Return-Path: X-Original-To: apmail-db-derby-dev-archive@www.apache.org Delivered-To: apmail-db-derby-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id A7CECD131 for ; Mon, 29 Oct 2012 18:06:12 +0000 (UTC) Received: (qmail 89239 invoked by uid 500); 29 Oct 2012 18:06:12 -0000 Delivered-To: apmail-db-derby-dev-archive@db.apache.org Received: (qmail 89178 invoked by uid 500); 29 Oct 2012 18:06:12 -0000 Mailing-List: contact derby-dev-help@db.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: Delivered-To: mailing list derby-dev@db.apache.org Received: (qmail 88927 invoked by uid 99); 29 Oct 2012 18:06:12 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 29 Oct 2012 18:06:12 +0000 Date: Mon, 29 Oct 2012 18:06:12 +0000 (UTC) From: "Rick Hillegas (JIRA)" To: derby-dev@db.apache.org Message-ID: <1333597566.40019.1351533972289.JavaMail.jiratomcat@arcas> In-Reply-To: <1735782179.39945.1351533373178.JavaMail.jiratomcat@arcas> Subject: [jira] [Commented] (DERBY-5969) Re-encryption and un-encryption silently fail if the database is already booted. MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/DERBY-5969?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13486219#comment-13486219 ] Rick Hillegas commented on DERBY-5969: -------------------------------------- The following script shows this problem: connect 'jdbc:derby:db;create=true;user=test_dbo;dataEncryption=true;bootPassword=foobarwibblewombat'; call syscs_util.syscs_create_user( 'test_dbo', 'test_dbopassword' ); call syscs_util.syscs_create_user( 'fred', 'fredpassword' ); -- shutdown the database connect 'jdbc:derby:db;shutdown=true'; -- let another user boot the database connect 'jdbc:derby:db;user=fred;password=fredpassword;bootPassword=foobarwibblewombat'; -- the following attempt to decrypt the database appears to work -- but actually fails. connect 'jdbc:derby:db;user=test_dbo;password=test_dbopassword;bootPassword=foobarwibblewombat;decryptDatabase=true'; -- shutdown the database connect 'jdbc:derby:db;shutdown=true;user=test_dbo;password=test_dbopassword'; -- this demonstrates that the unencryption failed connect 'jdbc:derby:db;user=test_dbo;password=test_dbopassword'; > Re-encryption and un-encryption silently fail if the database is already booted. > -------------------------------------------------------------------------------- > > Key: DERBY-5969 > URL: https://issues.apache.org/jira/browse/DERBY-5969 > Project: Derby > Issue Type: Bug > Components: Services > Affects Versions: 10.10.0.0 > Reporter: Rick Hillegas > > If the database is already booted, then the DBO's attempt to re-encrypt or un-encrypt the database will silently fail. It will appear to the DBO that the re(un)encryption succeeded but in fact the database will not be changed. Derby should raise an error if the database is already booted when the DBO attempts re(un)encryption. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira