You are viewing a plain text version of this content. The canonical link for it is here.
Posted to derby-dev@db.apache.org by "Suresh Thalamati (JIRA)" <de...@db.apache.org> on 2006/03/07 20:44:42 UTC
[jira] Updated: (DERBY-616) create index can fail under the
SecurityManager when trying to access files in the tmp folder of a database
[ http://issues.apache.org/jira/browse/DERBY-616?page=all ]
Suresh Thalamati updated DERBY-616:
-----------------------------------
Attachment: derby-616.diff
DERBY-616:
-- Added a missing privileged blocks for I/O call in StreamFileContainer.java ,
this class is used by the sort during index creation ..etc.
-- Enabled some of the tests which were not running under security manager
earlier because of this bug to run by default with security manager.
-- removed the additional permissions from the derby test policy file
that were added earlier to avoid this bug for some test cases.
TESTS : derbyall test suite passed on Windows XP/JDK142/ with sane classes
directory and insane jars.
It would be great if some can review and commit this patch.
svn stat:
M java\engine\org\apache\derby\impl\store\raw\data\StreamFileContainer.java
M java\testing\org\apache\derbyTesting\functionTests\tests\lang\compressTable_app.properties
M java\testing\org\apache\derbyTesting\functionTests\tests\lang\authorize_app.properties
M java\testing\org\apache\derbyTesting\functionTests\tests\lang\wisconsin_app.properties
M java\testing\org\apache\derbyTesting\functionTests\tests\lang\syscat_app.properties
M java\testing\org\apache\derbyTesting\functionTests\tests\store\holdCursorExternalSortJDBC30_app.properties
M java\testing\org\apache\derbyTesting\functionTests\tests\store\access_app.properties
M java\testing\org\apache\derbyTesting\functionTests\tests\store\testsqldecimal_app.properties
M java\testing\org\apache\derbyTesting\functionTests\util\derby_tests.policy
> create index can fail under the SecurityManager when trying to access files in the tmp folder of a database
> -----------------------------------------------------------------------------------------------------------
>
> Key: DERBY-616
> URL: http://issues.apache.org/jira/browse/DERBY-616
> Project: Derby
> Type: Bug
> Components: Store
> Versions: 10.0.2.1, 10.1.1.0, 10.2.0.0
> Reporter: Daniel John Debrunner
> Assignee: Suresh Thalamati
> Priority: Critical
> Attachments: derby-616.diff
>
> Seen in tests lang/wisconsin.sql and jdbcapi/maxfieldsize.java when running with the network server and the new security policy file that grants permisions on a per-jar basis. Unless permission is given to the network serve code (since it is in the stack) to access temp files in the database the test will fail.
> permission java.io.FilePermission "${derby.system.home}${/}wombat${/}tmp${/}-", "read, write, delete";
> Most likely the temp files are being accessed in without a privileged block.
> Easy to reproduce once the new policy file changes are checked in (see http://wiki.apache.org/db-derby/SecurityManagerTesting) by removing the permission in the derby_tests.policy file and running these tests using the jar files.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira