Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8031821

Entrust tests(signed/trusted) are failing to connect back to server using jdk8-b123

    Details

    • Subcomponent:
    • Resolved In Build:
      b127
    • Verification:
      Verified

      Backports

        Description

        It has been noticed that signed trusted applet from entrust getting loaded over https is not able to connect back to server using http connection. It's a regression as compare to 7u51 and jdk8b122
        Looks like regression has been introduced due to the recent SOP fix we did under jdk8

        Steps to reproduce
        ----------------------------
        1)Download http://kgb.us.oracle.com:8080/TruePassAppletTest/AppletTest_InputFile.txt and save it inside your C:
        2) Load page https://kgb.us.oracle.com:8443/TruePassAppletTest/
        Applet jar is signed using trusted/valid certificate and contains following manifest entries:
        Permissions: all-permissions
        Caller-Allowable-Codebase: *

        Accept all the security warning(https warning from browser etc)

        3) Click on "Classic Replace" Entrust TruePass Applet JRE Test
        4) Accept security warning
        5) Click Run Test
        If java.security.AccessControlException: access denied ("java.net.SocketPermission" "kgb.us.oracle.com:8080" "connect,resolve") is thrown then bug is reproduced

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  dtitov Daniil Titov
                  Reporter:
                  jijising Jitender Singh (Inactive)
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  10 Start watching this issue

                  Dates

                  • Due:
                    Created:
                    Updated:
                    Resolved: