[Bug 786775] New: icedtea-web fail to download JARs on https locations

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c0 Summary: icedtea-web fail to download JARs on https locations Classification: openSUSE Product: openSUSE 12.2 Version: Final Platform: x86-64 OS/Version: openSUSE 12.2 Status: NEW Severity: Critical Priority: P5 - None Component: Java AssignedTo: bnc-team-java@forge.provo.novell.com ReportedBy: cedric.devillers@gmail.com QAContact: qa-bugs@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:16.0) Gecko/20100101 Firefox/16.0 With icedtea-web, many proprietary java applets failed to load. This is related to the fact that they are hosted on https webservers with wrong certificate, and you cannot change it. You see error in log (en exemple) : JAR https://XX.XX.XX.XX/data/auth/XvpnClientV2_2_3.jar not found. Continuing. then a ClassNotFoundException The path exist an you can wget the jar file, but icedtea-web cannot get it. See reference for theses problems here : https://bugzilla.redhat.com/show_bug.cgi?id=753960 I can confirm this problem exist on HP ILO remote console and some SSL VPN applets. On comment #16 there is a proposed patch that fix the problem : https://bugzilla.redhat.com/show_bug.cgi?id=753960#c16 I've tried the patch mentioned in the redhat's bugzilla and indeed it solve the problem for me. I've built packages including this patch on OBS : https://build.opensuse.org/project/show?project=home%3Abran0k%3Abranches%3Ao... Can you have a look at this problem and maybe include the patch proposed by redhat ? Reproducible: Always Steps to Reproduce: 1. Try to load an applet hosted on a https webserver with wrong certificate (wrong hostname, most likely). 2. 3. Actual Results: The applet cannot load. Expected Results: The applet should be loaded even with a wrong certificate. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c1 Michal Vyskocil <mvyskocil@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P5 - None |P3 - Medium Status|NEW |ASSIGNED CC| |mvyskocil@suse.com AssignedTo|bnc-team-java@forge.provo.n |mvyskocil@suse.com |ovell.com | --- Comment #1 from Michal Vyskocil <mvyskocil@suse.com> 2012-10-29 13:03:26 UTC --- (In reply to comment #0)
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:16.0) Gecko/20100101 Firefox/16.0
With icedtea-web, many proprietary java applets failed to load. This is related to the fact that they are hosted on https webservers with wrong certificate, and you cannot change it.
You see error in log (en exemple) : JAR https://XX.XX.XX.XX/data/auth/XvpnClientV2_2_3.jar not found. Continuing. then a ClassNotFoundException
The path exist an you can wget the jar file, but icedtea-web cannot get it.
See reference for theses problems here : https://bugzilla.redhat.com/show_bug.cgi?id=753960
Cool, sounds great! There are few others similar bugs (all conntected with ssl and unsigned stuff), so I'll ask for a test before update. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c2 Michal Vyskocil <mvyskocil@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends on| |787846 --- Comment #2 from Michal Vyskocil <mvyskocil@suse.com> 2012-11-08 09:15:51 UTC --- The self-signed issue has been added to icedtea-web 1.3.1 - an update is handled in bnc#787846. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c Swamp Workflow Management <swamp@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard| |maint:running:49994:moderat | |e -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c3 --- Comment #3 from Bernhard Wiedemann <bwiedemann@suse.com> 2012-11-14 14:31:03 CET --- This is an autogenerated message for OBS integration: This bug (786775) was mentioned in https://build.opensuse.org/request/show/141112 https://build.opensuse.org/request/show/141113 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c4 --- Comment #4 from Bernhard Wiedemann <bwiedemann@suse.com> 2012-11-14 14:43:32 CET --- This is an autogenerated message for OBS integration: This bug (786775) was mentioned in https://build.opensuse.org/request/show/141254 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c Swamp Workflow Management <swamp@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|maint:running:49994:moderat |maint:running:49994:moderat |e |e obs:running:1094:moderate -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c5 Swamp Workflow Management <swamp@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|maint:running:49994:moderat |maint:running:49994:moderat |e obs:running:1094:moderate |e obs:running:1094:moderate | |maint:released:sle11-sp2:50 | |026 --- Comment #5 from Swamp Workflow Management <swamp@suse.de> 2012-11-20 13:54:03 UTC --- Update released for: icedtea-web, icedtea-web-debuginfo, icedtea-web-debugsource, icedtea-web-javadoc Products: SLE-DEBUGINFO 11-SP2 (i386, x86_64) SLE-DESKTOP 11-SP2 (i386, x86_64) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c6 --- Comment #6 from Swamp Workflow Management <swamp@suse.de> 2012-11-22 10:13:52 UTC --- openSUSE-SU-2012:1524-1: An update that solves one vulnerability and has three fixes is now available. Category: security (moderate) Bug References: 784859,785333,786775,787846 CVE References: CVE-2012-4540 Sources used: openSUSE 12.2 (src): icedtea-web-1.3.1-1.9.1 openSUSE 12.1 (src): icedtea-web-1.3.1-17.1 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c Swamp Workflow Management <swamp@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|maint:running:49994:moderat |maint:running:49994:moderat |e obs:running:1094:moderate |e |maint:released:sle11-sp2:50 |maint:released:sle11-sp2:50 |026 |026 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c7 --- Comment #7 from Bernhard Wiedemann <bwiedemann@suse.com> 2012-11-25 03:00:35 CET --- This is an autogenerated message for OBS integration: This bug (786775) was mentioned in https://build.opensuse.org/request/show/142728 Evergreen:11.2 / icedtea-web -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c8 --- Comment #8 from Bernhard Wiedemann <bwiedemann@suse.com> 2012-11-30 19:01:12 CET --- This is an autogenerated message for OBS integration: This bug (786775) was mentioned in https://build.opensuse.org/request/show/142995 Evergreen:11.2 / icedtea-web -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c Michal Vyskocil <mvyskocil@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks| |787846 Depends on|787846 | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=786775 https://bugzilla.novell.com/show_bug.cgi?id=786775#c9 Michal Vyskocil <mvyskocil@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED --- Comment #9 from Michal Vyskocil <mvyskocil@suse.com> 2012-12-03 08:36:53 UTC --- released, fixed -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com