Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix and tests for PR974, extension JNLPs unavailable when embedded in HTML ↵ | Andrew Azores | 2013-08-15 | 1 | -11/+1 |
| | | | | applet tags | ||||
* | Cleaned up "throws IOException" from HTMLPanel constructor and try/catches ↵ | Andrew Azores | 2013-07-25 | 1 | -8/+2 |
| | | | | elsewhere which handled this | ||||
* | Added java.vm.name read permission to fix Rhino evaluation of proxy PAC ↵ | Andrew Azores | 2013-07-22 | 1 | -0/+7 |
| | | | | (RH982558) | ||||
* | IcedTea-Web is now following XDG .config and .cache specification(RH947647) | Jiri Vanek | 2013-07-18 | 1 | -0/+2 |
| | |||||
* | Implemented new about dialogue (by Andrew Azores). Andrew added to authors | Jiri Vanek | 2013-07-10 | 1 | -44/+28 |
| | |||||
* | JNLP file is now re-downloading only if is local and have href. Real couse ↵ | Jiri Vanek | 2013-06-24 | 1 | -1/+1 |
| | | | | of PR1473 | ||||
* | Added tagsup (optional dependence) as sanitizer for (possibly) invalid xml files | Jiri Vanek | 2013-06-21 | 2 | -5/+16 |
| | |||||
* | Removed out-of date Boot13 class | Jiri Vanek | 2013-06-20 | 2 | -101/+0 |
| | |||||
* | Made it work with OpenJDK build 25 by creating application as soon as possible | Jiri Vanek | 2013-06-20 | 2 | -1/+6 |
| | |||||
* | Extract NativeLibraryStorage class from JNLPClassLoader | Adam Domurad | 2013-06-03 | 1 | -126/+13 |
| | |||||
* | Ensure JarFile handles do not leak. | Adam Domurad | 2013-04-23 | 1 | -1/+10 |
| | |||||
* | JNLPClassLoader unit tests for file leaks | Adam Domurad | 2013-04-23 | 1 | -3/+3 |
| | |||||
* | Fixed gifar vulnereability with automated testcase | Jiri Vanek | 2013-04-17 | 4 | -10/+32 |
| | |||||
* | Integration of unsigned applet confirmation dialogue. | Adam Domurad | 2013-03-26 | 1 | -5/+12 |
| | |||||
* | Print stacktrace for ClassFormatError's during classloading | Adam Domurad | 2013-03-22 | 1 | -0/+1 |
| | |||||
* | Move stream closing utility in JNLPClassLoader to StreamUtils | Adam Domurad | 2013-03-05 | 1 | -18/+5 |
| | |||||
* | Extract JNLPClassLoader initialization logic into createInstance() method | Adam Domurad | 2013-02-25 | 1 | -21/+38 |
| | |||||
* | Avoid potential NPE on shutdown. | Adam Domurad | 2013-02-21 | 1 | -1/+1 |
| | |||||
* | Fix PR580: http://www.horaoficial.cl/ loads improperly. | Adam Domurad | 2013-02-13 | 1 | -31/+62 |
| | |||||
* | Provide names for unnamed threads for better debugging | Adam Domurad | 2013-02-06 | 1 | -1/+1 |
| | |||||
* | First part of fix of recreating desktop icon | Jiri Vanek | 2013-01-10 | 1 | -1/+9 |
| | | | | Another fix can be addition of buttons like always/never | ||||
* | Fix CodeBaseClassLoaderTest.testParentClassLoaderIsAskedForClassesApplication | Adam Domurad | 2013-01-03 | 1 | -3/+8 |
| | |||||
* | Fixed xtrust all behaviour for desktop icons. Now returning true only if ↵ | Jiri Vanek | 2012-12-24 | 1 | -1/+1 |
| | | | | desktop icon should be created. False otherwise. | ||||
* | netx/net/sourceforge/jnlp/runtime/ApplicationInstance.java - ↵ | Jiri Vanek | 2012-12-21 | 1 | -0/+3 |
| | | | | (shouldCreateShortcut) added handling of xtrustall during asking for desktop icon creation | ||||
* | Add DownloadService implementation | Saad Mohammad | 2012-11-08 | 3 | -1/+370 |
| | |||||
* | PR1186: System.getProperty("deployment.user.security.trusted.cacerts") is null | Omair Majid | 2012-10-29 | 1 | -0/+1 |
| | | | | | Copy deployment configration read into system properties so it is visibile to target programs. | ||||
* | New message for when JNLP is fully signed by different certs | Adam Domurad | 2012-10-19 | 1 | -1/+5 |
| | |||||
* | Major rework of JarCertVerifier certificate management. | Danesh Dadachanji | 2012-10-22 | 1 | -83/+52 |
| | | | | | | This is a long-planned rework of JarCertVerifier, allowing it to handle multiple certificates. The algorithms used to verify jars with multiple certificates vary between JNLPs and Applets. | ||||
* | PR1145: IcedTea-Web can cause ClassCircularityError | Omair Majid | 2012-10-05 | 1 | -13/+1 |
| | | | | | | | | | | | | | | | | | | | It is possible for the ClassLoader to encounter a ClassCircularityError. This can happen when the ClassLoader detects that checking if a class 'A' has been loaded triggers another check of whether 'A' has been loaded before the first check has completed. This can happen easily when trying to load Policy or Permission classes, which lie in our code path that checks whether a class has been loaded. One possible fix is to ensure these classes are not in the path of code that gets executed when we are trying to check for a class. This can be done by removing the call to getAccessControlContextForClassLoading. The javadocs for ClassLoader.findLoadedClass do not mention any permissions required to call the method nor do they mention that the method can throw a SecurityException. The native code that implements findLoadedClass does not have any security checks either. The doProvileged block is probably not needed here and removing it breaks the circularity. | ||||
* | PR1161: X509VariableTrustManager does not work correctly with OpenJDK7 | Deepak Bhole | 2012-09-17 | 1 | -13/+80 |
| | |||||
* | Fix for PR920: Classes attempted to load twice when class extends from ↵ | Adam Domurad | 2012-08-28 | 1 | -15/+2 |
| | | | | outside jar | ||||
* | Fir regression that sometimes results in ClassCircularityError | Deepak Bhole | 2012-08-27 | 1 | -0/+2 |
| | |||||
* | Fixed long term failing unit-test, fixed NPE from ClassLoader | Jiri Vanek | 2012-08-27 | 1 | -2/+9 |
| | | | | | | | | | | | | | | | * netx/net/sourceforge/jnlp/NullJnlpFileException.java: new class to distinguish plain NPE from null jnlp file. * netx/net/sourceforge/jnlp/SecurityDesc.java: (getSandBoxPermissions) added throw of NullJnlpFileException in case of null jnlp file. * netx/net/sourceforge/jnlp/runtime/JNLPClassLoader.java: (findClass) added Override annotation, add catch of NullJnlpFileException and re-throw of CNF exception. * tests/netx/unit/net/sourceforge/jnlp/runtime/CodeBaseClassLoaderTest.java: (testResourceLoadSuccessCaching) (testResourceLoadFailureCaching) (testParentClassLoaderIsAskedForClasses) - internal JNLPFile's (getSecurity) null in SecurityDesc constructorrepalced by this. (testNullFileSecurityDesc) new test to ensure NPE in null JNLPFile case. | ||||
* | Fix some javadoc warnings | Thomas Meyer | 2012-08-19 | 2 | -2/+3 |
| | |||||
* | Restrict manifest classpath searching for JNLPs. | Danesh Dadachanji | 2012-08-15 | 1 | -1/+5 |
| | |||||
* | Added splashscreen implementation | Jiri Vanek | 2012-08-13 | 2 | -2/+12 |
| | |||||
* | Fix PR1049: Empty jars are handled correctly during signature validation | Saad Mohammad | 2012-08-01 | 1 | -1/+1 |
| | |||||
* | Refactor Object launchType; to LaunchDesc launchType; in JNLPFile | Adam Domurad | 2012-07-10 | 1 | -11/+8 |
| | |||||
* | Minor cleanup that removes avoidable code from loop. | Saad Mohammad | 2012-07-09 | 1 | -13/+12 |
| | |||||
* | Applet-tags now ignore any invalid (eg corrupt) jars | Adam Domurad | 2012-07-09 | 1 | -2/+62 |
| | | | | | icedtea-web now skips over any jars that are corrupt or not actually jars. This is how the proprietary plugin treats this situation. | ||||
* | Fix PR1040, PR1041, PR1042: Allows signed jars to function correctly using ↵ | Saad Mohammad | 2012-07-03 | 1 | -19/+104 |
| | | | | extensions | ||||
* | Fix problem in resolving classes | Omair Majid | 2012-06-28 | 1 | -2/+14 |
| | | | | | | | | | | | | | | | | | The bug manifests when the following sequence of steps happen: 1. An applet with both a codebase and a jar (archive) is loaded 2. A class Foo is loaded using the codebase classloader 3. The Foo class tries to load a class Bar that is specified in the jar archive. The Bar class is not found. The following applet reproduces the problem: http://javadjvu.foxtrottechnologies.com/cgi-bin/djvuapplet.pl/examples/deer.djvu?zoom=page The fix addresses the problem by ensuring that the codebase classloader asks the classloader that knows about the jar archive to resolve classes too. | ||||
* | Fixes PR1011 w/ reproducer, folders now allowed in archive tag. | Adam Domurad | 2012-06-28 | 1 | -0/+13 |
| | | | | | Previously folders in the archive tag were treated as jars. They are now correctly treated as resource folders. | ||||
* | Last hope for not downloaded resources to be verified | Jiri Vanek | 2012-06-26 | 1 | -1/+20 |
| | |||||
* | Fixed bug in previous commit for PR861 | Deepak Bhole | 2012-06-07 | 1 | -4/+6 |
| | |||||
* | PR861: Allow loading from non codebase hosts. Allow code to connect to ↵ | Deepak Bhole | 2012-06-05 | 1 | -16/+133 |
| | | | | hosting server | ||||
* | isDateInRange renamed to isDateInRange_internallForIcedTeaWebTesting | Jiri Vanek | 2012-06-05 | 1 | -8/+8 |
| | |||||
* | netx/net/sourceforge/jnlp/runtime/JNLPClassLoader.java: (getPermissions): ↵ | Jiri Vanek | 2012-05-29 | 1 | -14/+18 |
| | | | | New rethrow of exceptions and following condition make more accurate | ||||
* | Changed for-loops over iterators and indices to for-each loops if they | Adam Domurad | 2012-05-25 | 2 | -6/+5 |
| | | | | were sufficient and clearer. | ||||
* | Added more debugging outputs (especially paths to keystores) for ↵ | Jiri Vanek | 2012-05-23 | 1 | -1/+6 |
| | | | | JNLPClassLoader and CertificateUtils |