1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
|
## Version 1.0.0-rc1 Release Notes
* __[BWC] fix mixedCluster and rolling upgrades (#775) (#793)__
[Nick Knize](mailto:nknize@gmail.com) - Fri, 28 May 2021 10:08:05 -0500
EAD -> refs/heads/1.0, tag: refs/tags/1.0.0-rc1, refs/remotes/origin/1.0
This commit fixes mixedCluster and rolling upgrades by spoofing OpenSearch
version 1.0.0 as Legacy version 7.10.2. With this commit an OpenSearch 1.x node
can join a legacy (<= 7.10.2) cluster and rolling upgrades work as expected.
Mixed clusters will not work beyond the duration of the upgrade since shards
cannot be replicated from upgraded nodes to nodes running older versions.
Signed-off-by: Nicholas Walter Knize <nknize@apache.org>
Co-authored-by: Shweta Thareja <tharejas@amazon.com>
* __[BUG] fix MainResponse to spoof version number for legacy clients (#708)__
[Nick Knize](mailto:nknize@gmail.com) - Fri, 28 May 2021 10:07:06 -0500
This commit changes MainResponse to spoof OpenSearch 1.x version numbers as
Legacy version number 7.10.2 for legacy clients.
Signed-off-by: Nicholas Walter Knize <nknize@apache.org>
* __[CVE] Upgrade dependencies for Azure related plugins to mitigate CVEs (#688) (#771) (#784)__
[Abbas Hussain](mailto:abbas_10690@yahoo.com) - Thu, 27 May 2021 00:43:40 +0530
* Update commons-io-2.4.jar to 2.7 for plugins/discovery-azure-classic module
* Remove unused jackson dependency and respective LICENSE and NOTICE
* Update guava dependency to mitigate CVE for repository-azure plugin
Signed-off-by: Abbas Hussain <abbas_10690@yahoo.com>
* __distribution/packages: Fix RPM architecture name for 64-bit x86 (#620) (#770) (#783)__
[Abbas Hussain](mailto:abbas_10690@yahoo.com) - Wed, 26 May 2021 23:55:35 +0530
RPM uses the "x86_64" name for 64-bit x86, which is in-line with GCC
and other
compilers.
Signed-off-by: Neal Gompa <ngompa13@gmail.com>
* __[Bug] Fix gradle build on Windows failing from a recent change (#765)__
[Rabi Panda](mailto:adnapibar@gmail.com) - Tue, 25 May 2021 10:51:53 -0700
A recent change as part of the commit c2e816ec introduced a bug where the build
is failing on Windows. The change was made to include the NOTICE.txt file as
read-only in the distributions. The code fails on Windows as it's not a
POSIX-compliant. This commit adds a check on the current operating system.
Signed-off-by: Rabi Panda <adnapibar@gmail.com>
* __Add timeout on cat/stats API (#759)__
[Dhwanil Patel](mailto:dhwanip@amazon.com) - Mon, 24 May 2021 23:18:04 +0530
Signed-off-by: Dhwanil Patel <dhwanip@amazon.com>
* __Remove URL content from Reindex error response (#630) (#748)__
[Abbas Hussain](mailto:abbas_10690@yahoo.com) - Fri, 21 May 2021 17:20:34 -0700
Signed-off-by: Sooraj Sinha <soosinha@amazon.com>
Co-authored-by: Sooraj Sinha <81695996+soosinha@users.noreply.github.com>
* __Add Remote Reindex SPI extension (#547) (#756)__
[Abbas Hussain](mailto:abbas_10690@yahoo.com) - Sat, 22 May 2021 04:50:00 +0530
This change extends the remote reindex SPI to allow adding a custom
interceptor.
This interceptor can be plugged in to perform any processing on
the request or response.
Signed-off-by: Sooraj Sinha <soosinha@amazon.com>
Co-authored-by: Sooraj Sinha <81695996+soosinha@users.noreply.github.com>
* __Catch runtime exceptions to make class loader race conditions easier to debug. (#608) (#750)__
[Abbas Hussain](mailto:abbas_10690@yahoo.com) - Fri, 21 May 2021 11:04:14 +0530
Signed-off-by: dblock <dblock@amazon.com>
Co-authored-by: Daniel Doubrovkine (dB.) <dblock@dblock.org>
* __distribution/packages: Fix filename format for deb archives (#621) (#753)__
[Abbas Hussain](mailto:abbas_10690@yahoo.com) - Fri, 21 May 2021 11:03:36 +0530
Debian packages are formatted with the following filename structure:
name_[epoch:]version-release_arch.deb
Make generated Debian packages follow this convention.
