Java 某些用户出现安全异常:试图将沙盒jar作为受信任库打开
我们在应用程序登录页面上使用applet。小程序包含2个类。Jar已签名(ca证书)。清单文件包含:“受信任的库:true” 它适用于大多数用户,但其中一些用户在applet方面存在问题,因为JVM报告安全异常:试图将沙盒jar作为受信任的库打开 你知道为什么对他们不起作用吗 例如,User1在10.21.2.11中有Java插件 JRE版本1.7.0_21-b11 Java HotSpot(TM)客户端虚拟机。他尝试Firefox 21和IE 8.0.6001.18702 JVM报告一般异常:Java 某些用户出现安全异常:试图将沙盒jar作为受信任库打开,java,securityexception,Java,Securityexception,我们在应用程序登录页面上使用applet。小程序包含2个类。Jar已签名(ca证书)。清单文件包含:“受信任的库:true” 它适用于大多数用户,但其中一些用户在applet方面存在问题,因为JVM报告安全异常:试图将沙盒jar作为受信任的库打开 你知道为什么对他们不起作用吗 例如,User1在10.21.2.11中有Java插件 JRE版本1.7.0_21-b11 Java HotSpot(TM)客户端虚拟机。他尝试Firefox 21和IE 8.0.6001.18702 JVM报告一般异常:
basic: Plugin2ClassLoader.addURL parent called for
https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar
basic: Plugin2ClassLoader.addURL parent called for
https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar
security: Accessing keys and certificate in Mozilla user profile: null
security: JSS is not configured
security: Blacklist revocation check is enabled
security: blacklist: created: NEED_LOAD, lastModified: 1374827364000
security: blacklist: hasBeenModifiedSince 1374827396921 (we have 1374827364000)
security: Trusted libraries list check is enabled
security: blacklist: hasBeenModifiedSince 1374827583375 (we have 1374827364000)
network: Cache entry found [url: https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar, version: null] prevalidated=false/0
cache: Adding MemoryCache entry: https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar
cache: Resource https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar has expired.
network: Connecting https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar with proxy=DIRECT
security: blacklist: hasBeenModifiedSince 1374827435937 (we have 1374827364000)
security: blacklist: hasBeenModifiedSince 1374827390640 (we have 1374827364000)
security: blacklist: hasBeenModifiedSince 1374827583375 (we have 1374827364000)
network: CleanupThread used 268961 us
network: Connecting http://www.sod.pfron.org.pl:443/ with proxy=DIRECT
security: Loading Root CA certificates from C:\Program Files\Java\jre1.7.0_21\lib\security\cacerts
security: Loaded Root CA certificates from C:\Program Files\Java\jre1.7.0_21\lib\security\cacerts
security: Loading SSL Root CA certificates from C:\Program Files\Java\jre1.7.0_21\lib\security\cacerts
security: Loaded SSL Root CA certificates from C:\Program Files\Java\jre1.7.0_21\lib\security\cacerts
security: Loading Deployment SSL certificates from C:\Documents and Settings\Marek\Dane aplikacji\Sun\Java\Deployment\security\trusted.jssecerts
security: Loaded Deployment SSL certificates from C:\Documents and Settings\Marek\Dane aplikacji\Sun\Java\Deployment\security\trusted.jssecerts
security: Loading certificates from Deployment session certificate store
security: Loaded certificates from Deployment session certificate store
security: Checking if SSL certificate is in Deployment permanent certificate store
security: Check if certificate can be verified using certificates in Root CA certificate store
security: Certificate to be verified:
[
<.....>
]
security: Certificate has been verified with Root CA certificates successfully
security: Invalid certificate from HTTPS server
basic: Dialog type is not candidate for embedding
security: Saving certificates in Deployment session certificate store
security: Saved certificates in Deployment session certificate store
network: ResponseCode for https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar : 304
network: Encoding for https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar : null
network: Disconnect connection to https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar
cache: Reading Signers from 3935 https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar | C:\Documents and Settings\Marek\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\60\6283407c-46587e7d.idx
cache: Done readSigners(https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar)
cache: Read manifest for https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar: read=273 full=273
basic: Plugin2ClassLoader.isTrustedByPolicy called
basic: Plugin2ClassLoader.isTrustedByPolicy returns false
security: resource name "pl/computerland/sod/prezentacja/klient/cienki/applet/JavaVersion.class" in https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar : java.lang.SecurityException: attempted to open sandboxed jar https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar as a Trusted-Library
security: resource name "pl/computerland/sod/prezentacja/klient/cienki/applet/JavaVersion.class" in https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar : java.lang.SecurityException: attempted to open sandboxed jar https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar as a Trusted-Library
basic: exception: attempted to open sandboxed jar https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar as a Trusted-Library.
java.lang.SecurityException: attempted to open sandboxed jar https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar as a Trusted-Library
at com.sun.deploy.security.CPCallbackHandler$ParentElement.checkResource(Unknown Source)
at com.sun.deploy.security.DeployURLClassPath$JarLoader.checkResource(Unknown Source)
at com.sun.deploy.security.DeployURLClassPath$JarLoader.getResource(Unknown Source)
at com.sun.deploy.security.DeployURLClassPath.getResource(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader$2.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at sun.plugin2.applet.Plugin2ClassLoader.findClassHelper(Unknown Source)
at sun.plugin2.applet.Applet2ClassLoader.findClass(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass0(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass0(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)
at java.lang.ClassLoader.loadClass(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadCode(Unknown Source)
at sun.plugin2.applet.Plugin2Manager.initAppletAdapter(Unknown Source)
at sun.plugin2.applet.Plugin2Manager$AppletExecutionRunnable.run(Unknown Source)
at java.lang.Thread.run(Unknown Source)
Ignored exception: java.lang.SecurityException: attempted to open sandboxed jar https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar as a Trusted-Library
basic: exception: attempted to open sandboxed jar https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar as a Trusted-Library.
java.lang.SecurityException: attempted to open sandboxed jar https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar as a Trusted-Library
at com.sun.deploy.security.CPCallbackHandler$ParentElement.checkResource(Unknown Source)
at com.sun.deploy.security.DeployURLClassPath$JarLoader.checkResource(Unknown Source)
at com.sun.deploy.security.DeployURLClassPath$JarLoader.getResource(Unknown Source)
at com.sun.deploy.security.DeployURLClassPath.getResource(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader$2.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at sun.plugin2.applet.Plugin2ClassLoader.findClassHelper(Unknown Source)
at sun.plugin2.applet.Applet2ClassLoader.findClass(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass0(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass0(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)
at java.lang.ClassLoader.loadClass(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadCode(Unknown Source)
at sun.plugin2.applet.Plugin2Manager.initAppletAdapter(Unknown Source)
at sun.plugin2.applet.Plugin2Manager$AppletExecutionRunnable.run(Unknown Source)
at java.lang.Thread.run(Unknown Source)
Ignored exception: java.lang.SecurityException: attempted to open sandboxed jar https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar as a Trusted-Library
basic: Dialog type is not candidate for embedding
basic: Dialog type is not candidate for embedding
basic: Removed progress listener: sun.plugin.util.ProgressMonitorAdapter@5dcf43
security: Reset deny session certificate store
basic: Removed progress listener: sun.plugin.util.ProgressMonitorAdapter@1b93cf8
security: Reset deny session certificate store
basic:Plugin2ClassLoader.addURL父级调用
https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar
基本:调用的Plugin2ClassLoader.addURL父级
https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar
安全性:访问Mozilla用户配置文件中的密钥和证书:null
安全性:未配置JSS
安全性:已启用黑名单吊销检查
安全性:黑名单:已创建:需要加载,上次修改:1374827364000
安全:黑名单:自1374827396921年起已被修改(我们有1374827364000)
安全性:已启用受信任库列表检查
安全性:黑名单:自1374827583375起已被修改(我们有1374827364000)
网络:找到缓存项[url:https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar,版本:null]prevalidated=false/0
缓存:添加MemoryCache项:https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar
缓存:资源https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar 已经过期了。
网络:连接https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar 使用proxy=DIRECT
安全:黑名单:自1374827435937年以来已被修改(我们有1374827364000)
安全性:黑名单:自1374827390640起已被修改(我们有1374827364000)
安全性:黑名单:自1374827583375起已被修改(我们有1374827364000)
网络:CleanupThread使用268961 us
网络:连接http://www.sod.pfron.org.pl:443/ 使用proxy=DIRECT
安全性:从C:\Program Files\Java\jre1.7.0\U 21\lib\security\cacerts加载根CA证书
安全性:从C:\Program Files\Java\jre1.7.0\U 21\lib\security\cacerts加载根CA证书
安全性:从C:\Program Files\Java\jre1.7.0\u 21\lib\security\cacerts加载SSL根CA证书
安全性:从C:\Program Files\Java\jre1.7.0\u 21\lib\security\cacerts加载SSL根CA证书
安全性:从C:\Documents and Settings\Marek\Dane aplikacji\Sun\Java\Deployment\security\trusted.jssecerts加载部署SSL证书
安全性:从C:\Documents and Settings\Marek\Dane aplikacji\Sun\Java\Deployment\security\trusted.jssecerts加载部署SSL证书
安全性:从部署会话证书存储加载证书
安全性:从部署会话证书存储加载证书
安全性:检查SSL证书是否在部署永久证书存储中
安全性:检查是否可以使用根CA证书存储中的证书验证证书
安全性:要验证的证书:
[
]
安全性:已成功使用根CA证书验证证书
安全性:来自HTTPS服务器的证书无效
基本:对话框类型不是嵌入的候选类型
安全性:在部署会话证书存储中保存证书
安全性:已将证书保存在部署会话证书存储中
网络:响应代码https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar : 304
网络:编码为https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar :null
网络:断开与的连接https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar
缓存:从3935读取签名者https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar |C:\Documents and Settings\Marek\Ustavienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\60\6283407c-46587e7d.idx
缓存:完成读签名(https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar)
缓存:读取的清单https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar: 读=273满=273
基本:Plugin2ClassLoader.isTrustedByPolicy调用
基本:Plugin2ClassLoader.isTrustedByPolicy返回false
安全性:中的资源名称“pl/computerland/sod/prezentacja/klient/cienki/applet/JavaVersion.class”https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar :java.lang.SecurityException:尝试打开沙盒jarhttps://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar 作为受信任的图书馆
安全性:中的资源名称“pl/computerland/sod/prezentacja/klient/cienki/applet/JavaVersion.class”https://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar :java.lang.SecurityException:尝试打开沙盒jarhttps://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar 作为受信任的图书馆
基本:异常:尝试打开沙盒jarhttps://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar 作为一个值得信赖的图书馆。
java.lang.SecurityException:尝试打开沙盒jarhttps://www.sod.pfron.org.pl/_applet/Logowanie_8.32.2.48.jar 作为受信任的图书馆
位于com.sun.deploy.security.CPCallbackHandler$ParentElement.checkResource(未知源)
位于com.sun.deploy.security.DeployURLClassPath$JarLoader.checkResource(未知源)
位于com.sun.deploy.security.DeployURLClassPath$JarLoader.getResource(未知源)
位于com.sun.deploy.security.DeployURLClassPath.getResource(未知源)
位于sun.plugin2.applet.Plugin2ClassLoader$2.run(未知源)
位于java.security.AccessController.doPrivileged(本机方法)
位于sun.plugin2.applet.Plugin2ClassLoader.findClassHelper(未知源)
位于sun.plugin2.applet.Applet2ClassLoader.findClass(未知源)
位于sun.plugin2.applet.Plugin2ClassLoader.loadClass0(未知源)
位于sun.plugin2.applet.Plugin2ClassLoader.loadClass(未知源)
位于sun.plugin2.applet.Plugin2ClassLoader.loadClass0(未知源)
grant {
permission java.security.AllPermission;
};