- tbb-commits - lists.torproject.org

[Git][tpo/applications/tor-browser][tor-browser-140.4.0esr-15.0-1] [android] bug_44196 Persistent notification sometimes does not clear
by Dan Ballard (＠dan) 23 Oct '25

23 Oct '25

Dan Ballard pushed to branch tor-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Tor Browser Commits: 2c2a065e by clairehurst at 2025-10-23T10:48:15-07:00 [android] bug_44196 Persistent notification sometimes does not clear - - - - - 1 changed file: - mobile/android/fenix/app/src/main/java/org/mozilla/fenix/HomeActivity.kt Changes: ===================================== mobile/android/fenix/app/src/main/java/org/mozilla/fenix/HomeActivity.kt ===================================== @@ -1583,6 +1583,8 @@ open class HomeActivity : LocaleAwareAppCompatActivity(), NavHostActivity, TorAn } fun shutDown() : Nothing { + // If we don't manually stop the service, the persistent "close tabs" notification sometimes does not clear + applicationContext.stopService(Intent(applicationContext, PrivateNotificationService::class.java)) finishAndRemoveTask() exitProcess(0) } View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/2c2a065… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/2c2a065… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] Bug 41614: Update tools/signing/linux-signer-gpg-sign to sign aab files
by boklm (＠boklm) 23 Oct '25

23 Oct '25

boklm pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: 99bc1230 by Nicolas Vigier at 2025-10-23T12:56:20+02:00 Bug 41614: Update tools/signing/linux-signer-gpg-sign to sign aab files - - - - - 1 changed file: - tools/signing/linux-signer-gpg-sign Changes: ===================================== tools/signing/linux-signer-gpg-sign ===================================== @@ -11,7 +11,7 @@ test -n "$GPG_PASS" || read -sp "Enter gpg passphrase: " GPG_PASS currentdir=$(pwd) for i in `find . -name "*.dmg" -o -name "*.exe" -o -name "*.tar.xz" \ -o -name "*.txt" -o -name "*.zip" -o -name "*.tar.gz" -o -name "*.apk" \ - -o -name "*.deb" -o -name "*.rpm" | sort` + -o -name "*.deb" -o -name "*.rpm" -o -name "*.aab" | sort` do if test -f "$i.asc" then View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/9… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/9… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][maint-15.0] MB 466: Automate the release process / replace the new build email
by ma1 (＠ma1) 23 Oct '25

23 Oct '25

ma1 pushed to branch maint-15.0 at The Tor Project / Applications / tor-browser-build Commits: 2f4e7f76 by hackademix at 2025-10-23T11:59:47+02:00 MB 466: Automate the release process / replace the new build email - - - - - 3 changed files: - .gitlab/issue_templates/Release Prep - Mullvad Browser Alpha.md - .gitlab/issue_templates/Release Prep - Mullvad Browser Stable.md - tools/signing/publish-github.mullvadbrowser Changes: ===================================== .gitlab/issue_templates/Release Prep - Mullvad Browser Alpha.md ===================================== @@ -168,6 +168,7 @@ Mullvad Browser Alpha (and Nightly) are on the `main` branch ``` ### mullvad-browser (GitHub): https://github.com/mullvad/mullvad-browser/ +This step will send the relevant branches, tags (including a tag named after the release version, e.g. `16.0a1`) and the signed build for QA to Mullvad's github repository. - [ ] Assign this issue to someone with mullvad commit access, one of: - boklm - ma1 @@ -177,40 +178,10 @@ Mullvad Browser Alpha (and Nightly) are on the `main` branch ```bash cd tor-browser-build/tools/signing/ && ./publish-github.mullvadbrowser ``` - </details> <details> <summary>Communications</summary> - -### Mullvad -- [ ] Email Mullvad with release information: - - **Recipients** - - Mullvad support alias: support(a)mullvadvpn.net - - Rui Hildt: rui(a)mullvad.net - ``` - support(a)mullvadvpn.net, rui(a)mullvad.net, - ``` - - **Subject** - ``` - New build: Mullvad Browser ${MULLVAD_BROWSER_VERSION} (signed) - ``` - - **Body** - ``` - Hello, - - Branch+Tags have been pushed to Mullvad's GitHub repo. - - - signed builds: https://dist.torproject.org/mullvadbrowser/${MULLVAD_BROWSER_VERSION} - - update_response hashes: ${MULLVAD_UPDATE_RESPONSES_HASH} - - * https://gitlab.torproject.org/tpo/applications/mullvad-browser-update-respo… - - changelog: - # paste changelog as quote here - ... - ``` - ### packagers - [ ] **(Optional, Once Packages are pushed to GitHub)** - **NOTE**: This is an optional step and only necessary close a major release/transition from alpha to stable, or if there are major packing changes these developers need to be aware of ===================================== .gitlab/issue_templates/Release Prep - Mullvad Browser Stable.md ===================================== @@ -171,6 +171,7 @@ Mullvad Browser Stable is on the `maint-${MULLVAD_BROWSER_MAJOR}.${MULLVAD_BROWS ``` ### mullvad-browser (GitHub): https://github.com/mullvad/mullvad-browser/ +This step will send the relevant branches, tags (including a tag named after the release version, e.g. `15.0`) and the signed build for QA to Mullvad's github repository. - [ ] Assign this issue to someone with mullvad commit access, one of: - boklm - ma1 @@ -180,40 +181,14 @@ Mullvad Browser Stable is on the `maint-${MULLVAD_BROWSER_MAJOR}.${MULLVAD_BROWS ```bash cd tor-browser-build/tools/signing/ && ./publish-github.mullvadbrowser ``` - + - **NOTE**: if you need the release version tag to be suffixed someway, e.g. because it's a release candidate (`15.0rc1` instead of `15.0`), just add the fix as the first argument of the script: + ```bash + ./publish-github.mullvadbrowser rc1 + ``` </details> <details> <summary>Communications</summary> - -### Mullvad -- [ ] Email Mullvad with release information: - - **Recipients** - - Mullvad support alias: support(a)mullvadvpn.net - - Rui Hildt: rui(a)mullvad.net - ``` - support(a)mullvadvpn.net, rui(a)mullvad.net - ``` - - **Subject** - ``` - New build: Mullvad Browser ${MULLVAD_BROWSER_VERSION} (signed) - ``` - - **Body** - ``` - Hello, - - Branch+Tags have been pushed to Mullvad's GitHub repo. - - - signed builds: https://dist.torproject.org/mullvadbrowser/${MULLVAD_BROWSER_VERSION} - - update_response hashes: ${MULLVAD_UPDATE_RESPONSES_HASH}* - - * https://gitlab.torproject.org/tpo/applications/mullvad-browser-update-respo… - - changelog: - # paste changelog as quote here - ... - ``` - ### packagers - [ ] **(Once Packages are pushed to GitHub)** - **Recipients** ===================================== tools/signing/publish-github.mullvadbrowser ===================================== @@ -4,6 +4,17 @@ TBB_DIR="$SCRIPT_DIR/../.." function showconf { "$TBB_DIR/rbm/rbm" showconf $@ } + +# we may want to add a suffix to the release tag, e.g. rc1 +mbrtag_suffix="$1" +github_token=$(showconf release buildconf/devmole_auth_token2 2>/dev/null) +if ! [[ $github_token ]]; then + echo >&2 "Github token (buildconf/devmole_auth_token) missing!" + exit 1 +fi + +set -e + GL_REMOTE=git@gitlab.torproject.org:tpo/applications/mullvad-browser.git GH_REMOTE=git@github.com:mullvad/mullvad-browser.git CLONE_DIR="$TBB_DIR/git_clones/firefox" @@ -13,17 +24,19 @@ MB_TAG=$(showconf firefox git_hash $TARGET) MB_BRANCH=${MB_TAG//-build[0-9]*/} BB_BRANCH=${MB_BRANCH//mullvad-/base-} ESR_VERSION=$(showconf firefox var/firefox_version $TARGET) -RELEASE_VERSION=$(showconf release var/torbrowser_version $TARGET) +BASE_VERSION=$(showconf release var/torbrowser_version $TARGET) +RELEASE_VERSION="${BASE_VERSION}${mbrtag_suffix}" pushd >/dev/null ../../git_clones/firefox echo "Fetching $MB_BRANCH and tags..." git fetch --tags "$GL_REMOTE" "$MB_BRANCH" BB_TAG=$(git tag -l "$BB_BRANCH-build*" | tail -n1) FX_TAG=$(git tag -l "FIREFOX_${ESR_VERSION//\./_}*" | tail -n1) +echo "QA build version: $BASE_VERSION" echo "MB tag: $MB_TAG" echo "BB tag: $BB_TAG" echo "FX tag: $FX_TAG" echo "Mullvad release tag: $RELEASE_VERSION" -read -p "Do you want to tag mullvad $RELEASE_VERSION and push everything to ${GH_REMOTE}? (y/N) " -n 1 -r +read -p "Do you want to tag mullvad $RELEASE_VERSION and push tags/branches/QA build to ${GH_REMOTE}? (y/N) " -n 1 -r echo if ! [[ $REPLY =~ ^[Yy]$ ]]; then echo >&2 "Operation cancelled" @@ -37,3 +50,22 @@ git push "$GH_REMOTE" "$FX_TAG" git push "$GH_REMOTE" "$BB_TAG" git push "$GH_REMOTE" "$RELEASE_VERSION" popd >/dev/null + +# Call Mullvad's github workflow for new releases (mullvad-browser#466) + +version=$BASE_VERSION +response=$(curl -L \ + -X POST \ + -H "Accept: application/vnd.github+json" \ + -H "Authorization: Bearer $github_token" \ + -H "X-GitHub-Api-Version: 2022-11-28" \ + "https://api.github.com/repos/mullvad/mullvad-browser/actions/workflows/new_…" \ + -d "{\"ref\":\"main\",\"inputs\":{\"version\":\"$version\"}}") + +if ! [ $response ]; then + echo "Build $BASE_VERSION submitted." +else + echo >&2 "Something went wrong with build submission:" + echo >&2 $response + exit 3 +fi View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/2… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/2… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] MB 466: Automate the release process / replace the new build email
by ma1 (＠ma1) 23 Oct '25

23 Oct '25

ma1 pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: 48420e15 by hackademix at 2025-10-23T11:55:15+02:00 MB 466: Automate the release process / replace the new build email - - - - - 3 changed files: - .gitlab/issue_templates/Release Prep - Mullvad Browser Alpha.md - .gitlab/issue_templates/Release Prep - Mullvad Browser Stable.md - tools/signing/publish-github.mullvadbrowser Changes: ===================================== .gitlab/issue_templates/Release Prep - Mullvad Browser Alpha.md ===================================== @@ -168,6 +168,7 @@ Mullvad Browser Alpha (and Nightly) are on the `main` branch ``` ### mullvad-browser (GitHub): https://github.com/mullvad/mullvad-browser/ +This step will send the relevant branches, tags (including a tag named after the release version, e.g. `16.0a1`) and the signed build for QA to Mullvad's github repository. - [ ] Assign this issue to someone with mullvad commit access, one of: - boklm - ma1 @@ -177,40 +178,10 @@ Mullvad Browser Alpha (and Nightly) are on the `main` branch ```bash cd tor-browser-build/tools/signing/ && ./publish-github.mullvadbrowser ``` - </details> <details> <summary>Communications</summary> - -### Mullvad -- [ ] Email Mullvad with release information: - - **Recipients** - - Mullvad support alias: support(a)mullvadvpn.net - - Rui Hildt: rui(a)mullvad.net - ``` - support(a)mullvadvpn.net, rui(a)mullvad.net, - ``` - - **Subject** - ``` - New build: Mullvad Browser ${MULLVAD_BROWSER_VERSION} (signed) - ``` - - **Body** - ``` - Hello, - - Branch+Tags have been pushed to Mullvad's GitHub repo. - - - signed builds: https://dist.torproject.org/mullvadbrowser/${MULLVAD_BROWSER_VERSION} - - update_response hashes: ${MULLVAD_UPDATE_RESPONSES_HASH} - - * https://gitlab.torproject.org/tpo/applications/mullvad-browser-update-respo… - - changelog: - # paste changelog as quote here - ... - ``` - ### packagers - [ ] **(Optional, Once Packages are pushed to GitHub)** - **NOTE**: This is an optional step and only necessary close a major release/transition from alpha to stable, or if there are major packing changes these developers need to be aware of ===================================== .gitlab/issue_templates/Release Prep - Mullvad Browser Stable.md ===================================== @@ -171,6 +171,7 @@ Mullvad Browser Stable is on the `maint-${MULLVAD_BROWSER_MAJOR}.${MULLVAD_BROWS ``` ### mullvad-browser (GitHub): https://github.com/mullvad/mullvad-browser/ +This step will send the relevant branches, tags (including a tag named after the release version, e.g. `15.0`) and the signed build for QA to Mullvad's github repository. - [ ] Assign this issue to someone with mullvad commit access, one of: - boklm - ma1 @@ -180,40 +181,14 @@ Mullvad Browser Stable is on the `maint-${MULLVAD_BROWSER_MAJOR}.${MULLVAD_BROWS ```bash cd tor-browser-build/tools/signing/ && ./publish-github.mullvadbrowser ``` - + - **NOTE**: if you need the release version tag to be suffixed someway, e.g. because it's a release candidate (`15.0rc1` instead of `15.0`), just add the fix as the first argument of the script: + ```bash + ./publish-github.mullvadbrowser rc1 + ``` </details> <details> <summary>Communications</summary> - -### Mullvad -- [ ] Email Mullvad with release information: - - **Recipients** - - Mullvad support alias: support(a)mullvadvpn.net - - Rui Hildt: rui(a)mullvad.net - ``` - support(a)mullvadvpn.net, rui(a)mullvad.net - ``` - - **Subject** - ``` - New build: Mullvad Browser ${MULLVAD_BROWSER_VERSION} (signed) - ``` - - **Body** - ``` - Hello, - - Branch+Tags have been pushed to Mullvad's GitHub repo. - - - signed builds: https://dist.torproject.org/mullvadbrowser/${MULLVAD_BROWSER_VERSION} - - update_response hashes: ${MULLVAD_UPDATE_RESPONSES_HASH}* - - * https://gitlab.torproject.org/tpo/applications/mullvad-browser-update-respo… - - changelog: - # paste changelog as quote here - ... - ``` - ### packagers - [ ] **(Once Packages are pushed to GitHub)** - **Recipients** ===================================== tools/signing/publish-github.mullvadbrowser ===================================== @@ -4,6 +4,17 @@ TBB_DIR="$SCRIPT_DIR/../.." function showconf { "$TBB_DIR/rbm/rbm" showconf $@ } + +# we may want to add a suffix to the release tag, e.g. rc1 +mbrtag_suffix="$1" +github_token=$(showconf release buildconf/devmole_auth_token2 2>/dev/null) +if ! [[ $github_token ]]; then + echo >&2 "Github token (buildconf/devmole_auth_token) missing!" + exit 1 +fi + +set -e + GL_REMOTE=git@gitlab.torproject.org:tpo/applications/mullvad-browser.git GH_REMOTE=git@github.com:mullvad/mullvad-browser.git CLONE_DIR="$TBB_DIR/git_clones/firefox" @@ -13,17 +24,19 @@ MB_TAG=$(showconf firefox git_hash $TARGET) MB_BRANCH=${MB_TAG//-build[0-9]*/} BB_BRANCH=${MB_BRANCH//mullvad-/base-} ESR_VERSION=$(showconf firefox var/firefox_version $TARGET) -RELEASE_VERSION=$(showconf release var/torbrowser_version $TARGET) +BASE_VERSION=$(showconf release var/torbrowser_version $TARGET) +RELEASE_VERSION="${BASE_VERSION}${mbrtag_suffix}" pushd >/dev/null ../../git_clones/firefox echo "Fetching $MB_BRANCH and tags..." git fetch --tags "$GL_REMOTE" "$MB_BRANCH" BB_TAG=$(git tag -l "$BB_BRANCH-build*" | tail -n1) FX_TAG=$(git tag -l "FIREFOX_${ESR_VERSION//\./_}*" | tail -n1) +echo "QA build version: $BASE_VERSION" echo "MB tag: $MB_TAG" echo "BB tag: $BB_TAG" echo "FX tag: $FX_TAG" echo "Mullvad release tag: $RELEASE_VERSION" -read -p "Do you want to tag mullvad $RELEASE_VERSION and push everything to ${GH_REMOTE}? (y/N) " -n 1 -r +read -p "Do you want to tag mullvad $RELEASE_VERSION and push tags/branches/QA build to ${GH_REMOTE}? (y/N) " -n 1 -r echo if ! [[ $REPLY =~ ^[Yy]$ ]]; then echo >&2 "Operation cancelled" @@ -37,3 +50,22 @@ git push "$GH_REMOTE" "$FX_TAG" git push "$GH_REMOTE" "$BB_TAG" git push "$GH_REMOTE" "$RELEASE_VERSION" popd >/dev/null + +# Call Mullvad's github workflow for new releases (mullvad-browser#466) + +version=$BASE_VERSION +response=$(curl -L \ + -X POST \ + -H "Accept: application/vnd.github+json" \ + -H "Authorization: Bearer $github_token" \ + -H "X-GitHub-Api-Version: 2022-11-28" \ + "https://api.github.com/repos/mullvad/mullvad-browser/actions/workflows/new_…" \ + -d "{\"ref\":\"main\",\"inputs\":{\"version\":\"$version\"}}") + +if ! [ $response ]; then + echo "Build $BASE_VERSION submitted." +else + echo >&2 "Something went wrong with build submission:" + echo >&2 $response + exit 3 +fi View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/4… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/4… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][base-browser-140.4.0esr-15.0-1] fixup! BB 43140: Tighten up fonts on Linux.
by Pier Angelo Vendrame (＠pierov) 23 Oct '25

23 Oct '25

Pier Angelo Vendrame pushed to branch base-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Tor Browser Commits: 64a7d742 by Pier Angelo Vendrame at 2025-10-23T09:42:28+02:00 fixup! BB 43140: Tighten up fonts on Linux. BB 44286: Hardcode GTK system font. - - - - - 1 changed file: - widget/gtk/nsLookAndFeel.cpp Changes: ===================================== widget/gtk/nsLookAndFeel.cpp ===================================== @@ -1235,6 +1235,13 @@ static void GetSystemFontInfo(GtkStyleContext* aStyle, nsString* aFontName, gfxFontStyle* aFontStyle) { aFontStyle->style = FontSlantStyle::NORMAL; +#ifdef BASE_BROWSER_VERSION + *aFontName = u"\"Arimo\""; + aFontStyle->systemFont = true; + aFontStyle->weight = FontWeight::NORMAL; + aFontStyle->stretch = FontStretch::NORMAL; + aFontStyle->size = 14; +#else // As in // https://git.gnome.org/browse/gtk+/tree/gtk/gtkwidget.c?h=3.22.19#n10333 PangoFontDescription* desc; @@ -1269,6 +1276,7 @@ static void GetSystemFontInfo(GtkStyleContext* aStyle, nsString* aFontName, aFontStyle->size = size; pango_font_description_free(desc); +#endif } bool nsLookAndFeel::NativeGetFont(FontID aID, nsString& aFontName, View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/64a7d74… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/64a7d74… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser][mullvad-browser-140.4.0esr-15.0-1] fixup! BB 43140: Tighten up fonts on Linux.
by Pier Angelo Vendrame (＠pierov) 23 Oct '25

23 Oct '25

Pier Angelo Vendrame pushed to branch mullvad-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Mullvad Browser Commits: 1007972e by Pier Angelo Vendrame at 2025-10-23T09:41:59+02:00 fixup! BB 43140: Tighten up fonts on Linux. BB 44286: Hardcode GTK system font. - - - - - 1 changed file: - widget/gtk/nsLookAndFeel.cpp Changes: ===================================== widget/gtk/nsLookAndFeel.cpp ===================================== @@ -1235,6 +1235,13 @@ static void GetSystemFontInfo(GtkStyleContext* aStyle, nsString* aFontName, gfxFontStyle* aFontStyle) { aFontStyle->style = FontSlantStyle::NORMAL; +#ifdef BASE_BROWSER_VERSION + *aFontName = u"\"Arimo\""; + aFontStyle->systemFont = true; + aFontStyle->weight = FontWeight::NORMAL; + aFontStyle->stretch = FontStretch::NORMAL; + aFontStyle->size = 14; +#else // As in // https://git.gnome.org/browse/gtk+/tree/gtk/gtkwidget.c?h=3.22.19#n10333 PangoFontDescription* desc; @@ -1269,6 +1276,7 @@ static void GetSystemFontInfo(GtkStyleContext* aStyle, nsString* aFontName, aFontStyle->size = size; pango_font_description_free(desc); +#endif } bool nsLookAndFeel::NativeGetFont(FontID aID, nsString& aFontName, View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/100… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/100… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-140.4.0esr-15.0-1] fixup! BB 43140: Tighten up fonts on Linux.
by Pier Angelo Vendrame (＠pierov) 23 Oct '25

