Details
-
Bug
-
Resolution: Not an Issue
-
P3
-
None
-
7u55, 8u5
-
x86_64
-
os_x
Description
J2SE Version (please include all output from java -version flag):
java version "1.7.0_55"
Java(TM) SE Runtime Environment (build 1.7.0_55-b13)
Java HotSpot(TM) Client VM (build 24.55-b03, mixed mode, sharing)
AND
java version "1.8.0_05"
Java(TM) SE Runtime Environment (build 1.8.0_05-b13)
Java HotSpot(TM) Client VM (build 25.5-b02, mixed mode)
Does this problem occur on J2SE 7ux? Yes / No (pick one)
Yes
Operating System Configuration Information (be specific):
Tested on Mac OS 10.9.2.
Hardware Configuration Information (be specific):
Physical machine, Mac Mini.
Bug Description:
Have one central server hosting a login applet (server A), and many service providers each with their own server hosting the actual websites (servers B, C, D ...).
Server B (and C, D, E, ...) presents the applet from server A to the end user (client).
Manifest attributes look like this:
Manifest-Version: 1.0
Application-Name: NemID
Built-By: BUILDAGENT6$
Vendor: DanID
Created-By: 1.6.0_45-b06 (Sun Microsystems Inc.)
Caller-Allowable-Codebase: *
Build: 79
Version: 1.0
Ant-Version: Apache Ant 1.8.2
Title: Digital Signatur
Application-Library-Allowable-Codebase: *
Trusted-Only: true
Permissions: all-permissions
Sealed: true
Target-Environment: kopi
Codebase: *
When loading the applet for the first time after starting the browser, the applet never loads fully. This happens on the following publicly available URL:
https://www.netbank.nordea.dk/netbank/index.jsp
Reloading the page results in the applet loading successfully.
Steps to Reproduce (be specific):
The following steps reproduce the bug in a setup where server A presents its own applet (see Bug Description).
1) Start the Safari browser on MacOS X 10.9.2, with Java 1.7.0_55-b13 or 1.8.0_05-b13 installed.
2) Go to https://www.netbank.nordea.dk/netbank/index.jsp
3) If presented with a security prompt, press the "Run" button.
4) The applet never finishes loading; the Java "loading wheel" animation freezes after some time
5) Reload the page
6) The applet loads fully, presenting the user with a login box
== Console Output Analysis ==
The following is the tail of the Java 1.7.0_55-b13 console log at the time the applet has stopped loading:
---
network: Connecting http://www.netbank.nordea.dk:443/ with proxy=DIRECT
security: Loading certificates from Deployment session certificate store
security: Loaded certificates from Deployment session certificate store
network: Connecting https://applet.danid.dk/auth2 with proxy=DIRECT
basic: Applet made visible
basic: Applet started
basic: Told clients applet is started
network: Connecting https://www.netbank.nordea.dk/netbank/index.jsp with cookie "netbanklogin=1396005908304927; NordeaNemID=true; sesessionid=yjQZT1cJvJhQHKpT1jSVLnTQ9SGQTwHMSJVjnBGRvnmFxCzGWLJM!2090924904; UniBanknetbank=netbank[0178_NB]; WT_FPC=id=e18e6f3e-3349-4041-958d-7fbb24ed35ef:lv=1396005905657:ss=1396005903327"
network: Server https://www.netbank.nordea.dk/netbank/index.jsp requesting to set-cookie with "netbanklogin=1396005921648891; path=/; secure"
---
The following is the tail of the Java 1.8.0_05-b13 console log at the time the applet has stopped loading:
---
network: Server https://www.netbank.nordea.dk/netbank/index.jsp requesting to set-cookie with "netbanklogin=1396009633223470; path=/; secure"
security: Grant liveconnect perm for https://www.netbank.nordea.dk/netbank/index.jsp : java.security.Permissions@7dba5dd1 (
... [snip] ...
("java.net.URLPermission" "https://www.netbank.nordea.dk:443/-" "*:*")
("java.net.URLPermission" "https://www.netbank.nordea.dk:443" "*:*")
("com.sun.deploy.security.SecureCookiePermission" "origin.https://www.netbank.nordea.dk:443")
)
---
java version "1.7.0_55"
Java(TM) SE Runtime Environment (build 1.7.0_55-b13)
Java HotSpot(TM) Client VM (build 24.55-b03, mixed mode, sharing)
AND
java version "1.8.0_05"
Java(TM) SE Runtime Environment (build 1.8.0_05-b13)
Java HotSpot(TM) Client VM (build 25.5-b02, mixed mode)
Does this problem occur on J2SE 7ux? Yes / No (pick one)
Yes
Operating System Configuration Information (be specific):
Tested on Mac OS 10.9.2.
Hardware Configuration Information (be specific):
Physical machine, Mac Mini.
Bug Description:
Have one central server hosting a login applet (server A), and many service providers each with their own server hosting the actual websites (servers B, C, D ...).
Server B (and C, D, E, ...) presents the applet from server A to the end user (client).
Manifest attributes look like this:
Manifest-Version: 1.0
Application-Name: NemID
Built-By: BUILDAGENT6$
Vendor: DanID
Created-By: 1.6.0_45-b06 (Sun Microsystems Inc.)
Caller-Allowable-Codebase: *
Build: 79
Version: 1.0
Ant-Version: Apache Ant 1.8.2
Title: Digital Signatur
Application-Library-Allowable-Codebase: *
Trusted-Only: true
Permissions: all-permissions
Sealed: true
Target-Environment: kopi
Codebase: *
When loading the applet for the first time after starting the browser, the applet never loads fully. This happens on the following publicly available URL:
https://www.netbank.nordea.dk/netbank/index.jsp
Reloading the page results in the applet loading successfully.
Steps to Reproduce (be specific):
The following steps reproduce the bug in a setup where server A presents its own applet (see Bug Description).
1) Start the Safari browser on MacOS X 10.9.2, with Java 1.7.0_55-b13 or 1.8.0_05-b13 installed.
2) Go to https://www.netbank.nordea.dk/netbank/index.jsp
3) If presented with a security prompt, press the "Run" button.
4) The applet never finishes loading; the Java "loading wheel" animation freezes after some time
5) Reload the page
6) The applet loads fully, presenting the user with a login box
== Console Output Analysis ==
The following is the tail of the Java 1.7.0_55-b13 console log at the time the applet has stopped loading:
---
network: Connecting http://www.netbank.nordea.dk:443/ with proxy=DIRECT
security: Loading certificates from Deployment session certificate store
security: Loaded certificates from Deployment session certificate store
network: Connecting https://applet.danid.dk/auth2 with proxy=DIRECT
basic: Applet made visible
basic: Applet started
basic: Told clients applet is started
network: Connecting https://www.netbank.nordea.dk/netbank/index.jsp with cookie "netbanklogin=1396005908304927; NordeaNemID=true; sesessionid=yjQZT1cJvJhQHKpT1jSVLnTQ9SGQTwHMSJVjnBGRvnmFxCzGWLJM!2090924904; UniBanknetbank=netbank[0178_NB]; WT_FPC=id=e18e6f3e-3349-4041-958d-7fbb24ed35ef:lv=1396005905657:ss=1396005903327"
network: Server https://www.netbank.nordea.dk/netbank/index.jsp requesting to set-cookie with "netbanklogin=1396005921648891; path=/; secure"
---
The following is the tail of the Java 1.8.0_05-b13 console log at the time the applet has stopped loading:
---
network: Server https://www.netbank.nordea.dk/netbank/index.jsp requesting to set-cookie with "netbanklogin=1396009633223470; path=/; secure"
security: Grant liveconnect perm for https://www.netbank.nordea.dk/netbank/index.jsp : java.security.Permissions@7dba5dd1 (
... [snip] ...
("java.net.URLPermission" "https://www.netbank.nordea.dk:443/-" "*:*")
("java.net.URLPermission" "https://www.netbank.nordea.dk:443" "*:*")
("com.sun.deploy.security.SecureCookiePermission" "origin.https://www.netbank.nordea.dk:443")
)
---