db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rick Hillegas <Richard.Hille...@Sun.COM>
Subject Re: 10.3.1.0b eclipse plugin & default security
Date Thu, 05 Jul 2007 19:00:47 GMT
Oops. The missing permission should be:

  permission java.util.PropertyPermission "user.dir", "read";


Rick Hillegas wrote:
> We could add this permission to read the user.dir property to the 
> default policy and the template policy. Can you try that experiment 
> and see if it fixes your Eclipse problem? If it does, then I recommend 
> making this change. You would add the following permission to the 
> block of privileges granted to derby.jar:
>
>  permission java.io.FilePermission "${user.dir}", "read";
>
>
> Regards,
> -Rick
>
> Myrna van Lunteren wrote:
>> On 7/5/07, Rick Hillegas <Richard.Hillegas@sun.com> wrote:
>>> What security exception are you seeing? I'm not familiar with the
>>> eclipse environment and am curious about why the default security 
>>> policy
>>> is not present, given that it should be bundled in derbynet.jar.
>>>
>>> Thanks,
>>> -Rick
>>>
>>>
>> Thx Rick, and Dan,
>> I was jumping to conclusions; the server indeed says it's starting
>> with default permissions...
>> The error is (from derby.log for the appropriate project):
>> pache Derby Network Server - 10.3.1.0 beta - (548006) started and
>> ready to accept connections on port 1527 at 2007-07-05 18:14:36.885
>> GMT
>> 2007-07-05 18:15:06.087 GMT Thread[DRDAConnThread_2,5,main] Cleanup
>> action starting
>> java.security.AccessControlException: access denied
>> (java.util.PropertyPermission user.dir read)
>>     at 
>> java.security.AccessControlContext.checkPermission(AccessControlContext.java:269)

>>
>>     at 
>> java.security.AccessController.checkPermission(AccessController.java:401) 
>>
>>     at 
>> java.lang.SecurityManager.checkPermission(SecurityManager.java:524)
>>     at 
>> java.lang.SecurityManager.checkPropertyAccess(SecurityManager.java:1276)
>>     at java.lang.System.getProperty(System.java:573)
>>     at java.io.Win32FileSystem.getUserPath(Win32FileSystem.java:272)
>>     at java.io.Win32FileSystem.resolve(Win32FileSystem.java:288)
>>     at java.io.File.getCanonicalPath(File.java:513)
>>     at 
>> org.apache.derby.impl.services.monitor.StorageFactoryService$1.run(Unknown 
>>
>> Source)
>>     at java.security.AccessController.doPrivileged(Native Method)
>>     at 
>> org.apache.derby.impl.services.monitor.StorageFactoryService.<init>(Unknown

>>
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor.getPersistentService(Unknown 
>>
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor.access$100(Unknown
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor$ProviderEnumeration.getNextStorageFactory(Unknown

>>
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor$ProviderEnumeration.hasMoreElements(Unknown

>>
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor.findProviderAndStartService(Unknown

>>
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor.startPersistentService(Unknown

>>
>> Source)
>>     at 
>> org.apache.derby.iapi.services.monitor.Monitor.startPersistentService(Unknown 
>>
>> Source)
>>     at 
>> org.apache.derby.impl.jdbc.EmbedConnection.bootDatabase(Unknown Source)
>>     at org.apache.derby.impl.jdbc.EmbedConnection.<init>(Unknown Source)
>>     at org.apache.derby.impl.jdbc.EmbedConnection30.<init>(Unknown 
>> Source)
>>     at org.apache.derby.jdbc.Driver30.getNewEmbedConnection(Unknown 
>> Source)
>>     at org.apache.derby.jdbc.InternalDriver.connect(Unknown Source)
>>     at org.apache.derby.jdbc.AutoloadedDriver.connect(Unknown Source)
>>     at org.apache.derby.impl.drda.Database.makeConnection(Unknown 
>> Source)
>>     at 
>> org.apache.derby.impl.drda.DRDAConnThread.getConnFromDatabaseName(Unknown 
>>
>> Source)
>>     at 
>> org.apache.derby.impl.drda.DRDAConnThread.verifyUserIdPassword(Unknown
>> Source)
>>     at org.apache.derby.impl.drda.DRDAConnThread.parseSECCHK(Unknown 
>> Source)
>>     at 
>> org.apache.derby.impl.drda.DRDAConnThread.parseDRDAConnection(Unknown
>> Source)
>>     at 
>> org.apache.derby.impl.drda.DRDAConnThread.processCommands(Unknown 
>> Source)
>>     at org.apache.derby.impl.drda.DRDAConnThread.run(Unknown Source)
>> Cleanup action completed
>> 2007-07-05 18:15:06.097 GMT Thread[DRDAConnThread_2,5,main] Cleanup
>> action starting
>> java.security.AccessControlException: access denied
>> (java.util.PropertyPermission user.dir read)
>>     at 
>> java.security.AccessControlContext.checkPermission(AccessControlContext.java:269)

