access with cloudflare

Users and developers helping users with generic and technical Pale Moon issues on all operating systems.

Moderator: trava90

Forum rules
This board is for technical/general usage questions and troubleshooting for the Pale Moon browser only.
Technical issues and questions not related to the Pale Moon browser should be posted in other boards!
Please keep off-topic and general discussion out of this board, thank you!
User avatar
Kris_88
Keeps coming back
Keeps coming back
Posts: 933
Joined: 2021-01-26, 11:18

Re: access with cloudflare

Unread post by Kris_88 » 2023-06-01, 15:29

BTW, this page:
https://www.cloudflare.com/privacypolacy/
generates the unresponsive script warning.
Further, if I choose the "Debug script" button, then the browser crashes.
Can anyone confirm, or is it happening only with me?

edit:
Sorry, typo, I meant:
https://www.cloudflare.com/privacypolicy/
Last edited by Kris_88 on 2023-06-01, 16:00, edited 1 time in total.

User avatar
Moonchild
Pale Moon guru
Pale Moon guru
Posts: 35474
Joined: 2011-08-28, 17:27
Location: Motala, SE
Contact:

Re: access with cloudflare

Unread post by Moonchild » 2023-06-01, 15:46

Kris_88 wrote:
2023-06-01, 15:29
BTW, this page:
https://www.cloudflare.com/privacypolacy/
generates the unresponsive script warning.
Further, if I choose the "Debug script" button, then the browser crashes.
Can anyone confirm, or is it happening only with me?
confirmed. new in 32.2.0
it's a Javascript JIT crash (in BailoutIonToBaseline). It's hitting a release assert in SnapshotIterator::initInstructionResults at

Code: Select all

MOZ_RELEASE_ASSERT(results->length() == recover_.numInstructions() - 1);
EDIT: Issue #2257 (UXP) -- already have a fix for that landed now. It'll solve the crash. the script hang is something else.
"Sometimes, the best way to get what you want is to be a good person." -- Louis Rossmann
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite

BenFenner
Astronaut
Astronaut
Posts: 588
Joined: 2015-06-01, 12:52
Location: US Southeast

Re: access with cloudflare

Unread post by BenFenner » 2023-06-01, 16:07

Moonchild wrote:
2023-06-01, 12:02
if you encounter this problem, report it to cloudflare and include the stated "Ray ID"
Also report it to the web site owners/developers so they can get an idea of how CloudFlare is serving them (or not) and maybe rethink using it the first place.

User avatar
Kris_88
Keeps coming back
Keeps coming back
Posts: 933
Joined: 2021-01-26, 11:18

Re: access with cloudflare

Unread post by Kris_88 » 2023-06-01, 16:59

Moonchild wrote:
2023-06-01, 15:46
Issue #2257 (UXP) -- already have a fix for that landed now. It'll solve the crash. the script hang is something else.
Thank you.

digitalaudiorock
Moonbather
Moonbather
Posts: 64
Joined: 2017-08-16, 14:12

Re: access with cloudflare

Unread post by digitalaudiorock » 2023-06-01, 21:00

I have a membership at drunkenslug.com and they're login process (unfortunately) has always used Cloudflare security validation. A few weeks ago that validation started prompting me to check a checkbox, which it wasn't doing before, but it still in fact worked. Now the Cloudflare icon either sits there with the spinning animation indefinitely, or the security image with that spinning animation just vanishes.

No clue if it's related to everything else here. I emailed them and they just said there's "nothing they can do about it" which frankly pisses me the fuck off. Nobody's holding a gun to their head and forcing them to use cloudflare's open-internet-unfriendly fucking bullshit...but i digress.

Tom

User avatar
LD-531
Newbie
Newbie
Posts: 3
Joined: 2019-07-01, 14:32

Re: access with cloudflare

Unread post by LD-531 » 2023-06-02, 12:12

When accessing Cloudflare "protected" sites, stuck "Checking if the site connection is secure" has worsened in recently.

they're the judges now *sigh*

User avatar
somdcomputerguy
Lunatic
Lunatic
Posts: 381
Joined: 2014-02-23, 17:25
Location: Greenbrier County, West Virginia
Contact:

Re: access with cloudflare

Unread post by somdcomputerguy » 2023-06-02, 18:43

LD-531 wrote:
2023-06-02, 12:12
When accessing Cloudflare "protected" sites, stuck "Checking if the site connection is secure" has worsened in recently.
Strangely, when I visit a site that I regularly visit I get that message (and shortly after that an 'OK' type message) not when I first goto the site, but after I logout and the page reloads..
:cool: -bruce /* somdcomputerguy.com */
'If you change the way you look at things, the things you look at change.'

User avatar
back2themoon
Moon Magic practitioner
Moon Magic practitioner
Posts: 2369
Joined: 2012-08-19, 20:32

Re: access with cloudflare

Unread post by back2themoon » 2023-06-02, 18:53

digitalaudiorock wrote:
2023-06-01, 21:00
A few weeks ago that validation started prompting me to check a checkbox, which it wasn't doing before, but it still in fact worked. Now the Cloudflare icon either sits there with the spinning animation indefinitely, or the security image with that spinning animation just vanishes.
Confirmed on the few Cloudflare-guarded websites I visit. Hopefully, the #2257 fix will solve it.

Assuming that issue is unrelated, weren't we in the same situation exactly a year ago? The issue went public on a few tech-sites and CF finally provided the fix.

viewtopic.php?f=70&t=28227
https://community.cloudflare.com/t/brow ... ken/381029

Also, not sure how and where to report directly to Cloudflare with the Ray ID as a user. Reporting to website owners didn't help in my case. Cloudflare is so much bigger than them, and they seem wary of contacting them.

User avatar
Moonchild
Pale Moon guru
Pale Moon guru
Posts: 35474
Joined: 2011-08-28, 17:27
Location: Motala, SE
Contact:

Re: access with cloudflare

Unread post by Moonchild » 2023-06-02, 20:07

back2themoon wrote:
2023-06-02, 18:53
Hopefully, the #2257 fix will solve it.
it won't. #2257 is only to fix the crash upon opening devtools from the debug on the script hang on CF's policy page.

As stated before a few times already now: we can't do anything about an arbitrary captcha check on cloudflare's side that does not allow Pale Moon to continue to the protected sites.
"Sometimes, the best way to get what you want is to be a good person." -- Louis Rossmann
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite

User avatar
back2themoon
Moon Magic practitioner
Moon Magic practitioner
Posts: 2369
Joined: 2012-08-19, 20:32

Re: access with cloudflare

Unread post by back2themoon » 2023-06-02, 21:02

Ok, so we'll probably need to post again in the Cloudflare community.

User avatar
bSun0000
Apollo supporter
Apollo supporter
Posts: 36
Joined: 2022-03-22, 23:32

Re: access with cloudflare

Unread post by bSun0000 » 2023-06-05, 07:47

I HATE this ClownFlare service so much! It was suppose to be a protection against Denial of Service attacks but it became a DoS by itself! With all this stupid problems.. infinite redirects, cpu-melting challenges and straight errors in their scripts. Every time something new.
I'm getting this error on all cloudflare "protected" websites right now:

Code: Select all

12:41:25.212 [[[ERROR]]]: "Message: TypeError: l[l0(...)] is not a function - URL: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7d26c58adaa2a21d - Line: 1 - Column: 124516 - Error object: {}" Object { i: "6KfsvNBcwrk=", h: "yes", tH: "", t: -1685950884986 }   v1:1:3010
12:41:25.214 TypeError: l[l0(...)] is not a function[Learn More]  v1:1:124516
Messing with different useragents and javascript options does nothing. It fails every time preventing me from entering the site. Palemoon 32.3.0 git-master.

User avatar
Sajadi
Board Warrior
Board Warrior
Posts: 1226
Joined: 2013-04-19, 00:46

Re: access with cloudflare

Unread post by Sajadi » 2023-06-05, 09:07

Opened on the Cloudflare community a thread, who wants, can contribute:
https://community.cloudflare.com/t/clou ... ork/518036

digitalaudiorock
Moonbather
Moonbather
Posts: 64
Joined: 2017-08-16, 14:12

Re: access with cloudflare

Unread post by digitalaudiorock » 2023-06-05, 16:30

Sajadi wrote:
2023-06-05, 09:07
Opened on the Cloudflare community a thread, who wants, can contribute:
https://community.cloudflare.com/t/clou ... ork/518036
I don't get why you worded that in a way that implies that this is a palemoon issue, especially with the "Which feature must Pale Moon implement to make the browser check working again?" question. That certainly doesn't jive with what Moonchild stated above. Cloudflare's shit is broken and they need to fix it.

