[#DERBY-485] SecurityException or LinkageException thrown during loading a class from a database jar incorrectly shuts the engine down.

Derby

SecurityException or LinkageException thrown during loading a class from a database jar incorrectly shuts the engine down.

Created: 03/Aug/05 04:31 AM Updated: 30/Jun/09 12:14 AM

Return to search

Component/s:

SQL

Affects Version/s:

10.1.2.1, 10.2.1.6

Fix Version/s:

10.1.2.1, 10.2.1.6

Time Tracking:

Not Specified

Bug behavior facts:	Security
Resolution Date:	30/Sep/05 02:26 AM

Description

« Hide

In addiing test cases to lang/dcl.test for signed jar files stored in the database I found that if a jar is installed with a tampered class the resulting SecurityException shuts Derby down. Most likely the same would be true for an invalid class hacked into the jar.

All

Comments

Work Log

Change History

Subversion Commits

Sort Order:

Repository	Revision	Date	User	Message
ASF	#230183	Fri Aug 05 00:30:40 UTC 2005	djd	~~DERBY-485~~ Catch SecurityExceptions and LinkageExceptions consistently when loading application classes (e.g. procedures, functions) and report as a ClassNotFoundException with the text of the underlying exception. Enhance the test lang/dcl.jar to have a signed jar file as a database jar, a hacked version of the jar file and a jar file with an invalid class (for a LinkageError).
				Files Changed
				MODIFY /db/derby/code/trunk/java/engine/org/apache/derby/impl/services/reflect/DatabaseClasses.java MODIFY /db/derby/code/trunk/java/engine/org/apache/derby/impl/sql/compile/ColumnDefinitionNode.java MODIFY /db/derby/code/trunk/java/engine/org/apache/derby/impl/sql/execute/CreateAliasConstantAction.java MODIFY /db/derby/code/trunk/java/engine/org/apache/derby/impl/services/reflect/ReflectClassesJava2.java MODIFY /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl.sql MODIFY /db/derby/code/trunk/java/engine/org/apache/derby/impl/sql/compile/QueryTreeNode.java ADD /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_emc2l.jar MODIFY /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/master/dcl.out MODIFY /db/derby/code/trunk/java/engine/org/apache/derby/iapi/types/TypeId.java MODIFY /db/derby/code/trunk/java/engine/org/apache/derby/iapi/services/loader/ClassInspector.java ADD /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_emc2s.jar ADD /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_emc2sm.jar ADD /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/master/jdk15/dcl.out MODIFY /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_app.properties ADD /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/master/jdk15 MODIFY /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/tests/lang/copyfiles.ant MODIFY /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_emc2.jar MODIFY /db/derby/code/trunk/java/engine/org/apache/derby/iapi/services/loader/ClassFactory.java

Repository	Revision	Date	User	Message
ASF	#290286	Mon Sep 19 21:53:39 UTC 2005	djd	~~DERBY-485~~ Catch SecurityExceptions and LinkageExceptions consistently when loading application classes (e.g. procedures, functions). Merge of 230183 from the trunk.
				Files Changed
				ADD /db/derby/code/branches/10.1/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_emc2s.jar (from /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_emc2s.jar) REPLACE /db/derby/code/branches/10.1/java/testing/org/apache/derbyTesting/functionTests/master/jdk15/dcl.out (from /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/master/jdk15/dcl.out) ADD /db/derby/code/branches/10.1/java/testing/org/apache/derbyTesting/functionTests/master/jdk15 (from /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/master/jdk15) MODIFY /db/derby/code/branches/10.1/java/testing/org/apache/derbyTesting/functionTests/tests/lang/copyfiles.ant ADD /db/derby/code/branches/10.1/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_emc2sm.jar (from /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_emc2sm.jar) MODIFY /db/derby/code/branches/10.1/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_app.properties MODIFY /db/derby/code/branches/10.1/java/engine/org/apache/derby/iapi/services/loader/ClassFactory.java MODIFY /db/derby/code/branches/10.1/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_emc2.jar MODIFY /db/derby/code/branches/10.1/java/engine/org/apache/derby/impl/services/reflect/DatabaseClasses.java MODIFY /db/derby/code/branches/10.1/java/engine/org/apache/derby/impl/sql/compile/ColumnDefinitionNode.java MODIFY /db/derby/code/branches/10.1/java/engine/org/apache/derby/impl/services/reflect/ReflectClassesJava2.java MODIFY /db/derby/code/branches/10.1/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl.sql MODIFY /db/derby/code/branches/10.1/java/engine/org/apache/derby/impl/sql/execute/CreateAliasConstantAction.java ADD /db/derby/code/branches/10.1/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_emc2l.jar (from /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/tests/lang/dcl_emc2l.jar) MODIFY /db/derby/code/branches/10.1/java/testing/org/apache/derbyTesting/functionTests/master/dcl.out MODIFY /db/derby/code/branches/10.1/java/engine/org/apache/derby/iapi/types/TypeId.java MODIFY /db/derby/code/branches/10.1/java/engine/org/apache/derby/iapi/services/loader/ClassInspector.java MODIFY /db/derby/code/branches/10.1/java/engine/org/apache/derby/impl/sql/compile/QueryTreeNode.java