March 2025 - tbb-commits - lists.torproject.org

[Git][tpo/applications/tor-browser][tor-browser-115.22.0esr-13.5-1] 2 commits: Bug 1950056 - extend use of FOS_NODEREFERENCELINKS r=Gijs,win-reviewers,gstoll
by ma1 (＠ma1) 31 Mar '25

31 Mar '25

ma1 pushed to branch tor-browser-115.22.0esr-13.5-1 at The Tor Project / Applications / Tor Browser Commits: 8e51811f by Ray Kraesig at 2025-03-31T22:42:56+02:00 Bug 1950056 - extend use of FOS_NODEREFERENCELINKS r=Gijs,win-reviewers,gstoll In the modern era of user-customizable Quick Access sidebars on every file dialog, navigating via `.lnk` files is rather less useful than it was twenty years ago. Disable link-following in file-open dialogs by default, to prevent any of the usual security issues involving symlink smuggling. Allow overriding this behavior via a pref, for users who don't care. (File-save dialogs have a more nuanced guard against that sort of thing; this patch doesn't affect that.) Differential Revision: https://phabricator.services.mozilla.com/D239833 - - - - - b26d6ce0 by Dana Keeler at 2025-03-31T22:43:05+02:00 Bug 1951494 - ensure socket control is released on the socket thread a=pascalc Original Revision: https://phabricator.services.mozilla.com/D240234 Differential Revision: https://phabricator.services.mozilla.com/D241059 - - - - - 3 changed files: - modules/libpref/init/StaticPrefList.yaml - security/manager/ssl/SSLServerCertVerification.cpp - widget/windows/nsFilePicker.cpp Changes: ===================================== modules/libpref/init/StaticPrefList.yaml ===================================== @@ -15792,6 +15792,17 @@ value: 0 mirror: always +# Whether to follow `.lnk` (etc.) shortcuts in the Windows file-open dialog. +# +# Valid values: +# * 0: never +# * 1: always +# * 2: auto +- name: widget.windows.follow_shortcuts_on_file_open + type: RelaxedAtomicInt32 + value: 2 + mirror: always + # The number of messages of each type to keep for display in # about:windows-messages - name: widget.windows.messages_to_log ===================================== security/manager/ssl/SSLServerCertVerification.cpp ===================================== @@ -1211,6 +1211,9 @@ SSLServerCertVerificationResult::Run() { } mSocketControl->SetCertVerificationResult(mFinalError); + // Release this reference to the socket control so that it will be freed on + // the socket thread. + mSocketControl = nullptr; return NS_OK; } ===================================== widget/windows/nsFilePicker.cpp ===================================== @@ -181,19 +181,29 @@ bool nsFilePicker::ShowFilePicker(const nsString& aInitialDir) { // mode specific switch (mMode) { + case modeOpenMultiple: + fos |= FOS_ALLOWMULTISELECT; + [[fallthrough]]; + case modeOpen: fos |= FOS_FILEMUSTEXIST; - break; - - case modeOpenMultiple: - fos |= FOS_FILEMUSTEXIST | FOS_ALLOWMULTISELECT; + switch (mozilla::StaticPrefs:: + widget_windows_follow_shortcuts_on_file_open()) { + case 1: + break; + default: + fos |= FOS_NODEREFERENCELINKS; + } break; case modeSave: fos |= FOS_NOREADONLYRETURN; - // Don't follow shortcuts when saving a shortcut, this can be used - // to trick users (bug 271732) - if (IsDefaultPathLink()) fos |= FOS_NODEREFERENCELINKS; + // Don't follow shortcuts when saving a shortcut; this can be used to + // trick users (bug 271732). _Do_ follow shortcuts when not saving a + // shortcut (bug 283730). + if (IsDefaultPathLink()) { + fos |= FOS_NODEREFERENCELINKS; + } break; case modeGetFolder: View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/compare/cec982… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/compare/cec982… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser] Pushed new tag tor-browser-128.9.0esr-14.0-2-build2
by ma1 (＠ma1) 31 Mar '25

31 Mar '25

ma1 pushed new tag tor-browser-128.9.0esr-14.0-2-build2 at The Tor Project / Applications / Tor Browser -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/tree/tor-brows… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-128.9.0esr-14.0-2] Bug 1950056 - extend use of FOS_NODEREFERENCELINKS r=Gijs,win-reviewers,gstoll
by ma1 (＠ma1) 31 Mar '25

31 Mar '25

ma1 pushed to branch tor-browser-128.9.0esr-14.0-2 at The Tor Project / Applications / Tor Browser Commits: 1faf2996 by Ray Kraesig at 2025-03-31T22:34:04+02:00 Bug 1950056 - extend use of FOS_NODEREFERENCELINKS r=Gijs,win-reviewers,gstoll In the modern era of user-customizable Quick Access sidebars on every file dialog, navigating via `.lnk` files is rather less useful than it was twenty years ago. Disable link-following in file-open dialogs by default, to prevent any of the usual security issues involving symlink smuggling. Allow overriding this behavior via a pref, for users who don't care. (File-save dialogs have a more nuanced guard against that sort of thing; this patch doesn't affect that.) Differential Revision: https://phabricator.services.mozilla.com/D239833 - - - - - 2 changed files: - modules/libpref/init/StaticPrefList.yaml - widget/windows/nsFilePicker.cpp Changes: ===================================== modules/libpref/init/StaticPrefList.yaml ===================================== @@ -16907,6 +16907,17 @@ value: 0 mirror: always +# Whether to follow `.lnk` (etc.) shortcuts in the Windows file-open dialog. +# +# Valid values: +# * 0: never +# * 1: always +# * 2: auto +- name: widget.windows.follow_shortcuts_on_file_open + type: RelaxedAtomicInt32 + value: 2 + mirror: always + # The number of messages of each type to keep for display in # about:windows-messages - name: widget.windows.messages_to_log ===================================== widget/windows/nsFilePicker.cpp ===================================== @@ -614,19 +614,29 @@ nsFilePicker::ShowFilePicker(const nsString& aInitialDir) { // mode specific switch (mMode) { + case modeOpenMultiple: + fos |= FOS_ALLOWMULTISELECT; + [[fallthrough]]; + case modeOpen: fos |= FOS_FILEMUSTEXIST; - break; - - case modeOpenMultiple: - fos |= FOS_FILEMUSTEXIST | FOS_ALLOWMULTISELECT; + switch (mozilla::StaticPrefs:: + widget_windows_follow_shortcuts_on_file_open()) { + case 1: + break; + default: + fos |= FOS_NODEREFERENCELINKS; + } break; case modeSave: fos |= FOS_NOREADONLYRETURN; - // Don't follow shortcuts when saving a shortcut, this can be used - // to trick users (bug 271732) - if (IsDefaultPathLink()) fos |= FOS_NODEREFERENCELINKS; + // Don't follow shortcuts when saving a shortcut; this can be used to + // trick users (bug 271732). _Do_ follow shortcuts when not saving a + // shortcut (bug 283730). + if (IsDefaultPathLink()) { + fos |= FOS_NODEREFERENCELINKS; + } break; case modeGetFolder: View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/1faf299… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/1faf299… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-128.8.0esr-14.5-1] fixup! [android] Implement Android-native Connection Assist UI
by Pier Angelo Vendrame (＠pierov) 31 Mar '25

31 Mar '25

Pier Angelo Vendrame pushed to branch tor-browser-128.8.0esr-14.5-1 at The Tor Project / Applications / Tor Browser Commits: 1e1e4147 by clairehurst at 2025-03-31T10:55:30-06:00 fixup! [android] Implement Android-native Connection Assist UI Bug 43576: Connection Assist on Android Fast Follows (Bug 41188) Fix domain Fronting issues: !1426 (comment 3175104) - - - - - 1 changed file: - mobile/android/fenix/app/src/main/java/org/mozilla/fenix/tor/TorConnectionAssistViewModel.kt Changes: ===================================== mobile/android/fenix/app/src/main/java/org/mozilla/fenix/tor/TorConnectionAssistViewModel.kt ===================================== @@ -10,6 +10,7 @@ import androidx.lifecycle.AndroidViewModel import androidx.lifecycle.MutableLiveData import kotlinx.coroutines.flow.MutableStateFlow import kotlinx.coroutines.flow.StateFlow +import mozilla.components.browser.state.ext.getUrl import org.mozilla.fenix.HomeActivity import org.mozilla.fenix.R import org.mozilla.fenix.ext.components @@ -23,11 +24,27 @@ class TorConnectionAssistViewModel( ) : AndroidViewModel(application), BootstrapStateChangeListener { private val TAG = "torConnectionAssistVM" + private val components = application.components private val torAndroidIntegration = - application.components.core.geckoRuntime.torIntegrationController + components.core.geckoRuntime.torIntegrationController init { torAndroidIntegration.registerBootstrapStateChangeListener(this) + loadDummyPage() + } + + private fun loadDummyPage() { + // Load local url (it just needs to begin with "about:" to get past filter) to initialize the browser, + // Domain fronting needs Services.io.getProtocolHandler("http")... to actually work, and it + // does not till the browser/engine is initialized, and this is so far the easiest way to do that. + // Load early here so that it is ready when needed if we get to the step where DF is invoked + // Then later remove it in onCleared so it doesn't show for the user + components.useCases.tabsUseCases.addTab.invoke("about:") + } + + private fun clearDummyPage() { + // Remove loaded URL so it doesn't show up + components.useCases.tabsUseCases.removeTab.invoke(components.core.store.state.tabs.find {it.getUrl() == "about:"}?.id ?: "") } fun fetchCountryNamesGet() { @@ -45,6 +62,7 @@ class TorConnectionAssistViewModel( override fun onCleared() { torAndroidIntegration.unregisterBootstrapStateChangeListener(this) + clearDummyPage() super.onCleared() } View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/1e1e414… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/1e1e414… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build] Pushed new tag mb-14.0.9-build1
by Pier Angelo Vendrame (＠pierov) 31 Mar '25

31 Mar '25

Pier Angelo Vendrame pushed new tag mb-14.0.9-build1 at The Tor Project / Applications / tor-browser-build -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/tree/mb-… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build] Pushed new tag tbb-14.0.9-build1
by Pier Angelo Vendrame (＠pierov) 31 Mar '25

31 Mar '25

Pier Angelo Vendrame pushed new tag tbb-14.0.9-build1 at The Tor Project / Applications / tor-browser-build -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/tree/tbb… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] Bug 41420: Update the changelog script for label updates.
by Pier Angelo Vendrame (＠pierov) 31 Mar '25

31 Mar '25

Pier Angelo Vendrame pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: 1a3e3774 by Pier Angelo Vendrame at 2025-03-31T21:19:19+02:00 Bug 41420: Update the changelog script for label updates. - - - - - 1 changed file: - tools/fetch_changelogs.py Changes: ===================================== tools/fetch_changelogs.py ===================================== @@ -13,6 +13,7 @@ GITLAB = "https://gitlab.torproject.org" API_URL = f"{GITLAB}/api/v4" PROJECT_ID = 473 AUTH_HEADER = "PRIVATE-TOKEN" +MB_LABEL = "Project 131" class EntryType(enum.IntFlag): @@ -153,9 +154,9 @@ class ChangelogBuilder: return labels = "Apps::Type::ReleasePreparation" if is_mullvad: - labels += ",Sponsor 131" + labels += f",{MB_LABEL}" elif not is_mullvad and is_mullvad is not None: - labels += "&not[labels]=Sponsor 131" + labels += f"&not[labels]={MB_LABEL}" r = requests.get( f"{API_URL}/projects/{PROJECT_ID}/issues?labels={labels}&search={issue_or_version}&in=title&state=opened", headers=self.headers, @@ -192,13 +193,13 @@ class ChangelogBuilder: self._set_issue(issues[0], is_mullvad) def _set_issue(self, issue, is_mullvad): - has_s131 = "Sponsor 131" in issue["labels"] - if is_mullvad is not None and is_mullvad != has_s131: + has_mb = MB_LABEL in issue["labels"] + if is_mullvad is not None and is_mullvad != has_mb: raise ValueError( "Inconsistency detected: a browser was explicitly specified, but the issue does not have the correct labels." ) self.relprep_issue = issue["iid"] - self.is_mullvad = has_s131 + self.is_mullvad = has_mb if self.version is None: version_match = re.search(r"\b[0-9]+\.[.0-9a]+\b", issue["title"]) View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/1… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/1… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][maint-14.0] 2 commits: Bug 41420: Update the changelog script for label updates.
by Pier Angelo Vendrame (＠pierov) 31 Mar '25

31 Mar '25

Pier Angelo Vendrame pushed to branch maint-14.0 at The Tor Project / Applications / tor-browser-build Commits: 1a62a875 by Pier Angelo Vendrame at 2025-03-31T20:07:59+02:00 Bug 41420: Update the changelog script for label updates. - - - - - 34c79257 by Pier Angelo Vendrame at 2025-03-31T21:11:24+02:00 Bug 41376+41377: Prepare Tor+Mullvad Browser 14.0.9 - - - - - 10 changed files: - projects/browser/Bundle-Data/Docs-MB/ChangeLog.txt - projects/browser/Bundle-Data/Docs-TBB/ChangeLog.txt - projects/browser/config - projects/firefox/config - projects/geckoview/config - projects/manual/config - projects/tor/config - projects/translation/config - rbm.conf - tools/fetch_changelogs.py Changes: ===================================== projects/browser/Bundle-Data/Docs-MB/ChangeLog.txt ===================================== @@ -1,3 +1,19 @@ +Mullvad Browser 14.0.9 - April 01 2025 + * All Platforms + * Updated Firefox to 128.9.0esr + * Updated uBlock Origin to 1.63.2 + * Bug 416: Rebase Mullvad Browser stable onto 128.9.0esr [mullvad-browser] + * Bug 43601: Backport security fixes from Firefox 137 [tor-browser] + * macOS + Linux + * Bug 404: Incorrect information in `about:rights` [mullvad-browser] + * Build System + * All Platforms + * Bug 41420: Update the changelog script for label updates [tor-browser-build] + * macOS + Linux + * Bug 41375: Backport Bug 41374+40799: Remove support for migrate_archs and migrate_langs in update_responses + Remove legacy locale iteration in update-responses and dmg2mar [tor-browser-build] + * Bug 41378: Backport Bug 41363: Make separate update_responses commit for each platform [tor-browser-build] + * Bug 41383: Add clairehurst to list of accepted firefox/geckoview signers [tor-browser-build] + Mullvad Browser 14.0.8 - March 27 2025 * Windows * Bug 404: Incorrect information in `about:rights` [mullvad-browser] ===================================== projects/browser/Bundle-Data/Docs-TBB/ChangeLog.txt ===================================== @@ -1,3 +1,35 @@ +Tor Browser 14.0.9 - April 01 2025 + * All Platforms + * Updated Tor to 0.4.8.16 + * Bug 43580: Backport tor-browser#43443: Drop effective top level domain for `au.securedrop.tor.onion` [tor-browser] + * Bug 43584: Rebase Tor Browser stable onto 128.9.0esr [tor-browser] + * Bug 43601: Backport security fixes from Firefox 137 [tor-browser] + * Windows + macOS + Linux + * Updated Firefox to 128.9.0esr + * macOS + Linux + Android + * Bug 43553: Backport tor-browser#43504: Implement User Survey UX (Desktop) [tor-browser] + * Android + * Updated GeckoView to 128.9.0esr + * Bug 43552: Backport tor-browser#43505: Impement User Survey UX (Android) [tor-browser] + * Bug 43578: Backport tor-browser#43556: Add the "Dismiss" translations in the survey banner [tor-browser] + * Build System + * All Platforms + * Updated Go to 1.22.12 + * Bug 41407: Use Lyrebird also for the Snowflake PT [tor-browser-build] + * Bug 41420: Update the changelog script for label updates [tor-browser-build] + * Windows + macOS + Linux + * Bug 41378: Backport Bug 41363: Make separate update_responses commit for each platform [tor-browser-build] + * macOS + Linux + Android + * Bug 41375: Backport Bug 41374+40799: Remove support for migrate_archs and migrate_langs in update_responses + Remove legacy locale iteration in update-responses and dmg2mar [tor-browser-build] + * Bug 41383: Add clairehurst to list of accepted firefox/geckoview signers [tor-browser-build] + * Bug 41384: OpenSSL hash files have changed format [tor-browser-build] + * Bug 41399: Update snowflake to 2.11.0 and lyrebird to 0.6.0 [tor-browser-build] + * Bug 41378: Backport Bug 41363: Make separate update_responses commit for each platform [tor-browser-build] + * Linux + * Bug 41337: Remove libstdc++ from Linux tor-expert-bundle [tor-browser-build] + * Android + * Bug 41410: Use the Lyrebird name on Android [tor-browser-build] + Tor Browser 14.0.8 - March 27 2025 * Windows * Bug 43553: Backport tor-browser#43504: Implement User Survey UX (Desktop) [tor-browser] ===================================== projects/browser/config ===================================== @@ -111,9 +111,9 @@ input_files: - URL: https://addons.mozilla.org/firefox/downloads/file/4411102/noscript-12.1.1.x… name: noscript sha256sum: f9639e63ffcfc352036de00e4ff6694bb0ca65a0bb8fbd103bd08f32dc1ff31a - - URL: https://addons.mozilla.org/firefox/downloads/file/4412673/ublock_origin-1.6… + - URL: https://addons.mozilla.org/firefox/downloads/file/4458450/ublock_origin-1.6… name: ublock-origin - sha256sum: 8a9e02aa838c302fb14e2b5bc88a6036d36358aadd6f95168a145af2018ef1a3 + sha256sum: d93176cef4dc042e41ba500aa2a90e5d57b5be77449cbd522111585e3a0cd158 enable: '[% c("var/mullvad-browser") %]' - URL: https://cdn.mullvad.net/browser-extension/0.9.4/mullvad-browser-extension-0… name: mullvad-extension ===================================== projects/firefox/config ===================================== @@ -15,12 +15,12 @@ container: use_container: 1 var: - firefox_platform_version: '128.8.0' + firefox_platform_version: '128.9.0' firefox_version: '[% c("var/firefox_platform_version") %]esr' browser_series: '14.0' - browser_rebase: 1 + browser_rebase: 2 browser_branch: '[% c("var/browser_series") %]-[% c("var/browser_rebase") %]' - browser_build: 3 + browser_build: 2 branding_directory_prefix: 'tb' copyright_year: '[% exec("git show -s --format=%ci").remove("-.*") %]' nightly_updates_publish_dir: '[% c("var/nightly_updates_publish_dir_prefix") %]nightly-[% c("var/osname") %]' ===================================== projects/geckoview/config ===================================== @@ -17,10 +17,10 @@ container: build_apk: 1 var: - firefox_platform_version: '128.8.0' + firefox_platform_version: '128.9.0' geckoview_version: '[% c("var/firefox_platform_version") %]esr' browser_series: '14.0' - browser_rebase: 1 + browser_rebase: 2 browser_branch: '[% c("var/browser_series") %]-[% c("var/browser_rebase") %]' browser_build: 2 copyright_year: '[% exec("git show -s --format=%ci").remove("-.*") %]' ===================================== projects/manual/config ===================================== @@ -1,7 +1,7 @@ # vim: filetype=yaml sw=2 # To update, see doc/how-to-update-the-manual.txt # Remember to update also the package's hash, with the version! -version: 227750 +version: 263551 filename: 'manual-[% c("version") %]-[% c("var/build_id") %].tar.[% c("compress_tar") %]' container: use_container: 1 @@ -23,6 +23,6 @@ input_files: - project: container-image - URL: 'https://build-sources.tbb.torproject.org/manual_[% c("version") %].zip' name: manual - sha256sum: 3f80d2d1193042211ad2dc14b27d68aabfa1629472d5b2ad6fabc7b1e38b0580 + sha256sum: f8d312081457b1cab3e8fcafda1d0e534852b5d3c3cb1bd32100f13298cb7839 - filename: packagemanual.py name: package_script ===================================== projects/tor/config ===================================== @@ -1,6 +1,6 @@ # vim: filetype=yaml sw=2 filename: '[% project %]-[% c("version") %]-[% c("var/osname") %]-[% c("var/build_id") %].tar.