-
Notifications
You must be signed in to change notification settings - Fork 17
Whitelisting cross origin requests loaded from cross origin iframes breaks with Nightly's fission enabled #172
Comments
Nvm, it was content blocking trolling me. |
Mozregression, single build, moz-central, load 1.3.17rc4 umatrix.xpi, do not set fission.autostart to true, run build from 2019-07-05, navigate to https://horriblesubs.info/, whitelist disqus.com (and frames), hard refresh, whitelist disquscdn.com, hard refresh, scroll down the page to make sure the frame loads. result: disqus loads properly, logger shows same steps, except do set fission.autostart to true. disqus does not load, logger shows Edit: bonus step, go to about:support and make sure you see an entry "webIsolated=https://horriblesubs.info" under Remote Processes to make sure that fission is indeed active. Now change scope to global, allow disqus.com (and frames) and disquscdn.com, hard refresh. Disqus loads. Works every time for me. |
Are you running a bleeding-edge build of Firefox ?
Done all that, no change, on my end it shows correctly as expected, that's why cannot reproduce. |
I did state in the title "Nightly", and the buildid in the original post is dated yesterday, so yes. The reason I reported it is because it seemed more like something that needed to be fixed on the umatrix side. |
Bleeding-edge is different, it's not Nightly, but rather an untested, build dumped directly after compilation on moz-central servers. Bleeding-edge builds are downloaded from |
Oh, no, not using autoland or building my own, sorry. Just regular Nightly. |
How can you conclude this from using a new feature hidden being a new |
FYI fission is a core component of Firefox which recently went in development, so if its happening on your build, I won't be surprised. It's unstable and not supposed to be enabled via |
I assumed that either that was the implementation they're going with and umatrix would need to adjust, or that at the very least, when umatrix itself is showing that scripts from discuscdn.com are whitelisted, that the logger would show the same and allow the scripts through. Considering fission is going to be implemented in firefox sooner or later, I didn't figure it would hurt to be quick (relatively) about reporting things. Sorry if I've wasted your time. |
Fission related bugs - https://bugzilla.mozilla.org/buglist.cgi?f1=cf_fission_milestone&o1=equals&v1=Future |
I didn't say I won't investigate, just that it's pointless to conclude anything before investigating. |
The issue is that the There is code which was added in the past in uMatrix to deal in a special way with network requests which So essentially, there is no way to fix this without breaking the other issue. The webRequest documentation is clear, |
Prerequisites
Description
When loading an external iframe which loads requests from yet another domain, uMatrix blocks requests from the 3rd domain as if it were using the ruleset for the website in the iframe, not the website you loaded the frame from.
A specific URL where the issue occurs
(warning, may contain nsfw ads or links)
https://horriblesubs.info/ (or any site with a disqus embed I presume will work)
Steps to Reproduce
Ruleset
Supporting evidence
Your environment
The text was updated successfully, but these errors were encountered: