Apache/lucene
1
0
Fork 0
mirror of https://github.com/apache/lucene.git synced 2025-02-12 21:15:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
32,791 Commits 29 Branches 469 Tags
Commit Graph

13698 Commits

Author SHA1 Message Date
Kevin Risden
12825f3642
SOLR-14039: SOLR-13987 broke multiple node /select handler due to jetty.xml whitespace 
Signed-off-by: Kevin Risden <krisden@apache.org>
 2019-12-09 19:29:37 -05:00
Chris Hostetter
485e140e93 SOLR-14032: some misc ref-guide improvements related to clarifying the pros/cons of the diff ways to 'boost' documents by func/query 2019-12-09 15:34:42 -07:00
Houston Putman
1c78d2c637
SOLR-12217: Support shards.preference in SolrJ for individual shard requests (#984) 2019-12-09 17:11:58 -05:00
Dawid Weiss
511bcaa4c1 Merge remote-tracking branch 'origin/master' into gradle-master 2019-12-09 22:37:08 +01:00
Joel Bernstein
1eaa5b5ac2 SOLR-13957: Add sensible defaults for the facet, random, facet2D, timeseries, stats and update Streaming Expressions 2019-12-09 16:04:03 -05:00
Dawid Weiss
f853d994ec Merge remote-tracking branch 'origin/master' into gradle-master 2019-12-09 16:48:21 +01:00
Christine Poerschke
df933f8104 SOLR-14030: fix 2 javac warnings: [dep-ann] deprecated item is not annotated with @Deprecated 2019-12-09 14:13:52 +00:00
Andrzej Bialecki
86cab79730 SOLR-13979: Expose separate metrics for distributed and non-distributed requests. 2019-12-09 13:46:33 +01:00
Dawid Weiss
a6d7017f2e Merge remote-tracking branch 'origin/master' into gradle-master 2019-12-09 10:55:54 +01:00
Jan Høydahl
0d78535dcf SOLR-13977: Move changes entry to 8.4 2019-12-09 10:27:53 +01:00
Munendra S N
df508ffe01 SOLR-11706: fix for multivalued trie date in min/max and more tests 
* selecting single value for multivalued trie date field is not
  supported.
* add additional tests for variance, unique, hll aggregations
 2019-12-08 10:49:37 +05:30
Michael Gibney
8e9876f516 SOLR-7798: robust support for expand when used w/o collapsing (#325) 
There are applications of ExpandComponent that intentionally do not
involve prior collapsing of results on the expand field, which can lead
to an NPE in expand component when expand.field (for matched docs) has
fewer unique values than the number of matched docs.

This commit refines the approach taken in SOLR-13877, which addressed
the same underlying issue.
 2019-12-08 09:59:33 +05:30
ngomx
07e4d86207
SOLR-13818: Upgrade jackson to 2.10.0 
Signed-off-by: Kevin Risden <krisden@apache.org>
 2019-12-07 19:09:18 -05:00
Kevin Risden
f9e15839bf
SOLR-13987: Admin UI should not rely on javascript eval() 
* Removes `'unsafe-eval'` from CSP `script-src`
* Enables Angular CSP mode
* Removes `eval()` JSON parsing in `cloud.js`
* Removes `jstree` themes error

Signed-off-by: Kevin Risden <krisden@apache.org>
 2019-12-07 16:40:04 -05:00
Kevin Risden
7c8635d600
SOLR-14028: Fix test permissions for TestSolrCLIRunExample 
Signed-off-by: Kevin Risden <krisden@apache.org>
 2019-12-07 16:32:11 -05:00
Dawid Weiss
c3bb81f032 Merge remote-tracking branch 'origin/master' into gradle-master 2019-12-07 10:53:34 +01:00
Dawid Weiss
2a6ffd23fa Reverting aalto change. 2019-12-07 10:53:30 +01:00
Dawid Weiss
78575f0a2c Revert "Adding woodstox temporarily so that tests pass." 
This reverts commit de8a37ee72c83ae35db195238dcd64af0d2df32b.
 2019-12-07 10:51:00 +01:00
Munendra S N
a1e51cd777 SOLR-11706: minor refactors 
* rename stdDev, variance methods to reflect the functionality
* add util functions to compute corrected stdDev and variance
* use DocValuesIterator#advanceExact to check if values exists for the doc
 2019-12-07 11:16:25 +05:30
Erick Erickson
7d5d44a3c4 SOLR-13988: Harden CreateCollectionCleanupTest. Incorporate Dawid Weiss' suggestion for windows 2019-12-06 19:10:27 -05:00
Mike
155ab116a2
Revert "SOLR-13990: Switch out woodstox-core-asl with aalto-xml and upgrade woodstox stax-2 API (#1050)" (#1063) 
This reverts commit 2387bb9d60ae44eeeb4fbcb2f2877f46be5303a0.
 2019-12-06 17:08:40 -06:00
Jason Gerlowski
62e0222aef SOLR-13087: Remove 'whoami' usage in bin/solr 
whoami displays a warning if the effective-uid is not in /etc/password.
This can happen in certain situations when running in a docker
container.  This replaces the 'whoami' usage with a safer check.
 2019-12-06 15:31:37 -05:00
Dawid Weiss
0d18581225 Merge remote-tracking branch 'origin/master' into gradle-master 2019-12-06 19:02:26 +01:00
Dawid Weiss
a7444f7af4 LUCENE-9077: Add support for running under gradle test runner. 2019-12-06 19:00:50 +01:00
Erick Erickson
106b9d6866 SOLR-13988: Harden CreateCollectionCleanupTest 2019-12-06 11:59:53 -05:00
Dawid Weiss
de8a37ee72 Adding woodstox temporarily so that tests pass. 2019-12-06 13:37:48 +01:00
Dawid Weiss
226f5490a0 Correct lucene version passed to tests to be stripped of qualifiers. 2019-12-06 13:05:10 +01:00
Dawid Weiss
8e81037180 Merging with master, updating deps. 2019-12-06 12:16:07 +01:00
Dawid Weiss
f371df327f Merge remote-tracking branch 'origin/master' into gradle-master 2019-12-06 11:57:29 +01:00
Jan Høydahl
7417fa1cf3
SOLR-13954: Embedded ZooKeeper in Solr now does not try to load JettyAdminServer (#1059) 2019-12-06 11:03:23 +01:00
Robert Muir
33ca971d2b SOLR-14020: move hadoop hacks out of lucene TestSecurityManager into a solr one 2019-12-05 14:53:23 -05:00
Andrzej Bialecki
d2b01ef28f SOLR-13831: Context property _loop_iter_ should be a string in order to support 
variable expansion.
 2019-12-05 18:27:12 +01:00
Anshum Gupta
2387bb9d60
SOLR-13990: Switch out woodstox-core-asl with aalto-xml and upgrade woodstox stax-2 API (#1050) 2019-12-05 18:37:53 +05:30
Dawid Weiss
1a24ccb4ee Merge remote-tracking branch 'origin/master' into gradle-master 2019-12-05 11:17:34 +01:00
Robert Muir
e77027dd8c SOLR-13993: sandbox velocity template render (if security manager is enabled) 
The solr permissions are weak sauce due to the huge number of features, third-party dependencies, etc.

Hence they have access to do many things. For "scripting" such as velocity we have to look at a more aggressive stance:

Step 1: Can we wrap a sandbox around the whole goddamn thing and call it a day?
Step 2: Let's separate the "engine" from "untrusted code" and only be an asshole to the latter.
Step 3: Java's security is shit, Lets contain that classloader and whitelist access.
 2019-12-05 01:06:38 -05:00
Munendra S N
12e8cca644 SOLR-11706: add support for aggregation on multivalued fields 
* min, max, sum, sumsq, avg, stddev, variance, percentile aggregations
  in JSON facets now supports multivalued fields
 2019-12-05 10:48:22 +05:30
Robert Muir
c4126ef858 SOLR-14015: remove blanket filesystem read access from solr-tests.policy 
Restrict this to only minimal paths like lucene. It is the defense for directory traversal attacks.
It will also help find bad bugs where things are reading filesystem in the wrong locations.
 2019-12-04 23:16:19 -05:00
Andrzej Bialecki
f71c2c8e92 SOLR-13981: Remove unused DistributedQueue interface. (Andras Salamon) 2019-12-04 11:23:49 +01:00
Robert Muir
becc16fb28 SOLR-14002: fix another static leak in test 2019-12-03 22:43:11 -05:00
Robert Muir
165529767b SOLR-14000: clean up more static field leaks in tests 
On windows, these objects can't be inspected due to security restrictions. So the test runner fails the tests since it does not know how big the leak is.
 2019-12-03 18:51:00 -05:00
Jeff
16f793915e SOLR-13926: javadocs on CompositeIdRouter 
Closes #1009
 2019-12-03 17:43:01 -05:00
Anshum Gupta
09df6647ac
SOLR-13998: Add thread safety annotations to classes (#1053) 2019-12-04 01:19:56 +05:30
Dawid Weiss
7c26c6de02 Merge remote-tracking branch 'origin/master' into gradle-master 2019-12-03 18:45:12 +01:00
Dawid Weiss
49bab132b1 Applying two forbidden api check violations (applied to master). 2019-12-03 14:26:02 +01:00
Dawid Weiss
0f61aa9516 Forbidden APIs: add missing root locale. 2019-12-03 13:07:23 +01:00
Dawid Weiss
6f0842eaa5 Use toLowerCase with an explicit locale in CheckLinksAndAnchors. 2019-12-03 13:01:43 +01:00
Robert Muir
9e5d11be8a fix static leaks, null stuff out in afterclass 2019-12-03 06:28:19 -05:00
Robert Muir
c8c9c10023 SOLR-13982: set security-related http response headers by default 
Unfortunately, as a first start this is very weak protection against
e.g. XSS.  This is because some 'unsafe-xxx' rules must be present due
to the insecurity of angular JS: Until SOLR-13987 is fixed, XSS & co are
still easy.
 2019-12-03 06:12:33 -05:00
noble
a51c7b89f2 SOLR-13995: Move ZkShardTerms.Terms to SolrJ 2019-12-03 15:16:34 +11:00
Noble Paul
d8f9f47ca0
SOLR-13992: Refactor code to have collection, shard name in Replica,Slice (#1051) 
* SOLR-13992: Refactor code to have collection name shard name in Replica,Slice
 2019-12-03 13:10:19 +11:00