Skip to content
Permalink
Branch: 21999+3
Commits on Jul 10, 2017
Commits on Jun 24, 2017
  1. Bug 18913: about:tor should not have chrome privileges

    Kathy Brade
    Kathy Brade committed Jun 24, 2017
    Rearchitect our implementation so that about:tor pages are always
    loaded in a content process. This also fixes:
      Bug 22535: Searching brings me to duckduckgo but my query is discarded.
      Bug 21948: Going back to about:tor page gives "Address isn't valid" error.
    
    Most of the code that initializes and updates about:tor content has
    been moved to a content script. When necessary, IPC is used to pass
    data from the chrome process to the content script.
    
    Removed old, no-longer-used m_tb_orig_BrowserOnAboutPageLoad variable
    from torbutton.js.
    
    Also, update the about:tor newChannel() implementation to accept an
    nsILoadInfo parameter.
Commits on Jun 16, 2017
  1. Bug 22560: Update privacy.thirdparty.isolate preference

    Georg Koppen
    Georg Koppen committed Jun 16, 2017
    In commit 2978978 we hinted at updating
    `privacy.thirdparty.isolate` once we switch to ESR 52. We forgot that
    while migrating but replace it now with `privacy.firstparty.isolate` as
    expected.
    
    We remove `dom.workers.sharedWorkers.enabled` as this preference is long
    gone.
Commits on Jun 12, 2017
  1. Bug 22554: Don't set Battery API pref anymore

    Georg Koppen
    Georg Koppen committed Jun 9, 2017
    Mozilla made the Battery API chrome-only
    (https://bugzilla.mozilla.org/show_bug.cgi?id=1313580). We therefore
    don't need to take care of it anymore in Torbutton.
Commits on Jun 9, 2017
  1. Version bump and CHANGELOG update

    Georg Koppen
    Georg Koppen committed Jun 9, 2017
Commits on Jun 8, 2017
  1. Bug 22542: Security Settings window too small on macOS 10.12

    Kathy Brade
    Kathy Brade committed Jun 8, 2017
    Increase the height of the security slider description area to
    avoid a scrollbar on macOS 10.12 (previously, the text associated
    with the "High" level required a scrollbar).
Commits on Jun 2, 2017
  1. Version bump and CHANGELOG update

    Georg Koppen
    Georg Koppen committed Jun 2, 2017
  2. Translations update

    Georg Koppen
    Georg Koppen committed Jun 2, 2017
  3. Bug 22104: Adjust our content policy whitelist for ff52-esr.

    Kathy Brade Georg Koppen
    Kathy Brade authored and Georg Koppen committed Jun 1, 2017
    Fix problems with missing video playback controls and missing scrollbars.
    Use a regex solution to allow access to all png images, svg images,
    and css files under chrome://global/skin/media.
  4. Bug 22457: Allow resources loaded by view-source://

    Georg Koppen
    Georg Koppen committed Jun 1, 2017
    Instead of whitelisting single resources for view-source requests that
    might allow platform detection we allow all of those that are needed by
    requests with a view-source origin. This should be safe now that
    https://bugzilla.mozilla.org/show_bug.cgi?id=1172165 landed.
Commits on Jun 1, 2017
  1. Bug 21627: Ignore HTTP 304 responses when checking redirects.

    Kathy Brade
    Kathy Brade committed Jun 1, 2017
    Avoid noise on the error console when a page is reloaded. Since 304
    responses do not have Location headers, it is safe to ignore such
    responses inside our http-on-examine-response observer.
  2. Bug 22459: Adapt our use of the nsIContentPolicy to e10s mode

    Kathy Brade
    Kathy Brade committed Jun 1, 2017
    Load our content policy module as a process script instead of as a component
    so that our nsIContentPolicy filter runs in content processes.
    
    Our http-on-examine-response code that blocks redirects to internal URLs
    must continue to run in the chrome process only.
Commits on Apr 13, 2017
  1. Version bump, and CHANGELOG update

    Georg Koppen
    Georg Koppen committed Apr 13, 2017
  2. Translation updates

    Georg Koppen
    Georg Koppen committed Apr 13, 2017
  3. Bug 21865: Update our JIT preferences in the slider

    Georg Koppen
    Georg Koppen committed Apr 13, 2017
    It turns out that the JIT *.content prefs are gone for a while now. This
    happened in https://bugzilla.mozilla.org/show_bug.cgi?id=939562 and the
    patch updates the security slider to take this into account. We got the
    tip to include `javascript.options.native_regexp` as well.
    
