Mailing-List: contact derby-dev-help@db.apache.org; run by ezmlm
Precedence: bulk
Reply-To: <derby-dev@db.apache.org>
Message-ID: <293591566.1141760682326.JavaMail.jira@ajax>
Date: Tue, 7 Mar 2006 19:44:42 +0000 (GMT)
From: "Suresh Thalamati (JIRA)" <derby-dev@db.apache.org>
To: derby-dev@db.apache.org
Subject: [jira] Updated: (DERBY-616) create index can fail under the
 SecurityManager when trying to access files in the tmp folder of a database
In-Reply-To: <1889868818.1129054210899.JavaMail.jira@ajax.apache.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit

     [ http://issues.apache.org/jira/browse/DERBY-616?page=all ]

Suresh Thalamati updated DERBY-616:
-----------------------------------

    Attachment: derby-616.diff

DERBY-616:

-- Added a missing privileged blocks for I/O call in StreamFileContainer.java ,
this class is used by the sort during index creation ..etc. 
   
-- Enabled some of the tests which were not running under security manager 
   earlier because of this bug to run by default with security manager. 

-- removed the additional permissions from the derby test policy file 
   that were added earlier to avoid this bug for some test cases. 

TESTS : derbyall test suite passed on Windows XP/JDK142/ with sane classes
directory and insane jars. 

It would be great if some can review and commit this patch. 

svn stat:
M      java\engine\org\apache\derby\impl\store\raw\data\StreamFileContainer.java

M      java\testing\org\apache\derbyTesting\functionTests\tests\lang\compressTable_app.properties
M      java\testing\org\apache\derbyTesting\functionTests\tests\lang\authorize_app.properties
M      java\testing\org\apache\derbyTesting\functionTests\tests\lang\wisconsin_app.properties
M      java\testing\org\apache\derbyTesting\functionTests\tests\lang\syscat_app.properties
M      java\testing\org\apache\derbyTesting\functionTests\tests\store\holdCursorExternalSortJDBC30_app.properties
M      java\testing\org\apache\derbyTesting\functionTests\tests\store\access_app.properties
M      java\testing\org\apache\derbyTesting\functionTests\tests\store\testsqldecimal_app.properties
M      java\testing\org\apache\derbyTesting\functionTests\util\derby_tests.policy


> create index can fail under the SecurityManager when trying to access files in the tmp folder of a database
> -----------------------------------------------------------------------------------------------------------
>
>          Key: DERBY-616
>          URL: http://issues.apache.org/jira/browse/DERBY-616
>      Project: Derby
>         Type: Bug
>   Components: Store
>     Versions: 10.0.2.1, 10.1.1.0, 10.2.0.0
>     Reporter: Daniel John Debrunner
>     Assignee: Suresh Thalamati
>     Priority: Critical
>  Attachments: derby-616.diff
>
> Seen in tests lang/wisconsin.sql and jdbcapi/maxfieldsize.java when running with the network server and the new security policy file that grants permisions on a per-jar basis. Unless permission is given to the network serve code (since it is in the stack) to access temp files in the database the test will fail.
>   permission java.io.FilePermission "${derby.system.home}${/}wombat${/}tmp${/}-", "read, write, delete";
> Most likely the temp files are being accessed in without a privileged block.
> Easy to reproduce once the new policy file changes are checked in (see http://wiki.apache.org/db-derby/SecurityManagerTesting) by removing the permission in the derby_tests.policy  file and running these tests using the jar files.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira