- tbb-commits - lists.torproject.org

[Git][tpo/applications/tor-browser-build][main] MB 479 - Bump mingw to tip and update headers patch
by Pier Angelo Vendrame (＠pierov) 09 Dec '25

09 Dec '25

Pier Angelo Vendrame pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: 8282e5fd by june wilde at 2025-12-09T18:09:17+01:00 MB 479 - Bump mingw to tip and update headers patch - - - - - 2 changed files: - projects/mingw-w64-clang/config - projects/mingw-w64-clang/mingw-webrtc.patch Changes: ===================================== projects/mingw-w64-clang/config ===================================== @@ -1,7 +1,7 @@ # vim: filetype=yaml sw=2 filename: '[% project %]-[% c("version") %]-[% pc("llvm-project", "version") %]-[% c("var/build_id") %].tar.[% c("compress_tar") %]' git_url: https://git.code.sf.net/p/mingw-w64/mingw-w64 -git_hash: 287a0d4d478e3575d082ba37ce4dcba86524fc9e +git_hash: 59830ec1d93be038ffe883b69229753bb18ff59e version: '[% c("abbrev") %]' container: use_container: 1 ===================================== projects/mingw-w64-clang/mingw-webrtc.patch ===================================== @@ -189,16 +189,16 @@ index 07cedbe4e..4adf5772c 100644 --- a/mingw-w64-headers/include/wrl/client.h +++ b/mingw-w64-headers/include/wrl/client.h @@ -9,12 +9,15 @@ - + #include <cstddef> #include <unknwn.h> -/* #include <weakreference.h> */ +#include <weakreference.h> #include <roapi.h> - + /* #include <wrl/def.h> */ #include <wrl/internal.h> - + +#define WrlFinal final +#define WrlSealed sealed + @@ -581,10 +581,10 @@ index 000000000..2e883e241 +#endif diff --git a/mingw-w64-headers/include/wrl/implements.h b/mingw-w64-headers/include/wrl/implements.h new file mode 100644 -index 000000000..9d5fe962f +index 000000000..c8261e55a --- /dev/null +++ b/mingw-w64-headers/include/wrl/implements.h -@@ -0,0 +1,619 @@ +@@ -0,0 +1,627 @@ +#ifndef _WRL_IMPLEMENTS_H_ +#define _WRL_IMPLEMENTS_H_ + @@ -631,6 +631,11 @@ index 000000000..9d5fe962f + + class Nil {}; + ++ template <typename T, typename ...TArgs> ++ ComPtr<T> Make(TArgs&&... args) { ++ return nullptr; ++ } ++ + class DontUseNewUseMake { + private: + void* operator new(size_t) throw() { @@ -1198,6 +1203,9 @@ index 000000000..9d5fe962f + + typedef RuntimeClass RuntimeClassT; + }; ++ ++ using Details::Make; ++ + } +} + @@ -1211,11 +1219,11 @@ index 715ef74e3..dffa7153d 100644 @@ -7,6 +7,8 @@ #ifndef _WRL_INTERNAL_H_ #define _WRL_INTERNAL_H_ - + +#define __WRL_IMPLEMENTS_FTM_BASE__(flags) (false) + #include <windows.h> - + namespace Microsoft { @@ -29,6 +31,26 @@ namespace Microsoft { struct EnableIf<true, T> { @@ -1250,7 +1258,7 @@ index 182d4b063..6d42fb341 100644 +++ b/mingw-w64-headers/include/wrl/wrappers/corewrappers.h @@ -24,6 +24,129 @@ namespace Microsoft { } - + namespace Wrappers { + namespace HandleTraits { + struct SRWLockSharedTraits { View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/8… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/8… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] 5 commits: Bug 41485: Add a script to retrieve gradle dependencies.
by Pier Angelo Vendrame (＠pierov) 09 Dec '25

09 Dec '25

Pier Angelo Vendrame pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: 4be76d68 by Beatriz Rizental at 2025-12-09T17:27:56+01:00 Bug 41485: Add a script to retrieve gradle dependencies. - - - - - 5bbb5bef by Pier Angelo Vendrame at 2025-12-09T17:29:02+01:00 Bug 41485: Automate the Gradle deps update (Glean). - - - - - 0e05b1e9 by Pier Angelo Vendrame at 2025-12-09T17:29:24+01:00 Bug 41485: Automate the Gradle deps update (Application Services). - - - - - 09f06adb by Pier Angelo Vendrame at 2025-12-09T17:29:42+01:00 Bug 41485: Automate the Gradle deps update (GeckoView). - - - - - 40f3459b by Pier Angelo Vendrame at 2025-12-09T17:35:18+01:00 Bug 41485: Documentation for the Gradle deps process. - - - - - 12 changed files: - − doc/how-to-create-gradle-dependencies-list.txt - + doc/how-to-update-gradle-dependencies-list.md - projects/application-services/build - projects/application-services/config - + projects/common/gen-gradle-deps-file.py - − projects/common/gen_gradle_deps_file.sh - projects/geckoview/build - projects/geckoview/build_ac_fenix - projects/geckoview/build_common - projects/geckoview/config - projects/glean/build - projects/glean/config Changes: ===================================== doc/how-to-create-gradle-dependencies-list.txt deleted ===================================== @@ -1,48 +0,0 @@ -### Updating Gradle Dependencies -If additional Android dependencies are required by the project's build, then -the Gradle build will fail due to missing dependencies. To find out what the -missing dependencies are take the following steps. - -1) Updating gradle dependencies for `application-services` - -The following makefile rules can be used: - - make get_gradle_dependencies_list-application-services - -which should create the gradle-dependencies-list.txt files in the -corresponding out/$project directory, using nightly's branch. - - -2) Updating gradle dependencies for `geckoview` - -The `geckoview` project doesn't have (yet) a makefile rule to generate the -gradle-dependencies-list.txt file, so a few more steps are needed. - -For the geckoview project, comment out the following line in the project's -build_common file: - - export GRADLE_MAVEN_REPOSITORIES="file://$gradle_repo","file://$gradle_repo/maven2" - -Also modify the gradle flags to include the debug option so the download logs will show up: - - export GRADLE_FLAGS="--no-daemon --debug" - -Otherwise, when calling gradle in the project's build script replace the -`--offline` flag with `--debug` and remove any `-Dmaven.repo.local` arguments. - -Finally, allow network access during the build by setting -`container/disable_network/build` to `0` in rbm.conf, and rerun the build. - -Dependent artifacts will show up as downloads in the logs. You can pull out -these dependencies into a list by passing the log file to the gradle dependency -list script in the projects/common directory: - -`projects/common/gen_gradle_deps_file.sh /path/to/log/file` - - -3) Copying the resulting `gradle-dependencies-list.txt` - -Copy the resulting `gradle-dependencies-list.txt` (from step 1. or 2.) -over the one in the respective project. Then, in the project's config -file, increment the `var/gradle_dependencies_version` and make sure to -restore the project's build file back to original if you modified it. ===================================== doc/how-to-update-gradle-dependencies-list.md ===================================== @@ -0,0 +1,99 @@ +# Gradle Dependencies + +## TL; DR + +1. Open `projects/<project name>/config`. +2. Look for `# generate_gradle_dependencies_list: 1` and uncomment it. +3. Run `rbm/rbm build <project name> --target nightly --target torbrowser-android-<arch>`. + For GeckoView, make sure to run a single-arch build to catch all dependencies + at once. + Testbuilds (i.e., `make torbrowser-testbuild-android-<arch>`) are single-arch + by default, but you can also set `var/android_single_arch`. +4. Find the corresponding output: `ls -lt out/<project name> | head`. +5. Extract it. +6. Move the `gradle-dependencies-list.txt` you just extracted to + `projects/<project name>/`. +7. Bump `var/gradle_dependencies_version`. + The preferred format is `<project version>-<list version>`. + +Theoretically, it should be also possible to set +`generate_gradle_dependencies_list: 1` in `rbm.local.conf`, run a full build and +update all dependencies at once. + +## Rationale + +Many of our Android projects use Gradle to build, which also handles +dependencies. + +For reproducibility purposes, we need to stabilize them, so we version a list of +dependencies that are known for working in a file called +`gradle-dependencies-list.txt`. + +This file has a simple format: + +``` +# Lines starting with '#' are comments +<sha265> | <URL> +``` + +In addition to guaranteeing reproducibility, this makes sure we do not get +poisoned dependencies in subsequent builds. + +## Creating and/or updating the list + +Gradle does not have official tooling to create such lists. + +Instead, we pass `--info` to make sure Gradle logs information about downloads. +Therefore, these logs need to be captured to a file. Most commonly, Gradle is +invoked directly and in that case appending something like +`2>&1 | tee -a gradle-output.log` to the command line is enough. + +After that, we parse the logs with the `projects/common/gen-gradle-deps-file.py` +script: + +```shell +gen-gradle-deps-file.py gradle-output.log +``` + +This generates a new `gradle-dependencies-list.txt`. + +This procedure can be run outside a tor-browser-build container, but for best compatibility, +it should run inside it. + +Most of our Android projects have been equipped with a flag +(`var/generate_gradle_dependencies_list`) to do this automatically. + +Therefore, it is possible to just enable this flag, and grab an updated file +from the output artifact. + +New Android projects should be setup to do this. + +> **Important**: dependencies are keyed and cached. So, after updating the list, +> you must also bump `var/gradle_dependencies_version`. + +This used to be an integer, but to avoid clashes between the main and +maintenance branches, we decided to switch to a +`<project version>-<list version>` format. +Usually, the list version will be `1`. + +## Consuming the list + +`projects/common/fetch-gradle-dependencies` is the consumer of the list. + +It ignores the hash of the `.pom` files, as they might change, but it checks the +hashes of all the other artifacts. + +You can wire it in your project with code that looks like this: + +```yaml +- filename: 'gradle-dependencies-[% c("var/gradle_dependencies_version") %]' + name: gradle-dependencies + exec: '[% INCLUDE "fetch-gradle-dependencies" %]' + enable: '[% !c("var/generate_gradle_dependencies_list") %]' +``` + +Then, you will have to patch your project to look for offline dependencies, too. +But this is project-specific. + +Generally speaking, you will have to add a `mavenLocal()` entry to the +`repositories` section in some `build.gradle` file. ===================================== projects/application-services/build ===================================== @@ -24,7 +24,7 @@ export JAVA_HOME=/usr/lib/jvm/java-1.17.0-openjdk-amd64 [% INCLUDE 'fake-git' %] -[% IF !c('var/fetch_gradle_dependencies') %] +[% IF !c('var/generate_gradle_dependencies_list') -%] tar -xf [% c('input_files_by_name/glean') %] gradle_repo=/var/tmp/dist/gradle-dependencies @@ -33,7 +33,7 @@ export JAVA_HOME=/usr/lib/jvm/java-1.17.0-openjdk-amd64 cp -rl $gradle_repo/dl/android/maven2/* $gradle_repo || true cp -rl $gradle_repo/m2/* $gradle_repo || true cp -rl $gradle_repo/maven2/* $gradle_repo || true -[% END %] +[% END -%] tar -C /var/tmp/build -xf [% project %]-[% c('version') %].tar.[% c('compress_tar') %] @@ -41,24 +41,26 @@ mv /var/tmp/build/[% project %]-[% c('version') %] $builddir cd $builddir -# Prepare the offline build. +[% IF !c('var/generate_gradle_dependencies_list') -%] + # Prepare the offline build. -tar -xf $rootdir/[% c('input_files_by_name/glean-wheels') %] -export GLEAN_PYTHON_WHEELS_DIR=$builddir/glean-wheels -# Setting GLEAN_PYTHON_WHEELS_DIR is not enough: a Rust build script will still -# try to install Glean with pip. -cat > $rootdir/pip.conf << 'EOF' + tar -xf $rootdir/[% c('input_files_by_name/glean-wheels') %] + export GLEAN_PYTHON_WHEELS_DIR=$builddir/glean-wheels + # Setting GLEAN_PYTHON_WHEELS_DIR is not enough: a Rust build script will + # still try to install Glean with pip. + cat > $rootdir/pip.conf << 'EOF' [global] find-links = /var/tmp/build/application-services/glean-wheels index-url = no-index = yes EOF -export PIP_CONFIG_FILE=$rootdir/pip.conf -# Move the directory for hardcoding the path in .cargo/config. -tar -C $builddir -xf $rootdir/[% c('input_files_by_name/cargo_vendor') %] -# Make sure our vendored crates are used for offline builds. -cat vendor/cargo-config.toml >> .cargo/config.toml -rm vendor/cargo-config.toml + export PIP_CONFIG_FILE=$rootdir/pip.conf + # Move the directory for hardcoding the path in .cargo/config. + tar -C $builddir -xf $rootdir/[% c('input_files_by_name/cargo_vendor') %] + # Make sure our vendored crates are used for offline builds. + cat vendor/cargo-config.toml >> .cargo/config.toml + rm vendor/cargo-config.toml +[% END -%] tar -xf $rootdir/[% c('input_files_by_name/uniffi-rs') %] @@ -68,30 +70,33 @@ ln -s $rootdir/[% c("input_files_by_name/nss") %] ./ ./build-all.sh android popd -[% IF c('var/fetch_gradle_dependencies') %] - # XXX: `assemble` is still not enough to see all fetched dependencies via - # Gradle's --debug. See: tor-browser-build#40056. - gradle --debug --no-daemon assemble > gradle.log 2>&1 || ( cat gradle.log; exit 1 ) - $rootdir/gen_gradle_deps_file.sh gradle.log - mv gradle-dependencies-list.txt '[% dest_dir _ "/" _ c("filename") %]' -[% ELSE %] - # We need to set `LC_ALL` and `LANG` to something that is not ASCII as encoding - # otherwise `click` barfs. See: https://click.palletsprojects.com/python3/ - export LC_ALL=C.UTF-8 - export LANG=C.UTF-8 - gradle_flags="--offline --no-daemon -PuniffiBindgenNoop=$builddir/uniffi-rs/uniffi-bindgen -PgradleDependenciesUrl=file:///var/tmp/dist/gradle-dependencies" - gradle $gradle_flags assembleRelease - gradle $gradle_flags publish - mv build/maven $distdir - - pushd components/support/nimbus-fml - cargo build --release - popd - cp target/release/nimbus-fml $distdir - - cd /var/tmp/dist - [% c('tar', { - tar_src => [ project ], - tar_args => '-caf ' _ dest_dir _ '/' _ c('filename'), +# We need to set `LC_ALL` and `LANG` to something that is not ASCII as encoding +# otherwise `click` barfs. See: https://click.palletsprojects.com/python3/ +export LC_ALL=C.UTF-8 +export LANG=C.UTF-8 +[% IF !c('var/generate_gradle_dependencies_list') -%] + deps_flags="--offline -PgradleDependenciesUrl=file:///var/tmp/dist/gradle-dependencies" +[% ELSE -%] + deps_flags="--info" + gradle_logs=/var/tmp/build/gradle-logs.log +[% END -%] +gradle_flags="$deps_flags --no-daemon -PuniffiBindgenNoop=$builddir/uniffi-rs/uniffi-bindgen" +gradle $gradle_flags assembleRelease [% IF c('var/generate_gradle_dependencies_list') %]2>&1 | tee -a $gradle_logs[% END %] +gradle $gradle_flags publish +mv build/maven $distdir + +pushd components/support/nimbus-fml +cargo build --release +popd +cp target/release/nimbus-fml $distdir + +[% IF c('var/generate_gradle_dependencies_list') -%] + cd $distdir + $rootdir/gen-gradle-deps-file.py $gradle_logs +[% END -%] + +cd /var/tmp/dist +[% c('tar', { + tar_src => [ project ], + tar_args => '-caf ' _ dest_dir _ '/' _ c('filename'), }) %] -[% END %] ===================================== projects/application-services/config ===================================== @@ -14,6 +14,8 @@ gpg_keyring: git_submodule: 1 container: use_container: 1 + disable_network: + build: '[% !c("var/generate_gradle_dependencies_list") %]' var: build_number: 1 @@ -23,6 +25,9 @@ var: nss_version: '3.117' nspr_version: '4.37' cargo_vendor_include_config: 1 + # Uncomment this to run an online build to grab an updated + # gradle-dependencies-list.txt. + # generate_gradle_dependencies_list: 1 targets: nightly: @@ -61,7 +66,7 @@ steps: - project: glean name: glean pkg_type: build - enable: '[% !c("var/fetch_gradle_dependencies") %]' + enable: '[% !c("var/generate_gradle_dependencies_list") %]' # Only Application Services currently requires build tools 35. # So, download them only here, rather than adding them to the shared # toolchain. @@ -75,28 +80,22 @@ steps: - filename: 'gradle-dependencies-[% c("var/gradle_dependencies_version") %]' name: gradle-dependencies exec: '[% INCLUDE "fetch-gradle-dependencies" %]' - enable: '[% !c("var/fetch_gradle_dependencies") %]' + enable: '[% !c("var/generate_gradle_dependencies_list") %]' - URL: '[% pc("glean-parser", "var/glean_wheels_url") %]' name: glean-wheels sha256sum: '[% pc("glean-parser", "var/glean_wheels_sha256sum") %]' - enable: '[% !c("var/fetch_gradle_dependencies") %]' + enable: '[% !c("var/generate_gradle_dependencies_list") %]' - name: cargo_vendor project: application-services pkg_type: cargo_vendor norec: sha256sum: 8a93a189985ad28c334970dc5ab386c81d4a415f3777c2941248f836f4af44fd - enable: '[% !c("var/fetch_gradle_dependencies") %]' - - filename: gen_gradle_deps_file.sh - enable: '[% c("var/fetch_gradle_dependencies") %]' + enable: '[% !c("var/generate_gradle_dependencies_list") %]' + - filename: gen-gradle-deps-file.py + enable: '[% c("var/generate_gradle_dependencies_list") %]' list_toolchain_updates: git_hash: 'v[% c("version") %]' input_files: [] container: use_container: 0 - - get_gradle_dependencies_list: - filename: 'gradle-dependencies-list-[% c("version") %].txt' - get_gradle_dependencies_list: '[% INCLUDE build %]' - var: - fetch_gradle_dependencies: 1 ===================================== projects/common/gen-gradle-deps-file.py ===================================== @@ -0,0 +1,127 @@ +#!/usr/bin/env python3 + +import argparse +import hashlib +import re +import sys +import urllib.request +from concurrent.futures import ThreadPoolExecutor, as_completed + + +def download_and_hash(url): + try: + sha256_hash = hashlib.sha256() + with urllib.request.urlopen(url) as f: + sha256_hash.update(f.read()) + return url, sha256_hash.hexdigest(), None + except Exception as e: + return url, None, str(e) + + +def parse_arguments(): + parser = argparse.ArgumentParser( + description=""" +This script generates a `gradle-dependencies-list.txt` file as expected by +Tor Browser Build to download dependencies for offline builds. + +It parses a log file from a Gradle build, determines which dependencies were +downloaded and from where, re-downloads them, and calculates their SHA256 hash. +Downloads are parallelized — by default, 4 workers are used, but this can be +configured via the optional `--workers` argument. + +--- + +Usage: + +First, run the exact Gradle command that will be used inside the offline +tor-browser-build container. Make sure to set the log level to `info` and +capture the full output to a log file. + +`--refresh-dependencies` can be pass to Gradle to force all dependencies to be +re-downloaded if needed (e.g., if running this script outside containers or +outside tor-browser-build). + +Example: + + ./gradlew --info clean assembleRelease 2>&1 | tee -a out.log + +Then run this script with the generated log: + + ./gen-gradle-deps-file.py out.log + +This will create a `gradle-dependencies-list.txt` file in the current +directory. +""", + formatter_class=argparse.RawDescriptionHelpFormatter, + ) + + parser.add_argument( + "log_file", help="Path to the Gradle log file (e.g., out.log)" + ) + parser.add_argument( + "--workers", + type=int, + default=4, + help="Number of parallel download workers (default: 4).", + ) + parser.add_argument( + "--output", + default="gradle-dependencies-list.txt", + help="Output file path (default: gradle-dependencies-list.txt).", + ) + + return parser.parse_args() + + +def extract_urls(log_file): + pattern = re.compile(rf"Downloading (https://\S+) to ") + urls = [] + with open(log_file, "r") as file: + for line in file: + match = pattern.search(line.strip()) + if match: + urls.append(match.group(1)) + return urls + + +def main(): + args = parse_arguments() + + urls = extract_urls(args.log_file) + if not urls: + print("⚠️ No matching download lines found in the log file.") + return + + print( + f"🔍 Found {len(urls)} URLs. Starting downloads using {args.workers} workers...\n" + ) + + results = [] + with ThreadPoolExecutor(max_workers=args.workers) as executor: + futures = { + executor.submit(download_and_hash, url): url for url in urls + } + for future in as_completed(futures): + url, sha256, error = future.result() + if error: + print(f"[ERROR] {url}\n Reason: {error}") + else: + print(f"[OK] {url}\n SHA256: {sha256}") + results.append((sha256, url)) + + if results: + with open(args.output, "w") as out_file: + out_file.write( + "# Don't forget to update var/gradle_dependencies_version when modifying this file\n" + ) + out_file.write("sha256sum | url\n") + for sha256, url in sorted(results, key=lambda x: x[1]): + out_file.write(f"{sha256} | {url}\n") + print(f"\n✅ {len(urls)} dependencies written to: {args.output}") + else: + print("\n⚠️ No successful downloads to write.") + sys.exit(1) + + +if __name__ == "__main__": + main() ===================================== projects/common/gen_gradle_deps_file.sh deleted ===================================== @@ -1,93 +0,0 @@ -#!/bin/bash - -# Copyright (c) 2020, The Tor Project, Inc. -# -# Redistribution and use in source and binary forms, with or without -# modification, are permitted provided that the following conditions are -# met: -# -# * Redistributions of source code must retain the above copyright -# notice, this list of conditions and the following disclaimer. -# -# * Redistributions in binary form must reproduce the above -# copyright notice, this list of conditions and the following disclaimer -# in the documentation and/or other materials provided with the -# distribution. -# -# * Neither the names of the copyright owners nor the names of its -# contributors may be used to endorse or promote products derived from -# this software without specific prior written permission. -# -# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS -# "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT -# LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR -# A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT -# OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, -# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT -# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, -# DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY -# THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT -# (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE -# OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. - -# Usage: -# 1) Point to a log file with all the dependency download attempts (for its -# generation see: doc/how-to-create-gradle-dependencies-list.txt) -# 2) Double-check that you get the same SHA-256 sums when downloaded from a -# different network location. E.g. by using `torsocks` with this script after -# having made a copy of `gradle-dependencies-list.txt` from 1) and comparing -# the two .txt files. - -export LC_ALL=C -log="$1" - -# Step 1: Extract all the download attempts out of the log file, ignore the ones -# for maven-metadata.xml and module files. We don't need those. -cat $log | grep "Performing HTTP" | grep -o "https://.*" | \ - grep -vE "\.module|maven-metadata\.xml" | sort | uniq > dl-attempts - -# Step 2: Fetch all the dependencies and calculate the SHA-256 sum -declare -A URLs -function dl_url { - local url="$1" - test -n "${URLs[$url]}" && return 0 - URLs[$url]=1 - wget -U "" $url - test $? -eq 0 || return 1 - local fn=$(basename "$url") - local sha256=`sha256sum $fn | cut -d ' ' -f 1` - echo "$sha256 | $url" >> deps - rm $fn -} - -while read line -do - dl_url "$line" - # If we downloaded a .pom file, also try to get corresponding .jar and - # .aar files - bname=$(basename "$line" .pom) - dname=$(dirname "$line") - if test "$line" != "$dname/$bname" - then - dl_url "$dname/$bname.aar" - dl_url "$dname/$bname.jar" - fi -done < dl-attempts - -# Step 3: Add the header at the beginning of the final dependency file. -echo "# On how to update dependencies see doc/how-to-create-gradle\ --dependencies-list.txt" > gradle-dependencies-list.txt -echo "# Don't forget to update var/gradle_dependencies_version when modifying \ -this file" >> gradle-dependencies-list.txt -echo "sha256sum | url" >> gradle-dependencies-list.txt - -# Step 4: Keep only successfully downloaded artifacts, remove duplicates, and -# sort based on download URL. -grep ^[a-f0-9] deps | rev | sort -t/ -u -k1,4 | rev | \ - sort -k 3 >> gradle-dependencies-list.txt - -# Step 5: Clean up -rm dl-attempts -rm deps - -exit 0 ===================================== projects/geckoview/build ===================================== @@ -23,7 +23,7 @@ echo "Starting ./mach configure $(date)" [% IF !c("var/rlbox") -%]--without-wasm-sandboxed-libraries[% END %] echo "Starting ./mach build $(date)" -./mach build --verbose +./mach build --verbose [% IF c('var/generate_gradle_dependencies_list') %]2>&1 | tee -a $gradle_logs[% END %] [% IF c("var/dev_artifacts") -%] echo "Building development artifacts" @@ -50,6 +50,11 @@ echo "Build finished, copying the AAR to the to the destination directory $(date [% IF !c("var/android_single_arch") -%] mkdir -p "$outdir/[% project %]" cp obj-*/gradle/target.maven.zip $outdir/[% project %]/ + + [% IF c('var/generate_gradle_dependencies_list') -%] + cd $outdir/[% project %] + $rootdir/gen-gradle-deps-file.py $gradle_logs + [% END -%] [% ELSE -%] [% INCLUDE 'build_ac_fenix' %] [% END -%] ===================================== projects/geckoview/build_ac_fenix ===================================== @@ -8,7 +8,7 @@ objdir=$(cd obj-* && pwd) echo "Building Android Components $(date)" pushd mobile/android/android-components -gradle $GRADLE_FLAGS assembleGecko -x lint +gradle $GRADLE_FLAGS assembleGecko -x lint [% IF c('var/generate_gradle_dependencies_list') %]2>&1 | tee -a $gradle_logs[% END %] popd # The build might fail with "file exists" otherwise. @@ -36,7 +36,7 @@ variant='[% c("var/variant") %]' version_name="[% c('var/torbrowser_version') %] ([% c('var/geckoview_version') %])" echo "Building $variant Fenix APK" -gradle $GRADLE_FLAGS -PversionName="$version_name" "assemble$variant" +gradle $GRADLE_FLAGS -PversionName="$version_name" "assemble$variant" [% IF c('var/generate_gradle_dependencies_list') %]2>&1 | tee -a $gradle_logs[% END %] echo "Build finished, copying the APK(s) to the destination directory $(date)" mkdir -p $outdir/[% project %] @@ -46,7 +46,7 @@ echo "Building non optimized $variant Fenix APK for testing" gradle $GRADLE_FLAGS -PversionName="$version_name" -PdisableOptimization "assemble$variant" echo "Building Fenix instrumentation tests" -gradle $GRADLE_FLAGS -PversionName="$version_name" -PtestBuildType="$variant" -PdisableOptimization assembleAndroidTest +gradle $GRADLE_FLAGS -PversionName="$version_name" -PtestBuildType="$variant" -PdisableOptimization assembleAndroidTest [% IF c('var/generate_gradle_dependencies_list') %]2>&1 | tee -a $gradle_logs[% END %] echo "Test build finished, copying the APKs to the destination directory $(date)" @@ -55,3 +55,8 @@ mv $objdir/gradle/build/mobile/android/fenix/app/outputs/apk/fenix/$variant/*.ap mv $objdir/gradle/build/mobile/android/fenix/app/outputs/apk/androidTest/fenix/$variant/*.apk $outdir/[% project %]/tests popd + +[% IF c('var/generate_gradle_dependencies_list') -%] + cd $outdir/[% project %] + $rootdir/gen-gradle-deps-file.py $gradle_logs +[% END -%] ===================================== projects/geckoview/build_common ===================================== @@ -14,8 +14,6 @@ export PATH="/var/tmp/dist/node/bin:$PATH" export LC_ALL=C.UTF-8 export LANG=C.UTF-8 -tar -xf [% c('input_files_by_name/glean') %] - export TOR_EXPERT_BUNDLE_AAR=$rootdir/[% c('input_files_by_name/tor-expert-bundle-aar') %]/tor-expert-bundle.aar tar -C /var/tmp/dist -xf [% c('input_files_by_name/application-services') %] @@ -29,25 +27,34 @@ tar -C /var/tmp/build -xf [% project %]-[% c('version') %].tar.[% c('compress_ta [% c("var/set_MOZ_BUILD_DATE") %] export JAVA_HOME=/usr/lib/jvm/java-1.17.0-openjdk-amd64 -gradle_repo=/var/tmp/dist/gradle-dependencies -export GRADLE_MAVEN_REPOSITORIES="file://$gradle_repo","file://$gradle_repo/maven2" -# Set the Maven local repository because Gradle ignores our overriding of $HOME. -# It is only used for the local pubblication of single-arch AARs. -export GRADLE_FLAGS="--no-daemon --offline -Dmaven.repo.local=$distdir/[% project %]" -# Move the Gradle repo to a hard-coded location. The location is embedded in -# the file chrome/toolkit/content/global/buildconfig.html so it needs to be -# standardized for reproducibility. -mv $rootdir/[% c('input_files_by_name/gradle-dependencies') %] $gradle_repo -cp -rl $rootdir/glean/maven/* $gradle_repo -cp -rl $gradle_repo/dl/android/maven2/* $gradle_repo || true -cp -rl $gradle_repo/m2/* $gradle_repo || true -cp -rl $gradle_repo/maven2/* $gradle_repo || true - -tar -xf [% c('input_files_by_name/glean-wheels') %] -export GLEAN_PYTHON_WHEELS_DIR=$rootdir/glean-wheels - -tar -xf [% c('input_files_by_name/oss-licenses-plugin') %] -cp -rl oss-licenses-plugin/. $gradle_repo + +[% IF !c('var/generate_gradle_dependencies_list') -%] + gradle_repo=/var/tmp/dist/gradle-dependencies + export GRADLE_MAVEN_REPOSITORIES="file://$gradle_repo","file://$gradle_repo/maven2" + # Set the Maven local repository because Gradle ignores our overriding of $HOME. + # It is only used for the local pubblication of single-arch AARs. + export GRADLE_FLAGS="--no-daemon --offline -Dmaven.repo.local=$distdir/[% project %]" + # Move the Gradle repo to a hard-coded location. The location is embedded in + # the file chrome/toolkit/content/global/buildconfig.html so it needs to be + # standardized for reproducibility. + mv $rootdir/[% c('input_files_by_name/gradle-dependencies') %] $gradle_repo + + tar -xf [% c('input_files_by_name/glean') %] + cp -rl $rootdir/glean/maven/* $gradle_repo + + cp -rl $gradle_repo/dl/android/maven2/* $gradle_repo || true + cp -rl $gradle_repo/m2/* $gradle_repo || true + cp -rl $gradle_repo/maven2/* $gradle_repo || true + + tar -xf [% c('input_files_by_name/glean-wheels') %] + export GLEAN_PYTHON_WHEELS_DIR=$rootdir/glean-wheels + + tar -xf [% c('input_files_by_name/oss-licenses-plugin') %] + cp -rl oss-licenses-plugin/. $gradle_repo +[% ELSE -%] + gradle_logs=/var/tmp/build/gradle-logs.log + export GRADLE_FLAGS="--no-daemon --info" +[% END -%] # We unbreak mach, see: https://bugzilla.mozilla.org/show_bug.cgi?id=1656993. export MACH_BUILD_PYTHON_NATIVE_PACKAGE_SOURCE=system ===================================== projects/geckoview/config ===================================== @@ -48,6 +48,9 @@ var: has_l10n: '[% !c("var/testbuild") && !c("var/locales").empty %]' l10n-changesets: '[% exec("git --no-pager show " _ c("git_hash") _ ":browser/locales/l10n-changesets.json", { exec_noco => 1 }) %]' mozconfig_file: 'mozconfig-[% c("var/osname") %]' + # Uncomment this to run an online build to grab an updated + # gradle-dependencies-list.txt. + # generate_gradle_dependencies_list: 1 targets: release: @@ -87,9 +90,11 @@ steps: - project: glean name: glean pkg_type: build + enable: '[% !c("var/generate_gradle_dependencies_list") %]' - filename: 'gradle-dependencies-[% c("var/gradle_dependencies_version") %]' name: gradle-dependencies exec: '[% INCLUDE "fetch-gradle-dependencies" %]' + enable: '[% !c("var/generate_gradle_dependencies_list") %]' - name: geckoview_armv7 project: geckoview pkg_type: build @@ -123,15 +128,19 @@ steps: - URL: '[% pc("glean-parser", "var/glean_wheels_url") %]' name: glean-wheels sha256sum: '[% pc("glean-parser", "var/glean_wheels_sha256sum") %]' + enable: '[% !c("var/generate_gradle_dependencies_list") %]' - name: tor-expert-bundle-aar project: tor-expert-bundle-aar pkg_type: build - project: oss-licenses-plugin name: oss-licenses-plugin pkg_type: build + enable: '[% !c("var/generate_gradle_dependencies_list") %]' - URL: 'https://github.com/google/bundletool/releases/download/[% c("var/bundletool_version") %]/bundletool-all-[% c("var/bundletool_version") %].jar' name: bundletool sha256sum: '[% c("var/bundletool_hash") %]' + - filename: gen-gradle-deps-file.py + enable: '[% c("var/generate_gradle_dependencies_list") %]' list_toolchain_updates: git_hash: FIREFOX_NIGHTLY_146_END @@ -167,14 +176,15 @@ input_files: - filename: 'gradle-dependencies-[% c("var/gradle_dependencies_version") %]' name: gradle-dependencies exec: '[% INCLUDE "fetch-gradle-dependencies" %]' + enable: '[% !c("var/generate_gradle_dependencies_list") %]' - URL: '[% pc("glean-parser", "var/glean_wheels_url") %]' name: glean-wheels sha256sum: '[% pc("glean-parser", "var/glean_wheels_sha256sum") %]' - project: glean name: glean - pkg_type: build - project: oss-licenses-plugin name: oss-licenses-plugin + enable: '[% !c("var/generate_gradle_dependencies_list") %]' - name: tor-expert-bundle-aar project: tor-expert-bundle-aar - project: firefox-l10n @@ -192,3 +202,5 @@ input_files: - URL: 'https://github.com/google/bundletool/releases/download/[% c("var/bundletool_version") %]/bundletool-all-[% c("var/bundletool_version") %].jar' name: bundletool sha256sum: '[% c("var/bundletool_hash") %]' + - filename: gen-gradle-deps-file.py + enable: '[% c("var/generate_gradle_dependencies_list") %]' ===================================== projects/glean/build ===================================== @@ -28,7 +28,7 @@ export JAVA_HOME=/usr/lib/jvm/java-1.17.0-openjdk-amd64 [% INCLUDE 'fake-git' %] -[% IF !c('var/fetch_gradle_dependencies') %] +[% IF !c('var/generate_gradle_dependencies_list') -%] gradle_repo=/var/tmp/dist/gradle-dependencies mv $rootdir/[% c('input_files_by_name/gradle-dependencies') %] $gradle_repo cp -rl $gradle_repo/dl/android/maven2/* $gradle_repo || true @@ -42,23 +42,24 @@ mv /var/tmp/build/[% project %]-[% c('version') %] $builddir cd $builddir -# Prepare the offline build. - -tar -xf $rootdir/[% c('input_files_by_name/glean-wheels') %] -export GLEAN_PYTHON_WHEELS_DIR=$builddir/glean-wheels -# Setting GLEAN_PYTHON_WHEELS_DIR is not enough: a Rust build script will still -# try to install Glean with pip. +[% IF !c('var/generate_gradle_dependencies_list') -%] + # Prepare the offline build. + tar -xf $rootdir/[% c('input_files_by_name/glean-wheels') %] + export GLEAN_PYTHON_WHEELS_DIR=$builddir/glean-wheels + # Setting GLEAN_PYTHON_WHEELS_DIR is not enough: a Rust build script will still + # try to install Glean with pip. cat > $rootdir/pip.conf << 'EOF' [global] find-links = /var/tmp/build/glean/glean-wheels index-url = no-index = yes EOF -export PIP_CONFIG_FILE=$rootdir/pip.conf -# Move the directory for hardcoding the path in .cargo/config. -tar -C $builddir -xf $rootdir/[% c('input_files_by_name/cargo_vendor') %] -# Make sure our vendored crates are used for offline builds. -cat >> .cargo/config.toml << 'EOF' + + export PIP_CONFIG_FILE=$rootdir/pip.conf + # Move the directory for hardcoding the path in .cargo/config. + tar -C $builddir -xf $rootdir/[% c('input_files_by_name/cargo_vendor') %] + # Make sure our vendored crates are used for offline builds. + cat >> .cargo/config.toml << 'EOF' [source.crates-io] replace-with = "vendored-sources" @@ -70,16 +71,27 @@ directory = "/var/tmp/build/glean/vendor" offline=true EOF + deps_flags="--offline -PgradleDependenciesUrl=file:///var/tmp/dist/gradle-dependencies" +[% ELSE -%] + deps_flags="--info" + gradle_logs=/var/tmp/build/gradle-logs.log +[% END -%] + tar -xf $rootdir/[% c('input_files_by_name/uniffi-rs') %] patch -p1 < $rootdir/use-custom-gradle-repo.diff patch -p1 < $rootdir/use-uniffi-noop.diff -gradle_flags="--offline --no-daemon -PuniffiBindgenNoop=$builddir/uniffi-rs/uniffi-bindgen -PgradleDependenciesUrl=file:///var/tmp/dist/gradle-dependencies" -gradle $gradle_flags :glean:assembleRelease +gradle_flags="--no-daemon -PuniffiBindgenNoop=$builddir/uniffi-rs/uniffi-bindgen $deps_flags" +gradle $gradle_flags :glean:assembleRelease [% IF c('var/generate_gradle_dependencies_list') %]2>&1 | tee -a $gradle_logs[% END %] gradle $gradle_flags publish mv build/maven $distdir +[% IF c('var/generate_gradle_dependencies_list') -%] + cd $distdir + $rootdir/gen-gradle-deps-file.py $gradle_logs +[% END -%] + cd /var/tmp/dist [% c('tar', { tar_src => [ project ], ===================================== projects/glean/config ===================================== @@ -6,11 +6,16 @@ filename: '[% project %]-[% c("version") %]-[% c("var/build_id") %].tar.[% c("co version: 66.1.1 container: use_container: 1 + disable_network: + build: '[% !c("var/generate_gradle_dependencies_list") %]' var: # This should be updated when the list of gradle dependencies is changed. gradle_dependencies_version: 66.1.1-1 gradle_version: 8.14.3 + # Uncomment this to run an online build to grab an updated + # gradle-dependencies-list.txt. + # generate_gradle_dependencies_list: 1 steps: build: @@ -36,6 +41,7 @@ steps: - URL: '[% pc("glean-parser", "var/glean_wheels_url") %]' name: glean-wheels sha256sum: '[% pc("glean-parser", "var/glean_wheels_sha256sum") %]' + enable: '[% !c("var/generate_gradle_dependencies_list") %]' - name: cargo_vendor project: glean pkg_type: cargo_vendor @@ -44,5 +50,8 @@ steps: - filename: 'gradle-dependencies-[% c("var/gradle_dependencies_version") %]' name: gradle-dependencies exec: '[% INCLUDE "fetch-gradle-dependencies" %]' + enable: '[% !c("var/generate_gradle_dependencies_list") %]' + - filename: gen-gradle-deps-file.py + enable: '[% c("var/generate_gradle_dependencies_list") %]' - filename: use-custom-gradle-repo.diff - filename: use-uniffi-noop.diff View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/compare/… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/compare/… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-146.0a1-16.0-1] fixup! TB 40597: Implement TorSettings module
by morgan (＠morgan) 09 Dec '25

09 Dec '25

morgan pushed to branch tor-browser-146.0a1-16.0-1 at The Tor Project / Applications / Tor Browser Commits: bf585f79 by Morgan at 2025-12-09T12:11:40+00:00 fixup! TB 40597: Implement TorSettings module Bug 44418: Upldate built-in obfs4 bridges - - - - - 1 changed file: - toolkit/content/pt_config.json Changes: ===================================== toolkit/content/pt_config.json ===================================== @@ -1,5 +1,5 @@ { - "_comment": "Used for dev build, replaced for release builds in tor-browser-build. This file is copied from tor-browser-build 109be58b721fdd586ff1cff08a3af940765d6f6d:projects/tor-expert-bundle/pt_config.json", + "_comment": "Used for dev build, replaced for release builds in tor-browser-build. This file is copied from tor-browser-build cf5a3f623f94cf5bc093db61fe64f9b38b03fce0:projects/tor-expert-bundle/pt_config.json", "recommendedDefault" : "obfs4", "pluggableTransports" : { "lyrebird" : "ClientTransportPlugin meek_lite,obfs2,obfs3,obfs4,scramblesuit,webtunnel exec ${pt_path}lyrebird${pt_extension}", @@ -11,21 +11,18 @@ "meek_lite 192.0.2.20:80 url=https://1603026938.rsc.cdn77.org front=www.phpmyadmin.net utls=HelloRandomizedALPN" ], "obfs4" : [ - "obfs4 192.95.36.142:443 CDF2E852BF539B82BD10E27E9115A31734E378C2 cert=qUVQ0srL1JI/vO6V6m/24anYXiJD3QP2HgzUKQtQ7GRqqUvs7P+tG43RtAqdhLOALP7DJQ iat-mode=1", "obfs4 37.218.245.14:38224 D9A82D2F9C2F65A18407B1D2B764F130847F8B5D cert=bjRaMrr1BRiAW8IE9U5z27fQaYgOhX1UCmOpg2pFpoMvo6ZgQMzLsaTzzQNTlm7hNcb+Sg iat-mode=0", - "obfs4 85.31.186.98:443 011F2599C0E9B27EE74B353155E244813763C3E5 cert=ayq0XzCwhpdysn5o0EyDUbmSOx3X/oTEbzDMvczHOdBJKlvIdHHLJGkZARtT4dcBFArPPg iat-mode=0", - "obfs4 85.31.186.26:443 91A6354697E6B02A386312F68D82CF86824D3606 cert=PBwr+S8JTVZo6MPdHnkTwXJPILWADLqfMGoVvhZClMq/Urndyd42BwX9YFJHZnBB3H0XCw iat-mode=0", - "obfs4 193.11.166.194:27015 2D82C2E354D531A68469ADF7F878FA6060C6BACA cert=4TLQPJrTSaDffMK7Nbao6LC7G9OW/NHkUwIdjLSS3KYf0Nv4/nQiiI8dY2TcsQx01NniOg iat-mode=0", - "obfs4 193.11.166.194:27020 86AC7B8D430DAC4117E9F42C9EAED18133863AAF cert=0LDeJH4JzMDtkJJrFphJCiPqKx7loozKN7VNfuukMGfHO0Z8OGdzHVkhVAOfo1mUdv9cMg iat-mode=0", - "obfs4 193.11.166.194:27025 1AE2C08904527FEA90C4C4F8C1083EA59FBC6FAF cert=ItvYZzW5tn6v3G4UnQa6Qz04Npro6e81AP70YujmK/KXwDFPTs3aHXcHp4n8Vt6w/bv8cA iat-mode=0", "obfs4 209.148.46.65:443 74FAD13168806246602538555B5521A0383A1875 cert=ssH+9rP8dG2NLDN2XuFw63hIO/9MNNinLmxQDpVa+7kTOa9/m+tGWT1SmSYpQ9uTBGa6Hw iat-mode=0", "obfs4 146.57.248.225:22 10A6CD36A537FCE513A322361547444B393989F0 cert=K1gDtDAIcUfeLqbstggjIw2rtgIKqdIhUlHp82XRqNSq/mtAjp1BIC9vHKJ2FAEpGssTPw iat-mode=0", "obfs4 45.145.95.6:27015 C5B7CD6946FF10C5B3E89691A7D3F2C122D2117C cert=TD7PbUO0/0k6xYHMPW3vJxICfkMZNdkRrb63Zhl5j9dW3iRGiCx0A7mPhe5T2EDzQ35+Zw iat-mode=0", - "obfs4 51.222.13.177:80 5EDAC3B810E12B01F6FD8050D2FD3E277B289A08 cert=2uplIpLQ0q9+0qMFrK5pkaYRDOe460LL9WHBvatgkuRr/SL31wBOEupaMMJ6koRE6Ld0ew iat-mode=0" + "obfs4 51.222.13.177:80 5EDAC3B810E12B01F6FD8050D2FD3E277B289A08 cert=2uplIpLQ0q9+0qMFrK5pkaYRDOe460LL9WHBvatgkuRr/SL31wBOEupaMMJ6koRE6Ld0ew iat-mode=0", + "obfs4 212.83.43.95:443 BFE712113A72899AD685764B211FACD30FF52C31 cert=ayq0XzCwhpdysn5o0EyDUbmSOx3X/oTEbzDMvczHOdBJKlvIdHHLJGkZARtT4dcBFArPPg iat-mode=1", + "obfs4 212.83.43.74:443 39562501228A4D5E27FCA4C0C81A01EE23AE3EE4 cert=PBwr+S8JTVZo6MPdHnkTwXJPILWADLqfMGoVvhZClMq/Urndyd42BwX9YFJHZnBB3H0XCw iat-mode=1" ], "snowflake" : [ - "snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://voluble-torrone-fc39bf.netlify.app/ fronts=vuejs.org ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn", - "snowflake 192.0.2.4:80 8838024498816A039FCBBAB14E6F40A0843051FA fingerprint=8838024498816A039FCBBAB14E6F40A0843051FA url=https://voluble-torrone-fc39bf.netlify.app/ fronts=vuejs.org ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn" + "snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://1098762253.rsc.cdn77.org/ fronts=app.datapacket.com,www.datapacket.com ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn", + "snowflake 192.0.2.4:80 8838024498816A039FCBBAB14E6F40A0843051FA fingerprint=8838024498816A039FCBBAB14E6F40A0843051FA url=https://1098762253.rsc.cdn77.org/ fronts=app.datapacket.com,www.datapacket.com ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn" ] } } + View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/bf585f7… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/bf585f7… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][maint-13.5] Update builtin bridges
by morgan (＠morgan) 09 Dec '25

09 Dec '25

morgan pushed to branch maint-13.5 at The Tor Project / Applications / tor-browser-build Commits: 6243889a by meskio at 2025-12-09T11:59:23+00:00 Update builtin bridges Remove the failing ones and add two replacements. - - - - - 1 changed file: - projects/tor-expert-bundle/pt_config.json Changes: ===================================== projects/tor-expert-bundle/pt_config.json ===================================== @@ -10,17 +10,13 @@ "meek_lite 192.0.2.20:80 url=https://1603026938.rsc.cdn77.org front=www.phpmyadmin.net utls=HelloRandomizedALPN" ], "obfs4" : [ - "obfs4 192.95.36.142:443 CDF2E852BF539B82BD10E27E9115A31734E378C2 cert=qUVQ0srL1JI/vO6V6m/24anYXiJD3QP2HgzUKQtQ7GRqqUvs7P+tG43RtAqdhLOALP7DJQ iat-mode=1", "obfs4 37.218.245.14:38224 D9A82D2F9C2F65A18407B1D2B764F130847F8B5D cert=bjRaMrr1BRiAW8IE9U5z27fQaYgOhX1UCmOpg2pFpoMvo6ZgQMzLsaTzzQNTlm7hNcb+Sg iat-mode=0", - "obfs4 85.31.186.98:443 011F2599C0E9B27EE74B353155E244813763C3E5 cert=ayq0XzCwhpdysn5o0EyDUbmSOx3X/oTEbzDMvczHOdBJKlvIdHHLJGkZARtT4dcBFArPPg iat-mode=0", - "obfs4 85.31.186.26:443 91A6354697E6B02A386312F68D82CF86824D3606 cert=PBwr+S8JTVZo6MPdHnkTwXJPILWADLqfMGoVvhZClMq/Urndyd42BwX9YFJHZnBB3H0XCw iat-mode=0", - "obfs4 193.11.166.194:27015 2D82C2E354D531A68469ADF7F878FA6060C6BACA cert=4TLQPJrTSaDffMK7Nbao6LC7G9OW/NHkUwIdjLSS3KYf0Nv4/nQiiI8dY2TcsQx01NniOg iat-mode=0", - "obfs4 193.11.166.194:27020 86AC7B8D430DAC4117E9F42C9EAED18133863AAF cert=0LDeJH4JzMDtkJJrFphJCiPqKx7loozKN7VNfuukMGfHO0Z8OGdzHVkhVAOfo1mUdv9cMg iat-mode=0", - "obfs4 193.11.166.194:27025 1AE2C08904527FEA90C4C4F8C1083EA59FBC6FAF cert=ItvYZzW5tn6v3G4UnQa6Qz04Npro6e81AP70YujmK/KXwDFPTs3aHXcHp4n8Vt6w/bv8cA iat-mode=0", "obfs4 209.148.46.65:443 74FAD13168806246602538555B5521A0383A1875 cert=ssH+9rP8dG2NLDN2XuFw63hIO/9MNNinLmxQDpVa+7kTOa9/m+tGWT1SmSYpQ9uTBGa6Hw iat-mode=0", "obfs4 146.57.248.225:22 10A6CD36A537FCE513A322361547444B393989F0 cert=K1gDtDAIcUfeLqbstggjIw2rtgIKqdIhUlHp82XRqNSq/mtAjp1BIC9vHKJ2FAEpGssTPw iat-mode=0", "obfs4 45.145.95.6:27015 C5B7CD6946FF10C5B3E89691A7D3F2C122D2117C cert=TD7PbUO0/0k6xYHMPW3vJxICfkMZNdkRrb63Zhl5j9dW3iRGiCx0A7mPhe5T2EDzQ35+Zw iat-mode=0", - "obfs4 51.222.13.177:80 5EDAC3B810E12B01F6FD8050D2FD3E277B289A08 cert=2uplIpLQ0q9+0qMFrK5pkaYRDOe460LL9WHBvatgkuRr/SL31wBOEupaMMJ6koRE6Ld0ew iat-mode=0" + "obfs4 51.222.13.177:80 5EDAC3B810E12B01F6FD8050D2FD3E277B289A08 cert=2uplIpLQ0q9+0qMFrK5pkaYRDOe460LL9WHBvatgkuRr/SL31wBOEupaMMJ6koRE6Ld0ew iat-mode=0", + "obfs4 212.83.43.95:443 BFE712113A72899AD685764B211FACD30FF52C31 cert=ayq0XzCwhpdysn5o0EyDUbmSOx3X/oTEbzDMvczHOdBJKlvIdHHLJGkZARtT4dcBFArPPg iat-mode=1", + "obfs4 212.83.43.74:443 39562501228A4D5E27FCA4C0C81A01EE23AE3EE4 cert=PBwr+S8JTVZo6MPdHnkTwXJPILWADLqfMGoVvhZClMq/Urndyd42BwX9YFJHZnBB3H0XCw iat-mode=1" ], "snowflake" : [ "snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://1098762253.rsc.cdn77.org/ fronts=app.datapacket.com,www.datapacket.com ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn", View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/6… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/6… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][maint-15.0] Update builtin bridges
by morgan (＠morgan) 09 Dec '25

09 Dec '25

morgan pushed to branch maint-15.0 at The Tor Project / Applications / tor-browser-build Commits: 9ed43f58 by meskio at 2025-12-09T11:58:51+00:00 Update builtin bridges Remove the failing ones and add two replacements. - - - - - 1 changed file: - projects/tor-expert-bundle/pt_config.json Changes: ===================================== projects/tor-expert-bundle/pt_config.json ===================================== @@ -10,17 +10,13 @@ "meek_lite 192.0.2.20:80 url=https://1603026938.rsc.cdn77.org front=www.phpmyadmin.net utls=HelloRandomizedALPN" ], "obfs4" : [ - "obfs4 192.95.36.142:443 CDF2E852BF539B82BD10E27E9115A31734E378C2 cert=qUVQ0srL1JI/vO6V6m/24anYXiJD3QP2HgzUKQtQ7GRqqUvs7P+tG43RtAqdhLOALP7DJQ iat-mode=1", "obfs4 37.218.245.14:38224 D9A82D2F9C2F65A18407B1D2B764F130847F8B5D cert=bjRaMrr1BRiAW8IE9U5z27fQaYgOhX1UCmOpg2pFpoMvo6ZgQMzLsaTzzQNTlm7hNcb+Sg iat-mode=0", - "obfs4 85.31.186.98:443 011F2599C0E9B27EE74B353155E244813763C3E5 cert=ayq0XzCwhpdysn5o0EyDUbmSOx3X/oTEbzDMvczHOdBJKlvIdHHLJGkZARtT4dcBFArPPg iat-mode=0", - "obfs4 85.31.186.26:443 91A6354697E6B02A386312F68D82CF86824D3606 cert=PBwr+S8JTVZo6MPdHnkTwXJPILWADLqfMGoVvhZClMq/Urndyd42BwX9YFJHZnBB3H0XCw iat-mode=0", - "obfs4 193.11.166.194:27015 2D82C2E354D531A68469ADF7F878FA6060C6BACA cert=4TLQPJrTSaDffMK7Nbao6LC7G9OW/NHkUwIdjLSS3KYf0Nv4/nQiiI8dY2TcsQx01NniOg iat-mode=0", - "obfs4 193.11.166.194:27020 86AC7B8D430DAC4117E9F42C9EAED18133863AAF cert=0LDeJH4JzMDtkJJrFphJCiPqKx7loozKN7VNfuukMGfHO0Z8OGdzHVkhVAOfo1mUdv9cMg iat-mode=0", - "obfs4 193.11.166.194:27025 1AE2C08904527FEA90C4C4F8C1083EA59FBC6FAF cert=ItvYZzW5tn6v3G4UnQa6Qz04Npro6e81AP70YujmK/KXwDFPTs3aHXcHp4n8Vt6w/bv8cA iat-mode=0", "obfs4 209.148.46.65:443 74FAD13168806246602538555B5521A0383A1875 cert=ssH+9rP8dG2NLDN2XuFw63hIO/9MNNinLmxQDpVa+7kTOa9/m+tGWT1SmSYpQ9uTBGa6Hw iat-mode=0", "obfs4 146.57.248.225:22 10A6CD36A537FCE513A322361547444B393989F0 cert=K1gDtDAIcUfeLqbstggjIw2rtgIKqdIhUlHp82XRqNSq/mtAjp1BIC9vHKJ2FAEpGssTPw iat-mode=0", "obfs4 45.145.95.6:27015 C5B7CD6946FF10C5B3E89691A7D3F2C122D2117C cert=TD7PbUO0/0k6xYHMPW3vJxICfkMZNdkRrb63Zhl5j9dW3iRGiCx0A7mPhe5T2EDzQ35+Zw iat-mode=0", - "obfs4 51.222.13.177:80 5EDAC3B810E12B01F6FD8050D2FD3E277B289A08 cert=2uplIpLQ0q9+0qMFrK5pkaYRDOe460LL9WHBvatgkuRr/SL31wBOEupaMMJ6koRE6Ld0ew iat-mode=0" + "obfs4 51.222.13.177:80 5EDAC3B810E12B01F6FD8050D2FD3E277B289A08 cert=2uplIpLQ0q9+0qMFrK5pkaYRDOe460LL9WHBvatgkuRr/SL31wBOEupaMMJ6koRE6Ld0ew iat-mode=0", + "obfs4 212.83.43.95:443 BFE712113A72899AD685764B211FACD30FF52C31 cert=ayq0XzCwhpdysn5o0EyDUbmSOx3X/oTEbzDMvczHOdBJKlvIdHHLJGkZARtT4dcBFArPPg iat-mode=1", + "obfs4 212.83.43.74:443 39562501228A4D5E27FCA4C0C81A01EE23AE3EE4 cert=PBwr+S8JTVZo6MPdHnkTwXJPILWADLqfMGoVvhZClMq/Urndyd42BwX9YFJHZnBB3H0XCw iat-mode=1" ], "snowflake" : [ "snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://1098762253.rsc.cdn77.org/ fronts=app.datapacket.com,www.datapacket.com ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn", View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/9… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/9… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] Update builtin bridges
by morgan (＠morgan) 09 Dec '25

09 Dec '25

morgan pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: cf5a3f62 by meskio at 2025-12-09T11:41:30+00:00 Update builtin bridges Remove the failing ones and add two replacements. - - - - - 1 changed file: - projects/tor-expert-bundle/pt_config.json Changes: ===================================== projects/tor-expert-bundle/pt_config.json ===================================== @@ -10,17 +10,13 @@ "meek_lite 192.0.2.20:80 url=https://1603026938.rsc.cdn77.org front=www.phpmyadmin.net utls=HelloRandomizedALPN" ], "obfs4" : [ - "obfs4 192.95.36.142:443 CDF2E852BF539B82BD10E27E9115A31734E378C2 cert=qUVQ0srL1JI/vO6V6m/24anYXiJD3QP2HgzUKQtQ7GRqqUvs7P+tG43RtAqdhLOALP7DJQ iat-mode=1", "obfs4 37.218.245.14:38224 D9A82D2F9C2F65A18407B1D2B764F130847F8B5D cert=bjRaMrr1BRiAW8IE9U5z27fQaYgOhX1UCmOpg2pFpoMvo6ZgQMzLsaTzzQNTlm7hNcb+Sg iat-mode=0", - "obfs4 85.31.186.98:443 011F2599C0E9B27EE74B353155E244813763C3E5 cert=ayq0XzCwhpdysn5o0EyDUbmSOx3X/oTEbzDMvczHOdBJKlvIdHHLJGkZARtT4dcBFArPPg iat-mode=0", - "obfs4 85.31.186.26:443 91A6354697E6B02A386312F68D82CF86824D3606 cert=PBwr+S8JTVZo6MPdHnkTwXJPILWADLqfMGoVvhZClMq/Urndyd42BwX9YFJHZnBB3H0XCw iat-mode=0", - "obfs4 193.11.166.194:27015 2D82C2E354D531A68469ADF7F878FA6060C6BACA cert=4TLQPJrTSaDffMK7Nbao6LC7G9OW/NHkUwIdjLSS3KYf0Nv4/nQiiI8dY2TcsQx01NniOg iat-mode=0", - "obfs4 193.11.166.194:27020 86AC7B8D430DAC4117E9F42C9EAED18133863AAF cert=0LDeJH4JzMDtkJJrFphJCiPqKx7loozKN7VNfuukMGfHO0Z8OGdzHVkhVAOfo1mUdv9cMg iat-mode=0", - "obfs4 193.11.166.194:27025 1AE2C08904527FEA90C4C4F8C1083EA59FBC6FAF cert=ItvYZzW5tn6v3G4UnQa6Qz04Npro6e81AP70YujmK/KXwDFPTs3aHXcHp4n8Vt6w/bv8cA iat-mode=0", "obfs4 209.148.46.65:443 74FAD13168806246602538555B5521A0383A1875 cert=ssH+9rP8dG2NLDN2XuFw63hIO/9MNNinLmxQDpVa+7kTOa9/m+tGWT1SmSYpQ9uTBGa6Hw iat-mode=0", "obfs4 146.57.248.225:22 10A6CD36A537FCE513A322361547444B393989F0 cert=K1gDtDAIcUfeLqbstggjIw2rtgIKqdIhUlHp82XRqNSq/mtAjp1BIC9vHKJ2FAEpGssTPw iat-mode=0", "obfs4 45.145.95.6:27015 C5B7CD6946FF10C5B3E89691A7D3F2C122D2117C cert=TD7PbUO0/0k6xYHMPW3vJxICfkMZNdkRrb63Zhl5j9dW3iRGiCx0A7mPhe5T2EDzQ35+Zw iat-mode=0", - "obfs4 51.222.13.177:80 5EDAC3B810E12B01F6FD8050D2FD3E277B289A08 cert=2uplIpLQ0q9+0qMFrK5pkaYRDOe460LL9WHBvatgkuRr/SL31wBOEupaMMJ6koRE6Ld0ew iat-mode=0" + "obfs4 51.222.13.177:80 5EDAC3B810E12B01F6FD8050D2FD3E277B289A08 cert=2uplIpLQ0q9+0qMFrK5pkaYRDOe460LL9WHBvatgkuRr/SL31wBOEupaMMJ6koRE6Ld0ew iat-mode=0", + "obfs4 212.83.43.95:443 BFE712113A72899AD685764B211FACD30FF52C31 cert=ayq0XzCwhpdysn5o0EyDUbmSOx3X/oTEbzDMvczHOdBJKlvIdHHLJGkZARtT4dcBFArPPg iat-mode=1", + "obfs4 212.83.43.74:443 39562501228A4D5E27FCA4C0C81A01EE23AE3EE4 cert=PBwr+S8JTVZo6MPdHnkTwXJPILWADLqfMGoVvhZClMq/Urndyd42BwX9YFJHZnBB3H0XCw iat-mode=1" ], "snowflake" : [ "snowflake 192.0.2.3:80 2B280B23E1107BB62ABFC40DDCC8824814F80A72 fingerprint=2B280B23E1107BB62ABFC40DDCC8824814F80A72 url=https://1098762253.rsc.cdn77.org/ fronts=app.datapacket.com,www.datapacket.com ice=stun:stun.epygi.com:3478,stun:stun.uls.co.za:3478,stun:stun.voipgate.com:3478,stun:stun.mixvoip.com:3478,stun:stun.nextcloud.com:3478,stun:stun.bethesda.net:3478,stun:stun.nextcloud.com:443 utls-imitate=hellorandomizedalpn", View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/c… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/c… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][maint-15.0] Bug 41654: Check for moat-settings updates in relprep.py.
by Pier Angelo Vendrame (＠pierov) 09 Dec '25

09 Dec '25

Pier Angelo Vendrame pushed to branch maint-15.0 at The Tor Project / Applications / tor-browser-build Commits: 8dd2ee8c by Pier Angelo Vendrame at 2025-12-09T12:36:12+01:00 Bug 41654: Check for moat-settings updates in relprep.py. - - - - - 1 changed file: - tools/relprep.py Changes: ===================================== tools/relprep.py ===================================== @@ -139,6 +139,7 @@ class ReleasePreparation: self.update_zstd() self.update_go() self.update_manual() + self.update_moat_settings() self.update_changelogs() self.update_rbm_conf() @@ -521,6 +522,18 @@ class ReleasePreparation: logger.info("Updating the manual") update_manual(self.gitlab_token, self.base_path) + def update_moat_settings(self): + proj = "moat-settings" + + repo = Repo(self.base_path / "git_clones" / proj) + origin = repo.remotes["origin"] + origin.fetch() + commit = origin.refs["main"].commit.hexsha + + config = self.load_config(proj) + config["git_hash"] = commit + self.save_config(proj, config) + def get_last_releases(self): logger.info("Finding the previous releases.") sorted_tags = get_sorted_tags(self.repo) View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/8… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/8… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] Bug 41654: Check for moat-settings updates in relprep.py.
by Pier Angelo Vendrame (＠pierov) 09 Dec '25

09 Dec '25

Pier Angelo Vendrame pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: a3f75f9e by Pier Angelo Vendrame at 2025-12-09T12:15:29+01:00 Bug 41654: Check for moat-settings updates in relprep.py. - - - - - 1 changed file: - tools/relprep.py Changes: ===================================== tools/relprep.py ===================================== @@ -139,6 +139,7 @@ class ReleasePreparation: self.update_zstd() self.update_go() self.update_manual() + self.update_moat_settings() self.update_changelogs() self.update_rbm_conf() @@ -521,6 +522,18 @@ class ReleasePreparation: logger.info("Updating the manual") update_manual(self.gitlab_token, self.base_path) + def update_moat_settings(self): + proj = "moat-settings" + + repo = Repo(self.base_path / "git_clones" / proj) + origin = repo.remotes["origin"] + origin.fetch() + commit = origin.refs["main"].commit.hexsha + + config = self.load_config(proj) + config["git_hash"] = commit + self.save_config(proj, config) + def get_last_releases(self): logger.info("Finding the previous releases.") sorted_tags = get_sorted_tags(self.repo) View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/a… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/a… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] Bug 41656: Fix the Android mozconfig name.
by Pier Angelo Vendrame (＠pierov) 09 Dec '25

09 Dec '25

Pier Angelo Vendrame pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: 9cacdfad by Pier Angelo Vendrame at 2025-12-09T08:37:06+01:00 Bug 41656: Fix the Android mozconfig name. The mozconfig for the merging phase is wrong, and it makes regular Android builds fail. - - - - - 1 changed file: - projects/geckoview/config Changes: ===================================== projects/geckoview/config ===================================== @@ -65,7 +65,7 @@ steps: version: '[% c("abbrev") %]' build_apk: '[% INCLUDE build_apk %]' var: - mozconfig_file: 'mozconfig-all' + mozconfig_file: 'mozconfig-android-all' input_files: - project: container-image pkg_type: build View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/9… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/9… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][base-browser-146.0a1-16.0-1] fixup! BB 44118: Disable Mozilla's nightly and early beta features.
by Pier Angelo Vendrame (＠pierov) 09 Dec '25

09 Dec '25

Pier Angelo Vendrame pushed to branch base-browser-146.0a1-16.0-1 at The Tor Project / Applications / Tor Browser Commits: 306651ac by Pier Angelo Vendrame at 2025-12-09T09:28:08+01:00 fixup! BB 44118: Disable Mozilla's nightly and early beta features. It seems is_early_beta_or_earlier can be only True or None, but not False. - - - - - 1 changed file: - build/moz.configure/init.configure Changes: ===================================== build/moz.configure/init.configure ===================================== @@ -1103,7 +1103,7 @@ def milestone(build_env, build_project, version_path, as_milestone, _): die("Could not find a version number in {}".format(p)) versions.append(content[-1]) - is_early_beta_or_earlier = False + is_early_beta_or_earlier = None if as_milestone: if "a1" not in versions[0]: # We could make this work with some effort View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/306651a… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/306651a… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser][mullvad-browser-146.0a1-16.0-1] fixup! BB 44118: Disable Mozilla's nightly and early beta features.
by Pier Angelo Vendrame (＠pierov) 09 Dec '25

09 Dec '25

Pier Angelo Vendrame pushed to branch mullvad-browser-146.0a1-16.0-1 at The Tor Project / Applications / Mullvad Browser Commits: 2858f0b7 by Pier Angelo Vendrame at 2025-12-09T09:27:40+01:00 fixup! BB 44118: Disable Mozilla's nightly and early beta features. It seems is_early_beta_or_earlier can be only True or None, but not False. - - - - - 1 changed file: - build/moz.configure/init.configure Changes: ===================================== build/moz.configure/init.configure ===================================== @@ -1103,7 +1103,7 @@ def milestone(build_env, build_project, version_path, as_milestone, _): die("Could not find a version number in {}".format(p)) versions.append(content[-1]) - is_early_beta_or_earlier = False + is_early_beta_or_earlier = None if as_milestone: if "a1" not in versions[0]: # We could make this work with some effort View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/285… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/285… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-146.0a1-16.0-1] fixup! BB 44118: Disable Mozilla's nightly and early beta features.
by Pier Angelo Vendrame (＠pierov) 09 Dec '25

09 Dec '25

Pier Angelo Vendrame pushed to branch tor-browser-146.0a1-16.0-1 at The Tor Project / Applications / Tor Browser Commits: b1b7b8b9 by Pier Angelo Vendrame at 2025-12-09T09:05:19+01:00 fixup! BB 44118: Disable Mozilla's nightly and early beta features. It seems is_early_beta_or_earlier can be only True or None, but not False. - - - - - 1 changed file: - build/moz.configure/init.configure Changes: ===================================== build/moz.configure/init.configure ===================================== @@ -1103,7 +1103,7 @@ def milestone(build_env, build_project, version_path, as_milestone, _): die("Could not find a version number in {}".format(p)) versions.append(content[-1]) - is_early_beta_or_earlier = False + is_early_beta_or_earlier = None if as_milestone: if "a1" not in versions[0]: # We could make this work with some effort View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/b1b7b8b… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/b1b7b8b… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-update-responses][main] 6 commits: release: new version, 15.0.3 (linux-i686)
by ma1 (＠ma1) 08 Dec '25

08 Dec '25

ma1 pushed to branch main at The Tor Project / Applications / Tor Browser update responses Commits: 67971eb5 by hackademix at 2025-12-09T00:52:09+01:00 release: new version, 15.0.3 (linux-i686) - - - - - 6b612c8a by hackademix at 2025-12-09T00:52:10+01:00 release: new version, 15.0.3 (linux-x86_64) - - - - - 6a02c6d1 by hackademix at 2025-12-09T00:52:10+01:00 release: new version, 15.0.3 (macos) - - - - - 1775583f by hackademix at 2025-12-09T00:52:10+01:00 release: new version, 15.0.3 (windows-i686) - - - - - 83dc151f by hackademix at 2025-12-09T00:52:11+01:00 release: new version, 15.0.3 (windows-x86_64) - - - - - d158d601 by hackademix at 2025-12-09T00:52:11+01:00 release: new version, 15.0.3 - - - - - 78 changed files: - update_3/release/download-android-aarch64.json - update_3/release/download-android-armv7.json - update_3/release/download-android-x86.json - update_3/release/download-android-x86_64.json - update_3/release/download-linux-i686.json - update_3/release/download-linux-x86_64.json - update_3/release/download-macos.json - update_3/release/download-windows-i686.json - update_3/release/download-windows-x86_64.json - update_3/release/downloads.json - update_3/release/linux-i686/.htaccess - − update_3/release/linux-i686/update-14.5.7-15.0.2+13.5.25-linux-i686.xml - − update_3/release/linux-i686/update-14.5.8-15.0.2+13.5.25-linux-i686.xml - − update_3/release/linux-i686/update-15.0-15.0.2+13.5.25-linux-i686.xml - + update_3/release/linux-i686/update-15.0-15.0.3+13.5.26-linux-i686.xml - − update_3/release/linux-i686/update-15.0.1-15.0.2+13.5.25-linux-i686.xml - + update_3/release/linux-i686/update-15.0.1-15.0.3+13.5.26-linux-i686.xml - − update_3/release/linux-i686/update-15.0.2+13.5.25-linux-i686.xml - + update_3/release/linux-i686/update-15.0.2-15.0.3+13.5.26-linux-i686.xml - + update_3/release/linux-i686/update-15.0.3+13.5.26-linux-i686.xml - update_3/release/linux-x86_64/.htaccess - − update_3/release/linux-x86_64/update-14.5.7-15.0.2+13.5.25-linux-x86_64.xml - − update_3/release/linux-x86_64/update-14.5.8-15.0.2+13.5.25-linux-x86_64.xml - − update_3/release/linux-x86_64/update-15.0-15.0.2+13.5.25-linux-x86_64.xml - + update_3/release/linux-x86_64/update-15.0-15.0.3+13.5.26-linux-x86_64.xml - − update_3/release/linux-x86_64/update-15.0.1-15.0.2+13.5.25-linux-x86_64.xml - + update_3/release/linux-x86_64/update-15.0.1-15.0.3+13.5.26-linux-x86_64.xml - − update_3/release/linux-x86_64/update-15.0.2+13.5.25-linux-x86_64.xml - + update_3/release/linux-x86_64/update-15.0.2-15.0.3+13.5.26-linux-x86_64.xml - + update_3/release/linux-x86_64/update-15.0.3+13.5.26-linux-x86_64.xml - update_3/release/macos/.htaccess - − update_3/release/macos/update-13.5.22-15.0.2+13.5.25-macos.xml - − update_3/release/macos/update-13.5.23-15.0.2+13.5.25-macos.xml - + update_3/release/macos/update-13.5.23-15.0.3+13.5.26-macos.xml - − update_3/release/macos/update-13.5.24-15.0.2+13.5.25-macos.xml - + update_3/release/macos/update-13.5.24-15.0.3+13.5.26-macos.xml - + update_3/release/macos/update-13.5.25-15.0.3+13.5.26-macos.xml - − update_3/release/macos/update-14.5.7-15.0.2+13.5.25-macos.xml - − update_3/release/macos/update-14.5.8-15.0.2+13.5.25-macos.xml - − update_3/release/macos/update-15.0-15.0.2+13.5.25-macos.xml - + update_3/release/macos/update-15.0-15.0.3+13.5.26-macos.xml - − update_3/release/macos/update-15.0.1-15.0.2+13.5.25-macos.xml - + update_3/release/macos/update-15.0.1-15.0.3+13.5.26-macos.xml - − update_3/release/macos/update-15.0.2+13.5.25-macos.xml - + update_3/release/macos/update-15.0.2-15.0.3+13.5.26-macos.xml - + update_3/release/macos/update-15.0.3+13.5.26-macos.xml - update_3/release/windows-i686/.htaccess - − update_3/release/windows-i686/update-13.5.22-15.0.2+13.5.25-windows-i686.xml - − update_3/release/windows-i686/update-13.5.23-15.0.2+13.5.25-windows-i686.xml - + update_3/release/windows-i686/update-13.5.23-15.0.3+13.5.26-windows-i686.xml - − update_3/release/windows-i686/update-13.5.24-15.0.2+13.5.25-windows-i686.xml - + update_3/release/windows-i686/update-13.5.24-15.0.3+13.5.26-windows-i686.xml - + update_3/release/windows-i686/update-13.5.25-15.0.3+13.5.26-windows-i686.xml - − update_3/release/windows-i686/update-14.5.7-15.0.2+13.5.25-windows-i686.xml - − update_3/release/windows-i686/update-14.5.8-15.0.2+13.5.25-windows-i686.xml - − update_3/release/windows-i686/update-15.0-15.0.2+13.5.25-windows-i686.xml - + update_3/release/windows-i686/update-15.0-15.0.3+13.5.26-windows-i686.xml - − update_3/release/windows-i686/update-15.0.1-15.0.2+13.5.25-windows-i686.xml - + update_3/release/windows-i686/update-15.0.1-15.0.3+13.5.26-windows-i686.xml - − update_3/release/windows-i686/update-15.0.2+13.5.25-windows-i686.xml - + update_3/release/windows-i686/update-15.0.2-15.0.3+13.5.26-windows-i686.xml - + update_3/release/windows-i686/update-15.0.3+13.5.26-windows-i686.xml - update_3/release/windows-x86_64/.htaccess - − update_3/release/windows-x86_64/update-13.5.22-15.0.2+13.5.25-windows-x86_64.xml - − update_3/release/windows-x86_64/update-13.5.23-15.0.2+13.5.25-windows-x86_64.xml - + update_3/release/windows-x86_64/update-13.5.23-15.0.3+13.5.26-windows-x86_64.xml - − update_3/release/windows-x86_64/update-13.5.24-15.0.2+13.5.25-windows-x86_64.xml - + update_3/release/windows-x86_64/update-13.5.24-15.0.3+13.5.26-windows-x86_64.xml - + update_3/release/windows-x86_64/update-13.5.25-15.0.3+13.5.26-windows-x86_64.xml - − update_3/release/windows-x86_64/update-14.5.7-15.0.2+13.5.25-windows-x86_64.xml - − update_3/release/windows-x86_64/update-14.5.8-15.0.2+13.5.25-windows-x86_64.xml - − update_3/release/windows-x86_64/update-15.0-15.0.2+13.5.25-windows-x86_64.xml - + update_3/release/windows-x86_64/update-15.0-15.0.3+13.5.26-windows-x86_64.xml - − update_3/release/windows-x86_64/update-15.0.1-15.0.2+13.5.25-windows-x86_64.xml - + update_3/release/windows-x86_64/update-15.0.1-15.0.3+13.5.26-windows-x86_64.xml - − update_3/release/windows-x86_64/update-15.0.2+13.5.25-windows-x86_64.xml - + update_3/release/windows-x86_64/update-15.0.2-15.0.3+13.5.26-windows-x86_64.xml - + update_3/release/windows-x86_64/update-15.0.3+13.5.26-windows-x86_64.xml The diff was not included because it is too large. View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-update-responses… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-update-responses… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build][main] 4 commits: Bug 41643: Update toolchains for Firefox 146 (all platforms).
by Pier Angelo Vendrame (＠pierov) 08 Dec '25

08 Dec '25

Pier Angelo Vendrame pushed to branch main at The Tor Project / Applications / tor-browser-build Commits: 1b6e3c8f by Pier Angelo Vendrame at 2025-12-08T21:28:48+01:00 Bug 41643: Update toolchains for Firefox 146 (all platforms). - - - - - da85318a by Pier Angelo Vendrame at 2025-12-08T21:28:48+01:00 Bug 41643: Update toolchains for Firefox 146 (macOS). Update the version of the macOS SDK and sync various build scripts with the equivalent one from Firefox's source tree. - - - - - a91b3cef by Pier Angelo Vendrame at 2025-12-08T21:28:49+01:00 Bug 41643: Update toolchains for Firefox 146 (Windows). Add the Windows app SDK as a new dependency from upstream. - - - - - 9d0237e9 by Pier Angelo Vendrame at 2025-12-08T21:28:50+01:00 Bug 41643: Update toolchains for Firefox 146 (Android). - - - - - 44 changed files: - projects/android-toolchain/config - projects/application-services/build - projects/application-services/config - projects/application-services/gradle-dependencies-list.txt - projects/application-services/list_toolchain_updates_checks - projects/cbindgen/config - projects/cctools/build - − projects/cctools/cctools.patch - projects/cctools/config - projects/common/list_toolchain_updates-common-firefox-geckoview - projects/firefox/build - projects/firefox/config - projects/firefox/list_toolchain_updates_checks - projects/geckoview/build - projects/geckoview/build_ac_fenix - projects/geckoview/build_apk - projects/geckoview/build_common - projects/geckoview/config - projects/geckoview/gradle-dependencies-list.txt - projects/geckoview/list_toolchain_updates_checks - projects/geckoview/mozconfig.in - projects/glean-parser/build - projects/glean-parser/config - projects/glean/build - projects/glean/config - projects/glean/gradle-dependencies-list.txt - projects/gradle/config - + projects/libdispatch/README.md - + projects/libdispatch/build - + projects/libdispatch/config - projects/libtapi/build - projects/libtapi/config - + projects/libtapi/libtapi.patch - projects/macosx-toolchain/config - projects/mingw-w64-clang/config - projects/node/config - projects/oss-licenses-plugin/config - projects/tor/build - projects/uniffi-rs/config - + projects/windows-app-sdk/README.md - + projects/windows-app-sdk/build - + projects/windows-app-sdk/config - rbm.conf - tools/fix_gradle_deps.py The diff was not included because it is too large. View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/compare/… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/compare/… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser] Pushed new tag FIREFOX_NIGHTLY_147_END
by Pier Angelo Vendrame (＠pierov) 08 Dec '25

08 Dec '25

Pier Angelo Vendrame pushed new tag FIREFOX_NIGHTLY_147_END at The Tor Project / Applications / Tor Browser -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/tree/FIREFOX_N… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser][mullvad-browser-146.0a1-16.0-1] 2 commits: dropme! BB 4234: Use the Firefox Update Process for Base Browser.
by Pier Angelo Vendrame (＠pierov) 08 Dec '25

08 Dec '25

Pier Angelo Vendrame pushed to branch mullvad-browser-146.0a1-16.0-1 at The Tor Project / Applications / Mullvad Browser Commits: 1f7dc3ea by Pier Angelo Vendrame at 2025-12-08T19:32:08+01:00 dropme! BB 4234: Use the Firefox Update Process for Base Browser. Remove this part of the code. The next commit should be moved earlier in the patchset at the next rebase. - - - - - 5afe0e58 by Pier Angelo Vendrame at 2025-12-08T19:32:08+01:00 BB 44118: Disable Mozilla's nightly and early beta features. - - - - - 1 changed file: - build/moz.configure/init.configure Changes: ===================================== build/moz.configure/init.configure ===================================== @@ -1103,7 +1103,7 @@ def milestone(build_env, build_project, version_path, as_milestone, _): die("Could not find a version number in {}".format(p)) versions.append(content[-1]) - is_early_beta_or_earlier = None + is_early_beta_or_earlier = False if as_milestone: if "a1" not in versions[0]: # We could make this work with some effort @@ -1111,8 +1111,6 @@ def milestone(build_env, build_project, version_path, as_milestone, _): as_milestone = as_milestone[0] as_milestone_flag = "" if as_milestone == "release" else "b1" versions = [v.replace("a1", as_milestone_flag) for v in versions] - if as_milestone == "early-beta": - is_early_beta_or_earlier = True milestone, firefox_version, firefox_version_display = versions[:3] @@ -1133,7 +1131,7 @@ def milestone(build_env, build_project, version_path, as_milestone, _): m = re.search(r"([ab]\d+)", milestone) ab_patch = m.group(1) if m else "" - if not as_milestone: + if False: defines = os.path.join(build_env.topsrcdir, "build", "defines.sh") with open(defines, "r") as fh: for line in fh.read().splitlines(): View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/compare/ee… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/compare/ee… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][base-browser-146.0a1-16.0-1] 2 commits: dropme! BB 4234: Use the Firefox Update Process for Base Browser.
by Pier Angelo Vendrame (＠pierov) 08 Dec '25

08 Dec '25

Pier Angelo Vendrame pushed to branch base-browser-146.0a1-16.0-1 at The Tor Project / Applications / Tor Browser Commits: ba2afd08 by Pier Angelo Vendrame at 2025-12-08T19:31:38+01:00 dropme! BB 4234: Use the Firefox Update Process for Base Browser. Remove this part of the code. The next commit should be moved earlier in the patchset at the next rebase. - - - - - be241d6f by Pier Angelo Vendrame at 2025-12-08T19:31:39+01:00 BB 44118: Disable Mozilla's nightly and early beta features. - - - - - 1 changed file: - build/moz.configure/init.configure Changes: ===================================== build/moz.configure/init.configure ===================================== @@ -1103,7 +1103,7 @@ def milestone(build_env, build_project, version_path, as_milestone, _): die("Could not find a version number in {}".format(p)) versions.append(content[-1]) - is_early_beta_or_earlier = None + is_early_beta_or_earlier = False if as_milestone: if "a1" not in versions[0]: # We could make this work with some effort @@ -1111,8 +1111,6 @@ def milestone(build_env, build_project, version_path, as_milestone, _): as_milestone = as_milestone[0] as_milestone_flag = "" if as_milestone == "release" else "b1" versions = [v.replace("a1", as_milestone_flag) for v in versions] - if as_milestone == "early-beta": - is_early_beta_or_earlier = True milestone, firefox_version, firefox_version_display = versions[:3] @@ -1133,7 +1131,7 @@ def milestone(build_env, build_project, version_path, as_milestone, _): m = re.search(r"([ab]\d+)", milestone) ab_patch = m.group(1) if m else "" - if not as_milestone: + if False: defines = os.path.join(build_env.topsrcdir, "build", "defines.sh") with open(defines, "r") as fh: for line in fh.read().splitlines(): View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/compare/f332a1… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/compare/f332a1… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-146.0a1-16.0-1] 2 commits: dropme! BB 4234: Use the Firefox Update Process for Base Browser.
by Pier Angelo Vendrame (＠pierov) 08 Dec '25

08 Dec '25

Pier Angelo Vendrame pushed to branch tor-browser-146.0a1-16.0-1 at The Tor Project / Applications / Tor Browser Commits: 74224f67 by Pier Angelo Vendrame at 2025-12-08T19:23:45+01:00 dropme! BB 4234: Use the Firefox Update Process for Base Browser. Remove this part of the code. The next commit should be moved earlier in the patchset at the next rebase. - - - - - 2c93a805 by Pier Angelo Vendrame at 2025-12-08T19:23:46+01:00 BB 44118: Disable Mozilla's nightly and early beta features. - - - - - 1 changed file: - build/moz.configure/init.configure Changes: ===================================== build/moz.configure/init.configure ===================================== @@ -1103,7 +1103,7 @@ def milestone(build_env, build_project, version_path, as_milestone, _): die("Could not find a version number in {}".format(p)) versions.append(content[-1]) - is_early_beta_or_earlier = None + is_early_beta_or_earlier = False if as_milestone: if "a1" not in versions[0]: # We could make this work with some effort @@ -1111,8 +1111,6 @@ def milestone(build_env, build_project, version_path, as_milestone, _): as_milestone = as_milestone[0] as_milestone_flag = "" if as_milestone == "release" else "b1" versions = [v.replace("a1", as_milestone_flag) for v in versions] - if as_milestone == "early-beta": - is_early_beta_or_earlier = True milestone, firefox_version, firefox_version_display = versions[:3] @@ -1133,7 +1131,7 @@ def milestone(build_env, build_project, version_path, as_milestone, _): m = re.search(r"([ab]\d+)", milestone) ab_patch = m.group(1) if m else "" - if not as_milestone: + if False: defines = os.path.join(build_env.topsrcdir, "build", "defines.sh") with open(defines, "r") as fh: for line in fh.read().splitlines(): View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/compare/df582a… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/compare/df582a… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-146.0a1-16.0-1] fixup! TB 43564: Modify ./mach bootstrap for Tor Browser
by brizental (＠brizental) 08 Dec '25

08 Dec '25

brizental pushed to branch tor-browser-146.0a1-16.0-1 at The Tor Project / Applications / Tor Browser Commits: df582a9e by Beatriz Rizental at 2025-12-08T15:15:48-03:00 fixup! TB 43564: Modify ./mach bootstrap for Tor Browser - - - - - 4 changed files: - build/moz.configure/torbrowser-resources.configure - mobile/android/gradle.configure - python/mozbuild/mozbuild/tbbutils.py - python/mozbuild/mozbuild/test/test_tbbutils.py Changes: ===================================== build/moz.configure/torbrowser-resources.configure ===================================== @@ -50,25 +50,6 @@ def is_android_build(build_project): return build_project == "mobile/android" -@imports(_from="pathlib", _import="Path") -def maven_local_default(): - return str(Path.home() / ".m2/repository") - - -option( - "--with-maven-local", - nargs=1, - default=maven_local_default(), - help="Path the maven local directory. Defaults to $HOME/.m2/repository", -) - - -@depends("--with-maven-local") -def maven_local(value): - if value: - return value[0] - - option( "--with-tor-expert-bundle-aar", env="TOR_EXPERT_BUNDLE_AAR", @@ -124,7 +105,6 @@ option( @depends( - maven_local, "--with-application-services", mozbuild_state_path, bootstrap_path( @@ -138,7 +118,7 @@ option( @checking("for application-services") @imports(_from="pathlib", _import="Path") @imports("mozbuild.tbbutils") -def application_services(maven_local, value, mozbuild_state_path, _bootstrapped): +def application_services(value, mozbuild_state_path, _bootstrapped): as_location = None if value: @@ -153,14 +133,11 @@ def application_services(maven_local, value, mozbuild_state_path, _bootstrapped) as_location = bootstrapped_location if not as_location: - # application-services is not required for building. + # application-services is required for building. die( "application-services not found. Either enable bootstrap, or provide a path with --with-application-services." ) - # Symlink a-s in the maven local repository. - # Note that this _overwrites_ whatever is already in there. - mozbuild.tbbutils.symlink_tree(as_location, maven_local) return as_location ===================================== mobile/android/gradle.configure ===================================== @@ -740,13 +740,16 @@ set_config( ) -@depends("GRADLE_MAVEN_REPOSITORIES") +@depends(application_services, "GRADLE_MAVEN_REPOSITORIES") @imports(_from="os.path", _import="isdir") -def gradle_maven_repositories(values): +def gradle_maven_repositories(app_services_location, values): if not values: die("GRADLE_MAVEN_REPOSITORIES must not be empty") if not all(values): die("GRADLE_MAVEN_REPOSITORIES entries must not be empty") + + # Prepend the location of the custom a-s location + values = (f"file://{app_services_location}",) + values return values ===================================== python/mozbuild/mozbuild/tbbutils.py ===================================== @@ -1,37 +1,7 @@ -import os import re -from pathlib import Path from urllib.request import Request, urlopen -def symlink_tree(src_dir, target_dir): - """ - Recursively mirror the directory tree from `src_dir` into `target_dir` - using symbolic links. - - Equivalent to: `cp -rs src_dir/* target_dir` - - Notes: - - If a file or symlink already exists in the destination, it overwritten. - - The symlinks created here use absolute paths i.e. not relocatable. - """ - src = Path(src_dir) - target = Path(target_dir) - - target.mkdir(parents=True, exist_ok=True) - - for root, _, files in os.walk(src): - target_path = target / Path(root).relative_to(src) - target_path.mkdir(parents=True, exist_ok=True) - - for file in files: - src_file = Path(root) / file - target_file = target_path / file - if target_file.exists() or target_file.is_symlink(): - target_file.unlink() - os.symlink(src_file, target_file) - - def list_files_http(url): try: req = Request(url, method="GET") ===================================== python/mozbuild/mozbuild/test/test_tbbutils.py ===================================== @@ -1,8 +1,4 @@ -import os -import shutil -import tempfile import unittest -from pathlib import Path from types import SimpleNamespace from unittest.mock import MagicMock, patch @@ -12,89 +8,9 @@ from mozbuild.tbbutils import ( get_artifact_index, get_artifact_path, list_files_http, - symlink_tree, ) -class TestSymlinkTree(unittest.TestCase): - def _create_sample_tree(self, base: Path): - (base / "subdir").mkdir() - (base / "file1.txt").write_text("content1") - (base / "subdir" / "file2.txt").write_text("content2") - - def setUp(self): - self.tmpdir = tempfile.mkdtemp() - self.src = Path(self.tmpdir) / "src" - self.dst = Path(self.tmpdir) / "dst" - self.src.mkdir() - self.dst.mkdir() - - def tearDown(self): - shutil.rmtree(self.tmpdir) - - def test_symlinks_created_correctly(self): - self._create_sample_tree(self.src) - - symlink_tree(self.src, self.dst) - - self.assertTrue((self.dst / "file1.txt").is_symlink()) - self.assertTrue((self.dst / "subdir" / "file2.txt").is_symlink()) - - self.assertEqual( - os.readlink(self.dst / "file1.txt"), - str(self.src / "file1.txt"), - ) - self.assertEqual( - os.readlink(self.dst / "subdir" / "file2.txt"), - str(self.src / "subdir" / "file2.txt"), - ) - - def test_overwrites_existing_files(self): - self._create_sample_tree(self.src) - - # Create a conflicting file in destination - (self.dst / "file1.txt").write_text("old") - - symlink_tree(self.src, self.dst) - - self.assertTrue((self.dst / "file1.txt").is_symlink()) - self.assertEqual( - os.readlink(self.dst / "file1.txt"), - str(self.src / "file1.txt"), - ) - - def test_nested_directories_are_mirrored(self): - (self.src / "a" / "b" / "c").mkdir(parents=True) - (self.src / "a" / "b" / "c" / "deep.txt").write_text("deep content") - - symlink_tree(self.src, self.dst) - - deep_link = self.dst / "a" / "b" / "c" / "deep.txt" - self.assertTrue(deep_link.is_symlink()) - self.assertEqual( - os.readlink(deep_link), - str(self.src / "a" / "b" / "c" / "deep.txt"), - ) - - def test_idempotence(self): - self._create_sample_tree(self.src) - - symlink_tree(self.src, self.dst) - symlink_tree(self.src, self.dst) # Run again - - self.assertTrue((self.dst / "file1.txt").is_symlink()) - self.assertTrue((self.dst / "subdir" / "file2.txt").is_symlink()) - - def test_symlinks_use_absolute_paths(self): - (self.src / "file.txt").write_text("absolute") - - symlink_tree(self.src, self.dst) - - link_target = os.readlink(self.dst / "file.txt") - self.assertTrue(Path(link_target).is_absolute()) - self.assertEqual(Path(link_target), self.src / "file.txt") - - class TestGetArtifactName(unittest.TestCase): def setUp(self): self.artifact = "artifact" View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/df582a9… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/df582a9… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser-update-responses][main] 4 commits: release: new version, 15.0.3 (linux-x86_64)
by ma1 (＠ma1) 08 Dec '25

08 Dec '25

ma1 pushed to branch main at The Tor Project / Applications / mullvad-browser-update-responses Commits: 92e87e99 by hackademix at 2025-12-08T18:59:40+01:00 release: new version, 15.0.3 (linux-x86_64) - - - - - aaf50418 by hackademix at 2025-12-08T18:59:41+01:00 release: new version, 15.0.3 (macos) - - - - - c0d57fbb by hackademix at 2025-12-08T18:59:41+01:00 release: new version, 15.0.3 (windows-x86_64) - - - - - 9e31a0b6 by hackademix at 2025-12-08T18:59:42+01:00 release: new version, 15.0.3 - - - - - 34 changed files: - update_1/release/download-linux-x86_64.json - update_1/release/download-macos.json - update_1/release/download-windows-x86_64.json - update_1/release/downloads.json - update_1/release/linux-x86_64/.htaccess - − update_1/release/linux-x86_64/update-14.5.7-15.0.2-linux-x86_64.xml - − update_1/release/linux-x86_64/update-14.5.8-15.0.2-linux-x86_64.xml - − update_1/release/linux-x86_64/update-15.0-15.0.2-linux-x86_64.xml - + update_1/release/linux-x86_64/update-15.0-15.0.3-linux-x86_64.xml - − update_1/release/linux-x86_64/update-15.0.1-15.0.2-linux-x86_64.xml - + update_1/release/linux-x86_64/update-15.0.1-15.0.3-linux-x86_64.xml - + update_1/release/linux-x86_64/update-15.0.2-15.0.3-linux-x86_64.xml - − update_1/release/linux-x86_64/update-15.0.2-linux-x86_64.xml - + update_1/release/linux-x86_64/update-15.0.3-linux-x86_64.xml - update_1/release/macos/.htaccess - − update_1/release/macos/update-14.5.7-15.0.2-macos.xml - − update_1/release/macos/update-14.5.8-15.0.2-macos.xml - − update_1/release/macos/update-15.0-15.0.2-macos.xml - + update_1/release/macos/update-15.0-15.0.3-macos.xml - − update_1/release/macos/update-15.0.1-15.0.2-macos.xml - + update_1/release/macos/update-15.0.1-15.0.3-macos.xml - + update_1/release/macos/update-15.0.2-15.0.3-macos.xml - − update_1/release/macos/update-15.0.2-macos.xml - + update_1/release/macos/update-15.0.3-macos.xml - update_1/release/windows-x86_64/.htaccess - − update_1/release/windows-x86_64/update-14.5.7-15.0.2-windows-x86_64.xml - − update_1/release/windows-x86_64/update-14.5.8-15.0.2-windows-x86_64.xml - − update_1/release/windows-x86_64/update-15.0-15.0.2-windows-x86_64.xml - + update_1/release/windows-x86_64/update-15.0-15.0.3-windows-x86_64.xml - − update_1/release/windows-x86_64/update-15.0.1-15.0.2-windows-x86_64.xml - + update_1/release/windows-x86_64/update-15.0.1-15.0.3-windows-x86_64.xml - + update_1/release/windows-x86_64/update-15.0.2-15.0.3-windows-x86_64.xml - − update_1/release/windows-x86_64/update-15.0.2-windows-x86_64.xml - + update_1/release/windows-x86_64/update-15.0.3-windows-x86_64.xml The diff was not included because it is too large. View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser-update-respo… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser-update-respo… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser][tor-browser-146.0a1-16.0-1] fixup! TB 40701: Add security warning when downloading a file
by henry (＠henry) 08 Dec '25

08 Dec '25

henry pushed to branch tor-browser-146.0a1-16.0-1 at The Tor Project / Applications / Tor Browser Commits: e68edee9 by Henry Wilkes at 2025-12-08T16:41:28+00:00 fixup! TB 40701: Add security warning when downloading a file TB 44411: Switch DownloadsTorWarning.sys.mjs to moz-src URI. - - - - - 3 changed files: - browser/components/downloads/content/contentAreaDownloadsView.js - browser/components/downloads/content/downloads.js - browser/components/places/content/places.js Changes: ===================================== browser/components/downloads/content/contentAreaDownloadsView.js ===================================== @@ -9,7 +9,7 @@ const { PrivateBrowsingUtils } = ChromeUtils.importESModule( ); const { DownloadsTorWarning } = ChromeUtils.importESModule( - "resource:///modules/DownloadsTorWarning.sys.mjs" + "moz-src:///browser/components/downloads/DownloadsTorWarning.sys.mjs" ); var ContentAreaDownloadsView = { ===================================== browser/components/downloads/content/downloads.js ===================================== @@ -41,7 +41,8 @@ ChromeUtils.defineESModuleGetters(this, { NetUtil: "resource://gre/modules/NetUtil.sys.mjs", PlacesUtils: "resource://gre/modules/PlacesUtils.sys.mjs", PrivateBrowsingUtils: "resource://gre/modules/PrivateBrowsingUtils.sys.mjs", - DownloadsTorWarning: "resource:///modules/DownloadsTorWarning.sys.mjs", + DownloadsTorWarning: + "moz-src:///browser/components/downloads/DownloadsTorWarning.sys.mjs", }); const { Integration } = ChromeUtils.importESModule( ===================================== browser/components/places/content/places.js ===================================== @@ -17,7 +17,8 @@ ChromeUtils.defineESModuleGetters(this, { PlacesBackups: "resource://gre/modules/PlacesBackups.sys.mjs", PrivateBrowsingUtils: "resource://gre/modules/PrivateBrowsingUtils.sys.mjs", DownloadUtils: "resource://gre/modules/DownloadUtils.sys.mjs", - DownloadsTorWarning: "resource:///modules/DownloadsTorWarning.sys.mjs", + DownloadsTorWarning: + "moz-src:///browser/components/downloads/DownloadsTorWarning.sys.mjs", }); XPCOMUtils.defineLazyScriptGetter( this, View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/e68edee… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/e68edee… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build] Pushed new tag mb-15.0.3-build3
by Pier Angelo Vendrame (＠pierov) 08 Dec '25

08 Dec '25

Pier Angelo Vendrame pushed new tag mb-15.0.3-build3 at The Tor Project / Applications / tor-browser-build -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/tree/mb-… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/tor-browser-build] Pushed new tag tbb-15.0.3-build3
by Pier Angelo Vendrame (＠pierov) 08 Dec '25

08 Dec '25

Pier Angelo Vendrame pushed new tag tbb-15.0.3-build3 at The Tor Project / Applications / tor-browser-build -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/tree/tbb… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser] Pushed new tag mullvad-browser-140.6.0esr-15.0-1-build4
by Pier Angelo Vendrame (＠pierov) 08 Dec '25

08 Dec '25

Pier Angelo Vendrame pushed new tag mullvad-browser-140.6.0esr-15.0-1-build4 at The Tor Project / Applications / Mullvad Browser -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/tree/mullv… You're receiving this email because of your account on gitlab.torproject.org.

1 0

[Git][tpo/applications/mullvad-browser][mullvad-browser-140.6.0esr-15.0-1] fixup! Base Browser's .mozconfigs.
by Pier Angelo Vendrame (＠pierov) 08 Dec '25

08 Dec '25

Pier Angelo Vendrame pushed to branch mullvad-browser-140.6.0esr-15.0-1 at The Tor Project / Applications / Mullvad Browser Commits: c7f2ad97 by Pier Angelo Vendrame at 2025-12-08T15:37:59+01:00 fixup! Base Browser's .mozconfigs. BB 44414: Disable Zucchini for the 15.0 series. - - - - - 1 changed file: - browser/config/mozconfigs/base-browser Changes: ===================================== browser/config/mozconfigs/base-browser ===================================== @@ -15,6 +15,9 @@ ac_add_options --enable-rust-simd ac_add_options --disable-unverified-updates ac_add_options --enable-base-browser-update +# tor-browser#44414: Disable Zucchini until we fix mingw compatibility and work +# on potential updates for our update pipeline. +ac_add_options --disable-zucchini ac_add_options --enable-bundled-fonts View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/c7f… -- View it on GitLab: https://gitlab.torproject.org/tpo/applications/mullvad-browser/-/commit/c7f… You're receiving this email because of your account on gitlab.torproject.org.

1 0