RH738814: Access denied at ssl handshake - jigong/icedtea-web.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Omair Majid <[email protected]>	2011-09-23 12:05:43 -0400
committer	Omair Majid <[email protected]>	2011-09-23 12:05:43 -0400
commit	3981cff3d9feca0a3d240f675b8268ddb8751b83 (patch)
tree	bb67307c9e700efc9f4d16bbe388a99680554fa0 /netx/net/sourceforge/jnlp/security/JNLPAuthenticator.java
parent	94355bd36513b3f649c1c027dd50e63862f1d635 (diff)

RH738814: Access denied at ssl handshake

It turns out that TrustManager.checkTrusted() could be called by untrusted code. In such a case, we should still show a warning to the user, and not throw a SecurityException instead. 2011-09-23 Omair Majid <[email protected]> * netx/net/sourceforge/jnlp/security/SecurityDialogs.java (showCertWarningDialog): Add a javadoc comment. * netx/net/sourceforge/jnlp/security/VariableX509TrustManager.java (askUser): Wrap the call to showCertWarningDialog in a doPrivileged block.

Diffstat (limited to 'netx/net/sourceforge/jnlp/security/JNLPAuthenticator.java')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: