Issue Details (XML | Word | Printable)

Key: DERBY-624
Type: Bug Bug
Status: Closed Closed
Resolution: Fixed
Priority: Major Major
Assignee: Daniel John Debrunner
Reporter: Daniel John Debrunner
Votes: 0
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
Derby

Running derbynetclientmats and derbynetmats requires accessDeclaredMembers permission to be granted with sane=true

Created: 13/Oct/05 11:10 PM   Updated: 12/Jul/06 06:43 AM
Return to search
Component/s: Network Server, Services
Affects Version/s: 10.2.1.6
Fix Version/s: 10.1.2.1, 10.2.1.6

Time Tracking:
Not Specified

Issue Links:
Blocker
 

Resolution Date: 14/Oct/05 11:41 PM


 Description  « Hide
About 17 tests fail if this permission is not granted. Permission should not be required to run Derby in embedded or network server mode.

permission java.lang.RuntimePermission "accessDeclaredMembers";

In some (all?) cases it is because getDeclaredConstrunctor or getDeclaredMethod is called when the getPublic versions would suffice.

 All   Comments   Work Log   Change History   Subversion Commits      Sort Order: Ascending order - Click to sort in descending order
[ Permlink | « Hide ]
Daniel John Debrunner added a comment - 13/Oct/05 11:13 PM
Blocks DERBY-615 because granting this permission so widely in the policy file has the potential to hide security bugs as more tests are enabled to be run under the security manager.

Daniel John Debrunner made changes - 13/Oct/05 11:13 PM
Field Original Value New Value
Link This issue blocks DERBY-615 [ DERBY-615 ]
Repository Revision Date User Message
ASF #321124 Fri Oct 14 13:59:46 UTC 2005 djd DERBY-624 Remove requirement for the permission accessDeclaredMembers to be granted to all code in the stack when running the embedded engine. Changed calls to use Class.getConstructor/getMethod where possible instead of the getDeclared versions that require the permission.
Files Changed
MODIFY /db/derby/code/trunk/java/testing/org/apache/derbyTesting/functionTests/util/derby_tests.policy
MODIFY /db/derby/code/trunk/java/engine/org/apache/derby/iapi/jdbc/DRDAServerStarter.java
MODIFY /db/derby/code/trunk/java/engine/org/apache/derby/impl/services/bytecode/d_BCValidate.java

Daniel John Debrunner made changes - 14/Oct/05 11:41 PM
Resolution Fixed [ 1 ]
Status Open [ 1 ] Resolved [ 5 ]
Fix Version/s 10.2.0.0 [ 11187 ]
Repository Revision Date User Message
ASF #326282 Tue Oct 18 22:36:52 UTC 2005 djd DERBY-624 Remove requirement for the permission accessDeclaredMembers to be granted to all code in the stack when running the embedded engine. Changed calls to use Class.getConstructor/getMethod where possible instead of the getDeclared versions that require the permission.
Merge of trunk revision 321124
Files Changed
MODIFY /db/derby/code/branches/10.1/java/testing/org/apache/derbyTesting/functionTests/util/derby_tests.policy
MODIFY /db/derby/code/branches/10.1/java/engine/org/apache/derby/iapi/jdbc/DRDAServerStarter.java
MODIFY /db/derby/code/branches/10.1/java/engine/org/apache/derby/impl/services/bytecode/d_BCValidate.java

Daniel John Debrunner made changes - 19/Oct/05 07:47 AM
Fix Version/s 10.2.0.0 [ 11187 ]
Fix Version/s 10.1.2.0 [ 12310270 ]
Fix Version/s 10.1.1.2 [ 12310353 ]
Daniel John Debrunner made changes - 19/Oct/05 07:50 AM
Fix Version/s 10.2.0.0 [ 11187 ]
Kathey Marsden made changes - 01/Jul/06 08:30 AM
Component/s Services [ 11415 ]
Component/s Network Server [ 11410 ]
Daniel John Debrunner made changes - 12/Jul/06 06:43 AM
Status Resolved [ 5 ] Closed [ 6 ]

Powered by a free Atlassian JIRA open source license for Apache Software Foundation. Try JIRA - bug tracking software for your team.
Atlassian JIRA the Professional Issue Tracker. (Enterprise Edition, Version: 3.13.2-#335) - Bug/feature request - Atlassian news - Contact Administrators