SSL problem with java 1.4 plugin and ApacheSSL

SSL problem with java 1.4 plugin and ApacheSSL

Post by ann » Wed, 22 May 2002 21:50:21



Hi,

I'm struggeling with a problem that seems to be some new "feature"
with java 1.4 ssl.
I have an applet running on a site using https.
I can't download the class files when using the 1.4 plugin, but it
works fine with 1.3.x and earlier versions.
To demonstrate, I have created a simple applet that displays a JLabel.
https://129.241.219.174
(don't mind the snakeoil server certificate ;)

The webserver is an OpenSA (www.opensa.org) build of apache and
openSSL
(OpenSA 0.20, apache 1.2.12, build March 3, 2000)

(I get a problem with client certificates as well, Handshake
exceptions)

Here's the output you should get with 1.4:

**********************************************************
Java(TM) Plug-in: Version 1.4.0
Using JRE version 1.4.0 Java HotSpot(TM) Client VM
User home directory = C:\Documents and Settings\t521609.TELENOR
Proxy Configuration: No proxy

----------------------------------------------------
c:   clear console window
...
0-5: set trace level to <n>
----------------------------------------------------
load: class PureApplet not found.

java.lang.ClassNotFoundException: PureApplet
        at sun.applet.AppletClassLoader.findClass(AppletClassLoader.java:151)
        at sun.plugin.security.PluginClassLoader.findClass(PluginClassLoader.java:189)
        at java.lang.ClassLoader.loadClass(ClassLoader.java:306)
        at sun.applet.AppletClassLoader.loadClass(AppletClassLoader.java:112)
        at java.lang.ClassLoader.loadClass(ClassLoader.java:262)
        at sun.applet.AppletClassLoader.loadCode(AppletClassLoader.java:478)
        at sun.applet.AppletPanel.createApplet(AppletPanel.java:548)
        at sun.plugin.AppletViewer.createApplet(AppletViewer.java:1621)
        at sun.applet.AppletPanel.runLoader(AppletPanel.java:477)
        at sun.applet.AppletPanel.run(AppletPanel.java:290)
        at java.lang.Thread.run(Thread.java:536)
Caused by: java.io.IOException: open HTTP connection failed.
        at sun.applet.AppletClassLoader.getBytes(AppletClassLoader.java:224)
        at sun.applet.AppletClassLoader.access$100(AppletClassLoader.java:40)
        at sun.applet.AppletClassLoader$1.run(AppletClassLoader.java:141)
        at java.security.AccessController.doPrivileged(Native Method)
        at sun.applet.AppletClassLoader.findClass(AppletClassLoader.java:138)
        ... 10 more

*********************************************************
with runtime parameter turned on:
-Djavax.net.debug=ssl
You will see alot of "garbage" :
keyStore is :

keyStore type is : jks

init keystore

init keymanager of type SunX509

trustStore is: C:\PROGRA~1\Java\J2RE14~1.0\lib\security\cacerts

trustStore type is : jks

init truststore

adding as trusted cert: [
[
---
etc etc etc
-----

I'm not an ssl expert, I just use the darn thing. I hope someone can
make sense of the -Djavax.net.debug=ssl output.
It might be a bug in 1.4 or some new feature I hopefully can configure
Apache to work with.

Sincerely
am hjemas

 
 
 

1. java 1.4 plugin for netscape 7

I was trying to configure the Java plugin 1.4 to work with Netscape 7.
I created the symbolic files in the /usr/netscape/base/plugins
directory to link the libjavaplugin_oji.so file. The browser still
cannot lauch the applet. It returns error:
Applet jarFinderApplet notinited.

Anyone could help? Thanks!

2. Unix/Linux docs

3. java 1.4 beta plugin at Mozilla 0.92

4. 2.4.9 does not compile [PATCH]

5. java and AIX 4.3.3 ML 10, and Java 1.4

6. Vi on the command prompt in SuSe

7. Java 1.4 on Solaris 2.7 problem

8. Bad "From" field when sending mail with PPP

9. SSL patches for NCSA 1.4 or higher

10. Java & Linux 1.4

11. SSRT3582 Potential Sec. Vulnerability in Java VM (J2SE) and the Java Plugin

12. XiG Accelerated X + Java 1.4 woes

13. Gnome 1.4 over Solaris and Forte for Java