[tor-commits] [translation/communitytpo-contentspot] https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot
commit a64160c5defa41ca4846b6964135edba03805da8 Author: Translation commit bot Date: Sun Nov 15 06:45:12 2020 + https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot --- contents+he.po | 11 +-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/contents+he.po b/contents+he.po index 972a68bf78..6990ba9a87 100644 --- a/contents+he.po +++ b/contents+he.po @@ -8315,6 +8315,9 @@ msgid "" " at [ExoneraTor](https://exonerator.torproject.org/). Point to that website " "in your reply to the complaint." msgstr "" +"ת×××× ××××ק ×× ×ת××ת IP × ×¨×©×× ×× ×ת×× ×צ××× ×××× ×ס××× × " +"[ExoneraTor](https://exonerator.torproject.org/). ×צ×××¢× ×¢× ××תר ××× ×תש××× " +"ש××× ××ת××× ×." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8322,6 +8325,8 @@ msgid "" "If you feel it might be helpful, we can write you a signed letter confirming" " this information: Contact us at frontd...@torproject.org if you need one." msgstr "" +"×× ××ª× ×¡××ר×× ×©×××ר ××¢××ר, ×× × ×××××× ××××× ××× ×××ª× ×ת×× ×©××שר ×ת ×××××¢: " +"××ª×§×©×¨× ×××× × ××¨× frontd...@torproject.org ×× ×ª×¦×ר×× ××× ×××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8330,16 +8335,18 @@ msgid "" "passing through your machine, and include the relevant legal references for " "your country." msgstr "" +"×××¢× × ×©×××, ×××¨× ××××ר×ת ש××× ×× ××ר××× ×ת××× ×©×××¢×ר ××¨× ××ער×ת ש×××, ××¦×¨×¤× " +"×ת ×ס×××××× ×ר×××× ××× ××××× ×ª××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "## Things you can do preemptively" -msgstr "" +msgstr "## צע×× ×× ××¢× ×ק××××× ×©× ××ª× ××צע" #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "### Make the WHOIS info point as close to you as possible." -msgstr "" +msgstr "### ×¢×©× ×ת ××××ת ×××××¢ ×× WHOIS ××× ×©××תר קר×× ×××××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser-build/master] Correct firefox build number, and tag build2
commit 160636feb147748bdc0fae29e29ffcf307f21836 Author: Matthew Finkel Date: Sat Nov 14 21:15:43 2020 + Correct firefox build number, and tag build2 --- projects/firefox/config | 2 +- rbm.conf| 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/projects/firefox/config b/projects/firefox/config index b8bc4bd..a5e4cab 100644 --- a/projects/firefox/config +++ b/projects/firefox/config @@ -1,7 +1,7 @@ # vim: filetype=yaml sw=2 version: '[% c("abbrev") %]' filename: 'firefox-[% c("version") %]-[% c("var/osname") %]-[% c("var/build_id") %]' -git_hash: 'tor-browser-[% c("var/firefox_version") %]-[% c("var/torbrowser_branch") %]-1-build3' +git_hash: 'tor-browser-[% c("var/firefox_version") %]-[% c("var/torbrowser_branch") %]-1-build1' tag_gpg_id: 1 git_url: https://git.torproject.org/tor-browser.git git_submodule: 1 diff --git a/rbm.conf b/rbm.conf index e2e1acf..01a717c 100644 --- a/rbm.conf +++ b/rbm.conf @@ -25,7 +25,7 @@ buildconf: var: torbrowser_version: '10.5a4' - torbrowser_build: 'build1' + torbrowser_build: 'build2' torbrowser_incremental_from: - 10.5a3 project_name: tor-browser ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/communitytpo-contentspot] https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot
commit 394356b41c16540b381d2647e67bb69ca227d051 Author: Translation commit bot Date: Sat Nov 14 21:15:14 2020 + https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot --- contents+he.po | 16 +++- 1 file changed, 15 insertions(+), 1 deletion(-) diff --git a/contents+he.po b/contents+he.po index 1c493abc26..972a68bf78 100644 --- a/contents+he.po +++ b/contents+he.po @@ -8249,6 +8249,8 @@ msgid "" "very small number of complaints, especially compared to the amount of " "traffic we push." msgstr "" +"TorServers.net ×× × ×פע×× × ×ת×× ×צ××× ×× ×××× ××× × ×ק×××× ××¢× ××× ×ª××× ×ת, " +"×××××× ×ש×ש×××× ××××ת ××ª× ××¢× ×©×× × ××©× ×¢××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8256,6 +8258,8 @@ msgid "" "Roughly 80% are automated reports, and the rest is usually satisfied with " "[our default reply](https://www.torservers.net/wiki/abuse/templates)." msgstr "" +"××¢×¨× 80% ×× × ××××ת ×××××××××, ×××©× ×××פ××× ×¢× [our default " +"reply](https://www.torservers.net/wiki/abuse/templates)." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8263,6 +8267,8 @@ msgid "" "We have not needed the input of a lawyer in many years of operation " "following the advice on this page." msgstr "" +"×× ×צ×ר×× × ×¢××¨× ××¢××¨× ××× ××ר ×©× ×× ×¨××ת ×©× ×פע×× ×ª×××ת ×ש×××ש ×עצ×ת ש×××£ " +"×××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8272,13 +8278,17 @@ msgid "" "find many more templates for various scenarios on the [Tor Abuse " "Templates](/relay/community-resources/tor-abuse-templates/)." msgstr "" +"×× ×סף ×ת×× ××ת ×©× " +"Torservers.net](https://www.torservers.net/wiki/abuse/templates), ת×××× " +"××צ×× ×¢×× ×ª×× ××ת ר××ת ×תר××ש×× ×©×× ×× × [Tor Abuse Templates](/relay" +"/community-resources/tor-abuse-templates/)." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "" "It is exceptionally rare to encounter a scenario where none of these " "templates apply." -msgstr "" +msgstr "××× ××§×¨× × ××ר ×××ª×§× ×××§×¨× ×©××× × ×ª××× ×ת ××ת ××ת×× ××ת ××××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8286,6 +8296,8 @@ msgid "" "### If you receive a threatening letter from a lawyer about abusive use or a" " DMCA complaint, also don't freak out." msgstr "" +"### ×× ××ª× ×ק×××× ×××ª× ×××× ××¢××¨× ××× ×××× × ×צ×× ××¨×¢× ×× ×ª××× ×ª DMCA ×× ×ª×× ×¡×" +" ××¤× ××§× ×× ××.." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8293,6 +8305,8 @@ msgid "" "We are not aware of any case that made it near a court, and we will do " "everything in our power to support you if it does." msgstr "" +"×× × ×× ××××¢×× ×××£ ××§×¨× ×©××××¢ ×××ת ××שפ×, ××× × × ×¢×©× ××× ×©××××× × ×ת××× ××× ×× " +"×××ר ×קר×." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/communitytpo-contentspot] https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot
commit d93948c91cc4169b4ac99a1577341795a6926e7a Author: Translation commit bot Date: Sat Nov 14 20:45:11 2020 + https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot --- contents+he.po | 27 +-- 1 file changed, 21 insertions(+), 6 deletions(-) diff --git a/contents+he.po b/contents+he.po index dba4a3f6dc..1c493abc26 100644 --- a/contents+he.po +++ b/contents+he.po @@ -8143,13 +8143,15 @@ msgid "" "liability, and in general it helps to appear bigger than you are (and less " "likely to get raided)." msgstr "" +"××ת××©× ×ת×× ×ת ×©× ××ר×, ××ק×× ×××£ ×שפ×× ×××× ×ס×××¢ ×¢× ×ª×××¢×ת, ×××××¤× ×××× ×××ר" +" ×¢××ר ××ר××ת ×××××× ××תר ××שר ×× ×× ×××ת (×××××ת פ×××¢×× ×פש×××ת)." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "" "The people from Torservers.net in Germany found a lawyer who would agree to " "\"host\" them inside his office." -msgstr "" +msgstr "××× ×©×× × Torservers.net ×צ×× ×¢××¨× ××× ×©×ס××× \"××ר×\" ×××ª× ××שר××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8157,13 +8159,15 @@ msgid "" "They are now are a non-profit association (\"eingetragener Verein, " "gemeinnutzig\") registered inside a lawyer's office." msgstr "" +"×× ×עת ×ר××× ×©×× ×××ר×ת ר××× (\"eingetragener Verein, gemeinnutzig\") ×רש×× " +"×ת×× ××©×¨× ×¢×ר×× ××××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "" "The setup process was easy and cheap. Similar setups probably exist for your" " country." -msgstr "" +msgstr "ת×××× ××ק×× ××× ×§× ××××. ס××ר ש×× ××××× ×ª× ×ש ת×××× ××××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8171,12 +8175,14 @@ msgid "" "Another benefit of an association-like structure is that it might still work" " even when you leave, if you manage to find successors." msgstr "" +"×תר×× × ×סף ×©× ××× × ×©× ××× ××××× ×× × ×©××× ×××× ×××ש×× ×פע×× ×× ×× ×ª×¢×××, ×× " +"תצ××× ××צ×× ××××פ××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "" "### Consider preemptively teaching your local law enforcement about Tor." -msgstr "" +msgstr "### ש×ק×× ××××, ×ת×××× ×× ×¢, ×ת ×ער×ת ×××פת ×××ק ××ק×××ת ×××× Tor." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8186,6 +8192,9 @@ msgid "" "police-stuttgart) -- they're typically overwhelmed by their jobs and don't " "have enough background to know where to start." msgstr "" +"×× ×©× \"Cybercrime\" ×××¢×©× ×××××× ×ת ×× ×ש×צ××¢×× [×××× ×××ª× ×××× Tor " +"××××× ××¨× ×](https://blog.torproject.org/blog/talking-german-police-stuttgart)" +" -- ×× ×עת×× ××צפ×× ××¢×ס×ק×× ×©××× ×××× ×¨×§×¢ ×ספק ××× ×פ××× ××עת ××××× ××ת×××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8195,6 +8204,9 @@ msgid "" "criminals](https://2019.www.torproject.org/docs/faq-"; "abuse#WhatAboutCriminals)." msgstr "" +"×תקשר×ת ××××× × ××ª× ×ª ××× ×ת ×××××× ×ת ×××× ×××ª× ××××¢ Tor i×× × ×©××××©× ××¢××× " +"(×××××¢ ××× [ש××××©× ×××××× ××¢×ר××× ××](https://2019.www.torproject.org/docs"; +"/faq-abuse#WhatAboutCriminals)." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8202,16 +8214,18 @@ msgid "" "Also, if they do get a report about your relay, they'll think of you as a " "helpful expert rather than a potential criminal." msgstr "" +"××× ××, ×× ×× ×ק××× ×××× ×¢× ×× ×ת×× ×©×××, ×× ××ש×× ×¢×××× ××××××× ×××¢×××× ××שר" +" ××¢×ר××× ×× ×ס××× ××." #: https//community.torproject.org/re
[tor-commits] [tor-browser-build/master] fixup! Fold in stable 10.0.4 changelog
commit d2178e60a2ed866e4dafac43c403af750823b11b Author: Matthew Finkel Date: Sat Nov 14 20:33:11 2020 + fixup! Fold in stable 10.0.4 changelog --- projects/tor-browser/Bundle-Data/Docs/ChangeLog.txt | 19 +++ 1 file changed, 7 insertions(+), 12 deletions(-) diff --git a/projects/tor-browser/Bundle-Data/Docs/ChangeLog.txt b/projects/tor-browser/Bundle-Data/Docs/ChangeLog.txt index 821086b..5ba0abd 100644 --- a/projects/tor-browser/Bundle-Data/Docs/ChangeLog.txt +++ b/projects/tor-browser/Bundle-Data/Docs/ChangeLog.txt @@ -42,28 +42,23 @@ Tor Browser 10.5a3 -- November 10 2020 * Bug 40133: Bump Rust version for ESR 78 to 1.43.0 [tor-browser-build] Tor Browser 10.0.4 -- November 9 2020 - * Android + * All Platforms * Update NoScript to 11.1.5 * Bug 40022: EOY November Update - Matching [torbutton] - * Bug 40106: EOY November Update - Matching [fenix] * Bug 40219: Backport Mozilla Bug 1675905 [tor-browser] * Translations update - * Build System - * Android - * Update Go to 1.14.11 - * Bug 40141: Include "android" in signed tag [tor-browser-build] - -Tor Browser 10.0.4 -- November 9 2020 * Windows + OS X + Linux - * Update NoScript to 11.1.5 * Bug 40021: Keep page shown after Tor Browser update purple [torbutton] - * Bug 40022: EOY November Update - Matching [torbutton] - * Bug 40219: Backport Mozilla Bug 1675905 [tor-browser] + * Android + * Bug 40106: EOY November Update - Matching [fenix] * Translations update * Build System - * Windows + OS X + Linux + * All Platforms * Update Go to 1.14.11 + * Windows + OS X + Linux * Bug 40141: Include "desktop" in signed tag [tor-browser-build] + * Android + * Bug 40141: Include "android" in signed tag [tor-browser-build] Tor Browser 10.0.3 -- November 2 2020 * Android ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser-build/master] Fold in 10.0.2 changelog
commit 9c751f00df284d1916987a3bc42bcc8df4cecda4 Author: Matthew Finkel Date: Sat Nov 14 20:00:55 2020 + Fold in 10.0.2 changelog --- projects/tor-browser/Bundle-Data/Docs/ChangeLog.txt | 9 + 1 file changed, 9 insertions(+) diff --git a/projects/tor-browser/Bundle-Data/Docs/ChangeLog.txt b/projects/tor-browser/Bundle-Data/Docs/ChangeLog.txt index 74c39a3..821086b 100644 --- a/projects/tor-browser/Bundle-Data/Docs/ChangeLog.txt +++ b/projects/tor-browser/Bundle-Data/Docs/ChangeLog.txt @@ -337,6 +337,15 @@ Tor Browser 10.5a2 -- October 20 2020 * Bug 40051: Remove SOURCE_DATE_EPOCH patch [tor-browser-build] * Bug 40131: Remove unused binutils patches [tor-browser-build] +Tor Browser 10.0.2 -- October 20 2020 + * Windows + OS X + Linux + * Update Firefox to 78.4.0esr + * Update NoScript to 11.1.3 + * Bug 40192: Backport Mozilla Bug 1658881 [tor-browser] + * Translations update + * Linux + * Bug 40193: Add `AT_EMPTY_PATH` definition [tor-browser] + Tor Browser 10.0.1 -- October 13 2020 * Windows + OS X + Linux * Update NoScript to 11.1.1 ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser-build/master] Release preparations for 10.5a4
commit 0b8a55ae92bcafd8e6c855329f1008ea65d4e22f Author: Matthew Finkel Date: Fri Nov 13 18:10:23 2020 + Release preparations for 10.5a4 Versions bump and Changelog update --- projects/android-components/config | 4 +- .../gradle-dependencies-list.txt | 8 +- projects/fenix/config | 4 +- projects/fenix/gradle-dependencies-list.txt| 354 ++--- projects/firefox-langpacks/config | 2 +- projects/firefox/config| 2 +- projects/geckoview/config | 2 +- projects/tba-translation/config| 2 +- .../tor-browser/Bundle-Data/Docs/ChangeLog.txt | 23 ++ projects/tor/config| 2 +- rbm.conf | 4 +- 11 files changed, 214 insertions(+), 193 deletions(-) diff --git a/projects/android-components/config b/projects/android-components/config index e8dc2ab..4d94db0 100644 --- a/projects/android-components/config +++ b/projects/android-components/config @@ -8,12 +8,12 @@ gpg_keyring: torbutton.gpg variant: '[% IF c("var/release") %]Release[% ELSE %]Beta[% END %]' var: - android_components_version: 63.0.1 + android_components_version: 63.0.8 torbrowser_branch: 10.5 container: use_container: 1 # This should be updated when the list of gradle dependencies is changed. - gradle_dependencies_version: 8 + gradle_dependencies_version: 9 # Switch to make it easier to grab all dependencies during a dry-run. fetch_gradle_dependencies: 0 gradle_version: 6.6.1 diff --git a/projects/android-components/gradle-dependencies-list.txt b/projects/android-components/gradle-dependencies-list.txt index a9ce927..a37011f 100644 --- a/projects/android-components/gradle-dependencies-list.txt +++ b/projects/android-components/gradle-dependencies-list.txt @@ -400,12 +400,12 @@ d87cd2eea092430c4e5a95ff04c3213be89f54aa61c2c7f80fb6548e6dc38bab | https://maven dbd706151fe820ed233792a6773b70efcceb42987c209e27575ef91d4552b8c4 | https://maven.mozilla.org/maven2/org/mozilla/components/support-ktx/56.0.0/support-ktx-56.0.0.pom 22934a560b0bc34f01304efbdccc988d2e0fca039ae577894fcec52a7fdfd88e | https://maven.mozilla.org/maven2/org/mozilla/components/support-utils/56.0.0/support-utils-56.0.0.aar a2c1e39e5e58f585c2908af2266953b6b43e51f2fabe45e7723bc177c9c49bc0 | https://maven.mozilla.org/maven2/org/mozilla/components/support-utils/56.0.0/support-utils-56.0.0.pom -2a8adfa266cdfc0b48b4fa16d19219352cd77a5a9d655dd567ec4592598d9f3b | https://maven.mozilla.org/maven2/org/mozilla/geckoview/geckoview-beta/83.0.20201025174155/geckoview-beta-83.0.20201025174155.aar -c44f2bb3473956d2e673c05d8f2a6a299a8df357c3f9f22e489127488ff5d692 | https://maven.mozilla.org/maven2/org/mozilla/geckoview/geckoview-beta/83.0.20201025174155/geckoview-beta-83.0.20201025174155.pom +677281ce6616d67c6711dfdd594b7c7e318ddb6d2df1dbeaaa74e66e089dfe97 | https://maven.mozilla.org/maven2/org/mozilla/geckoview/geckoview-beta/83.0.20201108174701/geckoview-beta-83.0.20201108174701.aar +a2c7bc151dd1b3acafbcf718fa4da42a388ce3324fb9fcee93727dc9ea006366 | https://maven.mozilla.org/maven2/org/mozilla/geckoview/geckoview-beta/83.0.20201108174701/geckoview-beta-83.0.20201108174701.pom 92ba04c556a1ad2e68c4df484325bb80356cebfb0acd8199e363d8e952b08a8f | https://maven.mozilla.org/maven2/org/mozilla/geckoview/geckoview-nightly/84.0.20201020094032/geckoview-nightly-84.0.20201020094032.aar ebdd8cd37e94d73d16bec80e21766c72ad8980449d7033a5dd507dd5ca9a0695 | https://maven.mozilla.org/maven2/org/mozilla/geckoview/geckoview-nightly/84.0.20201020094032/geckoview-nightly-84.0.20201020094032.pom -5731f31ff90a090745ebaaaf3f07b4f590e230202289bea9a70e92a6d735675a | https://maven.mozilla.org/maven2/org/mozilla/geckoview/geckoview/82.0.20201014125134/geckoview-82.0.20201014125134.aar -3d741995e49c1979940d09fec6830491a5c1d9e43d4150b86ee4b43c827bc8e6 | https://maven.mozilla.org/maven2/org/mozilla/geckoview/geckoview/82.0.20201014125134/geckoview-82.0.20201014125134.pom +4b9749ade5141f4284e0a99e01f33a2960b39a9f66275846caa83af3ec03f8df | https://maven.mozilla.org/maven2/org/mozilla/geckoview/geckoview/83.0.20201110140026/geckoview-83.0.20201110140026.aar +7aba62adeff99576983f270bc396354420e69cc5a75bee3d8b52e42f4cd1125c | https://maven.mozilla.org/maven2/org/mozilla/geckoview/geckoview/83.0.20201110140026/geckoview-83.0.20201110140026.pom e3b779d5f79c8012d62d3e43bfc2d577ca65439bcf7181c8ec333d0f3fc76890 | https://maven.mozilla.org/maven2/org/mozilla/telemetry/glean-forUnitTests/33.0.4/glean-forUnitTests-33.0.4.jar 6e0b82e4ed2fec26de9c9e68d6fa237d716177d9f9e7f6b1213699d7f55e73e6 | https://maven.mozilla.org/maven2/org/mozilla/telemetry/glean-forUnitTests/33.0.4/glean-forUnitTests-33.0.4.pom 5eb5d86577ecf64ba66df368c07dde772d1e82da63f25d73e63118d261ca7a7c | https://maven.mozilla.org/maven2/org/mozilla
[tor-commits] [translation/communitytpo-contentspot] https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot
commit aa9bd3e550469f2b92337406db3bd5b68708d56d Author: Translation commit bot Date: Sat Nov 14 20:15:14 2020 + https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot --- contents+he.po | 26 +++--- 1 file changed, 23 insertions(+), 3 deletions(-) diff --git a/contents+he.po b/contents+he.po index 4f853e4962..dba4a3f6dc 100644 --- a/contents+he.po +++ b/contents+he.po @@ -8040,6 +8040,8 @@ msgid "" " communication services in your country (and the country of your hosting " "provider!)." msgstr "" +"### ××××× ×©××ª× ×××ר×× ×ת ×סע×פ×× ××שפ×××× ×ר×××× ××× ×©× common-carrier ××× " +"שר××ª× ×ª×§×©×רת ××רצ×× (××××× ×ª× ×©× ×ספק ××××¨× ×©×××!)." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8047,11 +8049,12 @@ msgid "" "At least most western countries should have regulations that exclude " "communication service providers from liability." msgstr "" +"××× ×פ××ת ××××× ×ת ××ער×××ת צר×××ת ××××× ×ª×§× ×ת ×שר ×ש×רר×ת ×¡×¤×§× ×©×¨×ת ×ת×××¢×ת." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "Please add your country's regulations to this list." -msgstr "" +msgstr "×× × ××ס××¤× ×ת ××ª×§× ×ת ××××× ×ª×× ×רש××× ×××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8060,6 +8063,9 @@ msgid "" "[EFF's Legal FAQ for Tor Operators](/relay/community-resources/eff-tor-" "legal-faq) (a very good and relevant read for other countries as well)" msgstr "" +"* ×רצ×ת ××ר×ת: [DMCA 512](https://www.law.cornell.edu/uscode/text/17/512); " +"ר×× [EFF's Legal FAQ for Tor Operators](/relay/community-resources/eff-tor-" +"legal-faq) (××× ××× ×ר×××× ×× ××¢××× ××××× ×ת ××ר×ת ×× ×× )" #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8067,6 +8073,8 @@ msgid "" "* Germany: [TMG 8](http://www.gesetze-im-internet.de/tmg/__8.html) and " "[15](http://www.gesetze-im-internet.de/tmg/__15.html)." msgstr "" +"* ×ר×× ××: [TMG 8](http://www.gesetze-im-internet.de/tmg/__8.html) × " +"[15](http://www.gesetze-im-internet.de/tmg/__15.html)." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8074,6 +8082,8 @@ msgid "" "* Netherlands: [Artikel 6:196c " "BW](http://wetten.overheid.nl/BWBR0005289/Boek6/Titel3/Afdeling4A/Artikel196c/)" msgstr "" +"* ×××× ×: [Artikel 6:196c " +"BW](http://wetten.overheid.nl/BWBR0005289/Boek6/Titel3/Afdeling4A/Artikel196c/)" #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8081,11 +8091,13 @@ msgid "" "* Austria: [ECG " "13](http://www.ris.bka.gv.at/Dokument.wxe?Abfrage=Bundesnormen&Dokumentnummer=NOR40025809)" msgstr "" +"* ××ס×ר××: [ECG " +"13](http://www.ris.bka.gv.at/Dokument.wxe?Abfrage=Bundesnormen&Dokumentnummer=NOR40025809)" #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "* Sweden: [16-19 2002:562](https://lagen.nu/2002:562#P16S1)" -msgstr "" +msgstr "* ש××××: [16-19 2002:562](https://lagen.nu/2002:562#P16S1)" #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8093,6 +8105,8 @@ msgid "" "If you country is missing here and you know a lawyer who can provide a legal" " opinion, please get in contact with Tor Project." msgstr "" +"×× ×××× ×ª× ××¡×¨× ×××, ××× × ×××ר ×¢××¨× ××× ×©×××× ×ספק ×××ת ×עת ×שפ××ת, ×× × ×¦×ר " +"קשר ×¢× ×¤×¨×××§× Tor." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8100,6 +8114,8 @@ msgid "" "### If you're part of an organization that will be running the exit relay " "(ISP, university etc), consider teaching your legal people about Tor." msgstr "" +"### ×× ×× ×× ××ק ××ר××× ×©×פע×× ×ת × ×ת×× ××צ×
[tor-commits] [translation/torbutton-browseronboardingproperties] https://gitweb.torproject.org/translation.git/commit/?h=torbutton-browseronboardingproperties
commit 07e9dd75eb892909ef914d594a6bc40505c16ff5 Author: Translation commit bot Date: Sat Nov 14 18:47:44 2020 + https://gitweb.torproject.org/translation.git/commit/?h=torbutton-browseronboardingproperties --- sv-SE/browserOnboarding.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sv-SE/browserOnboarding.properties b/sv-SE/browserOnboarding.properties index 21329aae60..975896d9d6 100644 --- a/sv-SE/browserOnboarding.properties +++ b/sv-SE/browserOnboarding.properties @@ -40,7 +40,7 @@ onboarding.tour-tor-expect-differences.next-button=Gå till Onion-tjänster onboarding.tour-tor-onion-services=Onion-tjänster onboarding.tour-tor-onion-services.title=Var extra skyddad. -onboarding.tour-tor-onion-services.description=Onion-tjänster är webbplatser som slutar med .onion som ger extra skydd till utgivare och besökare, inklusive extra skyddsåtgärder mot censur. Onion-tjänster tillåter alla att tillhandahålla innehåll och tjänster anonymt. Klicka nedan för att besöka onion-webbplatsen för DuckDuckGo. +onboarding.tour-tor-onion-services.description=Onion-tjänster är webbplatser som slutar med .onion som ger extra skydd till utgivare och besökare, inklusive extra skyddsåtgärder mot censur. Onion-tjänster tillåter vem som helst att tillhandahålla innehåll och tjänster anonymt. Klicka nedan för att besöka onion-webbplatsen för DuckDuckGo. onboarding.tour-tor-onion-services.button=Besök en Onion onboarding.tour-tor-onion-services.next-button=Färdig ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 21952: Implement Onion-Location
commit af92504dc26134f2250c6c52a2ce5645afdb4ff6 Author: Alex Catarineu Date: Thu Mar 5 22:16:39 2020 +0100 Bug 21952: Implement Onion-Location Whenever a valid Onion-Location HTTP header (or corresponding HTML http-equiv attribute) is found in a document load, we either redirect to it (if the user opted-in via preference) or notify the presence of an onionsite alternative with a badge in the urlbar. --- browser/base/content/browser.js| 12 ++ browser/base/content/browser.xhtml | 3 + browser/components/BrowserGlue.jsm | 9 ++ .../onionservices/OnionLocationChild.jsm | 43 ++ .../onionservices/OnionLocationParent.jsm | 161 + .../content/onionlocation-notification-icons.css | 5 + .../onionservices/content/onionlocation-urlbar.css | 27 .../content/onionlocation-urlbar.inc.xhtml | 10 ++ .../onionservices/content/onionlocation.svg| 3 + .../content/onionlocationPreferences.inc.xhtml | 11 ++ .../content/onionlocationPreferences.js| 31 browser/components/onionservices/jar.mn| 2 + browser/components/onionservices/moz.build | 2 + browser/components/preferences/privacy.inc.xhtml | 2 + browser/components/preferences/privacy.js | 17 +++ browser/themes/shared/notification-icons.inc.css | 2 + browser/themes/shared/urlbar-searchbar.inc.css | 2 + dom/base/Document.cpp | 34 - dom/base/Document.h| 2 + dom/webidl/Document.webidl | 9 ++ modules/libpref/init/StaticPrefList.yaml | 5 + xpcom/ds/StaticAtoms.py| 1 + 22 files changed, 392 insertions(+), 1 deletion(-) diff --git a/browser/base/content/browser.js b/browser/base/content/browser.js index e1681a2759db..7d52c125b94e 100644 --- a/browser/base/content/browser.js +++ b/browser/base/content/browser.js @@ -44,6 +44,7 @@ XPCOMUtils.defineLazyModuleGetters(this, { NetUtil: "resource://gre/modules/NetUtil.jsm", NewTabUtils: "resource://gre/modules/NewTabUtils.jsm", OpenInTabsUtils: "resource:///modules/OpenInTabsUtils.jsm", + OnionLocationParent: "resource:///modules/OnionLocationParent.jsm", PageActions: "resource:///modules/PageActions.jsm", PageThumbs: "resource://gre/modules/PageThumbs.jsm", PanelMultiView: "resource:///modules/PanelMultiView.jsm", @@ -5421,6 +5422,7 @@ var XULBrowserWindow = { Services.obs.notifyObservers(null, "touchbar-location-change", location); UpdateBackForwardCommands(gBrowser.webNavigation); ReaderParent.updateReaderButton(gBrowser.selectedBrowser); +OnionLocationParent.updateOnionLocationBadge(gBrowser.selectedBrowser); if (!gMultiProcessBrowser) { // Bug 1108553 - Cannot rotate images with e10s @@ -5963,6 +5965,16 @@ const AccessibilityRefreshBlocker = { var TabsProgressListener = { onStateChange(aBrowser, aWebProgress, aRequest, aStateFlags, aStatus) { +// Clear OnionLocation UI +if ( + aStateFlags & Ci.nsIWebProgressListener.STATE_START && + aStateFlags & Ci.nsIWebProgressListener.STATE_IS_NETWORK && + aRequest && + aWebProgress.isTopLevel +) { + OnionLocationParent.onStateChange(aBrowser); +} + // Collect telemetry data about tab load times. if ( aWebProgress.isTopLevel && diff --git a/browser/base/content/browser.xhtml b/browser/base/content/browser.xhtml index 4cab5fad6475..c2caecc1a416 100644 --- a/browser/base/content/browser.xhtml +++ b/browser/base/content/browser.xhtml @@ -1077,6 +1077,9 @@ onclick="FullZoom.reset();" tooltip="dynamic-shortcut-tooltip" hidden="true"/> + +#include ../../components/onionservices/content/onionlocation-urlbar.inc.xhtml + {}, +}; + +const options = { + autofocus: true, + persistent: true, + removeOnDismissal: false, + eventCallback(aTopic) { +if (aTopic === "removed") { + delete browser._onionLocationPrompt; + delete browser.onionpopupnotificationanchor; +} + }, + learnMoreURL: NOTIFICATION_LEARN_MORE_URL, + displayURI: { +hostPort: NOTIFICATION_TITLE, // This is hacky, but allows us to have a title without extra markup/css. + }, + hideClose: true, + popupIconClass: "onionlocation-notification-icon", +}; + +// A hacky way of setting the popup anchor outside the usual url bar icon box +// onionlocationpopupnotificationanchor comes from `${ANCHOR_ID}popupnotificationanchor` +// From https://searchfox.org/mozilla-esr68/rev/080f9ed47742644d2ff84f7aa0b10aea5c44301a/browser/components/newtab/lib/CFRPageActions.jsm#488 +browser.onionlocationpopupnotificationanchor = win.document.getElementById(
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 33852: Clean up about:logins (LockWise) to avoid mentioning sync, etc.
commit 4cc602ba31560b43ca696c9653ea310c9fb8fbf4 Author: Kathy Brade Date: Tue Jul 14 11:15:07 2020 -0400 Bug 33852: Clean up about:logins (LockWise) to avoid mentioning sync, etc. Hide elements on about:logins that mention sync, "Firefox LockWise", and Mozilla's LockWise mobile apps. Disable the "Create New Login" button when security.nocertdb is true. --- browser/components/aboutlogins/AboutLoginsParent.jsm | 2 ++ browser/components/aboutlogins/content/aboutLogins.css | 8 +++- browser/components/aboutlogins/content/aboutLogins.js | 6 ++ .../aboutlogins/content/components/fxaccounts-button.css | 5 + .../components/aboutlogins/content/components/menu-button.css | 10 ++ 5 files changed, 30 insertions(+), 1 deletion(-) diff --git a/browser/components/aboutlogins/AboutLoginsParent.jsm b/browser/components/aboutlogins/AboutLoginsParent.jsm index 015ce5f29332..d06d6d0ec6c7 100644 --- a/browser/components/aboutlogins/AboutLoginsParent.jsm +++ b/browser/components/aboutlogins/AboutLoginsParent.jsm @@ -62,6 +62,7 @@ const PASSWORD_SYNC_NOTIFICATION_ID = "enable-password-sync"; const HIDE_MOBILE_FOOTER_PREF = "signon.management.page.hideMobileFooter"; const SHOW_PASSWORD_SYNC_NOTIFICATION_PREF = "signon.management.page.showPasswordSyncNotification"; +const NOCERTDB_PREF = "security.nocertdb"; // about:logins will always use the privileged content process, // even if it is disabled for other consumers such as about:newtab. @@ -431,6 +432,7 @@ class AboutLoginsParent extends JSWindowActorParent { importVisible: Services.policies.isAllowed("profileImport") && AppConstants.platform != "linux", +canCreateLogins: !Services.prefs.getBoolPref(NOCERTDB_PREF, false), }); await AboutLogins._sendAllLoginRelatedObjects( diff --git a/browser/components/aboutlogins/content/aboutLogins.css b/browser/components/aboutlogins/content/aboutLogins.css index 7ed29bda8297..dca63da2e649 100644 --- a/browser/components/aboutlogins/content/aboutLogins.css +++ b/browser/components/aboutlogins/content/aboutLogins.css @@ -69,6 +69,11 @@ login-item { grid-area: login; } +/* Do not promote Mozilla Sync in Tor Browser. */ +login-intro { + display: none !important; +} + #branding-logo { flex-basis: var(--sidebar-width); flex-shrink: 0; @@ -83,7 +88,8 @@ login-item { } } -:root:not(.official-branding) #branding-logo { +/* Hide "Firefox LockWise" branding in Tor Browser. */ +#branding-logo { visibility: hidden; } diff --git a/browser/components/aboutlogins/content/aboutLogins.js b/browser/components/aboutlogins/content/aboutLogins.js index da7d9016a2eb..361b2b0d02bf 100644 --- a/browser/components/aboutlogins/content/aboutLogins.js +++ b/browser/components/aboutlogins/content/aboutLogins.js @@ -19,6 +19,9 @@ const gElements = { get loginFooter() { return this.loginItem.shadowRoot.querySelector("login-footer"); }, + get createNewLoginButton() { +return this.loginList.shadowRoot.querySelector(".create-login-button"); + }, }; let numberOfLogins = 0; @@ -100,6 +103,9 @@ window.addEventListener("AboutLoginsChromeToContent", event => { gElements.loginList.setSortDirection(event.detail.value.selectedSort); document.documentElement.classList.add("initialized"); gElements.loginList.classList.add("initialized"); + if (!event.detail.value.canCreateLogins) { +gElements.createNewLoginButton.disabled = true; + } break; } case "ShowLoginItemError": { diff --git a/browser/components/aboutlogins/content/components/fxaccounts-button.css b/browser/components/aboutlogins/content/components/fxaccounts-button.css index aefda548c84d..a02707980158 100644 --- a/browser/components/aboutlogins/content/components/fxaccounts-button.css +++ b/browser/components/aboutlogins/content/components/fxaccounts-button.css @@ -8,6 +8,11 @@ align-items: center; } +/* Do not promote Mozilla Sync in Tor Browser. */ +.logged-out-view { + display: none !important; +} + .fxaccounts-extra-text { /* Only show at most 3 lines of text to limit the text from overflowing the header. */ diff --git a/browser/components/aboutlogins/content/components/menu-button.css b/browser/components/aboutlogins/content/components/menu-button.css index 3c93d409b2c7..2d7380b2ea37 100644 --- a/browser/components/aboutlogins/content/components/menu-button.css +++ b/browser/components/aboutlogins/content/components/menu-button.css @@ -85,3 +85,13 @@ .menuitem-mobile-android { background-image: url("chrome://browser/skin/logo-android.svg"); } + +/* + * Do not promote LockWise mobile apps in Tor Browser: hide the menu items + * and the separator line that precedes them. + */ +.menuitem-mobile-android, +.menuitem-mobile-ios, +button[data-event-name="AboutLoginsGetHelp"] + hr { + display: none !important; +} _
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 1650281 - P2: Make sure `gCombinedSizes` won't be underflowed r=gerald
commit 29264dc53cb59a7cc7e1a8991ef937533bd50866 Author: Chun-Min Chang Date: Tue Jul 21 23:39:14 2020 + Bug 1650281 - P2: Make sure `gCombinedSizes` won't be underflowed r=gerald In any case, `gCombinedSizes` should be larger than or equal to the buffer within `MemoryClockCache`. Differential Revision: https://phabricator.services.mozilla.com/D84274 --- dom/media/MemoryBlockCache.cpp | 1 + 1 file changed, 1 insertion(+) diff --git a/dom/media/MemoryBlockCache.cpp b/dom/media/MemoryBlockCache.cpp index bf073e6769d0..2848a3f3812c 100644 --- a/dom/media/MemoryBlockCache.cpp +++ b/dom/media/MemoryBlockCache.cpp @@ -52,6 +52,7 @@ MemoryBlockCache::MemoryBlockCache(int64_t aContentLength) } MemoryBlockCache::~MemoryBlockCache() { + MOZ_ASSERT(gCombinedSizes >= mBuffer.Length()); size_t sizes = static_cast(gCombinedSizes -= mBuffer.Length()); LOG("~MemoryBlockCache() - destroying buffer of size %zu; combined sizes now " "%zu", ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 1658881 - When failing to create a channel and an image request, make sure to set the image blocking status appropriately. r=tnikkel
commit fff9afd67e1bd01a1c75becaa2db34d700bd4191 Author: Emilio Cobos Ãlvarez Date: Wed Sep 9 22:58:29 2020 + Bug 1658881 - When failing to create a channel and an image request, make sure to set the image blocking status appropriately. r=tnikkel This is the same status as we do for known no-data protocols here: https://searchfox.org/mozilla-central/rev/ac142717cc067d875e83e4b1316f004f6e063a46/dom/base/nsNoDataProtocolContentPolicy.cpp#59 This ensures we treat these two cases the same. Differential Revision: https://phabricator.services.mozilla.com/D89382 --- dom/base/nsImageLoadingContent.cpp | 7 ++- layout/reftests/image/reftest.list | 1 + layout/reftests/image/unknown-protocol-ref.html | 1 + layout/reftests/image/unknown-protocol.html | 1 + 4 files changed, 9 insertions(+), 1 deletion(-) diff --git a/dom/base/nsImageLoadingContent.cpp b/dom/base/nsImageLoadingContent.cpp index 23b1fd791c1f..85de63bef02d 100644 --- a/dom/base/nsImageLoadingContent.cpp +++ b/dom/base/nsImageLoadingContent.cpp @@ -1207,7 +1207,12 @@ nsresult nsImageLoadingContent::LoadImage(nsIURI* aNewURI, bool aForce, MOZ_ASSERT(!req, "Shouldn't have non-null request here"); // If we don't have a current URI, we might as well store this URI so people // know what we tried (and failed) to load. -if (!mCurrentRequest) mCurrentURI = aNewURI; +if (!mCurrentRequest) { + mCurrentURI = aNewURI; + if (mImageBlockingStatus == nsIContentPolicy::ACCEPT) { +mImageBlockingStatus = nsIContentPolicy::REJECT_REQUEST; + } +} FireEvent(NS_LITERAL_STRING("error")); FireEvent(NS_LITERAL_STRING("loadend")); diff --git a/layout/reftests/image/reftest.list b/layout/reftests/image/reftest.list index a8a91c13ed3a..3c561fe3a7c8 100644 --- a/layout/reftests/image/reftest.list +++ b/layout/reftests/image/reftest.list @@ -69,3 +69,4 @@ random-if(/^Windows\x20NT\x206\.1/.test(http.oscpu)) == image-srcset-basic-selec pref(dom.image-lazy-loading.enabled,true) == moz-broken-matching-lazy-load.html moz-broken-matching-1-ref.html == img-invalidation-local-transform-1.html img-invalidation-local-transform-1-ref.html +== unknown-protocol.html unknown-protocol-ref.html diff --git a/layout/reftests/image/unknown-protocol-ref.html b/layout/reftests/image/unknown-protocol-ref.html new file mode 100644 index ..b5bb326eef57 --- /dev/null +++ b/layout/reftests/image/unknown-protocol-ref.html @@ -0,0 +1 @@ +mailto://foo";> diff --git a/layout/reftests/image/unknown-protocol.html b/layout/reftests/image/unknown-protocol.html new file mode 100644 index ..ef06881b7bcb --- /dev/null +++ b/layout/reftests/image/unknown-protocol.html @@ -0,0 +1 @@ + ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 32418: Allow updates to be disabled via an enterprise policy.
commit bf79197a12073ec6c05016c1dc60de534123a4ef Author: Kathy Brade Date: Thu Apr 16 17:07:09 2020 -0400 Bug 32418: Allow updates to be disabled via an enterprise policy. Restrict the Enterprise Policies mechanism to only consult a policies.json file (avoiding the Windows Registry and macOS's file system attributes). Add a few disabledByPolicy() checks to the update service to avoid extraneous (and potentially confusing) log messages when updates are disabled by policy. Sample content for distribution/policies.json: { "policies": { "DisableAppUpdate": true } } On Linux, avoid reading policies from /etc/firefox/policies/policies.json --- .../enterprisepolicies/EnterprisePolicies.js | 12 toolkit/components/enterprisepolicies/moz.build | 4 +++- toolkit/mozapps/update/UpdateService.jsm | 20 3 files changed, 35 insertions(+), 1 deletion(-) diff --git a/toolkit/components/enterprisepolicies/EnterprisePolicies.js b/toolkit/components/enterprisepolicies/EnterprisePolicies.js index aa8a2e54024e..8f9cd6f5039d 100644 --- a/toolkit/components/enterprisepolicies/EnterprisePolicies.js +++ b/toolkit/components/enterprisepolicies/EnterprisePolicies.js @@ -2,6 +2,10 @@ * License, v. 2.0. If a copy of the MPL was not distributed with this * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ +// To ensure that policies intended for Firefox or another browser will not +// be used, Tor Browser only looks for policies in ${InstallDir}/distribution +#define AVOID_SYSTEM_POLICIES MOZ_PROXY_BYPASS_PROTECTION + const { XPCOMUtils } = ChromeUtils.import( "resource://gre/modules/XPCOMUtils.jsm" ); @@ -11,9 +15,11 @@ const { AppConstants } = ChromeUtils.import( ); XPCOMUtils.defineLazyModuleGetters(this, { +#ifndef AVOID_SYSTEM_POLICIES WindowsGPOParser: "resource://gre/modules/policies/WindowsGPOParser.jsm", macOSPoliciesParser: "resource://gre/modules/policies/macOSPoliciesParser.jsm", +#endif Policies: "resource:///modules/policies/Policies.jsm", JsonSchemaValidator: "resource://gre/modules/components-utils/JsonSchemaValidator.jsm", @@ -114,6 +120,7 @@ EnterprisePoliciesManager.prototype = { _chooseProvider() { let provider = null; +#ifndef AVOID_SYSTEM_POLICIES if (AppConstants.platform == "win") { provider = new WindowsGPOPoliciesProvider(); } else if (AppConstants.platform == "macosx") { @@ -122,6 +129,7 @@ EnterprisePoliciesManager.prototype = { if (provider && provider.hasPolicies) { return provider; } +#endif provider = new JSONPoliciesProvider(); if (provider.hasPolicies) { @@ -473,6 +481,7 @@ class JSONPoliciesProvider { _getConfigurationFile() { let configFile = null; +#ifndef AVOID_SYSTEM_POLICIES if (AppConstants.platform == "linux") { let systemConfigFile = Cc["@mozilla.org/file/local;1"].createInstance( Ci.nsIFile @@ -485,6 +494,7 @@ class JSONPoliciesProvider { return systemConfigFile; } } +#endif try { let perUserPath = Services.prefs.getBoolPref(PREF_PER_USER_DIR, false); @@ -566,6 +576,7 @@ class JSONPoliciesProvider { } } +#ifndef AVOID_SYSTEM_POLICIES class WindowsGPOPoliciesProvider { constructor() { this._policies = null; @@ -631,6 +642,7 @@ class macOSPoliciesProvider { return this._failed; } } +#endif var components = [EnterprisePoliciesManager]; this.NSGetFactory = XPCOMUtils.generateNSGetFactory(components); diff --git a/toolkit/components/enterprisepolicies/moz.build b/toolkit/components/enterprisepolicies/moz.build index 8f7d7d8cfed7..7528f569bb3e 100644 --- a/toolkit/components/enterprisepolicies/moz.build +++ b/toolkit/components/enterprisepolicies/moz.build @@ -19,10 +19,12 @@ TEST_DIRS += [ if CONFIG['MOZ_WIDGET_TOOLKIT'] != "android": EXTRA_COMPONENTS += [ -'EnterprisePolicies.js', 'EnterprisePolicies.manifest', 'EnterprisePoliciesContent.js', ] +EXTRA_PP_COMPONENTS += [ +'EnterprisePolicies.js', +] if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'windows': EXTRA_JS_MODULES.policies += [ diff --git a/toolkit/mozapps/update/UpdateService.jsm b/toolkit/mozapps/update/UpdateService.jsm index 855230e83c31..93a6ee81c295 100644 --- a/toolkit/mozapps/update/UpdateService.jsm +++ b/toolkit/mozapps/update/UpdateService.jsm @@ -2754,6 +2754,10 @@ UpdateService.prototype = { _checkForBackgroundUpdates: function AUS__checkForBackgroundUpdates( isNotify ) { +if (this.disabledByPolicy) { + return; +} + this._isNotify = isNotify; // Histogram IDs: @@ -3254,6 +3258,14 @@ UpdateService.prototype = { * See nsIUpdateService.idl */ get canApplyUpdates() { +if (this.disabledByPolicy) { + LOG( +"UpdateService.canApplyUpdates - unable to apply updates, " + +
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 1650281 - P1: Widen `gCombinedSizes` once the buffers grow r=gerald
commit 31f5cb3e95aa5d5e7cc13c018275fc8b679356f8 Author: Chun-Min Chang Date: Tue Jul 21 23:38:57 2020 + Bug 1650281 - P1: Widen `gCombinedSizes` once the buffers grow r=gerald The `gCombinedSizes` need to be enlarged once the inner buffer within `MemoryBlockCache` grows. Otherwise, when the `MemoryBlockCache` is released, subtracting the buffer-size of the `MemoryBlockCache` from `gCombinedSizes` lead to a underflow. Differential Revision: https://phabricator.services.mozilla.com/D84273 --- dom/media/MemoryBlockCache.cpp | 4 1 file changed, 4 insertions(+) diff --git a/dom/media/MemoryBlockCache.cpp b/dom/media/MemoryBlockCache.cpp index 2d31119dca0a..bf073e6769d0 100644 --- a/dom/media/MemoryBlockCache.cpp +++ b/dom/media/MemoryBlockCache.cpp @@ -114,6 +114,10 @@ bool MemoryBlockCache::EnsureBufferCanContain(size_t aContentLength) { // possibly bypass some future growths that would fit in this new capacity. mBuffer.SetLength(capacity); } + const size_t newSizes = gCombinedSizes += (extra + extraCapacity); + LOG("EnsureBufferCanContain(%zu) - buffer size %zu + requested %zu + bonus " + "%zu = %zu; combined sizes %zu", + aContentLength, initialLength, extra, extraCapacity, capacity, newSizes); mHasGrown = true; return true; } ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 40073: Disable remote Public Suffix List fetching
commit dd6be9dfa7d7d77a64e200d05b6132fe1d61f05b Author: Alex Catarineu Date: Thu Aug 13 11:05:03 2020 +0200 Bug 40073: Disable remote Public Suffix List fetching In https://bugzilla.mozilla.org/show_bug.cgi?id=1563246 Firefox implemented fetching the Public Suffix List via RemoteSettings and replacing the default one at runtime, which we do not want. --- browser/components/BrowserGlue.jsm | 5 - 1 file changed, 5 deletions(-) diff --git a/browser/components/BrowserGlue.jsm b/browser/components/BrowserGlue.jsm index e08e461a27ff..ec38d0ca8b33 100644 --- a/browser/components/BrowserGlue.jsm +++ b/browser/components/BrowserGlue.jsm @@ -695,7 +695,6 @@ XPCOMUtils.defineLazyModuleGetters(this, { PluralForm: "resource://gre/modules/PluralForm.jsm", PrivateBrowsingUtils: "resource://gre/modules/PrivateBrowsingUtils.jsm", ProcessHangMonitor: "resource:///modules/ProcessHangMonitor.jsm", - PublicSuffixList: "resource://gre/modules/netwerk-dns/PublicSuffixList.jsm", RemoteSettings: "resource://services-settings/remote-settings.js", RemoteSecuritySettings: "resource://gre/modules/psm/RemoteSecuritySettings.jsm", @@ -2575,10 +2574,6 @@ BrowserGlue.prototype = { this._addBreachesSyncHandler(); }, - () => { -PublicSuffixList.init(); - }, - () => { RemoteSecuritySettings.init(); }, ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 40166: Disable security.certerrors.mitm.auto_enable_enterprise_roots
commit 7ae9441530d5509b794422f21342cd92270da2c9 Author: Alex Catarineu Date: Fri Oct 9 12:55:35 2020 +0200 Bug 40166: Disable security.certerrors.mitm.auto_enable_enterprise_roots --- browser/app/profile/000-tor-browser.js | 3 +++ browser/components/BrowserGlue.jsm | 14 ++ 2 files changed, 17 insertions(+) diff --git a/browser/app/profile/000-tor-browser.js b/browser/app/profile/000-tor-browser.js index c87bd050b8f5..1218ebfe3d49 100644 --- a/browser/app/profile/000-tor-browser.js +++ b/browser/app/profile/000-tor-browser.js @@ -321,6 +321,9 @@ pref("security.enterprise_roots.enabled", false); // Don't ping Mozilla for MitM detection, see bug 32321 pref("security.certerrors.mitm.priming.enabled", false); +// Don't automatically enable enterprise roots, see bug 40166 +pref("security.certerrors.mitm.auto_enable_enterprise_roots", false); + // Disable the language pack signing check for now on macOS, see #31942 #ifdef XP_MACOSX pref("extensions.langpacks.signatures.required", false); diff --git a/browser/components/BrowserGlue.jsm b/browser/components/BrowserGlue.jsm index 057a2121533c..3750230a250b 100644 --- a/browser/components/BrowserGlue.jsm +++ b/browser/components/BrowserGlue.jsm @@ -1319,6 +1319,20 @@ BrowserGlue.prototype = { // handle any UI migration this._migrateUI(); +// Clear possibly auto enabled enterprise_roots prefs (see bug 40166) +if ( + !Services.prefs.getBoolPref( +"security.certerrors.mitm.auto_enable_enterprise_roots" + ) && + Services.prefs.getBoolPref( +"security.enterprise_roots.auto-enabled", +false + ) +) { + Services.prefs.clearUserPref("security.enterprise_roots.enabled"); + Services.prefs.clearUserPref("security.enterprise_roots.auto-enabled"); +} + if (!Services.prefs.prefHasUserValue(PREF_PDFJS_ISDEFAULT_CACHE_STATE)) { PdfJs.checkIsDefault(this._isNewProfile); } ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 40002: Remove about:pioneer
commit f665ca5bb36ac6a2c08fe84f8aa3e1c8c83a6557 Author: Kathy Brade Date: Fri Aug 14 09:06:33 2020 -0400 Bug 40002: Remove about:pioneer Firefox Pioneer is an opt-in program in which people volunteer to participate in studies that collect detailed, sensitive data about how they use their browser. --- browser/components/about/AboutRedirector.cpp | 2 -- browser/components/about/components.conf | 1 - 2 files changed, 3 deletions(-) diff --git a/browser/components/about/AboutRedirector.cpp b/browser/components/about/AboutRedirector.cpp index 544e21782729..e7c377d655e7 100644 --- a/browser/components/about/AboutRedirector.cpp +++ b/browser/components/about/AboutRedirector.cpp @@ -114,8 +114,6 @@ static const RedirEntry kRedirMap[] = { nsIAboutModule::URI_MUST_LOAD_IN_CHILD | nsIAboutModule::URI_SAFE_FOR_UNTRUSTED_CONTENT | nsIAboutModule::ALLOW_SCRIPT | nsIAboutModule::HIDE_FROM_ABOUTABOUT}, -{"pioneer", "chrome://browser/content/pioneer.html", - nsIAboutModule::ALLOW_SCRIPT | nsIAboutModule::HIDE_FROM_ABOUTABOUT}, #ifdef TOR_BROWSER_UPDATE {"tbupdate", "chrome://browser/content/abouttbupdate/aboutTBUpdate.xhtml", nsIAboutModule::URI_SAFE_FOR_UNTRUSTED_CONTENT | diff --git a/browser/components/about/components.conf b/browser/components/about/components.conf index d78de142e2e4..8e04467c05da 100644 --- a/browser/components/about/components.conf +++ b/browser/components/about/components.conf @@ -14,7 +14,6 @@ pages = [ 'logins', 'newinstall', 'newtab', -'pioneer', 'pocket-saved', 'pocket-signup', 'policies', ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 28005: Implement .onion alias urlbar rewrites
commit 9edd249882e418d36417df4aad7fe13507abe7b5 Author: Alex Catarineu Date: Thu Feb 13 13:24:33 2020 +0100 Bug 28005: Implement .onion alias urlbar rewrites A custom HTTPS Everywhere update channel is installed, which provides rules for locally redirecting some memorable .tor.onion URLs to non-memorable .onion URLs. When these redirects occur, we also rewrite the URL in the urlbar to display the human-memorable hostname instead of the actual .onion. Bug 34196: Update site info URL with the onion name --- browser/actors/ClickHandlerChild.jsm | 20 ++ browser/actors/ClickHandlerParent.jsm | 1 + browser/actors/ContextMenuChild.jsm| 4 + browser/base/content/browser-places.js | 12 +- browser/base/content/browser-siteIdentity.js | 12 +- browser/base/content/browser.js| 43 - browser/base/content/nsContextMenu.js | 18 ++ browser/base/content/pageinfo/pageInfo.js | 2 +- browser/base/content/pageinfo/pageInfo.xhtml | 10 + browser/base/content/pageinfo/security.js | 17 +- browser/base/content/tabbrowser.js | 7 + browser/base/content/utilityOverlay.js | 12 ++ browser/components/BrowserGlue.jsm | 8 + .../onionservices/ExtensionMessaging.jsm | 86 + .../onionservices/HttpsEverywhereControl.jsm | 119 .../components/onionservices/OnionAliasStore.jsm | 201 + browser/components/onionservices/moz.build | 6 + browser/components/urlbar/UrlbarInput.jsm | 13 +- docshell/base/nsDocShell.cpp | 52 ++ docshell/base/nsDocShell.h | 6 + docshell/base/nsDocShellLoadState.cpp | 4 + docshell/base/nsIDocShell.idl | 5 + docshell/base/nsIWebNavigation.idl | 5 + docshell/shistory/SessionHistoryEntry.cpp | 14 ++ docshell/shistory/SessionHistoryEntry.h| 1 + docshell/shistory/nsISHEntry.idl | 5 + docshell/shistory/nsSHEntry.cpp| 22 ++- docshell/shistory/nsSHEntry.h | 1 + dom/interfaces/base/nsIBrowser.idl | 3 +- dom/ipc/BrowserChild.cpp | 2 + dom/ipc/BrowserParent.cpp | 3 +- dom/ipc/PBrowser.ipdl | 1 + modules/libpref/init/StaticPrefList.yaml | 6 + netwerk/dns/effective_tld_names.dat| 2 + netwerk/ipc/DocumentLoadListener.cpp | 10 + toolkit/content/widgets/browser-custom-element.js | 13 +- toolkit/modules/sessionstore/SessionHistory.jsm| 5 + 37 files changed, 729 insertions(+), 22 deletions(-) diff --git a/browser/actors/ClickHandlerChild.jsm b/browser/actors/ClickHandlerChild.jsm index 7dd060e83061..206a8fc97a4d 100644 --- a/browser/actors/ClickHandlerChild.jsm +++ b/browser/actors/ClickHandlerChild.jsm @@ -138,6 +138,26 @@ class ClickHandlerChild extends JSWindowActorChild { json.originStoragePrincipal = ownerDoc.effectiveStoragePrincipal; json.triggeringPrincipal = ownerDoc.nodePrincipal; + // Check if the link needs to be opened with .tor.onion urlbar rewrites + // allowed. Only when the owner doc has onionUrlbarRewritesAllowed = true + // and the same origin we should allow this. + json.onionUrlbarRewritesAllowed = false; + if (this.docShell.onionUrlbarRewritesAllowed) { +const sm = Services.scriptSecurityManager; +try { + let targetURI = Services.io.newURI(href); + let isPrivateWin = +ownerDoc.nodePrincipal.originAttributes.privateBrowsingId > 0; + sm.checkSameOriginURI( +docshell.currentDocumentChannel.URI, +targetURI, +false, +isPrivateWin + ); + json.onionUrlbarRewritesAllowed = true; +} catch (e) {} + } + // If a link element is clicked with middle button, user wants to open // the link somewhere rather than pasting clipboard content. Therefore, // when it's clicked with middle button, we should prevent multiple diff --git a/browser/actors/ClickHandlerParent.jsm b/browser/actors/ClickHandlerParent.jsm index 454c0fe69b27..42ab7a0f6e2a 100644 --- a/browser/actors/ClickHandlerParent.jsm +++ b/browser/actors/ClickHandlerParent.jsm @@ -102,6 +102,7 @@ class ClickHandlerParent extends JSWindowActorParent { charset: browser.characterSet, referrerInfo: E10SUtils.deserializeReferrerInfo(data.referrerInfo), allowMixedContent: data.allowMixedContent, + onionUrlbarRewritesAllowed: data.onionUrlbarRewritesAllowed, isContentWindowPrivate: data.isContentWindowPrivate, originPrincipal: data.originPrincipal, originStor
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Revert "Bug 21907: Fix runtime error on CentOS 6"
commit 839a4a3a7090dc691e5886102158000b0a6b7eed Author: Georg Koppen Date: Thu Sep 17 08:46:57 2020 + Revert "Bug 21907: Fix runtime error on CentOS 6" This reverts commit a00c57b6116329b5376bbf3f4212e5d2a3fece07. The 10.0 series is the last one with CentOS 6 support. --- gfx/harfbuzz/src/hb-glib.cc | 53 + gfx/harfbuzz/src/hb-glib.h | 5 + 2 files changed, 58 insertions(+) diff --git a/gfx/harfbuzz/src/hb-glib.cc b/gfx/harfbuzz/src/hb-glib.cc index 2fd39610203d..058f65ae69c3 100644 --- a/gfx/harfbuzz/src/hb-glib.cc +++ b/gfx/harfbuzz/src/hb-glib.cc @@ -49,6 +49,7 @@ **/ +#if !GLIB_CHECK_VERSION(2,29,14) static const hb_script_t glib_script_to_script[] = { @@ -170,6 +171,7 @@ glib_script_to_script[] = HB_SCRIPT_SORA_SOMPENG, HB_SCRIPT_TAKRI }; +#endif /** * hb_glib_script_to_script: @@ -185,6 +187,9 @@ glib_script_to_script[] = hb_script_t hb_glib_script_to_script (GUnicodeScript script) { +#if GLIB_CHECK_VERSION(2,29,14) + return (hb_script_t) g_unicode_script_to_iso15924 (script); +#else if (likely ((unsigned int) script < ARRAY_LENGTH (glib_script_to_script))) return glib_script_to_script[script]; @@ -192,6 +197,7 @@ hb_glib_script_to_script (GUnicodeScript script) return HB_SCRIPT_INVALID; return HB_SCRIPT_UNKNOWN; +#endif } /** @@ -208,6 +214,9 @@ hb_glib_script_to_script (GUnicodeScript script) GUnicodeScript hb_glib_script_from_script (hb_script_t script) { +#if GLIB_CHECK_VERSION(2,29,14) + return g_unicode_script_from_iso15924 (script); +#else unsigned int count = ARRAY_LENGTH (glib_script_to_script); for (unsigned int i = 0; i < count; i++) if (glib_script_to_script[i] == script) @@ -217,6 +226,7 @@ hb_glib_script_from_script (hb_script_t script) return G_UNICODE_SCRIPT_INVALID_CODE; return G_UNICODE_SCRIPT_UNKNOWN; +#endif } @@ -263,6 +273,10 @@ hb_glib_unicode_compose (hb_unicode_funcs_t *ufuncs HB_UNUSED, hb_codepoint_t *ab, void *user_data HB_UNUSED) { +#if GLIB_CHECK_VERSION(2,29,12) + return g_unichar_compose (a, b, ab); +#endif + /* We don't ifdef-out the fallback code such that compiler always * sees it and makes sure it's compilable. */ @@ -296,6 +310,10 @@ hb_glib_unicode_decompose (hb_unicode_funcs_t *ufuncs HB_UNUSED, hb_codepoint_t *b, void *user_data HB_UNUSED) { +#if GLIB_CHECK_VERSION(2,29,12) + return g_unichar_decompose (ab, a, b); +#endif + /* We don't ifdef-out the fallback code such that compiler always * sees it and makes sure it's compilable. */ @@ -397,4 +415,39 @@ hb_glib_get_unicode_funcs () return static_glib_funcs.get_unconst (); } + + +#if GLIB_CHECK_VERSION(2,31,10) + +static void +_hb_g_bytes_unref (void *data) +{ + g_bytes_unref ((GBytes *) data); +} + +/** + * hb_glib_blob_create: + * @gbytes: the GBytes structure to work upon + * + * Creates an #hb_blob_t blob from the specified + * GBytes data structure. + * + * Return value: (transfer full): the new #hb_blob_t blob object + * + * Since: 0.9.38 + **/ +hb_blob_t * +hb_glib_blob_create (GBytes *gbytes) +{ + gsize size = 0; + gconstpointer data = g_bytes_get_data (gbytes, &size); + return hb_blob_create ((const char *) data, +size, +HB_MEMORY_MODE_READONLY, +g_bytes_ref (gbytes), +_hb_g_bytes_unref); +} +#endif + + #endif diff --git a/gfx/harfbuzz/src/hb-glib.h b/gfx/harfbuzz/src/hb-glib.h index 4adbd7c332cb..5f04183ba19f 100644 --- a/gfx/harfbuzz/src/hb-glib.h +++ b/gfx/harfbuzz/src/hb-glib.h @@ -46,6 +46,11 @@ hb_glib_script_from_script (hb_script_t script); HB_EXTERN hb_unicode_funcs_t * hb_glib_get_unicode_funcs (void); +#if GLIB_CHECK_VERSION(2,31,10) +HB_EXTERN hb_blob_t * +hb_glib_blob_create (GBytes *gbytes); +#endif + HB_END_DECLS #endif /* HB_GLIB_H */ ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 33342: Avoid disconnect search addon error after removal.
commit 73e62345acba7805a58aa1e51d847bc1b7bf790f Author: Alex Catarineu Date: Fri Mar 13 18:19:30 2020 +0100 Bug 33342: Avoid disconnect search addon error after removal. We removed the addon in #32767, but it was still being loaded from addonStartup.json.lz4 and throwing an error on startup because its resource: location is not available anymore. --- toolkit/mozapps/extensions/internal/XPIProvider.jsm | 6 ++ 1 file changed, 6 insertions(+) diff --git a/toolkit/mozapps/extensions/internal/XPIProvider.jsm b/toolkit/mozapps/extensions/internal/XPIProvider.jsm index 5e467fb4f14c..794c206fb453 100644 --- a/toolkit/mozapps/extensions/internal/XPIProvider.jsm +++ b/toolkit/mozapps/extensions/internal/XPIProvider.jsm @@ -970,6 +970,12 @@ var BuiltInLocation = new (class _BuiltInLocation extends XPIStateLocation { get enumerable() { return false; } + + restore(saved) { +super.restore(saved); +// Bug 33342: avoid restoring disconnect addon from addonStartup.json.lz4. +this.removeAddon("disconn...@search.mozilla.org"); + } })(); /** ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 1673237 - Always allow SVGs on about: pages r=acat, tjr, emilio
commit 8dde48328ee49073fb76d74477b2361a1fe48e34 Author: sanketh Date: Tue Nov 3 17:34:20 2020 + Bug 1673237 - Always allow SVGs on about: pages r=acat,tjr,emilio - Updated layout/svg/tests/test_disabled.html to ensure that this doesn't allow rendering SVGs on about:blank and about:srcdoc. Differential Revision: https://phabricator.services.mozilla.com/D95139 --- dom/base/nsNodeInfoManager.cpp | 18 ++--- layout/svg/tests/file_disabled_iframe.html | 31 +- 2 files changed, 41 insertions(+), 8 deletions(-) diff --git a/dom/base/nsNodeInfoManager.cpp b/dom/base/nsNodeInfoManager.cpp index b0534b661a23..8bc6b0ba2bd6 100644 --- a/dom/base/nsNodeInfoManager.cpp +++ b/dom/base/nsNodeInfoManager.cpp @@ -352,9 +352,12 @@ void nsNodeInfoManager::RemoveNodeInfo(NodeInfo* aNodeInfo) { MOZ_ASSERT(ret, "Can't find mozilla::dom::NodeInfo to remove!!!"); } -static bool IsSystemOrAddonPrincipal(nsIPrincipal* aPrincipal) { +static bool IsSystemOrAddonOrAboutPrincipal(nsIPrincipal* aPrincipal) { return aPrincipal->IsSystemPrincipal() || - BasePrincipal::Cast(aPrincipal)->AddonPolicy(); + BasePrincipal::Cast(aPrincipal)->AddonPolicy() || + // NOTE: about:blank and about:srcdoc inherit the principal of their + // parent, so aPrincipal->SchemeIs("about") returns false for them. + aPrincipal->SchemeIs("about"); } bool nsNodeInfoManager::InternalSVGEnabled() { @@ -375,17 +378,18 @@ bool nsNodeInfoManager::InternalSVGEnabled() { } // We allow SVG (regardless of the pref) if this is a system or add-on - // principal, or if this load was requested for a system or add-on principal - // (e.g. a remote image being served as part of system or add-on UI) + // principal or about: page, or if this load was requested for a system or + // add-on principal or about: page (e.g. a remote image being served as part + // of system or add-on UI or about: page) bool conclusion = - (SVGEnabled || IsSystemOrAddonPrincipal(mPrincipal) || + (SVGEnabled || IsSystemOrAddonOrAboutPrincipal(mPrincipal) || (loadInfo && (loadInfo->GetExternalContentPolicyType() == nsIContentPolicy::TYPE_IMAGE || loadInfo->GetExternalContentPolicyType() == nsIContentPolicy::TYPE_OTHER) && -(IsSystemOrAddonPrincipal(loadInfo->GetLoadingPrincipal()) || - IsSystemOrAddonPrincipal(loadInfo->TriggeringPrincipal(); +(IsSystemOrAddonOrAboutPrincipal(loadInfo->GetLoadingPrincipal()) || + IsSystemOrAddonOrAboutPrincipal(loadInfo->TriggeringPrincipal(); mSVGEnabled = Some(conclusion); return conclusion; } diff --git a/layout/svg/tests/file_disabled_iframe.html b/layout/svg/tests/file_disabled_iframe.html index 6feae3024730..55eda75fdefb 100644 --- a/layout/svg/tests/file_disabled_iframe.html +++ b/layout/svg/tests/file_disabled_iframe.html @@ -48,5 +48,34 @@ t.firstChild.firstChild.textContent = "1&2<3>4\xA0"; is(t.innerHTML, '
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 40025: Remove Mozilla add-on install permissions
commit 2dd24c8f03bf49fbd98221f9a1b01a6afd6d0bc0 Author: Alex Catarineu Date: Mon Jul 27 18:12:55 2020 +0200 Bug 40025: Remove Mozilla add-on install permissions --- browser/app/permissions | 6 -- 1 file changed, 6 deletions(-) diff --git a/browser/app/permissions b/browser/app/permissions index da6b6728043d..5c4c302f5ba5 100644 --- a/browser/app/permissions +++ b/browser/app/permissions @@ -11,12 +11,6 @@ origin uitour 1 https://3g2upl4pq6kufc4m.onion origin uitour 1 about:tor -# XPInstall -origin install 1 https://addons.mozilla.org - # Remote troubleshooting origin remote-troubleshooting 1 https://support.mozilla.org -# addon install -origin install 1 https://private-network.firefox.com -origin install 1 https://fpn.firefox.com ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 40091: Load HTTPS Everywhere as a builtin addon in desktop
commit d7bc5271f7d1dd6bdce85436c8d4164ba4fbcc14 Author: Alex Catarineu Date: Fri Sep 4 12:34:35 2020 +0200 Bug 40091: Load HTTPS Everywhere as a builtin addon in desktop This loads HTTPS Everywhere as a builtin addon from a hardcoded resource:// URI in desktop. It also ensures that the non-builtin HTTPS Everywhere addon is always uninstalled on browser startup. The reason of making this desktop-only is that there are some issues when installing a builtin extension from geckoview side, making the extension not available on first startup. So, at least for now we handle the Fenix case separately. See #40118 for a followup for investigating these. --- browser/components/BrowserGlue.jsm | 37 ++ toolkit/components/extensions/Extension.jsm| 14 ++-- .../mozapps/extensions/internal/XPIProvider.jsm| 13 3 files changed, 61 insertions(+), 3 deletions(-) diff --git a/browser/components/BrowserGlue.jsm b/browser/components/BrowserGlue.jsm index ec38d0ca8b33..057a2121533c 100644 --- a/browser/components/BrowserGlue.jsm +++ b/browser/components/BrowserGlue.jsm @@ -56,6 +56,13 @@ XPCOMUtils.defineLazyServiceGetter( "nsIPushService" ); +XPCOMUtils.defineLazyServiceGetters(this, { + resProto: [ +"@mozilla.org/network/protocol;1?name=resource", +"nsISubstitutingProtocolHandler", + ], +}); + const PREF_PDFJS_ISDEFAULT_CACHE_STATE = "pdfjs.enabledCache.state"; /** @@ -675,6 +682,7 @@ XPCOMUtils.defineLazyModuleGetters(this, { "resource://gre/modules/ContextualIdentityService.jsm", Corroborate: "resource://gre/modules/Corroborate.jsm", Discovery: "resource:///modules/Discovery.jsm", + ExtensionData: "resource://gre/modules/Extension.jsm", ExtensionsUI: "resource:///modules/ExtensionsUI.jsm", FirefoxMonitor: "resource:///modules/FirefoxMonitor.jsm", FxAccounts: "resource://gre/modules/FxAccounts.jsm", @@ -1330,6 +1338,35 @@ BrowserGlue.prototype = { "resource:///modules/themes/dark/" ); +// Install https-everywhere builtin addon if needed. +(async () => { + const HTTPS_EVERYWHERE_ID = "https-everywhere-...@eff.org"; + const HTTPS_EVERYWHERE_BUILTIN_URL = +"resource://torbutton/content/extensions/https-everywhere/"; + // This does something similar as GeckoViewWebExtension.jsm: it tries + // to load the manifest to retrieve the version of the builtin and + // compares it to the currently installed one to see whether we need + // to install or not. Here we delegate that to + // AddonManager.maybeInstallBuiltinAddon. + try { +const resolvedURI = Services.io.newURI( + resProto.resolveURI(Services.io.newURI(HTTPS_EVERYWHERE_BUILTIN_URL)) +); +const extensionData = new ExtensionData(resolvedURI); +const manifest = await extensionData.loadManifest(); + +await AddonManager.maybeInstallBuiltinAddon( + HTTPS_EVERYWHERE_ID, + manifest.version, + HTTPS_EVERYWHERE_BUILTIN_URL +); + } catch (e) { +const log = Log.repository.getLogger("HttpsEverywhereBuiltinLoader"); +log.addAppender(new Log.ConsoleAppender(new Log.BasicFormatter())); +log.error("Could not install https-everywhere extension", e); + } +})(); + if (AppConstants.MOZ_NORMANDY) { Normandy.init(); } diff --git a/toolkit/components/extensions/Extension.jsm b/toolkit/components/extensions/Extension.jsm index 876e636be3db..7dbd888b1710 100644 --- a/toolkit/components/extensions/Extension.jsm +++ b/toolkit/components/extensions/Extension.jsm @@ -211,6 +211,7 @@ const LOGGER_ID_BASE = "addons.webextension."; const UUID_MAP_PREF = "extensions.webextensions.uuids"; const LEAVE_STORAGE_PREF = "extensions.webextensions.keepStorageOnUninstall"; const LEAVE_UUID_PREF = "extensions.webextensions.keepUuidOnUninstall"; +const PERSISTENT_EXTENSIONS = new Set(["https-everywhere-...@eff.org"]); const COMMENT_REGEXP = new RegExp( String.raw` @@ -331,7 +332,10 @@ var ExtensionAddonObserver = { return; } -if (!Services.prefs.getBoolPref(LEAVE_STORAGE_PREF, false)) { +if ( + !Services.prefs.getBoolPref(LEAVE_STORAGE_PREF, false) && + !PERSISTENT_EXTENSIONS.has(addon.id) +) { // Clear browser.storage.local backends. AsyncShutdown.profileChangeTeardown.addBlocker( `Clear Extension Storage ${addon.id} (File Backend)`, @@ -384,7 +388,10 @@ var ExtensionAddonObserver = { ExtensionPermissions.removeAll(addon.id); -if (!Services.prefs.getBoolPref(LEAVE_UUID_PREF, false)) { +if ( + !Services.prefs.getBoolPref(LEAVE_UUID_PREF, false) && + !PERSISTENT_EXTENSIONS.has(addon.id) +) { // Clear the entry in the UUID map UUIDMap.remove(addon.id); } @@ -2474,7 +2481,8 @@ class Extension extends ExtensionData { ); } else if (
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 28125 - Prevent non-Necko network connections
commit def3ae403805e832a31dd5bc7a6b77aaa8eae8f4 Author: Matthew Finkel Date: Thu Oct 25 19:17:09 2018 + Bug 28125 - Prevent non-Necko network connections --- .../gecko/media/GeckoMediaDrmBridgeV21.java| 49 +- .../exoplayer2/upstream/DefaultHttpDataSource.java | 47 + 2 files changed, 3 insertions(+), 93 deletions(-) diff --git a/mobile/android/geckoview/src/main/java/org/mozilla/gecko/media/GeckoMediaDrmBridgeV21.java b/mobile/android/geckoview/src/main/java/org/mozilla/gecko/media/GeckoMediaDrmBridgeV21.java index 3ba59bfd6776..eb57b1013642 100644 --- a/mobile/android/geckoview/src/main/java/org/mozilla/gecko/media/GeckoMediaDrmBridgeV21.java +++ b/mobile/android/geckoview/src/main/java/org/mozilla/gecko/media/GeckoMediaDrmBridgeV21.java @@ -488,54 +488,7 @@ public class GeckoMediaDrmBridgeV21 implements GeckoMediaDrm { @Override protected Void doInBackground(final Void... params) { -HttpURLConnection urlConnection = null; -BufferedReader in = null; -try { -URI finalURI = new URI(mURL + "&signedRequest=" + URLEncoder.encode(new String(mDrmRequest), "UTF-8")); -urlConnection = (HttpURLConnection) ProxySelector.openConnectionWithProxy(finalURI); -urlConnection.setRequestMethod("POST"); -if (DEBUG) Log.d(LOGTAG, "Provisioning, posting url =" + finalURI.toString()); - -// Add data -urlConnection.setRequestProperty("Accept", "*/*"); -urlConnection.setRequestProperty("User-Agent", getCDMUserAgent()); -urlConnection.setRequestProperty("Content-Type", "application/json"); - -// Execute HTTP Post Request -urlConnection.connect(); - -int responseCode = urlConnection.getResponseCode(); -if (responseCode == HttpURLConnection.HTTP_OK) { -in = new BufferedReader(new InputStreamReader(urlConnection.getInputStream(), StringUtils.UTF_8)); -String inputLine; -StringBuffer response = new StringBuffer(); - -while ((inputLine = in.readLine()) != null) { -response.append(inputLine); -} -in.close(); -mResponseBody = String.valueOf(response).getBytes(StringUtils.UTF_8); -if (DEBUG) Log.d(LOGTAG, "Provisioning, response received."); -if (mResponseBody != null) Log.d(LOGTAG, "response length=" + mResponseBody.length); -} else { -Log.d(LOGTAG, "Provisioning, server returned HTTP error code :" + responseCode); -} -} catch (IOException e) { -Log.e(LOGTAG, "Got exception during posting provisioning request ...", e); -} catch (URISyntaxException e) { -Log.e(LOGTAG, "Got exception during creating uri ...", e); -} finally { -if (urlConnection != null) { -urlConnection.disconnect(); -} -try { -if (in != null) { -in.close(); -} -} catch (IOException e) { -Log.e(LOGTAG, "Exception during closing in ...", e); -} -} +Log.i(LOGTAG, "This is Tor Browser. Skipping."); return null; } diff --git a/mobile/android/geckoview/src/thirdparty/java/org/mozilla/thirdparty/com/google/android/exoplayer2/upstream/DefaultHttpDataSource.java b/mobile/android/geckoview/src/thirdparty/java/org/mozilla/thirdparty/com/google/android/exoplayer2/upstream/DefaultHttpDataSource.java index fdb44cc2ea1f..7a2044721d2d 100644 --- a/mobile/android/geckoview/src/thirdparty/java/org/mozilla/thirdparty/com/google/android/exoplayer2/upstream/DefaultHttpDataSource.java +++ b/mobile/android/geckoview/src/thirdparty/java/org/mozilla/thirdparty/com/google/android/exoplayer2/upstream/DefaultHttpDataSource.java @@ -395,51 +395,8 @@ public class DefaultHttpDataSource implements HttpDataSource { */ private HttpURLConnection makeConnection(URL url, byte[] postBody, long position, long length, boolean allowGzip, boolean followRedirects) throws IOException, URISyntaxException { -/** - * Tor Project modified the way the connection object was created. For the sake of - * simplicity, instead of duplicating the whole file we changed the connection object - * to use the ProxySelector. - */ -HttpURLConnection connection = (HttpURLConnection) ProxySelector.openConnectionWithProxy(url.toURI()); - -connection.setConnectTimeout(connectTimeoutMillis); -connection.setReadTimeout(readTimeoutMillis); -if (defaultRequestProperties != null) { - for (Map.Entry property :
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 25741 - TBA: Disable GeckoNetworkManager
commit 78fbe14925e2050e021f02ae8d0dc270c575162c Author: Matthew Finkel Date: Thu Apr 26 22:22:51 2018 + Bug 25741 - TBA: Disable GeckoNetworkManager The browser should not need information related to the network interface or network state, tor should take care of that. --- .../src/main/java/org/mozilla/geckoview/GeckoRuntime.java | 8 ++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/mobile/android/geckoview/src/main/java/org/mozilla/geckoview/GeckoRuntime.java b/mobile/android/geckoview/src/main/java/org/mozilla/geckoview/GeckoRuntime.java index ed86dcc5c299..f5587dd7e59c 100644 --- a/mobile/android/geckoview/src/main/java/org/mozilla/geckoview/GeckoRuntime.java +++ b/mobile/android/geckoview/src/main/java/org/mozilla/geckoview/GeckoRuntime.java @@ -121,7 +121,9 @@ public final class GeckoRuntime implements Parcelable { mPaused = false; // Monitor network status and send change notifications to Gecko // while active. - GeckoNetworkManager.getInstance().start(GeckoAppShell.getApplicationContext()); +if (BuildConfig.TOR_BROWSER_VERSION == "") { + GeckoNetworkManager.getInstance().start(GeckoAppShell.getApplicationContext()); +} } @OnLifecycleEvent(Lifecycle.Event.ON_PAUSE) @@ -129,7 +131,9 @@ public final class GeckoRuntime implements Parcelable { Log.d(LOGTAG, "Lifecycle: onPause"); mPaused = true; // Stop monitoring network status while inactive. -GeckoNetworkManager.getInstance().stop(); +if (BuildConfig.TOR_BROWSER_VERSION == "") { +GeckoNetworkManager.getInstance().stop(); +} GeckoThread.onPause(); } } ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Orfox: Centralized proxy applied to AbstractCommunicator and BaseResources.
commit 33c05e9198a0201fbc05058479fbf636e28135f9 Author: Amogh Pradeep Date: Fri Jun 12 02:07:45 2015 -0400 Orfox: Centralized proxy applied to AbstractCommunicator and BaseResources. See Bug 1357997 for partial uplift. Also: Bug 28051 - Use our Orbot for proxying our connections Bug 31144 - ESR68 Network Code Review --- .../main/java/org/mozilla/gecko/GeckoAppShell.java | 68 +++--- .../java/org/mozilla/gecko/util/BitmapUtils.java | 7 --- .../java/org/mozilla/gecko/util/ProxySelector.java | 25 +++- 3 files changed, 59 insertions(+), 41 deletions(-) diff --git a/mobile/android/geckoview/src/main/java/org/mozilla/gecko/GeckoAppShell.java b/mobile/android/geckoview/src/main/java/org/mozilla/gecko/GeckoAppShell.java index 995b23316c32..b9ca73bee2eb 100644 --- a/mobile/android/geckoview/src/main/java/org/mozilla/gecko/GeckoAppShell.java +++ b/mobile/android/geckoview/src/main/java/org/mozilla/gecko/GeckoAppShell.java @@ -1764,39 +1764,41 @@ public class GeckoAppShell { @WrapForJNI private static URLConnection getConnection(final String url) { -try { -String spec; -if (url.startsWith("android://")) { -spec = url.substring(10); -} else { -spec = url.substring(8); -} - -// Check if we are loading a package icon. -try { -if (spec.startsWith("icon/")) { -String[] splits = spec.split("/"); -if (splits.length != 2) { -return null; -} -final String pkg = splits[1]; -final PackageManager pm = getApplicationContext().getPackageManager(); -final Drawable d = pm.getApplicationIcon(pkg); -final Bitmap bitmap = BitmapUtils.getBitmapFromDrawable(d); -return new BitmapConnection(bitmap); -} -} catch (Exception ex) { -Log.e(LOGTAG, "error", ex); -} - -// if the colon got stripped, put it back -int colon = spec.indexOf(':'); -if (colon == -1 || colon > spec.indexOf('/')) { -spec = spec.replaceFirst("/", ":/"); -} -} catch (Exception ex) { -return null; -} +// Bug 31144 - Prevent potential proxy-bypass + +//try { +//String spec; +//if (url.startsWith("android://")) { +//spec = url.substring(10); +//} else { +//spec = url.substring(8); +//} + +//// Check if we are loading a package icon. +//try { +//if (spec.startsWith("icon/")) { +//String[] splits = spec.split("/"); +//if (splits.length != 2) { +//return null; +//} +//final String pkg = splits[1]; +//final PackageManager pm = getApplicationContext().getPackageManager(); +//final Drawable d = pm.getApplicationIcon(pkg); +//final Bitmap bitmap = BitmapUtils.getBitmapFromDrawable(d); +//return new BitmapConnection(bitmap); +//} +//} catch (Exception ex) { +//Log.e(LOGTAG, "error", ex); +//} + +//// if the colon got stripped, put it back +//int colon = spec.indexOf(':'); +//if (colon == -1 || colon > spec.indexOf('/')) { +//spec = spec.replaceFirst("/", ":/"); +//} +//} catch (Exception ex) { +//return null; +//} return null; } diff --git a/mobile/android/geckoview/src/main/java/org/mozilla/gecko/util/BitmapUtils.java b/mobile/android/geckoview/src/main/java/org/mozilla/gecko/util/BitmapUtils.java index 73a69a3abd66..f795dacffb47 100644 --- a/mobile/android/geckoview/src/main/java/org/mozilla/gecko/util/BitmapUtils.java +++ b/mobile/android/geckoview/src/main/java/org/mozilla/gecko/util/BitmapUtils.java @@ -101,13 +101,6 @@ public final class BitmapUtils { public static Bitmap decodeUrl(final URL url) { InputStream stream = null; -try { -stream = url.openStream(); -} catch (IOException e) { -Log.w(LOGTAG, "decodeUrl: IOException downloading " + url); -return null; -} - if (stream == null) { Log.w(LOGTAG, "decodeUrl: stream not found downloading " + url); return null; diff --git a/mobile/android/geckoview/src/main/java/org/mozilla/gecko/util/ProxySelector.java b/mobile/android/geckoview/src/main/java/org/mozilla/gecko/util/ProxySelector.java index 3940d3c84249..9515975f680a 100644 --- a/mobile/android/geckoview/src/main/java/org/mozilla/gecko/util/ProxySele
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 30237: Add v3 onion services client authentication prompt
commit 5375075bf2afbb5cc691bd5a814afb27628f Author: Kathy Brade Date: Tue Nov 12 16:11:05 2019 -0500 Bug 30237: Add v3 onion services client authentication prompt When Tor informs the browser that client authentication is needed, temporarily load about:blank instead of about:neterror and prompt for the user's key. If a correctly formatted key is entered, use Tor's ONION_CLIENT_AUTH_ADD control port command to add the key (via Torbutton's control port module) and reload the page. If the user cancels the prompt, display the standard about:neterror "Unable to connect" page. This requires a small change to browser/actors/NetErrorChild.jsm to account for the fact that the docShell no longer has the failedChannel information. The failedChannel is used to extract TLS-related error info, which is not applicable in the case of a canceled .onion authentication prompt. Add a leaveOpen option to PopupNotifications.show so we can display error messages within the popup notification doorhanger without closing the prompt. Add support for onion services strings to the TorStrings module. Add support for Tor extended SOCKS errors (Tor proposal 304) to the socket transport and SOCKS layers. Improved display of all of these errors will be implemented as part of bug 30025. Also fixes bug 19757: Add a "Remember this key" checkbox to the client auth prompt. Add an "Onion Services Authentication" section within the about:preferences "Privacy & Security section" to allow viewing and removal of v3 onion client auth keys that have been stored on disk. Also fixes bug 19251: use enhanced error pages for onion service errors. --- browser/actors/NetErrorChild.jsm | 7 + browser/base/content/aboutNetError.js | 10 +- browser/base/content/aboutNetError.xhtml | 1 + browser/base/content/browser.js| 10 + browser/base/content/browser.xhtml | 3 + browser/base/content/tab-content.js| 5 + browser/components/moz.build | 1 + .../content/authNotificationIcon.inc.xhtml | 6 + .../onionservices/content/authPopup.inc.xhtml | 16 ++ .../onionservices/content/authPreferences.css | 20 ++ .../content/authPreferences.inc.xhtml | 19 ++ .../onionservices/content/authPreferences.js | 66 + .../components/onionservices/content/authPrompt.js | 316 + .../components/onionservices/content/authUtil.jsm | 47 +++ .../onionservices/content/netError/browser.svg | 3 + .../onionservices/content/netError/network.svg | 3 + .../content/netError/onionNetError.css | 65 + .../content/netError/onionNetError.js | 244 .../onionservices/content/netError/onionsite.svg | 7 + .../onionservices/content/onionservices.css| 69 + .../onionservices/content/savedKeysDialog.js | 259 + .../onionservices/content/savedKeysDialog.xhtml| 42 +++ browser/components/onionservices/jar.mn| 9 + browser/components/onionservices/moz.build | 1 + browser/components/preferences/preferences.xhtml | 1 + browser/components/preferences/privacy.inc.xhtml | 2 + browser/components/preferences/privacy.js | 7 + browser/themes/shared/notification-icons.inc.css | 3 + docshell/base/nsDocShell.cpp | 81 +- dom/ipc/BrowserParent.cpp | 21 ++ dom/ipc/BrowserParent.h| 3 + dom/ipc/PBrowser.ipdl | 9 + js/xpconnect/src/xpc.msg | 10 + netwerk/base/nsSocketTransport2.cpp| 6 + netwerk/socket/nsSOCKSIOLayer.cpp | 49 toolkit/modules/PopupNotifications.jsm | 6 + toolkit/modules/RemotePageAccessManager.jsm| 1 + .../lib/environments/frame-script.js | 1 + xpcom/base/ErrorList.py| 22 ++ 39 files changed, 1449 insertions(+), 2 deletions(-) diff --git a/browser/actors/NetErrorChild.jsm b/browser/actors/NetErrorChild.jsm index af9d6bd46128..de66e9eeda18 100644 --- a/browser/actors/NetErrorChild.jsm +++ b/browser/actors/NetErrorChild.jsm @@ -13,6 +13,8 @@ const { RemotePageChild } = ChromeUtils.import( "resource://gre/actors/RemotePageChild.jsm" ); +const { TorStrings } = ChromeUtils.import("resource:///modules/TorStrings.jsm"); + XPCOMUtils.defineLazyServiceGetter( this, "gSerializationHelper", @@ -29,6 +31,7 @@ class NetErrorChild extends RemotePageChild { "RPMPrefIsLocked", "RPMAddToHistogram", "RPMRecordTelemetryEvent", + "RPMGetTorStrings", ]; this.exportFunctions(exportableFunctions); } @@ -82,4 +85,
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 31740: Remove some unnecessary RemoteSettings instances
commit 67908c1067113105730d2b705dae787122fced05 Author: Alex Catarineu Date: Wed Oct 16 23:01:12 2019 +0200 Bug 31740: Remove some unnecessary RemoteSettings instances More concretely, SearchService.jsm 'hijack-blocklists' and url-classifier-skip-urls. Avoid creating instance for 'anti-tracking-url-decoration'. If prefs are disabling their usage, avoid creating instances for 'cert-revocations' and 'intermediates'. Do not ship JSON dumps for collections we do not expect to need. For the ones in the 'main' bucket, this prevents them from being synced unnecessarily (the code in remote-settings does so for collections in the main bucket for which a dump or local data exists). For the collections in the other buckets, we just save some size by not shipping their dumps. We also clear the collections database on the v2 -> v3 migration. --- .../url-classifier/UrlClassifierFeatureBase.cpp| 2 +- netwerk/url-classifier/components.conf | 6 -- security/manager/ssl/RemoteSecuritySettings.jsm| 22 ++ services/settings/IDBHelpers.jsm | 4 services/settings/dumps/blocklists/moz.build | 1 - services/settings/dumps/main/moz.build | 5 - services/settings/dumps/security-state/moz.build | 1 - .../components/antitracking/antitracking.manifest | 2 +- toolkit/components/antitracking/components.conf| 7 --- toolkit/components/search/SearchService.jsm| 2 -- 10 files changed, 28 insertions(+), 24 deletions(-) diff --git a/netwerk/url-classifier/UrlClassifierFeatureBase.cpp b/netwerk/url-classifier/UrlClassifierFeatureBase.cpp index 9bc7fc5d6e9a..3fb3b74a4f08 100644 --- a/netwerk/url-classifier/UrlClassifierFeatureBase.cpp +++ b/netwerk/url-classifier/UrlClassifierFeatureBase.cpp @@ -76,7 +76,7 @@ void UrlClassifierFeatureBase::InitializePreferences() { nsCOMPtr skipListService = do_GetService("@mozilla.org/url-classifier/skip-list-service;1"); - if (NS_WARN_IF(!skipListService)) { + if (!skipListService) { return; } diff --git a/netwerk/url-classifier/components.conf b/netwerk/url-classifier/components.conf index 7f49d94b6488..b2e667247317 100644 --- a/netwerk/url-classifier/components.conf +++ b/netwerk/url-classifier/components.conf @@ -13,10 +13,4 @@ Classes = [ 'constructor': 'mozilla::net::ChannelClassifierService::GetSingleton', 'headers': ['mozilla/net/ChannelClassifierService.h'], }, -{ -'cid': '{b9f4fd03-9d87-4bfd-9958-85a821750ddc}', -'contract_ids': ['@mozilla.org/url-classifier/skip-list-service;1'], -'jsm': 'resource://gre/modules/UrlClassifierSkipListService.jsm', -'constructor': 'UrlClassifierSkipListService', -}, ] diff --git a/security/manager/ssl/RemoteSecuritySettings.jsm b/security/manager/ssl/RemoteSecuritySettings.jsm index 199eeb5b58e1..96d6a7a2de48 100644 --- a/security/manager/ssl/RemoteSecuritySettings.jsm +++ b/security/manager/ssl/RemoteSecuritySettings.jsm @@ -350,6 +350,16 @@ var RemoteSecuritySettings = { class IntermediatePreloads { constructor() { +this.maybeInit(); + } + + maybeInit() { +if ( + this.client || + !Services.prefs.getBoolPref(INTERMEDIATES_ENABLED_PREF, true) +) { + return; +} this.client = RemoteSettings( Services.prefs.getCharPref(INTERMEDIATES_COLLECTION_PREF), { @@ -379,6 +389,7 @@ class IntermediatePreloads { ); return; } +this.maybeInit(); // Download attachments that are awaiting download, up to a max. const maxDownloadsPerRun = Services.prefs.getIntPref( @@ -704,6 +715,16 @@ function compareFilters(filterA, filterB) { class CRLiteFilters { constructor() { +this.maybeInit(); + } + + maybeInit() { +if ( + this.client || + !Services.prefs.getBoolPref(CRLITE_FILTERS_ENABLED_PREF, true) +) { + return; +} this.client = RemoteSettings( Services.prefs.getCharPref(CRLITE_FILTERS_COLLECTION_PREF), { @@ -729,6 +750,7 @@ class CRLiteFilters { ); return; } +this.maybeInit(); let current = await this.client.db.list(); let fullFilters = current.filter(filter => !filter.incremental); if (fullFilters.length < 1) { diff --git a/services/settings/IDBHelpers.jsm b/services/settings/IDBHelpers.jsm index 5dc59c3687ef..010a5ea82987 100644 --- a/services/settings/IDBHelpers.jsm +++ b/services/settings/IDBHelpers.jsm @@ -188,6 +188,10 @@ async function openIDB(allowUpgrades = true) { }); } if (event.oldVersion < 3) { +// Clear existing stores for a fresh start +transaction.objectStore("records").clear(); +transaction.objectStore("timestamps").clear(); +transaction.objectStore("collections").clear(); // Attachment store db.createObjectStore("attachments",
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 24796 - Comment out excess permissions from GeckoView
commit ea20dbf54abd44c26f08907343340e1fb7efb9ee Author: Matthew Finkel Date: Wed Apr 11 17:52:59 2018 + Bug 24796 - Comment out excess permissions from GeckoView The GeckoView AndroidManifest.xml is not preprocessed unlike Fennec's manifest, so we can't use the ifdef preprocessor guards around the permissions we do not want. Commenting the permissions is the next-best-thing. --- .../android/geckoview/src/main/AndroidManifest.xml | 20 +--- 1 file changed, 17 insertions(+), 3 deletions(-) diff --git a/mobile/android/geckoview/src/main/AndroidManifest.xml b/mobile/android/geckoview/src/main/AndroidManifest.xml index 87ad6dc28047..4c8ab2a9d996 100644 --- a/mobile/android/geckoview/src/main/AndroidManifest.xml +++ b/mobile/android/geckoview/src/main/AndroidManifest.xml @@ -6,20 +6,32 @@ http://schemas.android.com/apk/res/android"; package="org.mozilla.geckoview"> + + + + + + + + + + https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 27604: Fix addon issues when moving TB directory
commit 446b03b9b1053f520e0244c4cccfa88b86bbc2cd Author: Alex Catarineu Date: Wed Oct 30 10:44:48 2019 +0100 Bug 27604: Fix addon issues when moving TB directory --- toolkit/mozapps/extensions/internal/XPIProvider.jsm | 8 ++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/toolkit/mozapps/extensions/internal/XPIProvider.jsm b/toolkit/mozapps/extensions/internal/XPIProvider.jsm index bf31932b59f1..5e467fb4f14c 100644 --- a/toolkit/mozapps/extensions/internal/XPIProvider.jsm +++ b/toolkit/mozapps/extensions/internal/XPIProvider.jsm @@ -485,7 +485,7 @@ class XPIState { // Builds prior to be 1512436 did not include the rootURI property. // If we're updating from such a build, add that property now. -if (!("rootURI" in this) && this.file) { +if (this.file) { this.rootURI = getURIForResourceInFile(this.file, "").spec; } @@ -498,7 +498,10 @@ class XPIState { saved.currentModifiedTime != this.lastModifiedTime ) { this.lastModifiedTime = saved.currentModifiedTime; -} else if (saved.currentModifiedTime === null) { +} else if ( + saved.currentModifiedTime === null && + (!this.file || !this.file.exists()) +) { this.missing = true; } } @@ -1439,6 +1442,7 @@ var XPIStates = { if (oldState[loc.name]) { loc.restore(oldState[loc.name]); +changed = changed || loc.path != oldState[loc.name].path; } changed = changed || loc.changed; ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 32658: Create a new MAR signing key
commit 9d947d9cfea4c0c2bf6dd81cc31cf21bd07d0736 Author: Georg Koppen Date: Fri Jan 17 12:54:31 2020 + Bug 32658: Create a new MAR signing key It's time for our rotation again: Move the backup key in the front position and add a new backup key. --- toolkit/mozapps/update/updater/release_primary.der | Bin 1225 -> 1229 bytes toolkit/mozapps/update/updater/release_secondary.der | Bin 1225 -> 1229 bytes 2 files changed, 0 insertions(+), 0 deletions(-) diff --git a/toolkit/mozapps/update/updater/release_primary.der b/toolkit/mozapps/update/updater/release_primary.der index 1d94f88ad73b..0103a171de88 100644 Binary files a/toolkit/mozapps/update/updater/release_primary.der and b/toolkit/mozapps/update/updater/release_primary.der differ diff --git a/toolkit/mozapps/update/updater/release_secondary.der b/toolkit/mozapps/update/updater/release_secondary.der index 474706c4b73c..fcee3944e9b7 100644 Binary files a/toolkit/mozapps/update/updater/release_secondary.der and b/toolkit/mozapps/update/updater/release_secondary.der differ ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 32220: Improve the letterboxing experience
commit 132cf49e40fed3f66d9c66cff77656dbb33562fa Author: Richard Pospesel Date: Mon Oct 28 17:42:17 2019 -0700 Bug 32220: Improve the letterboxing experience CSS and JS changes to alter the UX surrounding letterboxing. The browser element containing page content is now anchored to the bottom of the toolbar, and the remaining letterbox margin is the same color as the firefox chrome. The letterbox margin and border are tied to the currently selected theme. Also adds a 'needsLetterbox' property to tabbrowser.xml to fix a race condition present when using the 'isEmpty' property. Using 'isEmpty' as a proxy for 'needsLetterbox' resulted in over-zealous/unnecessary letterboxing of about:blank tabs. --- browser/base/content/browser.css | 8 ++ browser/base/content/tabbrowser-tab.js | 9 +++ browser/themes/shared/tabs.inc.css | 6 ++ .../components/resistfingerprinting/RFPHelper.jsm | 94 +++--- 4 files changed, 105 insertions(+), 12 deletions(-) diff --git a/browser/base/content/browser.css b/browser/base/content/browser.css index 808c03e88223..a0b1bf4a8951 100644 --- a/browser/base/content/browser.css +++ b/browser/base/content/browser.css @@ -85,6 +85,14 @@ body { display: none; } + +.browserStack > browser.letterboxing { + border-color: var(--chrome-content-separator-color); + border-style: solid; + border-width : 1px; + border-top: none; +} + %ifdef MENUBAR_CAN_AUTOHIDE #toolbar-menubar[autohide="true"] { overflow: hidden; diff --git a/browser/base/content/tabbrowser-tab.js b/browser/base/content/tabbrowser-tab.js index 183eff1bab86..7f376ab1d122 100644 --- a/browser/base/content/tabbrowser-tab.js +++ b/browser/base/content/tabbrowser-tab.js @@ -225,6 +225,15 @@ return true; } +get needsLetterbox() { + let browser = this.linkedBrowser; + if (isBlankPageURL(browser.currentURI.spec)) { +return false; + } + + return true; +} + get lastAccessed() { return this._lastAccessed == Infinity ? Date.now() : this._lastAccessed; } diff --git a/browser/themes/shared/tabs.inc.css b/browser/themes/shared/tabs.inc.css index b47842af766c..019da6ecf76f 100644 --- a/browser/themes/shared/tabs.inc.css +++ b/browser/themes/shared/tabs.inc.css @@ -33,6 +33,12 @@ background-color: #f9f9fa; } +/* extend down the toolbar's colors when letterboxing is enabled*/ +#tabbrowser-tabpanels.letterboxing { + background-color: var(--toolbar-bgcolor); + background-image: var(--toolbar-bgimage); +} + :root[privatebrowsingmode=temporary] #tabbrowser-tabpanels { /* Value for --in-content-page-background in aboutPrivateBrowsing.css */ background-color: #25003e; diff --git a/toolkit/components/resistfingerprinting/RFPHelper.jsm b/toolkit/components/resistfingerprinting/RFPHelper.jsm index 49010d1c8cb1..b906a067fd63 100644 --- a/toolkit/components/resistfingerprinting/RFPHelper.jsm +++ b/toolkit/components/resistfingerprinting/RFPHelper.jsm @@ -40,6 +40,7 @@ class _RFPHelper { // constructor() { this._initialized = false; +this._borderDimensions = null; } init() { @@ -361,6 +362,24 @@ class _RFPHelper { }); } + getBorderDimensions(aBrowser) { +if (this._borderDimensions) { + return this._borderDimensions; +} + +const win = aBrowser.ownerGlobal; +const browserStyle = win.getComputedStyle(aBrowser); + +this._borderDimensions = { + top : parseInt(browserStyle.borderTopWidth), + right: parseInt(browserStyle.borderRightWidth), + bottom : parseInt(browserStyle.borderBottomWidth), + left : parseInt(browserStyle.borderLeftWidth), +}; + +return this._borderDimensions; + } + _addOrClearContentMargin(aBrowser) { let tab = aBrowser.getTabBrowser().getTabForBrowser(aBrowser); @@ -369,9 +388,13 @@ class _RFPHelper { return; } +// we add the letterboxing class even if the content does not need letterboxing +// in which case margins are set such that the borders are hidden +aBrowser.classList.add("letterboxing"); + // We should apply no margin around an empty tab or a tab with system // principal. -if (tab.isEmpty || aBrowser.contentPrincipal.isSystemPrincipal) { +if (!tab.needsLetterbox || aBrowser.contentPrincipal.isSystemPrincipal) { this._clearContentViewMargin(aBrowser); } else { this._roundContentView(aBrowser); @@ -539,10 +562,29 @@ class _RFPHelper { // Calculating the margins around the browser element in order to round the // content viewport. We will use a 200x100 stepping if the dimension set // is not given. -let margins = calcMargins(containerWidth, containerHeight); + +const borderDimensions = this.getBorderDimensions(aBrowser); +const marginDims = calcMargins(containerWidth
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 32092: Fix Tor Browser Support link in preferences
commit 7c8357bb1120ad56ff9c2c7f043e93345f1a00fc Author: Alex Catarineu Date: Tue Oct 15 22:54:10 2019 +0200 Bug 32092: Fix Tor Browser Support link in preferences --- browser/components/preferences/preferences.js | 5 + 1 file changed, 1 insertion(+), 4 deletions(-) diff --git a/browser/components/preferences/preferences.js b/browser/components/preferences/preferences.js index 089533f20ade..586e32e277cb 100644 --- a/browser/components/preferences/preferences.js +++ b/browser/components/preferences/preferences.js @@ -121,10 +121,7 @@ function init_all() { gotoPref().then(() => { let helpButton = document.getElementById("helpButton"); -let helpUrl = - Services.urlFormatter.formatURLPref("app.support.baseURL") + - "preferences"; -helpButton.setAttribute("href", helpUrl); +helpButton.setAttribute("href", "https://support.torproject.org/tbb";); document.getElementById("addonsButton").addEventListener("click", e => { if (e.button >= 2) { ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 31575: Replace Firefox Home (newtab) with about:tor
commit 15ee7e1fc0a99c4f3788d6e478d0ad08e91aa605 Author: Alex Catarineu Date: Mon Sep 9 13:04:34 2019 +0200 Bug 31575: Replace Firefox Home (newtab) with about:tor Avoid loading AboutNewTab in BrowserGlue.jsm in order to avoid several network requests that we do not need. Besides, about:newtab will now point to about:blank or about:tor (depending on browser.newtabpage.enabled) and about:home will point to about:tor. --- browser/components/BrowserGlue.jsm | 29 ++-- browser/components/newtab/AboutNewTabService.jsm | 15 +--- browser/components/preferences/home.inc.xhtml| 4 ++-- browser/components/preferences/preferences.xhtml | 5 +++- browser/modules/HomePage.jsm | 2 +- 5 files changed, 10 insertions(+), 45 deletions(-) diff --git a/browser/components/BrowserGlue.jsm b/browser/components/BrowserGlue.jsm index 3363e24a9b56..44b1426b92e0 100644 --- a/browser/components/BrowserGlue.jsm +++ b/browser/components/BrowserGlue.jsm @@ -29,12 +29,6 @@ ChromeUtils.defineModuleGetter( "resource:///modules/CustomizableUI.jsm" ); -ChromeUtils.defineModuleGetter( - this, - "AboutNewTab", - "resource:///modules/AboutNewTab.jsm" -); - ChromeUtils.defineModuleGetter( this, "E10SUtils", @@ -123,19 +117,6 @@ let JSWINDOWACTORS = { matches: ["about:newinstall"], }, - AboutNewTab: { -child: { - moduleURI: "resource:///actors/AboutNewTabChild.jsm", - events: { -DOMContentLoaded: {}, - }, -}, -// The wildcard on about:newtab is for the ?endpoint query parameter -// that is used for snippets debugging. -matches: ["about:home", "about:welcome", "about:newtab*"], -remoteTypes: ["privilegedabout"], - }, - AboutPlugins: { parent: { moduleURI: "resource:///actors/AboutPluginsParent.jsm", @@ -1730,8 +1711,6 @@ BrowserGlue.prototype = { // the first browser window has finished initializing _onFirstWindowLoaded: function BG__onFirstWindowLoaded(aWindow) { -AboutNewTab.init(); - TabCrashHandler.init(); ProcessHangMonitor.init(); @@ -5199,12 +5178,8 @@ var AboutHomeStartupCache = { return { pageInputStream: null, scriptInputStream: null }; } -let state = AboutNewTab.activityStream.store.getState(); -return new Promise(resolve => { - this._cacheDeferred = resolve; - this.log.trace("Parent received cache streams."); - this._procManager.sendAsyncMessage(this.CACHE_REQUEST_MESSAGE, { state }); -}); +this.log.error("Activity Stream is disabled in Tor Browser."); +return { pageInputStream: null, scriptInputStream: null }; }, /** diff --git a/browser/components/newtab/AboutNewTabService.jsm b/browser/components/newtab/AboutNewTabService.jsm index 506b521f528c..3962ebf94ab5 100644 --- a/browser/components/newtab/AboutNewTabService.jsm +++ b/browser/components/newtab/AboutNewTabService.jsm @@ -286,20 +286,7 @@ class BaseAboutNewTabService { * the newtab page has no effect on the result of this function. */ get defaultURL() { -// Generate the desired activity stream resource depending on state, e.g., -// "resource://activity-stream/prerendered/activity-stream.html" -// "resource://activity-stream/prerendered/activity-stream-debug.html" -// "resource://activity-stream/prerendered/activity-stream-noscripts.html" -return [ - "resource://activity-stream/prerendered/", - "activity-stream", - // Debug version loads dev scripts but noscripts separately loads scripts - this.activityStreamDebug && !this.privilegedAboutProcessEnabled -? "-debug" -: "", - this.privilegedAboutProcessEnabled ? "-noscripts" : "", - ".html", -].join(""); +return "about:tor"; } /* diff --git a/browser/components/preferences/home.inc.xhtml b/browser/components/preferences/home.inc.xhtml index 2e900ccd296c..2a7412944d73 100644 --- a/browser/components/preferences/home.inc.xhtml +++ b/browser/components/preferences/home.inc.xhtml @@ -37,7 +37,7 @@ class="check-home-page-controlled" data-preference-related="browser.startup.homepage"> - + @@ -97,7 +97,7 @@ flex="1" preference="browser.newtabpage.enabled"> - + diff --git a/browser/components/preferences/preferences.xhtml b/browser/components/preferences/preferences.xhtml index 3d89ddf00808..c176457c68fd 100644 --- a/browser/components/preferences/preferences.xhtml +++ b/browser/components/preferences/preferences.xhtml @@ -14,7 +14,10 @@ - + + %aboutTorDTD; +]> http://www.w3.org/1999/xhtml"; xmlns:html="http://www.w3.org/1999/xhtml"; diff --git a/browser/modules/HomePage.jsm b/browser/modules/HomePage.jsm index c903787fde48..bf67b1c5d173 100644 --- a/browser/modules/HomePage.js
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 31563: force reloading search extensions if extensions.enabledScopes has changed
commit 13b48f700f9916df10df58a700640af2fd6f5f3f Author: Alex Catarineu Date: Sat Aug 31 16:23:20 2019 +0200 Bug 31563: force reloading search extensions if extensions.enabledScopes has changed --- toolkit/components/search/SearchService.jsm | 8 +++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/toolkit/components/search/SearchService.jsm b/toolkit/components/search/SearchService.jsm index 46b992bec8ec..608f3c475458 100644 --- a/toolkit/components/search/SearchService.jsm +++ b/toolkit/components/search/SearchService.jsm @@ -975,6 +975,7 @@ SearchService.prototype = { let locale = Services.locale.requestedLocale; let buildID = Services.appinfo.platformBuildID; let appVersion = Services.appinfo.version; +let enabledScopes = Services.prefs.getIntPref("extensions.enabledScopes", -1); // Allows us to force a cache refresh should the cache format change. cache.version = SearchUtils.CACHE_VERSION; @@ -988,6 +989,10 @@ SearchService.prototype = { cache.appVersion = appVersion; cache.locale = locale; +// Bug 31563: we want to force reloading engines if extensions.enabledScopes +// pref changes +cache.enabledScopes = enabledScopes; + if (gModernConfig) { cache.builtInEngineList = this._searchOrder; // For built-in engines we don't want to store all their data in the cache @@ -1049,7 +1054,8 @@ SearchService.prototype = { !cache.engines || cache.version != SearchUtils.CACHE_VERSION || cache.locale != Services.locale.requestedLocale || - cache.buildID != buildID; + cache.buildID != buildID || + cache.enabledScopes != Services.prefs.getIntPref("extensions.enabledScopes", -1); let enginesCorrupted = false; if (!rebuildCache) { ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 31286: Implementation of bridge, proxy, and firewall settings in about:preferences#tor
commit 191609dc3889ea0904b97f07003292a8d3205b34 Author: Richard Pospesel Date: Mon Sep 16 15:25:39 2019 -0700 Bug 31286: Implementation of bridge, proxy, and firewall settings in about:preferences#tor This patch adds a new about:preferences#tor page which allows modifying bridge, proxy, and firewall settings from within Tor Browser. All of the functionality present in tor-launcher's Network Configuration panel is present: - Setting built-in bridges - Requesting bridges from BridgeDB via moat - Using user-provided bridges - Configuring SOCKS4, SOCKS5, and HTTP/HTTPS proxies - Setting firewall ports - Viewing and Copying Tor's logs - The Networking Settings in General preferences has been removed --- browser/components/moz.build | 1 + browser/components/preferences/main.inc.xhtml | 55 -- browser/components/preferences/main.js | 14 - browser/components/preferences/preferences.js | 9 + browser/components/preferences/preferences.xhtml | 5 + browser/components/preferences/privacy.js | 1 + .../torpreferences/content/parseFunctions.jsm | 89 +++ .../torpreferences/content/requestBridgeDialog.jsm | 202 + .../content/requestBridgeDialog.xhtml | 35 + .../torpreferences/content/torBridgeSettings.jsm | 325 .../torpreferences/content/torCategory.inc.xhtml | 9 + .../torpreferences/content/torFirewallSettings.jsm | 72 ++ .../torpreferences/content/torLogDialog.jsm| 66 ++ .../torpreferences/content/torLogDialog.xhtml | 23 + .../components/torpreferences/content/torPane.js | 857 + .../torpreferences/content/torPane.xhtml | 123 +++ .../torpreferences/content/torPreferences.css | 77 ++ .../torpreferences/content/torPreferencesIcon.svg | 5 + .../torpreferences/content/torProxySettings.jsm| 245 ++ browser/components/torpreferences/jar.mn | 14 + browser/components/torpreferences/moz.build| 1 + browser/modules/BridgeDB.jsm | 110 +++ browser/modules/TorProtocolService.jsm | 212 + browser/modules/moz.build | 2 + 24 files changed, 2483 insertions(+), 69 deletions(-) diff --git a/browser/components/moz.build b/browser/components/moz.build index cb6eeb9164ef..09e209dc9c3b 100644 --- a/browser/components/moz.build +++ b/browser/components/moz.build @@ -58,6 +58,7 @@ DIRS += [ 'syncedtabs', 'uitour', 'urlbar', +'torpreferences', 'translation', ] diff --git a/browser/components/preferences/main.inc.xhtml b/browser/components/preferences/main.inc.xhtml index f3502e87af98..37ac50ee940b 100644 --- a/browser/components/preferences/main.inc.xhtml +++ b/browser/components/preferences/main.inc.xhtml @@ -676,59 +676,4 @@ - - - - - - - - - - - - - - - - - - - - - - - - diff --git a/browser/components/preferences/main.js b/browser/components/preferences/main.js index 9f36871d6303..6b258429e773 100644 --- a/browser/components/preferences/main.js +++ b/browser/components/preferences/main.js @@ -361,15 +361,6 @@ var gMainPane = { }); this.updatePerformanceSettingsBox({ duringChangeEvent: false }); this.displayUseSystemLocale(); -let connectionSettingsLink = document.getElementById( - "connectionSettingsLearnMore" -); -let connectionSettingsUrl = - Services.urlFormatter.formatURLPref("app.support.baseURL") + - "prefs-connection-settings"; -connectionSettingsLink.setAttribute("href", connectionSettingsUrl); -this.updateProxySettingsUI(); -initializeProxyUI(gMainPane); if (Services.prefs.getBoolPref("intl.multilingual.enabled")) { gMainPane.initBrowserLocale(); @@ -503,11 +494,6 @@ var gMainPane = { "change", gMainPane.updateHardwareAcceleration.bind(gMainPane) ); -setEventListener( - "connectionSettings", - "command", - gMainPane.showConnections -); setEventListener( "browserContainersCheckbox", "command", diff --git a/browser/components/preferences/preferences.js b/browser/components/preferences/preferences.js index 27e9763a1f9e..089533f20ade 100644 --- a/browser/components/preferences/preferences.js +++ b/browser/components/preferences/preferences.js @@ -13,6 +13,7 @@ /* import-globals-from findInPage.js */ /* import-globals-from ../../base/content/utilityOverlay.js */ /* import-globals-from ../../../toolkit/content/preferencesBindings.js */ +/* import-globals-from ../torpreferences/content/torPane.js */ "use strict"; @@ -91,6 +92,14 @@ function init_all() { document.getElementById("template-paneSync").remove(); } register_module("paneSearchResults", gSearchResultsPane); + if (gTorPane.enabled) { +document.getElementById("category-tor").hidden = false
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 27511: Add new identity button to toolbar
commit d997a7b19cdbcb6b4f719db37007e3629304a4d2 Author: Alex Catarineu Date: Fri Oct 4 19:08:33 2019 +0200 Bug 27511: Add new identity button to toolbar Also added 'New circuit for this site' button to CustomizableUI, but not visible by default. --- browser/base/content/browser.xhtml | 10 ++ .../components/customizableui/CustomizableUI.jsm| 21 + browser/themes/shared/icons/new_circuit.svg | 8 browser/themes/shared/icons/new_identity.svg| 9 + browser/themes/shared/jar.inc.mn| 3 +++ browser/themes/shared/menupanel.inc.css | 8 browser/themes/shared/toolbarbutton-icons.inc.css | 8 7 files changed, 67 insertions(+) diff --git a/browser/base/content/browser.xhtml b/browser/base/content/browser.xhtml index 72c415b8f843..ddf5d766126b 100644 --- a/browser/base/content/browser.xhtml +++ b/browser/base/content/browser.xhtml @@ -1295,6 +1295,16 @@ ondragenter="newWindowButtonObserver.onDragOver(event)" ondragexit="newWindowButtonObserver.onDragExit(event)"/> + + + + +http://www.w3.org/2000/svg"; xmlns:xlink="http://www.w3.org/1999/xlink";> +Icon / New Circuit@1.5x + + + + + diff --git a/browser/themes/shared/icons/new_identity.svg b/browser/themes/shared/icons/new_identity.svg new file mode 100644 index ..91d5b35f7e80 --- /dev/null +++ b/browser/themes/shared/icons/new_identity.svg @@ -0,0 +1,9 @@ + +http://www.w3.org/2000/svg"; xmlns:xlink="http://www.w3.org/1999/xlink";> +New Identity Icon + + + + + + \ No newline at end of file diff --git a/browser/themes/shared/jar.inc.mn b/browser/themes/shared/jar.inc.mn index 71fea38eb829..e4a3c8d2d41c 100644 --- a/browser/themes/shared/jar.inc.mn +++ b/browser/themes/shared/jar.inc.mn @@ -302,3 +302,6 @@ skin/classic/browser/install-ssb.svg (../shared/install-ssb.svg) skin/classic/browser/critical.svg (../shared/icons/critical.svg) skin/classic/browser/webRTC-indicator.css (../shared/webRTC-indicator.css) + + skin/classic/browser/new_circuit.svg (../shared/icons/new_circuit.svg) + skin/classic/browser/new_identity.svg (../shared/icons/new_identity.svg) diff --git a/browser/themes/shared/menupanel.inc.css b/browser/themes/shared/menupanel.inc.css index c919f32a1454..eae453ec5004 100644 --- a/browser/themes/shared/menupanel.inc.css +++ b/browser/themes/shared/menupanel.inc.css @@ -183,3 +183,11 @@ toolbarpaletteitem[place="palette"] > #bookmarks-menu-button, -moz-context-properties: fill, fill-opacity; fill-opacity: 0; } + +#appMenuNewIdentity { + list-style-image: url("chrome://browser/skin/new_identity.svg"); +} + +#appMenuNewCircuit { + list-style-image: url("chrome://browser/skin/new_circuit.svg"); +} diff --git a/browser/themes/shared/toolbarbutton-icons.inc.css b/browser/themes/shared/toolbarbutton-icons.inc.css index 9514eb1d5338..cf02f871c9a4 100644 --- a/browser/themes/shared/toolbarbutton-icons.inc.css +++ b/browser/themes/shared/toolbarbutton-icons.inc.css @@ -233,6 +233,14 @@ toolbar[brighttext] { list-style-image: url("chrome://browser/skin/new-tab.svg"); } +#new-identity-button { + list-style-image: url("chrome://browser/skin/new_identity.svg"); +} + +#new-circuit-button { + list-style-image: url("chrome://browser/skin/new_circuit.svg"); +} + #privatebrowsing-button { list-style-image: url("chrome://browser/skin/privateBrowsing.svg"); } ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 13543: Spoof smooth and powerEfficient for Media Capabilities
commit 4b1b82642fe545b05044be952451cec350605d5f Author: Alex Catarineu Date: Thu Oct 10 15:08:12 2019 +0200 Bug 13543: Spoof smooth and powerEfficient for Media Capabilities --- dom/media/mediacapabilities/MediaCapabilities.cpp | 5 + 1 file changed, 5 insertions(+) diff --git a/dom/media/mediacapabilities/MediaCapabilities.cpp b/dom/media/mediacapabilities/MediaCapabilities.cpp index fb1b1a2cb32c..3bc6b97eac63 100644 --- a/dom/media/mediacapabilities/MediaCapabilities.cpp +++ b/dom/media/mediacapabilities/MediaCapabilities.cpp @@ -290,6 +290,11 @@ already_AddRefed MediaCapabilities::DecodingInfo( if (aValue.IsReject()) { p = CapabilitiesPromise::CreateAndReject( std::move(aValue.RejectValue()), __func__); + } else if (nsContentUtils:: + ShouldResistFingerprinting()) { +p = CapabilitiesPromise::CreateAndResolve( +MediaCapabilitiesInfo(true, true, false), +__func__); } else { MOZ_ASSERT(config->IsVideo()); if (StaticPrefs::media_mediacapabilities_from_database()) { ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 26345: Hide tracking protection UI
commit ceac04df7a9f56dad9c322af1a500981de51d815 Author: Alex Catarineu Date: Tue Sep 10 16:29:31 2019 +0200 Bug 26345: Hide tracking protection UI --- browser/base/content/browser-siteIdentity.js| 4 ++-- browser/components/about/AboutRedirector.cpp| 4 browser/components/about/components.conf| 1 - browser/components/customizableui/content/panelUI.inc.xhtml | 4 ++-- browser/components/moz.build| 1 - browser/themes/shared/preferences/privacy.css | 4 6 files changed, 8 insertions(+), 10 deletions(-) diff --git a/browser/base/content/browser-siteIdentity.js b/browser/base/content/browser-siteIdentity.js index 9da8fab971c6..b8172d6a85f6 100644 --- a/browser/base/content/browser-siteIdentity.js +++ b/browser/base/content/browser-siteIdentity.js @@ -847,10 +847,10 @@ var gIdentityHandler = { this._refreshPermissionIcons(); -// Hide the shield icon if it is a chrome page. +// Bug 26345: Hide tracking protection UI. gProtectionsHandler._trackingProtectionIconContainer.classList.toggle( "chromeUI", - this._isSecureInternalUI + true ); }, diff --git a/browser/components/about/AboutRedirector.cpp b/browser/components/about/AboutRedirector.cpp index 933d519bd959..544e21782729 100644 --- a/browser/components/about/AboutRedirector.cpp +++ b/browser/components/about/AboutRedirector.cpp @@ -114,10 +114,6 @@ static const RedirEntry kRedirMap[] = { nsIAboutModule::URI_MUST_LOAD_IN_CHILD | nsIAboutModule::URI_SAFE_FOR_UNTRUSTED_CONTENT | nsIAboutModule::ALLOW_SCRIPT | nsIAboutModule::HIDE_FROM_ABOUTABOUT}, -{"protections", "chrome://browser/content/protections.html", - nsIAboutModule::URI_SAFE_FOR_UNTRUSTED_CONTENT | - nsIAboutModule::URI_MUST_LOAD_IN_CHILD | nsIAboutModule::ALLOW_SCRIPT | - nsIAboutModule::URI_CAN_LOAD_IN_PRIVILEGEDABOUT_PROCESS}, {"pioneer", "chrome://browser/content/pioneer.html", nsIAboutModule::ALLOW_SCRIPT | nsIAboutModule::HIDE_FROM_ABOUTABOUT}, #ifdef TOR_BROWSER_UPDATE diff --git a/browser/components/about/components.conf b/browser/components/about/components.conf index f31159d30e15..d78de142e2e4 100644 --- a/browser/components/about/components.conf +++ b/browser/components/about/components.conf @@ -20,7 +20,6 @@ pages = [ 'policies', 'preferences', 'privatebrowsing', -'protections', 'profiling', 'reader', 'restartrequired', diff --git a/browser/components/customizableui/content/panelUI.inc.xhtml b/browser/components/customizableui/content/panelUI.inc.xhtml index 719eee14e681..45f4a10ace7b 100644 --- a/browser/components/customizableui/content/panelUI.inc.xhtml +++ b/browser/components/customizableui/content/panelUI.inc.xhtml @@ -244,7 +244,7 @@ oncommand="gSync.toggleAccountPanel('PanelUI-fxa', this, event)"/> - + @@ -255,7 +255,7 @@ - + description { ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 26353: Prevent speculative connect that violated FPI.
commit 5e8874a14151a24ed7c6e8706ac8d6966986b916 Author: Arthur Edelstein Date: Sat Jul 14 08:50:55 2018 -0700 Bug 26353: Prevent speculative connect that violated FPI. Connections were observed in the catch-all circuit when the user entered an https or http URL in the URL bar, or typed a search term. --- toolkit/components/remotebrowserutils/RemoteWebNavigation.jsm | 4 1 file changed, 4 insertions(+) diff --git a/toolkit/components/remotebrowserutils/RemoteWebNavigation.jsm b/toolkit/components/remotebrowserutils/RemoteWebNavigation.jsm index ffa42297073e..82c7a3b950c2 100644 --- a/toolkit/components/remotebrowserutils/RemoteWebNavigation.jsm +++ b/toolkit/components/remotebrowserutils/RemoteWebNavigation.jsm @@ -74,6 +74,9 @@ class RemoteWebNavigation { fixupFlags |= Services.uriFixup.FIXUP_FLAG_PRIVATE_CONTEXT; } uri = Services.uriFixup.createFixupURI(aURI, fixupFlags); +/*** + TOR BROWSER: Disable the following speculative connect until + we can make it properly obey first-party isolation. // We know the url is going to be loaded, let's start requesting network // connection before the content process asks. @@ -97,6 +100,7 @@ class RemoteWebNavigation { } Services.io.speculativeConnect(uri, principal, null); } +***/ } catch (ex) { // Can't setup speculative connection for this uri string for some // reason (such as failing to parse the URI), just ignore it. ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 31607: App menu items stop working on macOS
commit 8c60c9220a563a3cce1c7fe2852037b93345b945 Author: Kathy Brade Date: Thu Oct 3 10:53:43 2019 -0400 Bug 31607: App menu items stop working on macOS Avoid re-creating the hidden window, since this causes the nsMenuBarX object that is associated with the app menu to be freed (which in turn causes all of the app menu items to stop working). More detail: There should only be one hidden window. XREMain::XRE_mainRun() contains an explicit call to create the hidden window and that is the normal path by which it is created. However, when Tor Launcher's wizard/progress window is opened during startup, a hidden window is created earlier as a side effect of calls to nsAppShellService::GetHiddenWindow(). Then, when XREMain::XRE_mainRun() creates its hidden window, the original one is freed which also causes the app menu's nsMenuBarX object which is associated with that window to be destroyed. When that happens, the menuGroupOwner property within each Cocoa menu items's MenuItemInfo object is cleared. This breaks the link that is necessary for NativeMenuItemTarget's menuItemHit method to dispatch a menu item event. --- xpfe/appshell/nsAppShellService.cpp | 4 1 file changed, 4 insertions(+) diff --git a/xpfe/appshell/nsAppShellService.cpp b/xpfe/appshell/nsAppShellService.cpp index 719684ceb072..1600a3fea789 100644 --- a/xpfe/appshell/nsAppShellService.cpp +++ b/xpfe/appshell/nsAppShellService.cpp @@ -93,6 +93,10 @@ void nsAppShellService::EnsureHiddenWindow() { NS_IMETHODIMP nsAppShellService::CreateHiddenWindow() { + if (mHiddenWindow) { +return NS_OK; + } + if (!XRE_IsParentProcess()) { return NS_ERROR_NOT_IMPLEMENTED; } ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 28369: Stop shipping pingsender executable
commit 292f82d6aa2558304fa720f9077cd48423a47208 Author: Alex Catarineu Date: Wed Apr 10 17:52:51 2019 +0200 Bug 28369: Stop shipping pingsender executable --- browser/app/macbuild/Contents/MacOS-files.in | 1 - browser/installer/package-manifest.in | 4 browser/installer/windows/nsis/shared.nsh | 1 - python/mozbuild/mozbuild/artifacts.py | 2 -- toolkit/components/telemetry/app/TelemetrySend.jsm | 19 +-- toolkit/components/telemetry/moz.build | 4 6 files changed, 1 insertion(+), 30 deletions(-) diff --git a/browser/app/macbuild/Contents/MacOS-files.in b/browser/app/macbuild/Contents/MacOS-files.in index a0cac14ef7e3..38c3766c6375 100644 --- a/browser/app/macbuild/Contents/MacOS-files.in +++ b/browser/app/macbuild/Contents/MacOS-files.in @@ -13,7 +13,6 @@ #if defined(MOZ_CRASHREPORTER) /minidump-analyzer #endif -/pingsender /pk12util /ssltunnel /xpcshell diff --git a/browser/installer/package-manifest.in b/browser/installer/package-manifest.in index ad7dd023a92e..9e36326dee5b 100644 --- a/browser/installer/package-manifest.in +++ b/browser/installer/package-manifest.in @@ -444,10 +444,6 @@ bin/libfreebl_64int_3.so @BINPATH@/minidump-analyzer@BIN_SUFFIX@ #endif -; [ Ping Sender ] -; -@BINPATH@/pingsender@BIN_SUFFIX@ - ; Shutdown Terminator @RESPATH@/components/terminator.manifest diff --git a/browser/installer/windows/nsis/shared.nsh b/browser/installer/windows/nsis/shared.nsh index abb430be8919..d846b5eb62df 100755 --- a/browser/installer/windows/nsis/shared.nsh +++ b/browser/installer/windows/nsis/shared.nsh @@ -1472,7 +1472,6 @@ ${EndIf} Push "crashreporter.exe" Push "default-browser-agent.exe" Push "minidump-analyzer.exe" - Push "pingsender.exe" Push "updater.exe" Push "updateagent.exe" Push "${FileMainEXE}" diff --git a/python/mozbuild/mozbuild/artifacts.py b/python/mozbuild/mozbuild/artifacts.py index d1de6bca15d9..35107ac894fd 100644 --- a/python/mozbuild/mozbuild/artifacts.py +++ b/python/mozbuild/mozbuild/artifacts.py @@ -420,7 +420,6 @@ class LinuxArtifactJob(ArtifactJob): '{product}/{product}', '{product}/{product}-bin', '{product}/minidump-analyzer', -'{product}/pingsender', '{product}/plugin-container', '{product}/updater', '{product}/**/*.so', @@ -482,7 +481,6 @@ class MacArtifactJob(ArtifactJob): 'libosclientcerts.dylib', 'libsoftokn3.dylib', 'minidump-analyzer', -'pingsender', 'plugin-container.app/Contents/MacOS/plugin-container', 'updater.app/Contents/MacOS/org.mozilla.updater', # 'xpcshell', diff --git a/toolkit/components/telemetry/app/TelemetrySend.jsm b/toolkit/components/telemetry/app/TelemetrySend.jsm index f0f61b74026b..502416431b24 100644 --- a/toolkit/components/telemetry/app/TelemetrySend.jsm +++ b/toolkit/components/telemetry/app/TelemetrySend.jsm @@ -1578,23 +1578,6 @@ var TelemetrySendImpl = { }, runPingSender(pings, observer) { -if (AppConstants.platform === "android") { - throw Components.Exception("", Cr.NS_ERROR_NOT_IMPLEMENTED); -} - -const exeName = - AppConstants.platform === "win" ? "pingsender.exe" : "pingsender"; - -let exe = Services.dirsvc.get("GreBinD", Ci.nsIFile); -exe.append(exeName); - -let params = pings.flatMap(ping => [ping.url, ping.path]); -let process = Cc["@mozilla.org/process/util;1"].createInstance( - Ci.nsIProcess -); -process.init(exe); -process.startHidden = true; -process.noShell = true; -process.runAsync(params, params.length, observer); +throw Components.Exception("", Cr.NS_ERROR_NOT_IMPLEMENTED); }, }; diff --git a/toolkit/components/telemetry/moz.build b/toolkit/components/telemetry/moz.build index 8d9104f632a6..520d2da3acf1 100644 --- a/toolkit/components/telemetry/moz.build +++ b/toolkit/components/telemetry/moz.build @@ -8,10 +8,6 @@ include('/ipc/chromium/chromium-config.mozbuild') FINAL_LIBRARY = 'xul' -DIRS = [ -'pingsender', -] - DEFINES['MOZ_APP_VERSION'] = '"%s"' % CONFIG['MOZ_APP_VERSION'] LOCAL_INCLUDES += [ ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 19273: Avoid JavaScript patching of the external app helper dialog.
commit cec51d31cd5bf0d79e5f08aa02d7fea47b7a35a9 Author: Kathy Brade Date: Tue Jun 28 15:13:05 2016 -0400 Bug 19273: Avoid JavaScript patching of the external app helper dialog. When handling an external URI or downloading a file, invoke Torbutton's external app blocker component (which will present a download warning dialog unless the user has checked the "Automatically download files from now on" box). For e10s compatibility, avoid using a modal dialog and instead use a callback interface (nsIHelperAppWarningLauncher) to allow Torbutton to indicate the user's desire to cancel or continue each request. Other bugs fixed: Bug 21766: Crash with e10s enabled while trying to download a file Bug 21886: Download is stalled in non-e10s mode Bug 22471: Downloading files via the PDF viewer download button is broken Bug 22472: Fix FTP downloads when external helper app dialog is shown Bug 22610: Avoid crashes when canceling external helper app downloads Bug 22618: Downloading pdf file via file:/// is stalling --- .../exthandler/nsExternalHelperAppService.cpp | 202 + uriloader/exthandler/nsExternalHelperAppService.h | 3 + .../exthandler/nsIExternalHelperAppService.idl | 47 + 3 files changed, 217 insertions(+), 35 deletions(-) diff --git a/uriloader/exthandler/nsExternalHelperAppService.cpp b/uriloader/exthandler/nsExternalHelperAppService.cpp index 4ff7ed2e27cc..0dcc1d3ed6ab 100644 --- a/uriloader/exthandler/nsExternalHelperAppService.cpp +++ b/uriloader/exthandler/nsExternalHelperAppService.cpp @@ -132,6 +132,9 @@ static const char NEVER_ASK_FOR_SAVE_TO_DISK_PREF[] = static const char NEVER_ASK_FOR_OPEN_FILE_PREF[] = "browser.helperApps.neverAsk.openFile"; +static const char WARNING_DIALOG_CONTRACT_ID[] = +"@torproject.org/torbutton-extAppBlocker;1"; + // Helper functions for Content-Disposition headers /** @@ -388,6 +391,22 @@ static nsresult GetDownloadDirectory(nsIFile** _directory, return NS_OK; } +static already_AddRefed GetDialogParentAux( +BrowsingContext* aBrowsingContext, nsIInterfaceRequestor* aWindowContext) { + nsCOMPtr dialogParent = aWindowContext; + + if (!dialogParent && aBrowsingContext) { +dialogParent = do_QueryInterface(aBrowsingContext->GetDOMWindow()); + } + if (!dialogParent && aBrowsingContext && XRE_IsParentProcess()) { +RefPtr element = aBrowsingContext->Top()->GetEmbedderElement(); +if (element) { + dialogParent = do_QueryInterface(element->OwnerDoc()->GetWindow()); +} + } + return dialogParent.forget(); +} + /** * Structure for storing extension->type mappings. * @see defaultMimeEntries @@ -544,6 +563,111 @@ static const nsDefaultMimeTypeEntry nonDecodableExtensions[] = { {APPLICATION_COMPRESS, "z"}, {APPLICATION_GZIP, "svgz"}}; +// +// begin nsExternalLoadURIHandler class definition and implementation +// +class nsExternalLoadURIHandler final : public nsIHelperAppWarningLauncher { + public: + NS_DECL_THREADSAFE_ISUPPORTS + NS_DECL_NSIHELPERAPPWARNINGLAUNCHER + + nsExternalLoadURIHandler(nsIHandlerInfo* aHandlerInfo, nsIURI* aURI, + nsIPrincipal* aTriggeringPrincipal, + BrowsingContext* aBrowsingContext); + + protected: + ~nsExternalLoadURIHandler(); + + nsCOMPtr mHandlerInfo; + nsCOMPtr mURI; + nsCOMPtr mTriggeringPrincipal; + RefPtr mBrowsingContext; + nsCOMPtr mWarningDialog; +}; + +NS_IMPL_ADDREF(nsExternalLoadURIHandler) +NS_IMPL_RELEASE(nsExternalLoadURIHandler) + +NS_INTERFACE_MAP_BEGIN(nsExternalLoadURIHandler) + NS_INTERFACE_MAP_ENTRY_AMBIGUOUS(nsISupports, nsIHelperAppWarningLauncher) + NS_INTERFACE_MAP_ENTRY(nsIHelperAppWarningLauncher) +NS_INTERFACE_MAP_END + +nsExternalLoadURIHandler::nsExternalLoadURIHandler( +nsIHandlerInfo* aHandlerInfo, nsIURI* aURI, +nsIPrincipal* aTriggeringPrincipal, BrowsingContext* aBrowsingContext) +: mHandlerInfo(aHandlerInfo), + mURI(aURI), + mTriggeringPrincipal(aTriggeringPrincipal), + mBrowsingContext(aBrowsingContext) + +{ + nsresult rv = NS_OK; + mWarningDialog = do_CreateInstance(WARNING_DIALOG_CONTRACT_ID, &rv); + if (NS_SUCCEEDED(rv) && mWarningDialog) { +// This will create a reference cycle (the dialog holds a reference to us +// as nsIHelperAppWarningLauncher), which will be broken in ContinueRequest +// or CancelRequest. +nsCOMPtr dialogParent = +GetDialogParentAux(aBrowsingContext, nullptr); +rv = mWarningDialog->MaybeShow(this, dialogParent); + } + + if (NS_FAILED(rv)) { +// If for some reason we could not open the download warning prompt, +// continue with the request. +ContinueRequest(); + } +} + +nsExternal
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 16285: Exclude ClearKey system for now
commit f2c347c1346c69f7a306c9b4cb1c86fd85fab7b9 Author: Georg Koppen Date: Mon May 22 12:44:40 2017 + Bug 16285: Exclude ClearKey system for now In the past the ClearKey system had not been compiled when specifying --disable-eme. But that changed and it is even bundled nowadays (see: Mozilla's bug 1300654). We don't want to ship it right now as the use case for it is not really visible while the code had security vulnerabilities in the past. --- browser/installer/package-manifest.in | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/browser/installer/package-manifest.in b/browser/installer/package-manifest.in index 792acb870afa..53b0b7ddf731 100644 --- a/browser/installer/package-manifest.in +++ b/browser/installer/package-manifest.in @@ -465,8 +465,8 @@ bin/libfreebl_64int_3.so #endif ; media -@RESPATH@/gmp-clearkey/0.1/@DLL_PREFIX@clearkey@DLL_SUFFIX@ -@RESPATH@/gmp-clearkey/0.1/manifest.json +;@RESPATH@/gmp-clearkey/0.1/@DLL_PREFIX@clearkey@DLL_SUFFIX@ +;@RESPATH@/gmp-clearkey/0.1/manifest.json #ifdef MOZ_DMD ; DMD ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 25658: Replace security slider with security level UI
commit e106f7c3cf17ef32473e6eb6fc6d4ada80a42a93 Author: Richard Pospesel Date: Mon Mar 4 16:09:51 2019 -0800 Bug 25658: Replace security slider with security level UI This patch adds a new 'securitylevel' component to Tor Browser intended to replace the torbutton 'Security Slider'. This component adds a new Security Level toolbar button which visually indicates the current global security level via icon (as defined by the extensions.torbutton.security_slider pref), a drop-down hanger with a short description of the current security level, and a new section in the about:preferences#privacy page where users can change their current security level. In addition, the hanger and the preferences page will show a visual warning when the user has modified prefs associated with the security level and provide a one-click 'Restore Defaults' button to get the user back on recommended settings. Strings used by this patch are pulled from the torbutton extension, but en-US defaults are provided if there is an error loading from the extension. With this patch applied, the usual work-flow of "./mach build && ./mach run" work as expected, even if the torbutton extension is disabled. --- browser/base/content/browser.js| 10 + browser/base/content/browser.xhtml | 5 + browser/components/moz.build | 1 + browser/components/preferences/preferences.xhtml | 1 + browser/components/preferences/privacy.inc.xhtml | 2 + browser/components/preferences/privacy.js | 19 + .../securitylevel/content/securityLevel.js | 501 + .../securitylevel/content/securityLevelButton.css | 9 + .../content/securityLevelButton.inc.xhtml | 7 + .../securitylevel/content/securityLevelButton.svg | 21 + .../securitylevel/content/securityLevelPanel.css | 82 .../content/securityLevelPanel.inc.xhtml | 38 ++ .../content/securityLevelPreferences.css | 26 ++ .../content/securityLevelPreferences.inc.xhtml | 62 +++ browser/components/securitylevel/jar.mn| 6 + browser/components/securitylevel/moz.build | 1 + 16 files changed, 791 insertions(+) diff --git a/browser/base/content/browser.js b/browser/base/content/browser.js index d8896e9289d6..d192bc433fe6 100644 --- a/browser/base/content/browser.js +++ b/browser/base/content/browser.js @@ -215,6 +215,11 @@ XPCOMUtils.defineLazyScriptGetter( ["DownloadsButton", "DownloadsIndicatorView"], "chrome://browser/content/downloads/indicator.js" ); +XPCOMUtils.defineLazyScriptGetter( + this, + ["SecurityLevelButton"], + "chrome://browser/content/securitylevel/securityLevel.js" +); XPCOMUtils.defineLazyScriptGetter( this, "gEditItemOverlay", @@ -1875,6 +1880,9 @@ var gBrowserInit = { // doesn't flicker as the window is being shown. DownloadsButton.init(); +// Init the SecuritySettingsButton +SecurityLevelButton.init(); + // Certain kinds of automigration rely on this notification to complete // their tasks BEFORE the browser window is shown. SessionStore uses it to // restore tabs into windows AFTER important parts like gMultiProcessBrowser @@ -2557,6 +2565,8 @@ var gBrowserInit = { DownloadsButton.uninit(); +SecurityLevelButton.uninit(); + gAccessibilityServiceIndicator.uninit(); AccessibilityRefreshBlocker.uninit(); diff --git a/browser/base/content/browser.xhtml b/browser/base/content/browser.xhtml index 229fc2a26dd2..72c415b8f843 100644 --- a/browser/base/content/browser.xhtml +++ b/browser/base/content/browser.xhtml @@ -20,6 +20,8 @@ + + @@ -623,6 +625,7 @@ #include ../../components/controlcenter/content/protectionsPanel.inc.xhtml #include ../../components/downloads/content/downloadsPanel.inc.xhtml #include ../../../devtools/startup/enableDevToolsPopup.inc.xhtml +#include ../../components/securitylevel/content/securityLevelPanel.inc.xhtml #include browser-allTabsMenu.inc.xhtml @@ -1136,6 +1139,8 @@ +#include ../../components/securitylevel/content/securityLevelButton.inc.xhtml + + diff --git a/browser/components/preferences/privacy.inc.xhtml b/browser/components/preferences/privacy.inc.xhtml index 572b0233c8c4..f36145ea80d4 100644 --- a/browser/components/preferences/privacy.inc.xhtml +++ b/browser/components/preferences/privacy.inc.xhtml @@ -913,6 +913,8 @@ +#include ../securitylevel/content/securityLevelPreferences.inc.xhtml + diff --git a/browser/components/preferences/privacy.js b/browser/components/preferences/privacy.js index 2cff75726546..949fa84c24ab 100644 --- a/browser/components/preferences/privacy.js +++ b/browser/components/preferences/privacy.js @@ -77,6 +77,12 @@ XPCOMUtils.defineLazyGetter(this, "AlertsServiceDND", function() { } }); +XPCOMUtils.defineLazyScrip
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 16940: After update, load local change notes.
commit 029efc30a2bd5a80360c71537c7f8798d2d1b3b8 Author: Kathy Brade Date: Wed Nov 25 11:36:20 2015 -0500 Bug 16940: After update, load local change notes. Add an about:tbupdate page that displays the first section from TorBrowser/Docs/ChangeLog.txt and includes a link to the remote post-update page (typically our blog entry for the release). Always load about:tbupdate in a content process, but implement the code that reads the file system (changelog) in the chrome process for compatibility with future sandboxing efforts. Also fix bug 29440. Now about:tbupdate is styled as a fairly simple changelog page that is designed to be displayed via a link that is on about:tor. --- browser/actors/AboutTBUpdateChild.jsm | 53 browser/actors/moz.build | 5 + .../base/content/abouttbupdate/aboutTBUpdate.css | 74 .../base/content/abouttbupdate/aboutTBUpdate.js| 10 ++ .../base/content/abouttbupdate/aboutTBUpdate.xhtml | 39 ++ browser/base/content/browser-siteIdentity.js | 2 +- browser/base/content/browser.js| 4 + browser/base/jar.mn| 5 + browser/components/BrowserContentHandler.jsm | 55 ++--- browser/components/BrowserGlue.jsm | 25 browser/components/about/AboutRedirector.cpp | 6 + browser/components/about/components.conf | 3 + browser/components/moz.build | 5 +- .../locales/en-US/chrome/browser/aboutTBUpdate.dtd | 8 ++ browser/locales/jar.mn | 3 + browser/modules/AboutTBUpdate.jsm | 134 + browser/modules/moz.build | 5 + 17 files changed, 420 insertions(+), 16 deletions(-) diff --git a/browser/actors/AboutTBUpdateChild.jsm b/browser/actors/AboutTBUpdateChild.jsm new file mode 100644 index ..91bb4dbba888 --- /dev/null +++ b/browser/actors/AboutTBUpdateChild.jsm @@ -0,0 +1,53 @@ +// Copyright (c) 2019, The Tor Project, Inc. +// See LICENSE for licensing information. +// +// vim: set sw=2 sts=2 ts=8 et syntax=javascript: + +var EXPORTED_SYMBOLS = ["AboutTBUpdateChild"]; + +const {ActorChild} = ChromeUtils.import("resource://gre/modules/ActorChild.jsm"); + +class AboutTBUpdateChild extends ActorChild { + receiveMessage(aMessage) { +if (aMessage.name == "AboutTBUpdate:Update") + this.onUpdate(aMessage.data); + } + + handleEvent(aEvent) { +switch (aEvent.type) { + case "AboutTBUpdateLoad": +this.onPageLoad(); +break; + case "pagehide": +this.onPageHide(aEvent); +break; +} + } + + // aData may contain the following string properties: + // version + // releaseDate + // moreInfoURL + // releaseNotes + onUpdate(aData) { +let doc = this.content.document; +doc.getElementById("version-content").textContent = aData.version; +if (aData.releaseDate) { + doc.body.setAttribute("havereleasedate", "true"); + doc.getElementById("releasedate-content").textContent = aData.releaseDate; +} +if (aData.moreInfoURL) + doc.getElementById("infolink").setAttribute("href", aData.moreInfoURL); +doc.getElementById("releasenotes-content").textContent = aData.releaseNotes; + } + + onPageLoad() { +this.mm.sendAsyncMessage("AboutTBUpdate:RequestUpdate"); + } + + onPageHide(aEvent) { +if (aEvent.target.defaultView.frameElement) { + return; +} + } +} diff --git a/browser/actors/moz.build b/browser/actors/moz.build index 4b903146699e..e70f0f09fe3a 100644 --- a/browser/actors/moz.build +++ b/browser/actors/moz.build @@ -74,3 +74,8 @@ FINAL_TARGET_FILES.actors += [ 'WebRTCChild.jsm', 'WebRTCParent.jsm', ] + +if CONFIG['TOR_BROWSER_UPDATE']: +FINAL_TARGET_FILES.actors += [ +'AboutTBUpdateChild.jsm', +] diff --git a/browser/base/content/abouttbupdate/aboutTBUpdate.css b/browser/base/content/abouttbupdate/aboutTBUpdate.css new file mode 100644 index ..7c1a34b77f17 --- /dev/null +++ b/browser/base/content/abouttbupdate/aboutTBUpdate.css @@ -0,0 +1,74 @@ +/* + * Copyright (c) 2019, The Tor Project, Inc. + * See LICENSE for licensing information. + * + * vim: set sw=2 sts=2 ts=8 et syntax=css: + */ + +:root { + --abouttor-text-color: white; + --abouttor-bg-toron-color: #420C5D; +} + +body { + font-family: Helvetica, Arial, sans-serif; + color: var(--abouttor-text-color); + background-color: var(--abouttor-bg-toron-color); + background-attachment: fixed; + background-size: 100% 100%; +} + +a { + color: var(--abouttor-text-color); +} + +.two-column-grid { + display: inline-grid; + grid-template-columns: auto auto; + grid-column-gap: 50px; + margin: 10px 0px 0px 50px; +} + +.two-column-grid div { + margin-top: 40px; + align-self: baseline; /* Align baseline of text across the row. */ +
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 23104: Add a default line height compensation
commit 213cd921822adf3e35cdca5ce66eb610088589b3 Author: Igor Oliveira Date: Sun Dec 10 18:16:59 2017 -0200 Bug 23104: Add a default line height compensation Many fonts have issues with their vertical metrics. they are used to influence the height of ascenders and depth of descenders. Gecko uses it to calculate the line height (font height + ascender + descender), however because of that idiosyncratic behavior across multiple operating systems, it can be used to identify the user's OS. The solution proposed in the patch uses a default factor to be multiplied with the font size, simulating the concept of ascender and descender. This way all operating systems will have the same line height only and only if the frame is outside the chrome. --- layout/generic/ReflowInput.cpp | 19 --- layout/generic/test/mochitest.ini | 1 + layout/generic/test/test_tor_bug23104.html | 51 ++ 3 files changed, 66 insertions(+), 5 deletions(-) diff --git a/layout/generic/ReflowInput.cpp b/layout/generic/ReflowInput.cpp index 5b1f6d62043a..5da354f86558 100644 --- a/layout/generic/ReflowInput.cpp +++ b/layout/generic/ReflowInput.cpp @@ -30,6 +30,7 @@ #include #include "mozilla/dom/HTMLInputElement.h" #include "nsGridContainerFrame.h" +#include "nsContentUtils.h" using namespace mozilla; using namespace mozilla::css; @@ -2690,7 +2691,8 @@ void ReflowInput::CalculateBlockSideMargins(LayoutFrameType aFrameType) { // For risk management, we use preference to control the behavior, and // eNoExternalLeading is the old behavior. -static nscoord GetNormalLineHeight(nsFontMetrics* aFontMetrics) { +static nscoord GetNormalLineHeight(nsIContent* aContent, + nsFontMetrics* aFontMetrics) { MOZ_ASSERT(nullptr != aFontMetrics, "no font metrics"); nscoord normalLineHeight; @@ -2698,6 +2700,12 @@ static nscoord GetNormalLineHeight(nsFontMetrics* aFontMetrics) { nscoord externalLeading = aFontMetrics->ExternalLeading(); nscoord internalLeading = aFontMetrics->InternalLeading(); nscoord emHeight = aFontMetrics->EmHeight(); + + if (nsContentUtils::ShouldResistFingerprinting() && + !aContent->IsInChromeDocument()) { +return NSToCoordRound(emHeight * NORMAL_LINE_HEIGHT_FACTOR); + } + switch (GetNormalLineHeightCalcControl()) { case eIncludeExternalLeading: normalLineHeight = emHeight + internalLeading + externalLeading; @@ -2715,7 +2723,8 @@ static nscoord GetNormalLineHeight(nsFontMetrics* aFontMetrics) { return normalLineHeight; } -static inline nscoord ComputeLineHeight(ComputedStyle* aComputedStyle, +static inline nscoord ComputeLineHeight(nsIContent* aContent, +ComputedStyle* aComputedStyle, nsPresContext* aPresContext, nscoord aBlockBSize, float aFontSizeInflation) { @@ -2743,7 +2752,7 @@ static inline nscoord ComputeLineHeight(ComputedStyle* aComputedStyle, RefPtr fm = nsLayoutUtils::GetFontMetricsForComputedStyle( aComputedStyle, aPresContext, aFontSizeInflation); - return GetNormalLineHeight(fm); + return GetNormalLineHeight(aContent, fm); } nscoord ReflowInput::CalcLineHeight() const { @@ -2765,7 +2774,7 @@ nscoord ReflowInput::CalcLineHeight(nsIContent* aContent, float aFontSizeInflation) { MOZ_ASSERT(aComputedStyle, "Must have a ComputedStyle"); - nscoord lineHeight = ComputeLineHeight(aComputedStyle, aPresContext, + nscoord lineHeight = ComputeLineHeight(aContent, aComputedStyle, aPresContext, aBlockBSize, aFontSizeInflation); NS_ASSERTION(lineHeight >= 0, "ComputeLineHeight screwed up"); @@ -2778,7 +2787,7 @@ nscoord ReflowInput::CalcLineHeight(nsIContent* aContent, if (!lh.IsNormal()) { RefPtr fm = nsLayoutUtils::GetFontMetricsForComputedStyle( aComputedStyle, aPresContext, aFontSizeInflation); - nscoord normal = GetNormalLineHeight(fm); + nscoord normal = GetNormalLineHeight(aContent, fm); if (lineHeight < normal) { lineHeight = normal; } diff --git a/layout/generic/test/mochitest.ini b/layout/generic/test/mochitest.ini index f6678d8d8e4e..c1602bbbc6b1 100644 --- a/layout/generic/test/mochitest.ini +++ b/layout/generic/test/mochitest.ini @@ -161,3 +161,4 @@ skip-if = debug == true || tsan # the test is slow. tsan: bug 1612707 [test_reframe_for_lazy_load_image.html] support-files = file_reframe_for_lazy_load_image.html +[test_tor_bug23104.html] diff --git a/layout/generic/test/test_tor_bug23104.html b/layout/generic/test/test_tor_bug23104.html new file mode 100644 index ..ae73a3446037 --- /dev/null +++ b/layout/generic/test/test_tor_bug23104.html @@ -0,0 +1,51 @@ + + + + + Tes
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 21431: Clean-up system extensions shipped in Firefox
commit a5556138f35da9ac5278bcc5cfac894ec7f99ab3 Author: Kathy Brade Date: Tue May 23 17:05:29 2017 -0400 Bug 21431: Clean-up system extensions shipped in Firefox Only ship the pdfjs extension. --- browser/components/BrowserGlue.jsm| 6 ++ browser/extensions/moz.build | 5 - browser/installer/package-manifest.in | 1 - browser/locales/Makefile.in | 8 browser/locales/jar.mn| 7 --- 5 files changed, 6 insertions(+), 21 deletions(-) diff --git a/browser/components/BrowserGlue.jsm b/browser/components/BrowserGlue.jsm index 3b7d8d6e0309..3363e24a9b56 100644 --- a/browser/components/BrowserGlue.jsm +++ b/browser/components/BrowserGlue.jsm @@ -2076,6 +2076,9 @@ BrowserGlue.prototype = { const ID = "screensh...@mozilla.org"; const _checkScreenshotsPref = async () => { let addon = await AddonManager.getAddonByID(ID); + if (!addon) { +return; + } let disabled = Services.prefs.getBoolPref(PREF, false); if (disabled) { await addon.disable({ allowSystemAddons: true }); @@ -2092,6 +2095,9 @@ BrowserGlue.prototype = { const ID = "webcompat-repor...@mozilla.org"; Services.prefs.addObserver(PREF, async () => { let addon = await AddonManager.getAddonByID(ID); + if (!addon) { +return; + } let enabled = Services.prefs.getBoolPref(PREF, false); if (enabled && !addon.isActive) { await addon.enable({ allowSystemAddons: true }); diff --git a/browser/extensions/moz.build b/browser/extensions/moz.build index fd2e65d01f02..499c59b8d6a5 100644 --- a/browser/extensions/moz.build +++ b/browser/extensions/moz.build @@ -5,12 +5,7 @@ # file, You can obtain one at http://mozilla.org/MPL/2.0/. DIRS += [ -'doh-rollout', -'formautofill', 'pdfjs', -'screenshots', -'webcompat', -'report-site-issue' ] if not CONFIG['TOR_BROWSER_DISABLE_TOR_LAUNCHER']: diff --git a/browser/installer/package-manifest.in b/browser/installer/package-manifest.in index 53b0b7ddf731..ad7dd023a92e 100644 --- a/browser/installer/package-manifest.in +++ b/browser/installer/package-manifest.in @@ -268,7 +268,6 @@ @RESPATH@/browser/chrome/icons/default/default64.png @RESPATH@/browser/chrome/icons/default/default128.png #endif -@RESPATH@/browser/features/* ; [DevTools Startup Files] @RESPATH@/browser/chrome/devtools-startup@JAREXT@ diff --git a/browser/locales/Makefile.in b/browser/locales/Makefile.in index 05f0242c5248..1fdf34d9460f 100644 --- a/browser/locales/Makefile.in +++ b/browser/locales/Makefile.in @@ -58,10 +58,6 @@ libs-%: @$(MAKE) -C ../../toolkit/locales libs-$* XPI_ROOT_APPID='$(XPI_ROOT_APPID)' @$(MAKE) -C ../../services/sync/locales AB_CD=$* XPI_NAME=locale-$* @$(MAKE) -C ../../extensions/spellcheck/locales AB_CD=$* XPI_NAME=locale-$* -ifneq (,$(wildcard ../extensions/formautofill/locales)) - @$(MAKE) -C ../extensions/formautofill/locales AB_CD=$* XPI_NAME=locale-$* -endif - @$(MAKE) -C ../extensions/report-site-issue/locales AB_CD=$* XPI_NAME=locale-$* @$(MAKE) -C ../../devtools/client/locales AB_CD=$* XPI_NAME=locale-$* XPI_ROOT_APPID='$(XPI_ROOT_APPID)' @$(MAKE) -C ../../devtools/startup/locales AB_CD=$* XPI_NAME=locale-$* XPI_ROOT_APPID='$(XPI_ROOT_APPID)' @$(MAKE) libs AB_CD=$* XPI_NAME=locale-$* PREF_DIR=$(PREF_DIR) @@ -75,14 +71,10 @@ chrome-%: @$(MAKE) -C ../../toolkit/locales chrome-$* @$(MAKE) -C ../../services/sync/locales chrome AB_CD=$* @$(MAKE) -C ../../extensions/spellcheck/locales chrome AB_CD=$* -ifneq (,$(wildcard ../extensions/formautofill/locales)) - @$(MAKE) -C ../extensions/formautofill/locales chrome AB_CD=$* -endif @$(MAKE) -C ../../devtools/client/locales chrome AB_CD=$* @$(MAKE) -C ../../devtools/startup/locales chrome AB_CD=$* @$(MAKE) chrome AB_CD=$* @$(MAKE) -C $(DEPTH)/$(MOZ_BRANDING_DIRECTORY)/locales chrome AB_CD=$* - @$(MAKE) -C ../extensions/report-site-issue/locales chrome AB_CD=$* package-win32-installer: $(SUBMAKEFILES) $(MAKE) -C ../installer/windows CONFIG_DIR=l10ngen ZIP_IN='$(ZIP_OUT)' installer diff --git a/browser/locales/jar.mn b/browser/locales/jar.mn index 31e2d3d870e6..ff577dfd4e7c 100644 --- a/browser/locales/jar.mn +++ b/browser/locales/jar.mn @@ -60,10 +60,3 @@ locale/browser/newInstall.dtd (%chrome/browser/newInstall.dtd) locale/browser/brandings.dtd (%chrome/browser/brandings.dtd) locale/browser/fxmonitor.properties (%chrome/browser/fxmonitor.properties) - -#ifdef XPI_NAME -# Bug 1240628, restructure how l10n repacks work with feature addons -# This is hacky, but ensures the chrome.manifest chain is complete -[.] chrome.jar: -% manifest features/chrome.manifest -#endif ___ tor-commits mailing list tor-commits@lists.torproje
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 23247: Communicating security expectations for .onion
commit b945b03bacdd5864b706520fe223f13681c69e56 Author: Richard Pospesel Date: Fri Jun 8 13:38:40 2018 -0700 Bug 23247: Communicating security expectations for .onion Encrypting pages hosted on Onion Services with SSL/TLS is redundant (in terms of hiding content) as all traffic within the Tor network is already fully encrypted. Therefore, serving HTTP pages from an Onion Service is more or less fine. Prior to this patch, Tor Browser would mostly treat pages delivered via Onion Services as well as pages delivered in the ordinary fashion over the internet in the same way. This created some inconsistencies in behaviour and misinformation presented to the user relating to the security of pages delivered via Onion Services: - HTTP Onion Service pages did not have any 'lock' icon indicating the site was secure - HTTP Onion Service pages would be marked as unencrypted in the Page Info screen - Mixed-mode content restrictions did not apply to HTTP Onion Service pages embedding Non-Onion HTTP content This patch fixes the above issues, and also adds several new 'Onion' icons to the mix to indicate all of the various permutations of Onion Services hosted HTTP or HTTPS pages with HTTP or HTTPS content. Strings for Onion Service Page Info page are pulled from Torbutton's localization strings. --- browser/base/content/browser-siteIdentity.js | 39 - browser/base/content/pageinfo/security.js | 64 ++ .../shared/identity-block/identity-block.inc.css | 19 +++ .../themes/shared/identity-block/onion-slash.svg | 5 ++ .../themes/shared/identity-block/onion-warning.svg | 6 ++ browser/themes/shared/identity-block/onion.svg | 3 + browser/themes/shared/jar.inc.mn | 3 + dom/base/nsContentUtils.cpp| 19 +++ dom/base/nsContentUtils.h | 5 ++ dom/base/nsGlobalWindowOuter.cpp | 3 +- dom/ipc/WindowGlobalActor.cpp | 4 +- dom/ipc/WindowGlobalChild.cpp | 6 +- dom/presentation/PresentationRequest.cpp | 3 +- dom/security/nsMixedContentBlocker.cpp | 16 +- security/manager/ssl/nsSecureBrowserUI.cpp | 12 15 files changed, 175 insertions(+), 32 deletions(-) diff --git a/browser/base/content/browser-siteIdentity.js b/browser/base/content/browser-siteIdentity.js index 80c3f2a86538..9da8fab971c6 100644 --- a/browser/base/content/browser-siteIdentity.js +++ b/browser/base/content/browser-siteIdentity.js @@ -131,6 +131,10 @@ var gIdentityHandler = { ); }, + get _uriIsOnionHost() { +return this._uriHasHost ? this._uri.host.toLowerCase().endsWith(".onion") : false; + }, + // smart getters get _identityPopup() { delete this._identityPopup; @@ -624,9 +628,9 @@ var gIdentityHandler = { get pointerlockFsWarningClassName() { // Note that the fullscreen warning does not handle _isSecureInternalUI. if (this._uriHasHost && this._isSecureConnection) { - return "verifiedDomain"; + return this._uriIsOnionHost ? "onionVerifiedDomain" : "verifiedDomain"; } -return "unknownIdentity"; +return this._uriIsOnionHost ? "onionUnknownIdentity" : "unknownIdentity"; }, /** @@ -634,6 +638,10 @@ var gIdentityHandler = { * built-in (returns false) or imported (returns true). */ _hasCustomRoot() { +if (!this._secInfo) { + return false; +} + let issuerCert = null; issuerCert = this._secInfo.succeededCertChain[ this._secInfo.succeededCertChain.length - 1 @@ -676,11 +684,13 @@ var gIdentityHandler = { "identity.extension.label", [extensionName] ); -} else if (this._uriHasHost && this._isSecureConnection) { +} else if (this._uriHasHost && this._isSecureConnection && this._secInfo) { // This is a secure connection. - this._identityBox.className = "verifiedDomain"; + // _isSecureConnection implicitly includes onion services, which may not have an SSL certificate + const uriIsOnionHost = this._uriIsOnionHost; + this._identityBox.className = uriIsOnionHost ? "onionVerifiedDomain" : "verifiedDomain"; if (this._isMixedActiveContentBlocked) { -this._identityBox.classList.add("mixedActiveBlocked"); +this._identityBox.classList.add(uriIsOnionHost ? "onionMixedActiveBlocked" : "mixedActiveBlocked"); } if (!this._isCertUserOverridden) { // It's a normal cert, verifier is the CA Org. @@ -691,17 +701,17 @@ var gIdentityHandler = { } } else if (this._isBrokenConnection) { // This is a secure connection, but something is wrong. - this._identityBox.className = "unknownIdentity"; + const uriIsOnionHost = this._uriIsOnionHost; + this._identityBox.className = uriIsOnionHost ? "o
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 30541: Disable WebGL readPixel() for web content
commit d00bb8e095e7aecd35e8e4893343cb5afc382c3b Author: Georg Koppen Date: Wed May 29 12:29:19 2019 + Bug 30541: Disable WebGL readPixel() for web content --- dom/canvas/ClientWebGLContext.cpp | 8 1 file changed, 8 insertions(+) diff --git a/dom/canvas/ClientWebGLContext.cpp b/dom/canvas/ClientWebGLContext.cpp index 01f68aa795b7..8261829e2250 100644 --- a/dom/canvas/ClientWebGLContext.cpp +++ b/dom/canvas/ClientWebGLContext.cpp @@ -4115,6 +4115,14 @@ bool ClientWebGLContext::ReadPixels_SharedPrecheck( return false; } + // Security check passed, but don't let content readPixel calls through for + // now, if Resist Fingerprinting Mode is enabled. + if (nsContentUtils::ResistFingerprinting(aCallerType)) { +JsWarning("readPixels: Not allowed in Resist Fingerprinting Mode"); +out_error.Throw(NS_ERROR_DOM_NOT_SUPPORTED_ERR); +return false; + } + return true; } ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 13379: Sign our MAR files.
commit b31a01306d263f5ee86b6f94c303d649dbb6df76 Author: Kathy Brade Date: Wed Dec 17 16:37:11 2014 -0500 Bug 13379: Sign our MAR files. Configure with --enable-verify-mar (when updating, require a valid signature on the MAR file before it is applied). Use the Tor Browser version instead of the Firefox version inside the MAR file info block (necessary to prevent downgrade attacks). Use NSS on all platforms for checking MAR signatures (instead of using OS-native APIs, which Mozilla does on Mac OS and Windows). So that the NSS and NSPR libraries the updater depends on can be found at runtime, we add the firefox directory to the shared library search path on macOS. On Linux, rpath is used by Mozilla to solve that problem, but that approach won't work on macOS because the updater executable is copied during the update process to a location that is under TorBrowser-Data, and the location of TorBrowser-Data varies. Also includes the fix for bug 18900. --- .mozconfig | 1 + .mozconfig-asan| 1 + .mozconfig-mac | 1 + .mozconfig-mingw | 1 + modules/libmar/tool/mar.c | 6 +-- modules/libmar/tool/moz.build | 12 -- modules/libmar/verify/moz.build| 14 +++--- .../mozapps/update/updater/updater-common.build| 24 +-- toolkit/mozapps/update/updater/updater.cpp | 25 +++ toolkit/xre/moz.build | 3 ++ toolkit/xre/nsUpdateDriver.cpp | 50 ++ 11 files changed, 113 insertions(+), 25 deletions(-) diff --git a/.mozconfig b/.mozconfig index 24efaea57b0b..d71c858844e3 100755 --- a/.mozconfig +++ b/.mozconfig @@ -36,3 +36,4 @@ ac_add_options MOZ_TELEMETRY_REPORTING= ac_add_options --disable-tor-launcher ac_add_options --with-tor-browser-version=dev-build ac_add_options --disable-tor-browser-update +ac_add_options --enable-verify-mar diff --git a/.mozconfig-asan b/.mozconfig-asan index d812a55a9cea..a1c4e467cf1a 100644 --- a/.mozconfig-asan +++ b/.mozconfig-asan @@ -29,6 +29,7 @@ ac_add_options --enable-official-branding ac_add_options --enable-default-toolkit=cairo-gtk3 ac_add_options --enable-tor-browser-update +ac_add_options --enable-verify-mar ac_add_options --disable-strip ac_add_options --disable-install-strip diff --git a/.mozconfig-mac b/.mozconfig-mac index 1f89cab30bbc..9be7751f8241 100644 --- a/.mozconfig-mac +++ b/.mozconfig-mac @@ -42,6 +42,7 @@ ac_add_options --disable-debug ac_add_options --enable-tor-browser-data-outside-app-dir ac_add_options --enable-tor-browser-update +ac_add_options --enable-verify-mar ac_add_options --disable-crashreporter ac_add_options --disable-webrtc diff --git a/.mozconfig-mingw b/.mozconfig-mingw index 4fb050308060..29c58d8fdab2 100644 --- a/.mozconfig-mingw +++ b/.mozconfig-mingw @@ -14,6 +14,7 @@ ac_add_options --enable-strip ac_add_options --enable-official-branding ac_add_options --enable-tor-browser-update +ac_add_options --enable-verify-mar ac_add_options --disable-bits-download # Let's make sure no preference is enabling either Adobe's or Google's CDM. diff --git a/modules/libmar/tool/mar.c b/modules/libmar/tool/mar.c index 0bf2cb4bd1d4..ea2b79924914 100644 --- a/modules/libmar/tool/mar.c +++ b/modules/libmar/tool/mar.c @@ -65,7 +65,7 @@ static void print_usage() { "signed_input_archive.mar base_64_encoded_signature_file " "changed_signed_output.mar\n"); printf("(i) is the index of the certificate to extract\n"); -# if defined(XP_MACOSX) || (defined(XP_WIN) && !defined(MAR_NSS)) +# if (defined(XP_MACOSX) || defined(XP_WIN)) && !defined(MAR_NSS) printf("Verify a MAR file:\n"); printf(" mar [-C workingDir] -D DERFilePath -v signed_archive.mar\n"); printf( @@ -149,7 +149,7 @@ int main(int argc, char** argv) { memset((void*)certBuffers, 0, sizeof(certBuffers)); #endif #if !defined(NO_SIGN_VERIFY) && \ -((!defined(MAR_NSS) && defined(XP_WIN)) || defined(XP_MACOSX)) +(!defined(MAR_NSS) && (defined(XP_WIN) || defined(XP_MACOSX))) memset(DERFilePaths, 0, sizeof(DERFilePaths)); memset(fileSizes, 0, sizeof(fileSizes)); #endif @@ -181,7 +181,7 @@ int main(int argc, char** argv) { argc -= 2; } #if !defined(NO_SIGN_VERIFY) -# if (!defined(MAR_NSS) && defined(XP_WIN)) || defined(XP_MACOSX) +# if (!defined(MAR_NSS) && (defined(XP_WIN) || defined(XP_MACOSX))) /* -D DERFilePath, also matches -D[index] DERFilePath We allow an index for verifying to be symmetric with the import and export command line arguments. */ diff --git a/modules/libmar/tool/moz.build b/modules/libmar/tool/moz.build index 19653fb0b073..8953af0bb15c 100644 --- a/modules/libmar/tool/moz.build +++ b/modules/libmar/too
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 21907: Fix runtime error on CentOS 6
commit 91cd99262aac708701acff235d7b4a1f7b3396e6 Author: Nicolas Vigier Date: Mon Apr 10 16:07:23 2017 +0200 Bug 21907: Fix runtime error on CentOS 6 In Mozilla bug 1324780, support for building with glib 2.28 (the version available in CentOS 6) was added. However we are building on Debian Wheezy which has glib 2.32. We fix that by backing out all glib > 2.28 code paths. --- gfx/harfbuzz/src/hb-glib.cc | 53 - gfx/harfbuzz/src/hb-glib.h | 5 - 2 files changed, 58 deletions(-) diff --git a/gfx/harfbuzz/src/hb-glib.cc b/gfx/harfbuzz/src/hb-glib.cc index 058f65ae69c3..2fd39610203d 100644 --- a/gfx/harfbuzz/src/hb-glib.cc +++ b/gfx/harfbuzz/src/hb-glib.cc @@ -49,7 +49,6 @@ **/ -#if !GLIB_CHECK_VERSION(2,29,14) static const hb_script_t glib_script_to_script[] = { @@ -171,7 +170,6 @@ glib_script_to_script[] = HB_SCRIPT_SORA_SOMPENG, HB_SCRIPT_TAKRI }; -#endif /** * hb_glib_script_to_script: @@ -187,9 +185,6 @@ glib_script_to_script[] = hb_script_t hb_glib_script_to_script (GUnicodeScript script) { -#if GLIB_CHECK_VERSION(2,29,14) - return (hb_script_t) g_unicode_script_to_iso15924 (script); -#else if (likely ((unsigned int) script < ARRAY_LENGTH (glib_script_to_script))) return glib_script_to_script[script]; @@ -197,7 +192,6 @@ hb_glib_script_to_script (GUnicodeScript script) return HB_SCRIPT_INVALID; return HB_SCRIPT_UNKNOWN; -#endif } /** @@ -214,9 +208,6 @@ hb_glib_script_to_script (GUnicodeScript script) GUnicodeScript hb_glib_script_from_script (hb_script_t script) { -#if GLIB_CHECK_VERSION(2,29,14) - return g_unicode_script_from_iso15924 (script); -#else unsigned int count = ARRAY_LENGTH (glib_script_to_script); for (unsigned int i = 0; i < count; i++) if (glib_script_to_script[i] == script) @@ -226,7 +217,6 @@ hb_glib_script_from_script (hb_script_t script) return G_UNICODE_SCRIPT_INVALID_CODE; return G_UNICODE_SCRIPT_UNKNOWN; -#endif } @@ -273,10 +263,6 @@ hb_glib_unicode_compose (hb_unicode_funcs_t *ufuncs HB_UNUSED, hb_codepoint_t *ab, void *user_data HB_UNUSED) { -#if GLIB_CHECK_VERSION(2,29,12) - return g_unichar_compose (a, b, ab); -#endif - /* We don't ifdef-out the fallback code such that compiler always * sees it and makes sure it's compilable. */ @@ -310,10 +296,6 @@ hb_glib_unicode_decompose (hb_unicode_funcs_t *ufuncs HB_UNUSED, hb_codepoint_t *b, void *user_data HB_UNUSED) { -#if GLIB_CHECK_VERSION(2,29,12) - return g_unichar_decompose (ab, a, b); -#endif - /* We don't ifdef-out the fallback code such that compiler always * sees it and makes sure it's compilable. */ @@ -415,39 +397,4 @@ hb_glib_get_unicode_funcs () return static_glib_funcs.get_unconst (); } - - -#if GLIB_CHECK_VERSION(2,31,10) - -static void -_hb_g_bytes_unref (void *data) -{ - g_bytes_unref ((GBytes *) data); -} - -/** - * hb_glib_blob_create: - * @gbytes: the GBytes structure to work upon - * - * Creates an #hb_blob_t blob from the specified - * GBytes data structure. - * - * Return value: (transfer full): the new #hb_blob_t blob object - * - * Since: 0.9.38 - **/ -hb_blob_t * -hb_glib_blob_create (GBytes *gbytes) -{ - gsize size = 0; - gconstpointer data = g_bytes_get_data (gbytes, &size); - return hb_blob_create ((const char *) data, -size, -HB_MEMORY_MODE_READONLY, -g_bytes_ref (gbytes), -_hb_g_bytes_unref); -} -#endif - - #endif diff --git a/gfx/harfbuzz/src/hb-glib.h b/gfx/harfbuzz/src/hb-glib.h index 5f04183ba19f..4adbd7c332cb 100644 --- a/gfx/harfbuzz/src/hb-glib.h +++ b/gfx/harfbuzz/src/hb-glib.h @@ -46,11 +46,6 @@ hb_glib_script_from_script (hb_script_t script); HB_EXTERN hb_unicode_funcs_t * hb_glib_get_unicode_funcs (void); -#if GLIB_CHECK_VERSION(2,31,10) -HB_EXTERN hb_blob_t * -hb_glib_blob_create (GBytes *gbytes); -#endif - HB_END_DECLS #endif /* HB_GLIB_H */ ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 14631: Improve profile access error messages.
commit f36228774bdf58f9877ebc04e37e0c006d95b325 Author: Kathy Brade Date: Tue Feb 24 13:50:23 2015 -0500 Bug 14631: Improve profile access error messages. Instead of always reporting that the profile is locked, display specific messages for "access denied" and "read-only file system". To allow for localization, get profile-related error strings from Torbutton. Use app display name ("Tor Browser") in profile-related error alerts. --- .../mozapps/profile/profileSelection.properties| 5 + toolkit/profile/nsToolkitProfileService.cpp| 57 +++- toolkit/profile/nsToolkitProfileService.h | 13 +- toolkit/xre/nsAppRunner.cpp| 155 ++--- 4 files changed, 207 insertions(+), 23 deletions(-) diff --git a/toolkit/locales/en-US/chrome/mozapps/profile/profileSelection.properties b/toolkit/locales/en-US/chrome/mozapps/profile/profileSelection.properties index 2be092bf4c4b..922b52cb1385 100644 --- a/toolkit/locales/en-US/chrome/mozapps/profile/profileSelection.properties +++ b/toolkit/locales/en-US/chrome/mozapps/profile/profileSelection.properties @@ -12,6 +12,11 @@ restartMessageUnlocker=%S is already running, but is not responding. The old %S restartMessageNoUnlockerMac=A copy of %S is already open. Only one copy of %S can be open at a time. restartMessageUnlockerMac=A copy of %S is already open. The running copy of %S will quit in order to open this one. +# LOCALIZATION NOTE (profileProblemTitle, profileReadOnly, profileReadOnlyMac, profileAccessDenied): Messages displayed when the browser profile cannot be accessed or written to. %S is the application name. +profileProblemTitle=%S Profile Problem +profileReadOnly=You cannot run %S from a read-only file system. Please copy %S to another location before trying to use it. +profileReadOnlyMac=You cannot run %S from a read-only file system. Please copy %S to your Desktop or Applications folder before trying to use it. +profileAccessDenied=%S does not have permission to access the profile. Please adjust your file system permissions and try again. # Profile manager # LOCALIZATION NOTE (profileTooltip): First %S is the profile name, second %S is the path to the profile folder. profileTooltip=Profile: â%Sâ - Path: â%Sâ diff --git a/toolkit/profile/nsToolkitProfileService.cpp b/toolkit/profile/nsToolkitProfileService.cpp index a3e50f8c00d3..3f32bd95f9c9 100644 --- a/toolkit/profile/nsToolkitProfileService.cpp +++ b/toolkit/profile/nsToolkitProfileService.cpp @@ -1161,9 +1161,10 @@ nsToolkitProfileService::SelectStartupProfile( } bool wasDefault; + ProfileStatus profileStatus; nsresult rv = SelectStartupProfile(&argc, argv.get(), aIsResetting, aRootDir, aLocalDir, - aProfile, aDidCreate, &wasDefault); + aProfile, aDidCreate, &wasDefault, profileStatus); // Since we were called outside of the normal startup path complete any // startup tasks. @@ -1196,7 +1197,8 @@ nsToolkitProfileService::SelectStartupProfile( nsresult nsToolkitProfileService::SelectStartupProfile( int* aArgc, char* aArgv[], bool aIsResetting, nsIFile** aRootDir, nsIFile** aLocalDir, nsIToolkitProfile** aProfile, bool* aDidCreate, -bool* aWasDefaultSelection) { +bool* aWasDefaultSelection, ProfileStatus& aProfileStatus) { + aProfileStatus = PROFILE_STATUS_OK; if (mStartupProfileSelected) { return NS_ERROR_ALREADY_INITIALIZED; } @@ -1290,6 +1292,13 @@ nsresult nsToolkitProfileService::SelectStartupProfile( rv = XRE_GetFileFromPath(arg, getter_AddRefs(lf)); NS_ENSURE_SUCCESS(rv, rv); +aProfileStatus = CheckProfileWriteAccess(lf); +if (PROFILE_STATUS_OK != aProfileStatus) { + NS_ADDREF(*aRootDir = lf); + NS_ADDREF(*aLocalDir = lf); + return NS_ERROR_FAILURE; +} + // Make sure that the profile path exists and it's a directory. bool exists; rv = lf->Exists(&exists); @@ -2079,3 +2088,47 @@ nsresult XRE_GetFileFromPath(const char* aPath, nsIFile** aResult) { # error Platform-specific logic needed here. #endif } + +// Check for write permission to the profile directory by trying to create a +// new file (after ensuring that no file with the same name exists). +ProfileStatus nsToolkitProfileService::CheckProfileWriteAccess( +nsIFile* aProfileDir) { +#if defined(XP_UNIX) + NS_NAMED_LITERAL_STRING(writeTestFileName, ".parentwritetest"); +#else + NS_NAMED_LITERAL_STRING(writeTestFileName, "parent.writetest"); +#endif + + nsCOMPtr writeTestFile; + nsresult rv = aProfileDir->Clone(getter_AddRefs(writeTestFile)); + if (NS_SUCCEEDED(rv)) rv = writeTestFile->Append(writeTestFileName); + + if (NS_SUCCEEDED(rv)) { +bool doesExist = false; +rv = writeTestFile->Exists(&doesExist); +if (NS_SUCCEEDED(rv) && doesExist) rv = writeTestFile->Remove(true); + } + + if (NS_SUCCEEDED(rv)) { +rv = writeTestFile->Create
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 21830: Copying large text from web console leaks to /tmp
commit a8e4b480a37b50f08809532967b1c5453a0127db Author: Georg Koppen Date: Fri Aug 4 05:55:49 2017 + Bug 21830: Copying large text from web console leaks to /tmp Patch written by Neill Miller --- widget/nsTransferable.cpp | 6 ++ 1 file changed, 6 insertions(+) diff --git a/widget/nsTransferable.cpp b/widget/nsTransferable.cpp index 9ccfc8639350..135135ab23a8 100644 --- a/widget/nsTransferable.cpp +++ b/widget/nsTransferable.cpp @@ -33,6 +33,7 @@ Notes to self: #include "nsILoadContext.h" #include "nsXULAppAPI.h" #include "mozilla/UniquePtr.h" +#include "mozilla/Preferences.h" using namespace mozilla; @@ -195,6 +196,11 @@ nsTransferable::Init(nsILoadContext* aContext) { if (aContext) { mPrivateData = aContext->UsePrivateBrowsing(); + } else { +// without aContext here to provide PrivateBrowsing information, +// we defer to the active configured setting +mPrivateData = +mozilla::Preferences::GetBool("browser.privatebrowsing.autostart"); } #ifdef DEBUG mInitialized = true; ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 19121: reinstate the update.xml hash check
commit d4790d63a1834e98d69a3c6eb2f9c9470f85580f Author: Kathy Brade Date: Mon Apr 23 15:22:57 2018 -0400 Bug 19121: reinstate the update.xml hash check Revert most changes from Mozilla Bug 1373267 "Remove hashFunction and hashValue attributes from nsIUpdatePatch and code related to these attributes." Changes to the tests were not reverted; the tests have been changed significantly and we do not run automated updater tests for Tor Browser at this time. Also partial revert of commit f1241db6986e4b54473a1ed870f7584c75d51122. Revert the nsUpdateService.js changes from Mozilla Bug 862173 "don't verify mar file hash when using mar signing to verify the mar file (lessens main thread I/O)." Changes to the tests were not reverted; the tests have been changed significantly and we do not run automated updater tests for Tor Browser at this time. We kept the addition to the AppConstants API in case other JS code references it in the future. --- toolkit/modules/AppConstants.jsm| 7 toolkit/mozapps/update/UpdateService.jsm| 63 - toolkit/mozapps/update/UpdateTelemetry.jsm | 1 + toolkit/mozapps/update/nsIUpdateService.idl | 11 + 4 files changed, 81 insertions(+), 1 deletion(-) diff --git a/toolkit/modules/AppConstants.jsm b/toolkit/modules/AppConstants.jsm index cd8ca2659626..84516f0d4c66 100644 --- a/toolkit/modules/AppConstants.jsm +++ b/toolkit/modules/AppConstants.jsm @@ -212,6 +212,13 @@ this.AppConstants = Object.freeze({ false, #endif + MOZ_VERIFY_MAR_SIGNATURE: +#ifdef MOZ_VERIFY_MAR_SIGNATURE + true, +#else + false, +#endif + MOZ_MAINTENANCE_SERVICE: #ifdef MOZ_MAINTENANCE_SERVICE true, diff --git a/toolkit/mozapps/update/UpdateService.jsm b/toolkit/mozapps/update/UpdateService.jsm index 87f1e1536625..a61c130497aa 100644 --- a/toolkit/mozapps/update/UpdateService.jsm +++ b/toolkit/mozapps/update/UpdateService.jsm @@ -742,6 +742,20 @@ function LOG(string) { } } +/** + * Convert a string containing binary values to hex. + */ +function binaryToHex(input) { + var result = ""; + for (var i = 0; i < input.length; ++i) { +var hex = input.charCodeAt(i).toString(16); +if (hex.length == 1) + hex = "0" + hex; +result += hex; + } + return result; +} + /** * Gets the specified directory at the specified hierarchy under the * update root directory and creates it if it doesn't exist. @@ -1534,6 +1548,8 @@ function UpdatePatch(patch) { } break; case "finalURL": + case "hashFunction": + case "hashValue": case "state": case "type": case "URL": @@ -1553,6 +1569,8 @@ UpdatePatch.prototype = { // over writing nsIUpdatePatch attributes. _attrNames: [ "errorCode", +"hashFunction", +"hashValue", "finalURL", "selected", "size", @@ -1566,6 +1584,8 @@ UpdatePatch.prototype = { */ serialize: function UpdatePatch_serialize(updates) { var patch = updates.createElementNS(URI_UPDATE_NS, "patch"); +patch.setAttribute("hashFunction", this.hashFunction); +patch.setAttribute("hashValue", this.hashValue); patch.setAttribute("size", this.size); patch.setAttribute("type", this.type); patch.setAttribute("URL", this.URL); @@ -4301,7 +4321,42 @@ Downloader.prototype = { } LOG("Downloader:_verifyDownload downloaded size == expected size."); -return true; +let fileStream = Cc["@mozilla.org/network/file-input-stream;1"]. + createInstance(Ci.nsIFileInputStream); +fileStream.init(destination, FileUtils.MODE_RDONLY, FileUtils.PERMS_FILE, 0); + +let digest; +try { + let hash = Cc["@mozilla.org/security/hash;1"]. + createInstance(Ci.nsICryptoHash); + var hashFunction = Ci.nsICryptoHash[this._patch.hashFunction.toUpperCase()]; + if (hashFunction == undefined) { +throw Cr.NS_ERROR_UNEXPECTED; + } + hash.init(hashFunction); + hash.updateFromStream(fileStream, -1); + // NOTE: For now, we assume that the format of _patch.hashValue is hex + // encoded binary (such as what is typically output by programs like + // sha1sum). In the future, this may change to base64 depending on how + // we choose to compute these hashes. + digest = binaryToHex(hash.finish(false)); +} catch (e) { + LOG("Downloader:_verifyDownload - failed to compute hash of the " + + "downloaded update archive"); + digest = ""; +} + +fileStream.close(); + +if (digest == this._patch.hashValue.toLowerCase()) { + LOG("Downloader:_verifyDownload hashes match."); + return true; +} + +LOG("Downloader:_verifyDownload hashes do not match. "); +AUSTLMY.pingDownloadCode(this.isCompleteUpdate, + AUSTLMY.DWNLD_ERR_VERIFY_NO_HASH_MATCH); +return false; }, /** @@ -4875,6 +49
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 13252: Do not store data in the app bundle
commit ff7d2ffbd328492cc5341862995aaa74faff64a4 Author: Kathy Brade Date: Fri Mar 18 14:20:02 2016 -0400 Bug 13252: Do not store data in the app bundle When --enable-tor-browser-data-outside-app-dir is enabled, all user data is stored in a directory named TorBrowser-Data which is located next to the application directory. Display an informative error message if the TorBrowser-Data directory cannot be created due to an "access denied" or a "read only volume" error. On Mac OS, add support for the --invisible command line option which is used by the meek-http-helper to avoid showing an icon for the helper browser on the dock. --- toolkit/xre/nsAppRunner.cpp| 76 +++--- toolkit/xre/nsXREDirProvider.cpp | 43 +- toolkit/xre/nsXREDirProvider.h | 6 ++ xpcom/io/TorFileUtils.cpp | 142 + xpcom/io/TorFileUtils.h| 33 xpcom/io/moz.build | 5 ++ xpcom/io/nsAppFileLocationProvider.cpp | 53 +--- 7 files changed, 290 insertions(+), 68 deletions(-) diff --git a/toolkit/xre/nsAppRunner.cpp b/toolkit/xre/nsAppRunner.cpp index 3ba04d2b495c..8e76213e7923 100644 --- a/toolkit/xre/nsAppRunner.cpp +++ b/toolkit/xre/nsAppRunner.cpp @@ -1891,6 +1891,8 @@ static nsresult ProfileMissingDialog(nsINativeAppSupport* aNative) { } } +// If aUnlocker is NULL, it is also OK for the following arguments to be NULL: +// aProfileDir, aProfileLocalDir, aResult. static ReturnAbortOnError ProfileErrorDialog(nsIFile* aProfileDir, nsIFile* aProfileLocalDir, ProfileStatus aStatus, @@ -1899,17 +1901,19 @@ static ReturnAbortOnError ProfileErrorDialog(nsIFile* aProfileDir, nsIProfileLock** aResult) { nsresult rv; - bool exists; - aProfileDir->Exists(&exists); - if (!exists) { -return ProfileMissingDialog(aNative); + if (aProfileDir) { +bool exists; +aProfileDir->Exists(&exists); +if (!exists) { + return ProfileMissingDialog(aNative); +} } ScopedXPCOMStartup xpcom; rv = xpcom.Initialize(); NS_ENSURE_SUCCESS(rv, rv); - mozilla::Telemetry::WriteFailedProfileLock(aProfileDir); + if (aProfileDir) mozilla::Telemetry::WriteFailedProfileLock(aProfileDir); rv = xpcom.SetWindowCreator(aNative); NS_ENSURE_SUCCESS(rv, NS_ERROR_FAILURE); @@ -1999,7 +2003,8 @@ static ReturnAbortOnError ProfileErrorDialog(nsIFile* aProfileDir, } } else { #ifdef MOZ_WIDGET_ANDROID - if (java::GeckoAppShell::UnlockProfile()) { + if (aProfileDir && aProfileLocalDir && aResult && + java::GeckoAppShell::UnlockProfile()) { return NS_LockProfilePath(aProfileDir, aProfileLocalDir, nullptr, aResult); } @@ -2107,6 +2112,23 @@ static ReturnAbortOnError ShowProfileManager( return LaunchChild(false); } +#ifdef TOR_BROWSER_DATA_OUTSIDE_APP_DIR +static ProfileStatus CheckTorBrowserDataWriteAccess(nsIFile* aAppDir) { + // Check whether we can write to the directory that will contain + // TorBrowser-Data. + nsCOMPtr tbDataDir; + RefPtr dirProvider = nsXREDirProvider::GetSingleton(); + if (!dirProvider) return PROFILE_STATUS_OTHER_ERROR; + nsresult rv = + dirProvider->GetTorBrowserUserDataDir(getter_AddRefs(tbDataDir)); + NS_ENSURE_SUCCESS(rv, PROFILE_STATUS_OTHER_ERROR); + nsCOMPtr tbDataDirParent; + rv = tbDataDir->GetParent(getter_AddRefs(tbDataDirParent)); + NS_ENSURE_SUCCESS(rv, PROFILE_STATUS_OTHER_ERROR); + return nsToolkitProfileService::CheckProfileWriteAccess(tbDataDirParent); +} +#endif + static bool gDoMigration = false; static bool gDoProfileReset = false; static nsCOMPtr gResetOldProfile; @@ -3183,6 +3205,14 @@ int XREMain::XRE_mainInit(bool* aExitFlag) { if (PR_GetEnv("XRE_MAIN_BREAK")) NS_BREAK(); #endif +#if defined(XP_MACOSX) && defined(TOR_BROWSER_DATA_OUTSIDE_APP_DIR) + bool hideDockIcon = (CheckArg("invisible") == ARG_FOUND); + if (hideDockIcon) { +ProcessSerialNumber psn = {0, kCurrentProcess}; +TransformProcessType(&psn, kProcessTransformToBackgroundApplication); + } +#endif + IncreaseDescriptorLimits(); #ifdef USE_GLX_TEST @@ -4031,7 +4061,34 @@ int XREMain::XRE_mainStartup(bool* aExitFlag) { return 0; } +#if (defined(MOZ_UPDATER) && !defined(MOZ_WIDGET_ANDROID)) || \ +defined(TOR_BROWSER_DATA_OUTSIDE_APP_DIR) + nsCOMPtr exeFile, exeDir; + bool persistent; + rv = mDirProvider.GetFile(XRE_EXECUTABLE_FILE, &persistent, +getter_AddRefs(exeFile)); + NS_ENSURE_SUCCESS(rv, 1); + rv = exeFile->GetParent(getter_AddRefs(exeDir)); + NS_ENSURE_SUCCESS(rv, 1); +#endif + rv = NS_NewToolkitProfileService(getter_AddRefs(mProfileSvc)); +#ifdef TOR_BROWSER_DATA_OUTSIDE_APP_DIR + if (NS_FAILED(rv))
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 18800: Remove localhost DNS lookup in nsProfileLock.cpp
commit b28a4c6eb334fecaeb51d7a2e5dcc685cd72dccd Author: Kathy Brade Date: Thu Apr 21 10:40:26 2016 -0400 Bug 18800: Remove localhost DNS lookup in nsProfileLock.cpp Instead of using the local computer's IP address within symlink-based profile lock signatures, always use 127.0.0.1. --- toolkit/profile/nsProfileLock.cpp | 17 - 1 file changed, 8 insertions(+), 9 deletions(-) diff --git a/toolkit/profile/nsProfileLock.cpp b/toolkit/profile/nsProfileLock.cpp index 25c4f5a79e56..1942815e3446 100644 --- a/toolkit/profile/nsProfileLock.cpp +++ b/toolkit/profile/nsProfileLock.cpp @@ -289,18 +289,17 @@ nsresult nsProfileLock::LockWithSymlink(nsIFile* aLockFile, if (!mReplacedLockTime) aLockFile->GetLastModifiedTimeOfLink(&mReplacedLockTime); + // For Tor Browser, avoid a DNS lookup here so the Tor network is not + // bypassed. Instead, always use 127.0.0.1 for the IP address portion + // of the lock signature, which may cause the browser to refuse to + // start in the rare event that all of the following conditions are met: + // 1. The browser profile is on a network file system. + // 2. The file system does not support fcntl() locking. + // 3. Tor Browser is run from two different computers at the same time. + struct in_addr inaddr; inaddr.s_addr = htonl(INADDR_LOOPBACK); - char hostname[256]; - PRStatus status = PR_GetSystemInfo(PR_SI_HOSTNAME, hostname, sizeof hostname); - if (status == PR_SUCCESS) { -char netdbbuf[PR_NETDB_BUF_SIZE]; -PRHostEnt hostent; -status = PR_GetHostByName(hostname, netdbbuf, sizeof netdbbuf, &hostent); -if (status == PR_SUCCESS) memcpy(&inaddr, hostent.h_addr, sizeof inaddr); - } - mozilla::SmprintfPointer signature = mozilla::Smprintf("%s:%s%lu", inet_ntoa(inaddr), aHaveFcntlLock ? "+" : "", (unsigned long)getpid()); ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 16620: Clear window.name when no referrer sent
commit 669783a83a04cb768b5c0542a3fb7290b2954f8e Author: Kathy Brade Date: Fri Oct 30 14:28:13 2015 -0400 Bug 16620: Clear window.name when no referrer sent Convert JS implementation (within Torbutton) to a C++ browser patch. --- docshell/base/nsDocShell.cpp | 60 +++ docshell/test/mochitest/mochitest.ini | 3 + docshell/test/mochitest/test_tor_bug16620.html | 212 + docshell/test/mochitest/tor_bug16620.html | 51 ++ docshell/test/mochitest/tor_bug16620_form.html | 51 ++ 5 files changed, 377 insertions(+) diff --git a/docshell/base/nsDocShell.cpp b/docshell/base/nsDocShell.cpp index fa703e19b77f..ee4af5e161f7 100644 --- a/docshell/base/nsDocShell.cpp +++ b/docshell/base/nsDocShell.cpp @@ -7467,11 +7467,71 @@ nsresult nsDocShell::CreateContentViewer(const nsACString& aContentType, aOpenedChannel->GetURI(getter_AddRefs(mLoadingURI)); } FirePageHideNotification(!mSavingOldViewer); + if (mIsBeingDestroyed) { // Force to stop the newly created orphaned viewer. viewer->Stop(); return NS_ERROR_DOCSHELL_DYING; } + + // Tor bug 16620: Clear window.name of top-level documents if + // there is no referrer. We make an exception for new windows, + // e.g., window.open(url, "MyName"). + bool isNewWindowTarget = false; + nsCOMPtr props(do_QueryInterface(aRequest, &rv)); + if (props) { +props->GetPropertyAsBool(NS_LITERAL_STRING("docshell.newWindowTarget"), + &isNewWindowTarget); + } + + if (!isNewWindowTarget) { +nsCOMPtr httpChannel(do_QueryInterface(aOpenedChannel)); +nsCOMPtr httpReferrer; +if (httpChannel) { + nsCOMPtr referrerInfo; + rv = httpChannel->GetReferrerInfo(getter_AddRefs(referrerInfo)); + NS_ENSURE_SUCCESS(rv, rv); + if (referrerInfo) { +// We want GetComputedReferrer() instead of GetOriginalReferrer(), since +// the former takes into consideration referrer policy, protocol +// whitelisting... +httpReferrer = referrerInfo->GetComputedReferrer(); + } +} + +bool isTopFrame = mBrowsingContext->IsTop(); + +#ifdef DEBUG_WINDOW_NAME +printf("DOCSHELL %p CreateContentViewer - possibly clearing window.name:\n", + this); +printf(" current window.name: \"%s\"\n", + NS_ConvertUTF16toUTF8(mName).get()); + +nsAutoCString curSpec, loadingSpec; +if (this->mCurrentURI) mCurrentURI->GetSpec(curSpec); +if (mLoadingURI) mLoadingURI->GetSpec(loadingSpec); +printf(" current URI: %s\n", curSpec.get()); +printf(" loading URI: %s\n", loadingSpec.get()); +printf(" is top document: %s\n", isTopFrame ? "Yes" : "No"); + +if (!httpReferrer) { + printf(" referrer: None\n"); +} else { + nsAutoCString refSpec; + httpReferrer->GetSpec(refSpec); + printf(" referrer: %s\n", refSpec.get()); +} +#endif + +bool clearName = isTopFrame && !httpReferrer; +if (clearName) SetName(NS_LITERAL_STRING("")); + +#ifdef DEBUG_WINDOW_NAME +printf(" action taken: %s window.name\n", + clearName ? "Cleared" : "Preserved"); +#endif + } + mLoadingURI = nullptr; // Set mFiredUnloadEvent = false so that the unload handler for the diff --git a/docshell/test/mochitest/mochitest.ini b/docshell/test/mochitest/mochitest.ini index 25d3187711fe..663750b7fc8e 100644 --- a/docshell/test/mochitest/mochitest.ini +++ b/docshell/test/mochitest/mochitest.ini @@ -52,6 +52,8 @@ support-files = start_historyframe.html url1_historyframe.html url2_historyframe.html + tor_bug16620.html + tor_bug16620_form.html [test_anchor_scroll_after_document_open.html] [test_bfcache_plus_hash.html] @@ -115,6 +117,7 @@ support-files = file_bug675587.html [test_framedhistoryframes.html] support-files = file_framedhistoryframes.html [test_pushState_after_document_open.html] +[test_tor_bug16620.html] [test_windowedhistoryframes.html] [test_triggeringprincipal_location_seturi.html] [test_bug1507702.html] diff --git a/docshell/test/mochitest/test_tor_bug16620.html b/docshell/test/mochitest/test_tor_bug16620.html new file mode 100644 index ..f60a06711c17 --- /dev/null +++ b/docshell/test/mochitest/test_tor_bug16620.html @@ -0,0 +1,212 @@ + + + + + + Test for Tor Bug 16620 - Clear window.name when no referrer sent + + + + +https://trac.torproject.org/projects/tor/ticket/16620";>Tor Bug 16620 + + +// ## Test constants +const kTestPath = "/tests/docshell/test/mochitest/"; +const kLinkFile = "tor_bug16620.html"; +const kFormFile = "tor_bug16620_form.html"; +const kBaseURL1 = "http://example.com";; +const kBaseURL1_https = "https://example.com";; +const kBaseURL2 = "http://example.net";; +const kSendReferrerPref = "network.http.sendRefererHeader"; +const kSend
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Omnibox: Add DDG, Startpage, Disconnect, Youtube, Twitter; remove Amazon, eBay, bing
commit 4ee2df035ba1b37fa62b983559a60dd8d32f6001 Author: Mike Perry Date: Fri May 5 03:41:57 2017 -0700 Omnibox: Add DDG, Startpage, Disconnect, Youtube, Twitter; remove Amazon, eBay, bing eBay and Amazon don't treat Tor users very well. Accounts often get locked and payments reversed. Also: Bug 16322: Update DuckDuckGo search engine We are replacing the clearnet URL with an onion service one (thanks to a patch by a cypherpunk) and are removing the duplicated DDG search engine. Duplicating DDG happend due to bug 1061736 where Mozilla included DDG itself into Firefox. Interestingly, this caused breaking the DDG search if JavaScript is disabled as the Mozilla engine, which gets loaded earlier, does not use the html version of the search page. Moreover, the Mozilla engine tracked where the users were searching from by adding a respective parameter to the search query. We got rid of that feature as well. Also: This fixes bug 20809: the DuckDuckGo team has changed its server-side code in a way that lets users with JavaScript enabled use the default landing page while those without JavaScript available get redirected directly to the non-JS page. We adapt the search engine URLs accordingly. Also fixes bug 29798 by making sure we only specify the Google search engine we actually ship an .xml file for. Also regression tests. --- browser/app/profile/000-tor-browser.js | 9 +- .../search/extensions/ddg-onion/favicon.ico| Bin 0 -> 973 bytes .../search/extensions/ddg-onion/manifest.json | 26 .../components/search/extensions/ddg/favicon.ico | Bin 5430 -> 0 bytes .../components/search/extensions/ddg/favicon.png | Bin 0 -> 1150 bytes .../components/search/extensions/ddg/manifest.json | 44 +-- .../extensions/google/_locales/b-1-d/messages.json | 23 .../extensions/google/_locales/b-1-e/messages.json | 23 .../extensions/google/_locales/b-d/messages.json | 23 .../extensions/google/_locales/b-e/messages.json | 23 .../extensions/google/_locales/en/messages.json| 24 .../search/extensions/google/manifest.json | 17 ++- browser/components/search/extensions/list.json | 141 ++--- .../search/extensions/startpage/favicon.png| Bin 0 -> 1150 bytes .../search/extensions/startpage/manifest.json | 26 .../search/extensions/twitter/favicon.ico | Bin 0 -> 1650 bytes .../search/extensions/twitter/manifest.json| 26 .../extensions/wikipedia/_locales/NN/messages.json | 20 --- .../extensions/wikipedia/_locales/NO/messages.json | 20 --- .../extensions/wikipedia/_locales/af/messages.json | 20 --- .../extensions/wikipedia/_locales/an/messages.json | 20 --- .../extensions/wikipedia/_locales/ar/messages.json | 20 --- .../wikipedia/_locales/ast/messages.json | 20 --- .../extensions/wikipedia/_locales/az/messages.json | 20 --- .../wikipedia/_locales/be-tarask/messages.json | 20 --- .../extensions/wikipedia/_locales/be/messages.json | 20 --- .../extensions/wikipedia/_locales/bg/messages.json | 20 --- .../extensions/wikipedia/_locales/bn/messages.json | 20 --- .../extensions/wikipedia/_locales/br/messages.json | 20 --- .../extensions/wikipedia/_locales/bs/messages.json | 20 --- .../extensions/wikipedia/_locales/ca/messages.json | 20 --- .../extensions/wikipedia/_locales/cy/messages.json | 20 --- .../extensions/wikipedia/_locales/cz/messages.json | 20 --- .../extensions/wikipedia/_locales/da/messages.json | 20 --- .../extensions/wikipedia/_locales/de/messages.json | 20 --- .../wikipedia/_locales/dsb/messages.json | 20 --- .../extensions/wikipedia/_locales/el/messages.json | 20 --- .../extensions/wikipedia/_locales/en/messages.json | 20 --- .../extensions/wikipedia/_locales/eo/messages.json | 20 --- .../extensions/wikipedia/_locales/es/messages.json | 20 --- .../extensions/wikipedia/_locales/et/messages.json | 20 --- .../extensions/wikipedia/_locales/eu/messages.json | 20 --- .../extensions/wikipedia/_locales/fa/messages.json | 20 --- .../extensions/wikipedia/_locales/fi/messages.json | 20 --- .../extensions/wikipedia/_locales/fr/messages.json | 20 --- .../wikipedia/_locales/fy-NL/messages.json | 20 --- .../wikipedia/_locales/ga-IE/messages.json | 20 --- .../extensions/wikipedia/_locales/gd/messages.json | 20 --- .../extensions/wikipedia/_locales/gl/messages.json | 20 --- .../extensions/wikipedia/_locales/gn/messages.json | 20 --- .../extensions/wikipedia/_locales/gu/messages.json | 20 --- .../extensions/wikipedia/_locales/he/messages.json | 20 --- .../extensions/wikipedia/_locales/hi/messages.json | 20 --- .../extensions/wikipedia/_locales/hr/messages.json | 20 --- .../wikipedia/_locales/hsb/messages.json | 20 --- .../extensions/wikipedia/_local
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 9173: Change the default Firefox profile directory to be TBB-relative.
commit 42dd7f4cb5ea51030820cb94b4a6333e5a5a1a38 Author: Kathy Brade Date: Fri Oct 18 15:20:06 2013 -0400 Bug 9173: Change the default Firefox profile directory to be TBB-relative. This should eliminate our need to rely on a wrapper script that sets /Users/arthur and launches Firefox with -profile. --- toolkit/profile/nsToolkitProfileService.cpp | 5 +- toolkit/xre/nsAppRunner.cpp | 2 +- toolkit/xre/nsConsoleWriter.cpp | 2 +- toolkit/xre/nsXREDirProvider.cpp| 150 ++-- toolkit/xre/nsXREDirProvider.h | 16 +-- xpcom/io/nsAppFileLocationProvider.cpp | 97 +++--- 6 files changed, 84 insertions(+), 188 deletions(-) diff --git a/toolkit/profile/nsToolkitProfileService.cpp b/toolkit/profile/nsToolkitProfileService.cpp index dc4811313b5e..a3e50f8c00d3 100644 --- a/toolkit/profile/nsToolkitProfileService.cpp +++ b/toolkit/profile/nsToolkitProfileService.cpp @@ -723,10 +723,11 @@ nsresult nsToolkitProfileService::Init() { NS_ASSERTION(gDirServiceProvider, "No dirserviceprovider!"); nsresult rv; - rv = nsXREDirProvider::GetUserAppDataDirectory(getter_AddRefs(mAppData)); + rv = gDirServiceProvider->GetUserAppDataDirectory(getter_AddRefs(mAppData)); NS_ENSURE_SUCCESS(rv, rv); - rv = nsXREDirProvider::GetUserLocalDataDirectory(getter_AddRefs(mTempData)); + rv = + gDirServiceProvider->GetUserLocalDataDirectory(getter_AddRefs(mTempData)); NS_ENSURE_SUCCESS(rv, rv); rv = mAppData->Clone(getter_AddRefs(mProfileDBFile)); diff --git a/toolkit/xre/nsAppRunner.cpp b/toolkit/xre/nsAppRunner.cpp index ef72d1bf4fb2..4afec36f57bc 100644 --- a/toolkit/xre/nsAppRunner.cpp +++ b/toolkit/xre/nsAppRunner.cpp @@ -3187,7 +3187,7 @@ int XREMain::XRE_mainInit(bool* aExitFlag) { if ((mAppData->flags & NS_XRE_ENABLE_CRASH_REPORTER) && NS_SUCCEEDED(CrashReporter::SetExceptionHandler(xreBinDirectory))) { nsCOMPtr file; -rv = nsXREDirProvider::GetUserAppDataDirectory(getter_AddRefs(file)); +rv = mDirProvider.GetUserAppDataDirectory(getter_AddRefs(file)); if (NS_SUCCEEDED(rv)) { CrashReporter::SetUserAppDataDirectory(file); } diff --git a/toolkit/xre/nsConsoleWriter.cpp b/toolkit/xre/nsConsoleWriter.cpp index 0a2c0c342893..46735a293a00 100644 --- a/toolkit/xre/nsConsoleWriter.cpp +++ b/toolkit/xre/nsConsoleWriter.cpp @@ -29,7 +29,7 @@ void WriteConsoleLog() { } else { if (!gLogConsoleErrors) return; -rv = nsXREDirProvider::GetUserAppDataDirectory(getter_AddRefs(lfile)); +rv = gDirServiceProvider->GetUserAppDataDirectory(getter_AddRefs(lfile)); if (NS_FAILED(rv)) return; lfile->AppendNative(NS_LITERAL_CSTRING("console.log")); diff --git a/toolkit/xre/nsXREDirProvider.cpp b/toolkit/xre/nsXREDirProvider.cpp index 62b5694e99e8..accdcfe7c0b0 100644 --- a/toolkit/xre/nsXREDirProvider.cpp +++ b/toolkit/xre/nsXREDirProvider.cpp @@ -32,6 +32,7 @@ #include "nsArrayEnumerator.h" #include "nsEnumeratorUtils.h" #include "nsReadableUtils.h" +#include "nsXPCOMPrivate.h" // for XPCOM_FILE_PATH_SEPARATOR #include "SpecialSystemDirectory.h" @@ -244,9 +245,6 @@ nsresult nsXREDirProvider::GetUserProfilesRootDir(nsIFile** aResult) { nsresult rv = GetUserDataDirectory(getter_AddRefs(file), false); if (NS_SUCCEEDED(rv)) { -#if !defined(XP_UNIX) || defined(XP_MACOSX) -rv = file->AppendNative(NS_LITERAL_CSTRING("Profiles")); -#endif // We must create the profile directory here if it does not exist. nsresult tmp = EnsureDirectoryExists(file); if (NS_FAILED(tmp)) { @@ -262,9 +260,6 @@ nsresult nsXREDirProvider::GetUserProfilesLocalDir(nsIFile** aResult) { nsresult rv = GetUserDataDirectory(getter_AddRefs(file), true); if (NS_SUCCEEDED(rv)) { -#if !defined(XP_UNIX) || defined(XP_MACOSX) -rv = file->AppendNative(NS_LITERAL_CSTRING("Profiles")); -#endif // We must create the profile directory here if it does not exist. nsresult tmp = EnsureDirectoryExists(file); if (NS_FAILED(tmp)) { @@ -1378,7 +1373,7 @@ nsresult nsXREDirProvider::SetUserDataProfileDirectory(nsCOMPtr& aFile, nsresult nsXREDirProvider::GetUserDataDirectoryHome(nsIFile** aFile, bool aLocal) { // Copied from nsAppFileLocationProvider (more or less) - nsresult rv; + NS_ENSURE_ARG_POINTER(aFile); nsCOMPtr localDir; if (aLocal && gDataDirHomeLocal) { @@ -1388,81 +1383,39 @@ nsresult nsXREDirProvider::GetUserDataDirectoryHome(nsIFile** aFile, return gDataDirHome->Clone(aFile); } -#if defined(XP_MACOSX) - FSRef fsRef; - OSType folderType; - if (aLocal) { -folderType = kCachedDataFolderType; - } else { -# ifdef MOZ_THUNDERBIRD -folderType = kDomainLibraryFolderType; -# else -folderType = kApplicationSupportFolderType; -# endif - } - OSErr err = ::FSFindFolder(kUserDomain, folderType, kCreateFolder, &fsRef); - NS_ENSURE_FALSE(err,
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 18821: Disable libmdns for Android and Desktop
commit a7f6fb11737eddbc52d4194b3cc4b3ff896c324f Author: Georg Koppen Date: Wed Apr 20 14:34:50 2016 + Bug 18821: Disable libmdns for Android and Desktop There should be no need to remove the OS X support introduced in https://bugzilla.mozilla.org/show_bug.cgi?id=1225726 as enabling this is governed by a preference (which is actually set to `false`). However, we remove it at build time as well (defense in depth). This is basically a backout of the relevant passages of https://hg.mozilla.org/mozilla-central/rev/6bfb430de85d, https://hg.mozilla.org/mozilla-central/rev/609b337bf7ab and https://hg.mozilla.org/mozilla-central/rev/8e092ec5fbbd. Fixed bug 21861 (Disable additional mDNS code to avoid proxy bypasses) as well. --- dom/presentation/provider/components.conf | 10 -- dom/presentation/provider/moz.build | 1 - netwerk/dns/mdns/libmdns/components.conf | 15 --- netwerk/dns/mdns/libmdns/moz.build| 28 4 files changed, 54 deletions(-) diff --git a/dom/presentation/provider/components.conf b/dom/presentation/provider/components.conf index 04cb28ec757e..56994ed7cd94 100644 --- a/dom/presentation/provider/components.conf +++ b/dom/presentation/provider/components.conf @@ -6,9 +6,6 @@ categories = {} -if buildconfig.substs['MOZ_WIDGET_TOOLKIT'] in ('cocoa', 'android'): -categories["presentation-device-provider"] = "MulticastDNSDeviceProvider" - Classes = [ { 'cid': '{f4079b8b-ede5-4b90-a112-5b415a931deb}', @@ -16,11 +13,4 @@ Classes = [ 'jsm': 'resource://gre/modules/PresentationControlService.jsm', 'constructor': 'PresentationControlService', }, -{ -'cid': '{814f947a-52f7-41c9-94a1-3684797284ac}', -'contract_ids': ['@mozilla.org/presentation-device/multicastdns-provider;1'], -'type': 'mozilla::dom::presentation::MulticastDNSDeviceProvider', -'headers': ['/dom/presentation/provider/MulticastDNSDeviceProvider.h'], -'categories': categories, -}, ] diff --git a/dom/presentation/provider/moz.build b/dom/presentation/provider/moz.build index eaea61af415a..d97b75ddbcf9 100644 --- a/dom/presentation/provider/moz.build +++ b/dom/presentation/provider/moz.build @@ -10,7 +10,6 @@ EXTRA_JS_MODULES += [ UNIFIED_SOURCES += [ 'DeviceProviderHelpers.cpp', -'MulticastDNSDeviceProvider.cpp', ] XPCOM_MANIFESTS += [ diff --git a/netwerk/dns/mdns/libmdns/components.conf b/netwerk/dns/mdns/libmdns/components.conf index 6e64140c820e..1b50dbf673a4 100644 --- a/netwerk/dns/mdns/libmdns/components.conf +++ b/netwerk/dns/mdns/libmdns/components.conf @@ -5,20 +5,5 @@ # file, You can obtain one at http://mozilla.org/MPL/2.0/. Classes = [ -{ -'cid': '{14a50f2b-7ff6-48a5-88e3-615fd111f5d3}', -'contract_ids': ['@mozilla.org/toolkit/components/mdnsresponder/dns-info;1'], -'type': 'mozilla::net::nsDNSServiceInfo', -'headers': ['/netwerk/dns/mdns/libmdns/nsDNSServiceInfo.h'], -}, ] -if buildconfig.substs['MOZ_WIDGET_TOOLKIT'] != 'cocoa': -Classes += [ -{ -'cid': '{f9346d98-f27a-4e89-b744-493843416480}', -'contract_ids': ['@mozilla.org/toolkit/components/mdnsresponder/dns-sd;1'], -'jsm': 'resource://gre/modules/DNSServiceDiscovery.jsm', -'constructor': 'nsDNSServiceDiscovery', -}, -] diff --git a/netwerk/dns/mdns/libmdns/moz.build b/netwerk/dns/mdns/libmdns/moz.build index 05dc75eb9eda..a6fc1a8a559a 100644 --- a/netwerk/dns/mdns/libmdns/moz.build +++ b/netwerk/dns/mdns/libmdns/moz.build @@ -4,34 +4,6 @@ # License, v. 2.0. If a copy of the MPL was not distributed with this # file, You can obtain one at http://mozilla.org/MPL/2.0/. -if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'cocoa': -UNIFIED_SOURCES += [ -'MDNSResponderOperator.cpp', -'MDNSResponderReply.cpp', -'nsDNSServiceDiscovery.cpp', -] - -LOCAL_INCLUDES += [ - '/netwerk/base', -] - -else: -EXTRA_JS_MODULES += [ -'DNSServiceDiscovery.jsm', -'fallback/DataReader.jsm', -'fallback/DataWriter.jsm', -'fallback/DNSPacket.jsm', -'fallback/DNSRecord.jsm', -'fallback/DNSResourceRecord.jsm', -'fallback/DNSTypes.jsm', -'fallback/MulticastDNS.jsm', -] - -if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'android': -EXTRA_JS_MODULES += [ -'MulticastDNSAndroid.jsm', -] - UNIFIED_SOURCES += [ 'nsDNSServiceInfo.cpp', ] ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 13028: Prevent potential proxy bypass cases.
commit daeddd8806ab886a107e54e67536e2271d774c12 Author: Mike Perry Date: Mon Sep 29 14:30:19 2014 -0700 Bug 13028: Prevent potential proxy bypass cases. It looks like these cases should only be invoked in the NSS command line tools, and not the browser, but I decided to patch them anyway because there literally is a maze of network function pointers being passed around, and it's very hard to tell if some random code might not pass in the proper proxied versions of the networking code here by accident. --- security/nss/lib/certhigh/ocsp.c| 8 .../lib/libpkix/pkix_pl_nss/module/pkix_pl_socket.c | 21 + 2 files changed, 29 insertions(+) diff --git a/security/nss/lib/certhigh/ocsp.c b/security/nss/lib/certhigh/ocsp.c index cea8456606bf..86fa971cfbef 100644 --- a/security/nss/lib/certhigh/ocsp.c +++ b/security/nss/lib/certhigh/ocsp.c @@ -2932,6 +2932,14 @@ ocsp_ConnectToHost(const char *host, PRUint16 port) PRNetAddr addr; char *netdbbuf = NULL; +// XXX: Do we need a unittest ifdef here? We don't want to break the tests, but +// we want to ensure nothing can ever hit this code in production. +#if 1 +printf("Tor Browser BUG: Attempted OSCP direct connect to %s, port %u\n", host, +port); +goto loser; +#endif + sock = PR_NewTCPSocket(); if (sock == NULL) goto loser; diff --git a/security/nss/lib/libpkix/pkix_pl_nss/module/pkix_pl_socket.c b/security/nss/lib/libpkix/pkix_pl_nss/module/pkix_pl_socket.c index e8698376b5be..85791d84a932 100644 --- a/security/nss/lib/libpkix/pkix_pl_nss/module/pkix_pl_socket.c +++ b/security/nss/lib/libpkix/pkix_pl_nss/module/pkix_pl_socket.c @@ -1334,6 +1334,13 @@ pkix_pl_Socket_Create( plContext), PKIX_COULDNOTCREATESOCKETOBJECT); +// XXX: Do we need a unittest ifdef here? We don't want to break the tests, but +// we want to ensure nothing can ever hit this code in production. +#if 1 +printf("Tor Browser BUG: Attempted pkix direct socket connect\n"); +PKIX_ERROR(PKIX_PRNEWTCPSOCKETFAILED); +#endif + socket->isServer = isServer; socket->timeout = timeout; socket->clientSock = NULL; @@ -1433,6 +1440,13 @@ pkix_pl_Socket_CreateByName( localCopyName = PL_strdup(serverName); +// XXX: Do we need a unittest ifdef here? We don't want to break the tests, but +// we want to ensure nothing can ever hit this code in production. +#if 1 +printf("Tor Browser BUG: Attempted pkix direct connect to %s\n", serverName); +PKIX_ERROR(PKIX_PRNEWTCPSOCKETFAILED); +#endif + sepPtr = strchr(localCopyName, ':'); /* First strip off the portnum, if present, from the end of the name */ if (sepPtr) { @@ -1582,6 +1596,13 @@ pkix_pl_Socket_CreateByHostAndPort( PKIX_ENTER(SOCKET, "pkix_pl_Socket_CreateByHostAndPort"); PKIX_NULLCHECK_THREE(hostname, pStatus, pSocket); +// XXX: Do we need a unittest ifdef here? We don't want to break the tests, but +// we want to ensure nothing can ever hit this code in production. +#if 1 +printf("Tor Browser BUG: Attempted pkix direct connect to %s, port %u\n", hostname, +portnum); +PKIX_ERROR(PKIX_PRNEWTCPSOCKETFAILED); +#endif prstatus = PR_GetHostByName(hostname, buf, sizeof(buf), &hostent); ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 11641: change TBB directory structure to be more like Firefox's
commit eaf5bb7ec64da505daf6b5e88815cc19e7220354 Author: Kathy Brade Date: Tue Apr 29 13:08:24 2014 -0400 Bug 11641: change TBB directory structure to be more like Firefox's Unless the -osint command line flag is used, the browser now defaults to the equivalent of -no-remote. There is a new -allow-remote flag that may be used to restore the original (Firefox-like) default behavior. --- toolkit/xre/nsAppRunner.cpp | 21 - 1 file changed, 16 insertions(+), 5 deletions(-) diff --git a/toolkit/xre/nsAppRunner.cpp b/toolkit/xre/nsAppRunner.cpp index 8e76213e7923..1fd397f4aae8 100644 --- a/toolkit/xre/nsAppRunner.cpp +++ b/toolkit/xre/nsAppRunner.cpp @@ -1434,8 +1434,10 @@ static void DumpHelp() { " --migrationStart with migration wizard.\n" " --ProfileManager Start with ProfileManager.\n" #ifdef MOZ_HAS_REMOTE - " --no-remoteDo not accept or send remote commands; implies\n" + " --no-remote(default) Do not accept or send remote commands; " + "implies\n" " --new-instance.\n" + " --allow-remote Accept and send remote commands.\n" " --new-instance Open new instance, not a new window in running " "instance.\n" #endif @@ -3548,16 +3550,25 @@ int XREMain::XRE_mainInit(bool* aExitFlag) { gSafeMode); #if defined(MOZ_HAS_REMOTE) + // In Tor Browser, remoting is disabled by default unless -osint is used. + bool allowRemote = (CheckArg("allow-remote") == ARG_FOUND); + bool isOsint = (CheckArg("osint", nullptr, CheckArgFlag::None) == ARG_FOUND); + if (!allowRemote && !isOsint) { +SaveToEnv("MOZ_NO_REMOTE=1"); + } // Handle --no-remote and --new-instance command line arguments. Setup // the environment to better accommodate other components and various // restart scenarios. ar = CheckArg("no-remote"); - if (ar == ARG_FOUND || EnvHasValue("MOZ_NO_REMOTE")) { + if ((ar == ARG_FOUND) && allowRemote) { +PR_fprintf(PR_STDERR, + "Error: argument --no-remote is invalid when argument " + "--allow-remote is specified\n"); +return 1; + } + if (EnvHasValue("MOZ_NO_REMOTE")) { mDisableRemoteClient = true; mDisableRemoteServer = true; -if (!EnvHasValue("MOZ_NO_REMOTE")) { - SaveToEnv("MOZ_NO_REMOTE=1"); -} } ar = CheckArg("new-instance"); ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Add TorStrings module for localization
commit 6fdb3c6ced816fca75ce5498829552b62e7fc039 Author: Alex Catarineu Date: Fri Jul 24 21:15:20 2020 +0200 Add TorStrings module for localization --- browser/modules/TorStrings.jsm | 490 + browser/modules/moz.build | 1 + 2 files changed, 491 insertions(+) diff --git a/browser/modules/TorStrings.jsm b/browser/modules/TorStrings.jsm new file mode 100644 index ..e8a8d37ae373 --- /dev/null +++ b/browser/modules/TorStrings.jsm @@ -0,0 +1,490 @@ +"use strict"; + +var EXPORTED_SYMBOLS = ["TorStrings"]; + +const { XPCOMUtils } = ChromeUtils.import( + "resource://gre/modules/XPCOMUtils.jsm" +); +const { Services } = ChromeUtils.import( + "resource://gre/modules/Services.jsm" +); +const { getLocale } = ChromeUtils.import( + "resource://torbutton/modules/utils.js" +); + +XPCOMUtils.defineLazyGlobalGetters(this, ["DOMParser"]); +XPCOMUtils.defineLazyGetter(this, "domParser", () => { + const parser = new DOMParser(); + parser.forceEnableDTD(); + return parser; +}); + +/* + Tor DTD String Bundle + + DTD strings loaded from torbutton/tor-launcher, but provide a fallback in case they aren't available +*/ +class TorDTDStringBundle { + constructor(aBundleURLs, aPrefix) { +let locations = []; +for (const [index, url] of aBundleURLs.entries()) { + locations.push(`%dtd_${index};`); +} +this._locations = locations; +this._prefix = aPrefix; + } + + // copied from testing/marionette/l10n.js + localizeEntity(urls, id) { +// Use the DOM parser to resolve the entity and extract its real value +let header = ``; +let elem = `&${id};`; +let doc = domParser.parseFromString(header + elem, "text/xml"); +let element = doc.querySelector("elem[id='elementID']"); + +if (element === null) { + throw new Error(`Entity with id='${id}' hasn't been found`); +} + +return element.textContent; + } + + getString(key, fallback) { +if (key) { + try { +return this.localizeEntity(this._bundleURLs, `${this._prefix}${key}`); + } catch (e) {} +} + +// on failure, assign the fallback if it exists +if (fallback) { + return fallback; +} +// otherwise return string key +return `$(${key})`; + } +} + +/* + Tor Property String Bundle + + Property strings loaded from torbutton/tor-launcher, but provide a fallback in case they aren't available +*/ +class TorPropertyStringBundle { + constructor(aBundleURL, aPrefix) { +try { + this._bundle = Services.strings.createBundle(aBundleURL); +} catch (e) {} + +this._prefix = aPrefix; + } + + getString(key, fallback) { +if (key) { + try { +return this._bundle.GetStringFromName(`${this._prefix}${key}`); + } catch (e) {} +} + +// on failure, assign the fallback if it exists +if (fallback) { + return fallback; +} +// otherwise return string key +return `$(${key})`; + } +} + +/* + Security Level Strings +*/ +var TorStrings = { + /* +Tor Browser Security Level Strings + */ + securityLevel: (function() { +let tsb = new TorDTDStringBundle( + ["chrome://torbutton/locale/torbutton.dtd"], + "torbutton.prefs.sec_" +); +let getString = function(key, fallback) { + return tsb.getString(key, fallback); +}; + +// read localized strings from torbutton; but use hard-coded en-US strings as fallbacks in case of error +let retval = { + securityLevel: getString("caption", "Security Level"), + customWarning: getString("custom_warning", "Custom"), + overview: getString( +"overview", +"Disable certain web features that can be used to attack your security and anonymity." + ), + standard: { +level: getString("standard_label", "Standard"), +tooltip: getString("standard_tooltip", "Security Level : Standard"), +summary: getString( + "standard_description", + "All Tor Browser and website features are enabled." +), + }, + safer: { +level: getString("safer_label", "Safer"), +tooltip: getString("safer_tooltip", "Security Level : Safer"), +summary: getString( + "safer_description", + "Disables website features that are often dangerous, causing some sites to lose functionality." +), +description1: getString( + "js_on_https_sites_only", + "JavaScript is disabled on non-HTTPS sites." +), +description2: getString( + "limit_typography", + "Some fonts and math symbols are disabled." +), +description3: getString( + "click_to_play_media", + "Audio and video (HTML5 media), and WebGL are click-to-play." +), + }, + safest: { +level: getString("safest_label", "Safest"), +tooltip: getString("safest_tooltip", "Security Level : Safest"), +summary: getString( + "safest
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 21724: Make Firefox and Tor Browser distinct macOS apps
commit 5ae9647b883bc5038d92c21cf85cee742df7acf8 Author: teor Date: Mon Mar 13 23:06:23 2017 +1100 Bug 21724: Make Firefox and Tor Browser distinct macOS apps When macOS opens a document or selects a default browser, it sometimes uses the CFBundleSignature. Changing from the Firefox MOZB signature to a different signature TORB allows macOS to distinguish between Firefox and Tor Browser. --- browser/app/Makefile.in | 2 +- browser/app/macbuild/Contents/Info.plist.in | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/browser/app/Makefile.in b/browser/app/Makefile.in index 1aec6541fc0f..6770319f1866 100644 --- a/browser/app/Makefile.in +++ b/browser/app/Makefile.in @@ -103,5 +103,5 @@ ifdef MOZ_UPDATER mv -f '$(dist_dest)/Contents/MacOS/updater.app/Contents/MacOS/org.mozilla.updater' '$(dist_dest)/Contents/Library/LaunchServices' ln -s ../../../../Library/LaunchServices/org.mozilla.updater '$(dist_dest)/Contents/MacOS/updater.app/Contents/MacOS/org.mozilla.updater' endif - printf APPLMOZB > '$(dist_dest)/Contents/PkgInfo' + printf APPLTORB > '$(dist_dest)/Contents/PkgInfo' endif diff --git a/browser/app/macbuild/Contents/Info.plist.in b/browser/app/macbuild/Contents/Info.plist.in index f6791ea48125..95b3bc83905c 100644 --- a/browser/app/macbuild/Contents/Info.plist.in +++ b/browser/app/macbuild/Contents/Info.plist.in @@ -179,7 +179,7 @@ CFBundleShortVersionString %APP_VERSION% CFBundleSignature - MOZB + TORB CFBundleURLTypes ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 12974: Disable NTLM and Negotiate HTTP Auth
commit 469b04c03b25bbc53862893bb6d2be87fa43b412 Author: Mike Perry Date: Wed Aug 27 15:19:10 2014 -0700 Bug 12974: Disable NTLM and Negotiate HTTP Auth This is technically an embargoed Mozilla bug, so I probably shouldn't provide too many details. Suffice to say that NTLM and Negotiate auth are bad for Tor users, and I doubt very many (or any of them) actually need it. The Mozilla bug is https://bugzilla.mozilla.org/show_bug.cgi?id=1046421 --- extensions/auth/nsHttpNegotiateAuth.cpp | 4 netwerk/protocol/http/nsHttpNTLMAuth.cpp | 3 +++ 2 files changed, 7 insertions(+) diff --git a/extensions/auth/nsHttpNegotiateAuth.cpp b/extensions/auth/nsHttpNegotiateAuth.cpp index 99720475b9dd..1c08fcf3da7e 100644 --- a/extensions/auth/nsHttpNegotiateAuth.cpp +++ b/extensions/auth/nsHttpNegotiateAuth.cpp @@ -152,6 +152,10 @@ nsHttpNegotiateAuth::ChallengeReceived(nsIHttpAuthenticableChannel* authChannel, nsIAuthModule* rawModule = (nsIAuthModule*)*continuationState; *identityInvalid = false; + + /* Always fail Negotiate auth for Tor Browser. We don't need it. */ + return NS_ERROR_ABORT; + if (rawModule) { return NS_OK; } diff --git a/netwerk/protocol/http/nsHttpNTLMAuth.cpp b/netwerk/protocol/http/nsHttpNTLMAuth.cpp index 0a30de051014..891aaadfd758 100644 --- a/netwerk/protocol/http/nsHttpNTLMAuth.cpp +++ b/netwerk/protocol/http/nsHttpNTLMAuth.cpp @@ -168,6 +168,9 @@ nsHttpNTLMAuth::ChallengeReceived(nsIHttpAuthenticableChannel* channel, *identityInvalid = false; + /* Always fail Negotiate auth for Tor Browser. We don't need it. */ + return NS_ERROR_ABORT; + // Start a new auth sequence if the challenge is exactly "NTLM". // If native NTLM auth apis are available and enabled through prefs, // try to use them. ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 28044: Integrate Tor Launcher into tor-browser
commit 97c3552b5e90d198c17302e55e81e260c4cd5c5c Author: Kathy Brade Date: Tue Feb 26 10:07:17 2019 -0500 Bug 28044: Integrate Tor Launcher into tor-browser Build and package Tor Launcher as part of the browser (similar to how pdfjs is handled). If a Tor Launcher extension is present in the user's profile, it is removed. --- browser/extensions/moz.build| 5 + browser/installer/package-manifest.in | 5 + toolkit/mozapps/extensions/internal/XPIProvider.jsm | 10 ++ 3 files changed, 20 insertions(+) diff --git a/browser/extensions/moz.build b/browser/extensions/moz.build index 4c9fa789d12a..fd2e65d01f02 100644 --- a/browser/extensions/moz.build +++ b/browser/extensions/moz.build @@ -12,3 +12,8 @@ DIRS += [ 'webcompat', 'report-site-issue' ] + +if not CONFIG['TOR_BROWSER_DISABLE_TOR_LAUNCHER']: +DIRS += [ +'tor-launcher', +] diff --git a/browser/installer/package-manifest.in b/browser/installer/package-manifest.in index 7deaf1b51f9a..582a6e13d607 100644 --- a/browser/installer/package-manifest.in +++ b/browser/installer/package-manifest.in @@ -248,6 +248,11 @@ @RESPATH@/browser/chrome/browser.manifest @RESPATH@/browser/chrome/pdfjs.manifest @RESPATH@/browser/chrome/pdfjs/* +#ifndef TOR_BROWSER_DISABLE_TOR_LAUNCHER +@RESPATH@/browser/chrome/torlauncher.manifest +@RESPATH@/browser/chrome/torlauncher/* +@RESPATH@/browser/@PREF_DIR@/torlauncher-prefs.js +#endif @RESPATH@/chrome/toolkit@JAREXT@ @RESPATH@/chrome/toolkit.manifest @RESPATH@/chrome/recording.manifest diff --git a/toolkit/mozapps/extensions/internal/XPIProvider.jsm b/toolkit/mozapps/extensions/internal/XPIProvider.jsm index ba67e5f6bee8..bcdf6f40d5ed 100644 --- a/toolkit/mozapps/extensions/internal/XPIProvider.jsm +++ b/toolkit/mozapps/extensions/internal/XPIProvider.jsm @@ -1462,6 +1462,16 @@ var XPIStates = { for (let [id, file] of loc.readAddons()) { knownIds.delete(id); +// Since it is now part of the browser, uninstall the Tor Launcher +// extension. This will remove the Tor Launcher .xpi from user +// profiles on macOS. +if (id === "tor-launc...@torproject.org") { + logger.debug("Uninstalling the Tor Launcher extension."); + loc.installer.uninstallAddon(id); + changed = true; + continue; +} + let xpiState = loc.get(id); if (!xpiState) { // If the location is not supported for sideloading, skip new ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 1642404 - add an option to show that an update is being downloaded r=bytesized, fluent-reviewers, flod
commit d431685f4531eacc35fa084ece0d5ad9e977cc1d Author: Mark Smith Date: Mon Jun 22 20:24:46 2020 + Bug 1642404 - add an option to show that an update is being downloaded r=bytesized,fluent-reviewers,flod Add support for a hidden preference named app.update.notifyDuringDownload that, when set to true, causes a "Downloading update" message to appear in the app menu during a MAR download. Clicking the message opens the about box so the user can see detailed progress information. Differential Revision: https://phabricator.services.mozilla.com/D77688 --- browser/app/profile/firefox.js | 4 ++ browser/components/BrowserGlue.jsm | 1 + .../customizableui/content/panelUI.inc.xhtml | 2 + .../components/customizableui/content/panelUI.js | 5 ++ .../test/browser_panelUINotifications.js | 62 ++ browser/locales/en-US/browser/appmenu.ftl | 2 + .../themes/shared/customizableui/panelUI.inc.css | 3 ++ browser/themes/shared/notification-icons.inc.css | 1 + browser/themes/shared/toolbarbutton-icons.inc.css | 1 + toolkit/mozapps/update/UpdateListener.jsm | 50 +++-- toolkit/mozapps/update/UpdateService.jsm | 27 ++ .../mozapps/update/tests/browser/browser.bits.ini | 1 + toolkit/mozapps/update/tests/browser/browser.ini | 1 + .../update/tests/browser/browser.legacy.bits.ini | 1 + .../update/tests/browser/browser.legacy.ini| 1 + .../browser/browser_aboutDialog_bc_downloading.js | 17 ++ .../browser_aboutDialog_bc_downloading_notify.js | 58 toolkit/mozapps/update/tests/data/shared.js| 1 + 18 files changed, 222 insertions(+), 16 deletions(-) diff --git a/browser/app/profile/firefox.js b/browser/app/profile/firefox.js index fcd4e7fadeb9..6bd3d6131589 100644 --- a/browser/app/profile/firefox.js +++ b/browser/app/profile/firefox.js @@ -131,6 +131,10 @@ pref("app.update.download.promptMaxAttempts", 2); // download a fresh installer. pref("app.update.elevation.promptMaxAttempts", 2); +// If set to true, a message will be displayed in the hamburger menu while +// an update is being downloaded. +pref("app.update.notifyDuringDownload", false); + // If set to true, the Update Service will automatically download updates if the // user can apply updates. This pref is no longer used on Windows, except as the // default value to migrate to the new location that this data is now stored diff --git a/browser/components/BrowserGlue.jsm b/browser/components/BrowserGlue.jsm index 70f5ad8b85e4..0a3555f26432 100644 --- a/browser/components/BrowserGlue.jsm +++ b/browser/components/BrowserGlue.jsm @@ -769,6 +769,7 @@ const global = this; const listeners = { observers: { +"update-downloading": ["UpdateListener"], "update-staged": ["UpdateListener"], "update-downloaded": ["UpdateListener"], "update-available": ["UpdateListener"], diff --git a/browser/components/customizableui/content/panelUI.inc.xhtml b/browser/components/customizableui/content/panelUI.inc.xhtml index e5c9c00c35e4..3a8b74b0a9f3 100644 --- a/browser/components/customizableui/content/panelUI.inc.xhtml +++ b/browser/components/customizableui/content/panelUI.inc.xhtml @@ -223,6 +223,8 @@ { +mainActionCalled = true; + }, +}; +// The downloading notification is always displayed in a dismissed state. +AppMenuNotifications.showNotification( + "update-downloading", + mainAction, + undefined, + { dismissed: true } +); +is(PanelUI.notificationPanel.state, "closed", "doorhanger is closed."); + +is( + PanelUI.menuButton.getAttribute("badge-status"), + "update-downloading", + "Downloading badge is displaying on PanelUI button." +); + +await gCUITestUtils.openMainMenu(); +isnot( + PanelUI.menuButton.getAttribute("badge-status"), + "update-downloading", + "Downloading badge is hidden on PanelUI button." +); +let menuItem = PanelUI.mainView.querySelector(".panel-banner-item"); +is( + menuItem.label, + menuItem.getAttribute("label-update-downloading"), + "Showing correct label (downloading)" +); +is(menuItem.hidden, false, "update-downloading menu item is showing."); + +await gCUITestUtils.hideMainMenu(); +is( + PanelUI.menuButton.getAttribute("badge-status"), + "update-downloading", + "Downloading badge is shown on PanelUI button." +); + +await gCUITestUtils.openMainMenu(); +menuItem.click(); +ok(mainActionCalled, "Main action callback was called"); + +AppMenuNotifications.removeNotification(/.*/); + }); +}); + /** * We want to ensure a few things with this: * - Adding a doorhanger will make a badge disappear diff --git a/browser/locales/en-US/browser/appmenu.ftl b/browser/locales/en-US/browser/appmenu.ftl index 12fd2be
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 16439: Remove screencasting code
commit 734347c1c2c0eef0cdf71cf408448e53e04399e4 Author: Kathy Brade Date: Wed Jun 24 11:01:11 2015 -0400 Bug 16439: Remove screencasting code We avoid including the screencasting code on mobile (it got ripped out for desktop in bug 1393582) by simply excluding the related JS modules from Tor Browser. --- toolkit/modules/moz.build | 9 + 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/toolkit/modules/moz.build b/toolkit/modules/moz.build index f000f35c126f..e1f1eb5759c5 100644 --- a/toolkit/modules/moz.build +++ b/toolkit/modules/moz.build @@ -260,10 +260,11 @@ if 'Android' != CONFIG['OS_TARGET']: ] else: DEFINES['ANDROID'] = True -EXTRA_JS_MODULES += [ -'secondscreen/RokuApp.jsm', -'secondscreen/SimpleServiceDiscovery.jsm', -] +if not CONFIG['TOR_BROWSER_VERSION']: +EXTRA_JS_MODULES += [ +'secondscreen/RokuApp.jsm', +'secondscreen/SimpleServiceDiscovery.jsm', +] if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'windows': ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 10760: Integrate TorButton to TorBrowser core
commit a48422f8fc75fe3f71318684ed840cbea7a2651e Author: Alex Catarineu Date: Wed Feb 19 23:05:08 2020 +0100 Bug 10760: Integrate TorButton to TorBrowser core Because of the non-restartless nature of Torbutton, it required a two-stage installation process. On mobile, it was a problem, because it was not loading when the user opened the browser for the first time. Moving it to tor-browser and making it a system extension allows it to load when the user opens the browser for first time. Additionally, this patch also fixes Bug 27611. Bug 26321: New Circuit and New Identity menu items Bug 14392: Make about:tor behave like other initial pages. Bug 25013: Add torbutton as a tor-browser submodule --- .gitmodules| 3 ++ browser/base/content/aboutDialog.xhtml | 38 +++-- browser/base/content/browser-doctype.inc | 6 +++ browser/base/content/browser-menubar.inc | 49 -- browser/base/content/browser-sets.inc | 2 + browser/base/content/browser.js| 1 + browser/base/content/browser.xhtml | 9 .../controlcenter/content/identityPanel.inc.xhtml | 17 .../customizableui/content/panelUI.inc.xhtml | 17 +++- browser/installer/package-manifest.in | 2 + docshell/base/nsAboutRedirector.cpp| 6 ++- docshell/build/components.conf | 1 + mobile/android/installer/package-manifest.in | 4 ++ toolkit/moz.build | 1 + .../mozapps/extensions/internal/XPIProvider.jsm| 9 toolkit/torproject/torbutton | 1 + .../lib/environments/browser-window.js | 6 ++- 17 files changed, 142 insertions(+), 30 deletions(-) diff --git a/.gitmodules b/.gitmodules new file mode 100644 index ..2f03bd8e22df --- /dev/null +++ b/.gitmodules @@ -0,0 +1,3 @@ +[submodule "toolkit/torproject/torbutton"] + path = toolkit/torproject/torbutton + url = https://git.torproject.org/torbutton.git diff --git a/browser/base/content/aboutDialog.xhtml b/browser/base/content/aboutDialog.xhtml index 69cbf846bbef..5274cbc02831 100644 --- a/browser/base/content/aboutDialog.xhtml +++ b/browser/base/content/aboutDialog.xhtml @@ -7,11 +7,11 @@ + + http://www.w3.org/1999/xhtml"; @@ -28,7 +28,7 @@ data-l10n-id="aboutDialog-title" #endif role="dialog" -aria-describedby="version distribution distributionId communityDesc contributeDesc trademark" +aria-describedby="version distribution distributionId projectDesc helpDesc trademark trademarkTor" > #ifdef XP_MACOSX #include macWindow.inc.xhtml @@ -132,24 +132,36 @@ - -http://www.mozilla.org/"; data-l10n-name="community-mozillaLink"> - + + + + +&project.start; +https://www.torproject.org/";> + &project.tpoLink; +&project.end; - -https://donate.mozilla.org/?utm_source=firefox&utm_medium=referral&utm_campaign=firefox_about&utm_content=firefox_about"; data-l10n-name="helpus-donateLink"> -http://www.mozilla.org/contribute/"; data-l10n-name="helpus-getInvolvedLink"> + +&help.start; +https://donate.torproject.org/";> + &help.donateLink; + +&help.or; +https://community.torproject.org/";> + &help.getInvolvedLink; +&help.end; - - - -https://www.mozilla.org/privacy/"; data-l10n-id="bottomLinks-privacy"> + +https://support.torproject.org/";>&bottomLinks.questions; +https://community.torproject.org/relay/";>&bottomLinks.grow; +&bottomLinks.license; + &tor.TrademarkStatement; diff --git a/browser/base/content/browser-doctype.inc b/browser/base/content/browser-doctype.inc index 9aa278773158..48cf6cd3eda0 100644 --- a/browser/base/content/browser-doctype.inc +++ b/browser/base/content/browser-doctype.inc @@ -14,3 +14,9 @@ %syncBrandDTD; %brandingsDTD; + +%torbuttonDTD; + +%aboutTorDTD; + +%aboutDialogDTD; diff --git a/browser/base/content/browser-menubar.inc b/browser/base/content/browser-menubar.inc index 267ec91707ba..6f4aa9289c35 100644 --- a/browser/base/content/browser-menubar.inc +++ b/browser/base/content/browser-menubar.inc @@ -33,6 +33,18 @@ command="Tools:NonFissionWindow" accesskey="s" label="New Non-Fission Window"/> #endif + + + + - +
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 1585470 - Remove duplicate cpu-features.c definition when building GV without webrtc r=glandium
commit 0fd68a8b57b43dcd6c9e3bb0981910248f68562c Author: Matthew Finkel Date: Thu Jul 9 19:10:34 2020 + Bug 1585470 - Remove duplicate cpu-features.c definition when building GV without webrtc r=glandium Differential Revision: https://phabricator.services.mozilla.com/D82120 --- media/libaom/moz.build | 5 - 1 file changed, 5 deletions(-) diff --git a/media/libaom/moz.build b/media/libaom/moz.build index 2dec3de4581c..0b3ba0707df9 100644 --- a/media/libaom/moz.build +++ b/media/libaom/moz.build @@ -84,11 +84,6 @@ if CONFIG['OS_TARGET'] == 'Android': # the OS they're on, so do it for them. DEFINES['__linux__'] = True -if not CONFIG['MOZ_WEBRTC']: -SOURCES += [ -'%%%s/sources/android/cpufeatures/cpu-features.c' % CONFIG['ANDROID_NDK'], -] - for f in SOURCES: if f.endswith('sse2.c'): SOURCES[f].flags += CONFIG['SSE2_FLAGS'] ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 1642754 - Update prompts should not depend on how update was initiated r=bytesized
commit d8669d6163ed94bee949f1137862ea56550d72f5 Author: Mark Smith Date: Wed Jun 17 19:24:09 2020 + Bug 1642754 - Update prompts should not depend on how update was initiated r=bytesized Show update badge and doorhanger when entering the "pending" state for foreground updates. Differential Revision: https://phabricator.services.mozilla.com/D79903 --- toolkit/mozapps/update/UpdateService.jsm | 10 ++ .../browser/browser_aboutDialog_fc_downloadAuto.js | 18 +- 2 files changed, 19 insertions(+), 9 deletions(-) diff --git a/toolkit/mozapps/update/UpdateService.jsm b/toolkit/mozapps/update/UpdateService.jsm index a91290dead13..87f1e1536625 100644 --- a/toolkit/mozapps/update/UpdateService.jsm +++ b/toolkit/mozapps/update/UpdateService.jsm @@ -4988,8 +4988,6 @@ Downloader.prototype = { } } -// XXX ehsan shouldShowPrompt should always be false here. -// But what happens when there is already a UI showing? var state = this._patch.state; var shouldShowPrompt = false; var shouldRegisterOnlineObserver = false; @@ -5030,9 +5028,7 @@ Downloader.prototype = { } else { state = STATE_PENDING; } -if (this.background) { - shouldShowPrompt = !getCanStageUpdates(); -} +shouldShowPrompt = !getCanStageUpdates(); AUSTLMY.pingDownloadCode(this.isCompleteUpdate, AUSTLMY.DWNLD_SUCCESS); // Tell the updater.exe we're ready to apply. @@ -5315,9 +5311,7 @@ Downloader.prototype = { LOG( "Downloader:onStopRequest - failed to stage update. Exception: " + e ); - if (this.background) { -shouldShowPrompt = true; - } + shouldShowPrompt = true; } } } diff --git a/toolkit/mozapps/update/tests/browser/browser_aboutDialog_fc_downloadAuto.js b/toolkit/mozapps/update/tests/browser/browser_aboutDialog_fc_downloadAuto.js index 6a8835251dec..be65ce8ddef1 100644 --- a/toolkit/mozapps/update/tests/browser/browser_aboutDialog_fc_downloadAuto.js +++ b/toolkit/mozapps/update/tests/browser/browser_aboutDialog_fc_downloadAuto.js @@ -15,7 +15,7 @@ add_task(async function aboutDialog_foregroundCheck_downloadAuto() { // Since the partial should be successful specify an invalid size for the // complete update. - let params = { queryString: "&invalidCompleteSize=1" }; + let params = { queryString: "&invalidCompleteSize=1&promptWaitTime=0" }; await runAboutDialogUpdateTest(params, [ { panelId: "checkingForUpdates", @@ -28,6 +28,22 @@ add_task(async function aboutDialog_foregroundCheck_downloadAuto() { continueFile: CONTINUE_DOWNLOAD, downloadInfo, }, +async function aboutDialog_restart_notification() { + is( +PanelUI.notificationPanel.state, +"closed", +"The window's doorhanger is closed." + ); + ok( +PanelUI.menuButton.hasAttribute("badge-status"), +"The window has a badge." + ); + is( +PanelUI.menuButton.getAttribute("badge-status"), +"update-restart", +"The restart badge is showing for the background window" + ); +}, { panelId: "apply", checkActiveUpdate: { state: STATE_PENDING }, ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] TB4: Tor Browser's Firefox preference overrides.
commit 61432de93cc2d18c6e3ac79ae1714be49c09e38d Author: Mike Perry Date: Tue Sep 10 18:20:43 2013 -0700 TB4: Tor Browser's Firefox preference overrides. This hack directly includes our preference changes in omni.ja. Bug 18292: Staged updates fail on Windows Temporarily disable staged updates on Windows. Bug 18297: Use separate Noto JP,KR,SC,TC fonts Bug 23404: Add Noto Sans Buginese to the macOS whitelist Bug 23745: Set dom.indexedDB.enabled = true Bug 13575: Disable randomised Firefox HTTP cache decay user tests. (Fernando Fernandez Mancera ) Bug 17252: Enable session identifiers with FPI Session tickets and session identifiers were isolated by OriginAttributes, so we can re-enable them by allowing the default value (true) of "security.ssl.disable_session_identifiers". The pref "security.enable_tls_session_tickets" is obsolete (removed in https://bugzilla.mozilla.org/917049) Bug 14952: Enable http/2 and AltSvc In Firefox, SPDY/HTTP2 now uses Origin Attributes for isolation of connections, push streams, origin frames, etc. That means we get first-party isolation provided "privacy.firstparty.isolate" is true. So in this patch, we stop overriding "network.http.spdy.enabled" and "network.http.spdy.enabled.http2". Alternate Services also use Origin Attributes for isolation. So we stop overriding "network.http.altsvc.enabled" and "network.http.altsvc.oe" as well. (All 4 of the abovementioned "network.http.*" prefs adopt Firefox 60ESR's default value of true.) However, we want to disable HTTP/2 push for now, so we set "network.http.spdy.allow-push" to false. "network.http.spdy.enabled.http2draft" was removed in Bug 1132357. "network.http.sped.enabled.v2" was removed in Bug 912550. "network.http.sped.enabled.v3" was removed in Bug 1097944. "network.http.sped.enabled.v3-1" was removed in Bug 1248197. Bug 26114: addons.mozilla.org is not special * Don't expose navigator.mozAddonManager on any site * Don't block NoScript from modifying addons.mozilla.org or other sites Enable ReaderView mode again (#27281). Bug 29916: Make sure enterprise policies are disabled Bug 2874: Block Components.interfaces from content Bug 26146: Spoof HTTP User-Agent header for desktop platforms In Tor Browser 8.0, the OS was revealed in both the HTTP User-Agent header and to JavaScript code via navigator.userAgent. To avoid leaking the OS inside each HTTP request (which many web servers log), always use the Windows 7 OS value in the desktop User-Agent header. We continue to allow access to the actual OS via JavaScript, since doing so improves compatibility with web applications such as GitHub and Google Docs. Bug 12885: Windows Jump Lists fail for Tor Browser Jumplist entries are stored in a binary file in: %APPDATA%\\Microsoft\Windows\Recent\CustomDestinations\ and has a name in the form [a-f0-9]+.customDestinations-ms The hex at the front is unique per app, and is ultimately derived from something called the 'App User Model ID' (AUMID) via some unknown hashing method. The AUMID is provided as a key when programmatically creating, updating, and deleting a jumplist. The default behaviour in firefox is for the installer to define an AUMID for an app, and save it in the registry so that the jumplist data can be removed by the uninstaller. However, the Tor Browser does not set this (or any other) regkey during installation, so this codepath fails and the app's AUMID is left undefined. As a result the app's AUMID ends up being defined by windows, but unknowable by Tor Browser. This unknown AUMID is used to create and modify the jumplist, but the delete API requires that we provide the app's AUMID explicitly. Since we don't know what the AUMID is (since the expected regkey where it is normally stored does not exist) jumplist deletion will fail and we will leave behind a mostly empty customDestinations-ms file. The name of the file is derived from the binary path, so an enterprising person could reverse engineer how that hex name is calculated, and generate the name for Tor Browser's default Desktop installation path to determine whether a person had used Tor Browser in the past. The 'taskbar.grouping.useprofile' option that is enabled by this patch works around this AUMID problem by having firefox.exe create it's own AUMID based on the profile path (rather than looking for a regkey). This way, if a user goes in and enables and disables jumplist entries, the backing store is properly deleted. Unfortunately, all windows users currently have this file lurking in the above mentioned di
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 3547: Block all plugins.
commit e5f0fca5fccb6b0c02410257ed7088b90ac2c2a8 Author: Mike Perry Date: Tue Dec 4 16:03:13 2012 -0800 Bug 3547: Block all plugins. We cannot use the @mozilla.org/extensions/blocklist;1 service, because we actually want to stop plugins from ever entering the browser's process space and/or executing code (for example, AV plugins that collect statistics/analyse urls, magical toolbars that phone home or "help" the user, skype buttons that ruin our day, and censorship filters). Hence we rolled our own. See https://trac.torproject.org/projects/tor/ticket/3547#comment:6 for musings on a better way. Until then, it is delta-darwinism for us. --- dom/plugins/base/PluginFinder.cpp | 3 +++ 1 file changed, 3 insertions(+) diff --git a/dom/plugins/base/PluginFinder.cpp b/dom/plugins/base/PluginFinder.cpp index 4e1c1fd53698..cace7d4ef6ba 100644 --- a/dom/plugins/base/PluginFinder.cpp +++ b/dom/plugins/base/PluginFinder.cpp @@ -480,6 +480,9 @@ nsresult PluginFinder::ScanPluginsDirectory(nsIFile* pluginsDir, *aPluginsChanged = false; + // Block all plugins + return NS_OK; + #ifdef PLUGIN_LOGGING nsAutoCString dirPath; pluginsDir->GetNativePath(dirPath); ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] Bug 12620: TorBrowser regression tests
commit cfd7fb5213a6ea2710c5c0f0c20fe6f3d1586cb9 Author: Arthur Edelstein Date: Wed Aug 27 16:25:00 2014 -0700 Bug 12620: TorBrowser regression tests Regression tests for Bug #2950: Make Permissions Manager memory-only Regression tests for TB4: Tor Browser's Firefox preference overrides. Note: many more functional tests could be made here Regression tests for #2874: Block Components.interfaces from content Bug 18923: Add a script to run all Tor Browser specific tests Regression tests for Bug #16441: Suppress "Reset Tor Browser" prompt. --- run-tbb-tests| 60 +++ tbb-tests/browser.ini| 5 ++ tbb-tests/browser_tor_TB4.js | 162 +++ tbb-tests/browser_tor_bug2950.js | 74 ++ tbb-tests/mochitest.ini | 3 + tbb-tests/moz.build | 10 +++ tbb-tests/test_tor_bug2874.html | 25 ++ toolkit/toolkit.mozbuild | 3 +- 8 files changed, 341 insertions(+), 1 deletion(-) diff --git a/run-tbb-tests b/run-tbb-tests new file mode 100755 index ..5e266f9ba4cd --- /dev/null +++ b/run-tbb-tests @@ -0,0 +1,60 @@ +#!/bin/bash + +# This script runs all the Mochitest tests that have been added or +# modified since the last ffxbld commit. +# +# It does not currently run XPCShell tests. We should change this if we +# start using this type or other types of tests. +# +# The logs of the tests are stored in the tbb-tests.log file. +# Ignored tests are listed in the tbb-tests-ignore.txt file. +# +# https://trac.torproject.org/projects/tor/ticket/18923 + +IFS=$'\n' + +if [ -n "$USE_TESTS_LIST" ] && [ -f tbb-tests-list.txt ] +then +echo "Using tests list from file tbb-tests-list.txt" +tests=($(cat tbb-tests-list.txt)) +else +ffxbld_commit=$(git log -500 --format='%an %H' | grep '^ffxbld ' \ +| head -1 | cut -d ' ' -f 2) + +tests=($(git diff --name-status "$ffxbld_commit" HEAD | \ +grep -e '^[AM].*/test_[^/]\+\.\(html\|xul\)$' \ + -e '^[AM].*/browser_[^/]\+\.js$' \ + | sed 's/^[AM]\s\+//')) +fi + +echo 'The following tests will be run:' +for i in "${!tests[@]}" +do +if [ -z "$USE_TESTS_LIST" ] \ +&& grep -q "^${tests[$i]}$" tbb-tests-ignore.txt +then +unset "tests[$i]" +continue +fi +echo "- ${tests[$i]}" +done + +if [ -n "$WRITE_TESTS_LIST" ] +then +rm -f tbb-tests-list.txt +for i in "${!tests[@]}" +do +echo "${tests[$i]}" >> tbb-tests-list.txt +done +exit 0 +fi + +rm -f tbb-tests.log +echo $'\n''Starting tests' +./mach mochitest --log-tbpl tbb-tests.log --setpref security.nocertdb=false \ + "${tests[@]}" + +echo "*" +echo "*" +echo "Summary of failed tests:" +grep --color=never TEST-UNEXPECTED-FAIL tbb-tests.log diff --git a/tbb-tests/browser.ini b/tbb-tests/browser.ini new file mode 100644 index ..f481660f1417 --- /dev/null +++ b/tbb-tests/browser.ini @@ -0,0 +1,5 @@ +[DEFAULT] + +[browser_tor_bug2950.js] +[browser_tor_omnibox.js] +[browser_tor_TB4.js] diff --git a/tbb-tests/browser_tor_TB4.js b/tbb-tests/browser_tor_TB4.js new file mode 100644 index ..af688bee0226 --- /dev/null +++ b/tbb-tests/browser_tor_TB4.js @@ -0,0 +1,162 @@ +// # Test for TB4: Tor Browser's Firefox preference overrides +// Simple regression tests to check the value of each pref and +// decides if it is set as expected. + +// TODO: Write unit tests to check that each pref setting here +// causes the browser to have the desired behavior (a big task). + +function test() { + +let expectedPrefs = [ + // Disable browser auto updaters and associated homepage notifications + ["app.update.auto", false], + ["app.update.enabled", false], + ["browser.search.update", false], + ["browser.rights.3.shown", true], + ["browser.startup.homepage_override.mstone", "ignore"], + ["startup.homepage_welcome_url", ""], + ["startup.homepage_override_url", ""], + + // Disable the "Refresh" prompt that is displayed for stale profiles. + ["browser.disableResetPrompt", true], + + // Disk activity: Disable Browsing History Storage + ["browser.privatebrowsing.autostart", true], + ["browser.cache.disk.enable", false], + ["browser.cache.offline.enable", false], + ["dom.indexedDB.enabled", false], + ["permissions.memory_only", true], + ["network.cookie.lifetimePolicy", 2], + ["security.nocertdb", true], + + // Disk activity: TBB Directory Isolation + ["browser.download.useDownloadDir", false], + ["browser.shell.checkDefaultBrowser", false], + ["browser.download.manager.addToRecentDocs", false], + + // Misc privacy: Disk + ["signon.rememberSignons", false], + ["browser.formfill.enable", false], + ["signon.autofillForms", false], + ["browser.sessionstore.privacy_level", 2], + ["media.cache_size
[tor-commits] [tor-browser/tor-browser-78.5.0esr-10.5-1] TB3: Tor Browser's official .mozconfigs.
commit 12523a751d16f00c2202cef92a96bb8c00f8b4b8 Author: Mike Perry Date: Mon May 6 15:51:06 2013 -0700 TB3: Tor Browser's official .mozconfigs. Also: Bug #9829.1: new .mozconfig file for the new cross-compiler and ESR24 Changes needed to build Mac in 64bit Bug 10715: Enable Webgl for mingw-w64 again. Disable ICU when cross-compiling; clean-up. Bug 15773: Enable ICU on OS X Bug 15990: Don't build the sandbox with mingw-w64 Bug 12761: Switch to ESR 38 for OS X Updating .mozconfig-asan Bug 12516: Compile hardenend Tor Browser with -fwrapv Bug 18331: Switch to Mozilla's toolchain for building Tor Browser for OS X Bug 17858: Cannot create incremental MARs for hardened builds. Define HOST_CFLAGS, etc. to avoid compiling programs such as mbsdiff (which is part of mar-tools and is not distributed to end-users) with ASan. Bug 13419: Add back ICU for Windows Bug 21239: Use GTK2 for ESR52 Linux builds Bug 23025: Add hardening flags for macOS Bug 24478: Enable debug assertions and tests in our ASan builds --enable-proxy-bypass-protection Bug 27597: ASan build option in tor-browser-build is broken Bug 27623 - Export MOZILLA_OFFICIAL during desktop builds This fixes a problem where some preferences had the wrong default value. Also see bug 27472 where we made a similar fix for Android. Bug 30463: Explicitly disable MOZ_TELEMETRY_REPORTING Bug 31450: Set proper BINDGEN_CFLAGS for ASan builds Add an --enable-tor-browser-data-outside-app-dir configure option Add --with-tor-browser-version configure option Bug 21849: Don't allow SSL key logging. Bug 31457: disable per-installation profiles The dedicated profiles (per-installation) feature does not interact well with our bundled profiles on Linux and Windows, and it also causes multiple profiles to be created on macOS under TorBrowser-Data. Bug 31935: Disable profile downgrade protection. Since Tor Browser does not support more than one profile, disable the prompt and associated code that offers to create one when a version downgrade situation is detected. Bug 32493: Disable MOZ_SERVICES_HEALTHREPORT Bug 25741 - TBA: Disable features at compile-time MOZ_NATIVE_DEVICES for casting and the media player MOZ_TELEMETRY_REPORTING for telemetry MOZ_DATA_REPORTING for all data reporting preferences (crashreport, telemetry, geo) Bug 25741 - TBA: Add default configure options in dedicated file Define MOZ_ANDROID_NETWORK_STATE and MOZ_ANDROID_LOCATION Bug 29859: Disable HLS support for now Add --disable-tor-launcher build option Add --enable-tor-browser-update build option Bug 33734: Set MOZ_NORMANDY to False Bug 33851: Omit Parental Controls. Bug 40061: Omit the Windows default browser agent from the build squash! TB3: Tor Browser's official .mozconfigs. Bug 40107: Adapt .mozconfig-asan for ESR 78 --- .mozconfig| 38 .mozconfig-android| 35 ++ .mozconfig-asan | 44 .mozconfig-mac| 55 +++ .mozconfig-mingw | 30 +++ browser/base/moz.build| 3 ++ browser/installer/Makefile.in | 8 + browser/moz.configure | 8 ++--- build/moz.configure/old.configure | 6 mobile/android/confvars.sh| 9 ++ mobile/android/geckoview/build.gradle | 1 + mobile/android/moz.configure | 17 +-- mobile/android/torbrowser.configure | 30 +++ old-configure.in | 49 +++ security/moz.build| 2 +- security/nss/lib/ssl/Makefile | 2 +- toolkit/modules/AppConstants.jsm | 9 ++ toolkit/modules/moz.build | 3 ++ 18 files changed, 341 insertions(+), 8 deletions(-) diff --git a/.mozconfig b/.mozconfig new file mode 100755 index ..24efaea57b0b --- /dev/null +++ b/.mozconfig @@ -0,0 +1,38 @@ +. $topsrcdir/browser/config/mozconfig + +# This mozconfig file is not used in official Tor Browser builds. +# It is only intended to be used when doing incremental Linux builds +# during development. The platform-specific mozconfig configuration +# files used in official Tor Browser releases can be found in the +# tor-browser-build repo: +# https://gitweb.torproject.org/builders/tor-browser-build.git/ +# under: +# tor-browser-build/projects/firefox/mozconfig-$OS-$ARCH + +mk_add_options MOZ_OBJDIR=@TOPSRCDIR@/obj-@CONFIG_GUESS@ +mk_add_options MOZ_APP_DISPLAYNAME="Tor Browser" +export MOZILLA_OFFICIAL=1 + +ac_add_options --enable-optimize +ac_ad
[tor-commits] [Git][tpo/applications/fenix][tor-browser-83.1.0-10.5-1] 52 commits: Bug #40002: Add GitLab CI
Matthew Finkel pushed to branch tor-browser-83.1.0-10.5-1 at The Tor Project / Applications / fenix Commits: f387a690 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug #40002: Add GitLab CI - - - - - 4056b180 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40020: Change applicationId - - - - - 795d45c7 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40020: Change app name - - - - - 0bde9483 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40020: Change deeplink scheme - - - - - b00f8f2f by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 33594: Disable data collection by default (Glean) - - - - - 34892ff5 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40019: Adjust is disabled on Release when data collection is disabled - - - - - 40b142ea by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 34338: Disable the crash reporter - - - - - 3b791f39 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40014: Neuter Google Advertising ID - - - - - 9134be30 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40018: Disable Push service - - - - - 4c051716 by Alex Catarineu at 2020-11-13T16:34:01+00:00 Bug 40001: Start Tor as part of the Fenix initialization - - - - - 80311e41 by Alex Catarineu at 2020-11-13T16:34:01+00:00 Bug 40030: Install HTTPS Everywhere and NoScript addons on startup HTTPS Everywhere is installed as a builtin extension and NoScript as a regular AMO addon. To avoid unnecessary I/O we only install NoScript the first time, and rely on the browser addon updating mechanism for keeping up with new versions. This is the same behaviour that was implemented in the Fennec-based Tor Browser, where it was installed as a "distribution addon", which also only occurred once. - - - - - 8a49393c by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 34403: Disable Normal mode by default - - - - - d3dfa93f by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40015: Modify Home menu - - - - - 17cd0542 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40016: Hide unwanted Settings - - - - - e8e73eba by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40016: Modify Default toolbar menu - - - - - 171a977a by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40016: Add Donate settings button - - - - - 08854048 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40016: Move Allow Screenshots under Advanced - - - - - 2bb08649 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40016: Don't install WebCompat webext - - - - - b770a388 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40016: Don't onboard Search Suggestions - - - - - 72edd066 by Matthew Finkel at 2020-11-13T16:34:01+00:00 Bug 40031: Hide Mozilla-specific items on About page - - - - - 91379479 by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40020: Change App icons - - - - - 2e95f21b by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40032: Set usesCleartextTraffic as false - - - - - e4626405 by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40028: Define bootstrapping events and Quick Start - - - - - b4d323b9 by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40028: Implement Tor Service controller - - - - - 4d96eb68 by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40028: Integrate Tor Controller into HomeFragment - - - - - bb846bdc by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40028: Implement Tor connect and logger screens - - - - - 3cff3fb2 by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40028: Implement Tor Onboarding - - - - - d07528aa by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40028: Implement new home screen - - - - - ee5b2a5d by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40034: Disable PWA onboading - - - - - da95c149 by Alexander Færøy at 2020-11-13T16:37:19+00:00 Pin CI builds to runners with 32GB of RAM to avoid OOM conditions. - - - - - 7e2962e9 by Georg Koppen at 2020-11-13T16:37:19+00:00 Bug 40042: Add option do overwrite timestamp in extension version - - - - - 491e03bb by Alex Catarineu at 2020-11-13T16:37:19+00:00 Bug 34378: Port external helper app prompting With the corresponding android-components patch, this allows all `startActivity` that may open external apps to be replaced by `TorUtils.startActivityPrompt`. - - - - - f94ec7da by Georg Koppen at 2020-11-13T16:37:19+00:00 Bug 40059: Use MOZ_BUILD_DATE for versionCode At the same time we adapt MOZ_BUILD_DATE to our needs where it is actually used and not in tor-browser-build. This gives us more flexibility. See: tor-browser-build#40084. - - - - - e30022b5 by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40041: Implement Tor Network Settings - - - - - 5c92a7c7 by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40041: Integrate Tor Network Settings - - - - - 82e82d2f by Alex Catarineu at 2020-11-13T16:37:19+00:00 Bug 40063: Do not sort search engines alphabetically - - - - - 8a44eeda by Matthew Finkel at 2020-11-13T16:37:19+00:00 Bug 40026: Implement Security Level settings - - - - - e191e7bd by Matthew Finkel at 202
[tor-commits] [Git][tpo/applications/android-components][android-components-63.0.8-10.5-1] 16 commits: Bug 40005: Modify Default toolbar menu
Matthew Finkel pushed to branch android-components-63.0.8-10.5-1 at The Tor Project / Applications / android-components Commits: 39295ff8 by Matthew Finkel at 2020-11-13T16:52:19+00:00 Bug 40005: Modify Default toolbar menu - - - - - e6774096 by Alex Catarineu at 2020-11-13T16:52:19+00:00 Bug 40007: Port external helper app prompting Together with the corresponding fenix patch, this allows all `startActivity` that may open external apps to be replaced by `TorUtils.startActivityPrompt`. - - - - - cf329667 by Alex Catarineu at 2020-11-13T16:52:19+00:00 Bug 40002: Ensure system download manager is not used - - - - - dcce1390 by Alex Catarineu at 2020-11-13T16:52:19+00:00 Bug 40009: Change the default search engines This matches the search engines from desktop, that is: DDG as the default, then YouTube, Google, DDGOnion, Startpage, Twitter, Wikipedia and Yahoo. - - - - - a2ca3530 by Matthew Finkel at 2020-11-13T16:52:19+00:00 Bug 40006: Expose Security Level interface - - - - - 85fdf167 by Alex Catarineu at 2020-11-13T16:52:19+00:00 Bug 40011: Hide option for disallowing addons in private mode - - - - - 167cbd8c by Georg Koppen at 2020-11-13T16:52:19+00:00 Bug 40013: Add option do overwrite timestamp in extension version - - - - - cbb5de32 by Alex Catarineu at 2020-11-13T16:52:19+00:00 Bug 40015: Port padlock states for .onion services - - - - - c56a90a1 by Alex Catarineu at 2020-11-13T16:52:19+00:00 Bug 40016: Allow inheriting from AddonCollectionProvider This will allow implementing our own AddonsProvider in fenix. - - - - - a8ed0892 by Alex Catarineu at 2020-11-13T16:52:19+00:00 Bug 40021: Force telemetry=false in Fennec settings migration - - - - - 912ca884 by Alex Catarineu at 2020-11-13T16:52:19+00:00 Bug 40022: Migrate Tor security level from Fennec - - - - - 6a40fa03 by Matthew Finkel at 2020-11-13T16:52:19+00:00 Bug 40020: Disable third-party cookies - - - - - a3c16ef1 by Matthew Finkel at 2020-11-13T16:52:19+00:00 Bug 40023: Stop PrivateNotificationService - - - - - 06822f1f by Matthew Finkel at 2020-11-13T16:52:19+00:00 Bug 40024: Disable tracking protection by default - - - - - bb8e311f by Alex Catarineu at 2020-11-13T16:52:19+00:00 Bug 40019: Expose spoofEnglish pref - - - - - 79b3a24e by Alex Catarineu at 2020-11-13T16:53:43+00:00 Bug 34439: Isolate Icon loader on Android - - - - - 30 changed files: - build.gradle - components/browser/engine-gecko-beta/src/main/java/mozilla/components/browser/engine/gecko/GeckoEngine.kt - components/browser/engine-gecko-beta/src/main/java/mozilla/components/browser/engine/gecko/fetch/GeckoViewFetchClient.kt - components/browser/engine-gecko/src/main/java/mozilla/components/browser/engine/gecko/GeckoEngine.kt - components/browser/engine-gecko/src/main/java/mozilla/components/browser/engine/gecko/fetch/GeckoViewFetchClient.kt - components/browser/icons/src/main/java/mozilla/components/browser/icons/loader/HttpIconLoader.kt - components/browser/menu/src/main/java/mozilla/components/browser/menu/WebExtensionBrowserMenu.kt - components/browser/menu/src/main/java/mozilla/components/browser/menu/WebExtensionBrowserMenuBuilder.kt - components/browser/search/src/main/assets/search/list.json - + components/browser/search/src/main/assets/searchplugins/ddg-onion.xml - components/browser/search/src/main/assets/searchplugins/ddg.xml - + components/browser/search/src/main/assets/searchplugins/startpage.xml - + components/browser/search/src/main/assets/searchplugins/yahoo.xml - + components/browser/search/src/main/assets/searchplugins/youtube.xml - components/browser/toolbar/src/main/java/mozilla/components/browser/toolbar/display/DisplayToolbar.kt - components/browser/toolbar/src/main/java/mozilla/components/browser/toolbar/display/SiteSecurityIconView.kt - components/browser/toolbar/src/main/res/drawable/mozac_ic_site_security.xml - components/browser/toolbar/src/main/res/values/attrs_browser_toolbar.xml - components/concept/engine/src/main/java/mozilla/components/concept/engine/EngineSession.kt - components/concept/engine/src/main/java/mozilla/components/concept/engine/Settings.kt - components/concept/fetch/src/main/java/mozilla/components/concept/fetch/Request.kt - components/concept/toolbar/src/main/java/mozilla/components/concept/toolbar/Toolbar.kt - components/feature/addons/src/main/java/mozilla/components/feature/addons/amo/AddonCollectionProvider.kt - components/feature/addons/src/main/res/layout/mozac_feature_addons_fragment_dialog_addon_installed.xml - components/feature/app-links/build.gradle - components/feature/app-links/src/main/java/mozilla/components/feature/app/links/AppLinksFeature.kt - components/feature/app-links/src/main/java/mozilla/components/feature/app/links/AppLinksUseCases.kt - components/feature/contextmenu/src/main/java/mozilla/components/feature/contextmenu/ContextMenuCandidate.kt - components/feature/downloads/build.gradle - components/feature/downloads/src/main/java/mozilla/components/feature/downloa
[tor-commits] [translation/torbutton-browseronboardingproperties] https://gitweb.torproject.org/translation.git/commit/?h=torbutton-browseronboardingproperties
commit 9f2752d9e92954c27bcf9aa6760b0285bddbf417 Author: Translation commit bot Date: Sat Nov 14 16:17:34 2020 + https://gitweb.torproject.org/translation.git/commit/?h=torbutton-browseronboardingproperties --- sv-SE/browserOnboarding.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/sv-SE/browserOnboarding.properties b/sv-SE/browserOnboarding.properties index 64585ef082..21329aae60 100644 --- a/sv-SE/browserOnboarding.properties +++ b/sv-SE/browserOnboarding.properties @@ -5,9 +5,9 @@ onboarding.tour-tor-welcome=Välkommen onboarding.tour-tor-welcome.title=Du är redo. onboarding.tour-tor-welcome.description=Tor Browser erbjuder högsta standard för integritet och säkerhet när du surfar på webben. Du är nu skyddad mot spårning, övervakning och censur. Denna snabba introduktion kommer att visa dig hur. -onboarding.tour-tor-welcome.next-button=Gå till Sekretess +onboarding.tour-tor-welcome.next-button=Gå till Integritet -onboarding.tour-tor-privacy=Sekretess +onboarding.tour-tor-privacy=Integritet onboarding.tour-tor-privacy.title=Avvisa bevakare och snokare. onboarding.tour-tor-privacy.description=Tor Browser isolerar kakor och tar bort din webbläsarhistorik efter din session. Dessa ändringar säkerställa din integritet och säkerhet skyddas i webbläsaren. Klicka på "Tor-nätverk" för att lära dig hur vi skyddar dig på nätverksnivå. onboarding.tour-tor-privacy.button=Gå till Tor-nätverk @@ -34,7 +34,7 @@ onboarding.tour-tor-security-level.next-button=Gå till Erfarenhets tips onboarding.tour-tor-expect-differences=Erfarenhets tips onboarding.tour-tor-expect-differences.title=Förvänta dig vissa skillnader. -onboarding.tour-tor-expect-differences.description=Med alla säkerhets- och sekretessfunktioner som Tor tillhandahåller kan din upplevelse när du surfar på internet vara lite annorlunda. Saker kan vara lite långsammare och beroende på din säkerhetsnivå kanske vissa element inte fungerar eller läses in. Du kan också bli ombedd att bevisa att du är en människa och inte en robot. +onboarding.tour-tor-expect-differences.description=Med alla säkerhets- och integritetsfunktioner som Tor tillhandahåller kan din upplevelse när du surfar på internet vara lite annorlunda. Saker kan vara lite långsammare och beroende på din säkerhetsnivå kanske vissa element inte fungerar eller läses in. Du kan också bli ombedd att bevisa att du är en människa och inte en robot. onboarding.tour-tor-expect-differences.button=Se Vanliga frågor onboarding.tour-tor-expect-differences.next-button=Gå till Onion-tjänster ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/torbirdy_completed] https://gitweb.torproject.org/translation.git/commit/?h=torbirdy_completed
commit ae878135dd59339bb47928f0c6acb7563293c7ec Author: Translation commit bot Date: Sat Nov 14 16:17:14 2020 + https://gitweb.torproject.org/translation.git/commit/?h=torbirdy_completed --- sv/torbirdy.dtd | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/sv/torbirdy.dtd b/sv/torbirdy.dtd index c3eb2774f0..25337c095d 100644 --- a/sv/torbirdy.dtd +++ b/sv/torbirdy.dtd @@ -8,7 +8,7 @@ - + @@ -25,7 +25,7 @@ - + @@ -46,7 +46,7 @@ - + ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/torbutton-brandproperties] https://gitweb.torproject.org/translation.git/commit/?h=torbutton-brandproperties
commit 58f817d484c39bd40df17d0f43cbbb9025239304 Author: Translation commit bot Date: Sat Nov 14 16:17:16 2020 + https://gitweb.torproject.org/translation.git/commit/?h=torbutton-brandproperties --- sv-SE/brand.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sv-SE/brand.properties b/sv-SE/brand.properties index 416926b915..35e97d24f4 100644 --- a/sv-SE/brand.properties +++ b/sv-SE/brand.properties @@ -17,4 +17,4 @@ homePageImport=Importera din startsida från %S homePageMigrationPageTitle=Val av startsida homePageMigrationDescription=Vänligen välj den startsida du vill använda: -syncBrandShortName=Synka +syncBrandShortName=Synkronisera ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/torbutton-brandproperties_completed] https://gitweb.torproject.org/translation.git/commit/?h=torbutton-brandproperties_completed
commit 5da27c6516118db77fd30cf38c5072dba7c1ec84 Author: Translation commit bot Date: Sat Nov 14 16:17:18 2020 + https://gitweb.torproject.org/translation.git/commit/?h=torbutton-brandproperties_completed --- sv-SE/brand.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sv-SE/brand.properties b/sv-SE/brand.properties index 9e54435855..7062b41d32 100644 --- a/sv-SE/brand.properties +++ b/sv-SE/brand.properties @@ -17,4 +17,4 @@ homePageImport=Importera din startsida från %S homePageMigrationPageTitle=Val av startsida homePageMigrationDescription=Vänligen välj den startsida du vill använda: -syncBrandShortName=Synka +syncBrandShortName=Synkronisera ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/torbirdy] https://gitweb.torproject.org/translation.git/commit/?h=torbirdy
commit 3773b9a697fb15557a771ec1f79a76658aeda273 Author: Translation commit bot Date: Sat Nov 14 16:17:12 2020 + https://gitweb.torproject.org/translation.git/commit/?h=torbirdy --- sv/torbirdy.dtd | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/sv/torbirdy.dtd b/sv/torbirdy.dtd index c3eb2774f0..25337c095d 100644 --- a/sv/torbirdy.dtd +++ b/sv/torbirdy.dtd @@ -8,7 +8,7 @@ - + @@ -25,7 +25,7 @@ - + @@ -46,7 +46,7 @@ - + ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/tba-torbrowserstringsdtd] https://gitweb.torproject.org/translation.git/commit/?h=tba-torbrowserstringsdtd
commit 53e8b689c6d6c3ab4588da3f8650de98eafce91e Author: Translation commit bot Date: Sat Nov 14 16:16:54 2020 + https://gitweb.torproject.org/translation.git/commit/?h=tba-torbrowserstringsdtd --- sv-SE/torbrowser_strings.dtd | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sv-SE/torbrowser_strings.dtd b/sv-SE/torbrowser_strings.dtd index 5e27b80e62..f44f897fe7 100644 --- a/sv-SE/torbrowser_strings.dtd +++ b/sv-SE/torbrowser_strings.dtd @@ -3,7 +3,7 @@ - + ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/tails-misc_release] https://gitweb.torproject.org/translation.git/commit/?h=tails-misc_release
commit 97268bbc100ea736529c28ccb62bc5b354428992 Author: Translation commit bot Date: Sat Nov 14 16:16:37 2020 + https://gitweb.torproject.org/translation.git/commit/?h=tails-misc_release --- sv.po | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/sv.po b/sv.po index c4aac42e4e..cfd9d1a0cb 100644 --- a/sv.po +++ b/sv.po @@ -25,8 +25,8 @@ msgstr "" "Project-Id-Version: Tor Project\n" "Report-Msgid-Bugs-To: \n" "POT-Creation-Date: 2020-11-11 08:56+0100\n" -"PO-Revision-Date: 2020-11-11 09:13+\n" -"Last-Translator: Steve Dougherty\n" +"PO-Revision-Date: 2020-11-14 15:57+\n" +"Last-Translator: Jonatan Nyberg \n" "Language-Team: Swedish (http://www.transifex.com/otf/torproject/language/sv/)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/tails-misc] https://gitweb.torproject.org/translation.git/commit/?h=tails-misc
commit 62097ebd44433dbc21719580ab81c1fd51354ef2 Author: Translation commit bot Date: Sat Nov 14 16:15:57 2020 + https://gitweb.torproject.org/translation.git/commit/?h=tails-misc --- sv.po | 8 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/sv.po b/sv.po index 73b525ce86..1c3fc4c027 100644 --- a/sv.po +++ b/sv.po @@ -14,7 +14,7 @@ # Jonatan Nyberg , 2017 # Jonatan Nyberg , 2018-2020 # Jonatan Nyberg , 2017 -# Martin H , 2016 +# Martin H , 2016 # 56de39dbda2b12eb73bb0082f99d9075_c272587, 2014 # ph AA, 2015 # phst, 2015 @@ -25,8 +25,8 @@ msgstr "" "Project-Id-Version: Tor Project\n" "Report-Msgid-Bugs-To: \n" "POT-Creation-Date: 2020-11-11 08:56+0100\n" -"PO-Revision-Date: 2020-11-11 09:13+\n" -"Last-Translator: Steve Dougherty\n" +"PO-Revision-Date: 2020-11-14 15:57+\n" +"Last-Translator: Jonatan Nyberg \n" "Language-Team: Swedish (http://www.transifex.com/otf/torproject/language/sv/)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" @@ -1227,7 +1227,7 @@ msgstr "Bestående-guiden - Avslutad" #: config/chroot_local-includes/usr/src/persistence-setup/lib/Tails/Persistence/Setup.pm:701 msgid "" "Any changes you have made will only take effect after restarting Tails." -msgstr "" +msgstr "Alla ändringar som du har gjort kommer att träda i kraft först efter att du har startat om Tails." #: config/chroot_local-includes/usr/src/persistence-setup/lib/Tails/Persistence/Setup.pm:711 msgid "Restart Now" ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/abouttor-homepage] https://gitweb.torproject.org/translation.git/commit/?h=abouttor-homepage
commit a29acf81fd2efd18aaab85424ba12a66be37c772 Author: Translation commit bot Date: Sat Nov 14 16:15:03 2020 + https://gitweb.torproject.org/translation.git/commit/?h=abouttor-homepage --- sv-SE/aboutTor.dtd | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sv-SE/aboutTor.dtd b/sv-SE/aboutTor.dtd index 9af4bc753b..0673a9210a 100644 --- a/sv-SE/aboutTor.dtd +++ b/sv-SE/aboutTor.dtd @@ -22,7 +22,7 @@ - + ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/communitytpo-contentspot] https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot
commit e84c9fc99efeef7503ba3e2309bebc8c1a9334e8 Author: Translation commit bot Date: Sat Nov 14 15:15:12 2020 + https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot --- contents+ar.po | 35 ++- 1 file changed, 22 insertions(+), 13 deletions(-) diff --git a/contents+ar.po b/contents+ar.po index b9207d513f..1dd8aeb16f 100644 --- a/contents+ar.po +++ b/contents+ar.po @@ -12675,7 +12675,7 @@ msgstr "تØÙ٠٠٠خاد٠اÙÙÙب ÙÙثائ٠Ùظا٠اÙتشغÙÙ." #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "### Apache" -msgstr "" +msgstr "### اباتشÙ" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) @@ -12707,12 +12707,15 @@ msgid "" "**Step 2.** Add the Onion-Location header to your Virtual Host configuration" " file" msgstr "" +"** اÙخطÙØ© 2. ** أض٠رأس Onion-Location Ø¥ÙÙ Ù Ù٠تÙÙÙÙ Virtual Host اÙخاص بÙ" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "" "Header set Onion-Location \"http://your-onion-address.onion%{REQUEST_URI}s\""; msgstr "" +"٠ج٠Ùعة اÙرأس Onion-Location \"http: //your-onion-address.onionÙª " +"{REQUEST_URI} s\"" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) @@ -12722,61 +12725,65 @@ msgid "" "URI](https://httpd.apache.org/docs/2.4/mod/mod_rewrite.html), such as " "\"/index.html\"." msgstr "" +"ØÙØ« ÙÙÙÙ \"your-onion-address.onion\" Ù٠عÙÙا٠خد٠ة onion اÙذ٠ترÙد إعادة " +"تÙجÙÙÙ Ù \"{REQUEST_URI}\" ÙÙ [Ù ÙÙ٠اÙ٠سار ÙعÙÙا٠URI اÙÙ Ø·ÙÙب] " +"(https://httpd.apache.org/docs/2.4/ mod / mod_rewrite.html) Ø Ù Ø«Ù " +"\"/index.html\"." #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "Virtual Host example:" -msgstr "" +msgstr "٠ثا٠عÙ٠اÙ٠ضÙ٠اÙاÙتراضÙ:" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "" -msgstr "" +msgstr "" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "ServerName " -msgstr "" +msgstr "اس٠اÙخاد٠" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "DocumentRoot /path/to/htdocs" -msgstr "" +msgstr "جذر اÙÙØ«ÙÙØ© / اÙ٠سار / Ø¥ÙÙ / htdocs" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "SSLEngine on" -msgstr "" +msgstr "SSLEngine on" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "SSLCertificateFile \"/path/to/www.example.com.cert\"" -msgstr "" +msgstr "Ù ÙÙ Ø´Ùادة SSLC \"/path/to/www.example.com.cert\"" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "SSLCertificateKeyFile \"/path/to/www.example.com.key\"" -msgstr "" +msgstr "SSLCertificateKeyFile \"/path/to/www.example.com.key\"" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "" -msgstr "" +msgstr "" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "**Step 3.** Reload Apache" -msgstr "" +msgstr "** اÙخطÙØ© 3. ** إعادة تØÙ Ù٠اباتشÙ" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "Reload the apache2 service, so your configuration changes take effect:" -msgstr "" +msgstr "أعد تØÙ Ù٠خد٠ة اباتش٠2 Ø Øت٠تسر٠تغÙÙرات اÙتÙÙÙÙ:" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "**Step 4.** Testing your Onion-Location" -msgstr "" +msgstr "** اÙخطÙØ© 4. ** اختبار Onion-Location اÙخاص بÙ" #: https//community.torproject.org/onion-services/advan
[tor-commits] [translation/communitytpo-contentspot] https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot
commit b4df944268d4f69791ed6c87cc57d3b949b0f467 Author: Translation commit bot Date: Sat Nov 14 14:45:12 2020 + https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot --- contents+ar.po | 36 +++- 1 file changed, 27 insertions(+), 9 deletions(-) diff --git a/contents+ar.po b/contents+ar.po index acdf3c7780..b9207d513f 100644 --- a/contents+ar.po +++ b/contents+ar.po @@ -12586,6 +12586,9 @@ msgid "" "Have a look at [this post](https://blog.torproject.org/blog/facebook-hidden-"; "services-and-https-certs) on the Tor Blog to learn more about these issues." msgstr "" +"Ø£ÙÙ Ùظرة عÙÙ [Ùذا اÙÙ ÙØ´Ùر] (https://blog.torproject.org/blog/facebook-"; +"hidden-services-and-https-certs) عÙ٠٠دÙÙØ© Tor Ù٠عرÙØ© اÙ٠زÙد ØÙÙ ÙØ°Ù " +"اÙÙ Ø´ÙÙات." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) @@ -12596,21 +12599,26 @@ msgid "" "onion-services) and [Vanguards' Security README](https://github.com"; "/mikeperry-tor/vanguards/blob/master/README_SECURITY.md)." msgstr "" +"- ÙØ٠اÙØ© خد٠ة onion اÙخاصة ب٠٠٠اÙÙج٠ات اÙ٠تÙد٠ة Ø Ùجب استخدا٠[Vanguards " +"addon] (https://github.com/mikeperry-tor/vanguards) Ø Ø§Ùرأ [٠دÙÙØ© Tor ØÙÙ " +"Vanguards] (https://blog.torproject.org/ تعÙ٠ع٠خد٠ات vanguards-add-onion) " +"Ù [Vanguards 'Security README] (https://github.com/mikeperry-"; +"tor/vanguards/blob/master/README_SECURITY.md)." #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.title) msgid "Onion-Location" -msgstr "" +msgstr "Ù ÙÙع Onion" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.subtitle) msgid "Learn how to set up an Onion-Location for your onion site." -msgstr "" +msgstr "تعر٠عÙÙ ÙÙÙÙØ© إعداد Ù ÙÙع Onion-Location ÙÙ ÙÙع Onion اÙخاص بÙ." #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "Onion-Location is an easy way to advertise an onion site to the users." -msgstr "" +msgstr "Onion-Location طرÙÙØ© سÙÙØ© ÙÙإعÙا٠ع٠٠ÙÙع onion ÙÙ٠ستخد٠ÙÙ." #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) @@ -12618,12 +12626,14 @@ msgid "" "You can either configure a web server to show an Onion-Location Header or " "add an HTML meta attribute in the website." msgstr "" +"ÙÙ ÙÙ٠إ٠ا تÙÙÙ٠خاد٠ÙÙب ÙإظÙار رأس Onion-Location أ٠إضاÙØ© س٠ة تعرÙÙ HTML " +"ÙÙ Ù ÙÙع اÙÙÙب." #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "" "For the header to be valid the following conditions need to be fulfilled:" -msgstr "" +msgstr "ÙÙÙ ÙÙÙ٠اÙعÙÙا٠صاÙØÙا Ø Ùجب استÙÙاء اÙشرÙØ· اÙتاÙÙØ©:" #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) @@ -12631,18 +12641,22 @@ msgid "" "* The Onion-Location value must be a valid URL with http: or https: protocol" " and a .onion hostname." msgstr "" +"* Ùجب أ٠تÙÙÙ ÙÙÙ Ø© Onion-Location عÙÙا٠URL صاÙØÙا ٠ع برÙتÙÙÙÙ http: Ø£Ù " +"https: Ùاس٠٠ضÙÙ .onion." #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "" "* The webpage defining the Onion-Location header must be served over HTTPS." -msgstr "" +msgstr "* Ùجب تÙدÙ٠صÙØØ© اÙÙÙب اÙت٠تØدد عÙÙا٠Onion-Location عبر HTTPS." #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) msgid "" "* The webpage defining the Onion-Location header must not be an onion site." msgstr "" +"* Ùجب Ø£Ùا تÙÙ٠صÙØØ© اÙÙÙب اÙت٠تØدد عÙÙا٠Onion-Location عبارة ع٠٠ÙÙع " +"onion." #: https//community.torproject.org/onion-services/advanced/onion-location/ #: (content/onion-services/advanced/onion-location/contents+en.lrpage.body) @@ -12650,11 +12664,13 @@ msgid "" "In this page, the commands to manage the web server are based Debian-like " "operating systems and may differ from other systems." msgstr "" +"ÙÙ Ùذ٠اÙصÙØØ© Ø ØªØ¹ØªÙ Ø¯ Ø£Ùا٠ر إدارة خاد٠اÙÙÙب عÙ٠أÙظ٠ة Ø
[tor-commits] [translation/communitytpo-contentspot] https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot
commit 3d5c4d166e811faf815516090370fae1bd5f0f2b Author: Translation commit bot Date: Sat Nov 14 14:15:21 2020 + https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot --- contents+ar.po | 7 ++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/contents+ar.po b/contents+ar.po index 80420a61b4..acdf3c7780 100644 --- a/contents+ar.po +++ b/contents+ar.po @@ -12554,13 +12554,15 @@ msgid "" "rather than a Tor relay, since relay uptime and other properties are " "publicly visible." msgstr "" +"- ٠٠اÙØ£Ùض٠ع٠ÙÙ Ùا استضاÙØ© خد٠ات onion عÙ٠ع٠ÙÙ Tor بدÙا٠٠٠٠رØÙ Tor Ø " +"ÙظرÙا ÙØ£Ù ÙÙت تشغÙ٠اÙترØÙÙ ÙاÙخصائص اÙأخر٠٠رئÙØ© ÙÙعا٠ة." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) msgid "" "- The longer an onion service is online, the higher the risk that its " "location is discovered." -msgstr "" +msgstr "- ÙÙ٠ا طاÙت ٠دة خد٠ة onion عÙ٠اÙØ¥ÙترÙت Ø Ø²Ø§Ø¯Øª ٠خاطر اÙتشا٠٠ÙÙعÙا." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) @@ -12568,12 +12570,15 @@ msgid "" "The most prominent attacks are building a profile of the onion service's " "availability and matching induced traffic patterns." msgstr "" +"تت٠ث٠أبرز اÙÙج٠ات Ù٠إÙشاء Ù Ù٠تعرÙÙ ÙتÙاÙر خد٠ة onion Ù٠طابÙØ© Ø£Ù٠اط ØرÙØ© " +"اÙ٠رÙر اÙ٠ستØثة." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) msgid "" "- Another common issue is whether to use HTTPS on your onionsite or not." msgstr "" +"- ÙÙا٠٠شÙÙØ© شائعة أخر٠ÙÙ٠استخدا٠HTTPS عÙÙ Ù ÙÙع onion اÙخاص ب٠أ٠Ùا." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/communitytpo-contentspot] https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot
commit 72d0b5e3a25d1e3a4ee06d1a5dd18f078501f051 Author: Translation commit bot Date: Sat Nov 14 13:15:16 2020 + https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot --- contents+ar.po | 21 + 1 file changed, 17 insertions(+), 4 deletions(-) diff --git a/contents+ar.po b/contents+ar.po index 20f8bdfd17..80420a61b4 100644 --- a/contents+ar.po +++ b/contents+ar.po @@ -12478,12 +12478,12 @@ msgstr "ÙÙ ÙÙ٠اÙآ٠اÙاتصا٠بعÙÙا٠خد٠ة onion." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.title) msgid "Operational Security" -msgstr "" +msgstr "اÙأ٠٠اÙتشغÙÙÙ" #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.subtitle) msgid "Learn more tips to secure your Onion Services." -msgstr "" +msgstr "تعر٠عÙ٠اÙ٠زÙد ٠٠اÙÙØµØ§Ø¦Ø Ùتأ٠Ù٠خد٠ات Onion اÙخاصة بÙ." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) @@ -12492,6 +12492,9 @@ msgid "" "security](https://trac.torproject.org/projects/tor/wiki/doc/OperationalSecurity)" " and system administration to maintain security." msgstr "" +"ÙØتاج ٠شغÙ٠خد٠ات Onion Ø¥Ù٠٠٠ارسة [اÙأ٠٠اÙتشغÙÙÙ] اÙÙ Ùاسب " +"(https://trac.torproject.org/projects/tor/wiki/doc/OperationalSecurity) " +"Ùإدارة اÙÙظا٠ÙÙØÙاظ عÙ٠اÙØ£Ù Ù." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) @@ -12501,11 +12504,14 @@ msgid "" "document](https://riseup.net/en/security/network-security/tor/onionservices-"; "best-practices)." msgstr "" +"ÙÙØصÙ٠عÙ٠بعض اÙتراØات اÙØ£Ù Ø§Ù Ø Ùرج٠اÙتأÙد Ù Ù Ùراءة ٠ستÙد Riseup [\"Ø£Ùض٠" +"٠٠ارسات خد٠ات Tor Hidden (Onion)\"] (https://riseup.net/en/security/network-"; +"security/tor/onionservices-best-practices)." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) msgid "Also, here are some more anonymity issues you should keep in mind:" -msgstr "" +msgstr "Ø¥ÙÙ٠أÙضÙا بعض Ù Ø´ÙÙات إخÙاء اÙÙÙÙØ© اÙت٠Ùجب أ٠تضعÙا Ù٠اعتبارÙ:" #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) @@ -12514,6 +12520,9 @@ msgid "" "services/setup/), be careful of letting your web server reveal identifying " "information about you, your computer, or your location." msgstr "" +"- Ù٠ا ÙÙ Ù Ø°ÙÙر [ÙÙا] (https://community.torproject.org/onion-"; +"services/setup/) Ø ÙÙ ØذرÙا ٠٠اÙØ³Ù Ø§Ø Ùخاد٠اÙÙÙب اÙخاص ب٠باÙÙش٠ع٠٠عÙÙ٠ات" +" اÙتعرÙ٠عÙÙ Ø Ø£Ù Ø¬Ùاز اÙÙ٠بÙÙتر اÙخاص Ø¨Ù Ø Ø£Ù Ù ÙÙعÙ." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) @@ -12521,6 +12530,8 @@ msgid "" "For example, readers can probably determine whether it's thttpd or Apache, " "and learn something about your operating system." msgstr "" +"عÙ٠سبÙ٠اÙÙ Ø«Ø§Ù Ø ÙÙ ÙÙ ÙÙÙراء عÙ٠اÙØ£Ø±Ø¬Ø ØªØدÙد ٠ا إذا Ùا٠thttpd Ø£Ù Apache Ø" +" Ù٠عرÙØ© Ø´ÙØ¡ ٠ا ع٠Ùظا٠اÙتشغÙ٠اÙخاص بÙ." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) @@ -12528,11 +12539,13 @@ msgid "" "- If your computer isn't online all the time, your onion service won't be " "either." msgstr "" +"- إذا ÙÙ ÙÙ٠جÙاز اÙÙ٠بÙÙتر اÙخاص ب٠٠تصÙا٠باÙØ¥ÙترÙت Ø·Ùا٠اÙÙÙت Ø ÙÙ٠تÙÙÙ " +"خد٠ة onion ÙدÙ٠أÙضÙا." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) msgid "This leaks information to an observant adversary." -msgstr "" +msgstr "Ùؤد٠Ùذا Ø¥Ù٠تسرÙب اÙ٠عÙÙ٠ات Ø¥Ù٠خص٠٠ÙاØظ." #: https//community.torproject.org/onion-services/advanced/opsec/ #: (content/onion-services/advanced/opsec/contents+en.lrpage.body) ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/donatepages-messagespot_completed] https://gitweb.torproject.org/translation.git/commit/?h=donatepages-messagespot_completed
commit 081011ffbad72f09a332a635d7ef6521063a0e26 Author: Translation commit bot Date: Sat Nov 14 12:45:18 2020 + https://gitweb.torproject.org/translation.git/commit/?h=donatepages-messagespot_completed --- locale/es_AR/LC_MESSAGES/messages.po | 2798 ++ 1 file changed, 2798 insertions(+) diff --git a/locale/es_AR/LC_MESSAGES/messages.po b/locale/es_AR/LC_MESSAGES/messages.po new file mode 100644 index 00..d8c4161da6 --- /dev/null +++ b/locale/es_AR/LC_MESSAGES/messages.po @@ -0,0 +1,2798 @@ +# +# Translators: +# Emma Peel, 2018 +# erinm, 2018 +# Mariano Calvento , 2018 +# JoaquÃn Serna , 2019 +# Burro Moro , 2020 +# Zuhualime Akoochimoya, 2020 +# +msgid "" +msgstr "" +"Last-Translator: Zuhualime Akoochimoya, 2020\n" +"Language-Team: Spanish (Argentina) (https://www.transifex.com/otf/teams/1519/es_AR/)\n" +"Language: es_AR\n" +"Plural-Forms: nplurals=2; plural=(n != 1);\n" + +#: tmp/cache_locale/ff/ffee28cfc961a339d813aed75493753fcc9e985dfa212e1af03fc089d5c3fdb0.php:101 +msgid "Tracking, surveillance, and censorship are widespread online." +msgstr "" +"El seguimiento, la vigilancia y la censura están muy extendidos en lÃnea." + +#: tmp/cache_locale/ff/ffee28cfc961a339d813aed75493753fcc9e985dfa212e1af03fc089d5c3fdb0.php:105 +#: tmp/cache_locale/dd/ddde851dcf0f4bcfdf69b2fb2bdd731c4f85ce373ca3ec850a7ca8bbc00dfb85.php:43 +#: tmp/cache_locale/dd/ddde851dcf0f4bcfdf69b2fb2bdd731c4f85ce373ca3ec850a7ca8bbc00dfb85.php:66 +msgid "Take back the internet with Tor" +msgstr "Recuperá Internet con Tor." + +#: tmp/cache_locale/ff/ffee28cfc961a339d813aed75493753fcc9e985dfa212e1af03fc089d5c3fdb0.php:112 +msgid "Give today, and Mozilla will match your donation." +msgstr "Dá hoy, y Mozilla va a emparejar tu donación." + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:47 +msgid "" +"The European shirt fits run a little small so you might want to consider " +"sizing up." +msgstr "" +"Los talles de camisa Europeos son un poco más reducidos, por lo cual podrÃas" +" considerar elegir uno más grande." + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:54 +msgid "Fit" +msgstr "Estilo" + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:58 +#: tmp/cache_locale/af/af919ed4d7946ee7ed7d71a5580f4c75c5fb2b9374dd8d99d3a0671f71654f60.php:508 +msgid "Select Fit" +msgstr "Elegà estilo" + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:62 +#: tmp/cache_locale/af/af919ed4d7946ee7ed7d71a5580f4c75c5fb2b9374dd8d99d3a0671f71654f60.php:500 +msgid "Slim" +msgstr "Esbelto" + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:66 +#: tmp/cache_locale/af/af919ed4d7946ee7ed7d71a5580f4c75c5fb2b9374dd8d99d3a0671f71654f60.php:496 +msgid "Classic" +msgstr "Clásico" + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:74 +#: tmp/cache_locale/af/af919ed4d7946ee7ed7d71a5580f4c75c5fb2b9374dd8d99d3a0671f71654f60.php:504 +msgid "European" +msgstr "Europeo" + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:84 +msgid "Size" +msgstr "Talle" + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:88 +#: tmp/cache_locale/af/af919ed4d7946ee7ed7d71a5580f4c75c5fb2b9374dd8d99d3a0671f71654f60.php:512 +msgid "Select Size" +msgstr "Elegà talle" + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:92 +msgid "S" +msgstr "S" + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:96 +msgid "M" +msgstr "M" + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:100 +msgid "L" +msgstr "L" + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:104 +msgid "XL" +msgstr "XL" + +#: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:108 +msgid "XXL" +msgstr "XXL" + +#: tmp/cache_locale/dd/ddde851dcf0f4bcfdf69b2fb2bdd731c4f85ce373ca3ec850a7ca8bbc00dfb85.php:47 +#: tmp/cache_locale/dd/ddde851dcf0f4bcfdf69b2fb2bdd731c4f85ce373ca3ec850a7ca8bbc00dfb85.php:70 +msgid "Privacy and freedom online should be the default." +msgstr "La privacidad y la libertad en lÃnea debieran ser por defecto." + +#: tmp/cache_locale/dd/ddde851dcf0f4bcfdf69b2fb2bdd731c4f85ce373ca3ec850a7ca8bbc00dfb85.php:49 +#: tmp/cache_locale/dd/ddde851dcf0f4bcfdf69b2fb2bdd731c4f85ce373ca3ec850a7ca8bbc00dfb85.php:72 +msgid "Donate to the Tor Project." +msgstr "Doná al Tor Project." + +#: tmp/cache_locale/dd/ddde851dcf0f4bcfdf69b2fb2bdd731c4f85ce373ca3ec850a7ca8bbc00dfb85.php:58 +msgid "summary_large_image" +msgstr "summary_large_image" + +#: tmp/cache_locale/dd/ddde851dcf0f4bcfdf69b2fb2bdd731c4f85ce
[tor-commits] [translation/donatepages-messagespot] https://gitweb.torproject.org/translation.git/commit/?h=donatepages-messagespot
commit 755d006a1fb1415ce149adc68c5fe3b1c4a7af40 Author: Translation commit bot Date: Sat Nov 14 12:45:16 2020 + https://gitweb.torproject.org/translation.git/commit/?h=donatepages-messagespot --- locale/es_AR/LC_MESSAGES/messages.po | 17 - 1 file changed, 8 insertions(+), 9 deletions(-) diff --git a/locale/es_AR/LC_MESSAGES/messages.po b/locale/es_AR/LC_MESSAGES/messages.po index dbc40a73ac..d8c4161da6 100644 --- a/locale/es_AR/LC_MESSAGES/messages.po +++ b/locale/es_AR/LC_MESSAGES/messages.po @@ -27,7 +27,7 @@ msgstr "Recuperá Internet con Tor." #: tmp/cache_locale/ff/ffee28cfc961a339d813aed75493753fcc9e985dfa212e1af03fc089d5c3fdb0.php:112 msgid "Give today, and Mozilla will match your donation." -msgstr "Dá hoy, y Mozilla emparejará tu donación." +msgstr "Dá hoy, y Mozilla va a emparejar tu donación." #: tmp/cache_locale/eb/eb66db0fc2349cdc00200df1ba86814695c5deb02dc0f5941de0ada2f44eb52b.php:47 msgid "" @@ -537,7 +537,7 @@ msgid "" "Strength in Numbers t-shirt." msgstr "" "Tené las remeras de este año Recuperá a Internet Con Tor y: Fortaleza en " -"Números." +"Cantidad." #: tmp/cache_locale/af/af919ed4d7946ee7ed7d71a5580f4c75c5fb2b9374dd8d99d3a0671f71654f60.php:277 msgid "sweatshirt" @@ -733,7 +733,7 @@ msgid "" "reliable source of funds to help us be agile in an ever-changing privacy " "landscape and we send you exclusive gifts to show our appreciation!" msgstr "" -"Los Defendsores de la Privacidad empeñan una modesta cantidad cada mes - " +"Los Defensores de la Privacidad empeñan una modesta cantidad cada mes - " "creando una fuente fija y confiable de fondos para ayudarnos a ser ágiles en" " un paisaje de privacidad siempre cambiante, ¡y te enviamos regalos " "exclusivos para mostrar nuestro aprecio!" @@ -1524,8 +1524,7 @@ msgstr "" #: tmp/cache_locale/7d/7d56367a61f987367eeb2a89d0c6db83fd0801cce86278bf7e99ed39b5b46254.php:409 msgid "They're run by nice people who are part of the Tor community." -msgstr "" -"Ellas son manejadas por gente agradable que son parte de la comunidad Tor." +msgstr "Son manejadas por gente agradable que son parte de la comunidad Tor." #: tmp/cache_locale/7d/7d56367a61f987367eeb2a89d0c6db83fd0801cce86278bf7e99ed39b5b46254.php:415 msgid "" @@ -1785,8 +1784,8 @@ msgid "" "the charitable organization of your choice." msgstr "" "La diferencia es que cuando comprás en Amazon Smile, la Fundación Amazon " -"Smile donará 0,5% del precio de compra de los productos calificados a la " -"organización caritativa de tu elección." +"Smile va a donar 0,5% del precio de compra de los productos calificados a la" +" organización caritativa de tu elección." #: tmp/cache_locale/7d/7d56367a61f987367eeb2a89d0c6db83fd0801cce86278bf7e99ed39b5b46254.php:553 msgid "" @@ -1964,7 +1963,7 @@ msgid "" "your post." msgstr "" "Si hablás acerca de tu donación en las redes sociales (¡y apreciamos que lo " -"hagas!), lo tomaremos como que significa que está bien para nosotros si " +"hagas!), lo vamos a tomar como significando que está bien para nosotros si " "correspondemos o amplificamos tu posteo." #: tmp/cache_locale/7d/7d56367a61f987367eeb2a89d0c6db83fd0801cce86278bf7e99ed39b5b46254.php:653 @@ -2557,7 +2556,7 @@ msgid "" "class=\"hyperlinks links\">www.state.nj.us/lps/ca/charfrm.htm." msgstr "" "La información presentada con el fiscal general concerniente a esta " -"solicitación benéfica, y el porcentaje de contribuciones recibidas por la " +"solicitud benéfica, y el porcentaje de contribuciones recibidas por la " "organización benéfica durante el último periodo reportado que fuera dedicado" " al propósito benéfico, pueden ser obtenidos a través del fiscal general del" " estado de New Jersey, llamando al (973) 504-6215, y está disponible en " ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/communitytpo-contentspot] https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot
commit 7ce097f5b507cab230628edb3325ddd4b376a977 Author: Translation commit bot Date: Sat Nov 14 12:15:17 2020 + https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot --- contents+he.po | 26 +- 1 file changed, 21 insertions(+), 5 deletions(-) diff --git a/contents+he.po b/contents+he.po index a7a76395de..4f853e4962 100644 --- a/contents+he.po +++ b/contents+he.po @@ -7939,7 +7939,7 @@ msgstr "" #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "### Find Tor-friendly ISPs." -msgstr "" +msgstr "### ××פ×ש ××ר ×¡×¤×§× ×©×¨×ת ××× ×¨× × ××××××ת××× × Tor." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -7947,13 +7947,14 @@ msgid "" "A good ISP is one that offers cheap bandwidth and is not being used by other" " members of the Tor community." msgstr "" +"ISP ××× ×× × ××× ×©×צ××¢ ר×× ×¤×¡ ×××× ×ש××× × ×ש×××ש ×©× ×××¨× ×§×××ת Tor ××ר××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "" "Before you continue, you may ask the Tor community if your choice is a good " "one." -msgstr "" +msgstr "××¤× × ×©×ª×ש×××, ×××× ×©×ª×©××× ×ת ק×××ת Tor ×× ×××¨×ª× ××× ×××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -7961,6 +7962,8 @@ msgid "" "We very much need diversity, and it does not help if we pool too many exits " "at one friendly ISP." msgstr "" +"×× × ××× ×ק×ק×× ××××××, ××××ר ××× × ×¢××ר ×× ×× × ×××××× ××תר ××× ×צ×××ת ××¦× ISP" +" ××××××ª× ×××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -7968,6 +7971,8 @@ msgid "" "In any case, add the ISP to the [GoodBadISPs](/relay/community-resources" "/good-bad-isps/) page." msgstr "" +"××× ×קר×, ××ס××¤× ×ת ספק שר×ת ×××× ××¨× × ×××£ [GoodBadISPs](/relay/community-" +"resources/good-bad-isps/)." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -7975,6 +7980,8 @@ msgid "" "To find an ISP, go through forums and sites where ISPs posts their latest " "deals, and contact them about Tor hosting." msgstr "" +"××× ××צ×× ISP, ×¤× × ×פ×ר×××× ×××תר×× ×©× ×× ×פרס××× ×ת ×עסק×ת ×××ר×× ×ת ש×××, " +"××¦×¨× ×§×©×¨ ×××× ×ר×× Tor." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -7982,18 +7989,20 @@ msgid "" "Once you identified your ISP, you can follow the two-step advice of " "TorServers.net." msgstr "" +"×××ר ש××ª×¨×ª× ×ת ספק שר×ת ×××× ××¨× × ×©×××, ת××× ××צע ×ת××עצ×ת ×× ×©×××ת ×©× " +"TorServers.net." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "1. Ask if the ISP is okay with a Tor exit" -msgstr "" +msgstr "1. ש××× ×ת ×ספק ×× ×ק×××ת ×¢××× ×צ××ת Tor" #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "" "2. If they come back positively, ask them if they are OK with an IP range " "reassignment." -msgstr "" +msgstr "2. ×× ×××©×ª× ×××××ת, ש××× ×××ª× ×× ×ק××× ×¢×××× ××××§× ×××ש ×©× ×××× IP." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -8002,6 +8011,9 @@ msgid "" "organization filled with security professionals, and that all will be good, " "and why IP reassignment helps reduce their workload." msgstr "" +"×× ××, ×¢×××× ×ª×××× ××ס××ר ש××ª× ×ר××× ××××¦× ×× ×××× ××××× ×©××× × ×××ר×ת ר××× " +"××ש×פע ××קצ××¢× ××, ×ש××× ×××× ×ס×ר, ××××¦× ××××§× ×××ש ×©× IP ×¢××רת ××ק××× ×ת " +"××¢×
[tor-commits] [translation/communitytpo-contentspot] https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot
commit 80dcc7d0fbf0d881a809a31c35e95d264630d0ba Author: Translation commit bot Date: Sat Nov 14 11:45:22 2020 + https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot --- contents+he.po | 6 ++ 1 file changed, 6 insertions(+) diff --git a/contents+he.po b/contents+he.po index 6cc038f7c3..a7a76395de 100644 --- a/contents+he.po +++ b/contents+he.po @@ -7922,6 +7922,10 @@ msgid "" "space is \"trusted\" to access these library resources, the university is " "forced to maintain an iron grip on all its addresses." msgstr "" +"××××××ת, ×ת×××ת ×שת×ש×× ×שר ××× × ××××ת×× ×¢× ××× ×××ª× ××קצ×× ×××ססת IP ××× " +"×ר×× ×©×¨××ª× ×¡×¤×¨×× ×שת×ש×× -- ×× ×× ×ר×× ××ת×××ת ×©× ×××× ××רס××× ××× × ×××××× " +"××××©× ××ק×ר×ת ספר×× ××××, ×××× ××רס××× × ××צת ××××× ××××× ××××§× ×©× ×× ××ת×××ת" +" ש××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -7929,6 +7933,8 @@ msgid "" "Also read [How do I make my University / ISP / etc happy with my exit " "node?](/relay/community-resources/tor-relay-universities/)" msgstr "" +"×¢××× × ×× [How do I make my University / ISP / etc happy with my exit " +"node?](/relay/community-resources/tor-relay-universities/)" #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/tails-misc_release] https://gitweb.torproject.org/translation.git/commit/?h=tails-misc_release
commit f65e264e7320680f2d6f2fd7f03fc934f6317d25 Author: Translation commit bot Date: Sat Nov 14 11:16:42 2020 + https://gitweb.torproject.org/translation.git/commit/?h=tails-misc_release --- cs.po | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/cs.po b/cs.po index e14de8fdbc..2474a8391b 100644 --- a/cs.po +++ b/cs.po @@ -24,7 +24,7 @@ msgstr "" "Project-Id-Version: Tor Project\n" "Report-Msgid-Bugs-To: \n" "POT-Creation-Date: 2020-11-11 08:56+0100\n" -"PO-Revision-Date: 2020-11-14 10:45+\n" +"PO-Revision-Date: 2020-11-14 10:47+\n" "Last-Translator: Fourdee Foureight \n" "Language-Team: Czech (http://www.transifex.com/otf/torproject/language/cs/)\n" "MIME-Version: 1.0\n" ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/communitytpo-contentspot] https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot
commit 1d8514cbefe5eaedce52d7195156b86f3f5c8fb5 Author: Translation commit bot Date: Sat Nov 14 11:15:14 2020 + https://gitweb.torproject.org/translation.git/commit/?h=communitytpo-contentspot --- contents+he.po | 12 ++-- 1 file changed, 10 insertions(+), 2 deletions(-) diff --git a/contents+he.po b/contents+he.po index 698e92b362..6cc038f7c3 100644 --- a/contents+he.po +++ b/contents+he.po @@ -7860,6 +7860,7 @@ msgid "" "Our aim is to provide a general description of the legal issues surrounding " "Tor exit relaying." msgstr "" +"××××¨× ×©×× × ×ספק ת××ר ×××× ×©× × ×ש××× ××ק××× ××¢××פ×× ×ת × ×ת×× ×צ×××ת Tor." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -7869,6 +7870,7 @@ msgid "" "Different factual situations and different legal jurisdictions will result " "in different answers to a number of questions." msgstr "" +"×צ××× ×¢×××ת××× ×©×× ×× ×××××¨× ×©×פ×× ×©×× ×× ×ת×××× ×תש×××ת ש×× ×ת ×××× ××ש×××ת." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -7879,16 +7881,18 @@ msgid "" "specific legal problems, issues, or questions, seek a complete review of " "your situation with a lawyer licensed to practice in your jurisdiction." msgstr "" +"×××, ×× × ×× ×ª×¤×¢×× ××¤× ××××¢ ×× ××××. ×× ×ש ××× ××¢××ת ×שפ×××ת ××ש××, ××¢××ת ×× " +"ש×××ת, ×¢××× × ×סק××¨× ××××× ××¤× ×צ××× ×¢× ×¢××¨× ××× ×¨×©×× ×פע×××ת ××××ר××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "## Hosting" -msgstr "" +msgstr "## Hosting" #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) msgid "### Tor at Universities: Find allies." -msgstr "" +msgstr "### Tor ×××× ××רס××××ת: ××¤×©× ×©×תפ××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -7898,6 +7902,8 @@ msgid "" "Find some professors (or deans!) who like the idea of supporting and/or " "researching anonymity on the Internet." msgstr "" +"××¤×©× ××× ×¤×¨×פס×ר×× (×× ×¨×§××ר××!) ×שר ×××××× ×ת ×רע××× ×ת××× ×/×× ××צע ×××§×¨× " +"×× ×× ××××ת ×××× ××¨× ×." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) @@ -7905,6 +7911,8 @@ msgid "" "If possible, use an extra IP range whose abuse contact doesn't go through " "the main university abuse team." msgstr "" +"×× ×פשר, ×שת×ש ××××× IP × ×סף ×שר ××§×¨× × ×צ×× ××¨×¢× ×× ×¢××ר×× ××¨× ×¦××ת ×× ×צ×× " +"××¨×¢× ××ר××× ×©× ×××× ××רס×××." #: https//community.torproject.org/relay/community-resources/tor-exit-guidelines/ #: (content/relay-operations/community-resources/tor-exit-guidelines/contents+en.lrpage.body) ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/tails-misc] https://gitweb.torproject.org/translation.git/commit/?h=tails-misc
commit 3bc15ca8705b20c0207b269c381a598cf9f3e739 Author: Translation commit bot Date: Sat Nov 14 11:15:56 2020 + https://gitweb.torproject.org/translation.git/commit/?h=tails-misc --- cs.po | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/cs.po b/cs.po index 9552bb22d8..afc68e4fe5 100644 --- a/cs.po +++ b/cs.po @@ -24,7 +24,7 @@ msgstr "" "Project-Id-Version: Tor Project\n" "Report-Msgid-Bugs-To: \n" "POT-Creation-Date: 2020-11-11 08:56+0100\n" -"PO-Revision-Date: 2020-11-14 10:45+\n" +"PO-Revision-Date: 2020-11-14 10:47+\n" "Last-Translator: Fourdee Foureight \n" "Language-Team: Czech (http://www.transifex.com/otf/torproject/language/cs/)\n" "MIME-Version: 1.0\n" @@ -2198,7 +2198,7 @@ msgstr "Povolit NezabezpeÄený prohlÞeÄ" #: ../config/chroot_local-includes/usr/share/tails/greeter/main.ui.in:100 msgid "Settings were loaded from the persistent storage." -msgstr "" +msgstr "Nastavenà bylo naÄteno z trvalého úložiÅ¡tÄ." #: ../config/chroot_local-includes/usr/share/tails/greeter/main.ui.in:168 msgid "" @@ -2274,7 +2274,7 @@ msgstr "Disky a svazky" msgid "" "This application is not affiliated with or endorsed by the VeraCrypt project" " or IDRIX." -msgstr "" +msgstr "Tato aplikace nenà spojena s ani schválena projektem VeraCrypt ani IDRIX." #: ../config/chroot_local-includes/usr/share/tails/unlock-veracrypt-volumes/volume.ui.in:29 msgid "_Open" ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits
[tor-commits] [translation/tails-misc_release] https://gitweb.torproject.org/translation.git/commit/?h=tails-misc_release
commit 992fd1430c70cf54ebf50b1aa2d67e6ecfe1ecfb Author: Translation commit bot Date: Sat Nov 14 10:46:33 2020 + https://gitweb.torproject.org/translation.git/commit/?h=tails-misc_release --- cs.po | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/cs.po b/cs.po index 3ac54aadda..e14de8fdbc 100644 --- a/cs.po +++ b/cs.po @@ -24,7 +24,7 @@ msgstr "" "Project-Id-Version: Tor Project\n" "Report-Msgid-Bugs-To: \n" "POT-Creation-Date: 2020-11-11 08:56+0100\n" -"PO-Revision-Date: 2020-11-14 10:16+\n" +"PO-Revision-Date: 2020-11-14 10:45+\n" "Last-Translator: Fourdee Foureight \n" "Language-Team: Czech (http://www.transifex.com/otf/torproject/language/cs/)\n" "MIME-Version: 1.0\n" ___ tor-commits mailing list tor-commits@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits