Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8028423

Blocked dialog doesn't show up when the jar of ESL jnlp comes from another domain that is NOT in ESL

    Details

    • Subcomponent:
    • Resolved In Build:
      b117
    • Verification:
      Verified

      Backports

        Description

        Scenario: Self-signed ESL app with sandbox permissions should be BLOCKED on HIGH level if one of jars comes from another domain that is NOT in ESL.
        When run this scenario with latest 7u51, the self-signed app does be blocked. But there is no any dialog shows up instead the app fails to load silently.

        Steps to reproduce:
        1) Install jre7u51 #235
        2) Add "http://sqeweb.us.oracle.com/net/sqenfs-1/export1/comp/jsn/users/crystal/DO_NOT_REMOVE_ME/jrebug/JawsESL/jnlp/" to Exception Site List
        3) Run jnlp app which jar is pointing to http://kgb.us.oracle.com:8080:
        javaws http://sqeweb.us.oracle.com/net/sqenfs-1/export1/comp/jsn/users/crystal/DO_NOT_REMOVE_ME/jrebug/JawsESL/jnlp/testSelfSignedMFSandboxHelloExt2.jnlp
        4) If app is blocked but there is no any blocked dialog shows up, then this bug is reproduced.
        Trace:
        ruleset: RuleId compare: (http, 127.0.0.1, 8080, /JawsESL/jnlp/) to url: http://127.0.0.1:8080/JawsESL/jnlp/testSelfSignedMFSandboxHelloExt2.jnlp
        ruleset: RuleId compare: (http, 127.0.0.1, 8080, /JawsESL/jnlp/) to url: http://localhost:8080/JawsESL/classes/SelfSignedMFSandboxHello.jar
        ruleset: Path mistach, actualPath: /JawsESL/classes/SelfSignedMFSandboxHello.jar
        basic: The application was blocked even though the host site of the jnlp file at: http://127.0.0.1:8080/JawsESL/jnlp/testSelfSignedMFSandboxHelloExt2.jnlp is included in the Exception Site List because the application refers to resources on multiple domains.
        The jar file at http://localhost:8080/JawsESL/classes/SelfSignedMFSandboxHello.jar is on a different domain and is not also included on the Exception Site List.

        Details:
        http://aurora-ds.us.oracle.com:9500/runs/318399.ManualSubmit-1/html/testESLSelfSignedSandboxCrossDomainHighNeg2.trace

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  herrick Andy Herrick
                  Reporter:
                  wenjyang Crystal Yang
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  3 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: