Derby
  1. Derby
  2. DERBY-2040

Setting derby.database.classpath to contain installed jars causes the database to be unbootable when a Securitymanager is installed.

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 10.2.1.6
    • Fix Version/s: 10.1.3.2, 10.2.2.1, 10.3.1.4
    • Component/s: Services
    • Labels:
      None
    • Bug behavior facts:
      Security

      Description

      If the jars are sucessfully installed (without a security manager see DERBY-537) and the class path set then subsequent boots with a security manager fail with a SecurityException due to trying to install a class loader.

      Related to DERBY-537 but not the same.

        Activity

        Hide
        Kathey Marsden added a comment -

        reclosing this issue

        Show
        Kathey Marsden added a comment - reclosing this issue
        Hide
        Kathey Marsden added a comment -

        Ported change to 10.2 and 10.1 branches

        Kathey

        Show
        Kathey Marsden added a comment - Ported change to 10.2 and 10.1 branches Kathey
        Hide
        Kathey Marsden added a comment -

        Reopen to backport

        Show
        Kathey Marsden added a comment - Reopen to backport
        Hide
        Daniel John Debrunner added a comment -

        Revision: 543565 means that installing/replacing/droping jars and loading classes works with a security manager as demonstrated by DatabaseClassLoadingTest.

        Show
        Daniel John Debrunner added a comment - Revision: 543565 means that installing/replacing/droping jars and loading classes works with a security manager as demonstrated by DatabaseClassLoadingTest.
        Hide
        Daniel John Debrunner added a comment -

        Committed revision 473387.
        Create the class loaders (JarLoader instances) for database class loading within a privileged block.

        Solves the described problem but still unable to load classes from the jar files due to security exceptions.
        Need to ensure accessing the jar files from JarLoader is in a privileged block, but fix might be different
        is DERBY-538 is addressed.

        Show
        Daniel John Debrunner added a comment - Committed revision 473387. Create the class loaders (JarLoader instances) for database class loading within a privileged block. Solves the described problem but still unable to load classes from the jar files due to security exceptions. Need to ensure accessing the jar files from JarLoader is in a privileged block, but fix might be different is DERBY-538 is addressed.

          People

          • Assignee:
            Daniel John Debrunner
            Reporter:
            Daniel John Debrunner
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development