mirror/IronFox
1
0
Fork 0
mirror of https://github.com/ironfox-oss/IronFox.git synced 2026-04-19 22:47:39 -04:00
Code Issues Packages Projects Releases Wiki Activity
1,625 Commits 80 Branches 59 Tags
python-build-system
Commit Graph

1625 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
celenity
9b410eabdb Add (WIP) macOS build support 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-17 20:58:14 -04:00
Akash Yadav
ec8709b067 fix: override fenix build date using IF_BUILD_DATE 
Signed-off-by: Akash Yadav <itsaky01@gmail.com>
 2025-05-18 02:20:41 +05:30
Akash Yadav
5e0f9bb680 fix: set MOZ_BUILD_DATE to pipeline creation time 
Signed-off-by: Akash Yadav <itsaky01@gmail.com>
 2025-05-18 02:19:21 +05:30
Akash Yadav
c9ded7d257 fix: log build date overrides 
Signed-off-by: Akash Yadav <itsaky01@gmail.com>
 2025-05-18 02:17:54 +05:30
Akash Yadav
2e6546f0a9 fix: invalid switch-case for variant check 
Signed-off-by: Akash Yadav <itsaky01@gmail.com>
 2025-05-18 02:15:13 +05:30
Akash Yadav
188e26faf6 docs: reformat README 
Signed-off-by: Akash Yadav <itsaky01@gmail.com>
 2025-05-18 01:59:33 +05:30
Akash Yadav
04c18ccfcc docs: update README to reflect new prebuild args 
Signed-off-by: Akash Yadav <itsaky01@gmail.com>
 2025-05-18 01:59:32 +05:30
Akash Yadav
c979b52474 fix: update env var names to better reflect their purpose 
Signed-off-by: Akash Yadav <itsaky01@gmail.com>
 2025-05-18 01:59:32 +05:30
Akash Yadav
cf0f786e7c fix: disallow manual version specification 
Signed-off-by: Akash Yadav <itsaky01@gmail.com>
 2025-05-18 01:59:32 +05:30
Akash Yadav
fe0ec3f3a3 fix: allow build date overrides using system env vars 
Signed-off-by: Akash Yadav <itsaky01@gmail.com>
 2025-05-18 01:59:31 +05:30
celenity
ba44be7e58 feat: Block zoho.com, zoho.com.au, zoho.eu, zoho.in, zoho.jp, & zoho.sa from extracting canvas data, as they don't need access and attempts to prompt users for it on desktop... 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-17 13:59:02 -04:00
celenity
354f5183b0 feat: Block rezka-ua.in from extracting canvas data, as it doesn't need access and attempts to prompt users for it on desktop... 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-16 15:18:21 -04:00
celenity
b028e86ef1 feat: Block southwest.com from extracting canvas data, as it doesn't need access and attempts to prompt users for it on desktop... 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-16 03:00:08 -04:00
celenity
656c77303e feat: Ensure we always report Firefox as the app name in the UA string (like LibreWolf's new patch: 4cf9d97a50/patches/firefox-in-ua.patch) - we weren't impacted by an issue like this AFAIK, but let's ensure one doesn't happen in the future... 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-15 02:22:17 -04:00
celenity
eef5714460 feat: Update uBlock Origin assets.json per latest upstream changes - 47f1a19e9e + 3cd04c3806 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-15 01:49:55 -04:00
celenity
18d0c69f3f fix: Add back the currentAppVersion parameter to the extension update URL - we already expose this anyways with other parameters, and this appears to cause issues on Thunderbird when missing - so let's add it back to be safe... - extensions.update.background.url -> https://versioncheck-bg.addons.mozilla.org/update/VersionCheck.php?reqVersion=%REQ_VERSION%&id=%ITEM_ID%&version=%ITEM_VERSION%&status=%ITEM_STATUS%&appID=%APP_ID%&appVersion=%APP_VERSION%&currentAppVersion=%CURRENT_APP_VERSION%&updateType=%UPDATE_TYPE% & extensions.update.url -> https://versioncheck.addons.mozilla.org/update/VersionCheck.php?reqVersion=%REQ_VERSION%&id=%ITEM_ID%&version=%ITEM_VERSION%&status=%ITEM_STATUS%&appID=%APP_ID%&appVersion=%APP_VERSION%&currentAppVersion=%CURRENT_APP_VERSION%&updateType=%UPDATE_TYPE% 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-13 17:05:30 -04:00
celenity
e39ecc8db3 fix: disable-telemetry.patch 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-13 13:28:17 -04:00
celenity
5846582046 feat: update to v138.0.3 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-13 11:59:42 -04:00
celenity
c27e817408 fix: Minor fix to patches.yaml 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-13 11:58:31 -04:00
celenity
48c5da5fb2 feat: Update disable-telemetry.patch 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-13 11:46:50 -04:00
celenity
e373b45287 feat: Include fonts at build-time (like ex. Tor Browser) 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-13 11:46:30 -04:00
celenity
c0d989c871 fix: Update disable-firefox-suggest.patch, disable-nimbus.patch, and our default RFP (FPP) targets for v138.0.2 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-13 00:10:18 -04:00
celenity
8c1b38e6b7 fix: Update link for v138.0.2 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-12 18:26:12 -04:00
celenity
19f0625d62 feat: update to v138.0.2 - fixes https://gitlab.com/ironfox-oss/IronFox/-/issues/98 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-11 19:38:20 -04:00
celenity
ba69bb8dc9 feat: Disable HLS at build-time 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-11 19:36:58 -04:00
celenity
fff5af3698 feat: Disable PHC (Probabilistic Memory Checker - only relevant for use with the crash reporter 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-11 19:22:03 -04:00
celenity
f72886ecf8 feat: Enable the ability to replace the memory allocator implementation (replace-malloc) 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-11 19:21:02 -04:00
celenity
faeaed193a feat: Allow configuring more preferences via the about:config (+ ensure we disable android:debuggable) 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-11 17:19:21 -04:00
celenity
61dc5645b9 feat: Update to Phoenix 2025.05.11.1 - https://codeberg.org/celenity/Phoenix/releases/tag/2025.05.11.1 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-11 17:18:43 -04:00
celenity
8dc26ab353 fix: Clean-up gecko-liberate.patch - https://codeberg.org/celenity/Phoenix/issues/108 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-11 03:16:53 -04:00
celenity
f00417ac09 fix: Unbreak Megacloud/various streaming websites (ex. anicrush.to, aniwatchtv.to, arc018.to, & hianimez.to) 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-11 01:20:11 -04:00
celenity
1aa90c04ca fix: Unbreak pogo.com 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-11 01:18:19 -04:00
celenity
e96255a99a Fix syntax for third-party FPP overrides 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-11 00:46:01 -04:00
celenity
bef42abf9a feat: Prevent fetching fallback domains remotely 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-10 20:36:48 -04:00
celenity
187412f0a9 feat: Re-enable canvas randomization for Google domains by default 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-10 20:20:48 -04:00
celenity
7ac79f2215 feat: Block icloud.com & icloud.com.cn from extracting canvas data/before user input to prevent them from unnecessarily prompting users (despite not needing the permission) 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-10 19:09:26 -04:00
celenity
6803bcf1ce feat: Use stricter fingerprinting protection/enable additional targets for various (third-party) domains (most of which are ex. used for social widgets, third party sign-in, click/bounce tracking, etc...) 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-10 18:57:08 -04:00
celenity
f65b432eba feat: Enable timezone spoofing for cloudflare.com, favicon.io, moviezapiya.fun, & tileman.io + spoof CSS prefers-color-scheme & frame rate for cloudflare.com `in third party contexts - as they simply don't need access... 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-10 04:24:33 -04:00
celenity
6f99d099a2 feat: Block Amazon domains from extracting canvas data/before user input to prevent them from unnecessarily prompting users (despite not needing the permission) 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-10 04:18:03 -04:00
celenity
fe5e6ce560 feat: Block cloudflare.com, epicgames.com, riverside.fm, stacksocial.com, tiktok.com, tileman.io, usps.com, & yahoo.com from extracting (randomized) canvas data before user input, as these don't need access and attempt to prompt users for it on desktop... 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-08 17:01:38 -04:00
celenity
2846ac4faf fix: Limit scope of certificate pinning - unfortunately too difficult to maintain in its current state, and causing issues for users. In the future, I'd like to look into expanding this again though (and if you run/operate a website, please reach out and we'd be glad to add you!). 
That being said, we still improve upon Firefox's standard certificate pinning, notably:

* We remove AffirmTrust & Entrust for Google's domains (as Google no longer uses these CAs, and in fact even plans to distrust them in Chrome entirely...)
* We pin our domains
* We pin Brave's domains (with info they provide from https://github.com/brave/brave-core/blob/master/chromium_src/net/tools/transport_security_state_generator/input_file_parsers.cc)
* We pin `aus4.mozilla.org`, `aus5.mozilla.org`, `firefox.com`, & `telemetry.mozilla.org` (which are typically only set to `test` mode, meaning they're not enforced)
* We remove the pin for `dns.google.com` (to ensure Google DNS is always available for those who use it)

Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-05 02:47:25 -04:00
celenity
70421d2f30 fix: Update certificate pinning for tiktokv.com - fixes https://gitlab.com/ironfox-oss/IronFox/-/issues/90 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-04 14:07:51 -04:00
celenity
b52a8d8b55 feat: Update build arguments: 
Most of these are related to debugging/development/testing (and likely already set elsewhere) or currently just default - but it's a good idea to set them explicitly and ensure we're always covered

Though there are a few notable exceptions that may be of interest:

`--disable-artifact-builds` - Ensures Mozilla's artifacts/prebuilds are disabled, to ensure we're building from source

`--disable-backgroundtasks` - Disables `background tasks` - currently only used for Mozilla's updater (which we disable) & telemetry

`--disable-negotiateauth` - Disables GSS-API/Negotiate authentication

`MOZ_LTO`, `MOZ_PGO`, & `RUSTC_OPT_LEVEL` - Enables various performance optimizations. This does unfortunately appear to cause builds to take longer - but I'm seeing a noticeable improvement in performance on my device, and I think optimizations like this are especially important for us to potentially help compensate for ex. disabling JIT, so I think the trade-off is probably worth it.

Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-04 02:56:44 -04:00
celenity
30d054997c fix: Update certificate pinning for protonweb.com - fixes https://codeberg.org/celenity/Phoenix/issues/104 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-04 02:27:02 -04:00
celenity
f580aacd87 fix: JIT toggle (+ clean-up & refine our other toggles) 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-04 00:06:52 -04:00
celenity
bb1f4cdd96 fix: Update certificate pinning for lineageos.org 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-03 22:59:23 -04:00
celenity
d765ac786b fix: Update certificate pinning for f-droid.org 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-03 20:30:19 -04:00
celenity
280b07eecd fix: Update certificate pinning for beacondb.net, openstreetmap.org, & openstreetmaps.org - fixes https://gitlab.com/ironfox-oss/IronFox/-/issues/89 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-03 17:02:30 -04:00
celenity
ec57d46d66 fix: Ensure we don't pin DNS resolvers (so we can ensure they're always available and prevent issues...) 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-03 16:13:32 -04:00
celenity
8e9bbd5f94 fix: Update certificate pinning for kernel.org - fixes https://gitlab.com/ironfox-oss/IronFox/-/issues/88 
Signed-off-by: celenity <celenity@celenity.dev>
 2025-05-03 16:02:46 -04:00