db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Andrew McIntyre (JIRA)" <derby-...@db.apache.org>
Subject [jira] Commented: (DERBY-622) sysinfo incorrectly requires permission on Derby jar files
Date Thu, 30 Mar 2006 06:51:27 GMT
    [ http://issues.apache.org/jira/browse/DERBY-622?page=comments#action_12372386 ] 

Andrew McIntyre commented on DERBY-622:


I can confirm that both with and without the change in the _step1 patch, and with or without
the policy file change to remove the lines marked Bug: DERBY-622, that adding the following
line to the permissions of derby.jar and derbynet.jar in derby_tests.policy for each of the
locale jars fixes the difference that is seen in the tests:

permission java.io.FilePermission "${derbyTesting.codejar}derbyLocale_${LOCALE}.jar", read

where ${LOCALE} is one of the supported locale jar files removes the corresponding line from
the diff in the test.

> sysinfo incorrectly requires permission on Derby jar files
> ----------------------------------------------------------
>          Key: DERBY-622
>          URL: http://issues.apache.org/jira/browse/DERBY-622
>      Project: Derby
>         Type: Bug
>   Components: Security, Tools
>     Versions:
>     Reporter: Daniel John Debrunner
>     Priority: Minor
>      Fix For:
>  Attachments: DERBY-622_step1.diff
> Running the test derbynet/sysinfo.java requires this permission in derby_tests.policy,
in order to read the jar files.
> permission java.io.FilePermission "${csinfo.codedir}${/}*", "read"
> But according to the Java security specs:
> 'Note: code can always read a file from the same directory it's in (or a subdirectory
of that directory); it does not need explicit permission to do so.'
> Probably means a privileged block is required when accessing the contents of the jar
files in sysinfo

This message is automatically generated by JIRA.
If you think it was sent incorrectly contact one of the administrators:
For more information on JIRA, see:

View raw message