db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Daniel John Debrunner (JIRA)" <derby-...@db.apache.org>
Subject [jira] Commented: (DERBY-1055) Security.AccessControlException in client under SecurityManager when trying to connect using EUSRIDPWD security mechanism
Date Sun, 26 Feb 2006 05:02:56 GMT
    [ http://issues.apache.org/jira/browse/DERBY-1055?page=comments#action_12367812 ] 

Daniel John Debrunner commented on DERBY-1055:
----------------------------------------------

The original code seems to be adding a provider that is already installed:

            Provider[] list = Security.getProviders("KeyAgreement.DH");
            if (list == null) {
                throw new java.security.NoSuchProviderException();
            }
            provider = list[0];
            providerName = provider.getName();

            java.security.Security.addProvider((java.security.Provider) provider);

I don't think this Security.addProvider call is required at all, the getProviders call is
returning a list of already installed providers.

If the addProvider call is removed, then no priv block is needed, and no changes to the security
policy file.

> Security.AccessControlException in client under SecurityManager when trying to connect
using EUSRIDPWD security mechanism
> -------------------------------------------------------------------------------------------------------------------------
>
>          Key: DERBY-1055
>          URL: http://issues.apache.org/jira/browse/DERBY-1055
>      Project: Derby
>         Type: Bug
>   Components: Network Client
>     Versions: 10.0.2.1, 10.0.2.0, 10.1.1.0, 10.1.1.1, 10.1.1.2, 10.1.2.0, 10.1.2.1, 10.1.2.2
>  Environment: all
>     Reporter: Sunitha Kambhampati
>     Assignee: Sunitha Kambhampati
>     Priority: Minor
>      Fix For: 10.2.0.0
>  Attachments: Derby1055.diff.txt, Derby1055.stat.txt
>
> When using EUSRIDPWD security mechanism, the JCE provider is added and since this is
not in a privileged block, an accesscontrol exception is raised when trying to connect using
EUSRIDPWD security mechanism, when client is run under security manager.
> Enabled test (T5) in testSecMec.java 
> > T5: jdbc:derby://xxxFILTERED_HOSTNAMExxx:xxxFILTEREDPORTxxx/wombat;user=neelima;password=lee;securityMechanism=9
- EXCEPTION Unexpected throwable caught java.security.AccessControlException: access denied
(java.security.SecurityPermission insertProvider.SunJCE)

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira


Mime
View raw message