Uploaded image for project: 'Derby'
  1. Derby
  2. DERBY-3532

Invalid & possibly skipped authentication handling when shutting down the network server.

    Details

    • Type: Bug
    • Status: Open
    • Priority: Critical
    • Resolution: Unresolved
    • Affects Version/s: 10.4.1.3, 10.5.1.1
    • Fix Version/s: None
    • Component/s: Network Server
    • Urgency:
      Normal
    • Bug behavior facts:
      Security

      Description

      In NetworkServerControlImpl.checkShutdownPrivileges() code fetches the internal authentication service to perform user authentication.

      However if no such authentication service is found (null is returned) then authentication is bypassed, this has the potential of being a security hole.

      The discussion in DERBY-2109 indicated that even with authentication NONE, there is still an internal authentication service, thus null is not a valid return when getting the internal authentication service. A secure fail safe system would be to not bypass authentication if null is returned.

      I tried removing the check for null in the method and that lead to NullPointerExceptions. This means that something wrong is going on and very possibly no authentication checks are actually being made when shutting down the network server.

      The null return might be due to checking the authentication after Derby has been shutdown.

        Attachments

        1. ReproDerby3532.java
          2 kB
          Kathey Marsden
        2. ReproDerby3532.java
          2 kB
          Lily Wei
        3. DERBY-3532.diff
          3 kB
          Lily Wei

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                djd Daniel John Debrunner
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated: