It turns out that the JIT *.content prefs are gone for a while now. This
happened in https://bugzilla.mozilla.org/show_bug.cgi?id=939562 and the
patch updates the security slider to take this into account. We got the
tip to include `javascript.options.native_regexp` as well.

`javascript.options.typeinference` is gone with
https://bugzilla.mozilla.org/show_bug.cgi?id=972817 and we therefore
remove it. And asm.js is disabled globally until we find a good solution
for #19417.

The tooltip text got updated accordingly.

This reverts commit 1b7ce9f5. We did
not backport Mozilla's patch which uses the new preference. Thus we need
to stick to the old one for now.

Closes #21885.

Arthur Edelstein authored Mar 17, 2017 and Georg Koppen committed Apr 04, 2017

Also, make sure we renew catchall "--unknown--" domain if user chooses
"New Tor Circuit" for about:addons, for example.

Kathleen Brade authored Feb 08, 2017 and Georg Koppen committed Apr 04, 2017

Ignore "not available" errors from appCacheStorage.asyncEvictStorage()
since these can occur if the cache has not been used yet.

Change torbutton_close_tabs_on_new_identity() to use browser.removeTab()
instead of browser.contentWindow.close() since we cannot directly access
the contentWindow when multi-process mode is enabled.

Fix indentation and modernize the torbutton_close_tabs_on_new_identity()
code.

Kathleen Brade authored Feb 09, 2017 and Georg Koppen committed Apr 04, 2017

Also, use Cc, Ci, and Cr inside torbutton_resizelistener.

Version bump, and CHANGELOG update

Our work around for https://bugzilla.mozilla.org/show_bug.cgi?id=863246
is filtering content requests to resource:// and chrome:// URIs in a way
that neuters this fingerprinting vector while not breaking standard Tor
Browser functionality.

However, there are extensions like Session Manager that are broken with
this strategy. Users who think having extensions like that one working
is much more important than avoiding the possible information leakage
associated with that get a preference they can toggle now.

'extensions.torbutton.resource_and_chrome_uri_fingerprinting' is by
default 'false' but setting it to 'true' effectively disables our
defense we developed in #8725 and related bugs.

Wait until after the security settings window has finished loading
before enabling the description box's scrollbar.

Changelog update and version bump

Arthur Edelstein authored Jan 19, 2017 and Georg Koppen committed Jan 19, 2017

1. Remove double arrow from help menu.
2. Restore localized links inadvertently removed by Transifex.
3. Add localized links for all available manual locales.

We switched to DuckDuckGo as our default search engine recently and this
patch makes sure this is reflected on our about:tor page as well.

While we are at it we are removing the respective Disconnect.me language
strings.

If the `TOR_HIDE_UPDATE_CHECK_UI` env var is set, hide the "Check for
Tor Browser Update..." menu item and the separator that sits right above it.

Arthur Edelstein authored Dec 11, 2016 and Georg Koppen committed Dec 12, 2016

Also change the English text to "Please Donate!"