- tbb-commits - lists.torproject.org

[Git][tpo/applications/tor-browser][base-browser-147.0a1-16.0-2] fixup! BB 16285: Exclude ClearKey system for now
by Pier Angelo Vendrame (＠pierov) 22 Jan '26

22 Jan '26

Pier Angelo Vendrame pushed to branch base-browser-147.0a1-16.0-2 at The Tor Project / Applications / Tor Browser Commits: 6fb0f0dc by Pier Angelo Vendrame at 2026-01-22T09:23:15+01:00 fixup! BB 16285: Exclude ClearKey system for now BB 44508: Drop clearkey also on Android. - - - - - 1 changed file: - mobile/android/installer/package-manifest.in Changes: ===================================== mobile/android/installer/package-manifest.in ===================================== @@ -88,7 +88,7 @@ #endif ; GMP clearkey plugin -@BINPATH@/@DLL_PREFIX@clearkey@DLL_SUFFIX@ +;@BINPATH@/@DLL_PREFIX@clearkey@DLL_SUFFIX@ [browser] ; [Base Browser Files] View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/6fb0f0d… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/6fb0f0d… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser][mullvad-browser-147.0a1-16.0-2] fixup! BB 16285: Exclude ClearKey system for now
by Pier Angelo Vendrame (＠pierov) 22 Jan '26

22 Jan '26

Pier Angelo Vendrame pushed to branch mullvad-browser-147.0a1-16.0-2 at The Tor Project / Applications / Mullvad Browser Commits: d658fd67 by Pier Angelo Vendrame at 2026-01-22T09:22:38+01:00 fixup! BB 16285: Exclude ClearKey system for now BB 44508: Drop clearkey also on Android. - - - - - 1 changed file: - mobile/android/installer/package-manifest.in Changes: ===================================== mobile/android/installer/package-manifest.in ===================================== @@ -88,7 +88,7 @@ #endif ; GMP clearkey plugin -@BINPATH@/@DLL_PREFIX@clearkey@DLL_SUFFIX@ +;@BINPATH@/@DLL_PREFIX@clearkey@DLL_SUFFIX@ [browser] ; [Base Browser Files] View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/d65… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/d65… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-147.0a1-16.0-2] fixup! BB 16285: Exclude ClearKey system for now
by Pier Angelo Vendrame (＠pierov) 22 Jan '26

22 Jan '26

Pier Angelo Vendrame pushed to branch tor-browser-147.0a1-16.0-2 at The Tor Project / Applications / Tor Browser Commits: efc1fd64 by Pier Angelo Vendrame at 2026-01-22T09:06:05+01:00 fixup! BB 16285: Exclude ClearKey system for now BB 44508: Drop clearkey also on Android. - - - - - 1 changed file: - mobile/android/installer/package-manifest.in Changes: ===================================== mobile/android/installer/package-manifest.in ===================================== @@ -88,7 +88,7 @@ #endif ; GMP clearkey plugin -@BINPATH@/@DLL_PREFIX@clearkey@DLL_SUFFIX@ +;@BINPATH@/@DLL_PREFIX@clearkey@DLL_SUFFIX@ [browser] ; [Base Browser Files] View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/efc1fd6… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/efc1fd6… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-147.0a1-16.0-2] TB 44507: [android] Drop Sentry as a dependancy
by Pier Angelo Vendrame (＠pierov) 22 Jan '26

22 Jan '26

Pier Angelo Vendrame pushed to branch tor-browser-147.0a1-16.0-2 at The Tor Project / Applications / Tor Browser Commits: c7449fd1 by Dan Ballard at 2026-01-21T12:23:14-08:00 TB 44507: [android] Drop Sentry as a dependancy - - - - - 4 changed files: - gradle/libs.versions.toml - mobile/android/android-components/.buildconfig.yml - mobile/android/fenix/app/build.gradle - mobile/android/fenix/app/src/main/java/org/mozilla/fenix/components/Analytics.kt Changes: ===================================== gradle/libs.versions.toml ===================================== @@ -101,7 +101,6 @@ disklrucache = "2.0.2" jna = "5.18.1" okhttp = "4.12.0" okio = "3.15.0" -sentry = "8.27.1" zxing = "3.5.4" [libraries] @@ -272,7 +271,6 @@ mockwebserver = { group = "com.squareup.okhttp3", name = "mockwebserver", versio okhttp = { group = "com.squareup.okhttp3", name = "okhttp", version.ref = "okhttp" } okhttp-urlconnection = { group = "com.squareup.okhttp3", name = "okhttp-urlconnection", version.ref = "okhttp" } okio = { group = "com.squareup.okio", name = "okio", version.ref = "okio" } -sentry = { group = "io.sentry", name = "sentry-android", version.ref = "sentry" } zxing = { group = "com.google.zxing", name = "core", version.ref = "zxing" } [plugins] ===================================== mobile/android/android-components/.buildconfig.yml ===================================== @@ -1645,20 +1645,6 @@ projects: - components:support-test - components:support-utils - components:tooling-lint - components:lib-crash-sentry: - description: A crash reporter for Sentry.io that that uses lib-crash. - path: components/lib/crash-sentry - publish: true - upstream_dependencies: - - components:concept-base - - components:concept-fetch - - components:lib-crash - - components:lib-publicsuffixlist - - components:support-base - - components:support-ktx - - components:support-test - - components:support-utils - - components:tooling-lint components:lib-dataprotect: description: A component using AndroidKeyStore to protect user data. path: components/lib/dataprotect ===================================== mobile/android/fenix/app/build.gradle ===================================== @@ -666,7 +666,6 @@ dependencies { implementation project(':components:ui-tabcounter') implementation project(':components:ui-widgets') implementation project(':components:lib-crash') - implementation project(':components:lib-crash-sentry') implementation project(':components:lib-dataprotect') implementation project(':components:lib-push-firebase') implementation project(':components:lib-state') @@ -727,7 +726,6 @@ dependencies { implementation libs.play.review implementation libs.play.review.ktx implementation libs.protobuf.javalite - implementation libs.sentry debugImplementation libs.androidx.compose.ui.tooling debugImplementation libs.leakcanary ===================================== mobile/android/fenix/app/src/main/java/org/mozilla/fenix/components/Analytics.kt ===================================== @@ -14,8 +14,6 @@ import mozilla.components.lib.crash.runtimetagproviders.BuildRuntimeTagProvider import mozilla.components.lib.crash.runtimetagproviders.EnvironmentRuntimeProvider import mozilla.components.lib.crash.runtimetagproviders.ExperimentDataRuntimeTagProvider import mozilla.components.lib.crash.runtimetagproviders.VersionInfoProvider -import mozilla.components.lib.crash.sentry.SentryService -import mozilla.components.lib.crash.sentry.eventprocessors.CrashMetadataEventProcessor import mozilla.components.lib.crash.service.CrashReporterService import mozilla.components.lib.crash.service.GleanCrashReporterService import mozilla.components.lib.crash.service.socorro.MozillaSocorroService @@ -60,37 +58,9 @@ class Analytics( val services = mutableListOf<CrashReporterService>() val distributionId = "Mozilla" - if (isSentryEnabled()) { - // We treat caught exceptions similar to debug logging. - // On the release channel volume of these is too high for our Sentry instances, and - // we get most value out of nightly/beta logging anyway. - val shouldSendCaughtExceptions = when (Config.channel) { - ReleaseChannel.Release -> false - else -> true - } - val sentryService = SentryService( - context, - BuildConfig.SENTRY_TOKEN, - tags = mapOf( - "geckoview" to "$MOZ_APP_VERSION-$MOZ_APP_BUILDID", - "fenix.git" to BuildConfig.VCS_HASH, - ), - environment = BuildConfig.BUILD_TYPE, - sendEventForNativeCrashes = false, // Do not send native crashes to Sentry - sendCaughtExceptions = shouldSendCaughtExceptions, - sentryProjectUrl = getSentryProjectUrl(), - crashMetadataEventProcessor = CrashMetadataEventProcessor(), - ) - - // We only want to initialize Sentry on startup on the main process. - if (context.isMainProcess()) { - runWhenReadyQueue.runIfReadyOrQueue { - sentryService.initIfNeeded() - } - } - - services.add(sentryService) - } + // Bug 44507: Drop Sentry as a dependency + // Since we've removed sentry and it's library (for defence in depth as well as spave saving) + // We can't keep any code that calls a now non existent library // The name "Fenix" here matches the product name on Socorro and is unrelated to the actual app name: // https://bugzilla.mozilla.org/show_bug.cgi?id=1523284 View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/c7449fd… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/c7449fd… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] Bump Firefox version to 147.0a1-2 for nightly builds
by Pier Angelo Vendrame (＠pierov) 21 Jan '26

21 Jan '26

Pier Angelo Vendrame pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: 6c6dbbb1 by Pier Angelo Vendrame at 2026-01-21T17:53:23+01:00 Bump Firefox version to 147.0a1-2 for nightly builds - - - - - 2 changed files: - projects/firefox/config - projects/geckoview/config Changes: ===================================== projects/firefox/config ===================================== @@ -20,9 +20,9 @@ var: firefox_platform_version: '147.0a1' firefox_version: '[% c("var/firefox_platform_version") %]' browser_series: '16.0' - browser_rebase: 1 + browser_rebase: 2 browser_branch: '[% c("var/browser_series") %]-[% c("var/browser_rebase") %]' - browser_build: 2 + browser_build: 1 copyright_year: '[% exec("git show -s --format=%ci " _ c("git_hash") _ "^{commit}", { exec_noco => 1 }).remove("-.*") %]' nightly_updates_publish_dir: '[% c("var/nightly_updates_publish_dir_prefix") %]nightly-[% c("var/osname") %]' gitlab_project: https://gitlab.torproject.org/tpo/applications/tor-browser ===================================== projects/geckoview/config ===================================== @@ -22,9 +22,9 @@ var: firefox_platform_version: '147.0a1' geckoview_version: '[% c("var/firefox_platform_version") %]' browser_series: '16.0' - browser_rebase: 1 + browser_rebase: 2 browser_branch: '[% c("var/browser_series") %]-[% c("var/browser_rebase") %]' - browser_build: 2 + browser_build: 1 gitlab_project: https://gitlab.torproject.org/tpo/applications/tor-browser git_commit: '[% exec("git rev-parse " _ c("git_hash") _ "^{commit}", { exec_noco => 1 }) %]' deps: View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/6… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/6… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-bundle-testsuite][main] Bug 40096: Disable fetch in rbm-config/tb-build-06.torproject.org.rbm.local.conf
by boklm (＠boklm) 21 Jan '26

21 Jan '26

boklm pushed to branch main at The Tor Project / Applications / tor-browser-bundle-testsuite Commits: 247eb051 by Nicolas Vigier at 2026-01-20T11:44:07+01:00 Bug 40096: Disable fetch in rbm-config/tb-build-06.torproject.org.rbm.local.conf - - - - - 1 changed file: - rbm-config/tb-build-06.torproject.org.rbm.local.conf Changes: ===================================== rbm-config/tb-build-06.torproject.org.rbm.local.conf ===================================== @@ -113,15 +113,14 @@ targets: nightly: - ### By default 'fetch' is set to 1 for nightly builds, meaning that new - ### commits will be fetched automatically during each build. You can - ### disable this during development if you want to do rebuilds to test - ### a specific change, but don't want rebuilds caused by unrelated - ### changes, or if you want to decide at which point new commits are - ### fetched. When 'fetch' is set to 'if_needed', new commits will only - ### be fetched if the selected commit (or branch, or tag) is not present, - ### which means that existing branches won't be updated. In that case - ### you can fetch new commits by running 'make fetch'. - fetch: 'if_needed' + ### By default 'fetch' is set to 'if_needed', meaning that new + ### commits will be fetched automatically during each build, if + ### the selected commit (or branch, or tag) is not present, or if + ### it is pointing to a branch. With the nightly target, some projects + ### are pointing to a branch, meaning they will be fetched for each + ### build. If you want to disable automatic fetchs and decide at + ### which point new commits are fetched, you can set 'fetch' to '0' + ### and run `make fetch` when you want to fetch new commits. + fetch: 0 # vim: filetype=yaml sw=2 View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-bundle-testsuite… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-bundle-testsuite… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] Bug 32200: Reduce the size of our OpenSSL build on Android.
by Pier Angelo Vendrame (＠pierov) 20 Jan '26

20 Jan '26

Pier Angelo Vendrame pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: 2d6d284d by Pier Angelo Vendrame at 2026-01-20T18:34:22+01:00 Bug 32200: Reduce the size of our OpenSSL build on Android. Remove various features we do not use to reduce the size of our Android builds. - - - - - 1 changed file: - projects/openssl/config Changes: ===================================== projects/openssl/config ===================================== @@ -20,7 +20,21 @@ targets: configure_opts: '--cross-compile-prefix=[% c("var/build_target") %]- darwin64-[% c("var/macos_arch") %]-cc enable-ec_nistp_64_gcc_128' android: var: - configure_opts: 'CC=[% c("var/CC") %] android-[% c("var/toolchain_arch") %] -no-shared -D__ANDROID_API__=[% c("var/android_min_api") %] [% c("var/CFLAGS") %]' + configure_opts: | + CC=[% c("var/CC") %] android-[% c("var/toolchain_arch") %] \ + -no-shared -D__ANDROID_API__=[% c("var/android_min_api") %] \ + [% c("var/CFLAGS") %] \ + no-ssl2 no-ssl3 no-tls1 no-tls1_1 \ + no-ocsp no-nextprotoneg no-psk no-srp no-ts \ + no-cmp no-cms no-ct \ + no-dgram no-dtls no-http no-quic no-srtp \ + no-argon2 no-aria no-bf no-blake2 no-camellia no-cast no-des no-dsa \ + no-gost no-idea no-integrity-only-ciphers no-md2 no-md4 no-mdc2 \ + no-ml-dsa no-ocb no-rc2 no-rc4 no-rc5 no-rmd160 no-scrypt no-seed \ + no-siphash no-slh-dsa no-sm2 no-sm3 no-sm4 no-whirlpool \ + no-ec2m no-ssl-trace no-tls-deprecated-ec \ + no-siv \ + no-apps no-async no-comp no-ktls no-legacy no-ui-console no-zlib input_files: - project: container-image View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/2… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/2… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][maint-15.0] Bug 41691: Update lyrebird to v0.8.1
by morgan (＠morgan) 20 Jan '26

20 Jan '26

morgan pushed to branch maint-15.0 at The Tor Project / Applications / tor-browser-build Commits: 0aae2d39 by Shelikhoo at 2026-01-20T17:13:57+00:00 Bug 41691: Update lyrebird to v0.8.1 - - - - - 1 changed file: - projects/lyrebird/config Changes: ===================================== projects/lyrebird/config ===================================== @@ -1,5 +1,5 @@ # vim: filetype=yaml sw=2 -version: 0.7.0 +version: 0.8.1 git_url: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/lyre… git_hash: 'lyrebird-[% c("version") %]' tag_gpg_id: 1 @@ -9,7 +9,7 @@ container: use_container: 1 var: - go_vendor_sha256sum: fbdd6dc8f88fdcb971d437f7b45c27472f821b42cd4633002edab0870ab525e3 + go_vendor_sha256sum: 3b7d4188283c1f2b781002187d3f38be29aececae3921f319464e4068193d5ff targets: nightly: View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/0… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/0… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] Bug 41691: Update lyrebird to v0.8.1
by morgan (＠morgan) 20 Jan '26

20 Jan '26

morgan pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: df2e6b94 by Shelikhoo at 2026-01-15T19:23:04+00:00 Bug 41691: Update lyrebird to v0.8.1 - - - - - 1 changed file: - projects/lyrebird/config Changes: ===================================== projects/lyrebird/config ===================================== @@ -1,5 +1,5 @@ # vim: filetype=yaml sw=2 -version: 0.7.0 +version: 0.8.1 git_url: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/lyre… git_hash: 'lyrebird-[% c("version") %]' tag_gpg_id: 1 @@ -9,7 +9,7 @@ container: use_container: 1 var: - go_vendor_sha256sum: fbdd6dc8f88fdcb971d437f7b45c27472f821b42cd4633002edab0870ab525e3 + go_vendor_sha256sum: 3b7d4188283c1f2b781002187d3f38be29aececae3921f319464e4068193d5ff targets: nightly: View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/d… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/d… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser][mullvad-browser-147.0a1-16.0-2] 3 commits: fixup! BB 44167: Don't build the uninstaller for Windows during Firefox compilation
by brizental (＠brizental) 20 Jan '26

20 Jan '26

brizental pushed to branch mullvad-browser-147.0a1-16.0-2 at The Tor Project / Applications / Mullvad Browser Commits: a2a92281 by Beatriz Rizental at 2026-01-20T10:00:51-03:00 fixup! BB 44167: Don't build the uninstaller for Windows during Firefox compilation When building with tests enabled, the current patch was breaking the generated Makefile. This commit fixes it. - - - - - dd0afa6b by Beatriz Rizental at 2026-01-20T10:01:03-03:00 fixup! BB 43564: Modify ./mach bootstrap for Base Browser We don't want to bootstrap OONX. It's a ML tool, not used. - - - - - b595c149 by Beatriz Rizental at 2026-01-20T10:01:15-03:00 fixup! BB 43564: Modify ./mach bootstrap for Base Browser Use our MacOS SDK mirror when bootstrapping for Mac. - - - - - 3 changed files: - browser/Makefile.in - build/moz.configure/bootstrap.configure - toolkit/moz.configure Changes: ===================================== browser/Makefile.in ===================================== @@ -7,6 +7,7 @@ include $(topsrcdir)/config/rules.mk ifdef MAKENSISU ifdef ENABLE_TESTS +libs:: $(MAKE) -C installer/windows install_deps endif #ENABLE_TESTS ===================================== build/moz.configure/bootstrap.configure ===================================== @@ -165,6 +165,7 @@ def bootstrap_path(path, **kwargs): when=when, ) @imports("os") + @imports("re") @imports("subprocess") @imports("sys") @imports("mozbuild.tbbutils") @@ -354,6 +355,23 @@ def bootstrap_path(path, **kwargs): + command["arguments"] + [path_parts[0]] ) + + # BIG HACK: Replace the Apple CDN link with our mirror, + # otherwise bootstrapping will fail whenever a new MacOS SDK + # is released, since Apple seems to retire the previous link everytime. + # Our mirror serves an _unmodified_ version of the file. + macosx_sdk_match = re.match(r"^MacOSX(.*)\.sdk$", path_parts[0]) + if macosx_sdk_match: + version = macosx_sdk_match.group(1) + command = [ + re.sub( + r"https://swcdn\.apple\.com/.*/CLTools_macOSNMOS_SDK\.pkg", + f"https://build-sources.tbb.torproject.org/CLTools_macOSNMOS_SDK-{version}.pkg", + c, + ) + for c in command + ] + # Clean up anything that was bootstrapped previously before going # forward. In other cases, that's taken care of by mach artifact toolchain. rmtree( ===================================== toolkit/moz.configure ===================================== @@ -4241,9 +4241,8 @@ with only_when(~artifact_builds): @depends("--with-onnx-runtime") def need_boostrap_onnxruntime(with_onnx_runtime): - return (with_onnx_runtime and len(with_onnx_runtime) == 0) or ( - with_onnx_runtime.origin == "default" - ) + # tor-browser#44412: Prevent ONNX from ever getting bootstrapped. + return False @depends( "--with-onnx-runtime", View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/compare/29… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/compare/29… You're receiving this email because of your account on gitlab.torproject.org.

1 0