Uploaded image for project: 'Derby'
  1. Derby
  2. DERBY-1373

Encrypted databases cannot be booted using the jar subprotocol (and possibly also using http/https/classpath)



    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s:
    • Fix Version/s:,,
    • Component/s: Store
    • Labels:
    • Environment:
      Environment does not matter.
    • Urgency:


      An encrypted database cannot be booted when using the jar subprotocol.

      The problem lies in the method run from JCECipherFactory. The call to getRandomAccessFile returns null when the verifyKeyFile is an instance of InputStreamFile and the key verification therefore fails.

      The implementation of getRandomAccessFile for InputStreamFile states that its code cannot be reached which is untrue.

      The provided patch does two things, it provides a new class InputStreamRandomAccessFile in package org.apache.derby.impl.io. This class provides simple implementations of readInt and readFully so the key verification process succeeds. A quick scan of the derby source tree showed no problem or possible impact of this simple implementation.

      The second thing the patch does is to modify org/apache/derby/impl/io/InputStreamFile.java so the getRandomAccessFile creates an instance of InputStreamRandomAccessFile instead of returning null.

      This patch has been tested against trunk 410361. It solves the problem at least under the jar subprotocol.

      The patch has not been tested against http/https/classpath.


        1. 10.1_explicitsvnadd_derby1373.diff.txt
          14 kB
          Sunitha Kambhampati
        2. 10.1_derby1373.diff.txt
          5 kB
          Sunitha Kambhampati
        3. derby1373.diff.txt
          14 kB
          Sunitha Kambhampati
        4. derby1373.stat.txt
          0.5 kB
          Sunitha Kambhampati
        5. encryptedJar.patch
          6 kB
          Mathias Herberts
        6. InputStreamFile.java-patch
          0.7 kB
          Mathias Herberts
        7. InputStreamRandomAccessFile.java
          4 kB
          Mathias Herberts



            • Assignee:
              herberts Mathias Herberts
              herberts Mathias Herberts
            • Votes:
              0 Vote for this issue
              0 Start watching this issue


              • Created: