[
https://issues.apache.org/jira/browse/DERBY-6630?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Rick Hillegas updated DERBY-6630:
---------------------------------
Attachment: derby-6630-01-aa-usederbyinternals.diff
Attaching derby-6630-01-aa-usederbyinternals.diff. This patch reduces the
visibility of JCECipherFactory and adds a check for usederbyinternals
permission to its constructor. I am running tests now.
Touches the following files:
----------------
M java/engine/org/apache/derby/impl/services/jce/JCECipherFactory.java
M
java/engine/org/apache/derby/impl/services/jce/JCECipherFactoryBuilder.java
Changes for (1).
----------------
M
java/testing/org/apache/derbyTesting/functionTests/tests/lang/NoDBInternalsPermissionTest.java
Adds a regression test to verify that you need usederbyinternals permission in
order to create a cipher factory.
> Applications can use JCECipherFactory to elevate their privileges to those
> granted to Derby
> -------------------------------------------------------------------------------------------
>
> Key: DERBY-6630
> URL: https://issues.apache.org/jira/browse/DERBY-6630
> Project: Derby
> Issue Type: Bug
> Components: Services
> Affects Versions: 10.11.1.1
> Reporter: Rick Hillegas
> Attachments: derby-6630-01-aa-usederbyinternals.diff
>
>
> JCECipherFactory.run() performs security-sensitive operations. It is executed
> in a privilege block by the init() method, which is, in turn, executed by the
> public constructor. The class and its corresponding factory are public, which
> means that any code running in the same JVM can run this security-sensitive
> code with the privileges granted to Derby.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
