make -ifExists the default when starting up standalone network servers

And add an -ifNotExists option to turn on the permissive behaviour Related to https://www.exploit-db.com/exploits/45506 even though we document that you should set this in http://www.h2database.com/html/advanced.html#remote_access people turn on network access but don't turn on -ifExists.

make -ifExists the default when starting up standalone network servers
And add an -ifNotExists option to turn on the permissive behaviour Related to https://www.exploit-db.com/exploits/45506 even though we document that you should set this in http://www.h2database.com/html/advanced.html#remote_access people turn on network access but don't turn on -ifExists.
8b53f399 · Noel Grandin · 6100b7f7 · 8b53f399 · 8b53f399 · 8b53f399
--- a/h2/src/docsrc/html/advanced.html
+++ b/h2/src/docsrc/html/advanced.html
@@ -1197,7 +1197,7 @@ options <code>-webAllowOthers, -tcpAllowOthers, -pgAllowOthers</code>.
 <p>
 If you enable remote access using
 <code>-tcpAllowOthers</code> or <code>-pgAllowOthers</code>,
-please also consider using the options <code>-baseDir, -ifExists</code>,
+please also consider using the options <code>-baseDir</code>,
 so that remote users can not create new databases
 or access existing databases with weak passwords.
 When using the option <code>-baseDir</code>, only databases within that directory may be accessed.
@@ -1206,7 +1206,7 @@ Ensure the existing accessible databases are protected using strong passwords.
 <p>
 If you enable remote access using <code>-webAllowOthers</code>,
 please ensure the web server can only be accessed from trusted networks.
-The options <code>-baseDir, -ifExists</code> don't protect
+The options <code>-baseDir</code> don't protect
 access to the tools section, prevent remote shutdown of the web server,
 changes to the preferences, the saved connection settings,
 or access to other databases accessible from the system.

--- a/h2/src/main/org/h2/server/TcpServer.java
+++ b/h2/src/main/org/h2/server/TcpServer.java
@@ -63,7 +63,7 @@ public class TcpServer implements Service {
    private String baseDir;
    private boolean allowOthers;
    private boolean isDaemon;
-    private boolean ifExists;
+    private boolean ifExists = true;
    private Connection managementDb;
    private PreparedStatement managementDbAdd;
    private PreparedStatement managementDbRemove;
@@ -187,6 +187,8 @@ public class TcpServer implements Service {
                isDaemon = true;
            } else if (Tool.isOption(a, "-ifExists")) {
                ifExists = true;
+            } else if (Tool.isOption(a, "-ifNotExists")) {
+                ifExists = false;
            }
        }
        org.h2.Driver.load();

--- a/h2/src/main/org/h2/server/pg/PgServer.java
+++ b/h2/src/main/org/h2/server/pg/PgServer.java
@@ -79,7 +79,7 @@ public class PgServer implements Service {
    private String baseDir;
    private boolean allowOthers;
    private boolean isDaemon;
-    private boolean ifExists;
+    private boolean ifExists = true;
    private String key, keyDatabase;
    @Override
@@ -100,6 +100,8 @@ public class PgServer implements Service {
                isDaemon = true;
            } else if (Tool.isOption(a, "-ifExists")) {
                ifExists = true;
+            } else if (Tool.isOption(a, "-ifNotExists")) {
+                ifExists = false;
            } else if (Tool.isOption(a, "-key")) {
                key = args[++i];
                keyDatabase = args[++i];

--- a/h2/src/main/org/h2/server/web/WebServer.java
+++ b/h2/src/main/org/h2/server/web/WebServer.java
@@ -164,7 +164,7 @@ public class WebServer implements Service {
    private String url;
    private ShutdownHandler shutdownHandler;
    private Thread listenerThread;
-    private boolean ifExists;
+    private boolean ifExists = true;
    private boolean trace;
    private TranslateThread translateThread;
    private boolean allowChunked = true;
@@ -294,6 +294,8 @@ public class WebServer implements Service {
                SysProperties.setBaseDir(baseDir);
            } else if (Tool.isOption(a, "-ifExists")) {
                ifExists = true;
+            } else if (Tool.isOption(a, "-ifNotExists")) {
+                ifExists = false;
            } else if (Tool.isOption(a, "-properties")) {
                // already set
                i++;

--- a/h2/src/main/org/h2/tools/Server.java
+++ b/h2/src/main/org/h2/tools/Server.java
@@ -102,6 +102,8 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
     * <td>The base directory for H2 databases (all servers)</td></tr>
     * <tr><td>[-ifExists]</td>
     * <td>Only existing databases may be opened (all servers)</td></tr>
+     * <tr><td>[-ifNotExists]</td>
+     * <td>Databases are created when accessed</td></tr>
     * <tr><td>[-trace]</td>
     * <td>Print additional trace information (all servers)</td></tr>
     * <tr><td>[-key &lt;from&gt; &lt;to&gt;]</td>
@@ -194,6 +196,8 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
                // no parameters
            } else if ("-ifExists".equals(arg)) {
                // no parameters
+            } else if ("-ifNotExists".equals(arg)) {
+                // no parameters
            } else if ("-baseDir".equals(arg)) {
                i++;
            } else if ("-key".equals(arg)) {
@@ -280,6 +284,8 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
                // no parameters
            } else if ("-ifExists".equals(arg)) {
                // no parameters
+            } else if ("-ifNotExists".equals(arg)) {
+                // no parameters
            } else if ("-baseDir".equals(arg)) {
                i++;
            } else if ("-key".equals(arg)) {
@@ -407,7 +413,7 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
     * </pre>
     * Supported options are:
     * -webPort, -webSSL, -webAllowOthers, -webDaemon,
-     * -trace, -ifExists, -baseDir, -properties.
+     * -trace, -ifExists, -ifNotExists, -baseDir, -properties.
     * See the main method for details.
     *
     * @param args the argument list
@@ -429,7 +435,7 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
     * </pre>
     * Supported options are:
     * -tcpPort, -tcpSSL, -tcpPassword, -tcpAllowOthers, -tcpDaemon,
-     * -trace, -ifExists, -baseDir, -key.
+     * -trace, -ifExists, -ifNotExists, -baseDir, -key.
     * See the main method for details.
     * <p>
     * If no port is specified, the default port is used if possible,
@@ -456,7 +462,7 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
     * </pre>
     * Supported options are:
     * -pgPort, -pgAllowOthers, -pgDaemon,
-     * -trace, -ifExists, -baseDir, -key.
+     * -trace, -ifExists, -ifNotExists, -baseDir, -key.
     * See the main method for details.
     * <p>
     * If no port is specified, the default port is used if possible,

--- a/h2/src/test/org/h2/test/server/TestWeb.java
+++ b/h2/src/test/org/h2/test/server/TestWeb.java
@@ -264,7 +264,8 @@ public class TestWeb extends TestDb {
                getUser(), getPassword());
        Server server = new Server();
        server.setOut(new PrintStream(new ByteArrayOutputStream()));
-        server.runTool("-ifExists", "-web", "-webPort", "8182",
+        // -ifExists is the default
+        server.runTool("-web", "-webPort", "8182",
                "-properties", "null", "-tcp", "-tcpPort", "9101");
        try {
            String url = "http://localhost:8182";
@@ -288,6 +289,7 @@ public class TestWeb extends TestDb {
            server.shutdown();
            conn.close();
        }
    }
    private void testWebApp() throws Exception {