Uploaded image for project: 'Derby'
  1. Derby
  2. DERBY-5970

Check that connection attributes have legal values.

    Details

    • Type: Bug
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 10.10.1.1
    • Fix Version/s: None
    • Component/s: Services
    • Urgency:
      Normal
    • Bug behavior facts:
      Security

      Description

      At boot time, Derby does not check whether connection attributes are set to legal values. This can cause them to be silently ignored. In the case of security operations like re(un)encryption, these silent failures deceive the DBO into thinking that the security behavior of the database has changed when, in fact, it hasn't. We should do the following:

      1) Prevent decryptDatabase from being set to an illegal value. Since this is a new attribute, there are no backward compatibility issues.

      2) Evaluate other attributes on a case-by-case basis to determine which ones should raise exceptions if they are set to illegal values. Technically, this may result in backwardly incompatible behavior. However, I think that for most attributes, we will decide that the incompatibility is minor and is a welcome bugfix.

        Attachments

        1. AttributeChecks.html
          14 kB
          Rick Hillegas
        2. AttributeChecks.html
          14 kB
          Rick Hillegas
        3. AttributeChecks.html
          14 kB
          Rick Hillegas
        4. AttributeChecks.html
          7 kB
          Rick Hillegas
        5. derby-5970-02-aa-vetDataEncryptionValue.diff
          2 kB
          Rick Hillegas
        6. derby-5970-01-ab-vetDecryptDatabaseValue.diff
          3 kB
          Rick Hillegas
        7. derby-5970-01-aa-vetDecryptDatabaseValue.diff
          3 kB
          Rick Hillegas

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                rhillegas Rick Hillegas
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated: