firesphere

Does anyone know why Solr would stop returning all fields, despite docs saying it should?

  1. "params":{
  2. "q":"help",
  3. "fl":"*",
  4. "_":"1553237667007"}},
  5. "response":{"numFound":3664,"start":0,"docs":[
  6. {
  7. "_documentid":"3758-Firesphere\\StripeSlack\\Models\\Message-[]",
  8. "ID":3758,
  9. "ClassName":"Firesphere\\StripeSlack\\Models\\Message",
  10. "ClassHierarchy":["Firesphere\\StripeSlack\\Models\\Message"],
  11. "_version_":1627615026553552896},
  12. {

There are a lot more fields in the docs 😞

firesphere

Lots of reasons. If you could solve those reasons, the ops team would be eternally grateful

firesphere

Solr4 is EOL, for a long time now, even if it is affected, I don't think the Apache foundation cares

MichalKleiner

not based on the report, but maybe they are just excluded from the report as ancient 😄

null

I wonder if that vulnerability also affects the Solr 4.x versions that CWP and SSP are using 😕

null

Solr6 will mostly work with that fork, but spellchecks/collations are kind of broken. I think @firesphere has a fix for it

firesphere

Glad I'm running Solr in an isolated container with no outbound connections allowed, so it can't connect to a malicious external server

firesphere

Yes, there are breaking changes, I've not gotten Solr7 to work yet