Linted

Georg Koppen authored 5 years ago and Pier Angelo Vendrame committed 1 year ago

Related Bugzilla: https://bugzilla.mozilla.org/show_bug.cgi?id=1428034

Do not include Normandy at all whenever MOZ_NORMANDY is False.

Linted

Alex Catarineu authored 5 years ago and Pier Angelo Vendrame committed 1 year ago

More concretely, SearchService.jsm 'hijack-blocklists' and
url-classifier-skip-urls.

Avoid creating instance for 'anti-tracking-url-decoration'.

If prefs are disabling their usage, avoid creating instances for
'cert-revocations' and 'intermediates'.

Do not ship JSON dumps for collections we do not expect to need. For
the ones in the 'main' bucket, this prevents them from being synced
unnecessarily (the code in remote-settings does so for collections
in the main bucket for which a dump or local data exists). For the
collections in the other buckets, we just save some size by not
shipping their dumps.

We also clear the collections database on the v2 -> v3 migration.

Arthur Edelstein authored 6 years ago and Pier Angelo Vendrame committed 1 year ago

Connections were observed in the catch-all circuit when
the user entered an https or http URL in the URL bar, or
typed a search term.

Kathleen Brade authored 4 years ago and Pier Angelo Vendrame committed 1 year ago

Firefox Ion (previously Firefox Pioneer) is an opt-in program in which people
volunteer to participate in studies that collect detailed, sensitive data about
how they use their browser.

Bug 41662: Disable about:sync-logs

Even though we disable sync by default with
`identity.fxaccounts.enabled`, this about: page is still avilable.
We could throw an exception on the constructor of the related
component, but it would result only in an error in the console, without
a visible "this address does not look right" error page.
If we fix the issues with MOZ_SERVICES_SYNC, we can restore the
component.

Alex Catarineu authored 4 years ago and Pier Angelo Vendrame committed 1 year ago

Bug 40025: Remove Mozilla add-on install permissions

Kathleen Brade authored 4 years ago and Pier Angelo Vendrame committed 1 year ago

Hide elements on about:logins that mention sync, "Firefox LockWise", and
Mozilla's LockWise mobile apps.

Disable the "Create New Login" button when security.nocertdb is true.

Kathleen Brade authored 7 years ago and Pier Angelo Vendrame committed 1 year ago

Only ship the pdfjs extension.

Georg Koppen authored 7 years ago and Pier Angelo Vendrame committed 1 year ago

In the past the ClearKey system had not been compiled when specifying
--disable-eme. But that changed and it is even bundled nowadays (see:
Mozilla's bug 1300654). We don't want to ship it right now as the use
case for it is not really visible while the code had security
vulnerabilities in the past.

Alex Catarineu authored 4 years ago and Pier Angelo Vendrame committed 1 year ago

Bugzilla: https://bugzilla.mozilla.org/show_bug.cgi?id=1768899

Mike Perry authored 10 years ago and Pier Angelo Vendrame committed 1 year ago

The Mozilla bugs: https://bugzilla.mozilla.org/show_bug.cgi?id=1046421,
https://bugzilla.mozilla.org/show_bug.cgi?id=1261591, #27602

Matthew Finkel authored 6 years ago and Pier Angelo Vendrame committed 1 year ago

The GeckoView AndroidManifest.xml is not preprocessed unlike Fennec's
manifest, so we can't use the ifdef preprocessor guards around the
permissions we do not want. Commenting the permissions is the
next-best-thing.

Bug 40857: Modified the fat .aar creation file

This is a workaround to build fat .aars with the compiling enviornment
disabled.
Mozilla does not use a similar configuration, but either runs a Firefox
build and discards its output, or uses artifacts build.

We might switch to artifact builds too, and drop this patch, or write a
better one to upstream. But until then we need this patch.

See also https://bugzilla.mozilla.org/show_bug.cgi?id=1763770.

Bug 41458: Prevent `mach package-multi-locale` from actually creating a package

macOS builds need some files to be moved around with
./mach package-multi-locale to create multi-locale packages.
The required command isn't exposed through any other mach command.
So, we patch package-multi-locale both to prevent it from failing when
doing official builds and to detect any future changes on it.

Disable the notification server because of the upstream Bug 1782837.

