November 2017 - tor-commits - lists.torproject.org

[webwml/master] Add new Tor Browser version: 7.0.9, for Linux and Mac only
by boklm＠torproject.org 03 Nov '17

03 Nov '17

commit 77f0064b2b80a5fc9464c8a20b03bf8faf95f14e Author: Nicolas Vigier <boklm(a)torproject.org> Date: Fri Nov 3 16:42:24 2017 +0100 Add new Tor Browser version: 7.0.9, for Linux and Mac only --- include/versions.wmi | 16 ++++++++-------- projects/torbrowser/RecommendedTBBVersions | 3 +++ 2 files changed, 11 insertions(+), 8 deletions(-) diff --git a/include/versions.wmi b/include/versions.wmi index 140d377b..719c2917 100644 --- a/include/versions.wmi +++ … [View More]b/include/versions.wmi @@ -10,19 +10,19 @@ <define-tag version-torbrowserbundlebeta whitespace=delete>7.5a6</define-tag> <define-tag releasedate-torbrowserbundlebeta whitespace=delete>2017-10-20</define-tag> -<define-tag version-torbrowserbundlelinux32 whitespace=delete>7.0.8</define-tag> -<define-tag releasedate-torbrowserbundlelinux32 whitespace=delete>2017-10-25</define-tag> -<define-tag version-torbrowserbundlelinux64 whitespace=delete>7.0.8</define-tag> -<define-tag releasedate-torbrowserbundlelinux64 whitespace=delete>2017-10-25</define-tag> +<define-tag version-torbrowserbundlelinux32 whitespace=delete>7.0.9</define-tag> +<define-tag releasedate-torbrowserbundlelinux32 whitespace=delete>2017-11-03</define-tag> +<define-tag version-torbrowserbundlelinux64 whitespace=delete>7.0.9</define-tag> +<define-tag releasedate-torbrowserbundlelinux64 whitespace=delete>2017-11-03</define-tag> <define-tag version-torbrowserbundlelinux32beta whitespace=delete>7.5a6</define-tag> <define-tag releasedate-torbrowserbundlelinux32beta whitespace=delete>2017-10-20</define-tag> <define-tag version-torbrowserbundlelinux64beta whitespace=delete>7.5a6</define-tag> <define-tag releasedate-torbrowserbundlelinux64beta whitespace=delete>2017-10-20</define-tag> -<define-tag version-torbrowserbundleosx32 whitespace=delete>7.0.8</define-tag> -<define-tag releasedate-torbrowserbundleosx32 whitespace=delete>2017-10-25</define-tag> -<define-tag version-torbrowserbundleosx64 whitespace=delete>7.0.8</define-tag> -<define-tag releasedate-torbrowserbundleosx64 whitespace=delete>2017-10-25</define-tag> +<define-tag version-torbrowserbundleosx32 whitespace=delete>7.0.9</define-tag> +<define-tag releasedate-torbrowserbundleosx32 whitespace=delete>2017-11-03</define-tag> +<define-tag version-torbrowserbundleosx64 whitespace=delete>7.0.9</define-tag> +<define-tag releasedate-torbrowserbundleosx64 whitespace=delete>2017-11-03</define-tag> <define-tag version-torbrowserbundleosx64beta whitespace=delete>7.5a6</define-tag> <define-tag releasedate-torbrowserbundleosx64beta whitespace=delete>2017-10-20</define-tag> <define-tag version-torbrowsersandboxlinux whitespace=delete>0.0.14</define-tag> diff --git a/projects/torbrowser/RecommendedTBBVersions b/projects/torbrowser/RecommendedTBBVersions index d3578c06..d5566b5e 100644 --- a/projects/torbrowser/RecommendedTBBVersions +++ b/projects/torbrowser/RecommendedTBBVersions @@ -11,6 +11,9 @@ "7.0.8-MacOS", "7.0.8-Windows", "7.0.8-Linux", +"7.0.9", +"7.0.9-MacOS", +"7.0.9-Linux", "7.5a5", "7.5a5-MacOS", "7.5a5-Windows", [View Less]

1 0

[tor-browser-bundle/maint-7.0] Apply patch for bug 24052
by boklm＠torproject.org 03 Nov '17

03 Nov '17

commit f1366de5a2a67dc5fda27718135ee2cff28c344d Author: Georg Koppen <gk(a)torproject.org> Date: Mon Oct 30 08:45:44 2017 +0000 Apply patch for bug 24052 --- gitian/descriptors/linux/gitian-firefox.yml | 2 + gitian/descriptors/mac/gitian-firefox.yml | 2 + gitian/patches/24052.patch | 57 +++++++++++++++++++++++++++++ 3 files changed, 61 insertions(+) diff --git a/gitian/descriptors/linux/gitian-firefox.yml b/gitian/descriptors/linux/gitian-firefox.yml index … [View More]1ff66a2..766bf99 100644 --- a/gitian/descriptors/linux/gitian-firefox.yml +++ b/gitian/descriptors/linux/gitian-firefox.yml @@ -36,6 +36,7 @@ files: - "re-dzip.sh" - "dzip.sh" - "versions" +- "24052.patch" script: | source versions INSTDIR="$HOME/install" @@ -88,6 +89,7 @@ script: | mkdir -p $INSTDIR/Debug/Browser/ cd tor-browser + patch -p1 < ../24052.patch # run get-moz-build-date before removing .git, which is used to get the year chmod +x ~/build/get-moz-build-date eval $(~/build/get-moz-build-date $(cat browser/config/version.txt)) diff --git a/gitian/descriptors/mac/gitian-firefox.yml b/gitian/descriptors/mac/gitian-firefox.yml index 73c46bf..f47afc8 100644 --- a/gitian/descriptors/mac/gitian-firefox.yml +++ b/gitian/descriptors/mac/gitian-firefox.yml @@ -24,6 +24,7 @@ files: - "dzip.sh" - "fix-info-plist.py" - "versions" +- "24052.patch" script: | INSTDIR="$HOME/install/" source versions @@ -36,6 +37,7 @@ script: | mkdir -p $OUTDIR/ cd tor-browser + patch -p1 < ../24052.patch # Extracting all the necessary tools tar xaf ../MacOSX10.7.sdk.tar.gz tar xaf ../cctools.tar.gz diff --git a/gitian/patches/24052.patch b/gitian/patches/24052.patch new file mode 100644 index 0000000..a418a97 --- /dev/null +++ b/gitian/patches/24052.patch @@ -0,0 +1,57 @@ +From c5d1bb91512f9dd20e0f54c6f3e6979588cf9f56 Mon Sep 17 00:00:00 2001 +From: Georg Koppen <gk(a)torproject.org> +Date: Fri, 27 Oct 2017 20:40:57 +0000 +Subject: [PATCH] Bug 24052: Streamline handling of file:// resources + +We should make sure restrictions regarding loading of file:// resources +are adhered to more strictly, at least on *nix platforms. + +This is a workaround for +https://bugzilla.mozilla.org/show_bug.cgi?id=1412081. + +diff --git a/netwerk/base/nsIOService.cpp b/netwerk/base/nsIOService.cpp +index 0da79c18ae41..0cc67da7b18f 100644 +--- a/netwerk/base/nsIOService.cpp ++++ b/netwerk/base/nsIOService.cpp +@@ -789,12 +789,20 @@ nsIOService::NewChannelFromURIWithProxyFlagsInternal(nsIURI* aURI, + // if calling newChannel2() fails we try to fall back to + // creating a new channel by calling NewChannel(). + if (NS_FAILED(rv)) { ++#ifdef XP_UNIX ++ if (rv == NS_ERROR_FILE_TARGET_DOES_NOT_EXIST) { ++ return rv; ++ } else { ++#endif + rv = handler->NewChannel(aURI, getter_AddRefs(channel)); + NS_ENSURE_SUCCESS(rv, rv); + // The protocol handler does not implement NewChannel2, so + // maybe we need to wrap the channel (see comment in MaybeWrap + // function). + channel = nsSecCheckWrapChannel::MaybeWrap(channel, aLoadInfo); ++#ifdef XP_UNIX ++ } ++#endif + } + } + +diff --git a/netwerk/protocol/file/nsFileProtocolHandler.cpp b/netwerk/protocol/file/nsFileProtocolHandler.cpp +index e55cb9d47460..c24c928b6f02 100644 +--- a/netwerk/protocol/file/nsFileProtocolHandler.cpp ++++ b/netwerk/protocol/file/nsFileProtocolHandler.cpp +@@ -188,6 +188,13 @@ nsFileProtocolHandler::NewChannel2(nsIURI* uri, + nsILoadInfo* aLoadInfo, + nsIChannel** result) + { ++#ifdef XP_UNIX ++ if (aLoadInfo && aLoadInfo->TriggeringPrincipal()) { ++ if (aLoadInfo->TriggeringPrincipal()->GetIsCodebasePrincipal()) { ++ return NS_ERROR_FILE_TARGET_DOES_NOT_EXIST; ++ } ++ } ++#endif + nsFileChannel *chan = new nsFileChannel(uri); + if (!chan) + return NS_ERROR_OUT_OF_MEMORY; +-- +2.14.2 + [View Less]

1 0

[tor-browser-bundle/maint-7.0] Update release date for 7.0.9
by boklm＠torproject.org 03 Nov '17

03 Nov '17

commit d92ad6b540e7330340a13fbdf52bd2cff0b10d79 Author: Georg Koppen <gk(a)torproject.org> Date: Wed Nov 1 20:59:50 2017 +0000 Update release date for 7.0.9 --- Bundle-Data/Docs/ChangeLog.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Bundle-Data/Docs/ChangeLog.txt b/Bundle-Data/Docs/ChangeLog.txt index 40e382b..478814b 100644 --- a/Bundle-Data/Docs/ChangeLog.txt +++ b/Bundle-Data/Docs/ChangeLog.txt @@ -1,4 +1,4 @@ -Tor Browser 7.0.9 -- October 31 2017 +… [View More]

1 0

[tor-browser-bundle/maint-7.0] Apply follow-up patch for bug 24052
by boklm＠torproject.org 03 Nov '17

03 Nov '17

commit a5388a804d47d7d4fb157beb351ebef9897e8a2b Author: Georg Koppen <gk(a)torproject.org> Date: Wed Nov 1 20:35:18 2017 +0000 Apply follow-up patch for bug 24052 --- gitian/descriptors/linux/gitian-firefox.yml | 2 ++ gitian/descriptors/mac/gitian-firefox.yml | 2 ++ gitian/patches/24052_2.patch | 29 +++++++++++++++++++++++++++++ 3 files changed, 33 insertions(+) diff --git a/gitian/descriptors/linux/gitian-firefox.yml b/gitian/descriptors/linux/gitian-… [View More]firefox.yml index 766bf99..967a981 100644 --- a/gitian/descriptors/linux/gitian-firefox.yml +++ b/gitian/descriptors/linux/gitian-firefox.yml @@ -37,6 +37,7 @@ files: - "dzip.sh" - "versions" - "24052.patch" +- "24052_2.patch" script: | source versions INSTDIR="$HOME/install" @@ -90,6 +91,7 @@ script: | cd tor-browser patch -p1 < ../24052.patch + patch -p1 < ../24052_2.patch # run get-moz-build-date before removing .git, which is used to get the year chmod +x ~/build/get-moz-build-date eval $(~/build/get-moz-build-date $(cat browser/config/version.txt)) diff --git a/gitian/descriptors/mac/gitian-firefox.yml b/gitian/descriptors/mac/gitian-firefox.yml index f47afc8..a38fc0b 100644 --- a/gitian/descriptors/mac/gitian-firefox.yml +++ b/gitian/descriptors/mac/gitian-firefox.yml @@ -25,6 +25,7 @@ files: - "fix-info-plist.py" - "versions" - "24052.patch" +- "24052_2.patch" script: | INSTDIR="$HOME/install/" source versions @@ -38,6 +39,7 @@ script: | cd tor-browser patch -p1 < ../24052.patch + patch -p1 < ../24052_2.patch # Extracting all the necessary tools tar xaf ../MacOSX10.7.sdk.tar.gz tar xaf ../cctools.tar.gz diff --git a/gitian/patches/24052_2.patch b/gitian/patches/24052_2.patch new file mode 100644 index 0000000..0060428 --- /dev/null +++ b/gitian/patches/24052_2.patch @@ -0,0 +1,29 @@ +From e2c1240ad25f4edcc7d3828b29f6aeb953a24a2e Mon Sep 17 00:00:00 2001 +From: Arthur Edelstein <arthuredelstein(a)gmail.com> +Date: Wed, 1 Nov 2017 02:33:18 -0700 +Subject: [PATCH] Bug 24052: Handle redirects by blocking them early + +This is the second part of the workaround for +https://bugzilla.mozilla.org/show_bug.cgi?id=1412081. + +diff --git a/netwerk/protocol/http/nsHttpChannel.cpp b/netwerk/protocol/http/nsHttpChannel.cpp +index 0e570e8cb57d..b38be48bf0c9 100644 +--- a/netwerk/protocol/http/nsHttpChannel.cpp ++++ b/netwerk/protocol/http/nsHttpChannel.cpp +@@ -5419,6 +5419,13 @@ nsHttpChannel::AsyncProcessRedirection(uint32_t redirectType) + return NS_ERROR_CORRUPTED_CONTENT; + } + ++ bool isRedirectToFile = false; ++ rv = mRedirectURI->SchemeIs("file", &isRedirectToFile); ++ if (!NS_FAILED(rv) && isRedirectToFile) { ++ LOG(("Attempted to redirect from a remote page to a file:// URI.")); ++ return NS_ERROR_FAILURE; ++ } ++ + if (mApplicationCache) { + // if we are redirected to a different origin check if there is a fallback + // cache entry to fall back to. we don't care about file strict +-- +2.14.2 + [View Less]

1 0

[tor-browser-bundle/maint-7.0] Prepare 7.0.9 release for Linux and OS X
by boklm＠torproject.org 03 Nov '17

03 Nov '17

commit 8c793c6e481079e21c8d73b4cbb95e6453c359e0 Author: Georg Koppen <gk(a)torproject.org> Date: Mon Oct 30 08:55:00 2017 +0000 Prepare 7.0.9 release for Linux and OS X Changelog and config.yml update --- Bundle-Data/Docs/ChangeLog.txt | 6 ++++++ tools/update-responses/config.yml | 8 ++++---- 2 files changed, 10 insertions(+), 4 deletions(-) diff --git a/Bundle-Data/Docs/ChangeLog.txt b/Bundle-Data/Docs/ChangeLog.txt index 835426f..40e382b 100644 --- a/Bundle-Data/… [View More]

1 0

[onionoo/master] Schedule next major version.
by karsten＠torproject.org 03 Nov '17

03 Nov '17

commit e58c47f5e6c114c2c636e76ba612543c74a204c1 Author: Karsten Loesing <karsten.loesing(a)gmx.net> Date: Fri Nov 3 16:20:17 2017 +0100 Schedule next major version. Optimistically schedule the next major version for end of this month for removing $ from family fingerprints. That's a rather small backward-incompatible change, so it should be fine to reduce the notification period to a bit under four weeks. But just in case we want more time we can always … [View More]

1 0

[onionoo/master] Update metrics-base.
by karsten＠torproject.org 03 Nov '17

03 Nov '17

commit 06206010ec6061dedc4477f49cf762f64fad1901 Author: Karsten Loesing <karsten.loesing(a)gmx.net> Date: Fri Nov 3 16:16:33 2017 +0100 Update metrics-base. --- src/build | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/build b/src/build index 4b34756..23c6e0b 160000 --- a/src/build +++ b/src/build @@ -1 +1 @@ -Subproject commit 4b34756ddd71ccaf0fc30e5f5bf0a813a297d4a3 +Subproject commit 23c6e0be5fab9463f137615053ef412e4da2315e

1 0

[translation/tails-misc_completed] Update translations for tails-misc_completed
by translation＠torproject.org 03 Nov '17

03 Nov '17

commit 88e10d9b34225791ddf957c3f9638e2dca5f2276 Author: Translation commit bot <translation(a)torproject.org> Date: Fri Nov 3 14:17:14 2017 +0000 Update translations for tails-misc_completed --- ja.po | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ja.po b/ja.po index 93b2f7765..70d01f2d6 100644 --- a/ja.po +++ b/ja.po @@ -20,7 +20,7 @@ msgstr "" "Project-Id-Version: The Tor Project\n" "Report-Msgid-Bugs-To: \n" "POT-Creation-Date: 2017-09-13 20:10+0200\n" -"… [View More]

1 0

[translation/tails-misc] Update translations for tails-misc
by translation＠torproject.org 03 Nov '17

03 Nov '17

commit 649cebcdfc79766ea72ef473089b9f6c844bcc58 Author: Translation commit bot <translation(a)torproject.org> Date: Fri Nov 3 14:17:09 2017 +0000 Update translations for tails-misc --- ja.po | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ja.po b/ja.po index 93b2f7765..70d01f2d6 100644 --- a/ja.po +++ b/ja.po @@ -20,7 +20,7 @@ msgstr "" "Project-Id-Version: The Tor Project\n" "Report-Msgid-Bugs-To: \n" "POT-Creation-Date: 2017-09-13 20:10+0200\n" -"PO-… [View More]

1 0

[translation/tails-persistence-setup] Update translations for tails-persistence-setup
by translation＠torproject.org 03 Nov '17

03 Nov '17

commit 63c33cf00aeb23e83332e978c647b113875f0ef7 Author: Translation commit bot <translation(a)torproject.org> Date: Fri Nov 3 14:16:07 2017 +0000 Update translations for tails-persistence-setup --- ja/ja.po | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ja/ja.po b/ja/ja.po index c66b28e89..42da1122f 100644 --- a/ja/ja.po +++ b/ja/ja.po @@ -14,7 +14,7 @@ msgstr "" "Project-Id-Version: The Tor Project\n" "Report-Msgid-Bugs-To: Tails developers <tails(a)boum.… [View More]

1 0