Commit Graph

33206 Commits

Author SHA1 Message Date
Dawid Weiss a96bf612d7 Merge with master. 2019-12-25 13:26:56 +01:00
Dawid Weiss 584f564c91 Reordered some lines and comments to make it easier to manually diff/ merge with gradle branch. 2019-12-25 13:26:16 +01:00
Dawid Weiss 23f3fd2d48 Merge remote-tracking branch 'origin/master' into gradle-master 2019-12-25 13:14:57 +01:00
Uwe Schindler 65611f6d66
LUCENE-9109: Use stack walker to implement TestSecurityManager's detection of JVM exit (#1114)
Use stack walker (Java 11 on master only) to implement TestSecurityManager's detection of test JVM exit
2019-12-25 12:45:05 +01:00
Jan Høydahl d86b473ab8
Change 72h voting rules for release wizard (#1118) 2019-12-24 23:13:01 +01:00
Jan Høydahl aa43f352d9
SOLR-14146: Zookeeper version not resolved in RefGuide (#1119) 2019-12-24 23:06:27 +01:00
Robert Muir 3ab59aa1c9 SOLR-14120: Solr Admin UI breaks when using IE11 2019-12-24 11:27:44 -08:00
Robert Muir b73e27d1ca SOLR-14144: add IP-based access control to securing solr page 2019-12-24 07:55:42 -08:00
Robert Muir b87e1f5843 SOLR-14143: add request logging to securing solr page 2019-12-24 06:46:29 -08:00
Robert Muir efd13f2884 SOLR-13984: docs, changes.txt 2019-12-24 06:41:14 -08:00
Robert Muir 126d6b7767
SOLR-13984: add (experimental, disabled by default) security manager support (#1082)
* SOLR-13984: add (experimental, disabled by default) security manager support.

User can set SOLR_SECURITY_MANAGER_ENABLED=true to enable security manager at runtime.

The current policy file used by tests is moved to solr/server
Additional permissions are granted for the filesystem locations set by bin/solr, and networking everywhere is enabled.

This takes advantage of the fact that permission entries are ignored if properties are not defined:
https://docs.oracle.com/javase/7/docs/technotes/guides/security/PolicyFiles.html#PropertyExp
2019-12-24 06:30:31 -08:00
Bruno Roustant 27840562a6
SOLR-14131: Add maxQueryLength option to DirectSolrSpellchecker.
Closes #1113
2019-12-24 15:05:00 +01:00
Robert Muir 72c99e921c
SOLR-14136: ip whitelist/blacklist via env vars (#1111)
SOLR-14136: ip whitelist/blacklist via env vars

This makes it easy to restrict access to Solr by IP. For example SOLR_IP_WHITELIST="127.0.0.1, 192.168.0.0/24, [::1], [2000:123:4:5::]/64" would restrict access to v4/v6 localhost, the 192.168.0 ipv4 network, and 2000:123:4:5 ipv6 network. Any other IP will receive a 403 response.

Blacklisting functionality can deny access to problematic addresses or networks that would otherwise be allowed. For example SOLR_IP_BLACKLIST="192.168.0.3, 192.168.0.4" would explicitly prevent those two specific addresses from accessing solr.
2019-12-23 19:26:11 -05:00
Nándor Mátravölgyi 1be5b68964 LUCENE-9091: UnifiedHighlighter HTML escaping should only
escape essentials
2019-12-23 17:20:48 -05:00
Robert Muir 403fd05646 SOLR-14138: changes.txt 2019-12-23 10:49:18 -08:00
Bruno Roustant 663bfe2d8b
LUCENE-9102: update changes.txt 2019-12-23 16:54:07 +01:00
Robert Muir 1425d6cbf8
SOLR-14138: enable request log via environ var, remove deprecated jetty class usage, respect SOLR_LOGS_DIR (#1110)
User can now set SOLR_REQUESTLOG_ENABLED=true to enable the jetty request log, instead of editing XML. The location of the request logs will respect SOLR_LOGS_DIR if that is set. The deprecated NCSARequestLog is no longer used, instead it uses CustomRequestLog with NCSA_FORMAT.
2019-12-23 10:37:31 -05:00
Andy Webb 45dce34316
LUCENE-9102: Add maxQueryLength option to DirectSpellchecker.
Closes #1103
2019-12-23 11:41:56 +01:00
noble db2b21a169 rvert unnecessary commits 2019-12-23 15:24:37 +11:00
Noble Paul ef15ae9805
SOLR-14125 : Streaming expressions to be loadable from packages (#1108)
SOLR-14125: Make <expressible> plugins work with packages
2019-12-23 15:20:26 +11:00
Michael Sokolov 93309e9728 LUCENE-8596: Treat hash mark as comment only at beginning of line in kuromoji
user dictionary. Via Masaru Hasegawa and Satoshi Kato
2019-12-21 14:09:40 -05:00
Tomas Fernandez Lobbe c4f68bdab9
SOLR-14095: Let the overseer use javabin to store responses in ZooKeeper (#1095)
The Overseer used java serialization to store command responses in ZooKeeper. This commit changes the code to use Javabin instead, while allowing Java serialization with a System property in case it's needed for compatibility
2019-12-20 14:55:01 -08:00
Cassandra Targett 53423462f2 Ref Guide: various little typos; clean up Solr CLI section on bin/solr export 2019-12-20 15:00:22 -06:00
Dawid Weiss 496b6b1d51 Follow-up to merge with master. 2019-12-20 17:38:04 +01:00
Dawid Weiss 5897b78572 Merge remote-tracking branch 'origin/master' into gradle-master 2019-12-20 17:35:40 +01:00
Andy Vuong e428628054 SOLR-14107: Ensure bin/solr -q/-v args work with -e/example (#1093)
Co-authored-by: Andy Vuong <andyvvv.101@gmail.com>
2019-12-20 11:31:16 -05:00
Robert Muir b7b6b0f3bf SOLR-14112: do not display load average of -1.00 on windows in admin UI 2019-12-20 05:42:00 -05:00
Mike Drob 1333bd10a7 SOLR-13190 Fix for failing test 2019-12-19 22:49:26 -06:00
Kevin Risden aab3c5faa3
SOLR-14106: Cleanup Jetty SslContextFactory usage
Jetty 9.4.16.v20190411 and up introduced separate
client and server SslContextFactory implementations.
This split requires the proper use of of
SslContextFactory in clients and server configs.

This fixes the following
* SSL with SOLR_SSL_NEED_CLIENT_AUTH not working since v8.2.0
* Http2SolrClient SSL not working in branch_8x

Signed-off-by: Kevin Risden <krisden@apache.org>
2019-12-19 23:05:47 -05:00
Chris Hostetter bc2770ebb8 SOLR-14128: SystemCollectionCompatTest - increase logging to aid in debuging future (jenkins) failures 2019-12-19 17:14:56 -07:00
Mike Drob 93585ba1d3 SOLR-13190 Surface Fuzzy term errors in Solr
Use newly added exceptions in Lucene for too complex fuzzy terms to
provide better error reporting for Solr queries.
2019-12-19 10:58:28 -06:00
Mike Drob a4c884a22f LUCENE-9098 Report bad term for fuzzy query
When a fuzzy query encounters a term that is too complex, the exception
should report the term instead of a cryptic message about too many
states.
2019-12-19 10:58:28 -06:00
Adrien Grand 907d1142fa LUCENE-9103: WANDScorer can miss some hits in some rare conditions. 2019-12-19 17:14:55 +01:00
Gus Heck 2f7276f935 Fix attribution 2019-12-19 10:50:37 -05:00
Jason Gerlowski 7cfa31b103 SOLR-14042: Fix varargs precommit warnings 2019-12-19 10:03:04 -05:00
iverase b1c6d7c0c3 Move changes entry to 8.4 2019-12-19 08:47:07 +01:00
Adrien Grand 868e41bc99 Minor improvements to the Solr changes. 2019-12-19 08:41:36 +01:00
Ishan Chattopadhyaya cbfa781fe3 SOLR-14108: Handle missing verify commands or missing default params in Package Manager 2019-12-19 10:38:34 +05:30
Robert Muir 7490bfd828 SOLR-14085: remove solr fork of lucene test securitymanager 2019-12-18 23:06:31 -05:00
Chris Hostetter d30f90e349 SOLR-14099: expanded comment on static final variable based on followup questions in Jira from Dawid 2019-12-18 16:36:34 -07:00
Matthias Krueger 1e5100d5a5
SOLR-14091: Removing deprecated configuration of Jetty's soLingerTime option
Signed-off-by: Kevin Risden <krisden@apache.org>
2019-12-18 17:24:43 -05:00
Cassandra Targett fc2fbb2f7e SOLR-13662: Improvements for Ref Guide package-manager.adoc 2019-12-18 09:28:16 -06:00
Dawid Weiss 206d62b9d5 Merge remote-tracking branch 'origin/master' into gradle-master 2019-12-18 15:10:04 +01:00
Robert Muir 56839f6ace SOLR-13983: remove or replace process execution in SystemInfoHandler 2019-12-18 09:03:07 -05:00
Dawid Weiss 7c762c969a Allow simultaneous call to sha regeneration and validation by introducing soft ordering constraint. 2019-12-18 14:54:13 +01:00
Dawid Weiss d2d28329ef Changed license checksum regeneration task name to updateLicenses. 2019-12-18 14:14:39 +01:00
Robert Muir 612cba38ca SOLR-14110: sandbox javax.script usage in tests 2019-12-18 06:30:24 -05:00
Dawid Weiss 2e453afa28 Merge tika upgrade monster-patch. commons-csv excluded from gradle. 2019-12-18 09:51:57 +01:00
Dawid Weiss 28b19c2af2 Merge with master. 2019-12-18 09:32:35 +01:00
Dawid Weiss 71a5714e29 SOLR-14103: remove extra unused dependencies (jersey-core, jersey-server, netty-all). 2019-12-18 09:18:32 +01:00