Opened 5 years ago

Last modified 21 months ago

#13388 new defect

HTTPS-E v4.0.1 breaks Amazon dynamic images (FF 32)

Reported by: cypherpunks Owned by: zyan
Priority: Medium Milestone:
Component: HTTPS Everywhere/EFF-HTTPS Everywhere Version:
Severity: Normal Keywords: httpse-ruleset-bug
Cc: torproject@… Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

For example, on page: www.amazon.com/gp/product/B00HLSTYNS/

With HTTPS-E enabled, clicking on the small images to the left of the main image does nothing. Mousing over the main image does nothing. Disable HTTPS-E and functionality is restored.

Child Tickets

Change History (3)

comment:1 Changed 5 years ago by gk

Component: - Select a componentEFF-HTTPS Everywhere
Owner: set to zyan

comment:2 Changed 5 years ago by alphapapa

This also breaks the product ratings images, i.e. the 0-5 star images. The URL of the image is:

http://images-na.ssl-images-amazon.com/images/G/01/amazonui/sprites/aui_sprite_0034-1x._V1_.png

When HTTPS Everywhere's "Amazon Web Services" rule is enabled, these images are blocked and the space for the image is empty.

This also affects other images on Amazon, such as the up/down arrows on the "Add to Wish List" buttons.

It was very difficult to even figure out why these images were being blocked in Firefox. The CSS Inspector showed that the Computed rule for the background-image property was "none" even though there was clearly a background image specified. After exhausting all other possibilities, I checked HTTPS Everywhere, and when I disabled it, the images reappeared.

comment:3 Changed 21 months ago by teor

Severity: Normal

Set all open tickets without a severity to "Normal"

Note: See TracTickets for help on using tickets.