-
Bug
-
Resolution: Incomplete
-
P3
-
7u45, 8, 9
-
windows_7
FULL PRODUCT VERSION :
jre 1.7.0_45-b18
ADDITIONAL OS VERSION INFORMATION :
Windows 7 ver x64 Enterprise, Linux All
EXTRA RELEVANT SYSTEM CONFIGURATION :
Mozilla,
A DESCRIPTION OF THE PROBLEM :
The warning about trusted certificates is not showing any more. When accessing via HTTPS a page with an untrusted SSL certificate, the pop-up asking the user if they are to trust the site and import the certificate doesn't show.
The behaviour is that of blocking the content without user input. This causes our applets not to show on a secure connection and java to throw Invalid certificate.
When reverting to any previous version, the user receives the warning and, when choosing "Always trust", the SSL certificate is imported. After this import, an upgrade to java 1.7.0_45 allows access to previously blocked pages, as the certificate is already on the machine.
This workaround is not a viable option and the warning should be shown if the certificate is not already on the machine.
REGRESSION. Last worked in version 7u40
STEPS TO FOLLOW TO REPRODUCE THE PROBLEM :
Access a page with an untrusted SSL certificate via HTTPS
EXPECTED VERSUS ACTUAL BEHAVIOR :
EXPECTED -
Pop-up warning should be displayed to give the user the choice to trust the certificate and import it or to deny access
ACTUAL -
Pop-up is not shown and certificate import is implicitly denied. This displays "Invalid certificate" in java console
REPRODUCIBILITY :
This bug can be reproduced always.
CUSTOMER SUBMITTED WORKAROUND :
Revert to any previous version of java plugin (up to 1.7.0_40, inclusively) and access page.
Pop-up will show.
Choose "Always trust" to import SSL certificate.
As certificate is now imported, content will display after upgrade to 1.7.0_45-b18 as well.
jre 1.7.0_45-b18
ADDITIONAL OS VERSION INFORMATION :
Windows 7 ver x64 Enterprise, Linux All
EXTRA RELEVANT SYSTEM CONFIGURATION :
Mozilla,
A DESCRIPTION OF THE PROBLEM :
The warning about trusted certificates is not showing any more. When accessing via HTTPS a page with an untrusted SSL certificate, the pop-up asking the user if they are to trust the site and import the certificate doesn't show.
The behaviour is that of blocking the content without user input. This causes our applets not to show on a secure connection and java to throw Invalid certificate.
When reverting to any previous version, the user receives the warning and, when choosing "Always trust", the SSL certificate is imported. After this import, an upgrade to java 1.7.0_45 allows access to previously blocked pages, as the certificate is already on the machine.
This workaround is not a viable option and the warning should be shown if the certificate is not already on the machine.
REGRESSION. Last worked in version 7u40
STEPS TO FOLLOW TO REPRODUCE THE PROBLEM :
Access a page with an untrusted SSL certificate via HTTPS
EXPECTED VERSUS ACTUAL BEHAVIOR :
EXPECTED -
Pop-up warning should be displayed to give the user the choice to trust the certificate and import it or to deny access
ACTUAL -
Pop-up is not shown and certificate import is implicitly denied. This displays "Invalid certificate" in java console
REPRODUCIBILITY :
This bug can be reproduced always.
CUSTOMER SUBMITTED WORKAROUND :
Revert to any previous version of java plugin (up to 1.7.0_40, inclusively) and access page.
Pop-up will show.
Choose "Always trust" to import SSL certificate.
As certificate is now imported, content will display after upgrade to 1.7.0_45-b18 as well.