    `javascript.options.typeinference` is gone with
    https://bugzilla.mozilla.org/show_bug.cgi?id=972817 and we therefore
    remove it. And asm.js is disabled globally until we find a good solution
    for #19417.
    
    The tooltip text got updated accordingly.
Commits on Apr 7, 2017
  1. Revert "Bug 21201.1: Use new svg.disabled pref"

    Georg Koppen
    Georg Koppen committed Apr 7, 2017
    This reverts commit 1b7ce9f. We did
    not backport Mozilla's patch which uses the new preference. Thus we need
    to stick to the old one for now.
    
    Closes #21885.
Commits on Apr 4, 2017
  1. Bug 21201: Mark Torbutton as multiprocess compatible

    Georg Koppen
    Georg Koppen committed Apr 4, 2017
  2. Bug 21747: 'New Tor Circuit for this Site' in ESR52

    arthuredelstein authored and Georg Koppen committed Mar 17, 2017
    Also, make sure we renew catchall "--unknown--" domain if user chooses
    "New Tor Circuit" for about:addons, for example.
  3. Bug 21745: Fix handling of catch-all circuit

    arthuredelstein authored and Georg Koppen committed Mar 17, 2017
  4. Bug 21547: Fix circuit display under e10s

    arthuredelstein authored and Georg Koppen committed Mar 6, 2017
  5. Bug 21268: e10s compatibility for New Identity.

    Kathy Brade Georg Koppen
    Kathy Brade authored and Georg Koppen committed Feb 8, 2017
    Ignore "not available" errors from appCacheStorage.asyncEvictStorage()
    since these can occur if the cache has not been used yet.
    
    Change torbutton_close_tabs_on_new_identity() to use browser.removeTab()
    instead of browser.contentWindow.close() since we cannot directly access
    the contentWindow when multi-process mode is enabled.
    
    Fix indentation and modernize the torbutton_close_tabs_on_new_identity()
    code.
  6. fixup! Bug 21267: Remove 14429 implementation for now

    Georg Koppen
    Georg Koppen committed Apr 4, 2017
  7. Bug 21267: Remove 14429 implementation for now

    arthuredelstein authored and Georg Koppen committed Mar 12, 2017
  8. Bug 21201: Avoid accessing contentWindow inside torbutton_resizeliste…

    Kathy Brade Georg Koppen
    Kathy Brade authored and Georg Koppen committed Feb 9, 2017
    …ner.
    
    Also, use Cc, Ci, and Cr inside torbutton_resizelistener.
  9. Bug 21201.1: Use new svg.disabled pref

    arthuredelstein authored and Georg Koppen committed Jan 11, 2017
Commits on Mar 3, 2017
  1. Release preparations for 1.9.7.1

    Georg Koppen
    Georg Koppen committed Mar 3, 2017
    Version bump, and CHANGELOG update
  2. Translations update

    Georg Koppen
    Georg Koppen committed Mar 3, 2017
Commits on Mar 2, 2017
  1. fixup! Bug 21396: Allow leaking of resource/chrome URIs

    Georg Koppen
    Georg Koppen committed Mar 2, 2017
Commits on Mar 1, 2017
  1. Bug 21396: Allow leaking of resource/chrome URIs

    Georg Koppen
    Georg Koppen committed Mar 1, 2017
    Our work around for https://bugzilla.mozilla.org/show_bug.cgi?id=863246
    is filtering content requests to resource:// and chrome:// URIs in a way
    that neuters this fingerprinting vector while not breaking standard Tor
    Browser functionality.
    
    However, there are extensions like Session Manager that are broken with
    this strategy. Users who think having extensions like that one working
    is much more important than avoiding the possible information leakage
    associated with that get a preference they can toggle now.
    
    'extensions.torbutton.resource_and_chrome_uri_fingerprinting' is by
    default 'false' but setting it to 'true' effectively disables our
    defense we developed in #8725 and related bugs.
  2. Translations update

    Georg Koppen
    Georg Koppen committed Mar 1, 2017
Commits on Feb 27, 2017
Commits on Feb 21, 2017
  1. Fixup for wrong error message

    Georg Koppen
    Georg Koppen committed Feb 21, 2017
Older
You can’t perform that action at this time.