2feeb88c29
SOLR-14026: Upgrade Jetty to 9.4.24.v20191120 and dropwizard to 4.1.2, moved to 8.5 in CHANGES.txt
2019-12-13 12:42:09 -05:00
8278886966
SOLR-14026: Upgrade Jetty to 9.4.24.v20191120 and dropwizard to 4.1.2
2019-12-13 10:01:37 -05:00
d130bffa8f
LUCENE-9092: Upgrade randomizedtesting to 2.7.5 and Carrot2 to 3.16.2
2019-12-13 15:13:26 +01:00
f083f40b28
SOLR-14076: clean up static fields leak in nightly-only test
2019-12-13 04:06:07 -05:00
3ba005465a
SOLR-14048: Improve Hadoop test sanity checks
...
Signed-off-by: Kevin Risden <krisden@apache.org>
2019-12-12 21:27:38 -05:00
e155649026
SOLR-13975: Make sure the stall time is adjusted up when an unusually long
...
poll time is configured.
2019-12-12 19:58:03 +01:00
c40689875a
Correct regexes normalizing jar filenames so that the resulting licenses are consistent with gradle (which will use proper artifact name, not a chain of regexes).
2019-12-12 19:26:46 +01:00
322ed8ce4d
SOLR-14047: Make sure tests don't pickup other Hadoop installs
...
Signed-off-by: Kevin Risden <krisden@apache.org>
2019-12-12 10:23:29 -05:00
4d5df0e20a
SOLR-14013: FIX: javabin performance regressions
2019-12-12 23:38:35 +11:00
b35f1debe3
SOLR-14013: javabin performance regressions
2019-12-12 23:26:37 +11:00
57e717eff2
SOLR-14065: Deprecate Velocity
2019-12-12 16:13:32 +05:30
7097e9c41a
SOLR-13978: Removed LTR from default configset
2019-12-12 15:09:21 +05:30
fa1ad006b6
SOLR-14071: Untrusted configsets shouldn't be allowed to use <lib> directive
2019-12-12 15:00:09 +05:30
b72365ae21
Add next minor version 8.5
2019-12-12 09:37:51 +01:00
dce36c10e9
SOLR-13978: Remove non-essential components from default configset
...
The default configset no longer has the following:
- Library inclusions (<lib ../>) for extraction, solr-cell libs, clustering, velocity and language identifier
- /browse, /tvrh and /update/extract handlers
- TermVector component (if someone wants it, can be added using config APIs)
- XSLT response writer
- Velocity response writer
If you want to use them in your collections, please add them to your configset manually or through the Config APIs.
2019-12-12 10:43:31 +05:30
88b5b5a7cd
SOLR-13970: disallow using collapse/expand with grouping
...
* Using collapse with grouping would cause inconsistent behavior.
This is because grouping calls the same postfilter twice without
resetting the internal state of the DocValues cache
* Using expand with grouping would cause NPE
2019-12-12 10:21:20 +05:30
f681d433ae
SOLR-14062: Split IndexSizeTriggerTest into three
2019-12-12 10:12:17 +05:30
8db8ab3be2
SOLR-13945: SPLITSHARD can cause data loss due to rollback when final commit fails
2019-12-12 08:58:34 +05:30
861c77cb17
SOLR-14053: Fix HDFS tests to be ignored if Native I/O isn't available (remove tests.disableHdfs)
...
Signed-off-by: Kevin Risden <krisden@apache.org>
2019-12-11 22:02:07 -05:00
d559f47222
SOLR-14060: Update CHANGES.txt
2019-12-11 20:59:23 -05:00
ee0a6b45ca
SOLR-14060: Allow the random Streaming Expression to create the x-axis
2019-12-11 20:37:20 -05:00
f01b3e97d1
SOLR-13904: Make Analytics component sensitive to timeAllowed.
2019-12-11 23:48:17 +03:00
dc031ea382
SOLR-14050: clean up tests use of network addresses
...
Solr tests now have a similar policy to Lucene, loopback use only. If a
test tries to resolve or connect to the internet, it will get SecurityException.
Some solr tests explicitly try to talk to dead nodes with real
networking. This is not good and asking for trouble, but use low loopback port numbers instead of
multicast addresses. The idea is that it fails faster. Move these to
constants so that stuff isn't copy-pasted everywhere, in case we have to
do something different later.
2019-12-11 12:51:45 -05:00
128360856d
SOLR-14025: VelocityResponseWriter hardening
2019-12-11 12:36:14 -05:00
13b865ac4c
SOLR-13957: Update CHANGES.txt
2019-12-11 12:02:47 -05:00
71893936d1
SOLR-14043: Update CHANGES.txt
2019-12-11 11:56:46 -05:00
5cbbdae793
SOLR-14055: LegacyCloudClusterPropTest fails on Windows (requires SuppressSSL).
2019-12-11 16:40:31 +01:00
9e236a4835
SOLR-14053: Don't start hdfs when native libraries can't be loaded. Remove tests.disableHdfs. ( #1072 )
2019-12-11 15:01:24 +01:00
4f2fedbe6b
SOLR-13999: Add missing CHANGES.txt entry
2019-12-11 07:43:23 -05:00
d8aa04575f
SOLR-13972: Warn about insecure settings on startup ( #1058 )
2019-12-11 07:16:09 -05:00
d189520935
SOLR-13953: Prometheus exporter in SolrCloud mode limited to 100 nodes
2019-12-10 20:19:30 -05:00
34f11c9f57
SOLR-13822: Fix Eclipse project
2019-12-11 05:55:30 +05:30
9e84da95a2
SOLR-13966: forgot to test empty list
2019-12-10 16:29:19 -05:00
48775ea18e
SOLR-14033: Fix Hadoop tests with security manager
...
This removes the Solr security manager hacks
for Hadoop. It does so by:
* Using a fake group mapping class instead of ShellGroupMapping
* Copies a few Hadoop classes and modifies them for tests with no Shell
* Nulls out some of the static variables in the tests
The Hadoop files were copied from Apache Hadoop 3.2.0
and copied to the test package to be only picked up
during tests. They were modified to remove the need to
shell out for access. The assumption is that these
HDFS integration tests only run on Unix based systems
and therefore Windows compatibility was removed in some
of the modified classes. The long term goal is to remove
these custom Hadoop classes. All the copied classes are
in the org.apache.hadoop package.
Signed-off-by: Kevin Risden <krisden@apache.org>
2019-12-10 16:15:24 -05:00
20d3284a09
"Added missing parameter under 'topic parameters'" ( #1056 )
2019-12-10 16:05:46 -05:00
c4f0c33638
SOLR-13975, SOLR-13896: ConcurrentUpdateSolrClient connection stall prevention.
2019-12-10 21:45:43 +01:00
6d03baa485
SOLR-13806: SolrJ QueryResponse._explainMap is incorrectly typed.
2019-12-10 20:44:17 +01:00
8c6a2640ed
SOLR-14043: Allow the precision Stream Evaluator to operate on matrices
2019-12-10 12:57:05 -05:00
fed199df7b
SOLR-13563: SPLITSHARD using LINK method fails on disk usage checks.
2019-12-10 14:21:37 +01:00
b97afd79ca
Fix 5 javac warnings: 'yield' may become a restricted identifier in a future release.
2019-12-10 12:32:34 +00:00
e84a23529e
SOLR-14029: Solr Ref Guide: clarify requestDispatcher handleSelect=true
2019-12-09 23:28:45 -05:00
e250f3e82c
SOLR-13966: LatLonPointSpatialField fix for RealTimeGetComponent
...
used in atomic/partial updates.
Closes #1035
2019-12-09 22:51:18 -05:00
12825f3642
SOLR-14039: SOLR-13987 broke multiple node /select handler due to jetty.xml whitespace
...
Signed-off-by: Kevin Risden <krisden@apache.org>
2019-12-09 19:29:37 -05:00
485e140e93
SOLR-14032: some misc ref-guide improvements related to clarifying the pros/cons of the diff ways to 'boost' documents by func/query
2019-12-09 15:34:42 -07:00
1c78d2c637
SOLR-12217: Support shards.preference in SolrJ for individual shard requests ( #984 )
2019-12-09 17:11:58 -05:00
1eaa5b5ac2
SOLR-13957: Add sensible defaults for the facet, random, facet2D, timeseries, stats and update Streaming Expressions
2019-12-09 16:04:03 -05:00
df933f8104
SOLR-14030: fix 2 javac warnings: [dep-ann] deprecated item is not annotated with @Deprecated
2019-12-09 14:13:52 +00:00
86cab79730
SOLR-13979: Expose separate metrics for distributed and non-distributed requests.
2019-12-09 13:46:33 +01:00
0d78535dcf
SOLR-13977: Move changes entry to 8.4
2019-12-09 10:27:53 +01:00
df508ffe01
SOLR-11706: fix for multivalued trie date in min/max and more tests
...
* selecting single value for multivalued trie date field is not
supported.
* add additional tests for variance, unique, hll aggregations
2019-12-08 10:49:37 +05:30
8e9876f516
SOLR-7798: robust support for expand when used w/o collapsing ( #325 )
...
There are applications of ExpandComponent that intentionally do not
involve prior collapsing of results on the expand field, which can lead
to an NPE in expand component when expand.field (for matched docs) has
fewer unique values than the number of matched docs.
This commit refines the approach taken in SOLR-13877, which addressed
the same underlying issue.
2019-12-08 09:59:33 +05:30
07e4d86207
SOLR-13818: Upgrade jackson to 2.10.0
...
Signed-off-by: Kevin Risden <krisden@apache.org>
2019-12-07 19:09:18 -05:00
f9e15839bf
SOLR-13987: Admin UI should not rely on javascript eval()
...
* Removes `'unsafe-eval'` from CSP `script-src`
* Enables Angular CSP mode
* Removes `eval()` JSON parsing in `cloud.js`
* Removes `jstree` themes error
Signed-off-by: Kevin Risden <krisden@apache.org>
2019-12-07 16:40:04 -05:00
7c8635d600
SOLR-14028: Fix test permissions for TestSolrCLIRunExample
...
Signed-off-by: Kevin Risden <krisden@apache.org>
2019-12-07 16:32:11 -05:00
a1e51cd777
SOLR-11706: minor refactors
...
* rename stdDev, variance methods to reflect the functionality
* add util functions to compute corrected stdDev and variance
* use DocValuesIterator#advanceExact to check if values exists for the doc
2019-12-07 11:16:25 +05:30
7d5d44a3c4
SOLR-13988: Harden CreateCollectionCleanupTest. Incorporate Dawid Weiss' suggestion for windows
2019-12-06 19:10:27 -05:00
155ab116a2
Revert "SOLR-13990: Switch out woodstox-core-asl with aalto-xml and upgrade woodstox stax-2 API ( #1050 )" ( #1063 )
...
This reverts commit 2387bb9d60
2019-12-06 17:08:40 -06:00
62e0222aef
SOLR-13087: Remove 'whoami' usage in bin/solr
...
whoami displays a warning if the effective-uid is not in /etc/password.
This can happen in certain situations when running in a docker
container. This replaces the 'whoami' usage with a safer check.
2019-12-06 15:31:37 -05:00
a7444f7af4
LUCENE-9077: Add support for running under gradle test runner.
2019-12-06 19:00:50 +01:00
106b9d6866
SOLR-13988: Harden CreateCollectionCleanupTest
2019-12-06 11:59:53 -05:00
7417fa1cf3
SOLR-13954: Embedded ZooKeeper in Solr now does not try to load JettyAdminServer ( #1059 )
2019-12-06 11:03:23 +01:00
33ca971d2b
SOLR-14020: move hadoop hacks out of lucene TestSecurityManager into a solr one
2019-12-05 14:53:23 -05:00
d2b01ef28f
SOLR-13831: Context property _loop_iter_ should be a string in order to support
...
variable expansion.
2019-12-05 18:27:12 +01:00
2387bb9d60
SOLR-13990: Switch out woodstox-core-asl with aalto-xml and upgrade woodstox stax-2 API ( #1050 )
2019-12-05 18:37:53 +05:30
e77027dd8c
SOLR-13993: sandbox velocity template render (if security manager is enabled)
...
The solr permissions are weak sauce due to the huge number of features, third-party dependencies, etc.
Hence they have access to do many things. For "scripting" such as velocity we have to look at a more aggressive stance:
Step 1: Can we wrap a sandbox around the whole goddamn thing and call it a day?
Step 2: Let's separate the "engine" from "untrusted code" and only be an asshole to the latter.
Step 3: Java's security is shit, Lets contain that classloader and whitelist access.
2019-12-05 01:06:38 -05:00
12e8cca644
SOLR-11706: add support for aggregation on multivalued fields
...
* min, max, sum, sumsq, avg, stddev, variance, percentile aggregations
in JSON facets now supports multivalued fields
2019-12-05 10:48:22 +05:30
c4126ef858
SOLR-14015: remove blanket filesystem read access from solr-tests.policy
...
Restrict this to only minimal paths like lucene. It is the defense for directory traversal attacks.
It will also help find bad bugs where things are reading filesystem in the wrong locations.
2019-12-04 23:16:19 -05:00
f71c2c8e92
SOLR-13981: Remove unused DistributedQueue interface. (Andras Salamon)
2019-12-04 11:23:49 +01:00
becc16fb28
SOLR-14002: fix another static leak in test
2019-12-03 22:43:11 -05:00
165529767b
SOLR-14000: clean up more static field leaks in tests
...
On windows, these objects can't be inspected due to security restrictions. So the test runner fails the tests since it does not know how big the leak is.
2019-12-03 18:51:00 -05:00
16f793915e
SOLR-13926: javadocs on CompositeIdRouter
...
Closes #1009
2019-12-03 17:43:01 -05:00
09df6647ac
SOLR-13998: Add thread safety annotations to classes ( #1053 )
2019-12-04 01:19:56 +05:30
0f61aa9516
Forbidden APIs: add missing root locale.
2019-12-03 13:07:23 +01:00
6f0842eaa5
Use toLowerCase with an explicit locale in CheckLinksAndAnchors.
