Bug 41162,41163: Prepare Tor, Mullvad Browsers 13.0.16

projects/browser/Bundle-Data/Docs-MB/ChangeLog.txt

+Mullvad Browser 13.0.16 - June 11th 2024
+* All Platforms
+   * Updated Firefox to 115.12.0esr
+   * Updated uBlock Origin to 1.58.0
+   * Bug 310: Rebase Mullvad Browser Stable 13.0 onto 115.12.0esr [mullvad-browser]
+   * Bug 42621: Backport security fixes from Firefox 127 [tor-browser]
+
+Mullvad Browser 13.5a9 - June 10 2024
+ * All Platforms
+   * Updated Firefox to 115.12.0esr
+   * Updated uBlock Origin to 1.58.0
+   * Bug 290: Add default bookmarks in the alpha channels for testing [mullvad-browser]
+   * Bug 308: Rebase Mullvad Browser stable onto 115.12.0esr [mullvad-browser]
+   * Bug 41467: compat: beacon: re-enable the API but transform it to a no-op [tor-browser]
+ * Windows + macOS
+   * Bug 42586: Add support link to OS deprecation message [tor-browser]
+ * Linux
+   * Bug 29: rpm installation package for Linux [mullvad-browser]
+ * Build System
+   * All Platforms
+     * Bug 301: Deb package in the debian software installer is showing the License as "Proprietary" [mullvad-browser]
+     * Bug 42594: Update mach to work with python 3.12 [tor-browser]
+     * Bug 41153: Update README for Ubuntu 24.04 unprivileged user namespace changes [tor-browser-build]
+     * Bug 41154: Update keyring/boklm.gpg for new subkeys [tor-browser-build]
+   * Windows
+     * Bug 41151: Explicitly initialize the plugin directory on the Windows installer [tor-browser-build]
+   * Linux
+     * Bug 41129: Make rpm package for Mullvad Browser [tor-browser-build]
+
+Mullvad Browser 13.5a8 - May 16 2024
+ * All Platforms
+   * Updated Firefox to 115.11.0esr
+   * Bug 222: Hide "List all tabs" when the tabs don't overflow [mullvad-browser]
+   * Bug 241: Move network.proxy.failover_direct=false pref to base-browser [mullvad-browser]
+   * Bug 284: Should we reflect the actual channel in about:debugging? [mullvad-browser]
+   * Bug 290: Add default bookmarks in the alpha channels for testing [mullvad-browser]
+   * Bug 297: Rebase Mullvad Browser alpha onto 115.11.0esr [mullvad-browser]
+   * Bug 41930: intl.accept_languages gets into a stuck modifed state [tor-browser]
+   * Bug 42391: IndexDB's private directory not removed on browser shutdown in global private browsing mode [tor-browser]
+   * Bug 42405: Fix betterboxing + findbar horizontal bounce if the scrollbar is not an overlay [tor-browser]
+   * Bug 42565: Backport Android and desktop security fixes from Firefox 126 [tor-browser]
+   * Bug 42574: Exempt pdf.js from letterboxing [tor-browser]
+   * Bug 42583: Modify moz-support-link [tor-browser]
+ * Windows + macOS
+   * Bug 41405: Win ≤8.1 and macOS ≤10.14 not supported in ESR 128 [tor-browser]
+   * Bug 42347: Add a banner warning users about the upcoming EOL for Win ≤8.1 and macOS ≤10.14 [tor-browser]
+ * Windows
+   * Bug 278: Create asset(s) for the Mullvad Browser installer [mullvad-browser]
+ * Linux
+   * Bug 28: deb installation package for Linux [mullvad-browser]
+   * Bug 295: Filepicker string chars are tofu for the .deb package in Ubuntu 22.04 / Debian 11 [mullvad-browser]
+   * Bug 41135: 13.5a7's start-tor-browser seems to break KeePassXC-Browser? [tor-browser-build]
+   * Bug 41136: Include *.deb in the list of files to gpg sign [tor-browser-build]
+ * Build System
+   * All Platforms
+     * Bug 41001: Create Release Prep MR generating script [tor-browser-build]
+     * Bug 41148: Update projects/browser/Bundle-Data/Docs/Licenses/NoScript.txt [tor-browser-build]
+     * Bug 40076: Correctly refresh file when computing input_files_id and a file is set as refresh_input [rbm]
+   * Windows
+     * Bug 200: Build system installer for Mullvad Browser on Windows [mullvad-browser]
+
 Mullvad Browser 13.0.15 - May 15 2024
  * All Platforms
    * Updated Firefox to 115.11.0esr

projects/browser/Bundle-Data/Docs-TBB/ChangeLog.txt

+Tor Browser 13.0.16 - June 11th 2024
+ * All Platforms
+   * Updated Tor to 0.4.8.12
+   * Updated OpenSSL to 3.0.14
+   * Bug 42625: Rebase Tor Browser Stable 13.0 onto 115.12.0esr [tor-browser]
+ * Windows + macOS + Linux
+   * Updated Firefox to 115.12.0esr
+ * Android
+   * Updated GeckoView to 115.12.0esr
+   * Bug 42621: Backport security fixes from Firefox 127 [tor-browser]
+ * Build System
+   * All Platforms
+     * Updated Go to 1.21.11
+
+Tor Browser 13.5a9 - June 10 2024
+ * All Platforms
+   * Updated Tor to 0.4.8.12
+   * Updated OpenSSL to 3.0.14
+   * Bug 41467: compat: beacon: re-enable the API but transform it to a no-op [tor-browser]
+   * Bug 42604: Add some debug logs about circuits [tor-browser]
+   * Bug 42614: Rebase Tor Browser Stable onto 115.12.0esr [tor-browser]
+ * Windows + macOS + Linux
+   * Updated Firefox to 115.12.0esr
+   * Bug 41149: Add be, bg and pt-PT translations to nightlies [tor-browser-build]
+ * Windows + macOS
+   * Bug 42586: Add support link to OS deprecation message [tor-browser]
+ * Windows
+   * Bug 41859: Font used for IPs in circuit display is illegible [tor-browser]
+ * Android
+   * Updated GeckoView to 115.12.0esr
+   * Bug 42593: Unable to disable bridges after they have been configured and successfully bootstrapped [tor-browser]
+   * Bug 42621: Backport security fixes from Firefox 127 [tor-browser]
+ * Build System
+   * All Platforms
+     * Updated Go to 1.21.11
+     * Bug 42594: Update mach to work with python 3.12 [tor-browser]
+     * Bug 41153: Update README for Ubuntu 24.04 unprivileged user namespace changes [tor-browser-build]
+     * Bug 41154: Update keyring/boklm.gpg for new subkeys [tor-browser-build]
+   * Windows
+     * Bug 41150: Do not check for SSE2 on the Windows installer [tor-browser-build]
+   * Linux
+     * Bug 41126: Make deb and rpm packages for Tor Browser [tor-browser-build]
+     * Bug 41160: Enable build of Tor Browser rpm/deb packages for nightly only [tor-browser-build]
+   * Android
+     * Bug 42568: Remove legacy tor dependencies from firefox-android [tor-browser]
+     * Bug 42569: Remove tor-onion-proxy-library and and tor-android-service deployment/ingestion steps from firefox-android dev tools/scripts [tor-browser]
+     * Bug 42570: Add tor-expert-bundle aar depoyment/ingestion step to firefox-android dev tools/scripts [tor-browser]
+     * Bug 42581: Check if a file exists before trying to sign it in tools/tba-sign-devbuild.sh [tor-browser]
+     * Bug 41139: Remove tor-android-service and tor-onion-proxy-library dependencies and ingestion steps from firefox-android config and build script [tor-browser-build]
+     * Bug 41140: Remove tor-onion-proxy-library and tor-android-service projects from tor-browser-build [tor-browser-build]
+     * Bug 41141: Add tor-expert-bundle aar dependency to firefox-android [tor-browser-build]
+
+Tor Browser 13.5a8 - May 16 2024
+ * All Platforms
+   * Bug 42290: "DuckDuckGoOnion" is a weird naming format for onion search engines [tor-browser]
+   * Bug 42549: Remove brand.dtd [tor-browser]
+   * Bug 42560: Rebase Tor Browser alpha onto 115.11.0esr [tor-browser]
+   * Bug 42565: Backport Android and desktop security fixes from Firefox 126 [tor-browser]
+   * Bug 42583: Modify moz-support-link [tor-browser]
+   * Bug 41137: Build gcc-cross and tor-expert-bundle for linux-aarch64 [tor-browser-build]
+   * Bug 241: Move network.proxy.failover_direct=false pref to base-browser [mullvad-browser]
+ * Windows + macOS + Linux
+   * Updated Firefox to 115.11.0esr
+   * Bug 41621: Tweak about:torconnect styling [tor-browser]
+   * Bug 41930: intl.accept_languages gets into a stuck modifed state [tor-browser]
+   * Bug 42391: IndexDB's private directory not removed on browser shutdown in global private browsing mode [tor-browser]
+   * Bug 42405: Fix betterboxing + findbar horizontal bounce if the scrollbar is not an overlay [tor-browser]
+   * Bug 42541: Circuit Display does not work when using Conjure pluggable transport [tor-browser]
+   * Bug 42542: Quirks when onion authentication prompt is shared between two tabs [tor-browser]
+   * Bug 42557: Fix regression in Onion Services authentication prompt focus [tor-browser]
+   * Bug 42573: Tweak language notification to avoid formatValue [tor-browser]
+   * Bug 42574: Exempt pdf.js from letterboxing [tor-browser]
+ * Windows + macOS
+   * Bug 41405: Win ≤8.1 and macOS ≤10.14 not supported in ESR 128 [tor-browser]
+   * Bug 42347: Add a banner warning users about the upcoming EOL for Win ≤8.1 and macOS ≤10.14 [tor-browser]
+ * Linux
+   * Bug 41136: Include *.deb in the list of files to gpg sign [tor-browser-build]
+ * Android
+   * Updated GeckoView to 115.11.0esr
+   * Bug 42317: Update "Security Settings" menu item [tor-browser]
+   * Bug 42409: TTP-03-011 WP3: Potential DoS due to Deep Link abuse [tor-browser]
+   * Bug 42552: TBA: formatting APIs are en-US only [tor-browser]
+   * Bug 42562: Restrict the accepted languages to the ones whose localization is available [tor-browser]
+   * Bug 42566: Remove 'Enable beta connection features' menu item in stable release channel [tor-browser]
+   * Bug 42567: Remove 'Enable beta connection features' toggle [tor-browser]
+   * Bug 42571: The new bootstrap on Android breaks if the browser goes in background [tor-browser]
+   * Bug 42576: Backport Bug 1885171: use the private keyboard for prompts on Android [tor-browser]
+   * Bug 42578: Reject Android "open in Tor Browser" intent [tor-browser]
+   * Bug 42582: Accepted languages should use id and he on Android [tor-browser]
+   * Bug 41143: Enable multi-locales also on GeckoView [tor-browser-build]
+ * Build System
+   * All Platforms
+     * Updated Go to 1.21.10
+     * Bug 41001: Create Release Prep MR generating script [tor-browser-build]
+     * Bug 41148: Update projects/browser/Bundle-Data/Docs/Licenses/NoScript.txt [tor-browser-build]
+     * Bug 40076: Correctly refresh file when computing input_files_id and a file is set as refresh_input [rbm]
+   * Android
+     * Bug 42568: Remove legacy tor dependencies from firefox-android [tor-browser]
+
 Tor Browser 13.0.15 - May 14 2024
  * All Platforms
     * Bug 42559: Rebase Tor Browser stable onto 115.11.0esr [tor-browser]

projects/browser/config

@@ -100,9 +100,9 @@ input_files:
   - URL: https://addons.mozilla.org/firefox/downloads/file/4206186/noscript-11.4.29.xpi
     name: noscript
     sha256sum: 05b98840b05ef2acbac333543e4b7c3d40fee2ce5fb4e29260b05e2ff6fe24cd
-  - URL: https://addons.mozilla.org/firefox/downloads/file/4261710/ublock_origin-1.57.2.xpi
+  - URL: https://addons.mozilla.org/firefox/downloads/file/4290466/ublock_origin-1.58.0.xpi
     name: ublock-origin
-    sha256sum: 9928e79a52cecf7cfa231fdb0699c7d7a427660d94eb10d711ed5a2f10d2eb89
+    sha256sum: 470c56994a7174db21578adce598b158a5dc0970c87c5cfe889ac632bd3085ea
     enable: '[% c("var/mullvad-browser") %]'
   - URL: https://cdn.mullvad.net/browser-extension/0.9.0/mullvad-browser-extension-0.9.0.xpi
     name: mullvad-extension

projects/firefox-android/config

@@ -16,7 +16,7 @@ container:
 var:
   fenix_version: 115.2.1
   browser_branch: 13.0-1
-  browser_build: 17
+  browser_build: 18
   variant: Beta
   # This should be updated when the list of gradle dependencies is changed.
   gradle_dependencies_version: 1

projects/firefox/config

@@ -14,11 +14,11 @@ container:
   use_container: 1
 
 var:
-  firefox_platform_version: 115.11.0
+  firefox_platform_version: 115.12.0
   firefox_version: '[% c("var/firefox_platform_version") %]esr'
   browser_series: '13.0'
   browser_branch: '[% c("var/browser_series") %]-1'
-  browser_build: 2
+  browser_build: 1
   branding_directory_prefix: 'tb'
   copyright_year: '[% exec("git show -s --format=%ci").remove("-.*") %]'
   nightly_updates_publish_dir: '[% c("var/nightly_updates_publish_dir_prefix") %]nightly-[% c("var/osname") %]'

projects/geckoview/config

@@ -14,11 +14,11 @@ container:
   use_container: 1
 
 var:
-  geckoview_version: 115.11.0esr
+  geckoview_version: 115.12.0esr
   browser_branch: 13.0-1
   # GeckoView and Firefox are out-of-sync because we needed to build a
   # 13.0.15-build2 with Java-only changes.
-  browser_build: 3
+  browser_build: 1
   copyright_year: '[% exec("git show -s --format=%ci").remove("-.*") %]'
   gitlab_project: https://gitlab.torproject.org/tpo/applications/tor-browser
   git_commit: '[% exec("git rev-parse HEAD") %]'

projects/go/config

 # vim: filetype=yaml sw=2
-version: '[% IF c("var/use_go_1_20") %]1.20.14[% ELSE %]1.21.10[% END %]'
+version: '[% IF c("var/use_go_1_20") %]1.20.14[% ELSE %]1.21.11[% END %]'
 filename: '[% project %]-[% c("version") %]-[% c("var/osname") %]-[% c("var/build_id") %].tar.[% c("compress_tar") %]'
 container:
   use_container: 1
@@ -121,7 +121,7 @@ input_files:
     enable: '[% ! c("var/linux") %]'
   - URL: 'https://go.dev/dl/go[% c("version") %].src.tar.gz'
     name: go
-    sha256sum: 900e0afe8900c1ee65a8a8c4f0c5a3ca02dcf85c1d1cb13a652be22c21399394
+    sha256sum: 42aee9bf2b6956c75a7ad6aa3f0a51b5821ffeac57f5a2e733a2d6eae1e6d9d2
     enable: '[% !c("var/use_go_1_20") %]'
   - URL: 'https://go.dev/dl/go[% c("version") %].src.tar.gz'
     name: go

projects/manual/config

 # vim: filetype=yaml sw=2
 # To update, see doc/how-to-update-the-manual.txt
 # Remember to update also the package's hash, with the version!
-version: 167329
+version: 172720
 filename: 'manual-[% c("version") %]-[% c("var/build_id") %].tar.[% c("compress_tar") %]'
 container:
   use_container: 1
@@ -23,6 +23,6 @@ input_files:
   - project: container-image
   - URL: 'https://build-sources.tbb.torproject.org/manual_[% c("version") %].zip'
     name: manual
-    sha256sum: b9a2b219018cb41a1c524c9105d75fcec11861ecafdd00a49b191bad09dc8f49
+    sha256sum: f2abffe1471ae63046cff06b853685c6614e117cc67bdf51228dc0792344441c
   - filename: packagemanual.py
     name: package_script

projects/openssl/config

 # vim: filetype=yaml sw=2
-version: 3.0.13
+version: 3.0.14
 filename: '[% project %]-[% c("version") %]-[% c("var/osname") %]-[% c("var/build_id") %].tar.[% c("compress_tar") %]'
 container:
   use_container: 1
@@ -33,4 +33,4 @@ input_files:
   - name: '[% c("var/compiler") %]'
     project: '[% c("var/compiler") %]'
   - URL: 'https://www.openssl.org/source/openssl-[% c("version") %].tar.gz'
-    sha256sum: 88525753f79d3bec27d2fa7c66aa0b92b3aa9498dafd93d7cfa4b3780cdae313
+    sha256sum: eeca035d4dd4e84fc25846d952da6297484afa0650a6f84c682e39df3a4123ca

projects/tor/config

 # vim: filetype=yaml sw=2
 filename: '[% project %]-[% c("version") %]-[% c("var/osname") %]-[% c("var/build_id") %].tar.[% c("compress_tar") %]'
-version: 0.4.8.11
+version: 0.4.8.12
 git_hash: 'tor-[% c("version") %]'
 git_url: https://gitlab.torproject.org/tpo/core/tor.git
 git_submodule: 1

projects/translation/config

@@ -12,19 +12,19 @@ compress_tar: 'gz'
 steps:
   base-browser:
     base-browser: '[% INCLUDE build %]'
-    git_hash: a28a8b2cb9e207d12fca11181818c0a0694b56af
+    git_hash: f28525699864f4e3d764c354130bd898ce5b20aa
     targets:
       nightly:
         git_hash: 'base-browser'
   tor-browser:
     tor-browser: '[% INCLUDE build %]'
-    git_hash: e03ffdea5b74ad280616dccd21744cba7b2d4565
+    git_hash: b5d79336411e5a59c4861341ef9aa7353e0bcad9
     targets:
       nightly:
         git_hash: 'tor-browser'
   mullvad-browser:
     mullvad-browser: '[% INCLUDE build %]'
-    git_hash: c5361cb496ae7e047fd9226139537f1fcfc7938d
+    git_hash: bff8092bbe5ae93b2c162ade300d739b2cd9e92d
     targets:
       nightly:
         git_hash: 'mullvad-browser'
@@ -32,7 +32,7 @@ steps:
     fenix: '[% INCLUDE build %]'
     # We need to bump the commit before releasing but just pointing to a branch
     # might cause too much rebuidling of the Firefox part.
-    git_hash: d4f4bc1c8cb788450b17801edc0c22fc76f3b16c
+    git_hash: ec771d7e6bddfc447576f15664c5d6f0efecf868
     compress_tar: 'zst'
     targets:
       nightly:

rbm.conf

@@ -73,13 +73,13 @@ buildconf:
   git_signtag_opt: '-s'
 
 var:
-  torbrowser_version: '13.0.15'
-  torbrowser_build: 'build2'
+  torbrowser_version: '13.0.16'
+  torbrowser_build: 'build1'
   torbrowser_incremental_from:
+    - '13.0.15'
     - '13.0.14'
     - '13.0.13'
-    - '13.0.12'
-  browser_release_date: '2024/05/10 15:00:00'
+  browser_release_date: '2024/05/10 19:00:00'
   browser_release_date_timestamp: '[% USE date; date.format(c("var/browser_release_date"), "%s") %]'
   updater_enabled: 1
   build_mar: 1