Use the new flag upstream to replace the Bug 41542 commit.

Do not specify --{enable,disable}-verify-mar in mozconfigs, as this
option does not exist anymore, and signed mars are enabled by default.

Bug 17858: Cannot create incremental MARs for hardened builds.
Define HOST_CFLAGS, etc. to avoid compiling programs such as mbsdiff
(which is part of mar-tools and is not distributed to end-users) with
ASan.

Bug 21849: Don't allow SSL key logging.

Bug 25741 - TBA: Disable features at compile-time

Define MOZ_ANDROID_NETWORK_STATE and MOZ_ANDROID_LOCATION

Bug 27623 - Export MOZILLA_OFFICIAL during desktop builds

This fixes a problem where some preferences had the wrong default value.
Also see bug 27472 where we made a similar fix for Android.

Bug 29859: Disable HLS support for now

Bug 30463: Explicitly disable MOZ_TELEMETRY_REPORTING

Bug 32493: Disable MOZ_SERVICES_HEALTHREPORT

Bug 33734: Set MOZ_NORMANDY to False

Bug 33851: Omit Parental Controls.

Bug 40252: Add --enable-rust-simd to our tor-browser mozconfig files

Bug 41584: Move some configuration options to base-browser level

Marco Simonelli authored 2 years ago and Pier Angelo Vendrame committed 1 year ago

- fixes required to build dom/media/systemservices

Marco Simonelli authored 2 years ago and Pier Angelo Vendrame committed 1 year ago

- fixes required to build dom/media/webrtc

Marco Simonelli authored 2 years ago and Pier Angelo Vendrame committed 1 year ago

- fixes requried to build netwerk/sctp

Marco Simonelli authored 2 years ago and Pier Angelo Vendrame committed 1 year ago

- fixes required to build third_party/sipcc

Marco Simonelli authored 2 years ago and Pier Angelo Vendrame committed 1 year ago

- fixes required to build third_party/libwebrtc

Marco Simonelli authored 2 years ago and Pier Angelo Vendrame committed 1 year ago

- properly define NOMINMAX for just MSVC builds

System fonts are an enormous fingerprinting vector.
Even with font allow lists and with our custom configuration on Linux,
which counter metrics measurements, getComputedStyle leaks several
details.
This patch counters both these kinds of attacks.

henry authored 2 years ago and Pier Angelo Vendrame committed 1 year ago

Remove this patch after upstream bugzilla bug 1790187

henry authored 2 years ago and Pier Angelo Vendrame committed 1 year ago

Temporary fix until mozilla bug 1799153 gets a patch upstream.

Dan Ballard authored 1 year ago and Pier Angelo Vendrame committed 1 year ago

Bug 1828939 - Remove Share URL menu item when MOZ_PROXY_BYPASS_PROTECTION and restore Share by Email. r=mossop

Differential Revision: https://phabricator.services.mozilla.com/D175941

Backed out 8 changesets (bug 1830884, bug 1822466) for causing regressions in the upstream wpt tests. a=backout

Backed out changeset 7f4052a38bc6 (bug 1830884)
Backed out changeset 67d5d6a5f321 (bug 1830884)
Backed out changeset 77f0334c7976 (bug 1830884)
Backed out changeset 31607d74ee69 (bug 1830884)
Backed out changeset 256239106623 (bug 1822466)
Backed out changeset d94b6d6cd713 (bug 1822466)
Backed out changeset 2c6d325cb248 (bug 1822466)
Backed out changeset b89608b3c46a (bug 1822466)

Bug 1829327 - Use scrollbar-width style instead of ui.scrollbarFadeBeginDelay to hide overlay scrollbars. r=botond,geckoview-reviewers,owlish

Differential Revision: https://phabricator.services.mozilla.com/D176745

Bug 1831329 - Block FEATURE_HW_DECODED_VIDEO_ZERO_COPY with Driver Version: 20.19.15.4390 r=gfx-reviewers,ErichDonGubler

FEATURE_HW_DECODED_VIDEO_ZERO_COPY does not work with Intel HD Graphics 530 of Driver Version: 20.19.15.4390.

Differential Revision: https://phabricator.services.mozilla.com/D177864

Differential Revision: https://phabricator.services.mozilla.com/D177379