[SOLR-3895] For several reasons, disabling the resolving of external entities within the Solr UpdateRequestHandler for XML would be good. - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 3.6.1, 4.0-BETA
Fix Version/s: 4.1, 6.0
Component/s: update
Labels:
None

Description

The Solr UpdateRequestHandler for XML currently resolves so-called XML External Entities. Not resolving XML External Entities would - among other things - improve Solr's update performance.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

SOLR-3895.patch
26/Sep/12 08:56
13 kB
Uwe Schindler
SOLR-3895.patch
26/Sep/12 18:20
13 kB
Chris M. Hostetter
SOLR-3895.patch
26/Sep/12 20:15
14 kB
Chris M. Hostetter
SOLR-3895.patch
26/Sep/12 21:46
14 kB
Chris M. Hostetter
SOLR-3895+3614.patch
26/Sep/12 22:25
15 kB
Uwe Schindler
SOLR-3895+3614.patch
26/Sep/12 22:37
16 kB
Uwe Schindler

Issue Links

incorporates

SOLR-3614 XML parsing in XPathEntityProcessor doesn't respect ENTITY declarations?

Closed

SOLR-4881 Fix DocumentAnalysisRequestHandler to correctly use EmptyEntityResolver

Closed

is required by

SOLR-5520 Backport some security fixes from 4.x to 3.6.x branch

Resolved

relates to

SOLR-3974 Disabling External entity resolution when using XSL in DIH

Resolved

Activity

People

Assignee:: Uwe Schindler

Reporter:: Martin Herfurt

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 26/Sep/12 07:15

Updated:: 09/May/16 18:49

Resolved:: 27/Sep/12 10:13