1565196 - (android:isolatedProcess) [meta] Enable android:isolatedProcess on GeckoView

Status: NEW

(GeckoView :: General, enhancement, P3)

Description

[Gian-Carlo Pascutto [:gcp]]

+++ This bug was initially created as a clone of Bug #1498614 +++

If android:isolatedProcess is set to true, this service will run under a special process that is isolated from the rest of the system and has no permissions of its own. The only communication with it is through the Service API (binding and starting).

https://developer.android.com/guide/topics/manifest/service-element#isolated

Comment 1

[Chris Peterson [:cpeterson]]

Gian-Carlo, do you plan to start working on android:isolatedProcess for GeckoView soon? You assigned this bug to yourself but also gave it a P5 priority, which confused me.

Comment 2

[Gian-Carlo Pascutto [:gcp]]

The P5 is from the cloning. I plan to investigate further in Q3 2019.

Comment 3

[Gian-Carlo Pascutto [:gcp]]

Not working on this right now - I understand Aaron Klotz is now looking into this.

Comment 4

[Chris Peterson [:cpeterson]]

Tracking this bug for Android Fission, but it doesn't need to block Android Fission MVP.

Comment 5

[Tad]

Relevant Fenix issue on GitHub: https://github.com/mozilla-mobile/fenix/issues/10493

What needs to be done to provide impetus for this critical feature?
Last priority set was level 5 (wontfix), then 2 ("not important"), and now unset?

The general consensus in the Android privacy and security community is moving towards completely disregarding Fenix due to this loss of security among others compared to Chromium. Long story short, it is sad to see.

Kindly,
Tad.

Comment 6

[[ex-Mozilla] Agi Sferro | :agi]

(In reply to Tad from comment #5)

What needs to be done to provide impetus for this critical feature?
Last priority set was level 5 (wontfix), then 2 ("not important"), and now unset?

This is already our top priority for this year. We don't prioritize meta bugs, only leaf bugs in the dependency tree hence why this doesn't have a priority.

Comment 7

[Tad]

(In reply to Agi Sferro | :agi | ni? for questions | ⏰ PST | he/him from comment #6)

This is already our top priority for this year. We don't prioritize meta bugs, only leaf bugs in the dependency tree hence why this doesn't have a priority.

Thank you for the quick response and clarification.
I am glad to hear that.

Comment 8

[Chris Peterson [:cpeterson]]

Moving isolated process bugs to the new GeckoView::Sandboxing component.

Comment 9

[zesanup]

What is the current status of this bug? I can't find any recent activity in the linked bugs.

Comment 10

[Chris Peterson [:cpeterson]]

This Android work is blocked waiting for the Gecko team to move some code out of the tab content processes.

Comment 11

[zesanup]

The Atlassian link you've added is blocked by a login. Anything relevant on there that you were pointing me to, or was this just routine ticket maintenance?

Comment 12

[Chris Peterson [:cpeterson]]

(In reply to zesanup from comment #11)

The Atlassian link you've added is blocked by a login. Anything relevant on there that you were pointing me to, or was this just routine ticket maintenance?

The Jira link doesn't include any information that isn't already here in this Bugzilla bug report. Some Mozilla teams use Jira for sprint planning, but Bugzilla is still the source of truth for bugs.

Comment 13

[Chris Peterson [:cpeterson]]

Isolated processes don't need to block Android Fission, so moving bug 1725480 and bug 1725251 from "Blocks" to "See Also".