23 Oct '25

Pier Angelo Vendrame pushed to branch tor-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Tor Browser Commits: 3c4a8e9f by Pier Angelo Vendrame at 2025-10-22T19:37:13+02:00 fixup! BB 43140: Tighten up fonts on Linux. BB 44286: Hardcode GTK system font. - - - - - 1 changed file: - widget/gtk/nsLookAndFeel.cpp Changes: ===================================== widget/gtk/nsLookAndFeel.cpp ===================================== @@ -1235,6 +1235,13 @@ static void GetSystemFontInfo(GtkStyleContext* aStyle, nsString* aFontName, gfxFontStyle* aFontStyle) { aFontStyle->style = FontSlantStyle::NORMAL; +#ifdef BASE_BROWSER_VERSION + *aFontName = u"\"Arimo\""; + aFontStyle->systemFont = true; + aFontStyle->weight = FontWeight::NORMAL; + aFontStyle->stretch = FontStretch::NORMAL; + aFontStyle->size = 14; +#else // As in // https://git.gnome.org/browse/gtk+/tree/gtk/gtkwidget.c?h=3.22.19#n10333 PangoFontDescription* desc; @@ -1269,6 +1276,7 @@ static void GetSystemFontInfo(GtkStyleContext* aStyle, nsString* aFontName, aFontStyle->size = size; pango_font_description_free(desc); +#endif } bool nsLookAndFeel::NativeGetFont(FontID aID, nsString& aFontName, View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/3c4a8e9… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/3c4a8e9… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][maint-15.0] Bug 41609: Use new CDN77 fronts for snowflake
by morgan (＠morgan) 22 Oct '25

22 Oct '25

morgan pushed to branch maint-15.0 at The Tor Project / Applications / tor-browser-build Commits: f318cb64 by Cecylia Bocovich at 2025-10-22T17:27:13+00:00 Bug 41609: Use new CDN77 fronts for snowflake - - - - - 1 changed file: - projects/tor-expert-bundle/pt_config.json Changes: ===================================== projects/tor-expert-bundle/pt_config.json ===================================== @@ -23,8 +23,8 @@ "obfs4 51.222.13.177:80 5EDAC3B810E12B01F6FD8050D2FD3E277B289A08 cert=2uplIpLQ0q9+0qMFrK5pkaYRDOe460LL9WHBvatgkuRr/SL31wBOEupaMMJ6koRE6Ld0ew iat-mode=0" ], "snowflake" : [ - "snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://voluble-torrone-fc39bf.netlify.app/ fronts=vuejs.org ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn", - "snowflake 192.0.2.4:80 8838024498816A039FCBBAB14E6F40A0843051FA fingerprint=8838024498816A039FCBBAB14E6F40A0843051FA url=https://voluble-torrone-fc39bf.netlify.app/ fronts=vuejs.org ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn" + "snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://1098762253.rsc.cdn77.org/ fronts=app.datapacket.com,www.datapacket.com ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn", + "snowflake 192.0.2.4:80 8838024498816A039FCBBAB14E6F40A0843051FA fingerprint=8838024498816A039FCBBAB14E6F40A0843051FA url=https://1098762253.rsc.cdn77.org/ fronts=app.datapacket.com,www.datapacket.com ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn" ] } } View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/f… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/f… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][maint-13.5] Bug 41609: Use new CDN77 fronts for snowflake
by morgan (＠morgan) 22 Oct '25

22 Oct '25

morgan pushed to branch maint-13.5 at The Tor Project / Applications / tor-browser-build Commits: 923359a0 by Cecylia Bocovich at 2025-10-22T17:24:54+00:00 Bug 41609: Use new CDN77 fronts for snowflake - - - - - 1 changed file: - projects/tor-expert-bundle/pt_config.json Changes: ===================================== projects/tor-expert-bundle/pt_config.json ===================================== @@ -23,8 +23,8 @@ "obfs4 51.222.13.177:80 5EDAC3B810E12B01F6FD8050D2FD3E277B289A08 cert=2uplIpLQ0q9+0qMFrK5pkaYRDOe460LL9WHBvatgkuRr/SL31wBOEupaMMJ6koRE6Ld0ew iat-mode=0" ], "snowflake" : [ - "snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://voluble-torrone-fc39bf.netlify.app/ fronts=vuejs.org ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn", - "snowflake 192.0.2.4:80 8838024498816A039FCBBAB14E6F40A0843051FA fingerprint=8838024498816A039FCBBAB14E6F40A0843051FA url=https://voluble-torrone-fc39bf.netlify.app/ fronts=vuejs.org ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn" + "snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://1098762253.rsc.cdn77.org/ fronts=app.datapacket.com,www.datapacket.com ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn", + "snowflake 192.0.2.4:80 8838024498816A039FCBBAB14E6F40A0843051FA fingerprint=8838024498816A039FCBBAB14E6F40A0843051FA url=https://1098762253.rsc.cdn77.org/ fronts=app.datapacket.com,www.datapacket.com ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn" ] } } View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/9… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/9… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] Bug 41609: Use new CDN77 fronts for snowflake
by morgan (＠morgan) 22 Oct '25

22 Oct '25

morgan pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: b77d601e by Cecylia Bocovich at 2025-10-22T16:44:49+00:00 Bug 41609: Use new CDN77 fronts for snowflake - - - - - 1 changed file: - projects/tor-expert-bundle/pt_config.json Changes: ===================================== projects/tor-expert-bundle/pt_config.json ===================================== @@ -23,8 +23,8 @@ "obfs4 51.222.13.177:80 5EDAC3B810E12B01F6FD8050D2FD3E277B289A08 cert=2uplIpLQ0q9+0qMFrK5pkaYRDOe460LL9WHBvatgkuRr/SL31wBOEupaMMJ6koRE6Ld0ew iat-mode=0" ], "snowflake" : [ - "snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://voluble-torrone-fc39bf.netlify.app/ fronts=vuejs.org ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn", - "snowflake 192.0.2.4:80 8838024498816A039FCBBAB14E6F40A0843051FA fingerprint=8838024498816A039FCBBAB14E6F40A0843051FA url=https://voluble-torrone-fc39bf.netlify.app/ fronts=vuejs.org ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn" + "snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://1098762253.rsc.cdn77.org/ fronts=app.datapacket.com,www.datapacket.com ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn", + "snowflake 192.0.2.4:80 8838024498816A039FCBBAB14E6F40A0843051FA fingerprint=8838024498816A039FCBBAB14E6F40A0843051FA url=https://1098762253.rsc.cdn77.org/ fronts=app.datapacket.com,www.datapacket.com ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn" ] } } View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/b… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/b… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser][mullvad-browser-140.4.0esr-15.0-1] Bug 1977787 - Match storage limit to common value/desktop for RFP in Android. r=timhuang
by Pier Angelo Vendrame (＠pierov) 22 Oct '25

22 Oct '25

Pier Angelo Vendrame pushed to branch mullvad-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Mullvad Browser Commits: 45f2b655 by Fatih Kilic at 2025-10-22T14:57:24+02:00 Bug 1977787 - Match storage limit to common value/desktop for RFP in Android. r=timhuang Differential Revision: https://phabricator.services.mozilla.com/D257850 - - - - - 2 changed files: - dom/quota/test/xpcshell/test_temporaryStorageRFP.js - toolkit/components/resistfingerprinting/nsRFPService.cpp Changes: ===================================== dom/quota/test/xpcshell/test_temporaryStorageRFP.js ===================================== @@ -36,10 +36,7 @@ async function testSteps() { request = reset(); await requestFinished(request); - let spoofedLimitBytes = 50 * GiB; - if (AppConstants.platform == "android") { - spoofedLimitBytes = 32 * GiB; - } + const spoofedLimitBytes = 50 * GiB; Services.prefs.setBoolPref("privacy.resistFingerprinting", true); ===================================== toolkit/components/resistfingerprinting/nsRFPService.cpp ===================================== @@ -2672,12 +2672,7 @@ CSSIntRect nsRFPService::GetSpoofedScreenAvailSize(const nsRect& aRect, /* static */ uint64_t nsRFPService::GetSpoofedStorageLimit() { - uint64_t gib = 1024ULL * 1024ULL * 1024ULL; // 1 GiB -#ifdef ANDROID - uint64_t limit = 32ULL * gib; // 32 GiB -#else - uint64_t limit = 50ULL * gib; // 50 GiB -#endif + uint64_t limit = 50ULL * 1024ULL * 1024ULL * 1024ULL; // 50 GiB MOZ_ASSERT(limit / 5 == dom::quota::QuotaManager::GetGroupLimitForLimit(limit)); View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/45f… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/45f… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][base-browser-140.4.0esr-15.0-1] Bug 1977787 - Match storage limit to common value/desktop for RFP in Android. r=timhuang
by Pier Angelo Vendrame (＠pierov) 22 Oct '25

22 Oct '25

Pier Angelo Vendrame pushed to branch base-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Tor Browser Commits: e71d2634 by Fatih Kilic at 2025-10-22T14:56:30+02:00 Bug 1977787 - Match storage limit to common value/desktop for RFP in Android. r=timhuang Differential Revision: https://phabricator.services.mozilla.com/D257850 - - - - - 2 changed files: - dom/quota/test/xpcshell/test_temporaryStorageRFP.js - toolkit/components/resistfingerprinting/nsRFPService.cpp Changes: ===================================== dom/quota/test/xpcshell/test_temporaryStorageRFP.js ===================================== @@ -36,10 +36,7 @@ async function testSteps() { request = reset(); await requestFinished(request); - let spoofedLimitBytes = 50 * GiB; - if (AppConstants.platform == "android") { - spoofedLimitBytes = 32 * GiB; - } + const spoofedLimitBytes = 50 * GiB; Services.prefs.setBoolPref("privacy.resistFingerprinting", true); ===================================== toolkit/components/resistfingerprinting/nsRFPService.cpp ===================================== @@ -2672,12 +2672,7 @@ CSSIntRect nsRFPService::GetSpoofedScreenAvailSize(const nsRect& aRect, /* static */ uint64_t nsRFPService::GetSpoofedStorageLimit() { - uint64_t gib = 1024ULL * 1024ULL * 1024ULL; // 1 GiB -#ifdef ANDROID - uint64_t limit = 32ULL * gib; // 32 GiB -#else - uint64_t limit = 50ULL * gib; // 50 GiB -#endif + uint64_t limit = 50ULL * 1024ULL * 1024ULL * 1024ULL; // 50 GiB MOZ_ASSERT(limit / 5 == dom::quota::QuotaManager::GetGroupLimitForLimit(limit)); View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/e71d263… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/e71d263… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-140.4.0esr-15.0-1] Bug 1977787 - Match storage limit to common value/desktop for RFP in Android. r=timhuang
by Pier Angelo Vendrame (＠pierov) 22 Oct '25

22 Oct '25

Pier Angelo Vendrame pushed to branch tor-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Tor Browser Commits: 632e2baa by Fatih Kilic at 2025-10-22T14:37:33+02:00 Bug 1977787 - Match storage limit to common value/desktop for RFP in Android. r=timhuang Differential Revision: https://phabricator.services.mozilla.com/D257850 - - - - - 2 changed files: - dom/quota/test/xpcshell/test_temporaryStorageRFP.js - toolkit/components/resistfingerprinting/nsRFPService.cpp Changes: ===================================== dom/quota/test/xpcshell/test_temporaryStorageRFP.js ===================================== @@ -36,10 +36,7 @@ async function testSteps() { request = reset(); await requestFinished(request); - let spoofedLimitBytes = 50 * GiB; - if (AppConstants.platform == "android") { - spoofedLimitBytes = 32 * GiB; - } + const spoofedLimitBytes = 50 * GiB; Services.prefs.setBoolPref("privacy.resistFingerprinting", true); ===================================== toolkit/components/resistfingerprinting/nsRFPService.cpp ===================================== @@ -2679,12 +2679,7 @@ CSSIntRect nsRFPService::GetSpoofedScreenAvailSize(const nsRect& aRect, /* static */ uint64_t nsRFPService::GetSpoofedStorageLimit() { - uint64_t gib = 1024ULL * 1024ULL * 1024ULL; // 1 GiB -#ifdef ANDROID - uint64_t limit = 32ULL * gib; // 32 GiB -#else - uint64_t limit = 50ULL * gib; // 50 GiB -#endif + uint64_t limit = 50ULL * 1024ULL * 1024ULL * 1024ULL; // 50 GiB MOZ_ASSERT(limit / 5 == dom::quota::QuotaManager::GetGroupLimitForLimit(limit)); View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/632e2ba… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/632e2ba… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser-update-responses][main] 4 commits: release: new version, 15.0 (linux-x86_64)
by ma1 (＠ma1) 22 Oct '25

22 Oct '25

ma1 pushed to branch main at The Tor Project / Applications / mullvad-browser-update-responses Commits: 80855a3e by hackademix at 2025-10-22T13:15:27+02:00 release: new version, 15.0 (linux-x86_64) - - - - - 01635e1e by hackademix at 2025-10-22T13:15:27+02:00 release: new version, 15.0 (macos) - - - - - 3c859b1c by hackademix at 2025-10-22T13:15:28+02:00 release: new version, 15.0 (windows-x86_64) - - - - - 86d16720 by hackademix at 2025-10-22T13:15:28+02:00 release: new version, 15.0 - - - - - 31 changed files: - update_1/release/download-linux-x86_64.json - update_1/release/download-macos.json - update_1/release/download-windows-x86_64.json - update_1/release/downloads.json - update_1/release/linux-x86_64/.htaccess - − update_1/release/linux-x86_64/update-14.5.5-14.5.8-linux-x86_64.xml - − update_1/release/linux-x86_64/update-14.5.6-14.5.8-linux-x86_64.xml - + update_1/release/linux-x86_64/update-14.5.6-15.0-linux-x86_64.xml - − update_1/release/linux-x86_64/update-14.5.7-14.5.8-linux-x86_64.xml - + update_1/release/linux-x86_64/update-14.5.7-15.0-linux-x86_64.xml - + update_1/release/linux-x86_64/update-14.5.8-15.0-linux-x86_64.xml - − update_1/release/linux-x86_64/update-14.5.8-linux-x86_64.xml - + update_1/release/linux-x86_64/update-15.0-linux-x86_64.xml - update_1/release/macos/.htaccess - − update_1/release/macos/update-14.5.5-14.5.8-macos.xml - − update_1/release/macos/update-14.5.6-14.5.8-macos.xml - + update_1/release/macos/update-14.5.6-15.0-macos.xml - − update_1/release/macos/update-14.5.7-14.5.8-macos.xml - + update_1/release/macos/update-14.5.7-15.0-macos.xml - + update_1/release/macos/update-14.5.8-15.0-macos.xml - − update_1/release/macos/update-14.5.8-macos.xml - + update_1/release/macos/update-15.0-macos.xml - update_1/release/windows-x86_64/.htaccess - − update_1/release/windows-x86_64/update-14.5.5-14.5.8-windows-x86_64.xml - − update_1/release/windows-x86_64/update-14.5.6-14.5.8-windows-x86_64.xml - + update_1/release/windows-x86_64/update-14.5.6-15.0-windows-x86_64.xml - − update_1/release/windows-x86_64/update-14.5.7-14.5.8-windows-x86_64.xml - + update_1/release/windows-x86_64/update-14.5.7-15.0-windows-x86_64.xml - + update_1/release/windows-x86_64/update-14.5.8-15.0-windows-x86_64.xml - − update_1/release/windows-x86_64/update-14.5.8-windows-x86_64.xml - + update_1/release/windows-x86_64/update-15.0-windows-x86_64.xml The diff was not included because it is too large. View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser-update-respo… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser-update-respo… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser][mullvad-browser-140.4.0esr-15.0-1] fixup! BB 40925: Implemented the Security Level component
by ma1 (＠ma1) 22 Oct '25

22 Oct '25

ma1 pushed to branch mullvad-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Mullvad Browser Commits: bfc262ff by hackademix at 2025-10-22T13:03:23+02:00 fixup! BB 40925: Implemented the Security Level component BB 44275: Reduce console noise on security level guessing - - - - - 1 changed file: - toolkit/components/securitylevel/SecurityLevel.sys.mjs Changes: ===================================== toolkit/components/securitylevel/SecurityLevel.sys.mjs ===================================== @@ -350,14 +350,14 @@ var read_setting_from_prefs = function (prefNames) { const actual = Services.prefs.getBoolPref(prefName); if (wanted !== actual) { possibleSetting = false; - logger.info( + logger.debug( `${prefName} does not match level ${settingIndex}: ${actual}, should be ${wanted}!` ); break; } } if (possibleSetting) { - // We have a match! + logger.debug(`Preferences match level ${settingIndex}.`); return settingIndex; } } View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/bfc… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/bfc… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][base-browser-140.4.0esr-15.0-1] fixup! BB 40925: Implemented the Security Level component
by ma1 (＠ma1) 22 Oct '25

22 Oct '25

ma1 pushed to branch base-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Tor Browser Commits: 290bf297 by hackademix at 2025-10-22T13:03:18+02:00 fixup! BB 40925: Implemented the Security Level component BB 44275: Reduce console noise on security level guessing - - - - - 1 changed file: - toolkit/components/securitylevel/SecurityLevel.sys.mjs Changes: ===================================== toolkit/components/securitylevel/SecurityLevel.sys.mjs ===================================== @@ -338,14 +338,14 @@ var read_setting_from_prefs = function (prefNames) { const actual = Services.prefs.getBoolPref(prefName); if (wanted !== actual) { possibleSetting = false; - logger.info( + logger.debug( `${prefName} does not match level ${settingIndex}: ${actual}, should be ${wanted}!` ); break; } } if (possibleSetting) { - // We have a match! + logger.debug(`Preferences match level ${settingIndex}.`); return settingIndex; } } View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/290bf29… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/290bf29… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-140.4.0esr-15.0-1] fixup! BB 40925: Implemented the Security Level component
by ma1 (＠ma1) 22 Oct '25

22 Oct '25

ma1 pushed to branch tor-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Tor Browser Commits: 33251a1e by hackademix at 2025-10-22T11:43:47+02:00 fixup! BB 40925: Implemented the Security Level component BB 44275: Reduce console noise on security level guessing - - - - - 1 changed file: - toolkit/components/securitylevel/SecurityLevel.sys.mjs Changes: ===================================== toolkit/components/securitylevel/SecurityLevel.sys.mjs ===================================== @@ -338,14 +338,14 @@ var read_setting_from_prefs = function (prefNames) { const actual = Services.prefs.getBoolPref(prefName); if (wanted !== actual) { possibleSetting = false; - logger.info( + logger.debug( `${prefName} does not match level ${settingIndex}: ${actual}, should be ${wanted}!` ); break; } } if (possibleSetting) { - // We have a match! + logger.debug(`Preferences match level ${settingIndex}.`); return settingIndex; } } View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/33251a1… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/33251a1… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-140.4.0esr-15.0-1] fixup! TB 43817: Add tests for Tor Browser
by Pier Angelo Vendrame (＠pierov) 22 Oct '25

22 Oct '25

Pier Angelo Vendrame pushed to branch tor-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Tor Browser Commits: 78327397 by Pier Angelo Vendrame at 2025-10-22T11:10:54+02:00 fixup! TB 43817: Add tests for Tor Browser TB 44280: Test stream isolation. - - - - - 2 changed files: - testing/tor/marionette.toml - + testing/tor/test_circuit_isolation.py Changes: ===================================== testing/tor/marionette.toml ===================================== @@ -1,3 +1,4 @@ [DEFAULT] +["test_circuit_isolation.py"] ["test_network_check.py"] ===================================== testing/tor/test_circuit_isolation.py ===================================== @@ -0,0 +1,98 @@ +from ipaddress import ip_address + +from marionette_driver import By +from marionette_driver.errors import NoSuchElementException +from marionette_harness import MarionetteTestCase + +TOR_BOOTSTRAP_TIMEOUT = 30000 # 30s + + +class TestCircuitIsolation(MarionetteTestCase): + + def bootstrap(self): + with self.marionette.using_context("chrome"): + self.marionette.execute_async_script( + """ + const { TorConnect, TorConnectTopics } = ChromeUtils.importESModule( + "resource://gre/modules/TorConnect.sys.mjs" + ); + const [resolve] = arguments; + + function waitForBootstrap() { + const topic = TorConnectTopics.BootstrapComplete; + Services.obs.addObserver(function observer() { + Services.obs.removeObserver(observer, topic); + resolve(); + }, topic); + TorConnect.beginBootstrapping(); + } + + const stageTopic = TorConnectTopics.StageChange; + function stageObserver() { + if (TorConnect.canBeginNormalBootstrap) { + Services.obs.removeObserver(stageObserver, stageTopic); + waitForBootstrap(); + } + } + Services.obs.addObserver(stageObserver, stageTopic); + stageObserver(); + """, + script_timeout=TOR_BOOTSTRAP_TIMEOUT, + ) + + def extract_from_check_tpo(self): + # Fetch the IP from check.torproject.org. + # In addition to that, since we are loading this page, we + # perform some additional sanity checks. + self.marionette.navigate("https://check.torproject.org/") + # When check.tpo's check succeed (i.e., it thinks we're + # connecting through tor), we should be able to find a h1.on, + # with some message... + on = self.marionette.find_element(By.CLASS_NAME, "on") + self.assertIsNotNone( + on, + "h1.on not found, you might not be connected through tor", + ) + # ... but if it fails, the message is inside a h1.off. We want + # to make sure we do not find that either (even though there is + # no reason for both of the h1 to be outputted at the moment). + self.assertRaises( + NoSuchElementException, + self.marionette.find_element, + By.CLASS_NAME, + "off", + ) + ip = self.marionette.find_element(By.TAG_NAME, "strong") + return ip_address(ip.text.strip()) + + def extract_generic(self, url): + # Fetch the IP address from any generic page that only contains + # the address. + self.marionette.navigate(url) + return ip_address( + self.marionette.execute_script( + "return document.documentElement.textContent" + ).strip() + ) + + def test_circuit_isolation(self): + self.bootstrap() + ips = [ + self.extract_from_check_tpo(), + self.extract_generic("https://am.i.mullvad.net/ip"), + self.extract_generic("https://test1.ifconfig.me/ip"), + ] + self.logger.info(f"Found the following IP addresses: {ips}") + unique_ips = set(ips) + self.logger.info(f"Found the following unique IP addresses: {unique_ips}") + self.assertEqual( + len(ips), + len(unique_ips), + "Some of the IP addresses we got are not unique.", + ) + duplicate = self.extract_generic("https://test2.ifconfig.me/ip") + self.assertEqual( + ips[-1], + duplicate, + "Two IPs that were expected to be equal are different, we might be over isolating!", + ) View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/7832739… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/7832739… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] Bug 41608: Add per-platform numbers for incrementals in count-mar-downloads
by boklm (＠boklm) 22 Oct '25

22 Oct '25

boklm pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: ad568972 by Nicolas Vigier at 2025-10-21T19:32:33+02:00 Bug 41608: Add per-platform numbers for incrementals in count-mar-downloads - - - - - 1 changed file: - tools/count-mar-downloads Changes: ===================================== tools/count-mar-downloads ===================================== @@ -81,6 +81,7 @@ sub parse_log_file { $downloads{$version}{OS}{$os} += 1; $downloads{$version}{incremental_update_total} += 1; $downloads{$version}{incremental_update}{$incremental_from} += 1; + $downloads{$version}{incremental_update_by_OS}{$os} += 1; } } } @@ -115,6 +116,9 @@ sub print_results { foreach my $incremental_from (sort keys %{$downloads{$version}{incremental_update}}) { print " Incremental updates from $incremental_from: $downloads{$version}{incremental_update}{$incremental_from}\n"; } + foreach my $os (sort keys %{$downloads{$version}{incremental_update_by_OS}}) { + print " Incremental updates on $os: $downloads{$version}{incremental_update_by_OS}{$os}\n"; + } } print "\n"; } View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/a… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/a… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] Bug 41607: Fix regression from #41373 in count-mar-downloads
by boklm (＠boklm) 21 Oct '25

21 Oct '25

boklm pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: 0b3e5edd by Nicolas Vigier at 2025-10-21T18:41:30+02:00 Bug 41607: Fix regression from #41373 in count-mar-downloads Before 610da963fa759cf5cdccd90b05b1dda8d6c64d29 the _ALL\.mar in the regular expression used to parse full mar filenames was excluding the incremental\.mar. When making the _ALL part optional the regular expression incorrectly matches incremental mar filenames. To fix that we now parse the path in two steps: - we get the version number from the directory, and the mar filename - we parse the mar filename using the version number we know from the directory - - - - - 1 changed file: - tools/count-mar-downloads Changes: ===================================== tools/count-mar-downloads ===================================== @@ -62,17 +62,20 @@ sub parse_log_file { my ($stdout, undef, $success) = capture_exec('xzcat', $File::Find::name); foreach my $line (split /\n/, $stdout) { - my ($version, $os) = - ($line =~ m|^[^\s]+ - - \[.+\] "GET /aus1/torbrowser/([^/]+)/tor-browser-(.*)-\d.*(_ALL)?\.mar HTTP/|); - if ($version) { + my ($version, $filename) = + ($line =~ m|^[^\s]+ - - \[.+\] "GET /aus1/torbrowser/([^/]+)/(tor-browser-.*\.mar) HTTP/|); + next unless $filename; + my ($os) = + ($filename =~ m|^tor-browser-(.*)-\Q$version\E(_ALL)?\.mar$|); + if ($os) { $downloads{$version}{total} += 1; $downloads{$version}{full_update} += 1; $downloads{$version}{OS}{$os} += 1; next; } my $incremental_from; - ($version, $os, $incremental_from) = - ($line =~ m|^[^\s]+ - - \[.+\] "GET /aus1/torbrowser/([^/]+)/tor-browser-(.*)--(\d[^-]+)-.*(_ALL)?\.incremental\.mar HTTP/|); + ($os, $incremental_from) = + ($filename =~ m|^tor-browser-(.*)--(\d[^-]+)-\Q$version\E(_ALL)?\.incremental\.mar$|); if ($incremental_from) { $downloads{$version}{total} += 1; $downloads{$version}{OS}{$os} += 1; View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/0… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/0… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-140.4.0esr-15.0-1] fixup! [android] Disable features and functionality
by clairehurst (＠clairehurst) 21 Oct '25

21 Oct '25

clairehurst pushed to branch tor-browser-140.4.0esr-15.0-1 at The Tor Project / Applications / Tor Browser Commits: f6b70413 by clairehurst at 2025-10-21T10:00:59-07:00 fixup! [android] Disable features and functionality - - - - - 2 changed files: - mobile/android/fenix/app/src/main/java/org/mozilla/fenix/settings/SettingsFragment.kt - mobile/android/fenix/app/src/main/java/org/mozilla/fenix/utils/Settings.kt Changes: ===================================== mobile/android/fenix/app/src/main/java/org/mozilla/fenix/settings/SettingsFragment.kt ===================================== @@ -186,8 +186,7 @@ class SettingsFragment : PreferenceFragmentCompat(), UserInteractionHandler { findPreference<Preference>( getPreferenceKey(R.string.pref_key_translation), - )?.isVisible = FxNimbus.features.translations.value().globalSettingsEnabled && - requireContext().components.core.store.state.translationEngine.isEngineSupported == true + )?.isVisible = false } override fun onCreatePreferences(savedInstanceState: Bundle?, rootKey: String?) { ===================================== mobile/android/fenix/app/src/main/java/org/mozilla/fenix/utils/Settings.kt ===================================== @@ -675,7 +675,7 @@ class Settings(private val appContext: Context) : PreferencesHolder { */ var showFirstTimeTranslation: Boolean by booleanPreference( appContext.getPreferenceKey(R.string.pref_key_show_first_time_translation), - default = true, + default = false, ) /** @@ -683,7 +683,7 @@ class Settings(private val appContext: Context) : PreferencesHolder { */ var offerTranslation: Boolean by booleanPreference( appContext.getPreferenceKey(R.string.pref_key_translations_offer), - default = true, + default = false, ) @VisibleForTesting View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/f6b7041… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/f6b7041… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build] Pushed new tag mb-15.0-build1
by morgan (＠morgan) 21 Oct '25

21 Oct '25

morgan pushed new tag mb-15.0-build1 at The Tor Project / Applications / tor-browser-build -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/tree/mb-… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build] Pushed new tag tbb-15.0-build1
by morgan (＠morgan) 21 Oct '25

21 Oct '25

morgan pushed new tag tbb-15.0-build1 at The Tor Project / Applications / tor-browser-build -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/tree/tbb… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][maint-15.0] Bug 41596,41597: Prepare Tor, Mullvad Browser 15.0
by morgan (＠morgan) 21 Oct '25