Even if that were the case, there's no way any security check like that that's widely used all over the web should require the browser to have the lastest/greatest/bleeding-edge javaScript functionality. That seems like the polar opposite of how Cloudflare should be approached with this.

Tom

User avatar
Sajadi
Board Warrior
Board Warrior
Posts: 1226
Joined: 2013-04-19, 00:46

Re: access with cloudflare

Unread post by Sajadi » 2023-06-05, 16:34

digitalaudiorock wrote:
2023-06-05, 16:30
I don't get why you worded that in a way that implies that this is a palemoon issue
You do know Cloudflare is one of the pages which also make constantly use of the latest ECMAScript shinies and drafts - like so many other pages today - that is actually the sad truth - Especially with the big players - to which also Microsoft or Google belong - so it is good to know what they changed.

Would it be a general page error then the system would also not work on Chromium or Chromium light (Firefox) based browsers - fact is, Cloudflare and it's services are developed with Chromium in mind.
digitalaudiorock wrote:
2023-06-05, 16:30
Even if that were the case, there's no way any security check like that that's widely used all over the web should require the browser to have the lastest/greatest/bleeding-edge javaScript functionality
Sure, in a sane world one would agree with that, but in the sad state the web is today, this golden rule is ignored. And in most cases a fall-back variant with more browser agnostic code is not even considered as only the latest Chromium or Firefox or Safari browser matters for web developers or framework developers today :sick:
Last edited by Sajadi on 2023-06-05, 16:41, edited 1 time in total.

digitalaudiorock
Moonbather
Moonbather
Posts: 64
Joined: 2017-08-16, 14:12

Re: access with cloudflare

Unread post by digitalaudiorock » 2023-06-05, 16:41

Sajadi wrote:
2023-06-05, 16:34
digitalaudiorock wrote:
2023-06-05, 16:30
I don't get why you worded that in a way that implies that this is a palemoon issue
You do know Cloudflare is one of the pages which also make constantly use of the latest ECMAScript shinies and drafts - like so many other pages today - that is actually the sad truth - Especially with the big players - to which also Microsoft or Google belong - so it is good to know what they changed.
Wow. I'm well aware that they do that, but that doesn't mean they should, and it sure doesn't mean that Palemoon should need enhancements to prevent those assholes from shutting it out from a large chunk of the web. Sorry, but I still maintain that the way you worded that is horrible.

Tom

User avatar
Sajadi
Board Warrior
Board Warrior
Posts: 1226
Joined: 2013-04-19, 00:46

Re: access with cloudflare

Unread post by Sajadi » 2023-06-05, 16:45

digitalaudiorock wrote:
2023-06-05, 16:41
Sorry, but I still maintain that the way you worded that is horrible.
It is all about information - so best is direct to the point. As said, as the checks work on Chromium and latest Firefox based browsers it is something which does not work smoothly with Pale Moon. And only the Cloudflare guys know at that point what it is.

If they are willing to share the necessary information is yet to be seen. Feel free to enhance the post if you want with your contribution. The more posts, the longer the topic is not going to be closed and is most likely recognized by someone of relevance.

digitalaudiorock
Moonbather
Moonbather
Posts: 64
Joined: 2017-08-16, 14:12

Re: access with cloudflare

Unread post by digitalaudiorock » 2023-06-05, 16:53

Sajadi wrote:
2023-06-05, 16:45
digitalaudiorock wrote:
2023-06-05, 16:41
Sorry, but I still maintain that the way you worded that is horrible.
It is all about information - so best is direct to the point. As said, as the checks work on Chromium and latest Firefox based browsers it is something which does not work smoothly with Pale Moon. And only the Cloudflare guys know at that point what it is.

If they are willing to share the necessary information is yet to be seen. Feel free to enhance the post if you want with your contribution. The more posts, the longer the topic is not going to be closed and is most likely recognized by someone of relevance.
Giving detailed information as to javaScript errors etc is all well and good. Implying that it's a shortcoming of Palemoon sure isn't. I'm done. I'll let others chime in on this silliness.

