Open Bug 1954616 Opened 1 month ago Updated 22 days ago

Record usage of privacy.userContext.enabled (set by contextualIdentities extension permission)

Categories

(GeckoView :: Extensions, task, P3)

Product:
GeckoView
Component:
Extensions
Platform:
All
Android
Type:
task

Tracking

(Not tracked)

People

(Reporter: robwu, Unassigned)

References

(Blocks 1 open bug)

Details

In bug 1659500 we finally disabled the contextualIdentities permission in Firefox. Unfortunately, we did not do so before general availability of Add-ons, so there is a chance that users used extensions that requested the permission, which would have turned on the privacy.userContext.enabled preference. That in its turn enables extensions with the "cookies" permission to call tabs.create() with the cookieStoreId parameter to create container tabs. These "container tabs" are using the incorrect origin attributes, which we'd like to change (bug 1643740).

Now the problem is, if we ever want to replace geckoViewSessionContextId with userContextId (bug 1643740), it is possible for stored data to exist that is now inaccessible to the user - in other words dataloss. To assess the impact, we can do the following:

  • Add telemetry that records the value of the privacy.userContext.enabled permission (this is why I filed this bug).
  • Monitor extensions for brokenness: existing users will still have the pref, but new users will not.

On desktop I would put it at https://searchfox.org/mozilla-central/rev/f07a6b1e84a609fbf9746f67be9edd43b3ed3362/toolkit/components/telemetry/app/TelemetryEnvironment.sys.mjs#356, not sure where it should go on mobile.

Severity: -- → N/A
Priority: -- → P3
You need to log in before you can comment on or make changes to this bug.