Derby
  1. Derby
  2. DERBY-5970

Check that connection attributes have legal values.

    Details

    • Type: Bug Bug
    • Status: Open
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: 10.10.1.1
    • Fix Version/s: None
    • Component/s: Services
    • Urgency:
      Normal
    • Bug behavior facts:
      Security

      Description

      At boot time, Derby does not check whether connection attributes are set to legal values. This can cause them to be silently ignored. In the case of security operations like re(un)encryption, these silent failures deceive the DBO into thinking that the security behavior of the database has changed when, in fact, it hasn't. We should do the following:

      1) Prevent decryptDatabase from being set to an illegal value. Since this is a new attribute, there are no backward compatibility issues.

      2) Evaluate other attributes on a case-by-case basis to determine which ones should raise exceptions if they are set to illegal values. Technically, this may result in backwardly incompatible behavior. However, I think that for most attributes, we will decide that the incompatibility is minor and is a welcome bugfix.

      1. derby-5970-01-aa-vetDecryptDatabaseValue.diff
        3 kB
        Rick Hillegas
      2. derby-5970-01-ab-vetDecryptDatabaseValue.diff
        3 kB
        Rick Hillegas
      3. derby-5970-02-aa-vetDataEncryptionValue.diff
        2 kB
        Rick Hillegas
      4. AttributeChecks.html
        7 kB
        Rick Hillegas
      5. AttributeChecks.html
        14 kB
        Rick Hillegas
      6. AttributeChecks.html
        14 kB
        Rick Hillegas
      7. AttributeChecks.html
        14 kB
        Rick Hillegas

        Issue Links

          Activity

          No work has yet been logged on this issue.

            People

            • Assignee:
              Unassigned
              Reporter:
              Rick Hillegas
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:

                Development