Return-Path: Delivered-To: apmail-db-derby-dev-archive@www.apache.org Received: (qmail 99960 invoked from network); 4 Aug 2008 19:39:36 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 4 Aug 2008 19:39:36 -0000 Received: (qmail 15898 invoked by uid 500); 4 Aug 2008 19:39:36 -0000 Delivered-To: apmail-db-derby-dev-archive@db.apache.org Received: (qmail 15687 invoked by uid 500); 4 Aug 2008 19:39:35 -0000 Mailing-List: contact derby-dev-help@db.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: Delivered-To: mailing list derby-dev@db.apache.org Received: (qmail 15676 invoked by uid 99); 4 Aug 2008 19:39:35 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 04 Aug 2008 12:39:35 -0700 X-ASF-Spam-Status: No, hits=-2000.0 required=10.0 tests=ALL_TRUSTED X-Spam-Check-By: apache.org Received: from [140.211.11.140] (HELO brutus.apache.org) (140.211.11.140) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 04 Aug 2008 19:38:48 +0000 Received: from brutus (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id 454D1234C186 for ; Mon, 4 Aug 2008 12:38:44 -0700 (PDT) Message-ID: <870072893.1217878724282.JavaMail.jira@brutus> Date: Mon, 4 Aug 2008 12:38:44 -0700 (PDT) From: "Kristian Waagan (JIRA)" To: derby-dev@db.apache.org Subject: [jira] Commented: (DERBY-2556) Code paths for db restore do not use doPrivileged-calls, causing SecurityException In-Reply-To: <2566187.1176811875926.JavaMail.jira@brutus> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/jira/browse/DERBY-2556?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12619659#action_12619659 ] Kristian Waagan commented on DERBY-2556: ---------------------------------------- I'll have a look at this tomorrow and try to get it done before the 10.4 release. > Code paths for db restore do not use doPrivileged-calls, causing SecurityException > ---------------------------------------------------------------------------------- > > Key: DERBY-2556 > URL: https://issues.apache.org/jira/browse/DERBY-2556 > Project: Derby > Issue Type: Bug > Components: Services > Affects Versions: 10.2.2.0, 10.3.1.4 > Environment: Derby running with a security manager. > Reporter: Kristian Waagan > Assignee: Kristian Waagan > Fix For: 10.3.1.4 > > Attachments: derby-2556-2a_whitespace-javadoc.diff, derby-2556-3a_alternative-patch.diff, derby-2556-3a_alternative-patch.stat, derby-2556-4a_alternative-patch.diff, derby-2556-4a_alternative-patch.stat, derby-2556_diff.txt, derby-2556_stat.txt > > > When using 'createFrom' or 'restoreFrom' in the JDBC url to restore a database from a backup image, a SecurityException is thrown even though the policyfile for codebase derby.jar is correctly configured (giving Derby access to the backup image). > A few comments on this issue can be found here (and in subsequent comments): https://issues.apache.org/jira/browse/DERBY-1001#action_12439811 > A workaround is wrapping the connection call in doPrivileged at the "application-level code", or granting the required permissions to the application codebase as well. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.