Bug ID: JDK-6243108 Loading 1.4 plugin from HTTPS page fails for Win2K user with mandatory profile

Type: Bug
Component: deploy
Sub-Component: plugin
Affected Version: 5.0,5.0u2

Priority: P1
Status: Closed
Resolution: Fixed
OS: windows_2000,windows_xp
CPU: x86

Submitted: 2005-03-18
Updated: 2010-04-04
Resolved: 2005-04-29

Other
5.0u4 b03Fixed

A customer is running into problems trying to load an applet from an https web
page when using the mandatory profiles on Windows 2000 (ntuser.man) instead of
the typical profiles (ntuser.dat).

Here is the Stack Trace :

Java Plug-in 1.5.0_02
Using JRE version 1.5.0_02 Java HotSpot(TM) Client VM
User home directory = C:\Documents and Settings\vmware.VMNET
----------------------------------------------------
c:   clear console window
f:   finalize objects on finalization queue
g:   garbage collect
h:   display this help message
l:   dump classloader list
m:   print memory usage
o:   trigger logging
p:   reload proxy configuration
q:   hide console
r:   reload policy configuration
s:   dump system and deployment properties
t:   dump thread list
v:   dump thread stack
x:   clear classloader cache
0-5: set trace level to <n>
----------------------------------------------------
I am running as an applet!!!
java.lang.ExceptionInInitializerError
 at java.lang.Class.forName0(Native Method)
 at java.lang.Class.forName(Unknown Source)
 at java.net.URL.getURLStreamHandler(Unknown Source)
 at java.net.URL.<init>(Unknown Source)
 at java.net.URL.<init>(Unknown Source)
 at java.net.URL.<init>(Unknown Source)
 at TestApplet.start(TestApplet.java:29)
 at sun.applet.AppletPanel.run(Unknown Source)
 at java.lang.Thread.run(Unknown Source)
Caused by: java.lang.NullPointerException
 at java.security.SecureRandom.nextBytes(Unknown Source)
 at java.security.SecureRandom.next(Unknown Source)
 at java.util.Random.nextInt(Unknown Source)
 at com.sun.deploy.net.protocol.https.Handler$1.run(Unknown Source)
 at java.security.AccessController.doPrivileged(Native Method)
 at com.sun.deploy.net.protocol.https.Handler.<clinit>(Unknown Source)
 ... 9 more

===============
Source Code :
===============
Here is the source for test case:

import java.io.*;
import java.net.URL;
import javax.swing.JApplet;

public class TestApplet extends JApplet
{
    public TestApplet()
    {
    }

    public void start()
    {
        try
        {
            System.out.println("I am running as an applet!!!");
            URL yahoo = new URL("https://www.docmagic.com/");
            BufferedReader in = new BufferedReader(new
InputStreamReader(yahoo.openStream()));
            String inputLine;
            while((inputLine = in.readLine()) != null) 
                System.out.println(inputLine);
            in.close();
        }
        catch(Exception ioe)
        {
            ioe.printStackTrace();
        }
    }

    public static void main(String args[])
    {
        System.out.println("I am running as an application!!!");
    }
}

=========
 Note : 
=========
   This bug was fixed for 1.4.0_04, 1.4.1_02, mantis and JRE 1.6.0 beta.
 Need a fix for 1.5.0_02 version also.
###@###.### 2005-03-18 23:02:54 GMT

SUGGESTED FIX fixed in src/common/windows/classes/com/sun/deploy/security/WSecureRandom.java ###@###.### 2005-03-22 22:57:34 GMT

18-03-2005

EVALUATION Please see bug 4774627, this bug was originally in JRE 1.4.0 and then fixed in JRE 1.4.2. If it is still produced in Mustang, then we have to fix it, if only in JRE 1.5.0, CTE will take care of it. Please see bug 4774627 for detail steps to reproduce it. ###@###.### 2005-03-19 02:16:25 GMT

18-03-2005

Duplicate :	JDK-6227159 - Can't create HTTPS URLs in applets when logged in as guest
Relates :	JDK-6261009 - Loading 1.5 plugin from HTTPS page fails for W2K3 user with mandatory profile
Relates :	JDK-4479378 - HTTPS test cases FAIL using Merlin B71
Relates :	JDK-4774627 - Loading 1.4 plugin from HTTPS page fails for Win2K user with mandatory profile