>>
>>     at 
>> java.security.AccessController.checkPermission(AccessController.java:401) 
>>
>>     at 
>> java.lang.SecurityManager.checkPermission(SecurityManager.java:524)
>>     at 
>> java.lang.SecurityManager.checkPropertyAccess(SecurityManager.java:1276)
>>     at java.lang.System.getProperty(System.java:573)
>>     at java.io.Win32FileSystem.getUserPath(Win32FileSystem.java:272)
>>     at java.io.Win32FileSystem.resolve(Win32FileSystem.java:288)
>>     at java.io.File.getCanonicalPath(File.java:513)
>>     at 
>> org.apache.derby.impl.services.monitor.StorageFactoryService$1.run(Unknown 
>>
>> Source)
>>     at java.security.AccessController.doPrivileged(Native Method)
>>     at 
>> org.apache.derby.impl.services.monitor.StorageFactoryService.<init>(Unknown

>>
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor.getPersistentService(Unknown 
>>
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor.access$100(Unknown
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor$ProviderEnumeration.getNextStorageFactory(Unknown

>>
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor$ProviderEnumeration.hasMoreElements(Unknown

>>
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor.findProviderAndStartService(Unknown

>>
>> Source)
>>     at 
>> org.apache.derby.impl.services.monitor.BaseMonitor.startPersistentService(Unknown

>>
>> Source)
>>     at 
>> org.apache.derby.iapi.services.monitor.Monitor.startPersistentService(Unknown 
>>
>> Source)
>>     at 
>> org.apache.derby.impl.jdbc.EmbedConnection.bootDatabase(Unknown Source)
>>     at org.apache.derby.impl.jdbc.EmbedConnection.<init>(Unknown Source)
>>     at org.apache.derby.impl.jdbc.EmbedConnection30.<init>(Unknown 
>> Source)
>>     at org.apache.derby.jdbc.Driver30.getNewEmbedConnection(Unknown 
>> Source)
>>     at org.apache.derby.jdbc.InternalDriver.connect(Unknown Source)
>>     at org.apache.derby.jdbc.AutoloadedDriver.connect(Unknown Source)
>>     at org.apache.derby.impl.drda.Database.makeConnection(Unknown 
>> Source)
>>     at 
>> org.apache.derby.impl.drda.DRDAConnThread.getConnFromDatabaseName(Unknown 
>>
>> Source)
>>     at 
>> org.apache.derby.impl.drda.DRDAConnThread.verifyUserIdPassword(Unknown
>> Source)
>>     at org.apache.derby.impl.drda.DRDAConnThread.parseSECCHK(Unknown 
>> Source)
>>     at 
>> org.apache.derby.impl.drda.DRDAConnThread.parseDRDAConnection(Unknown
>> Source)
>>     at 
>> org.apache.derby.impl.drda.DRDAConnThread.processCommands(Unknown 
>> Source)
>>     at org.apache.derby.impl.drda.DRDAConnThread.run(Unknown Source)
>> Cleanup action completed
>> 2007-07-05 18:15:06.117 GMT Thread[DRDAConnThread_2,5,main] (DATABASE
>> = bladb), (DRDAID = {1}), Java exception: 'access denied
>> (java.util.PropertyPermission user.dir read):
>> java.security.AccessControlException'.
>>
>> Suggestions?
>> Myrna
>


Mime
View raw message