db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Rick Hillegas (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (DERBY-6630) Applications can use JCECipherFactory to elevate their privileges to those granted to Derby
Date Mon, 29 Sep 2014 13:47:33 GMT

     [ https://issues.apache.org/jira/browse/DERBY-6630?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Rick Hillegas updated DERBY-6630:
---------------------------------
    Attachment: derby-6630-01-aa-usederbyinternals.diff

Attaching derby-6630-01-aa-usederbyinternals.diff. This patch reduces the visibility of JCECipherFactory
and adds a check for usederbyinternals permission to its constructor. I am running tests now.

Touches the following files:

----------------

M       java/engine/org/apache/derby/impl/services/jce/JCECipherFactory.java
M       java/engine/org/apache/derby/impl/services/jce/JCECipherFactoryBuilder.java

Changes for (1).

----------------

M       java/testing/org/apache/derbyTesting/functionTests/tests/lang/NoDBInternalsPermissionTest.java

Adds a regression test to verify that you need usederbyinternals permission in order to create
a cipher factory.


> Applications can use JCECipherFactory to elevate their privileges to those granted to
Derby
> -------------------------------------------------------------------------------------------
>
>                 Key: DERBY-6630
>                 URL: https://issues.apache.org/jira/browse/DERBY-6630
>             Project: Derby
>          Issue Type: Bug
>          Components: Services
>    Affects Versions: 10.11.1.1
>            Reporter: Rick Hillegas
>         Attachments: derby-6630-01-aa-usederbyinternals.diff
>
>
> JCECipherFactory.run() performs security-sensitive operations. It is executed in a privilege
block by the init() method, which is, in turn, executed by the public constructor. The class
and its corresponding factory are public, which means that any code running in the same JVM
can run this security-sensitive code with the privileges granted to Derby.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message