[jira] [Resolved] (OAK-10811) oak-search-elastic: reduce contention in IndexTracker
[ https://issues.apache.org/jira/browse/OAK-10811?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10811. Fix Version/s: 1.66.0 Resolution: Fixed > oak-search-elastic: reduce contention in IndexTracker > - > > Key: OAK-10811 > URL: https://issues.apache.org/jira/browse/OAK-10811 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.66.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10811) oak-search-elastic: reduce contention in IndexTracker
Fabrizio Fortino created OAK-10811: -- Summary: oak-search-elastic: reduce contention in IndexTracker Key: OAK-10811 URL: https://issues.apache.org/jira/browse/OAK-10811 Project: Jackrabbit Oak Issue Type: Improvement Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10800) DictionaryCompoundWordTokenFilter not supported in Elastic
[ https://issues.apache.org/jira/browse/OAK-10800?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10800. Fix Version/s: 1.64.0 Resolution: Fixed > DictionaryCompoundWordTokenFilter not supported in Elastic > -- > > Key: OAK-10800 > URL: https://issues.apache.org/jira/browse/OAK-10800 > Project: Jackrabbit Oak > Issue Type: Bug > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Minor > Fix For: 1.64.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10800) DictionaryCompoundWordTokenFilter not supported in Elastic
Fabrizio Fortino created OAK-10800: -- Summary: DictionaryCompoundWordTokenFilter not supported in Elastic Key: OAK-10800 URL: https://issues.apache.org/jira/browse/OAK-10800 Project: Jackrabbit Oak Issue Type: Bug Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10782) oak-search-elastic: query getSize() can lock writes when is called before an update
[ https://issues.apache.org/jira/browse/OAK-10782?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10782. Fix Version/s: 1.64.0 Resolution: Fixed > oak-search-elastic: query getSize() can lock writes when is called before an > update > --- > > Key: OAK-10782 > URL: https://issues.apache.org/jira/browse/OAK-10782 > Project: Jackrabbit Oak > Issue Type: Bug > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Critical > Fix For: 1.64.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10782) oak-search-elastic: query getSize() can lock writes when is called before an update
Fabrizio Fortino created OAK-10782: -- Summary: oak-search-elastic: query getSize() can lock writes when is called before an update Key: OAK-10782 URL: https://issues.apache.org/jira/browse/OAK-10782 Project: Jackrabbit Oak Issue Type: Bug Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10762) oak-search-elastic: similarity queries produce not relevant results when uses similarTags
[ https://issues.apache.org/jira/browse/OAK-10762?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10762. Fix Version/s: 1.64.0 Resolution: Fixed > oak-search-elastic: similarity queries produce not relevant results when uses > similarTags > - > > Key: OAK-10762 > URL: https://issues.apache.org/jira/browse/OAK-10762 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.64.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10774) Remove oak-search-mt module from Jenkinsfile
[ https://issues.apache.org/jira/browse/OAK-10774?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10774. Fix Version/s: 1.64.0 Resolution: Fixed > Remove oak-search-mt module from Jenkinsfile > > > Key: OAK-10774 > URL: https://issues.apache.org/jira/browse/OAK-10774 > Project: Jackrabbit Oak > Issue Type: Task > Components: search-mt >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.64.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10579) Bump elasticsearch version to 8.11.3
[ https://issues.apache.org/jira/browse/OAK-10579?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10579. Fix Version/s: 1.64.0 Resolution: Fixed > Bump elasticsearch version to 8.11.3 > > > Key: OAK-10579 > URL: https://issues.apache.org/jira/browse/OAK-10579 > Project: Jackrabbit Oak > Issue Type: Task > Components: search, search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.64.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10769) Bump elasticsearch version to 8.13.2 / lucene 9.10.0
[ https://issues.apache.org/jira/browse/OAK-10769?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10769. Fix Version/s: 1.64.0 Resolution: Fixed > Bump elasticsearch version to 8.13.2 / lucene 9.10.0 > > > Key: OAK-10769 > URL: https://issues.apache.org/jira/browse/OAK-10769 > Project: Jackrabbit Oak > Issue Type: Task > Components: search, search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Labels: candidate_oak_1_22 > Fix For: 1.64.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10774) Remove oak-search-mt module from Jenkinsfile
Fabrizio Fortino created OAK-10774: -- Summary: Remove oak-search-mt module from Jenkinsfile Key: OAK-10774 URL: https://issues.apache.org/jira/browse/OAK-10774 Project: Jackrabbit Oak Issue Type: Task Components: search-mt Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10769) Bump elasticsearch version to 8.13.2 / lucene 9.10.0
[ https://issues.apache.org/jira/browse/OAK-10769?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10769: --- Summary: Bump elasticsearch version to 8.13.2 / lucene 9.10.0 (was: Bump elasticsearch version to 8.13.2) > Bump elasticsearch version to 8.13.2 / lucene 9.10.0 > > > Key: OAK-10769 > URL: https://issues.apache.org/jira/browse/OAK-10769 > Project: Jackrabbit Oak > Issue Type: Task > Components: search, search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (OAK-10769) Bump elasticsearch version to 8.13.2
[ https://issues.apache.org/jira/browse/OAK-10769?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17838704#comment-17838704 ] Fabrizio Fortino commented on OAK-10769: Needed to fix the following vulnerability: * *CVE-2023-4043* in version 1.0.0 (CVSS 7.5 High): In Eclipse Parsson before versions 1.1.4 and 1.0.5, Parsing JSON from untrusted sources can lead malicious actors to exploit the fact that the built-in support for parsing numbers with large scale in Java has a number of edge cases where the input text of a number can lead to much larger processing time than one would expect. To mitigate the risk, parsson put in place a size limit for the numbers as well as their scale. > Bump elasticsearch version to 8.13.2 > > > Key: OAK-10769 > URL: https://issues.apache.org/jira/browse/OAK-10769 > Project: Jackrabbit Oak > Issue Type: Task > Components: search, search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10769) Bump elasticsearch version to 8.13.2
Fabrizio Fortino created OAK-10769: -- Summary: Bump elasticsearch version to 8.13.2 Key: OAK-10769 URL: https://issues.apache.org/jira/browse/OAK-10769 Project: Jackrabbit Oak Issue Type: Task Components: search, search-elastic Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10762) oak-search-elastic: similarity queries produce not relevant results when uses similarTags
Fabrizio Fortino created OAK-10762: -- Summary: oak-search-elastic: similarity queries produce not relevant results when uses similarTags Key: OAK-10762 URL: https://issues.apache.org/jira/browse/OAK-10762 Project: Jackrabbit Oak Issue Type: Improvement Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10375) Binary data in logs related to the haystack property
[ https://issues.apache.org/jira/browse/OAK-10375?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10375. Fix Version/s: 1.62.0 Resolution: Fixed > Binary data in logs related to the haystack property > > > Key: OAK-10375 > URL: https://issues.apache.org/jira/browse/OAK-10375 > Project: Jackrabbit Oak > Issue Type: Bug > Components: indexing >Reporter: Nuno Santos >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.62.0 > > > When indexing documents with the {{haystack0}} property, some log messages > contain the binary data of the property. In the log below, I replaced the > binary data by {{{}{}}}, but it is usually very > long. > {noformat} > 16:30:40.107 [main] ERROR o.a.j.o.p.i.l.LuceneDocumentMaker - could not index > similarity field for property > haystack0 = > and definition > PropertyDefinition\{name='jcr:content/metadata/imageFeatures/haystack0', > propertyType=0, boost=1.0, isRegexp=false, index=true, stored=false, > nodeScopeIndex=true, propertyIndex=true, analyzed=false, ordered=false, > useInSuggest=false, useInSimilarity=true, nullCheckEnabled=false, > notNullCheckEnabled=false, function=null} > {noformat} > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Assigned] (OAK-10375) Binary data in logs related to the haystack property
[ https://issues.apache.org/jira/browse/OAK-10375?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino reassigned OAK-10375: -- Assignee: Fabrizio Fortino > Binary data in logs related to the haystack property > > > Key: OAK-10375 > URL: https://issues.apache.org/jira/browse/OAK-10375 > Project: Jackrabbit Oak > Issue Type: Bug > Components: indexing >Reporter: Nuno Santos >Assignee: Fabrizio Fortino >Priority: Major > > When indexing documents with the {{haystack0}} property, some log messages > contain the binary data of the property. In the log below, I replaced the > binary data by {{{}{}}}, but it is usually very > long. > {noformat} > 16:30:40.107 [main] ERROR o.a.j.o.p.i.l.LuceneDocumentMaker - could not index > similarity field for property > haystack0 = > and definition > PropertyDefinition\{name='jcr:content/metadata/imageFeatures/haystack0', > propertyType=0, boost=1.0, isRegexp=false, index=true, stored=false, > nodeScopeIndex=true, propertyIndex=true, analyzed=false, ordered=false, > useInSuggest=false, useInSimilarity=true, nullCheckEnabled=false, > notNullCheckEnabled=false, function=null} > {noformat} > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10546) Tika 1.28.5 references a vulnerable Guava version
[ https://issues.apache.org/jira/browse/OAK-10546?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10546. Resolution: Won't Do The linked PR won't be enough to fix the issue that will be addressed by https://issues.apache.org/jira/browse/OAK-9752. > Tika 1.28.5 references a vulnerable Guava version > - > > Key: OAK-10546 > URL: https://issues.apache.org/jira/browse/OAK-10546 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: oak-examples, oak-run, oak-search-elastic, oak-solr-core >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > > Guava 31.1 has a critical vulnerability [0]. It is included as a transient > dependency of Tika 1.28.5 [1]. This is the latest 1.x available release of > Tika. Being EOL it won't receive any security-related updates [2]. > The work to upgrade to Tika 2.x would require some time. > If possible, we should find an alternative solution to avoid including this > vulnerable dependency. > [0] [https://www.opencve.io/cve/CVE-2023-2976] > [1] [https://mvnrepository.com/artifact/org.apache.tika/tika-parsers/1.28.5] > [2] [https://lists.apache.org/thread/yq6n7o01kw544dvj1jsoqk29g6yqjkp3] -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10640) docs: fix external link on lucene multi words synonyms
[ https://issues.apache.org/jira/browse/OAK-10640?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10640. Fix Version/s: 1.62.0 Resolution: Fixed > docs: fix external link on lucene multi words synonyms > --- > > Key: OAK-10640 > URL: https://issues.apache.org/jira/browse/OAK-10640 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: docs, search >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.62.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10672) Move internal index version in oak-search
[ https://issues.apache.org/jira/browse/OAK-10672?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10672. Fix Version/s: 1.62.0 Resolution: Fixed > Move internal index version in oak-search > - > > Key: OAK-10672 > URL: https://issues.apache.org/jira/browse/OAK-10672 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.62.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10672) Move internal index version in oak-search
Fabrizio Fortino created OAK-10672: -- Summary: Move internal index version in oak-search Key: OAK-10672 URL: https://issues.apache.org/jira/browse/OAK-10672 Project: Jackrabbit Oak Issue Type: Improvement Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10661) oak-search-elastic: remove workaround for elastic/elasticsearch-java/issues/404
[ https://issues.apache.org/jira/browse/OAK-10661?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10661. Fix Version/s: 1.62.0 Resolution: Fixed > oak-search-elastic: remove workaround for > elastic/elasticsearch-java/issues/404 > --- > > Key: OAK-10661 > URL: https://issues.apache.org/jira/browse/OAK-10661 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: search, search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.62.0 > > > https://github.com/elastic/elasticsearch-java/issues/404 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10661) oak-search-elastic: remove workaround for elastic/elasticsearch-java/issues/404
Fabrizio Fortino created OAK-10661: -- Summary: oak-search-elastic: remove workaround for elastic/elasticsearch-java/issues/404 Key: OAK-10661 URL: https://issues.apache.org/jira/browse/OAK-10661 Project: Jackrabbit Oak Issue Type: Improvement Components: search, search-elastic Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino https://github.com/elastic/elasticsearch-java/issues/404 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10640) docs: fix external link on lucene multi words synonyms
Fabrizio Fortino created OAK-10640: -- Summary: docs: fix external link on lucene multi words synonyms Key: OAK-10640 URL: https://issues.apache.org/jira/browse/OAK-10640 Project: Jackrabbit Oak Issue Type: Improvement Components: docs, search Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10599) oak-search-elastic: improve aggregations support
[ https://issues.apache.org/jira/browse/OAK-10599?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10599. Fix Version/s: 1.62.0 Resolution: Fixed > oak-search-elastic: improve aggregations support > > > Key: OAK-10599 > URL: https://issues.apache.org/jira/browse/OAK-10599 > Project: Jackrabbit Oak > Issue Type: Task > Components: elastic-search >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.62.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10617) oak-search-elastic: potential deadlock with includePathRestrictions=false and multiple filtered results
[ https://issues.apache.org/jira/browse/OAK-10617?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10617. Fix Version/s: 1.62.0 Resolution: Fixed > oak-search-elastic: potential deadlock with includePathRestrictions=false and > multiple filtered results > --- > > Key: OAK-10617 > URL: https://issues.apache.org/jira/browse/OAK-10617 > Project: Jackrabbit Oak > Issue Type: Bug > Components: search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.62.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10617) oak-search-elastic: potential deadlock with includePathRestrictions=false and multiple filtered results
Fabrizio Fortino created OAK-10617: -- Summary: oak-search-elastic: potential deadlock with includePathRestrictions=false and multiple filtered results Key: OAK-10617 URL: https://issues.apache.org/jira/browse/OAK-10617 Project: Jackrabbit Oak Issue Type: Bug Components: search-elastic Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10599) oak-search-elastic: improve aggregations support
Fabrizio Fortino created OAK-10599: -- Summary: oak-search-elastic: improve aggregations support Key: OAK-10599 URL: https://issues.apache.org/jira/browse/OAK-10599 Project: Jackrabbit Oak Issue Type: Task Components: elastic-search Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10579) Bump elasticsearch version to 8.11.3
[ https://issues.apache.org/jira/browse/OAK-10579?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10579: --- Summary: Bump elasticsearch version to 8.11.3 (was: Bump elasticsearch version to 8.11.2) > Bump elasticsearch version to 8.11.3 > > > Key: OAK-10579 > URL: https://issues.apache.org/jira/browse/OAK-10579 > Project: Jackrabbit Oak > Issue Type: Task > Components: search, search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10579) Bump elasticsearch version to 8.11.2
Fabrizio Fortino created OAK-10579: -- Summary: Bump elasticsearch version to 8.11.2 Key: OAK-10579 URL: https://issues.apache.org/jira/browse/OAK-10579 Project: Jackrabbit Oak Issue Type: Task Components: search, search-elastic Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino Fix For: 1.60.0 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10579) Bump elasticsearch version to 8.11.2
[ https://issues.apache.org/jira/browse/OAK-10579?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10579: --- Fix Version/s: (was: 1.60.0) > Bump elasticsearch version to 8.11.2 > > > Key: OAK-10579 > URL: https://issues.apache.org/jira/browse/OAK-10579 > Project: Jackrabbit Oak > Issue Type: Task > Components: search, search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10576) oak-search-elastic: dynamicBoost should match only on full text queries on all fields (* or .)
[ https://issues.apache.org/jira/browse/OAK-10576?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10576. Fix Version/s: 1.62.0 Resolution: Fixed > oak-search-elastic: dynamicBoost should match only on full text queries on > all fields (* or .) > -- > > Key: OAK-10576 > URL: https://issues.apache.org/jira/browse/OAK-10576 > Project: Jackrabbit Oak > Issue Type: Bug > Components: elastic-search >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.62.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10576) oak-search-elastic: dynamicBoost should match only on full text queries on all fields (* or .)
Fabrizio Fortino created OAK-10576: -- Summary: oak-search-elastic: dynamicBoost should match only on full text queries on all fields (* or .) Key: OAK-10576 URL: https://issues.apache.org/jira/browse/OAK-10576 Project: Jackrabbit Oak Issue Type: Bug Components: elastic-search Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10539) oak-search-elastic: migrate ingestion from Rest High Level Client to the new Java API Client
[ https://issues.apache.org/jira/browse/OAK-10539?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10539. Resolution: Fixed > oak-search-elastic: migrate ingestion from Rest High Level Client to the new > Java API Client > > > Key: OAK-10539 > URL: https://issues.apache.org/jira/browse/OAK-10539 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10569) Flaky test: ElasticOrderByTest
[ https://issues.apache.org/jira/browse/OAK-10569?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10569. Fix Version/s: 1.60.0 Resolution: Fixed > Flaky test: ElasticOrderByTest > -- > > Key: OAK-10569 > URL: https://issues.apache.org/jira/browse/OAK-10569 > Project: Jackrabbit Oak > Issue Type: Task > Components: search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10569) Flaky test: ElasticOrderByTest
Fabrizio Fortino created OAK-10569: -- Summary: Flaky test: ElasticOrderByTest Key: OAK-10569 URL: https://issues.apache.org/jira/browse/OAK-10569 Project: Jackrabbit Oak Issue Type: Task Components: search-elastic Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10568) ElasticIndexProviderServiceTest should support key-based authentication
[ https://issues.apache.org/jira/browse/OAK-10568?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10568. Fix Version/s: 1.60.0 Resolution: Fixed > ElasticIndexProviderServiceTest should support key-based authentication > --- > > Key: OAK-10568 > URL: https://issues.apache.org/jira/browse/OAK-10568 > Project: Jackrabbit Oak > Issue Type: Task > Components: search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10568) ElasticIndexProviderServiceTest should support key-based authentication
Fabrizio Fortino created OAK-10568: -- Summary: ElasticIndexProviderServiceTest should support key-based authentication Key: OAK-10568 URL: https://issues.apache.org/jira/browse/OAK-10568 Project: Jackrabbit Oak Issue Type: Task Components: search-elastic Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10564) FunctionIndexCommonTest is flaky
[ https://issues.apache.org/jira/browse/OAK-10564?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10564. Fix Version/s: 1.60.0 Resolution: Fixed > FunctionIndexCommonTest is flaky > > > Key: OAK-10564 > URL: https://issues.apache.org/jira/browse/OAK-10564 > Project: Jackrabbit Oak > Issue Type: Task > Components: oak-search >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10564) FunctionIndexCommonTest is flaky
Fabrizio Fortino created OAK-10564: -- Summary: FunctionIndexCommonTest is flaky Key: OAK-10564 URL: https://issues.apache.org/jira/browse/OAK-10564 Project: Jackrabbit Oak Issue Type: Task Components: oak-search Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10558) ElasticReliabilityTest is flaky
[ https://issues.apache.org/jira/browse/OAK-10558?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10558. Fix Version/s: 1.60.0 Resolution: Fixed > ElasticReliabilityTest is flaky > --- > > Key: OAK-10558 > URL: https://issues.apache.org/jira/browse/OAK-10558 > Project: Jackrabbit Oak > Issue Type: Task > Components: elastic-search >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > > ElasticReliabilityTest has become flaky lately. This might be related to the > recent removal of the RHLC (https://issues.apache.org/jira/browse/OAK-10539). > > We are going to: > * Ignore the test for the time being to avoid CI failures > * Investigate failure reasons and fix the underlying problem > * Re-enable test -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10558) ElasticReliabilityTest is flaky
Fabrizio Fortino created OAK-10558: -- Summary: ElasticReliabilityTest is flaky Key: OAK-10558 URL: https://issues.apache.org/jira/browse/OAK-10558 Project: Jackrabbit Oak Issue Type: Task Components: elastic-search Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino ElasticReliabilityTest has become flaky lately. This might be related to the recent removal of the RHLC (https://issues.apache.org/jira/browse/OAK-10539). We are going to: * Ignore the test for the time being to avoid CI failures * Investigate failure reasons and fix the underlying problem * Re-enable test -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10555) Bump elasticsearch version to 8.11.1
[ https://issues.apache.org/jira/browse/OAK-10555?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10555. Fix Version/s: 1.60.0 Resolution: Fixed > Bump elasticsearch version to 8.11.1 > > > Key: OAK-10555 > URL: https://issues.apache.org/jira/browse/OAK-10555 > Project: Jackrabbit Oak > Issue Type: Task > Components: search, search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10555) Bump elasticsearch version to 8.11.1
[ https://issues.apache.org/jira/browse/OAK-10555?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10555: --- Fix Version/s: (was: 1.44.0) > Bump elasticsearch version to 8.11.1 > > > Key: OAK-10555 > URL: https://issues.apache.org/jira/browse/OAK-10555 > Project: Jackrabbit Oak > Issue Type: Task > Components: search, search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10553) Improve statistical facets in oak-search-elastic
[ https://issues.apache.org/jira/browse/OAK-10553?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10553. Fix Version/s: 1.60.0 Resolution: Fixed > Improve statistical facets in oak-search-elastic > > > Key: OAK-10553 > URL: https://issues.apache.org/jira/browse/OAK-10553 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: elastic-search, indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-9784) Disable geoIpDownloader in ES tests
[ https://issues.apache.org/jira/browse/OAK-9784?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-9784. --- Fix Version/s: 1.60.0 Resolution: Fixed > Disable geoIpDownloader in ES tests > --- > > Key: OAK-9784 > URL: https://issues.apache.org/jira/browse/OAK-9784 > Project: Jackrabbit Oak > Issue Type: Task > Components: search, search-elastic >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10555) Bump elasticsearch version to 8.11.1
Fabrizio Fortino created OAK-10555: -- Summary: Bump elasticsearch version to 8.11.1 Key: OAK-10555 URL: https://issues.apache.org/jira/browse/OAK-10555 Project: Jackrabbit Oak Issue Type: Task Components: search, search-elastic Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino Fix For: 1.44.0 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10552) oak-solr-osgi fails on Java 17
[ https://issues.apache.org/jira/browse/OAK-10552?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10552. Fix Version/s: 1.60.0 Resolution: Fixed > oak-solr-osgi fails on Java 17 > --- > > Key: OAK-10552 > URL: https://issues.apache.org/jira/browse/OAK-10552 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Minor > Fix For: 1.60.0 > > > {code:java} > [ERROR] Manifest org.apache.jackrabbit:oak-solr-osgi:bundle:1.59-SNAPSHOT : > Got unexpected exception while > analyzing:org.apache.felix.scrplugin.SCRDescriptorException: Unable to scan > class files: com.fasterxml.jackson.core.io.doubleparser.FastDoubleSwar (Class > file format probably not supported by ASM ?) > at > org.apache.felix.scrplugin.helper.ClassScanner.processClass(ClassScanner.java:229) > at > org.apache.felix.scrplugin.helper.ClassScanner.process(ClassScanner.java:169) > at > org.apache.felix.scrplugin.helper.ClassScanner.scanSources(ClassScanner.java:146) > at > org.apache.felix.scrplugin.SCRDescriptorGenerator.execute(SCRDescriptorGenerator.java:146) > at > org.apache.felix.scrplugin.bnd.SCRDescriptorBndPlugin.analyzeJar(SCRDescriptorBndPlugin.java:179) > at aQute.bnd.osgi.Analyzer.doPlugins(Analyzer.java:992) > at aQute.bnd.osgi.Analyzer.analyze(Analyzer.java:208) > at aQute.bnd.osgi.Builder.analyze(Builder.java:444) > at aQute.bnd.osgi.Analyzer.calcManifest(Analyzer.java:1035) > at aQute.bnd.osgi.Builder.build(Builder.java:127) > at > org.apache.felix.bundleplugin.ManifestPlugin.getAnalyzer(ManifestPlugin.java:321) > at > org.apache.felix.bundleplugin.ManifestPlugin.execute(ManifestPlugin.java:125) > at > org.apache.felix.bundleplugin.BundlePlugin.execute(BundlePlugin.java:380) > at > org.apache.maven.plugin.DefaultBuildPluginManager.executeMojo(DefaultBuildPluginManager.java:126) > at > org.apache.maven.lifecycle.internal.MojoExecutor.doExecute2(MojoExecutor.java:342) > at > org.apache.maven.lifecycle.internal.MojoExecutor.doExecute(MojoExecutor.java:330) > at > org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:213) > at > org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:175) > at > org.apache.maven.lifecycle.internal.MojoExecutor.access$000(MojoExecutor.java:76) > at > org.apache.maven.lifecycle.internal.MojoExecutor$1.run(MojoExecutor.java:163) > at > org.apache.maven.plugin.DefaultMojosExecutionStrategy.execute(DefaultMojosExecutionStrategy.java:39) > at > org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:160) > at > org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject(LifecycleModuleBuilder.java:105) > at > org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject(LifecycleModuleBuilder.java:73) > at > org.apache.maven.lifecycle.internal.builder.singlethreaded.SingleThreadedBuilder.build(SingleThreadedBuilder.java:53) > at > org.apache.maven.lifecycle.internal.LifecycleStarter.execute(LifecycleStarter.java:118) > at org.apache.maven.DefaultMaven.doExecute(DefaultMaven.java:261) > at org.apache.maven.DefaultMaven.doExecute(DefaultMaven.java:173) > at org.apache.maven.DefaultMaven.execute(DefaultMaven.java:101) > at org.apache.maven.cli.MavenCli.execute(MavenCli.java:827) > at org.apache.maven.cli.MavenCli.doMain(MavenCli.java:272) > at org.apache.maven.cli.MavenCli.main(MavenCli.java:195) > at > java.base/jdk.internal.reflect.DirectMethodHandleAccessor.invoke(DirectMethodHandleAccessor.java:103) > at java.base/java.lang.reflect.Method.invoke(Method.java:580) > at > org.codehaus.plexus.classworlds.launcher.Launcher.launchEnhanced(Launcher.java:282) > at > org.codehaus.plexus.classworlds.launcher.Launcher.launch(Launcher.java:225) > at > org.codehaus.plexus.classworlds.launcher.Launcher.mainWithExitCode(Launcher.java:406) > at > org.codehaus.plexus.classworlds.launcher.Launcher.main(Launcher.java:347) > Caused by: java.lang.IllegalArgumentException: Unsupported class file major > version 63 > at org.objectweb.asm.ClassReader.(ClassReader.java:195) > at org.objectweb.asm.ClassReader.(ClassReader.java:176) > at org.objectweb.asm.ClassReader.(ClassReader.java:162) > at org.objectweb.asm.ClassReader.(ClassReader.java:283) > at > org.apache.felix.scrplugin.helper.ClassScanner.processClass(ClassScanner.java:209) > ... 37 more {code} -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10553) Improve statistical facets in oak-search-elastic
Fabrizio Fortino created OAK-10553: -- Summary: Improve statistical facets in oak-search-elastic Key: OAK-10553 URL: https://issues.apache.org/jira/browse/OAK-10553 Project: Jackrabbit Oak Issue Type: Improvement Components: elastic-search, indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10552) oak-solr-osgi fails on Java 17
[ https://issues.apache.org/jira/browse/OAK-10552?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10552: --- Description: {code:java} [ERROR] Manifest org.apache.jackrabbit:oak-solr-osgi:bundle:1.59-SNAPSHOT : Got unexpected exception while analyzing:org.apache.felix.scrplugin.SCRDescriptorException: Unable to scan class files: com.fasterxml.jackson.core.io.doubleparser.FastDoubleSwar (Class file format probably not supported by ASM ?) at org.apache.felix.scrplugin.helper.ClassScanner.processClass(ClassScanner.java:229) at org.apache.felix.scrplugin.helper.ClassScanner.process(ClassScanner.java:169) at org.apache.felix.scrplugin.helper.ClassScanner.scanSources(ClassScanner.java:146) at org.apache.felix.scrplugin.SCRDescriptorGenerator.execute(SCRDescriptorGenerator.java:146) at org.apache.felix.scrplugin.bnd.SCRDescriptorBndPlugin.analyzeJar(SCRDescriptorBndPlugin.java:179) at aQute.bnd.osgi.Analyzer.doPlugins(Analyzer.java:992) at aQute.bnd.osgi.Analyzer.analyze(Analyzer.java:208) at aQute.bnd.osgi.Builder.analyze(Builder.java:444) at aQute.bnd.osgi.Analyzer.calcManifest(Analyzer.java:1035) at aQute.bnd.osgi.Builder.build(Builder.java:127) at org.apache.felix.bundleplugin.ManifestPlugin.getAnalyzer(ManifestPlugin.java:321) at org.apache.felix.bundleplugin.ManifestPlugin.execute(ManifestPlugin.java:125) at org.apache.felix.bundleplugin.BundlePlugin.execute(BundlePlugin.java:380) at org.apache.maven.plugin.DefaultBuildPluginManager.executeMojo(DefaultBuildPluginManager.java:126) at org.apache.maven.lifecycle.internal.MojoExecutor.doExecute2(MojoExecutor.java:342) at org.apache.maven.lifecycle.internal.MojoExecutor.doExecute(MojoExecutor.java:330) at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:213) at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:175) at org.apache.maven.lifecycle.internal.MojoExecutor.access$000(MojoExecutor.java:76) at org.apache.maven.lifecycle.internal.MojoExecutor$1.run(MojoExecutor.java:163) at org.apache.maven.plugin.DefaultMojosExecutionStrategy.execute(DefaultMojosExecutionStrategy.java:39) at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:160) at org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject(LifecycleModuleBuilder.java:105) at org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject(LifecycleModuleBuilder.java:73) at org.apache.maven.lifecycle.internal.builder.singlethreaded.SingleThreadedBuilder.build(SingleThreadedBuilder.java:53) at org.apache.maven.lifecycle.internal.LifecycleStarter.execute(LifecycleStarter.java:118) at org.apache.maven.DefaultMaven.doExecute(DefaultMaven.java:261) at org.apache.maven.DefaultMaven.doExecute(DefaultMaven.java:173) at org.apache.maven.DefaultMaven.execute(DefaultMaven.java:101) at org.apache.maven.cli.MavenCli.execute(MavenCli.java:827) at org.apache.maven.cli.MavenCli.doMain(MavenCli.java:272) at org.apache.maven.cli.MavenCli.main(MavenCli.java:195) at java.base/jdk.internal.reflect.DirectMethodHandleAccessor.invoke(DirectMethodHandleAccessor.java:103) at java.base/java.lang.reflect.Method.invoke(Method.java:580) at org.codehaus.plexus.classworlds.launcher.Launcher.launchEnhanced(Launcher.java:282) at org.codehaus.plexus.classworlds.launcher.Launcher.launch(Launcher.java:225) at org.codehaus.plexus.classworlds.launcher.Launcher.mainWithExitCode(Launcher.java:406) at org.codehaus.plexus.classworlds.launcher.Launcher.main(Launcher.java:347) Caused by: java.lang.IllegalArgumentException: Unsupported class file major version 63 at org.objectweb.asm.ClassReader.(ClassReader.java:195) at org.objectweb.asm.ClassReader.(ClassReader.java:176) at org.objectweb.asm.ClassReader.(ClassReader.java:162) at org.objectweb.asm.ClassReader.(ClassReader.java:283) at org.apache.felix.scrplugin.helper.ClassScanner.processClass(ClassScanner.java:209) ... 37 more {code} > oak-solr-osgi fails on Java 17 > --- > > Key: OAK-10552 > URL: https://issues.apache.org/jira/browse/OAK-10552 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Minor > > {code:java} > [ERROR] Manifest org.apache.jackrabbit:oak-solr-osgi:bundle:1.59-SNAPSHOT : > Got unexpected exception while > analyzing:org.apache.felix.scrplugin.SCRDescriptorException: Unable to scan > class files: com.fasterxml.jackson.core.io.doubleparser.FastDoubleSwar (Class > file format probably not supported by ASM ?) > at >
[jira] [Created] (OAK-10552) oak-solr-osgi fails on Java 17
Fabrizio Fortino created OAK-10552: -- Summary: oak-solr-osgi fails on Java 17 Key: OAK-10552 URL: https://issues.apache.org/jira/browse/OAK-10552 Project: Jackrabbit Oak Issue Type: Task Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10548) oak-solr-osgi embeds vulnerable Zookeeper 3.4.14
[ https://issues.apache.org/jira/browse/OAK-10548?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10548. Fix Version/s: 1.60.0 Resolution: Fixed > oak-solr-osgi embeds vulnerable Zookeeper 3.4.14 > > > Key: OAK-10548 > URL: https://issues.apache.org/jira/browse/OAK-10548 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > > This artifact embeds Apache ZooKeeper 3.4.14 which contains the following > vulnerability: > * *CVE-2023-44981:* Authorization Bypass Through User-Controlled Key > vulnerability in Apache ZooKeeper. If SASL Quorum Peer authentication is > enabled in ZooKeeper (quorum.auth.enableSasl=true), the authorization is done > by verifying that the instance part in SASL authentication ID is listed in > zoo.cfg server list. The instance part in SASL auth ID is optional and if > it's missing, like 'e...@example.com', the authorization check will be > skipped. As a result an arbitrary endpoint could join the cluster and begin > propagating counterfeit changes to the leader, essentially giving it complete > read-write access to the data tree. Quorum Peer authentication is not enabled > by default. Users are recommended to upgrade to version 3.9.1, 3.8.3, 3.7.2, > which fixes the issue. Alternately ensure the ensemble election/quorum > communication is protected by a firewall as this will mitigate the issue. See > the documentation for more details on correct cluster administration. > https://www.opencve.io/cve/CVE-2023-44981 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10550) Include oak-search-elastic in oak-it-osgi
[ https://issues.apache.org/jira/browse/OAK-10550?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10550. Fix Version/s: 1.60.0 Resolution: Fixed > Include oak-search-elastic in oak-it-osgi > - > > Key: OAK-10550 > URL: https://issues.apache.org/jira/browse/OAK-10550 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10539) oak-search-elastic: migrate ingestion from Rest High Level Client to the new Java API Client
[ https://issues.apache.org/jira/browse/OAK-10539?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10539. Resolution: Fixed > oak-search-elastic: migrate ingestion from Rest High Level Client to the new > Java API Client > > > Key: OAK-10539 > URL: https://issues.apache.org/jira/browse/OAK-10539 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10550) Include oak-search-elastic in oak-it-osgi
Fabrizio Fortino created OAK-10550: -- Summary: Include oak-search-elastic in oak-it-osgi Key: OAK-10550 URL: https://issues.apache.org/jira/browse/OAK-10550 Project: Jackrabbit Oak Issue Type: Task Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10539) oak-search-elastic: migrate ingestion from Rest High Level Client to the new Java API Client
[ https://issues.apache.org/jira/browse/OAK-10539?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10539. Fix Version/s: 1.60.0 Resolution: Fixed > oak-search-elastic: migrate ingestion from Rest High Level Client to the new > Java API Client > > > Key: OAK-10539 > URL: https://issues.apache.org/jira/browse/OAK-10539 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10548) oak-solr-osgi embeds vulnerable Zookeeper 3.4.14
[ https://issues.apache.org/jira/browse/OAK-10548?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10548: --- Description: This artifact embeds Apache ZooKeeper 3.4.14 which contains the following vulnerability: * *CVE-2023-44981:* Authorization Bypass Through User-Controlled Key vulnerability in Apache ZooKeeper. If SASL Quorum Peer authentication is enabled in ZooKeeper (quorum.auth.enableSasl=true), the authorization is done by verifying that the instance part in SASL authentication ID is listed in zoo.cfg server list. The instance part in SASL auth ID is optional and if it's missing, like 'e...@example.com', the authorization check will be skipped. As a result an arbitrary endpoint could join the cluster and begin propagating counterfeit changes to the leader, essentially giving it complete read-write access to the data tree. Quorum Peer authentication is not enabled by default. Users are recommended to upgrade to version 3.9.1, 3.8.3, 3.7.2, which fixes the issue. Alternately ensure the ensemble election/quorum communication is protected by a firewall as this will mitigate the issue. See the documentation for more details on correct cluster administration. https://www.opencve.io/cve/CVE-2023-44981 was: This artifact embeds Apache ZooKeeper 3.4.10 which contains the following vulnerabilitie(s): * *BDSA-2013-0048* in version 3.4.10 (CVSS 7.5 High): Apache ZooKeeper contains an information disclosure vulnerability due to a missing permission check within the `getACL` command. An attacker could exploit this to obtain hashes for authentication, if Digest Authentication is in use. * *CVE-2020-10663* in version 3.4.10 (CVSS 7.5 High): The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269, but does not rely on poor garbage-collection behavior within Ruby. Specifically, use of JSON parsing methods can lead to creation of a malicious object within the interpreter, with adverse effects that are application-dependent. > oak-solr-osgi embeds vulnerable Zookeeper 3.4.14 > > > Key: OAK-10548 > URL: https://issues.apache.org/jira/browse/OAK-10548 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > > This artifact embeds Apache ZooKeeper 3.4.14 which contains the following > vulnerability: > * *CVE-2023-44981:* Authorization Bypass Through User-Controlled Key > vulnerability in Apache ZooKeeper. If SASL Quorum Peer authentication is > enabled in ZooKeeper (quorum.auth.enableSasl=true), the authorization is done > by verifying that the instance part in SASL authentication ID is listed in > zoo.cfg server list. The instance part in SASL auth ID is optional and if > it's missing, like 'e...@example.com', the authorization check will be > skipped. As a result an arbitrary endpoint could join the cluster and begin > propagating counterfeit changes to the leader, essentially giving it complete > read-write access to the data tree. Quorum Peer authentication is not enabled > by default. Users are recommended to upgrade to version 3.9.1, 3.8.3, 3.7.2, > which fixes the issue. Alternately ensure the ensemble election/quorum > communication is protected by a firewall as this will mitigate the issue. See > the documentation for more details on correct cluster administration. > https://www.opencve.io/cve/CVE-2023-44981 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10548) oak-solr-osgi embeds vulnerable Zookeeper 3.4.14
[ https://issues.apache.org/jira/browse/OAK-10548?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10548: --- Fix Version/s: (was: 1.58.0) > oak-solr-osgi embeds vulnerable Zookeeper 3.4.14 > > > Key: OAK-10548 > URL: https://issues.apache.org/jira/browse/OAK-10548 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > > This artifact embeds Apache ZooKeeper 3.4.10 which contains the following > vulnerabilitie(s): > * *BDSA-2013-0048* in version 3.4.10 (CVSS 7.5 High): Apache ZooKeeper > contains an information disclosure vulnerability due to a missing permission > check within the `getACL` command. An attacker could exploit this to obtain > hashes for authentication, if Digest Authentication is in use. > * *CVE-2020-10663* in version 3.4.10 (CVSS 7.5 High): The JSON gem through > 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 > through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite > similar to CVE-2013-0269, but does not rely on poor garbage-collection > behavior within Ruby. Specifically, use of JSON parsing methods can lead to > creation of a malicious object within the interpreter, with adverse effects > that are application-dependent. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10548) oak-solr-osgi embeds vulnerable Zookeeper 3.4.14
Fabrizio Fortino created OAK-10548: -- Summary: oak-solr-osgi embeds vulnerable Zookeeper 3.4.14 Key: OAK-10548 URL: https://issues.apache.org/jira/browse/OAK-10548 Project: Jackrabbit Oak Issue Type: Task Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino Fix For: 1.58.0 This artifact embeds Apache ZooKeeper 3.4.10 which contains the following vulnerabilitie(s): * *BDSA-2013-0048* in version 3.4.10 (CVSS 7.5 High): Apache ZooKeeper contains an information disclosure vulnerability due to a missing permission check within the `getACL` command. An attacker could exploit this to obtain hashes for authentication, if Digest Authentication is in use. * *CVE-2020-10663* in version 3.4.10 (CVSS 7.5 High): The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269, but does not rely on poor garbage-collection behavior within Ruby. Specifically, use of JSON parsing methods can lead to creation of a malicious object within the interpreter, with adverse effects that are application-dependent. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Assigned] (OAK-10546) Tika 1.28.5 includes a vulnerable Guava dependency
