1771024 - Firefox loses active logins when closed unexpectedly and set to "delete cookies and site data when closed"

Status: RESOLVED FIXED

(Toolkit :: Data Sanitization, defect, P1)

Description

[Asif Youssuff]

Recent regression.

Steps to reproduce:

1. Login to reddit (or bugzilla, or github, or element - I used reddit)
2. enable "Delete cookies and site data when Nightly is closed"
3. ensure that the site permission for reddit (via the page info dialog) is set to "allow" for "set cookies"
4. kill firefox via a task manager (not a clean quit)
5. start Firefox

What happens:

I am logged out from reddit.

Expected result:

I am still logged into reddit, as was the case prior to regression.

7:54.23 INFO: Narrowed integration regression window from [5da87985, cda9c3f8] (3 builds) to [3a23a97d, cda9c3f8] (2 builds) (~1 steps left)
7:54.23 INFO: No more integration revisions, bisection finished.
7:54.23 INFO: Last good revision: 3a23a97debf3c86cf70927df8cefa0e44fdd7e5d
7:54.23 INFO: First bad revision: cda9c3f8950b0fcb826af8f7c0516275c8c0f7b2
7:54.23 INFO: Pushlog:
https://hg.mozilla.org/integration/autoland/pushloghtml?fromchange=3a23a97debf3c86cf70927df8cefa0e44fdd7e5d&tochange=cda9c3f8950b0fcb826af8f7c0516275c8c0f7b2

Comment 1

[Asif Youssuff]

[Tracking Requested - why for this release]: This bug causes data loss in cases where Firefox closes unexpectedly. It is extremely annoying to deal with, especially for users in ram constrained devices where Firefox may be closed by the OS.

Comment 2

[BugBot [:suhaib / :marco/ :calixte]]

Set release status flags based on info from the regressing bug 1681495

Comment 3

[BugBot [:suhaib / :marco/ :calixte]]

:hpeuckmann, since you are the author of the regressor, bug 1681495, could you take a look?
For more information, please visit auto_nag documentation.

Comment 4

[Hannah Peuckmann]

Please go to the 'History' section in about:preferences#privacy, under settings you can uncheck "Active logins". That should solve the problem. Since Bug 1770881 active logins will not be automatically set anymore when selecting "Delete cookies and site data".
Please report if the problem still exists after unchecking the active logins checkbox.

Comment 5

[Pascal Chevrel:pascalc (PTO until April 26)]

Ethan, Hannah, could we get a priority and severity set on this bug to help release management prioritize this issue? Thanks

Comment 6

[Asif Youssuff]

(In reply to hpeuckmann@mozilla.com from comment #4)

Please go to the 'History' section in about:preferences#privacy, under settings you can uncheck "Active logins". That should solve the problem. Since Bug 1770881 active logins will not be automatically set anymore when selecting "Delete cookies and site data".
Please report if the problem still exists after unchecking the active logins checkbox.

Hannah, in my existing Firefox profile, the "Active logins" checkbox is unchecked, and I still experience the issue, unfortunately.

The only checkboxes checked in my existing profile are: Cookies, Cache, and Offline website data.

Comment 7

[Paul Zühlcke [:pbz]]

Setting preliminary priority / severity flags.
My initial impression is that this is expected behavior, because we want to - even on crash - ensure data is properly cleared when Firefox quits. There is even special code in Sanitizer.jsm to cleanup on startup if the shutdown cleanup has been interrupted. I get that this might be a behavior change from the legacy cookie lifetime policy feature though.
I'll discuss this with Hannah in detail next week and we'll post an update here.

Edit: It's odd that we don't honor the exception though. We should look into that.

Comment 8

[Asif Youssuff]

(In reply to Paul Zühlcke [:pbz] from comment #7)

Setting preliminary priority / severity flags.
My initial impression is that this is expected behavior, because we want to - even on crash - ensure data is properly cleared when Firefox quits. There is even special code in Sanitizer.jsm to cleanup on startup if the shutdown cleanup has been interrupted. I get that this might be a behavior change from the legacy cookie lifetime policy feature though.

Edit: It's odd that we don't honor the exception though. We should look into that.

Not honoring the exception makes it completely unexpected. If it were expected, the same behavior would occur when quitting normally. That isn't the case.

Comment 9

[Asif Youssuff]

@Pascal, I ask that you reconsider not tracking this bug for 102, since I am now seeing reports that Firefox being killed by systemd-oomd is becoming more common as distributions move to it.

I had previously filed bug 1768765 in regards to the systemd-oomd issues I was experiencing, but I think the social media posts I posted in that bug are relevant in understanding that this issue if released in release Firefox is likely to cause real dissatisfaction and data loss:

• https://www.reddit.com/r/linux/comments/uyl572/ubuntu_2204s_new_oom_killing_system_is_killing/
• https://www.reddit.com/r/Ubuntu/comments/uyl4i6/ubuntu_2204s_new_oom_killing_system_is_killing/

Given that we know about this issue prior to release, and the fact that the improvement afforded in the regressing bug is essentially a tech-debt/cleanup item that works without significant bugs (like this one), I think it makes sense to revert the change until it can be made safer.

Comment 10

[Pascal Chevrel:pascalc (PTO until April 26)]

Paul, Hannah, how about backing out bug 1681495 from central now or from beta before we build 102 beta 1 if you think that the risk is acceptable for nightly?

Comment 11

[Pascal Chevrel:pascalc (PTO until April 26)]

After talking with Paul,; we are keeping the patch in nightly but will back it out from Beta 102 to give us more time to investigate the issue, thanks!

Comment 12

[Asif Youssuff]

Appreciate your responsiveness, team.

Comment 13

[Hannah Peuckmann]

Attachment: Bug 1771024 - Cleaning per principal when sanitizer is run on startup. r=pbz!

Comment 14

[Simon Mainey]

(In reply to hpeuckmann@mozilla.com from comment #4)

Please go to the 'History' section in about:preferences#privacy, under settings you can uncheck "Active logins". That should solve the problem.

Just to clarify ... AFAIK "Active logins" (privacy.clearOnShutdown.sessions) relates to HTTP Basic Authentication, not retaining logins via "cookies and site data" (cookies, offlineApps)

Comment 15

[Paul Zühlcke [:pbz]]

(In reply to Simon Mainey from comment #14)

(In reply to hpeuckmann@mozilla.com from comment #4)

Please go to the 'History' section in about:preferences#privacy, under settings you can uncheck "Active logins". That should solve the problem.

Just to clarify ... AFAIK "Active logins" (privacy.clearOnShutdown.sessions) relates to HTTP Basic Authentication, not retaining logins via "cookies and site data" (cookies, offlineApps)

That's right. These categories are quite old and confusing. We want to clean this up in Bug 1765533.

Comment 16

[Pascal Chevrel:pascalc (PTO until April 26)]

Backed out 8 changesets (bug 1770874) on beta, large refactoring during soft code freeze, needs nightly bake time a=backout
https://hg.mozilla.org/releases/mozilla-beta/rev/9399b62c86fb

Comment 17

[Pulsebot]

Pushed by hpeuckmann@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/a46093483742
Cleaning per principal when sanitizer is run on startup. r=pbz

Comment 18

[Narcis Beleuzu [:NarcisB]]

https://hg.mozilla.org/mozilla-central/rev/a46093483742

Comment 19

[Felix Geyer]

This bug is marked as fixed for 102 but I can reproduce the exact same problem on 102.0

Comment 20

[Paul Zühlcke [:pbz]]

This is tangentially related to the partial backout that caused Bug 1777419. We're migrating users to Sanitizer, but the Sanitizer fix for this bug landed in 103, not 102. The Sanitizer didn't use to support exceptions, but now that we're migrating users over from the cookie lifetime policy, which did support them, this is unexpected. Marking 102 as affected.