1. 15 Sep, 2020 16 commits
    • Kathleen Brade's avatar
      Bug 16620: Clear window.name when no referrer sent · 25edcec8
      Kathleen Brade authored
      Convert JS implementation (within Torbutton) to a C++ browser patch.
      25edcec8
    • Mike Perry's avatar
      Bug 2176: Rebrand Firefox to TorBrowser · 995f759c
      Mike Perry authored
      See also Bugs #5194, #7187, #8115, #8219.
      
      This patch does some basic renaming of Firefox to TorBrowser. The rest of the
      branding is done by images and icons.
      
      Also fix bug 27905.
      
      Bug 25702: Update Tor Browser icon to follow design guidelines
      
      - Updated all of the branding in /browser/branding/official with new 'stable'
      icon series.
      - Updated /extensions/onboarding/content/img/tor-watermark.png with new icon and
      add the source svg in the same directory
      - Copied /browser/branding/official over /browser/branding/nightly and the new
      /browser/branding/alpha directories. Replaced content with 'nightly' and
      'alpha' icon series.
      Updated VisualElements_70.png and VisualElements_150.png with updated icons in
      each branding directory (fixes #22654)
      - Updated firefox.VisualElementsManfiest.xml with updated colors in each
      branding directory
      - Updated content/identity-icons-brand.svg with Tor Browser icon (fixes #28111)
      - Added firefox.svg to each branding directory from which all the other icons
      are derived (apart from document.icns and document.ico)
      - Added default256.png and default512.png icons
      - Updated aboutTBUpdate.css to point to branding-aware icon128.png and removed
      original icon
      - Use the Tor Browser icon within devtools/client/themes/images/.
      
      Bug 30631: Blurry Tor Browser icon on macOS app switcher
      
      It would seem the png2icns tool does not generate correct icns files and
      so on macOS the larger icons were missing resulting in blurry icons in
      the OS chrome. Regenerated the padded icons in a macOS VM using
      iconutil.
      
      Bug 28196: preparations for using torbutton tor-browser-brand.ftl
      
      A small change to Fluent FileSource class is required so that we
      can register a new source without its supported locales being
      counted as available locales for the browser.
      
      Bug 31803: Replaced about:debugging logo with flat version
      995f759c
    • Kathleen Brade's avatar
      Bug 13252: Do not store data in the app bundle · a064471a
      Kathleen Brade authored
      When --enable-tor-browser-data-outside-app-dir is enabled,
      all user data is stored in a directory named
      TorBrowser-Data which is located next to the application directory.
      
      Display an informative error message if the TorBrowser-Data
      directory cannot be created due to an "access denied" or a
      "read only volume" error.
      
      On Mac OS, add support for the --invisible command line option which
      is used by the meek-http-helper to avoid showing an icon for the
      helper browser on the dock.
      a064471a
    • Kathleen Brade's avatar
      Bug 14631: Improve profile access error messages. · 7d6942f6
      Kathleen Brade authored
      Instead of always reporting that the profile is locked, display specific
      messages for "access denied" and "read-only file system".
      
      To allow for localization, get profile-related error strings from Torbutton.
      Use app display name ("Tor Browser") in profile-related error alerts.
      7d6942f6
    • Kathleen Brade's avatar
      Bug 9173: Change the default Firefox profile directory to be TBB-relative. · 90891242
      Kathleen Brade authored
      This should eliminate our need to rely on a wrapper script that
      sets /Users/arthur and launches Firefox with -profile.
      90891242
    • Mike Perry's avatar
      Bug 13028: Prevent potential proxy bypass cases. · 451ec3d3
      Mike Perry authored
      It looks like these cases should only be invoked in the NSS command line
      tools, and not the browser, but I decided to patch them anyway because there
      literally is a maze of network function pointers being passed around, and it's
      very hard to tell if some random code might not pass in the proper proxied
      versions of the networking code here by accident.
      451ec3d3
    • Kathleen Brade's avatar
      Bug 16439: Remove screencasting code · 7c560f0b
      Kathleen Brade authored
      We avoid including the screencasting code on mobile (it got ripped out
      for desktop in bug 1393582) by simply excluding the related JS modules
      from Tor Browser.
      7c560f0b
    • Mike Perry's avatar
      Bug 12974: Disable NTLM and Negotiate HTTP Auth · d3262a23
      Mike Perry authored
      This is technically an embargoed Mozilla bug, so I probably shouldn't provide
      too many details.
      
      Suffice to say that NTLM and Negotiate auth are bad for Tor users, and I doubt
      very many (or any of them) actually need it.
      
      The Mozilla bug is https://bugzilla.mozilla.org/show_bug.cgi?id=1046421
      d3262a23
    • Mike Perry's avatar
      Bug 3547: Block all plugins. · 3977591a
      Mike Perry authored
      We cannot use the @mozilla.org/extensions/blocklist;1 service, because we
      actually want to stop plugins from ever entering the browser's process space
      and/or executing code (for example, AV plugins that collect statistics/analyse
      urls, magical toolbars that phone home or "help" the user, skype buttons that
      ruin our day, and censorship filters). Hence we rolled our own.
      
      See https://trac.torproject.org/projects/tor/ticket/3547#comment:6 for musings
      on a better way. Until then, it is delta-darwinism for us.
      3977591a
    • Alex Catarineu's avatar
      Add TorStrings module for localization · 23d3d071
      Alex Catarineu authored
      23d3d071
    • Alex Catarineu's avatar
      Bug 10760: Integrate TorButton to TorBrowser core · b4c5d90c
      Alex Catarineu authored
      Because of the non-restartless nature of Torbutton, it required
      a two-stage installation process. On mobile, it was a problem,
      because it was not loading when the user opened the browser for
      the first time.
      
      Moving it to tor-browser and making it a system extension allows it
      to load when the user opens the browser for first time.
      
      Additionally, this patch also fixes Bug 27611.
      
      Bug 26321: New Circuit and New Identity menu items
      
      Bug 14392: Make about:tor behave like other initial pages.
      
      Bug 25013: Add torbutton as a tor-browser submodule
      b4c5d90c
    • Alex Catarineu's avatar
    • Kathleen Brade's avatar
      Bug 28044: Integrate Tor Launcher into tor-browser · 23708264
      Kathleen Brade authored
      Build and package Tor Launcher as part of the browser (similar to
      how pdfjs is handled).
      
      If a Tor Launcher extension is present in the user's profile, it is
      removed.
      23708264
    • Arthur Edelstein's avatar
      Bug 12620: TorBrowser regression tests · 3bc0074a
      Arthur Edelstein authored
      Regression tests for Bug #2950: Make Permissions Manager memory-only
      
      Regression tests for TB4: Tor Browser's Firefox preference overrides.
      
      Note: many more functional tests could be made here
      
      Regression tests for #2874: Block Components.interfaces from content
      
      Bug 18923: Add a script to run all Tor Browser specific tests
      
      Regression tests for Bug #16441: Suppress "Reset Tor Browser" prompt.
      3bc0074a
    • Mike Perry's avatar
      TB4: Tor Browser's Firefox preference overrides. · e29c2b2c
      Mike Perry authored
      This hack directly includes our preference changes in omni.ja.
      
      Bug 18292: Staged updates fail on Windows
      
      Temporarily disable staged updates on Windows.
      
      Bug 18297: Use separate Noto JP,KR,SC,TC fonts
      
      Bug 23404: Add Noto Sans Buginese to the macOS whitelist
      
      Bug 23745: Set dom.indexedDB.enabled = true
      
      Bug 13575: Disable randomised Firefox HTTP cache decay user tests.
      (Fernando Fernandez Mancera <ffmancera@riseup.net>)
      
      Bug 17252: Enable session identifiers with FPI
      
      Session tickets and session identifiers were isolated
      by OriginAttributes, so we can re-enable them by
      allowing the default value (true) of
      "security.ssl.disable_session_identifiers".
      
      The pref "security.enable_tls_session_tickets" is obsolete
      (removed in https://bugzilla.mozilla.org/917049)
      
      Bug 14952: Enable http/2 and AltSvc
      
      In Firefox, SPDY/HTTP2 now uses Origin Attributes for
      isolation of connections, push streams, origin frames, etc.
      That means we get first-party isolation provided
      "pr...
      e29c2b2c
    • Mike Perry's avatar
      TB3: Tor Browser's official .mozconfigs. · b688682d
      Mike Perry authored
      Also:
      Bug #9829.1: new .mozconfig file for the new cross-compiler and ESR24
      Changes needed to build Mac in 64bit
      Bug 10715: Enable Webgl for mingw-w64 again.
      Disable ICU when cross-compiling; clean-up.
      Bug 15773: Enable ICU on OS X
      Bug 15990: Don't build the sandbox with mingw-w64
      Bug 12761: Switch to ESR 38 for OS X
      Updating .mozconfig-asan
      Bug 12516: Compile hardenend Tor Browser with -fwrapv
      Bug 18331: Switch to Mozilla's toolchain for building Tor Browser for OS X
      Bug 17858: Cannot create incremental MARs for hardened builds.
      Define HOST_CFLAGS, etc. to avoid compiling programs such as mbsdiff
      (which is part of mar-tools and is not distributed to end-users) with
      ASan.
      Bug 13419: Add back ICU for Windows
      Bug 21239: Use GTK2 for ESR52 Linux builds
      Bug 23025: Add hardening flags for macOS
      Bug 24478: Enable debug assertions and tests in our ASan builds
      --enable-proxy-bypass-protection
      Bug 27597: ASan build option in tor-browser-build is broken
      
      Bug 27623 - Export M...
      b688682d
  2. 10 Sep, 2020 2 commits
  3. 07 Sep, 2020 1 commit
  4. 10 Sep, 2020 2 commits
  5. 01 Sep, 2020 1 commit
  6. 09 Sep, 2020 2 commits
  7. 02 Sep, 2020 1 commit
  8. 07 Sep, 2020 1 commit
  9. 10 Sep, 2020 1 commit
  10. 08 Sep, 2020 2 commits
  11. 01 Sep, 2020 1 commit
  12. 09 Sep, 2020 3 commits
  13. 10 Sep, 2020 7 commits