Tom

User avatar
Sajadi
Board Warrior
Board Warrior
Posts: 1226
Joined: 2013-04-19, 00:46

Re: access with cloudflare

Unread post by Sajadi » 2023-06-05, 17:11

digitalaudiorock wrote:
2023-06-05, 16:53
Giving detailed information as to javaScript errors etc is all well and good. Implying that it's a shortcoming of Palemoon sure isn't
Nobody blames Pale Moon for missing specifications. Who is using no mainstream browser is aware that there are certain shortcomings - created by Google and it's lapdog lobbyist Mozilla - and it is still a fact that Cloudflare is optimized to work only best in Chromium based browsers and is integrating for this reason constantly the latest standards/drafts inside their project - just because they can - so i see no problem with my post. Actually do you think they take Pale Moon and make a test drive if it works also properly there? I seriously do not think so. They code, it works on Chromium and that is case closed for them. The code differences between Pale Moon and Chromium are like day and night - same like Firefox compared to Chromium - so it is basically best to keep the worst scenery case in mind - and let the service owners to which you raise the issue towards sort it out.

You think you can do better, then by all means, go over, register and post a reply or open another thread. How do they say... Twice raised, twice watched. :wave: :mrgreen:

User avatar
Moonchild
Pale Moon guru
Pale Moon guru
Posts: 35474
Joined: 2011-08-28, 17:27
Location: Motala, SE
Contact:

Re: access with cloudflare

Unread post by Moonchild » 2023-06-05, 17:32

Sajadi wrote:
2023-06-05, 17:11
Nobody blames Pale Moon for missing specifications.
Except for you making it a question what Pale Moon should change to pass their check. That implies it's our fault not having what's "missing".

Either way, CF already indicated it was never their "intention" to cause trouble for Pale Moon or other UXP browsers when this happened in the past. If anyone's going to post there, that point should be raised. It's most likely that whomever though the new check scripting was a good idea, didn't think of testing on Pale Moon. Call it an oversight by them, not "missing specifications" or what not.
"Sometimes, the best way to get what you want is to be a good person." -- Louis Rossmann
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite

thefossil
Apollo supporter
Apollo supporter
Posts: 33
Joined: 2014-04-26, 11:05
Location: Minnesota

Re: access with cloudflare

Unread post by thefossil » 2023-06-07, 04:16

Having some trouble, too, with one site. But it coincided with me firing up AVG VPN, so I thought it was related to that, not the browser itself, as I was able to access the site a few days before without the VPN installed.
The Cloudflare box flashes briefly on PM, then spinning wheel. On FF, it takes a moment to make the check box, and when checked, one can access the site. Perhaps it's the VPN/UblockOrigin combo? I caught a screen grab after a few tries to see the spinning wheel in the "not a robot" box.
Console:
GET
https://www.powerlineblog.com/ [HTTP/2.0 403 Forbidden 33ms]
GET
https://www.powerlineblog.com/cdn-cgi/s ... lenges.css [HTTP/2.0 304 Not Modified 26ms]
GET
https://www.powerlineblog.com/cdn-cgi/i ... parent.gif [HTTP/2.0 200 OK 28ms]
GET
https://www.powerlineblog.com/cdn-cgi/c ... managed/v1 [HTTP/2.0 200 OK 52ms]
GET
https://www.powerlineblog.com/favicon.ico [HTTP/2.0 200 OK 47ms]
GET
https://challenges.cloudflare.com/turns ... 470/api.js [HTTP/2.0 200 OK 127ms]
POST
XHR
https://www.powerlineblog.com/cdn-cgi/c ... a4ae67ce07 [HTTP/2.0 200 OK 45ms]
GET
https://challenges.cloudflare.com/cdn-c ... ght/normal [HTTP/2.0 200 OK 54ms]
GET
https://challenges.cloudflare.com/cdn-c ... chl_api/v1 [HTTP/2.0 200 OK 45ms]
POST
XHR
https://challenges.cloudflare.com/cdn-c ... 81969cd013 [HTTP/2.0 400 Bad Request 43ms]
POST
XHR
https://www.powerlineblog.com/cdn-cgi/c ... a4ae67ce07 [HTTP/2.0 200 OK 49ms]
Attachments
Cloudflare Error.jpg

Locked