Signed-off-by: Neal Gompa <ngompa13@gmail.com>
Co-authored-by: Neal Gompa (ニール・ゴンパ) <ngompa13@gmail.com>
* __Update/maintainers.md (#723) (#752)__
[Abbas Hussain](mailto:abbas_10690@yahoo.com) - Fri, 21 May 2021 04:45:28 +0530
Adding Gopala, Vengad, Shweta, db and Itiyama to maintainers list
Signed-off-by: CEHENKLE <henkle@amazon.com>
* __Updating README and CONTRIBUTING guide to get ready for beta1 release. (#672) (#751)__
[Abbas Hussain](mailto:abbas_10690@yahoo.com) - Thu, 20 May 2021 15:57:07 -0700
* Updating README and CONTRIBUTING guide to get ready for beta1 release.
Signed-off-by: Sarat Vemulapalli <vemulapallisarat@gmail.com>
* Addressing comments.
Signed-off-by: Sarat Vemulapalli <vemulapallisarat@gmail.com>
Co-authored-by: Sarat Vemulapalli <vemulapallisarat@gmail.com>
* __Update issue template with multiple labels (#668) (#749)__
[Abbas Hussain](mailto:abbas_10690@yahoo.com) - Thu, 20 May 2021 15:55:56 -0700
Signed-off-by: Vacha Shah <vachshah@amazon.com>
Co-authored-by: Vacha Shah <vachshah@amazon.com>
Co-authored-by: Vacha <VachaShah@users.noreply.github.com>
Co-authored-by:
Vacha Shah <vachshah@amazon.com>
* __Support Data Streams in OpenSearch (#690) (#713)__
[Ketan Verma](mailto:ketanv3@users.noreply.github.com) - Thu, 20 May 2021 17:14:28 -0400
This commit adds support for data streams by adding a DataStreamFieldMapper,
and making timestamp
field name configurable. Backwards compatibility is
supported.
Signed-off-by: Ketan Verma <ketan9495@gmail.com>
* __Make default number of shards configurable (#726)__
[arunabh23](mailto:singharunabh18@gmail.com) - Thu, 20 May 2021 17:13:46 -0400
The default number of primary shards for a new index, when the number of shards
are not provided in the request, can be configured for the cluster. This is a
backport commit of pull #625
Signed-off-by: Arunabh Singh <arunabs@amazon.com>
Co-authored-by: Arunabh Singh <arunabs@amazon.com>
* __[CVE-2020-7692] Upgrade google-oauth clients for goolge cloud plugins (#662) (#734)__
[Rabi Panda](mailto:adnapibar@gmail.com) - Thu, 20 May 2021 17:13:15 -0400
For discovery-gce and repository-gcs plugins update the google-oauth-client
library to version 1.31.0. See CVE details at
https://nvd.nist.gov/vuln/detail/CVE-2020-7692
Signed-off-by: Rabi Panda <adnapibar@gmail.com>
* __Update dependencies for ingest-attachment plugin. (#666) (#735)__
[Rabi Panda](mailto:adnapibar@gmail.com) - Thu, 20 May 2021 17:13:02 -0400
This PR resolves the CVEs for dependencies in the ingest-attachment plugin.
tika : '1.24' -> '1.24.1'
(https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9489)
pdfbox :
'2.0.19' -> '2.0.23'
(https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27807)
commons-io:commons-io : '2.6' -> '2.7'
(https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29425)
Signed-off-by: Rabi Panda <adnapibar@gmail.com>
* __[CVE-2018-11765] Upgrade hadoop dependencies for hdfs plugin (#654) (#736)__
[Rabi Panda](mailto:adnapibar@gmail.com) - Thu, 20 May 2021 17:12:33 -0400
Hadoop 2.8.5 has been reported to have CVEs
(https://bugzilla.redhat.com/show_bug.cgi?id=1883549). We need to upgrade this
to 2.10.1. This also updates the hadoop-minicluster version to 2.10.1 as well.
