[jira] Commented: (DERBY-2131) External DTD files are accessed without a privileged block when Derby parses XML values that reference such DTDs.

Daniel John Debrunner (JIRA) Thu, 30 Nov 2006 16:52:43 -0800

    [ 
http://issues.apache.org/jira/browse/DERBY-2131?page=comments#action_12454791 ] 
            
Daniel John Debrunner commented on DERBY-2131:
----------------------------------------------


Finally got around to looking at the patch. It's generally correct, but you 
probably want to catch the PrivilegedExceptionAction and unwrap it. Then if 
there's an i/o error accessing the DTD it won't appear as a possible security 
exception to the user.

The other general rule with privileged blocks is to put as little code as 
possible into the priv block, I'm not sure what code requires the privilege 
block, but here's an example re-write.

       final InputSource is = new  InputSource(new StringReader(xmlAsText));
        aList.add( java.security.AccessController.doPrivileged(
            new java.security.PrivilegedExceptionAction()
            {
                public Object run() throws Exception
                {
                    return dBuilder.parse(is);
                }
            }));



> External DTD files are accessed without a privileged block when Derby parses 
> XML values that reference such DTDs.
> -----------------------------------------------------------------------------------------------------------------
>
>                 Key: DERBY-2131
>                 URL: http://issues.apache.org/jira/browse/DERBY-2131
>             Project: Derby
>          Issue Type: Bug
>          Components: SQL
>    Affects Versions: 10.2.1.6, 10.3.0.0, 10.2.2.0, 10.2.1.8
>            Reporter: A B
>         Assigned To: A B
>             Fix For: 10.3.0.0
>
>         Attachments: d2131_v1.patch
>
>
> The Derby XMLPARSE operator ultimately makes a call to an external JAXP 
> parser (ex. Xerces or Crimson) to parse an XML value.  If the XML value that 
> is being parsed references an external DTD, then the JAXP parser will need to 
> read the DTD file to complete parsing.  However, the current code in 
> SqlXmlUtil.java does not use a privileged block when it calls out to the JAXP 
> parser.  As a result, when a user who is running with a security manager 
> tries to insert a document that references an external DTD, the call to 
> XMLPARSE will fail with a security exception--even if the JAXP parser has the 
> required "read" permissions.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: 
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] Commented: (DERBY-2131) External DTD files are accessed without a privileged block when Derby parses XML values that reference such DTDs.

Reply via email to