[ https://issues.apache.org/jira/browse/OAK-10546?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino reassigned OAK-10546: -- Assignee: Fabrizio Fortino > Tika 1.28.5 includes a vulnerable Guava dependency > -- > > Key: OAK-10546 > URL: https://issues.apache.org/jira/browse/OAK-10546 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: oak-examples, oak-run, oak-search-elastic, oak-solr-core >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > > Guava 31.1 has a critical vulnerability [0]. It is included as a transient > dependency of Tika 1.28.5 [1]. This is the latest 1.x available release of > Tika. Being EOL it won't receive any security-related updates [2]. > The work to upgrade to Tika 2.x would require some time. > If possible, we should find an alternative solution to avoid including this > vulnerable dependency. > [0] [https://www.opencve.io/cve/CVE-2023-2976] > [1] [https://mvnrepository.com/artifact/org.apache.tika/tika-parsers/1.28.5] > [2] [https://lists.apache.org/thread/yq6n7o01kw544dvj1jsoqk29g6yqjkp3] -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10546) Tika 1.28.5 includes a vulnerable Guava dependency
Fabrizio Fortino created OAK-10546: -- Summary: Tika 1.28.5 includes a vulnerable Guava dependency Key: OAK-10546 URL: https://issues.apache.org/jira/browse/OAK-10546 Project: Jackrabbit Oak Issue Type: Improvement Components: oak-search-elastic, oak-solr-core, oak-examples, oak-run Reporter: Fabrizio Fortino Guava 31.1 has a critical vulnerability [0]. It is included as a transient dependency of Tika 1.28.5 [1]. This is the latest 1.x available release of Tika. Being EOL it won't receive any security-related updates [2]. The work to upgrade to Tika 2.x would require some time. If possible, we should find an alternative solution to avoid including this vulnerable dependency. [0] [https://www.opencve.io/cve/CVE-2023-2976] [1] [https://mvnrepository.com/artifact/org.apache.tika/tika-parsers/1.28.5] [2] [https://lists.apache.org/thread/yq6n7o01kw544dvj1jsoqk29g6yqjkp3] -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10539) oak-search-elastic: migrate ingestion from Rest High Level Client to the new Java API Client
Fabrizio Fortino created OAK-10539: -- Summary: oak-search-elastic: migrate ingestion from Rest High Level Client to the new Java API Client Key: OAK-10539 URL: https://issues.apache.org/jira/browse/OAK-10539 Project: Jackrabbit Oak Issue Type: Task Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-9705) Explain Query tool doesn't show the correct ES query when suggest queries are made
[ https://issues.apache.org/jira/browse/OAK-9705?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-9705. --- Fix Version/s: 1.60.0 Resolution: Fixed > Explain Query tool doesn't show the correct ES query when suggest queries are > made > -- > > Key: OAK-9705 > URL: https://issues.apache.org/jira/browse/OAK-9705 > Project: Jackrabbit Oak > Issue Type: Bug >Reporter: Jun Zhang >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > > When running the following suggest query from AEM(ES index is available) > {code} > SELECT [rep:suggest()] FROM [dam:Asset] as s WHERE SUGGEST('jav') > option(index name [damAssetElastic-7-custom-2]) > {code} > the detailed plan show that the following query is run on ES side: > {code} > {"bool":\{"must":[{"query_string":{"query":"suggest?term=jav","fields":[],"type":"best_fields","default_operator":"or","max_determinized_states":1,"enable_position_increments":true,"fuzziness":"AUTO","fuzzy_prefix_length":0,"fuzzy_max_expansions":50,"phrase_slop":0,"escape":false,"auto_generate_synonyms_phrase_query":true,"fuzzy_transpositions":true,"boost":1.0}}],"adjust_pure_negative":true,"boost":1.0}} > {code} > Instead, the following query is actually run on ES side: > {code} > POST cm-p11553-e21096-publish._damassetelastic-7-custom-2/_search > { > "query": { > "bool": { > "must": [ > { > "nested": { > "path": ":suggest", > "query": { > "match_phrase_prefix": { > ":suggest.value": { > "query": "jav" > } > } > } > } > } > ], > "adjust_pure_negative": true, > "boost": 1 > } > } > } > {code} > the Explain query should reflect the correct ES query as well. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10487) oak-search-elastic should perform a count request for fastQuerySize
[ https://issues.apache.org/jira/browse/OAK-10487?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10487. Fix Version/s: 1.60.0 Resolution: Fixed > oak-search-elastic should perform a count request for fastQuerySize > --- > > Key: OAK-10487 > URL: https://issues.apache.org/jira/browse/OAK-10487 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.60.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Assigned] (OAK-9705) Explain Query tool doesn't show the correct ES query when suggest queries are made
[ https://issues.apache.org/jira/browse/OAK-9705?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino reassigned OAK-9705: - Assignee: Fabrizio Fortino > Explain Query tool doesn't show the correct ES query when suggest queries are > made > -- > > Key: OAK-9705 > URL: https://issues.apache.org/jira/browse/OAK-9705 > Project: Jackrabbit Oak > Issue Type: Bug >Reporter: Jun Zhang >Assignee: Fabrizio Fortino >Priority: Major > > When running the following suggest query from AEM(ES index is available) > {code} > SELECT [rep:suggest()] FROM [dam:Asset] as s WHERE SUGGEST('jav') > option(index name [damAssetElastic-7-custom-2]) > {code} > the detailed plan show that the following query is run on ES side: > {code} > {"bool":\{"must":[{"query_string":{"query":"suggest?term=jav","fields":[],"type":"best_fields","default_operator":"or","max_determinized_states":1,"enable_position_increments":true,"fuzziness":"AUTO","fuzzy_prefix_length":0,"fuzzy_max_expansions":50,"phrase_slop":0,"escape":false,"auto_generate_synonyms_phrase_query":true,"fuzzy_transpositions":true,"boost":1.0}}],"adjust_pure_negative":true,"boost":1.0}} > {code} > Instead, the following query is actually run on ES side: > {code} > POST cm-p11553-e21096-publish._damassetelastic-7-custom-2/_search > { > "query": { > "bool": { > "must": [ > { > "nested": { > "path": ":suggest", > "query": { > "match_phrase_prefix": { > ":suggest.value": { > "query": "jav" > } > } > } > } > } > ], > "adjust_pure_negative": true, > "boost": 1 > } > } > } > {code} > the Explain query should reflect the correct ES query as well. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10487) oak-search-elastic should perform a count request for fastQuerySize
Fabrizio Fortino created OAK-10487: -- Summary: oak-search-elastic should perform a count request for fastQuerySize Key: OAK-10487 URL: https://issues.apache.org/jira/browse/OAK-10487 Project: Jackrabbit Oak Issue Type: Improvement Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10441) oak-search-elastic embeds vulnerable SnakeYAML
[ https://issues.apache.org/jira/browse/OAK-10441?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10441. Fix Version/s: 1.58.0 Resolution: Fixed > oak-search-elastic embeds vulnerable SnakeYAML > -- > > Key: OAK-10441 > URL: https://issues.apache.org/jira/browse/OAK-10441 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Labels: elasticsearch > Fix For: 1.58.0 > > > https://nvd.nist.gov/vuln/detail/CVE-2022-1471 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10456) oak-search-elastic: log index name when bulk update fails
[ https://issues.apache.org/jira/browse/OAK-10456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10456. Fix Version/s: 1.58.0 Resolution: Fixed > oak-search-elastic: log index name when bulk update fails > - > > Key: OAK-10456 > URL: https://issues.apache.org/jira/browse/OAK-10456 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.58.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10450) Bump testcontainers dependency to v1.19.0
[ https://issues.apache.org/jira/browse/OAK-10450?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10450. Fix Version/s: 1.58.0 Resolution: Fixed > Bump testcontainers dependency to v1.19.0 > - > > Key: OAK-10450 > URL: https://issues.apache.org/jira/browse/OAK-10450 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: parent >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Minor > Fix For: 1.58.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10456) oak-search-elastic: log index name when bulk update fails
[ https://issues.apache.org/jira/browse/OAK-10456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10456: --- Summary: oak-search-elastic: log index name when bulk update fails (was: oak-search-elastic: long index name when bulk update fails) > oak-search-elastic: log index name when bulk update fails > - > > Key: OAK-10456 > URL: https://issues.apache.org/jira/browse/OAK-10456 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10456) oak-search-elastic: long index name when bulk update fails
Fabrizio Fortino created OAK-10456: -- Summary: oak-search-elastic: long index name when bulk update fails Key: OAK-10456 URL: https://issues.apache.org/jira/browse/OAK-10456 Project: Jackrabbit Oak Issue Type: Improvement Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (OAK-10450) Bump testcontainers dependency to v1.19.0
[ https://issues.apache.org/jira/browse/OAK-10450?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17767491#comment-17767491 ] Fabrizio Fortino commented on OAK-10450: + use of latest toxiproxy image (2.6.0) which has multi arch support > Bump testcontainers dependency to v1.19.0 > - > > Key: OAK-10450 > URL: https://issues.apache.org/jira/browse/OAK-10450 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: parent >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Minor > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10450) Bump testcontainers dependency to v1.19.0
[ https://issues.apache.org/jira/browse/OAK-10450?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10450: --- Fix Version/s: (was: 1.54.0) > Bump testcontainers dependency to v1.19.0 > - > > Key: OAK-10450 > URL: https://issues.apache.org/jira/browse/OAK-10450 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: parent >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Minor > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10450) Bump testcontainers dependency to v1.19.0
Fabrizio Fortino created OAK-10450: -- Summary: Bump testcontainers dependency to v1.19.0 Key: OAK-10450 URL: https://issues.apache.org/jira/browse/OAK-10450 Project: Jackrabbit Oak Issue Type: Improvement Components: parent Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino Fix For: 1.54.0 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10449) oak-solr-osgi embeds vulnerable Zookeeper
[ https://issues.apache.org/jira/browse/OAK-10449?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10449. Fix Version/s: 1.58.0 Resolution: Fixed > oak-solr-osgi embeds vulnerable Zookeeper > - > > Key: OAK-10449 > URL: https://issues.apache.org/jira/browse/OAK-10449 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.58.0 > > > This artifact embeds Apache ZooKeeper 3.4.10 which contains the following > vulnerabilitie(s): > * *BDSA-2013-0048* in version 3.4.10 (CVSS 7.5 High): Apache ZooKeeper > contains an information disclosure vulnerability due to a missing permission > check within the `getACL` command. An attacker could exploit this to obtain > hashes for authentication, if Digest Authentication is in use. > * *CVE-2020-10663* in version 3.4.10 (CVSS 7.5 High): The JSON gem through > 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 > through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite > similar to CVE-2013-0269, but does not rely on poor garbage-collection > behavior within Ruby. Specifically, use of JSON parsing methods can lead to > creation of a malicious object within the interpreter, with adverse effects > that are application-dependent. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10449) oak-solr-osgi embeds vulnerable Zookeeper
Fabrizio Fortino created OAK-10449: -- Summary: oak-solr-osgi embeds vulnerable Zookeeper Key: OAK-10449 URL: https://issues.apache.org/jira/browse/OAK-10449 Project: Jackrabbit Oak Issue Type: Task Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino This artifact embeds Apache ZooKeeper 3.4.10 which contains the following vulnerabilitie(s): * *BDSA-2013-0048* in version 3.4.10 (CVSS 7.5 High): Apache ZooKeeper contains an information disclosure vulnerability due to a missing permission check within the `getACL` command. An attacker could exploit this to obtain hashes for authentication, if Digest Authentication is in use. * *CVE-2020-10663* in version 3.4.10 (CVSS 7.5 High): The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269, but does not rely on poor garbage-collection behavior within Ruby. Specifically, use of JSON parsing methods can lead to creation of a malicious object within the interpreter, with adverse effects that are application-dependent. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10441) oak-search-elastic embeds vulnerable SnakeYAML
[ https://issues.apache.org/jira/browse/OAK-10441?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10441. Fix Version/s: 1.58.0 Resolution: Fixed > oak-search-elastic embeds vulnerable SnakeYAML > -- > > Key: OAK-10441 > URL: https://issues.apache.org/jira/browse/OAK-10441 > Project: Jackrabbit Oak > Issue Type: Task > Components: indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Labels: elasticsearch > Fix For: 1.58.0 > > > https://nvd.nist.gov/vuln/detail/CVE-2022-1471 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10441) oak-search-elastic embeds vulnerable SnakeYAML
Fabrizio Fortino created OAK-10441: -- Summary: oak-search-elastic embeds vulnerable SnakeYAML Key: OAK-10441 URL: https://issues.apache.org/jira/browse/OAK-10441 Project: Jackrabbit Oak Issue Type: Task Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino https://nvd.nist.gov/vuln/detail/CVE-2022-1471 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10372) oak-search-elastic: similarity queries produce no relevant results
[ https://issues.apache.org/jira/browse/OAK-10372?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10372. Fix Version/s: 1.56.0 Resolution: Fixed > oak-search-elastic: similarity queries produce no relevant results > -- > > Key: OAK-10372 > URL: https://issues.apache.org/jira/browse/OAK-10372 > Project: Jackrabbit Oak > Issue Type: Bug > Components: elastic-search >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.56.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10372) oak-search-elastic: similarity queries produce no relevant results
[ https://issues.apache.org/jira/browse/OAK-10372?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10372: --- Summary: oak-search-elastic: similarity queries produce no relevant results (was: oak-search-elastic: similarity queries produce not relevant results) > oak-search-elastic: similarity queries produce no relevant results > -- > > Key: OAK-10372 > URL: https://issues.apache.org/jira/browse/OAK-10372 > Project: Jackrabbit Oak > Issue Type: Bug > Components: elastic-search >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10372) oak-search-elastic: similarity queries produce not relevant results
Fabrizio Fortino created OAK-10372: -- Summary: oak-search-elastic: similarity queries produce not relevant results Key: OAK-10372 URL: https://issues.apache.org/jira/browse/OAK-10372 Project: Jackrabbit Oak Issue Type: Bug Components: elastic-search Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10365) introduce mapping version in oak-search-elastic
[ https://issues.apache.org/jira/browse/OAK-10365?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10365. Fix Version/s: 1.56.0 Resolution: Fixed > introduce mapping version in oak-search-elastic > --- > > Key: OAK-10365 > URL: https://issues.apache.org/jira/browse/OAK-10365 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: elastic-search >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.56.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10365) introduce mapping version in oak-search-elastic
Fabrizio Fortino created OAK-10365: -- Summary: introduce mapping version in oak-search-elastic Key: OAK-10365 URL: https://issues.apache.org/jira/browse/OAK-10365 Project: Jackrabbit Oak Issue Type: Improvement Components: elastic-search Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10353) Elastic custom analyzer should ignore unsupported properties (eg: hidden, arrays)
[ https://issues.apache.org/jira/browse/OAK-10353?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10353. Fix Version/s: 1.56.0 Resolution: Fixed > Elastic custom analyzer should ignore unsupported properties (eg: hidden, > arrays) > - > > Key: OAK-10353 > URL: https://issues.apache.org/jira/browse/OAK-10353 > Project: Jackrabbit Oak > Issue Type: Bug > Components: elastic-search >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.56.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10353) Elastic custom analyzer should ignore unsupported properties (eg: hidden, arrays)
Fabrizio Fortino created OAK-10353: -- Summary: Elastic custom analyzer should ignore unsupported properties (eg: hidden, arrays) Key: OAK-10353 URL: https://issues.apache.org/jira/browse/OAK-10353 Project: Jackrabbit Oak Issue Type: Bug Components: elastic-search Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10329) oak-search-elastic: field values should be deduplicated
Fabrizio Fortino created OAK-10329: -- Summary: oak-search-elastic: field values should be deduplicated Key: OAK-10329 URL: https://issues.apache.org/jira/browse/OAK-10329 Project: Jackrabbit Oak Issue Type: Improvement Components: indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10324) oak-search-elastic: IN queries on boolean fields should not fail when one of the value cannot be parsed
[ https://issues.apache.org/jira/browse/OAK-10324?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10324. Fix Version/s: 1.54.0 Resolution: Fixed > oak-search-elastic: IN queries on boolean fields should not fail when one of > the value cannot be parsed > --- > > Key: OAK-10324 > URL: https://issues.apache.org/jira/browse/OAK-10324 > Project: Jackrabbit Oak > Issue Type: Bug > Components: elastic-search >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.54.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10324) oak-search-elastic: IN queries on boolean fields should not fail when one of the value cannot be parsed
Fabrizio Fortino created OAK-10324: -- Summary: oak-search-elastic: IN queries on boolean fields should not fail when one of the value cannot be parsed Key: OAK-10324 URL: https://issues.apache.org/jira/browse/OAK-10324 Project: Jackrabbit Oak Issue Type: Bug Components: elastic-search Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10310) Bump testcontainers dependency to v1.18.3
[ https://issues.apache.org/jira/browse/OAK-10310?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10310. Fix Version/s: 1.54.0 Resolution: Fixed > Bump testcontainers dependency to v1.18.3 > - > > Key: OAK-10310 > URL: https://issues.apache.org/jira/browse/OAK-10310 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: parent >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Minor > Fix For: 1.54.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10310) Bump testcontainers dependency to v1.18.3
[ https://issues.apache.org/jira/browse/OAK-10310?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10310: --- Component/s: (was: documentmk) (was: elastic-search) > Bump testcontainers dependency to v1.18.3 > - > > Key: OAK-10310 > URL: https://issues.apache.org/jira/browse/OAK-10310 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: parent >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Minor > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10310) Bump testcontainers dependency to v1.18.3
Fabrizio Fortino created OAK-10310: -- Summary: Bump testcontainers dependency to v1.18.3 Key: OAK-10310 URL: https://issues.apache.org/jira/browse/OAK-10310 Project: Jackrabbit Oak Issue Type: Improvement Components: documentmk, elastic-search, parent Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino Fix For: 1.52.0 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OAK-10310) Bump testcontainers dependency to v1.18.3
[ https://issues.apache.org/jira/browse/OAK-10310?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino updated OAK-10310: --- Fix Version/s: (was: 1.52.0) > Bump testcontainers dependency to v1.18.3 > - > > Key: OAK-10310 > URL: https://issues.apache.org/jira/browse/OAK-10310 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: documentmk, elastic-search, parent >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Minor > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10303) oak-search-elastic: remove propertyIndex/nodeScopeIndex from dynamicBoost tests
[ https://issues.apache.org/jira/browse/OAK-10303?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10303. Fix Version/s: 1.54.0 Resolution: Fixed > oak-search-elastic: remove propertyIndex/nodeScopeIndex from dynamicBoost > tests > --- > > Key: OAK-10303 > URL: https://issues.apache.org/jira/browse/OAK-10303 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: elastic-search, search >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.54.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10303) oak-search-elastic: remove propertyIndex/nodeScopeIndex from dynamicBoost tests
Fabrizio Fortino created OAK-10303: -- Summary: oak-search-elastic: remove propertyIndex/nodeScopeIndex from dynamicBoost tests Key: OAK-10303 URL: https://issues.apache.org/jira/browse/OAK-10303 Project: Jackrabbit Oak Issue Type: Improvement Components: elastic-search, search Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10268) oak-search-elastic: propertyIndex=false fields cannot be used for sorting
[ https://issues.apache.org/jira/browse/OAK-10268?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10268. Fix Version/s: 1.54.0 Resolution: Fixed > oak-search-elastic: propertyIndex=false fields cannot be used for sorting > - > > Key: OAK-10268 > URL: https://issues.apache.org/jira/browse/OAK-10268 > Project: Jackrabbit Oak > Issue Type: Bug >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Labels: elasticsearch > Fix For: 1.54.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Resolved] (OAK-10267) oak-search-elastic: index should be more lenient when a field cannot be converted to the mapped type
[ https://issues.apache.org/jira/browse/OAK-10267?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fabrizio Fortino resolved OAK-10267. Fix Version/s: 1.54.0 Resolution: Fixed > oak-search-elastic: index should be more lenient when a field cannot be > converted to the mapped type > > > Key: OAK-10267 > URL: https://issues.apache.org/jira/browse/OAK-10267 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: elastic-search, indexing >Reporter: Fabrizio Fortino >Assignee: Fabrizio Fortino >Priority: Major > Fix For: 1.54.0 > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10268) oak-search-elastic: propertyIndex=false fields cannot be used for sorting
Fabrizio Fortino created OAK-10268: -- Summary: oak-search-elastic: propertyIndex=false fields cannot be used for sorting Key: OAK-10268 URL: https://issues.apache.org/jira/browse/OAK-10268 Project: Jackrabbit Oak Issue Type: Bug Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10267) oak-search-elastic: index should be more lenient when a field cannot be converted to the mapped type
Fabrizio Fortino created OAK-10267: -- Summary: oak-search-elastic: index should be more lenient when a field cannot be converted to the mapped type Key: OAK-10267 URL: https://issues.apache.org/jira/browse/OAK-10267 Project: Jackrabbit Oak Issue Type: Improvement Components: elastic-search, indexing Reporter: Fabrizio Fortino Assignee: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (OAK-10258) full-text queries on duplicate properties with at least one of them analyzed should use the index
[ https://issues.apache.org/jira/browse/OAK-10258?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17725472#comment-17725472 ] Fabrizio Fortino commented on OAK-10258: Draft PR with unit test https://github.com/apache/jackrabbit-oak/pull/952 > full-text queries on duplicate properties with at least one of them analyzed > should use the index > - > > Key: OAK-10258 > URL: https://issues.apache.org/jira/browse/OAK-10258 > Project: Jackrabbit Oak > Issue Type: Improvement > Components: indexing, search >Reporter: Fabrizio Fortino >Priority: Major > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OAK-10258) full-text queries on duplicate properties with at least one of them analyzed should use the index
Fabrizio Fortino created OAK-10258: -- Summary: full-text queries on duplicate properties with at least one of them analyzed should use the index Key: OAK-10258 URL: https://issues.apache.org/jira/browse/OAK-10258 Project: Jackrabbit Oak Issue Type: Improvement Components: indexing, search Reporter: Fabrizio Fortino -- This message was sent by Atlassian Jira (v8.20.10#820010)