Closed Bug 1464220 Opened 3 years ago Closed 3 years ago

Extend SANDBOX_HAS_USER_NAMESPACES telemetry past version 64


(Core :: Security: Process Sandboxing, enhancement, P1)




Tracking Status
firefox65 --- fixed


(Reporter: jld, Assigned: jld)




(2 files)

This bug is a placeholder for evaluating SANDBOX_HAS_USER_NAMESPACES telemetry when it starts to reach its new expiration date, and deciding whether or not to extend it further.  See bug 1461546 comment #6.
Flags: needinfo?(jld)
I think we should.

There's still ~10% of the Ubuntu population that doesn't have unprivileged user namespaces, and we predict that that will largely go away when 14.04 goes EoL, but that should be verified with data.  Also, about half of each prerelease population, and 40% of reports from our builds overall, are non-userns; that's worth monitoring.  (The data for prerelease channels is so noisy on the evolution viewer on t.m.o that it's hard to tell what's going on over time; this may need some more work put into analysis.)

Other than Ubuntu and the tarballs, it generally follows distribution: Debian and Arch disable the feature and their downstreams tend to follow, and nothing else besides Ubuntu seems to have a significant population on older kernels.
Flags: needinfo?(jld)
Priority: P5 → P1
Summary: Evaluate whether SANDBOX_HAS_USER_NAMESPACES telemetry should be extended past version 64 → Extend SANDBOX_HAS_USER_NAMESPACES telemetry past version 64
Attached file Data Review Request
This is based on the request from bug 1461546, but I updated the relevant numbers and revised the rationales where needed.
Attachment #9021681 - Flags: review?(chutten)
Comment on attachment 9021681 [details]
Data Review Request


    Is there or will there be documentation that describes the schema for the ultimate data set available publicly, complete and accurate?

Yes. Standard Telemetry mechanisms apply.

    Is there a control mechanism that allows the user to turn the data collection on and off?

Yes. Standard Telemetry mechanisms apply.

    If the request is for permanent data collection, is there someone who will monitor the data over time?

N/A, expires in 70.

    Using the category system of data types on the Mozilla wiki, what collection type of data do the requested measurements fall under? **

Category 1, Technical.

    Is the data collection request for default-on or default-off?

Default on, all channels.

    Does the instrumentation include the addition of any new identifiers (whether anonymous or otherwise; e.g., username, random IDs, etc. See the appendix for more details)?


    Is the data collection covered by the existing Firefox privacy notice? 


    Does there need to be a check-in in the future to determine whether to renew the data?

Yes. :jld is responsible for renewing or removing this probe before it expires in Firefox 70.

Result: datareview+
Attachment #9021681 - Flags: review?(chutten) → review+
Pushed by
Extend SANDBOX_HAS_USER_NAMESPACES telemetry. r=chutten,gcp
Closed: 3 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla65
You need to log in before you can comment on or make changes to this bug.