Bug 1935611 - Fix libyuv/libpng link failed for loongarch64. r=glandium,tnikkel,ng
[gecko.git] / security / manager / ssl / metrics.yaml
blob04bdfb9482ff476cdb58ab8159202d3a37a3b4e3
1 # This Source Code Form is subject to the terms of the Mozilla Public
2 # License, v. 2.0. If a copy of the MPL was not distributed with this
3 # file, You can obtain one at http://mozilla.org/MPL/2.0/.
4 # Adding a new metric? We have docs for that!
5 # https://firefox-source-docs.mozilla.org/toolkit/components/glean/user/new_definitions_file.html
7 ---
8 $schema: moz://mozilla.org/schemas/glean/metrics/2-0-0
9 $tags:
10   - 'Core :: Security: PSM'
12 cert_storage:
13   memory:
14     type: memory_distribution
15     memory_unit: byte
16     description: >
17       Heap memory used by cert_storage.
18     bugs:
19       - https://bugzilla.mozilla.org/show_bug.cgi?id=1910500
20     data_reviews:
21       - https://bugzilla.mozilla.org/show_bug.cgi?id=1910500
22     data_sensitivity:
23       - technical
24     notification_emails:
25       - jschanck@mozilla.com
26     expires: 142
28 data_storage:
29   alternate_services:
30     type: quantity
31     description:
32       The number of entries stored in the AlternateServices nsIDataStorage
33     bugs:
34       - https://bugzilla.mozilla.org/show_bug.cgi?id=1873080
35     data_reviews:
36       - https://bugzilla.mozilla.org/show_bug.cgi?id=1873080
37     data_sensitivity:
38       - interaction
39     notification_emails:
40       - dkeeler@mozilla.com
41     expires: never
42     unit: entries
43   client_auth_remember_list:
44     type: quantity
45     description:
46       The number of entries stored in the ClientAuthRememberList nsIDataStorage
47     bugs:
48       - https://bugzilla.mozilla.org/show_bug.cgi?id=1873080
49     data_reviews:
50       - https://bugzilla.mozilla.org/show_bug.cgi?id=1873080
51     data_sensitivity:
52       - interaction
53     notification_emails:
54       - dkeeler@mozilla.com
55     expires: never
56     unit: entries
57   site_security_service_state:
58     type: quantity
59     description:
60       The number of entries stored in the SiteSecurityServiceState nsIDataStorage
61     bugs:
62       - https://bugzilla.mozilla.org/show_bug.cgi?id=1873080
63     data_reviews:
64       - https://bugzilla.mozilla.org/show_bug.cgi?id=1873080
65     data_sensitivity:
66       - interaction
67     notification_emails:
68       - dkeeler@mozilla.com
69     expires: never
70     unit: entries
72 tls:
73   certificate_verifications:
74     type: counter
75     description: >
76       The total number of successful TLS server certificate verifications.
77     bugs:
78       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
79     data_reviews:
80       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
81     notification_emails:
82       - dkeeler@mozilla.com
83     expires: never
84   xyber_intolerance_reason:
85     type: labeled_counter
86     description: >
87       The error that was returned from a failed TLS 1.3 handshake in which the client sent a mlkem768x25519 key share (see tlsIntoleranceTelemetryBucket() in nsNSSIOLayer.cpp).
88     data_sensitivity:
89       - technical
90     bugs:
91       - https://bugzilla.mozilla.org/1874963
92     data_reviews:
93       - https://bugzilla.mozilla.org/1874963
94     notification_emails:
95       - jschanck@mozilla.com
96     expires: 136
97     labels:
98       - PR_CONNECT_RESET_ERROR
99       - PR_END_OF_FILE_ERROR
100       - SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE
101       - SSL_ERROR_BAD_MAC_ALERT
102       - SSL_ERROR_BAD_MAC_READ
103       - SSL_ERROR_DECODE_ERROR_ALERT
104       - SSL_ERROR_HANDSHAKE_FAILED
105       - SSL_ERROR_HANDSHAKE_FAILURE_ALERT
106       - SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT
107       - SSL_ERROR_ILLEGAL_PARAMETER_ALERT
108       - SSL_ERROR_INTERNAL_ERROR_ALERT
109       - SSL_ERROR_KEY_EXCHANGE_FAILURE
110       - SSL_ERROR_NO_CYPHER_OVERLAP
111       - SSL_ERROR_PROTOCOL_VERSION_ALERT
112       - SSL_ERROR_RX_UNEXPECTED_RECORD_TYPE
113       - SSL_ERROR_RX_MALFORMED_HYBRID_KEY_SHARE
114       - SSL_ERROR_UNSUPPORTED_VERSION
116 cert_compression:
117     failures:
118       type: labeled_counter
119       description:
120         The number of times each certificate compression algorithm returned an error.
121       data_sensitivity:
122         - interaction
123       bugs:
124         - https://bugzilla.mozilla.org/show_bug.cgi?id=1881027
125         - https://bugzilla.mozilla.org/show_bug.cgi?id=1933864
126       data_reviews:
127         - https://bugzilla.mozilla.org/1881027
128       notification_emails:
129         - anna.weine@mozilla.com
130       expires: never
131       labels:
132         - zlib
133         - brotli
134         - zstd
136 verification_used_cert_from:
137   tls_handshake:
138     type: rate
139     description: >
140       How many successfully-built certificate chains used a certificate from the TLS handshake.
141     bugs:
142       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
143     data_reviews:
144       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
145     notification_emails:
146       - dkeeler@mozilla.com
147     expires: never
148     denominator_metric: tls.certificate_verifications
149   preloaded_intermediates:
150     type: rate
151     description: >
152       How many successfully-built certificate chains used a certificate from preloaded intermediates.
153     bugs:
154       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
155     data_reviews:
156       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
157     notification_emails:
158       - dkeeler@mozilla.com
159     expires: never
160     denominator_metric: tls.certificate_verifications
161   third_party_certificates:
162     type: rate
163     description: >
164       How many successfully-built certificate chains used a third-party certificate from the OS.
165     bugs:
166       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
167     data_reviews:
168       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
169     notification_emails:
170       - dkeeler@mozilla.com
171     expires: never
172     denominator_metric: tls.certificate_verifications
173   nss_cert_db:
174     type: rate
175     description: >
176       How many successfully-built certificate chains used a certificate from the NSS cert DB.
177     bugs:
178       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
179     data_reviews:
180       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
181     notification_emails:
182       - dkeeler@mozilla.com
183     expires: never
184     denominator_metric: tls.certificate_verifications
185   built_in_roots_module:
186     type: rate
187     description: >
188       How many successfully-built certificate chains used a certificate from the built-in roots module.
189     bugs:
190       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
191     data_reviews:
192       - https://bugzilla.mozilla.org/show_bug.cgi?id=1876435
193     notification_emails:
194       - dkeeler@mozilla.com
195     expires: never
196     denominator_metric: tls.certificate_verifications
198 pkcs11:
199   third_party_modules_loaded:
200     type: quantity
201     description:
202       The number of third-party PKCS#11 modules loaded.
203     bugs:
204       - https://bugzilla.mozilla.org/show_bug.cgi?id=1905453
205     data_reviews:
206       - https://bugzilla.mozilla.org/show_bug.cgi?id=1905453
207     data_sensitivity:
208       - interaction
209     notification_emails:
210       - dkeeler@mozilla.com
211     expires: never
212     unit: modules
214 cert_verification_time:
215   success:
216     type: timing_distribution
217     time_unit: microsecond
218     description: >
219       The time it takes to successfully verify a certificate in a TLS handshake.
220     bugs:
221       - https://bugzilla.mozilla.org/show_bug.cgi?id=1862062
222       - https://bugzilla.mozilla.org/show_bug.cgi?id=1913794
223     data_reviews:
224       - https://bugzilla.mozilla.org/show_bug.cgi?id=1862062
225       - https://bugzilla.mozilla.org/show_bug.cgi?id=1913794
226     data_sensitivity:
227       - technical
228     notification_emails:
229       - seceng-telemetry@mozilla.com
230       - dkeeler@mozilla.com
231     expires: never
233   failure:
234     type: timing_distribution
235     time_unit: microsecond
236     description: >
237       The time it takes to fail to verify a certificate in a TLS handshake.
238     bugs:
239       - https://bugzilla.mozilla.org/show_bug.cgi?id=1862062
240       - https://bugzilla.mozilla.org/show_bug.cgi?id=1913794
241     data_reviews:
242       - https://bugzilla.mozilla.org/show_bug.cgi?id=1862062
243       - https://bugzilla.mozilla.org/show_bug.cgi?id=1913794
244     data_sensitivity:
245       - technical
246     notification_emails:
247       - seceng-telemetry@mozilla.com
248       - dkeeler@mozilla.com
249     expires: never
251 ocsp_request_time:
252   success:
253     type: timing_distribution
254     time_unit: millisecond
255     description: >
256       The time it takes to make an OCSP request that succeeded.
257     bugs:
258       - https://bugzilla.mozilla.org/show_bug.cgi?id=1862062
259       - https://bugzilla.mozilla.org/show_bug.cgi?id=1913794
260     data_reviews:
261       - https://bugzilla.mozilla.org/show_bug.cgi?id=1862062
262       - https://bugzilla.mozilla.org/show_bug.cgi?id=1913794
263     data_sensitivity:
264       - technical
265     notification_emails:
266       - seceng-telemetry@mozilla.com
267       - dkeeler@mozilla.com
268     expires: never
270   failure:
271     type: timing_distribution
272     time_unit: millisecond
273     description: >
274       The time it takes to make an OCSP request that failed.
275     bugs:
276       - https://bugzilla.mozilla.org/show_bug.cgi?id=1862062
277       - https://bugzilla.mozilla.org/show_bug.cgi?id=1913794
278     data_reviews:
279       - https://bugzilla.mozilla.org/show_bug.cgi?id=1862062
280       - https://bugzilla.mozilla.org/show_bug.cgi?id=1913794
281     data_sensitivity:
282       - technical
283     notification_emails:
284       - seceng-telemetry@mozilla.com
285       - dkeeler@mozilla.com
286     expires: never
288   cancel:
289     type: timing_distribution
290     time_unit: millisecond
291     description: >
292       The time it takes to make an OCSP request that was cancelled.
293     bugs:
294       - https://bugzilla.mozilla.org/show_bug.cgi?id=1862062
295       - https://bugzilla.mozilla.org/show_bug.cgi?id=1913794
296     data_reviews:
297       - https://bugzilla.mozilla.org/show_bug.cgi?id=1862062
298       - https://bugzilla.mozilla.org/show_bug.cgi?id=1913794
299     data_sensitivity:
300       - technical
301     notification_emails:
302       - seceng-telemetry@mozilla.com
303       - dkeeler@mozilla.com
304     expires: never
306 networking:
307   nss_initialization:
308     type: quantity
309     description: >
310       The time in milliseconds to initialize the NSS component in the
311       parent process.
312       This metric was generated to correspond to the Legacy Telemetry
313       scalar networking.nss_initialization.
314     bugs:
315       - https://bugzil.la/1628734
316     data_reviews:
317       - https://bugzil.la/1628734
318     notification_emails:
319       - mconley@mozilla.com
320       - dkeeler@mozilla.com
321     expires: never
322     unit: millisecond
323     telemetry_mirror: NETWORKING_NSS_INITIALIZATION
325   loading_certs_task:
326     type: quantity
327     description: >
328       The time in milliseconds to load any external certificates. This
329       occurs off of the main-thread, but can block main-thread operations.
330       This metric was generated to correspond to the Legacy Telemetry
331       scalar networking.loading_certs_task.
332     bugs:
333       - https://bugzil.la/1628734
334     data_reviews:
335       - https://bugzil.la/1628734
336     notification_emails:
337       - mconley@mozilla.com
338       - dkeeler@mozilla.com
339     expires: never
340     unit: millisecond
341     telemetry_mirror: NETWORKING_LOADING_CERTS_TASK
343 security:
344   client_auth_cert_usage:
345     type: labeled_counter
346     description: >
347       Measures how many servers have requested a client authentication
348       certificate (key: "requested") and how many times the user has opted
349       to send one in response (key: "sent").
350       This metric was generated to correspond to the Legacy Telemetry
351       scalar security.client_auth_cert_usage.
352     bugs:
353       - https://bugzil.la/1749884
354     data_reviews:
355       - https://bugzil.la/1749884
356     notification_emails:
357       - dkeeler@mozilla.com
358     expires: never
359     telemetry_mirror: SECURITY_CLIENT_AUTH_CERT_USAGE