This upgrade also brings in two additional dependencies, woodstox-core and
stax2-api that are added along with the sha1s, licenses and notices.
Also upgrade guava to the latest as per the CVE
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8908
Signed-off-by: Rabi Panda <adnapibar@gmail.com>
* __[1.x] Add read_only block argument to opensearch-node unsafe-bootstrap command #599 (#725)__
[Harmish](mailto:harmish.lakhani@gmail.com) - Thu, 20 May 2021 17:12:16 -0400
* apply user defined cluster wide read only block after unsafe bootstrap
command
Signed-off-by: Harmish Lakhani <harmish.lakhani@gmail.com>
* Fixed gradle precommit failures
Signed-off-by: Harmish Lakhani <harmish.lakhani@gmail.com>
* remove default as false for read only block to avoid overriding user's
existing settings
Signed-off-by: Harmish Lakhani <harmish.lakhani@gmail.com>
* __Handle inefficiencies while fetching the delayed unassigned shards during cluster health (#588) (#730)__
[Abbas Hussain](mailto:abbas_10690@yahoo.com) - Thu, 20 May 2021 17:11:49 -0400
Signed-off-by: Meet Shah <meetshsh@gmail.com>
Co-authored-by: Meet Shah <48720201+meetshah777@users.noreply.github.com>
* __[TEST] Fix failing distro tests for linux packages (#569) (#733)__
[Rabi Panda](mailto:adnapibar@gmail.com) - Thu, 20 May 2021 17:11:03 -0400
Changes to fix the failing OpenSearch distribution tests for packages
(linux-archive, linux-archive-aarch64, debian, rpm, docker) on supported linux
distros.
Signed-off-by: Rabi Panda <adnapibar@gmail.com>
* __Update instructions on debugging OpenSearch. (#689) (#738)__
[Rabi Panda](mailto:adnapibar@gmail.com) - Thu, 20 May 2021 17:09:59 -0400
Add clear instructions on how to run OpenSearch with debugging mode in
IntelliJ.
Fixed a few minor typos and grammars.
Signed-off-by: Rabi Panda <adnapibar@gmail.com>
* __Create group settings with fallback. (#743) (#745)__
[Daniel Doubrovkine (dB.)](mailto:dblock@dblock.org) - Thu, 20 May 2021 17:06:58 -0400
* Create group settings with fallback.
Signed-off-by: dblock <dblock@amazon.com>
* Use protected fallbackSetting in Setting.
Signed-off-by: dblock <dblock@amazon.com>
* __Make allocation decisions at node level first for pending task optimi… (#534) (#739)__
[Ankit Jain](mailto:akjain@amazon.com) - Thu, 20 May 2021 14:02:18 -0700
* Make allocation decisions at node level first for pending task optimization
Signed-off-by: Ankit Jain <akjain@amazon.com>
* Addressing review comments
Signed-off-by: Ankit Jain <akjain@amazon.com>
* Fixing benchmark and adding debug mode tests
Signed-off-by: Ankit Jain <akjain@amazon.com>
* Fixing typo in previous commit
Signed-off-by: Ankit Jain <akjain@amazon.com>
* Moving test file to correct package
Signed-off-by: Ankit Jain <akjain@amazon.com>
* Addressing review comments
Signed-off-by: Ankit Jain <akjain@amazon.com>
* __[CVE] Upgrade dependencies to mitigate CVEs (#657) (#737)__
[Rabi Panda](mailto:adnapibar@gmail.com) - Wed, 19 May 2021 21:20:53 -0700
This PR upgrade the following dependencies to fix CVEs.
