db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Rick Hillegas (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (DERBY-5970) Check that connection attributes have legal values.
Date Tue, 30 Oct 2012 13:28:14 GMT

     [ https://issues.apache.org/jira/browse/DERBY-5970?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel

Rick Hillegas updated DERBY-5970:

    Attachment: derby-5970-01-aa-vetDecryptDatabaseValue.diff

Attaching derby-5970-01-aa-vetDecryptDatabaseValue.diff. This patch makes Derby raise an exception
if the decryptDatabase attribute is set and it is set to some value other than "true". I am
running regression tests now.

Touches the following files


M       java/engine/org/apache/derby/impl/jdbc/EmbedConnection.java

Vet the value of decryptDatabase early on while processing the connection request.


M       java/testing/org/apache/derbyTesting/functionTests/tests/store/DecryptDatabaseTest.java

Add a test case.

> Check that connection attributes have legal values.
> ---------------------------------------------------
>                 Key: DERBY-5970
>                 URL: https://issues.apache.org/jira/browse/DERBY-5970
>             Project: Derby
>          Issue Type: Bug
>          Components: Services
>    Affects Versions:
>            Reporter: Rick Hillegas
>         Attachments: derby-5970-01-aa-vetDecryptDatabaseValue.diff
> At boot time, Derby does not check whether connection attributes are set to legal values.
This can cause them to be silently ignored. In the case of security operations like re(un)encryption,
these silent failures deceive the DBO into thinking that the security behavior of the database
has changed when, in fact, it hasn't. We should do the following:
> 1) Prevent decryptDatabase from being set to an illegal value. Since this is a new attribute,
there are no backward compatibility issues.
> 2) Evaluate other attributes on a case-by-case basis to determine which ones should raise
exceptions if they are set to illegal values. Technically, this may result in backwardly incompatible
behavior. However, I think that for most attributes, we will decide that the incompatibility
is minor and is a welcome bugfix.

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

View raw message