[Pkg-mozext-maintainers] Bug#769800: xul-ext-noscript: enabling ABE blocks relative links and relative CSS references
Francesco Poli (wintermute)
invernomuto at paranoici.org
Sun Nov 16 15:19:37 UTC 2014
Package: xul-ext-noscript
Version: 2.6.9.3-1
Severity: normal
Hello and thanks for maintaining this Iceweasel extension in Debian!
Since the latest upgrade:
[UPGRADE] iceweasel:amd64 31.1.0esr-1 -> 31.2.0esr-3
[UPGRADE] xul-ext-noscript:amd64 2.6.9-1 -> 2.6.9.3-1
I've experienced an issue with the ABE (Application Boundaries
Enforcer).
If I try to visit my own website:
http://www.inventati.org/frx
I get the following error:
Request {GET http://www.inventati.org/frx/ <<< http://www.inventati.org/frx, chrome://browser/content/browser.xul - 6} filtered by ABE: <LOCAL> Deny
If I add a final slash to the URL:
http://www.inventati.org/frx/
I manage to see the main page of my website, but the CSS stylesheet
is not applied and the logo image is not displayed.
Moreover, all the links found in the main page cannot be followed:
they are blocked with an error message similar to the above quoted
one. Please note that all these links are relative (rather than
absolute links): this is done on purpose, since relative links
allow me to navigate my local copy of the website without alterations
with respect to the copy served by the online web server.
Everything works fine, if I disable the ABE option.
Please note that everything used to work fine with previous versions
of iceweasel and/or xul-ext-noscript, even with ABE enabled.
What is awkward is that I have found very few other websites
where I experience this bug. At first, I thought that this was
due to the use of absolute links and CSS references by the other
websites I was testing. But then I found
http://www.phoronix.com
which seems to use relative CSS references and works fine, even
when I enable ABE; and
http://kernelnewbies.org
which seems to use absolute CSS references and fails to load its
stylesheet and logo, when I visit it with ABE enabled.
So the issue is probably not due to the use of relative links...
Could you please investigate this bug?
Thanks for your time and for any help you may provide!
-- System Information:
Debian Release: jessie/sid
APT prefers testing
APT policy: (800, 'testing'), (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages xul-ext-noscript depends on:
ii iceweasel 31.2.0esr-3
xul-ext-noscript recommends no packages.
xul-ext-noscript suggests no packages.
-- no debconf information
More information about the Pkg-mozext-maintainers
mailing list