Skip to content

GitLab

Explore

Sign in

The Tor Project
Applications
Tor Browser
Merge requests
!964

Bug 42481: Modularize SecurityLevel.

Review changes
Download
Patches
Plain diff

Pier Angelo Vendrame requested to merge pierov/tor-browser:bug_42481 into tor-browser-115.9.0esr-13.5-1 Mar 27, 2024

Overview 5
Commits 2
Pipelines 0
Changes 6

Merge Info

Related Issues

#42481 (closed)
mullvad-browser#xxxxx
tor-browser-build#xxxxx

Backporting

Timeline

Immediate: patchset needed as soon as possible
Next Minor Stable Release: patchset that needs to be verified in nightly before backport
Eventually: patchset that needs to be verified in alpha before backport
No Backport (preferred): patchset for the next major stable

(Optional) Justification

Emergency security update: patchset fixes CVEs, 0-days, etc
Censorship event: patchset enables censorship circumvention
Critical bug-fix: patchset fixes a bug in core-functionality
Consistency: patchset which would make development easier if it were in both the alpha and release branches; developer tools, build system changes, etc
Sponsor required: patchset required for sponsor
Localization: typos and other localization changes that should be also in the release branch
Other: please explain

Merging

Merge to tor-browser - !fixups to tor-browser-specific commits, new features, security backports
Merge to base-browser - !fixups to base-browser-specific commits, new features to be shared with mullvad-browser, and security backports
- NOTE: if your changeset includes patches to both base-browser and tor-browser please clearly label in the change description which commits should be cherry-picked to base-browser after merging

Issue Tracking

Link resolved issues with appropriate Release Prep issue for changelog generation

Review

Request Reviewer

Request review from an applications developer depending on modified system:
- NOTE: if the MR modifies multiple areas, please /cc all the relevant reviewers (since gitlab only allows 1 reviewer)
- accessibility : henry
- android : clairehurst, dan
- build system : boklm
- extensions : ma1
- firefox internals (XUL/JS/XPCOM) : ma1
- fonts : pierov
- frontend (implementation) : henry
- frontend (review) : donuts, richard
- localization : henry, pierov
- macos : clairehurst, dan
- nightly builds : boklm
- rebases/release-prep : dan, ma1, pierov, richard
- security : ma1
- signing : boklm, richard
- updater : pierov
- misc/other : pierov, richard

@henry @ma1 could one of you review this please?

Change Description

In the last few months, Mozilla has gone very hard toward esmification, and we are almost ESMified!

As a result, they removed the compatibility layer with jsm, and this caused breakage in my first 125 attempt (I'm currently following beta - but this is the first build after I started the RR rebase effort).

I corrected a few other jsm in the rebased branches, but sadly I didn't create a fixup for those, whereas I created one for security level. I think it's fine to apply it also to 13.5 and might make the major rebase easier to review.

How Tested

Checked that we don't have new strange errors in the console, checked that changing the security level still works.

Merge request reports

Assignee

Select assignees

Reviewers

Request review from

Time tracking