier, the driver will return an error when attempting to establish a connection. To correct this issue, set the library path environment variable to the location of a supported JVM.
The Refresh Schema connection option specifies whether the driver automatically refreshes the remote object mapping and other information contained in a remote schema the first time a user connects to the specified embedded database.
The KeywordConflictSuffix key=value pair in the Config Options connection option can specify a string of up to five alphanumeric characters that the driver appends to any object or field name that conflicts with a SQL engine keyword.
SQL Server Legacy Wire Protocol driver enhancements
Certified with Microsoft SQL Server 2012, 2014
SQL Server Wire Protocol driver enhancements
Certified with Microsoft SQL Server 2012, 2014
The new Bulk Load Threshold option allows you to determine when the driver uses bulk load for insert, update, delete, or batch operations.
The new CryptoLibName and SSLLibName connection options allow you to designate the OpenSSL libraries used when SSL is enabled.
The driver has been enhanced to support NTLMv2 authentication, which can be configured using the Authentication Method connection option.
The new Crypto Protocol Version connection option allows you to specify the cryptographic protocols used when SSL is enabled.
The TCP Keep Alive connection option allows you to use TCP Keep Alive to maintain idle TCP connections.
Sybase IQ Wire Protocol driver enhancements
Certified with SAP IQ 16
Certified with Sybase IQ 15.4
Sybase Wire Protocol driver enhancements
Certified with SAP Adaptive Server Enterprise 16
The new CryptoLibName and SSLLibName connection options allow you to designate the OpenSSL libraries used when SSL is enabled.
The new Crypto Protocol Version connection option allows you to specify the cryptographic protocols used when SSL is enabled.
The TCP Keep Alive connection option allows you to use TCP Keep Alive to maintain idle TCP connections.