1 # Tor Browser Launcher Changelog
5 * Switch to Web Key Directory to refresh signing key from torproject.org, because everything is broken
6 * Use proper version comparison now that Tor Browser 10.0 is out
7 * Fix DNS leak when downloading over Tor
8 * Various bug fixes, as well as AppData and AppArmor fixes
12 * Switch to keys.openpgp.org when refreshing signing key, because SKS keyservers are broken
13 * Use new Tor Browser logo
17 * Ship with latest version of the Tor Browser Developers OpenPGP public key
18 * Fix bug where TBL window stays open after Tor Browser is launched
22 * Switched from python2 to python3
23 * Switched from gtk2 to Qt5
24 * Switched from twisted to requests/socks
25 * Use QThreads for async
27 * Only refresh gpg keyring on verification error, instead of every time
28 * Updated AppArmor profiles
29 * Updated available languages, and fixed locale detection bug
30 * Fixed false signature verification error related to twisted
34 * Fixed crash issue related to Tor Browser 7.5 changing how the currently installed version number is stored
35 * Updated list of Tor Project dist mirrors
36 * Fixed edge case crash for when stdout isn't writable
37 * Updated AppStream metadata
38 * Updated AppArmor profiles
42 * Update URL to check for latest version, which changed in Tor Browser 7
43 * Automatically refresh GPG keyring, to prevent signature verification false positives
44 * Improve GnuPG code by using GPGME if available
45 * Updated AppArmor profiles
46 * Added Czech, Hungarian localization
50 * Updated Tor Browser signing key because they added a new subkey and verification was failing
51 * Updated AppArmor profiles
52 * Improved localization, and added Russian
56 * Fixed bug related to fallback to English feature that caused Settings to crash
60 * Fix issue where Tor Browser Launcher failed to launch if currently installed version of Tor Browser was too old
61 * If Tor Browser download isn't available in your language, fallback to English
62 * Avoid re-downloading tarball if it's already present
63 * Verify GnuPG importing keys using status-fd rather than exit codes
64 * Various AppArmor improvements
65 * Removed unused dependency
69 * Fix signature verification bypass attack, reported by Jann Horn (CVE-2016-3180)
73 * Removed certificate pinning to https://www.torproject.org to avoid issues with upcoming certificate change, and hard-coded minimum Tor Browser version in the release
74 * Fix issue with detecting language
75 * Make Tor SOCKS5 proxy configurable, for users not running on 9050
76 * Improved AppArmor profiles
78 * Switched from xpm icons to png icons
79 * Changed "Exit" button to "Cancel" button
80 * New package description
84 * Tor Browser Launcher no longer attempts to auto-update, now that Tor Browser has this feature
85 * System Tor is now an optional dependency
86 * Fix issue where downloads fail because of unicode URLs
87 * Removed window management code that stopped working many releases ago, and removed wmctrl dependency
88 * Removed test code that caused signature verification to happen at the wrong time
92 * Stop using RecommendedTBBVersions and start using more reliable "release" channel XML
93 * Converted settings file from pickle format to JSON
94 * Download tarball signatures to verify, rather than SHA256SUMS and signature
95 * Implemented IPolicyForHTTPS to prevent twisted-related crashes in Debian
100 * Fix critical bug with new location of start-tor-browser
101 * Silenced some AppArmor denied events from logs
102 * Print less console output
103 * Remove support for accepting links
104 * Added better support for updating over Tor in Fedora
108 * Added option to disable accepting links, to workaround Firefox/Tor Browser issue
112 * Added new Tor Browser signing key
113 * Fixed removing alpha/beta code due to change in RecommendedTBBVersions syntax
114 * Fixed opening links in TBB if you originally opened TBB without clicking a link
119 * You can now pass URLs into TBL, and set it as your default browser
120 * Hides TBL window before launching TBB
121 * Default mirror switched to https://dist.torproject.org/
122 * Added AppData file to look better in software centers
123 * Exclude AppArmor profiles in Ubuntu, where they're broken
127 * Updated licensing confusion to just be MIT in all locations
128 * Fixed bug related to TBB 4.0's new folder structure
129 * Updated .desktop files to comply with standards
133 * Split source code into several files
134 * Several AppArmor updates
135 * Prepare for upcoming RecommendedTBBVersion format change
136 * More verbose UI when updating
137 * No longer detaches start-tor-browser as separate process
138 * Temporarily disable AppArmor profiles in Ubuntu
142 * RecommendedTBBVersion URL change
143 * Many AppArmor improvements
144 * Allow installation into a virtualenv
148 * Force installing stable release if available in RecommendedTBBVersions
149 * Removed Mike Perry's signing key and added Erinn Clark's signing key
150 * Fixed AppArmor profiles (thanks to troubadoour)
154 * Updated Dutch translation
155 * Fixed bug with loading mirrors list
156 * Huge refactor of AppArmor profiles
157 * Added OnionShare support to AppArmor profiles
158 * Suppresses output from detached TBB process
159 * Uses freedesktop xdg-user-dirs instead of ~/.torbrowser
160 * Removed all signing keys except Mike Perry's
161 * Made tor and python-txsocksx dependencies to update over Tor by default
165 * Added TBL_SHARE support, to more easily develop without installing systemwide
166 * Modem sound and python-pygame dependency is now optional
167 * Support for updating TBB over Tor using a system Tor
168 * Removed support for stable/alpha preference, forces stable now
169 * Added French translations
173 * Added Polish translations
174 * Version 0.1.0 marks first version in Debian!
175 * Changed GPG release signing key
176 from 5C17616361BD9F92422AC08BB4D25A1E99999697
177 to 0B1491929806596254700155FD720AD9EBA34B1C
181 * Fixed AppArmor rules that were broken in Ubuntu
182 * Added support for basic RPM packaging
183 * Removed un-used dependencies
184 * Fixed URLs to deal with TBB release filename changes
188 * Removed older code that's no longer used
189 * Updated list of Tor mirrors
190 * Replaced certificate for www.torproject.org post-heartbleed
191 * Fixed URLs to deal with TBB release filename changes
195 * Added AppArmor profiles for torbrowser-launcher and TBB
196 * Removed included libs in favor of adding new Debian package dependencies
200 * Fixed URLs to deal with changes in TBB releases for 3.x
204 * Updated paths because TBB 3.x changed directory structure
205 * mirrors.txt now has local version in /usr/local
206 * Updated TBB signature URL
207 * Made optional modem sound when launching Tor, because it's sooo slow :)
208 * Extra check to make sure the latest version is installed