-
Bug
-
Resolution: Fixed
-
P3
-
7u51
-
win7x/64/7u51#325
-
b117
-
Verified
| Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
|---|---|---|---|---|---|---|
| JDK-8041052 | 7u80 | Andy Herrick | P3 | Resolved | Fixed | b01 |
| JDK-8040409 | 7u60 | Andy Herrick | P3 | Resolved | Fixed | b15 |
| JDK-8029048 | 7u55 | Andy Herrick | P3 | Resolved | Fixed | b03 |
| JDK-8029620 | port-stage-ppc-aix | Andy Herrick | P3 | Closed | Not an Issue | master |
Scenario: Self-signed ESL app with sandbox permissions should be BLOCKED on HIGH level if one of jars comes from another domain that is NOT in ESL.
When run this scenario with latest 7u51, the self-signed app does be blocked. But there is no any dialog shows up instead the app fails to load silently.
Steps to reproduce:
1) Install jre7u51 #235
2) Add "http://sqeweb.us.oracle.com/net/sqenfs-1/export1/comp/jsn/users/crystal/DO_NOT_REMOVE_ME/jrebug/JawsESL/jnlp/" to Exception Site List
3) Run jnlp app which jar is pointing to http://kgb.us.oracle.com:8080:
javaws http://sqeweb.us.oracle.com/net/sqenfs-1/export1/comp/jsn/users/crystal/DO_NOT_REMOVE_ME/jrebug/JawsESL/jnlp/testSelfSignedMFSandboxHelloExt2.jnlp
4) If app is blocked but there is no any blocked dialog shows up, then this bug is reproduced.
Trace:
ruleset: RuleId compare: (http, 127.0.0.1, 8080, /JawsESL/jnlp/) to url: http://127.0.0.1:8080/JawsESL/jnlp/testSelfSignedMFSandboxHelloExt2.jnlp
ruleset: RuleId compare: (http, 127.0.0.1, 8080, /JawsESL/jnlp/) to url: http://localhost:8080/JawsESL/classes/SelfSignedMFSandboxHello.jar
ruleset: Path mistach, actualPath: /JawsESL/classes/SelfSignedMFSandboxHello.jar
basic: The application was blocked even though the host site of the jnlp file at: http://127.0.0.1:8080/JawsESL/jnlp/testSelfSignedMFSandboxHelloExt2.jnlp is included in the Exception Site List because the application refers to resources on multiple domains.
The jar file at http://localhost:8080/JawsESL/classes/SelfSignedMFSandboxHello.jar is on a different domain and is not also included on the Exception Site List.
Details:
http://aurora-ds.us.oracle.com:9500/runs/318399.ManualSubmit-1/html/testESLSelfSignedSandboxCrossDomainHighNeg2.trace
When run this scenario with latest 7u51, the self-signed app does be blocked. But there is no any dialog shows up instead the app fails to load silently.
Steps to reproduce:
1) Install jre7u51 #235
2) Add "http://sqeweb.us.oracle.com/net/sqenfs-1/export1/comp/jsn/users/crystal/DO_NOT_REMOVE_ME/jrebug/JawsESL/jnlp/" to Exception Site List
3) Run jnlp app which jar is pointing to http://kgb.us.oracle.com:8080:
javaws http://sqeweb.us.oracle.com/net/sqenfs-1/export1/comp/jsn/users/crystal/DO_NOT_REMOVE_ME/jrebug/JawsESL/jnlp/testSelfSignedMFSandboxHelloExt2.jnlp
4) If app is blocked but there is no any blocked dialog shows up, then this bug is reproduced.
Trace:
ruleset: RuleId compare: (http, 127.0.0.1, 8080, /JawsESL/jnlp/) to url: http://127.0.0.1:8080/JawsESL/jnlp/testSelfSignedMFSandboxHelloExt2.jnlp
ruleset: RuleId compare: (http, 127.0.0.1, 8080, /JawsESL/jnlp/) to url: http://localhost:8080/JawsESL/classes/SelfSignedMFSandboxHello.jar
ruleset: Path mistach, actualPath: /JawsESL/classes/SelfSignedMFSandboxHello.jar
basic: The application was blocked even though the host site of the jnlp file at: http://127.0.0.1:8080/JawsESL/jnlp/testSelfSignedMFSandboxHelloExt2.jnlp is included in the Exception Site List because the application refers to resources on multiple domains.
The jar file at http://localhost:8080/JawsESL/classes/SelfSignedMFSandboxHello.jar is on a different domain and is not also included on the Exception Site List.
Details:
http://aurora-ds.us.oracle.com:9500/runs/318399.ManualSubmit-1/html/testESLSelfSignedSandboxCrossDomainHighNeg2.trace
- backported by
-
-
- Closed
-
-
JDK-8029048 Blocked dialog doesn't show up when the jar of ESL jnlp comes from another domain that is NOT in ESL
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-