[jira] Commented: (DERBY-1055) Security.AccessControlException in client under SecurityManager when trying to connect using EUSRIDPWD security mechanism

Sat, 25 Feb 2006 21:03:17 -0800 

    [ 
http://issues.apache.org/jira/browse/DERBY-1055?page=comments#action_12367812 ] 

Daniel John Debrunner commented on DERBY-1055:
----------------------------------------------

The original code seems to be adding a provider that is already installed:

            Provider[] list = Security.getProviders("KeyAgreement.DH");
            if (list == null) {
                throw new java.security.NoSuchProviderException();
            }
            provider = list[0];
            providerName = provider.getName();

            java.security.Security.addProvider((java.security.Provider) 
provider);

I don't think this Security.addProvider call is required at all, the 
getProviders call is returning a list of already installed providers.

If the addProvider call is removed, then no priv block is needed, and no 
changes to the security policy file.

> Security.AccessControlException in client under SecurityManager when trying 
> to connect using EUSRIDPWD security mechanism
> -------------------------------------------------------------------------------------------------------------------------
>
>          Key: DERBY-1055
>          URL: http://issues.apache.org/jira/browse/DERBY-1055
>      Project: Derby
>         Type: Bug
>   Components: Network Client
>     Versions: 10.0.2.1, 10.0.2.0, 10.1.1.0, 10.1.1.1, 10.1.1.2, 10.1.2.0, 
> 10.1.2.1, 10.1.2.2
>  Environment: all
>     Reporter: Sunitha Kambhampati
>     Assignee: Sunitha Kambhampati
>     Priority: Minor
>      Fix For: 10.2.0.0
>  Attachments: Derby1055.diff.txt, Derby1055.stat.txt
>
> When using EUSRIDPWD security mechanism, the JCE provider is added and since 
> this is not in a privileged block, an accesscontrol exception is raised when 
> trying to connect using EUSRIDPWD security mechanism, when client is run 
> under security manager.
> Enabled test (T5) in testSecMec.java 
> > T5: 
> > jdbc:derby://xxxFILTERED_HOSTNAMExxx:xxxFILTEREDPORTxxx/wombat;user=neelima;password=lee;securityMechanism=9
> >  - EXCEPTION Unexpected throwable caught 
> > java.security.AccessControlException: access denied 
> > (java.security.SecurityPermission insertProvider.SunJCE)

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira

Reply via email to