- commons-codec:1.12 (->1.13) apache/commons-codec@48b6157
- ant:1.10.8 (->1.10.9) https://ant.apache.org/security.html
- jackson-databind:2.10.4 (->2.11.0) FasterXML/jackson-databind#2589
- jackson-dataformat-cbor:2.10.4 (->2.11.0)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28491
- apache-httpclient:4.5.10 (->4.5.13)
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-13956
- checkstyle:8.20 (->8.29)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10782
- junit:4.12 (->4.13.1)
https://github.com/junit-team/junit4/security/advisories/GHSA-269g-pwp5-87pp
- netty:4.1.49.Final (->4.1.59)
https://github.com/netty/netty/security/advisories/GHSA-5mcr-gq6c-3hq2
Signed-off-by: Rabi Panda <adnapibar@gmail.com>
* __Added a link to the maintainer file in contribution guides (#589) (#731)__
[Abbas Hussain](mailto:abbas_10690@yahoo.com) - Wed, 19 May 2021 13:41:32 -0700
Co-authored-by: Dawn Foster <fosterd@vmware.com>
* __Fix snapshot deletion task getting stuck in the event of exceptions (#629) (#650)__
[amitai stern](mailto:amitai.stern@logz.io) - Thu, 13 May 2021 09:02:57 -0500
Changes the behavior of the recursive deletion function
`executeOneStaleIndexDelete()` stop
condition to be when the queue of
`staleIndicesToDelete` is empty -- also in the error flow.
Otherwise the
GroupedActionListener never responds and in the event of a few exceptions the
deletion task gets stuck.
Alters the test case to fail to delete in bulk many
snapshots at the first attempt, and then
the next successful deletion also
takes care of the previously failed attempt as the test
originally intended.
SNAPSHOT threadpool is at most 5. So in the event we get more than 5 exceptions
there are no
more threads to handle the deletion task and there is still one
more snapshot to delete in the
queue. Thus, in the test I made the number of
extra snapshots be one more than the max in the
SNAPSHOT threadpool.
Signed-off-by: AmiStrn <amitai.stern@logz.io>
* __Standardize int, long, double and float Setting constructors. (#665)__
[Daniel Doubrovkine (dB.)](mailto:dblock@dblock.org) - Thu, 6 May 2021 21:17:49 +0000
* __Converted all .asciidoc to .md. (#658)__
[Daniel Doubrovkine (dB.)](mailto:dblock@dblock.org) - Thu, 6 May 2021 20:12:49 +0000
Signed-off-by: dblock <dblock@amazon.com>
* __Fix #649: Properly escape @ in JavaDoc. (#651)__
[Daniel Doubrovkine (dB.)](mailto:dblock@dblock.org) - Thu, 6 May 2021 20:12:22 +0000
Signed-off-by: dblock <dblock@amazon.com>
* __Make -Dtests.output=always actually work. (#648)__
[Daniel Doubrovkine (dB.)](mailto:dblock@dblock.org) - Thu, 6 May 2021 20:11:33 +0000
Signed-off-by: dblock <dblock@amazon.com>
* __[WIP] Developer guide updates (#595)__
[Daniel Doubrovkine (dB.)](mailto:dblock@dblock.org) - Wed, 28 Apr 2021 17:28:17 +0000
* Add detail on how to install Java.
Signed-off-by: dblock <dblock@amazon.com>
* There's no password requirement for the instance.
Signed-off-by: dblock <dblock@amazon.com>
* Explain how to listen on an external IP.
Signed-off-by: dblock <dblock@amazon.com>
* __Speedup snapshot stale indices delete (#613) (#616)__
[Nick Knize](mailto:nknize@gmail.com) - Wed, 28 Apr 2021 11:02:21 -0500
Instead of snapshot delete of stale indices being a single threaded operation
this commit makes
it a multithreaded operation and delete multiple stale
indices in parallel using SNAPSHOT
threadpool's workers.
Signed-off-by: Piyush Daftary <piyush.besu@gmail.com>
* __Speedup lang-painless tests (#605) (#617)__
[Nick Knize](mailto:nknize@gmail.com) - Wed, 28 Apr 2021 11:01:39 -0500
Painless tests would previously create script engine for every single test
method.
Now the tests that need to tweak script engine settings create a class
level fixture (BeforeClass/AfterClass) that is used across all the test
methods in that suite.
RegexLimitTests was split into two suites (limit=1 and limit=2) rather
than
dynamically applying different settings.
C2 compiler is no longer needed for tests to be fast, instead tests run
faster with C1 only as expected, like the rest of the unit tests.
Signed-off-by: Robert Muir <rmuir@apache.org>
* __Replace elastic.co with opensearch.org (#611) (#623)__
[Nick Knize](mailto:nknize@gmail.com) - Wed, 28 Apr 2021 10:59:36 -0500
Signed-off-by: Abbas Hussain <abbas_10690@yahoo.com>
|
