db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rick Hillegas <Richard.Hille...@Sun.COM>
Subject Re: 10.3.1.0b eclipse plugin & default security
Date Thu, 05 Jul 2007 18:47:02 GMT
We could add this permission to read the user.dir property to the 
default policy and the template policy. Can you try that experiment and 
see if it fixes your Eclipse problem? If it does, then I recommend 
making this change. You would add the following permission to the block 
of privileges granted to derby.jar:

  permission java.io.FilePermission "${user.dir}", "read";


Regards,
-Rick

Myrna van Lunteren wrote:
> On 7/5/07, Rick Hillegas <Richard.Hillegas@sun.com> wrote:
>> What security exception are you seeing? I'm not familiar with the
>> eclipse environment and am curious about why the default security policy
>> is not present, given that it should be bundled in derbynet.jar.
>>
>> Thanks,
>> -Rick
>>
>>
> Thx Rick, and Dan,
> I was jumping to conclusions; the server indeed says it's starting
> with default permissions...
> The error is (from derby.log for the appropriate project):
> pache Derby Network Server - 10.3.1.0 beta - (548006) started and
> ready to accept connections on port 1527 at 2007-07-05 18:14:36.885
> GMT
> 2007-07-05 18:15:06.087 GMT Thread[DRDAConnThread_2,5,main] Cleanup
> action starting
> java.security.AccessControlException: access denied
> (java.util.PropertyPermission user.dir read)
>     at 
> java.security.AccessControlContext.checkPermission(AccessControlContext.java:269) 
>
>     at 
> java.security.AccessController.checkPermission(AccessController.java:401)
>     at 
> java.lang.SecurityManager.checkPermission(SecurityManager.java:524)
>     at 
> java.lang.SecurityManager.checkPropertyAccess(SecurityManager.java:1276)
>     at java.lang.System.getProperty(System.java:573)
>     at java.io.Win32FileSystem.getUserPath(Win32FileSystem.java:272)
>     at java.io.Win32FileSystem.resolve(Win32FileSystem.java:288)
>     at java.io.File.getCanonicalPath(File.java:513)
>     at 
> org.apache.derby.impl.services.monitor.StorageFactoryService$1.run(Unknown 
>
> Source)
>     at java.security.AccessController.doPrivileged(Native Method)
>     at 
> org.apache.derby.impl.services.monitor.StorageFactoryService.<init>(Unknown 
>
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor.getPersistentService(Unknown 
>
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor.access$100(Unknown
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor$ProviderEnumeration.getNextStorageFactory(Unknown

>
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor$ProviderEnumeration.hasMoreElements(Unknown

>
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor.findProviderAndStartService(Unknown

>
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor.startPersistentService(Unknown 
>
> Source)
>     at 
> org.apache.derby.iapi.services.monitor.Monitor.startPersistentService(Unknown 
>
> Source)
>     at org.apache.derby.impl.jdbc.EmbedConnection.bootDatabase(Unknown 
> Source)
>     at org.apache.derby.impl.jdbc.EmbedConnection.<init>(Unknown Source)
>     at org.apache.derby.impl.jdbc.EmbedConnection30.<init>(Unknown 
> Source)
>     at org.apache.derby.jdbc.Driver30.getNewEmbedConnection(Unknown 
> Source)
>     at org.apache.derby.jdbc.InternalDriver.connect(Unknown Source)
>     at org.apache.derby.jdbc.AutoloadedDriver.connect(Unknown Source)
>     at org.apache.derby.impl.drda.Database.makeConnection(Unknown Source)
>     at 
> org.apache.derby.impl.drda.DRDAConnThread.getConnFromDatabaseName(Unknown
> Source)
>     at 
> org.apache.derby.impl.drda.DRDAConnThread.verifyUserIdPassword(Unknown
> Source)
>     at org.apache.derby.impl.drda.DRDAConnThread.parseSECCHK(Unknown 
> Source)
>     at 
> org.apache.derby.impl.drda.DRDAConnThread.parseDRDAConnection(Unknown
> Source)
>     at 
> org.apache.derby.impl.drda.DRDAConnThread.processCommands(Unknown Source)
>     at org.apache.derby.impl.drda.DRDAConnThread.run(Unknown Source)
> Cleanup action completed
> 2007-07-05 18:15:06.097 GMT Thread[DRDAConnThread_2,5,main] Cleanup
> action starting
> java.security.AccessControlException: access denied
> (java.util.PropertyPermission user.dir read)
>     at 
> java.security.AccessControlContext.checkPermission(AccessControlContext.java:269) 
>
>     at 
> java.security.AccessController.checkPermission(AccessController.java:401)
>     at 
> java.lang.SecurityManager.checkPermission(SecurityManager.java:524)
>     at 
> java.lang.SecurityManager.checkPropertyAccess(SecurityManager.java:1276)
>     at java.lang.System.getProperty(System.java:573)
>     at java.io.Win32FileSystem.getUserPath(Win32FileSystem.java:272)
>     at java.io.Win32FileSystem.resolve(Win32FileSystem.java:288)
>     at java.io.File.getCanonicalPath(File.java:513)
>     at 
> org.apache.derby.impl.services.monitor.StorageFactoryService$1.run(Unknown 
>
> Source)
>     at java.security.AccessController.doPrivileged(Native Method)
>     at 
> org.apache.derby.impl.services.monitor.StorageFactoryService.<init>(Unknown 
>
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor.getPersistentService(Unknown 
>
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor.access$100(Unknown
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor$ProviderEnumeration.getNextStorageFactory(Unknown

>
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor$ProviderEnumeration.hasMoreElements(Unknown

>
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor.findProviderAndStartService(Unknown

>
> Source)
>     at 
> org.apache.derby.impl.services.monitor.BaseMonitor.startPersistentService(Unknown 
>
> Source)
>     at 
> org.apache.derby.iapi.services.monitor.Monitor.startPersistentService(Unknown 
>
> Source)
>     at org.apache.derby.impl.jdbc.EmbedConnection.bootDatabase(Unknown 
> Source)
>     at org.apache.derby.impl.jdbc.EmbedConnection.<init>(Unknown Source)
>     at org.apache.derby.impl.jdbc.EmbedConnection30.<init>(Unknown 
> Source)
>     at org.apache.derby.jdbc.Driver30.getNewEmbedConnection(Unknown 
> Source)
>     at org.apache.derby.jdbc.InternalDriver.connect(Unknown Source)
>     at org.apache.derby.jdbc.AutoloadedDriver.connect(Unknown Source)
>     at org.apache.derby.impl.drda.Database.makeConnection(Unknown Source)
>     at 
> org.apache.derby.impl.drda.DRDAConnThread.getConnFromDatabaseName(Unknown
> Source)
>     at 
> org.apache.derby.impl.drda.DRDAConnThread.verifyUserIdPassword(Unknown
> Source)
>     at org.apache.derby.impl.drda.DRDAConnThread.parseSECCHK(Unknown 
> Source)
>     at 
> org.apache.derby.impl.drda.DRDAConnThread.parseDRDAConnection(Unknown
> Source)
>     at 
> org.apache.derby.impl.drda.DRDAConnThread.processCommands(Unknown Source)
>     at org.apache.derby.impl.drda.DRDAConnThread.run(Unknown Source)
> Cleanup action completed
> 2007-07-05 18:15:06.117 GMT Thread[DRDAConnThread_2,5,main] (DATABASE
> = bladb), (DRDAID = {1}), Java exception: 'access denied
> (java.util.PropertyPermission user.dir read):
> java.security.AccessControlException'.
>
> Suggestions?
> Myrna


Mime
View raw message