21 Oct '25

morgan pushed to branch maint-15.0 at The Tor Project / Applications / tor-browser-build Commits: 8cf87f2c by Morgan at 2025-10-21T16:37:49+00:00 Bug 41596,41597: Prepare Tor, Mullvad Browser 15.0 - - - - - 8 changed files: - projects/browser/Bundle-Data/Docs-MB/ChangeLog.txt - projects/browser/Bundle-Data/Docs-TBB/ChangeLog.txt - projects/browser/config - projects/firefox/config - projects/geckoview/config - projects/tor/config - projects/translation/config - rbm.conf Changes: ===================================== projects/browser/Bundle-Data/Docs-MB/ChangeLog.txt ===================================== @@ -1,3 +1,123 @@ +Mullvad Browser 15.0 - October 28 + * All Platforms + * Updated Firefox to 140.4.0esr + * Updated NoScript to 13.2.2 + * Bug 451: The restart to apply button doesn't work [mullvad-browser] + * Bug 463: Fix typo in MimeType entry in .desktop file included in deb/rpm package (application/xhtml_xml instead of application/xhtml+xml) [mullvad-browser] + * Bug 468: Drop the Metager search engine [mullvad-browser] + * Bug 478: Update to the Mullvad Browser extension to 0.9.5 [mullvad-browser] + * Bug 19741: Opensearch (contextual search) does not obey FPI [tor-browser] + * Bug 42738: Tidy up the commit structure for browser updates UI [tor-browser] + * Bug 43009: Backport Bug 1973265 - Put WebCodecs API behind RFP Target [tor-browser] + * Bug 43093: Refactor the patch to disable LaterRun [tor-browser] + * Bug 43111: Delete our webextensions for search engines when Bug 1885953 is fixed upstream [tor-browser] + * Bug 43525: Check if our search engine customization still works after ESR 140 transition [tor-browser] + * Bug 43590: Move letterboxing rules out of browser/base/content/browser.css [tor-browser] + * Bug 43610: Use newer CSS variable names for ESR 140 [tor-browser] + * Bug 43629: All migrations in migrateUIBB are run for new profiles [tor-browser] + * Bug 43638: Fix up our `<command>` elements [tor-browser] + * Bug 43664: Review Mozilla 1842832: Move the private browsing toggle to initial install dialog [tor-browser] + * Bug 43728: Update search engine icon sizes [tor-browser] + * Bug 43745: Disable HEVC (H265) playback support [tor-browser] + * Bug 43749: Replace the newtab component and addon with our home page [tor-browser] + * Bug 43770: Bugzilla 1958070: More BrowserGlue simplification/splitting [tor-browser] + * Bug 43772: Do not use official branding for BB/TB/MB [tor-browser] + * Bug 43776: Set branding files for l10n merging [tor-browser] + * Bug 43795: Restore the URL classifier XPCOM components. [tor-browser] + * Bug 43844: Security level shield icon should be flipped for RTL locales [tor-browser] + * Bug 43850: Modify the Contrast Control settings for RFP [tor-browser] + * Bug 43864: Remove features from the unified search button [tor-browser] + * Bug 43869: Hide pens with RFP [tor-browser] + * Bug 43874: Incorporate our unified extension button hiding logic into mozilla's changes for ESR 140 [tor-browser] + * Bug 43886: Fix new tab for ESR 140 [tor-browser] + * Bug 43900: Open newtab rather than firefoxview when unloading the last tab [tor-browser] + * Bug 43902: Hide Sidebar buttons [tor-browser] + * Bug 43903: Report broken site is disabled rather than hidden [tor-browser] + * Bug 43905: base-browser.ftl missing from about:addons [tor-browser] + * Bug 43906: Extension.sys.mjs change in the wrong commit [tor-browser] + * Bug 43913: Context menu not properly populated [tor-browser] + * Bug 43947: Console error from ContentBlockingPrefs.init [tor-browser] + * Bug 43966: Notify the user when they are in a custom security level (desktop) [tor-browser] + * Bug 43989: Switch off AI chatbot preference [tor-browser] + * Bug 44030: Security Level selector does not get confirmation before restarting [tor-browser] + * Bug 44034: Update string used for checkbox on New Identity confirmation dialog [tor-browser] + * Bug 44040: Modify nsIPrompt and the commonDialog code to allow destructive buttons [tor-browser] + * Bug 44045: Drop AI and machine learning components [tor-browser] + * Bug 44090: Several of our XUL pages cause a crash because of missing CSP [tor-browser] + * Bug 44106: Make sure background tasks are not used for shutdown cleanup [tor-browser] + * Bug 44107: Switch tab search action is missing an icon [tor-browser] + * Bug 44108: Fix the new history sidebar [tor-browser] + * Bug 44123: Do not trim protocol off of URLs ever [tor-browser] + * Bug 44125: Do not offer to save signatures by default in Private Browsing Mode [tor-browser] + * Bug 44140: Refactored patch to prevent writing temp PDF files to disk [tor-browser] + * Bug 44141: Hide "Report broken site" items by default [tor-browser] + * Bug 44142: Missing document_pdf.svg from our branding directories [tor-browser] + * Bug 44153: Test search engine customization [tor-browser] + * Bug 44159: Change or hide the sidebar settings description [tor-browser] + * Bug 44177: Remove more urlbar actions [tor-browser] + * Bug 44178: Search preservation does not work with duckduckgo in safest security level [tor-browser] + * Bug 44187: TLS session tickets leak Private Browsing mode [tor-browser] + * Bug 44213: Reduce linkability concerns of the "Search with" contextual search action [tor-browser] + * Bug 44214: Update letterboxing to reflect changes in ESR 140 [tor-browser] + * Bug 44215: Hide Firefox home settings in about:preferences [tor-browser] + * Bug 44221: Backport MozBug 1984333 Bump Spoofed Processor Count [tor-browser] + * Bug 44234: No images in PDF [tor-browser] + * Bug 44242: Hand over Security Level's WebAssembly controls to NoScript [tor-browser] + * Bug 44262: Disable adding search engines from HTML forms [tor-browser] + * Bug 44279: Disable contextual search install prompt [tor-browser] + * Windows + * Bug 440: Make abseil use win32 thread model on mingw [mullvad-browser] + * Bug 44046: Replace BASE_BROWSER_UPDATE with BASE_BROWSER_VERSION in the font visibility list [tor-browser] + * Bug 44062: Force touch enabled on Windows and Android [tor-browser] + * Linux + * Bug 43950: Review Mozilla 1894818: Support HEVC playback on Linux [tor-browser] + * Bug 43959: Make Noto Color Emoji the default emoji font on Linux [tor-browser] + * Bug 44227: Some CJK characters cannot be rendered by Tor which uses the Noto font family [tor-browser] + * Bug 41586: Replace Noto CJK with Jigmo on Linux [tor-browser-build] + * Build System + * All Platforms + * Bug 43891: Update the translation CI to use the new mozilla versions [tor-browser] + * Bug 44067: Move --enable-geckodriver only to Linux-only mozconfigs [tor-browser] + * Bug 44103: git's export-subst is a reproducibility problem [tor-browser] + * Bug 44104: Don't run linter when there are no overall changes [tor-browser] + * Bug 26408: Make MAR signature checks clearer when creating incremental MAR files [tor-browser-build] + * Bug 34434: Remove unused variables from rbm.conf [tor-browser-build] + * Bug 40697: Delete repackage_browser.sh [tor-browser-build] + * Bug 40698: Update locale in tbb_version.json [tor-browser-build] + * Bug 40994: Add support in do-all-signing to sign release for some archs only [tor-browser-build] + * Bug 41064: Update tools/signing/README and add a tools/signing/machines-setup/README [tor-browser-build] + * Bug 41227: Update projects/common/list_toolchain_updates-common-firefox-geckoview to include check for binutils [tor-browser-build] + * Bug 41373: Remove `_ALL` from mar filenames [tor-browser-build] + * Bug 41444: Build artifacts to support artifact builds of Tor/Muillvad/Base Browser [tor-browser-build] + * Bug 41448: Update toolchains for Firefox ESR 140 [tor-browser-build] + * Bug 41452: Skip update-responses xml files for versions which don't have incrementals [tor-browser-build] + * Bug 41457: Set mar IDs as env variables in tor-browser-build [tor-browser-build] + * Bug 41459: Update taskcluster/ci paths in README and comments [tor-browser-build] + * Bug 41465: Disable development artifacts generation by default, keep it enabled for nightly builds [tor-browser-build] + * Bug 41478: Add vim and others missing basic tools to base container image [tor-browser-build] + * Bug 41496: Clean up unused projects [tor-browser-build] + * Bug 41501: cargo_vendor generated archive maintains timestamps [tor-browser-build] + * Bug 41517: Add morgan's key to the setup account on the signing machine [tor-browser-build] + * Bug 41534: Copy geckodriver only for Linux x86-64 [tor-browser-build] + * Bug 41539: Update Ubuntu version used to run mmdebstrap to 24.04.3 [tor-browser-build] + * Bug 41568: Update instructions for manually building 7zip [tor-browser-build] + * Bug 41579: Add zip to the list of Tor Browser Build dependencies [tor-browser-build] + * Bug 40084: Always use bash for the debug terminal [rbm] + * Bug 40087: Downloaded files getting stricter permissions than expected [rbm] + * Windows + * Bug 44167: Move the nsis-uninstall.patch to tor-browser repository [tor-browser] + * macOS + * Bug 41503: Error 403 when downloading macOS SDK [tor-browser-build] + * Bug 41527: Update libdmg-hfsplus and enable LZMA compression on dmgs [tor-browser-build] + * Bug 41538: Bump macOS SDK to 15.5 [tor-browser-build] + * Bug 41571: Work-around to prevent older 7z versions to break rcodesign. [tor-browser-build] + * Linux + * Bug 41458: Ship geckodriver only on Linux [tor-browser-build] + * Bug 41488: Disable sys/random.h for Node.js [tor-browser-build] + * Bug 41558: Share descriptions between Linux packages and archives [tor-browser-build] + * Bug 41561: Ship Noto Color Emoji on Linux [tor-browser-build] + * Bug 41569: Use var/display_name in .desktop files [tor-browser-build] + Mullvad Browser 15.0a4 - October 16 2025 * All Platforms * Updated Firefox to 140.4.0esr @@ -24,7 +144,7 @@ Mullvad Browser 15.0a4 - October 16 2025 * Bug 44221: Backport MozBug 1984333 Bump Spoofed Processor Count [tor-browser] * Bug 44234: No images in PDF [tor-browser] * Bug 44240: Typo on dom.security.https_first_add_exception_on_failure [tor-browser] - * Bug 44242: Hand over Security Level's WebAssembly controls to NoScript [tor-browser] + * Bug 44242: Hand over Security Level's WebAssembly controls to NoScript [tor-browser] * Bug 44262: Disable adding search engines from HTML forms [tor-browser] * Linux * Bug 44227: Some CJK characters cannot be rendered by Tor which uses the Noto font family [tor-browser] ===================================== projects/browser/Bundle-Data/Docs-TBB/ChangeLog.txt ===================================== @@ -1,3 +1,210 @@ +Tor Browser 15.0 - October 28 2025 + * All Platforms + * Updated NoScript to 13.2.2 + * Updated Lyrebird to 0.6.2 + * Bug 19741: Opensearch (contextual search) does not obey FPI [tor-browser] + * Bug 43009: Backport Bug 1973265 - Put WebCodecs API behind RFP Target [tor-browser] + * Bug 43093: Refactor the patch to disable LaterRun [tor-browser] + * Bug 43727: Update moz-toggle customisation for ESR 140 [tor-browser] + * Bug 43745: Disable HEVC (H265) playback support [tor-browser] + * Bug 43772: Do not use official branding for BB/TB/MB [tor-browser] + * Bug 43784: Get confirmation from NoScript that settings are applied [tor-browser] + * Bug 43832: Drop eslint-env [tor-browser] + * Bug 43850: Modify the Contrast Control settings for RFP [tor-browser] + * Bug 43853: DomainFrontedRequests: setData is no longer a function [tor-browser] + * Bug 43864: Remove features from the unified search button [tor-browser] + * Bug 43869: Hide pens with RFP [tor-browser] + * Bug 43880: Update moat's domain front url [tor-browser] + * Bug 44045: Drop AI and machine learning components [tor-browser] + * Bug 44068: Handle migration from meek-azure to meek built-in bridge type [tor-browser] + * Bug 44069: Update `meek-azure` related strings to `meek` [tor-browser] + * Bug 44140: Refactored patch to prevent writing temp PDF files to disk [tor-browser] + * Bug 44234: No images in PDF [tor-browser] + * Bug 41429: Add a note about user safety to Tor Browser Alpha blog posts [tor-browser-build] + * Bug 41442: Update our audit CSVs to use the new Audit template [tor-browser-build] + * Bug 41502: Application services build is failing on isNetworkAllowed() [tor-browser-build] + * Windows + macOS + Linux + * Updated Firefox to 140.4.0esr + * Bug 42025: Purple elements (e.g. Tor buttons) need dark theme variants [tor-browser] + * Bug 42738: Tidy up the commit structure for browser updates UI [tor-browser] + * Bug 43111: Delete our webextensions for search engines when Bug 1885953 is fixed upstream [tor-browser] + * Bug 43519: Replace tor-loading.png with SVG [tor-browser] + * Bug 43525: Check if our search engine customization still works after ESR 140 transition [tor-browser] + * Bug 43590: Move letterboxing rules out of browser/base/content/browser.css [tor-browser] + * Bug 43610: Use newer CSS variable names for ESR 140 [tor-browser] + * Bug 43629: All migrations in migrateUIBB are run for new profiles [tor-browser] + * Bug 43636: Tor exiting during startup with "connect automatically" leads to "Try a bridge" page [tor-browser] + * Bug 43638: Fix up our `<command>` elements [tor-browser] + * Bug 43664: Review Mozilla 1842832: Move the private browsing toggle to initial install dialog [tor-browser] + * Bug 43728: Update search engine icon sizes [tor-browser] + * Bug 43765: Temporarily disable Lox [tor-browser] + * Bug 43766: Only save the relevant TorSettings changes to preferences. [tor-browser] + * Bug 43770: Bugzilla 1958070: More BrowserGlue simplification/splitting [tor-browser] + * Bug 43776: Set branding files for l10n merging [tor-browser] + * Bug 43795: Restore the URL classifier XPCOM components. [tor-browser] + * Bug 43817: Write e2e test for verifying if the browser is connected to the Tor network [tor-browser] + * Bug 43844: Security level shield icon should be flipped for RTL locales [tor-browser] + * Bug 43874: Incorporate our unified extension button hiding logic into mozilla's changes for ESR 140 [tor-browser] + * Bug 43879: tor-branding.css declarations are overwritten [tor-browser] + * Bug 43886: Fix new tab for ESR 140 [tor-browser] + * Bug 43900: Open newtab rather than firefoxview when unloading the last tab [tor-browser] + * Bug 43901: Modify about:license for Tor Browser and drop about:rights [tor-browser] + * Bug 43902: Hide Sidebar buttons [tor-browser] + * Bug 43903: Report broken site is disabled rather than hidden [tor-browser] + * Bug 43905: base-browser.ftl missing from about:addons [tor-browser] + * Bug 43906: Extension.sys.mjs change in the wrong commit [tor-browser] + * Bug 43913: Context menu not properly populated [tor-browser] + * Bug 43929: two about:tor pages opened after update [tor-browser] + * Bug 43930: Onionize toggle not centre aligned in about:tor [tor-browser] + * Bug 43947: Console error from ContentBlockingPrefs.init [tor-browser] + * Bug 43966: Notify the user when they are in a custom security level (desktop) [tor-browser] + * Bug 43989: Switch off AI chatbot preference [tor-browser] + * Bug 44030: Security Level selector does not get confirmation before restarting [tor-browser] + * Bug 44034: Update string used for checkbox on New Identity confirmation dialog [tor-browser] + * Bug 44040: Modify nsIPrompt and the commonDialog code to allow destructive buttons [tor-browser] + * Bug 44090: Several of our XUL pages cause a crash because of missing CSP [tor-browser] + * Bug 44095: Rename connectionPane.xhtml and remove it from the jar [tor-browser] + * Bug 44101: Toolbar connection status is not visible when using vertical tabs [tor-browser] + * Bug 44106: Make sure background tasks are not used for shutdown cleanup [tor-browser] + * Bug 44107: Switch tab search action is missing an icon [tor-browser] + * Bug 44108: Fix the new history sidebar [tor-browser] + * Bug 44115: Make remove all bridges dialog use a destructive red button [tor-browser] + * Bug 44123: Do not trim protocol off of URLs ever [tor-browser] + * Bug 44125: Do not offer to save signatures by default in Private Browsing Mode [tor-browser] + * Bug 44141: Hide "Report broken site" items by default [tor-browser] + * Bug 44142: Missing document_pdf.svg from our branding directories [tor-browser] + * Bug 44145: Switch onion connection icons to use --icon-color-critical and --icon-color [tor-browser] + * Bug 44153: Test search engine customization [tor-browser] + * Bug 44159: Change or hide the sidebar settings description [tor-browser] + * Bug 44177: Remove more urlbar actions [tor-browser] + * Bug 44178: Search preservation does not work with duckduckgo in safest security level [tor-browser] + * Bug 44180: Clear YEC 2024 preference [tor-browser] + * Bug 44184: Duckduckgo Onion Lite search does not work properly in safest when added as a search engine [tor-browser] + * Bug 44187: TLS session tickets leak Private Browsing mode [tor-browser] + * Bug 44192: Hovering unloaded tab causes console error [tor-browser] + * Bug 44213: Reduce linkability concerns of the "Search with" contextual search action [tor-browser] + * Bug 44214: Update letterboxing to reflect changes in ESR 140 [tor-browser] + * Bug 44215: Hide Firefox home settings in about:preferences [tor-browser] + * Bug 44221: Backport MozBug 1984333 Bump Spoofed Processor Count [tor-browser] + * Bug 44239: DDG HTML page and search results displayed incorrectly with Safest security setting [tor-browser] + * Bug 44262: Disable adding search engines from HTML forms [tor-browser] + * Bug 44279: Disable contextual search install prompt [tor-browser] + * Windows + Android + * Bug 44062: Force touch enabled on Windows and Android [tor-browser] + * Windows + * Bug 44046: Replace BASE_BROWSER_UPDATE with BASE_BROWSER_VERSION in the font visibility list [tor-browser] + * macOS + * Bug 44127: Do not show macOS Privacy hint on network error pages [tor-browser] + * Linux + * Bug 43950: Review Mozilla 1894818: Support HEVC playback on Linux [tor-browser] + * Bug 43959: Make Noto Color Emoji the default emoji font on Linux [tor-browser] + * Bug 44227: Some CJK characters cannot be rendered by Tor which uses the Noto font family [tor-browser] + * Bug 41586: Replace Noto CJK with Jigmo on Linux [tor-browser-build] + * Android + * Updated GeckoView to 140.4.0esr + * Bug 43179: Make persistent 'private tabs' notification distinct from Firefox's [tor-browser] + * Bug 43401: Replace the constructor of Locale with a builder [tor-browser] + * Bug 43577: Flush settings fails on Android [tor-browser] + * Bug 43643: Clean out unused tor connect strings [tor-browser] + * Bug 43650: Survey banner behaves like a dialog on Android, rather than a card [tor-browser] + * Bug 43676: Preemptively disable unified trust panel by default so we are tracking for next ESR [tor-browser] + * Bug 43699: Dummy "about:" pages are not cleared from recently closed tabs (and possibly elsewhere) because they are normal tabs, not private tabs. [tor-browser] + * Bug 43755: Restore functionality of "switch to tab" urlbar suggestion [tor-browser] + * Bug 43826: Review Mozilla 1960122: Use `MOZ_BUILD_DATE` in Fenix build configuration [tor-browser] + * Bug 43855: brand.properties merging on Android is broken in 140 [tor-browser] + * Bug 43943: Review Mozilla 1928705: Ship Android Font Restrictions as part of FPP [tor-browser] + * Bug 44021: Android settings page colors are sometimes messed up (seems to be on the first launch) [tor-browser] + * Bug 44029: Search/url bar doesn't work on android after ESR 140 [tor-browser] + * Bug 44036: Crash on opening "Search Settings" on android [tor-browser] + * Bug 44042: Debug crash when opening settings too quickly after launching app [tor-browser] + * Bug 44047: Tor Browser's home doesn't have the background at the first load on Android [tor-browser] + * Bug 44080: Further remove "Analytics data collection and usage" [tor-browser] + * Bug 44083: "snowflake" is lower case on Android [tor-browser] + * Bug 44098: Bookmarks offer a way to go to sync in 15.0a1 [tor-browser] + * Bug 44133: Hide the "Allow in private browsing" checkboxes from WebExtension management UI [tor-browser] + * Bug 44139: Restore the (inactive) YouTube and Reddit search plugins on Android [tor-browser] + * Bug 44172: Fix crash in TorAndroidIntegration.handleMessage() [tor-browser] + * Bug 44237: Revoke access to all advertising ids available in Android [tor-browser] + * Bug 41494: Update GeckoView build scripts for ESR140 [tor-browser-build] + * Build System + * All Platforms + * Bug 43615: Add Gitlab Issue and Merge request templates [tor-browser] + * Bug 43616: Customize Gitlab Issue and Merge templates [tor-browser] + * Bug 43891: Update the translation CI to use the new mozilla versions [tor-browser] + * Bug 43954: Update tb-dev to handle lightweight tags [tor-browser] + * Bug 43962: update tb-dev auto-fixup for git 2.50 [tor-browser] + * Bug 44061: "Contributing" link is broken [tor-browser] + * Bug 44067: Move --enable-geckodriver only to Linux-only mozconfigs [tor-browser] + * Bug 44103: git's export-subst is a reproducibility problem [tor-browser] + * Bug 44104: Don't run linter when there are no overall changes [tor-browser] + * Bug 26408: Make MAR signature checks clearer when creating incremental MAR files [tor-browser-build] + * Bug 34434: Remove unused variables from rbm.conf [tor-browser-build] + * Bug 40551: Drop go reproducibility patches [tor-browser-build] + * Bug 40697: Delete repackage_browser.sh [tor-browser-build] + * Bug 40698: Update locale in tbb_version.json [tor-browser-build] + * Bug 41064: Update tools/signing/README and add a tools/signing/machines-setup/README [tor-browser-build] + * Bug 41227: Update projects/common/list_toolchain_updates-common-firefox-geckoview to include check for binutils [tor-browser-build] + * Bug 41434: Go updates shouldn't target all platforms until macOS is on legacy in the changelogs [tor-browser-build] + * Bug 41444: Build artifacts to support artifact builds of Tor/Muillvad/Base Browser [tor-browser-build] + * Bug 41448: Update toolchains for Firefox ESR 140 [tor-browser-build] + * Bug 41459: Update taskcluster/ci paths in README and comments [tor-browser-build] + * Bug 41465: Disable development artifacts generation by default, keep it enabled for nightly builds [tor-browser-build] + * Bug 41474: update README to explain moat-settings project requires `jq` to be installed [tor-browser-build] + * Bug 41478: Add vim and others missing basic tools to base container image [tor-browser-build] + * Bug 41486: Track bundletool and osslicenses-plugin versions in list_toolchain_updates_checks [tor-browser-build] + * Bug 41496: Clean up unused projects [tor-browser-build] + * Bug 41501: cargo_vendor generated archive maintains timestamps [tor-browser-build] + * Bug 41514: Remove var/build_go_lib from projects/go/config [tor-browser-build] + * Bug 41532: Rename meek-azure to meek in pt_config.json [tor-browser-build] + * Bug 41534: Copy geckodriver only for Linux x86-64 [tor-browser-build] + * Bug 41537: Add script to count mar downloads from web logs [tor-browser-build] + * Bug 41539: Update Ubuntu version used to run mmdebstrap to 24.04.3 [tor-browser-build] + * Bug 41568: Update instructions for manually building 7zip [tor-browser-build] + * Bug 41576: Build expert bundles outside containers [tor-browser-build] + * Bug 41579: Add zip to the list of Tor Browser Build dependencies [tor-browser-build] + * Bug 41594: Remove version from tor-expert-bundle and tor-expert-bundle-aar filenames [tor-browser-build] + * Bug 41600: update lyrebird version to v0.6.2 [tor-browser-build] + * Bug 41602: Update tools/changelog-format-blog-post [tor-browser-build] + * Bug 40084: Always use bash for the debug terminal [rbm] + * Bug 40087: Downloaded files getting stricter permissions than expected [rbm] + * Windows + macOS + Linux + * Bug 44131: Generate torrc-defaults and put it in objdir post-build [tor-browser] + * Bug 41373: Remove `_ALL` from mar filenames [tor-browser-build] + * Bug 41457: Set mar IDs as env variables in tor-browser-build [tor-browser-build] + * Bug 41604: Keep update-responses files from previous release [tor-browser-build] + * Windows + Linux + Android + * Updated Go to 1.24.9 + * Windows + * Bug 44167: Move the nsis-uninstall.patch to tor-browser repository [tor-browser] + * macOS + * Bug 41503: Error 403 when downloading macOS SDK [tor-browser-build] + * Bug 41527: Update libdmg-hfsplus and enable LZMA compression on dmgs [tor-browser-build] + * Bug 41538: Bump macOS SDK to 15.5 [tor-browser-build] + * Bug 41571: Work-around to prevent older 7z versions to break rcodesign. [tor-browser-build] + * Linux + * Bug 41458: Ship geckodriver only on Linux [tor-browser-build] + * Bug 41488: Disable sys/random.h for Node.js [tor-browser-build] + * Bug 41558: Share descriptions between Linux packages and archives [tor-browser-build] + * Bug 41561: Ship Noto Color Emoji on Linux [tor-browser-build] + * Bug 41569: Use var/display_name in .desktop files [tor-browser-build] + * Android + * Bug 43984: Update android build scripts and docs for ESR 140 [tor-browser] + * Bug 43987: 140 Android is not reproducible [tor-browser] + * Bug 44078: Modify ./autopublish-settings.gradle for building a-s and glean with uniffi-bindgen no-op [tor-browser] + * Bug 44220: Disable the JS minifier as it produces invalid JS [tor-browser] + * Bug 41453: Update application-services and uniffi-rs for ESR140 [tor-browser-build] + * Bug 41467: Remove list_toolchain_updates-firefox-android from Makefile [tor-browser-build] + * Bug 41483: geckoview_example-withGeckoBinaries-....apk doesn't exist anymore in Firefox 140 [tor-browser-build] + * Bug 41484: Create a fork of application-services [tor-browser-build] + * Bug 41500: Optimize tor and its dependencies for size on Android [tor-browser-build] + * Bug 41506: Use appilcation-services branch for nightlies builds [tor-browser-build] + * Bug 41507: Single-arch build fails because artifacts don't have arch subdirectories [tor-browser-build] + * Bug 41523: Use custom built Glean package on Android [tor-browser-build] + * Bug 41548: Hide tor's symbols on Android and add other linker options to save space [tor-browser-build] + * Bug 41577: Minify JS with UglifyJS on Android x86 [tor-browser-build] + * Bug 41583: Align tor and PTs to 16kB on Android [tor-browser-build] + * Bug 41605: Ignore incrementals if we're not building desktop [tor-browser-build] + Tor Browser 15.0a4 - October 16 2025 * All Platforms * Updated NoScript to 13.2.1 ===================================== projects/browser/config ===================================== @@ -113,9 +113,9 @@ input_files: enable: '[% ! c("var/android") %]' - filename: dmg-root enable: '[% ! c("var/android") %]' - - URL: https://addons.mozilla.org/firefox/downloads/file/4593796/noscript-13.2.1.x… + - URL: https://addons.mozilla.org/firefox/downloads/file/4597669/noscript-13.2.2.x… name: noscript - sha256sum: 190297f3d1e55db0c65f9bc00460bea9b753939d428ea593d6cef27fde1ce69a + sha256sum: f5ae80f2858057a3c8ebbafc12269659003f937e1cd781e05c01cc668e025c70 - URL: https://addons.mozilla.org/firefox/downloads/file/4578681/ublock_origin-1.6… name: ublock-origin sha256sum: bc62cd930601212f1568964389352bbd4b1808466f2c9ac1198c754338077fb0 ===================================== projects/firefox/config ===================================== @@ -21,7 +21,7 @@ var: browser_series: '15.0' browser_rebase: 1 browser_branch: '[% c("var/browser_series") %]-[% c("var/browser_rebase") %]' - browser_build: 2 + browser_build: 4 copyright_year: '[% exec("git show -s --format=%ci " _ c("git_hash") _ "^{commit}", { exec_noco => 1 }).remove("-.*") %]' nightly_updates_publish_dir: '[% c("var/nightly_updates_publish_dir_prefix") %]nightly-[% c("var/osname") %]' gitlab_project: https://gitlab.torproject.org/tpo/applications/tor-browser @@ -114,6 +114,7 @@ targets: updater_url: 'https://cdn.mullvad.net/browser/update_responses/update_1/' mar_id_prefix: 'mullvadbrowser-mullvad' nightly_updates_publish_dir_prefix: mullvadbrowser- + browser_build: 3 linux-x86_64: var: ===================================== projects/geckoview/config ===================================== @@ -23,7 +23,7 @@ var: browser_series: '15.0' browser_rebase: 1 browser_branch: '[% c("var/browser_series") %]-[% c("var/browser_rebase") %]' - browser_build: 2 + browser_build: 4 gitlab_project: https://gitlab.torproject.org/tpo/applications/tor-browser git_commit: '[% exec("git rev-parse " _ c("git_hash") _ "^{commit}", { exec_noco => 1 }) %]' deps: ===================================== projects/tor/config ===================================== @@ -1,6 +1,6 @@ # vim: filetype=yaml sw=2 filename: '[% project %]-[% c("version") %]-[% c("var/osname") %]-[% c("var/build_id") %].tar.[% c("compress_tar") %]' -version: 0.4.9.3-alpha +version: 0.4.8.19 git_hash: 'tor-[% c("version") %]' git_url: https://gitlab.torproject.org/tpo/core/tor.git git_submodule: 1 ===================================== projects/translation/config ===================================== @@ -12,13 +12,13 @@ compress_tar: 'gz' steps: base-browser: base-browser: '[% INCLUDE build %]' - git_hash: dff70d135408cfc24931c170efa91fbaded19914 + git_hash: cdd3da6308bb3beb916744057af92331025053bb targets: nightly: git_hash: 'base-browser' tor-browser: tor-browser: '[% INCLUDE build %]' - git_hash: ca310e42296a7085ea59fc323592f3dc702123ac + git_hash: 3395fe5bdb7556490e31d3c6804e6240278bc708 targets: nightly: git_hash: 'tor-browser' @@ -32,7 +32,7 @@ steps: fenix: '[% INCLUDE build %]' # We need to bump the commit before releasing but just pointing to a branch # might cause too much rebuidling of the Firefox part. - git_hash: 0efa38c746df88feeb4daa7150e394e87e6d4d18 + git_hash: 807271d57878187b08fbd004276a3eea624421e6 compress_tar: 'zst' targets: nightly: ===================================== rbm.conf ===================================== @@ -74,13 +74,13 @@ buildconf: git_signtag_opt: '-s' var: - torbrowser_version: '15.0a4' + torbrowser_version: '15.0' torbrowser_build: 'build1' # This should be the date of when the build is started. For the build # to be reproducible, browser_release_date should always be in the past. - browser_release_date: '2025/10/15 18:00:00' + browser_release_date: '2025/10/20 17:00:00' browser_release_date_timestamp: '[% USE date; date.format(c("var/browser_release_date"), "%s") %]' - browser_default_channel: alpha + browser_default_channel: release browser_platforms: android-armv7: '[% c("var/browser_platforms/is_android_release") %]' android-x86: '[% c("var/browser_platforms/is_android_release") %]' @@ -128,13 +128,13 @@ var: updater_enabled: 1 build_mar: 1 torbrowser_incremental_from: - - 15.0a3 - - 15.0a2 - - 15.0a1 + - 14.5.8 + - 14.5.7 + - 14.5.6 mar_channel_id: '[% c("var/projectname") %]-torproject-[% c("var/channel") %]' -# torbrowser_legacy_version: 13.5.22 -# torbrowser_legacy_platform_version: 115.28.0 + torbrowser_legacy_version: 13.5.23 + torbrowser_legacy_platform_version: 115.29.0 # By default, we sort the list of installed packages. This allows sharing # containers with identical list of packages, even if they are not listed View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/8… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/8… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser] Pushed new tag mullvad-browser-140.4.0esr-15.0-1-build3
by morgan (＠morgan) 21 Oct '25

21 Oct '25

morgan pushed new tag mullvad-browser-140.4.0esr-15.0-1-build3 at The Tor Project / Applications / Mullvad Browser -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/tree/mullv… You're receiving this email because of your account on gitlab.torproject.org.

1 0