Closed
Bug 1464220
Opened 6 years ago
Closed 6 years ago
Extend SANDBOX_HAS_USER_NAMESPACES telemetry past version 64
Categories
(Core :: Security: Process Sandboxing, enhancement, P1)
Core
Security: Process Sandboxing
Tracking
()
RESOLVED
FIXED
mozilla65
| Tracking | Status | |
|---|---|---|
| firefox65 | --- | fixed |
People
(Reporter: jld, Assigned: jld)
References
Details
Attachments
(2 files)
This bug is a placeholder for evaluating SANDBOX_HAS_USER_NAMESPACES telemetry when it starts to reach its new expiration date, and deciding whether or not to extend it further. See bug 1461546 comment #6.
|
Assignee | |
Updated•6 years ago
|
Flags: needinfo?(jld)
|
|
Assignee | |
Comment 1•6 years ago
|
||
I think we should. There's still ~10% of the Ubuntu population that doesn't have unprivileged user namespaces, and we predict that that will largely go away when 14.04 goes EoL, but that should be verified with data. Also, about half of each prerelease population, and 40% of reports from our builds overall, are non-userns; that's worth monitoring. (The data for prerelease channels is so noisy on the evolution viewer on t.m.o that it's hard to tell what's going on over time; this may need some more work put into analysis.) Other than Ubuntu and the tarballs, it generally follows distribution: Debian and Arch disable the feature and their downstreams tend to follow, and nothing else besides Ubuntu seems to have a significant population on older kernels.
Flags: needinfo?(jld)
Priority: P5 → P1
Summary: Evaluate whether SANDBOX_HAS_USER_NAMESPACES telemetry should be extended past version 64 → Extend SANDBOX_HAS_USER_NAMESPACES telemetry past version 64
|
|
Assignee | |
Comment 2•6 years ago
|
||
|
|
Assignee | |
Comment 3•6 years ago
|
||
This is based on the request from bug 1461546, but I updated the relevant numbers and revised the rationales where needed.
Attachment #9021681 -
Flags: review?(chutten)
|
||
Comment 4•6 years ago
|
||
Comment on attachment 9021681 [details]
Data Review Request
DATA COLLECTION REVIEW RESPONSE:
Is there or will there be documentation that describes the schema for the ultimate data set available publicly, complete and accurate?
Yes. Standard Telemetry mechanisms apply.
Is there a control mechanism that allows the user to turn the data collection on and off?
Yes. Standard Telemetry mechanisms apply.
If the request is for permanent data collection, is there someone who will monitor the data over time?
N/A, expires in 70.
Using the category system of data types on the Mozilla wiki, what collection type of data do the requested measurements fall under? **
Category 1, Technical.
Is the data collection request for default-on or default-off?
Default on, all channels.
Does the instrumentation include the addition of any new identifiers (whether anonymous or otherwise; e.g., username, random IDs, etc. See the appendix for more details)?
No.
Is the data collection covered by the existing Firefox privacy notice?
Yes.
Does there need to be a check-in in the future to determine whether to renew the data?
Yes. :jld is responsible for renewing or removing this probe before it expires in Firefox 70.
---
Result: datareview+
Attachment #9021681 -
Flags: review?(chutten) → review+
Pushed by jedavis@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/9b1adbad418a Extend SANDBOX_HAS_USER_NAMESPACES telemetry. r=chutten,gcp
|
||
Comment 6•6 years ago
|
||
| bugherder | ||
https://hg.mozilla.org/mozilla-central/rev/9b1adbad418a
Status: NEW → RESOLVED
Closed: 6 years ago
status-firefox65:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla65
You need to log in
before you can comment on or make changes to this bug.
Description
•