2019-12-03 13:01:43 +01:00
9e5d11be8a
fix static leaks, null stuff out in afterclass
2019-12-03 06:28:19 -05:00
c8c9c10023
SOLR-13982: set security-related http response headers by default
...
Unfortunately, as a first start this is very weak protection against
e.g. XSS. This is because some 'unsafe-xxx' rules must be present due
to the insecurity of angular JS: Until SOLR-13987 is fixed, XSS & co are
still easy.
2019-12-03 06:12:33 -05:00
a51c7b89f2
SOLR-13995: Move ZkShardTerms.Terms to SolrJ
2019-12-03 15:16:34 +11:00
d8f9f47ca0
SOLR-13992: Refactor code to have collection, shard name in Replica,Slice ( #1051 )
...
* SOLR-13992: Refactor code to have collection name shard name in Replica,Slice
2019-12-03 13:10:19 +11:00
de1c9fb9e8
SOLR-13885: various Ref Guide typos. This closes #990
2019-12-02 13:33:45 -06:00
5a697344ed
SOLR-13805: NPE when calling /solr/admin/info/health on standalone solr
2019-11-30 10:04:00 +05:30
936f4b6ee9
SOLR-13977: solr create -c not working under Windows 10
2019-11-29 01:22:06 +01:00
48010ffc9f
Add 8.3.1 CHANGES entry for SOLR-13465, SOLR-13941 and SOLR-13905
2019-11-28 20:56:57 +01:00
6a72b81ed3
SOLR-13971: Revert changes to the default configset.
...
* clarified these are Java system properties
* trivial dead code change; Boolean.getBoolean returns a primitive
2019-11-28 10:45:58 -05:00
b4cc3c6ad2
SOLR-13968: Support postingsFormat and docValuesFormat in schema fields.
...
Closes #1039
2019-11-28 16:13:10 +01:00
212593d362
SOLR-13971: Renamed the velocity template parameter names
2019-11-28 15:46:26 +05:30
9f78482295
SOLR-13969: Clean up and document AuditEvent API ( #1041 )
2019-11-28 09:55:11 +01:00
50e8cea918
SOLR-13971: Removing velocity from _default and disabling custom template support by default
2019-11-28 07:52:43 +05:30
47a908a0b9
Fix the list of common handler metrics.
2019-11-27 15:59:53 +01:00
a5ab17db82
Correct inconsistency on plugin support ( #272 )
2019-11-27 08:55:52 +01:00
70c5942f3d
Removed extra whitespace ( #292 )
2019-11-27 08:50:12 +01:00
6c7a095f33
SOLR-13963: JavaBinCodec has concurrent modification of CharArr resulting in corrupt internode updates
2019-11-26 08:12:23 +11:00
063c82ebd6
SOLR-13952: reverting Erick's commit (with permission).
2019-11-25 17:56:20 +01:00
b5fd6d7b22
SOLR-13961: Allow null/empty for removal of child doc in atomic update
...
Closes #1030
2019-11-25 09:57:07 -05:00
f1cf3db588
SOLR-13952: Separate out Gradle-specific code from other (mostly test) changes and commit separately, forgot CHANGES.txt
2019-11-24 13:31:45 -05:00
4b34d726ab
SOLR-13952: Separate out Gradle-specific code from other (mostly test) changes and commit separately
2019-11-24 13:24:40 -05:00
592ea19eff
SOLR-12193: reverting one line back to trace
2019-11-24 00:06:07 +01:00
d809bc27f1
SOLR-12193: Move some log messages to TRACE level, remove some dead code
2019-11-23 23:57:59 +01:00
312431b182
SOLR-13465 CoreContainer.auditloggerPlugin should be volatile ( #672 )
2019-11-23 01:21:47 +01:00
e45c5ce9b9
SOLR-13905 Make findRequestType in AuditEvent more robust ( #1014 )
2019-11-22 23:34:20 +01:00
537862d5bb
Document how to load your own streaming plugins ( #1025 )
2019-11-22 11:16:57 -08:00
erick
Dawid Weiss
Robert Muir
Kevin Risden
Andrzej Bialecki
noble
Ishan Chattopadhyaya
Adrien Grand
Munendra S N
Joel Bernstein
Mikhail Khludnev
Erik Hatcher
Jason Gerlowski
Thomas Wöckinger
Vergil Cheynov
Christine Poerschke
Alessandro Benedetti
Chris Hostetter
Houston Putman
Jan Høydahl
Michael Gibney
ngomx
Mike
Jan Høydahl
Anshum Gupta
Jeff
Noble Paul
Cassandra Targett
Shalin Shekhar Mangar
David Smiley
Bruno Roustant
Jonathan Pool
Eduardo Leggiero
Dawid Weiss
Eric Pugh