[% c("compress_tar") %]' -version: 0.4.8.14 +version: 0.4.8.16 git_hash: 'tor-[% c("version") %]' git_url: https://gitlab.torproject.org/tpo/core/tor.git git_submodule: 1 ===================================== projects/translation/config ===================================== @@ -12,19 +12,19 @@ compress_tar: 'gz' steps: base-browser: base-browser: '[% INCLUDE build %]' - git_hash: 21fed48fc58df9e6c4d9f67b048fcae831df50c9 + git_hash: d687be19490caa48a46a3e2193bda95d57cbb96d targets: nightly: git_hash: 'base-browser' tor-browser: tor-browser: '[% INCLUDE build %]' - git_hash: 100908b702f92bc001b69cdd70f96a6e63134516 + git_hash: 95b60f2679611d39b035f2e45555c2c3d64d991f targets: nightly: git_hash: 'tor-browser' mullvad-browser: mullvad-browser: '[% INCLUDE build %]' - git_hash: d279ce2add9a5bb3fc71f24b55679e3e0706f0eb + git_hash: 34b45a7417145b1f26784825ef6c873497cbda0a targets: nightly: git_hash: 'mullvad-browser' @@ -32,7 +32,7 @@ steps: fenix: '[% INCLUDE build %]' # We need to bump the commit before releasing but just pointing to a branch # might cause too much rebuidling of the Firefox part. - git_hash: 75d7b65ebdcde2bb5b8788d13a33373fc4084965 + git_hash: efeb8b0da096fde06906de64566b1d3c16688965 compress_tar: 'zst' targets: nightly: ===================================== rbm.conf ===================================== @@ -73,23 +73,24 @@ buildconf: git_signtag_opt: '-s' var: - torbrowser_version: '14.0.8' + torbrowser_version: '14.0.9' torbrowser_build: 'build1' # This should be the date of when the build is started. For the build # to be reproducible, browser_release_date should always be in the past. - browser_release_date: '2025/03/26 21:32:35' + browser_release_date: '2025/03/31 18:00:00' browser_release_date_timestamp: '[% USE date; date.format(c("var/browser_release_date"), "%s") %]' updater_enabled: 1 build_mar: 1 torbrowser_incremental_from: - - 14.0.7 + - 14.0.8 + - '14.0.7' - '[% IF c("var/tor-browser") %]14.0.6[% END %]' - - 14.0.5 + - '14.0.5' - '[% IF c("var/mullvad-browser") %]14.0.4[% END %]' mar_channel_id: '[% c("var/projectname") %]-torproject-[% c("var/channel") %]' - torbrowser_legacy_version: 13.5.14 - torbrowser_legacy_platform_version: 115.21.0 + torbrowser_legacy_version: 13.5.15 + torbrowser_legacy_platform_version: 115.22.0 # By default, we sort the list of installed packages. This allows sharing # containers with identical list of packages, even if they are not listed ===================================== tools/fetch_changelogs.py ===================================== @@ -13,6 +13,7 @@ GITLAB = "https://gitlab.torproject.org" API_URL = f"{GITLAB}/api/v4" PROJECT_ID = 473 AUTH_HEADER = "PRIVATE-TOKEN" +MB_LABEL = "Project 131" class EntryType(enum.IntFlag): @@ -153,9 +154,9 @@ class ChangelogBuilder: return labels = "Apps::Type::ReleasePreparation" if is_mullvad: - labels += ",Sponsor 131" + labels += f",{MB_LABEL}" elif not is_mullvad and is_mullvad is not None: - labels += "&not[labels]=Sponsor 131" + labels += f"&not[labels]={MB_LABEL}" r = requests.get( f"{API_URL}/projects/{PROJECT_ID}/issues?labels={labels}&search={issue_or_version}&in=title&state=opened", headers=self.headers, @@ -192,13 +193,13 @@ class ChangelogBuilder: self._set_issue(issues[0], is_mullvad) def _set_issue(self, issue, is_mullvad): - has_s131 = "Sponsor 131" in issue["labels"] - if is_mullvad is not None and is_mullvad != has_s131: + has_mb = MB_LABEL in issue["labels"] + if is_mullvad is not None and is_mullvad != has_mb: raise ValueError( "Inconsistency detected: a browser was explicitly specified, but the issue does not have the correct labels." ) self.relprep_issue = issue["iid"] - self.is_mullvad = has_s131 + self.is_mullvad = has_mb if self.version is None: version_match = re.search(r"\b[0-9]+\.[.0-9a]+\b", issue["title"]) View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/compare/… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/compare/… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build] Pushed new tag tbb-13.5.15-build1
by morgan (＠morgan) 31 Mar '25

31 Mar '25

morgan pushed new tag tbb-13.5.15-build1 at The Tor Project / Applications / tor-browser-build -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/tree/tbb… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][maint-13.5] Bug 41388: Prepare Tor Browser 13.5.15
by morgan (＠morgan) 31 Mar '25

31 Mar '25

morgan pushed to branch maint-13.5 at The Tor Project / Applications / tor-browser-build Commits: 508ee534 by Morgan at 2025-03-31T18:43:52+00:00 Bug 41388: Prepare Tor Browser 13.5.15 - - - - - 5 changed files: - projects/browser/Bundle-Data/Docs-TBB/ChangeLog.txt - projects/firefox/config - projects/tor/config - projects/translation/config - rbm.conf Changes: ===================================== projects/browser/Bundle-Data/Docs-TBB/ChangeLog.txt ===================================== @@ -1,3 +1,15 @@ +Tor Browser 13.5.15 - April 01 2025 + * All Platforms + * Updated Firefox to 115.22.0esr + * Updated Tor to 0.4.8.16 + * Bug 43578: Backport tor-browser#43556 Add the "Dismiss" translations in the survey banner [tor-browser] + * Bug 43580: Backport tor-browser#43443: Drop effective top level domain for `au.securedrop.tor.onion` [tor-browser] + * Bug 43587: Rebase Tor Browser legacy onto 115.22.0esr [tor-browser] + * Bug 43601: Backport security fixes from Firefox 137 [tor-browser] + * Build System + * macOS + * Bug 41383: Add clairehurst to list of accepted firefox/geckoview signers [tor-browser-build] + Tor Browser 13.5.14 - March 27 2025 * Windows * Bug 43592: Backport security fixes from Firefox 128.8.1esr [tor-browser] ===================================== projects/firefox/config ===================================== @@ -15,12 +15,12 @@ container: use_container: 1 var: - firefox_platform_version: 115.21.0 + firefox_platform_version: 115.22.0 firefox_version: '[% c("var/firefox_platform_version") %]esr' browser_series: '13.5' browser_rebase: 1 browser_branch: '[% c("var/browser_series") %]-[% c("var/browser_rebase") %]' - browser_build: 3 + browser_build: 2 branding_directory_prefix: 'tb' copyright_year: '[% exec("git show -s --format=%ci").remove("-.*") %]' nightly_updates_publish_dir: '[% c("var/nightly_updates_publish_dir_prefix") %]nightly-[% c("var/osname") %]' ===================================== projects/tor/config ===================================== @@ -1,6 +1,6 @@ # vim: filetype=yaml sw=2 filename: '[% project %]-[% c("version") %]-[% c("var/osname") %]-[% c("var/build_id") %].tar.[% c("compress_tar") %]' -version: 0.4.8.14 +version: 0.4.8.16 git_hash: 'tor-[% c("version") %]' git_url: https://gitlab.torproject.org/tpo/core/tor.git git_submodule: 1 ===================================== projects/translation/config ===================================== @@ -12,13 +12,13 @@ compress_tar: 'gz' steps: base-browser: base-browser: '[% INCLUDE build %]' - git_hash: 21fed48fc58df9e6c4d9f67b048fcae831df50c9 + git_hash: d687be19490caa48a46a3e2193bda95d57cbb96d targets: nightly: git_hash: 'base-browser' tor-browser: tor-browser: '[% INCLUDE build %]' - git_hash: 100908b702f92bc001b69cdd70f96a6e63134516 + git_hash: 95b60f2679611d39b035f2e45555c2c3d64d991f targets: nightly: git_hash: 'tor-browser' ===================================== rbm.conf ===================================== @@ -73,15 +73,16 @@ buildconf: git_signtag_opt: '-s' var: - torbrowser_version: '13.5.14' + torbrowser_version: '13.5.15' torbrowser_build: 'build1' # This should be the date of when the build is started. For the build # to be reproducible, browser_release_date should always be in the past. - browser_release_date: '2025/03/26 22:07:00' + browser_release_date: '2025/03/31 18:28:08' browser_release_date_timestamp: '[% USE date; date.format(c("var/browser_release_date"), "%s") %]' updater_enabled: 1 build_mar: 1 torbrowser_incremental_from: + - 13.5.14 - 13.5.13 - 13.5.12 - 13.5.11 View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/5… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/5… You're receiving this email because of your account on gitlab.torproject.org.

1 0