Stack Overflow
Stack Overflow

Questions tagged [mixed-code]

Mixed Code refers to a situation in which code, or sometimes data, of differing privileges share the same context. An adversary may be able to craft malicious code to compromise the confidentiality and/or integrity of differently trusted code/data, enabling exploitation of elevated permissions.

For Java PlugIn and Java WebStart, see Oracle's Mixing Signed and Unsigned Code guide.

For HTTPS, see Ivan Ristic's How to Render SSL Useless, particularly points "8 Mixed page content," "10 Using SSL for “important” bits" and "3 Mixing SSL and plain-text".

40 questions
13
votes
3 answers

Why does Java tell me my applet contains both signed and unsigned code?

My signed Java applet has been running fine until Java update 19. Now some but not all of our users on Java Update 19 report a java security message stating that our applet contains both signed and unsigned code. The process for creating our applet…
JohnCooperNZ
  • 167
  • 1
  • 2
  • 9
13
votes
5 answers

Java applet stopped working after update to JRE 7u21

My java applet stopped working once JRE was updated to 7u21. Short summary: The Exceptions I get are: netscape.javascript.JSException and java.lang.NoClassDefFoundError. the applet worked fine until JRE 7u21. The applet is embedded in a web page…
user1127788
  • 151
  • 1
  • 1
  • 4
7
votes
4 answers

Java popup saying applications contains both unsigned and signed code

I am using Mac 10.7 running Java 1.7.0_21. I am trying to run a Java applet application that is signed and towards the end of the application I get a mixed mode security popup saying "Block potentially unsafe components from being run?". All the…
user1216750
  • 483
  • 3
  • 10
  • 17
6
votes
2 answers

Help with understanding jstack output

I have a desktop Java/Swing application which is deployed via Java Webstart (clients are using Java 6u20 on XP). I have received intermittent reports from users of the application hanging. I managed to log on to such a system during a hang found…
PhilDin
  • 2,802
  • 4
  • 23
  • 38
4
votes
1 answer

java.lang.SecurityException: class "org.apache.log4j.Logger" does not match trust level of other classes in the same package

For an java web application, I got this error when using JRE 1.6.0_22 java.lang.SecurityException: class "org.apache.log4j.Logger" does not match trust level of other classes in the same package However, it works fine when using JRE 1.6.0_13. I…
Joey Sun
  • 109
  • 3
  • 8
4
votes
2 answers

Access violation reading location before entering main

After upgrading from Visual Studio 2012 to Visual Studio 2015 my project gets heap corruption and access violation errors before even reaching the main function. There is simply no code that I can debug. I checked for static variables and anything…
OGCJN
  • 393
  • 3
  • 9
4
votes
1 answer

How to avoid Java security exception due to mixed code

I have an applet which is present in a signed jar. This applet uses another 3rd party jar file which is unsigned. On launching the applet I get the Mixed code warning which I want to avoid. To solve this issue, I added "Trusted-Library: true" to the…
raghvendra
  • 285
  • 5
  • 18
3
votes
1 answer

How to avoid mixed code warning from third party lib loading binary resources?

I'm working on an enormous applet, loads over 100 jars, 50 of which are third-party. All of them are signed and trusted. Unfortunately, one, openmap, loads binary files (shape and layer files). I cannot sign these files (AFAIK), because they…
Steve Jackson
  • 1,330
  • 1
  • 15
  • 25
3
votes
1 answer

Fortran module combine with procedure being accessed in C and vice versa

I am trying to test Fortran/C mixed language by using module and procedure. I used the base example case from this link: http://cftcc.iccas.ac.cn/upload/doc/ifc/f_ug1/pgwusmod.htm but when I try to modify the code, I start to get the error like…
Jing Yang
  • 33
  • 3
2
votes
3 answers

Mixed code warning for unsigned java applet because of WMPNS.jar

I'm using unsigned applet on my website. Since java 1.6u19 mixed code warnings started to appear. This is strange, because applet is just a single jar and it's not using any external resources. I found out that the problem is caused by WMPNS.jar in…
MarcinLe
  • 110
  • 1
  • 7
2
votes
1 answer

Signing a Java applet that contains loose class files

Our Java application has a function which outputs a Java applet which can be uploaded to our online repository. Recently we have been having trouble with Oracle security updates which require applets to be codesigned unless Java security settings…
Mike2012
  • 7,629
  • 15
  • 84
  • 135
2
votes
1 answer

How to assign dispatch_queue_t to variable in a structure

I'm still relatively new to Objective C and easily confused by the various types. I am using code from the SquareCam sample project, incorporated into a larger project. It works fine, but now I want to save the videoDataOutputQueue, which is of…
user938797
  • 167
  • 3
  • 15
2
votes
3 answers

Mixed C/C ++ source: Get sizeof(C++ struct) in C code

In this project, I need to get the size of a struct in a header file from within a C file. I can't include the header file in the C file because the struct contains classes which will not compile in C. Any ideas?
eplictical
  • 583
  • 1
  • 6
  • 16
1
vote
1 answer

Mixed-Code - Function Member Pointers

I would like to call a FORTRAN function from my C++ code. The FORTRAN function is something like this extern "C" { void FORTRANFUNC( void FCN(int*,double*), int *N); } The FCN function reported above is a member function of a C++ class class…
alberto.cuoci
  • 87
  • 2
  • 5
1
vote
1 answer

an array of self-defined swift object can't be converted to objective-c type

A newbie to swift I'm doing a mixed-language (Swift & Objective-C) program, and encounter an error when trying to import Swift into Objective-C here is my code @objc public enum ItemType: Int { case left, right } public class MyClass { @objc…
Jimmy
  • 55
  • 5
1
2 3