I am getting notifications that Firefox tried to perform dcl. I have Firefox. it isnt opened or running in the background.
Firefox tried to Perform DCL. Firefox Not Open
angela How do you know that it's not running in the background.
Browser have a JIT for JavaScript and Wasm, so they required DCL from memory.
doublefree you can slide down the not. menu and at the end there is a circle and a number next to the user symbol.... you will see all running apps.
JIT... Just in TIme... so the browser shouldn't run and execute codes at random and not in the background...
@angela
Do you have also an alternative browser?
TOR browser builds upon Firefox so the issue might "just" be firefox-code related?
Does it happen somewhat regular?
if so: Does it try it also when the network permission is disabled?
Did you re-boot?
ILIKETRAINS AFAIK this lists only apps running a ForegroundService I.e. it does not list apps running in the background.
- Edited
I rebooted. Ive probaly rebooted 7 times since update.
It doesn't show on the list of running Apps.
Firefox shows as trying to use natibe code debugging and DCL
type: memory_DCL
osVersion: google/bluejay/bluejay:14/AP2A.240905.003.F1/2024090400:user/release-keys
package: org.mozilla.firefox:2016007175
DCL denial type: DENY_EXECMEMTor mentions DCL too but not native code debugging.
Neither App is running and this messages are showing after every restart.
In the log these errors are showing up currently, within past hours, after restart with neither App opened. I care less about the error than the Apps doing stuff without being opened.
- Edited
doublefree So there could be other Apps running and I don't know? That seems bad. Why is Firefox constantly running in the background? And Tor? What purpose could that serve?
Is there a way to shut down or kill apps in GOS?
Even with GOS, it seems I don't have control and don't know what this system is doing. The hardware is so modern and the OS is so smooth but stuff like this makes me want to change to something that I can control.
- Edited
doublefree I did a full restart and keep getting this error. If Firefox and Tor are launching something at App start that's a concern or I could be hacked.
- Edited
ILIKETRAINS I have alternate browsers.
This error happens immediately after a restart every time.
It does happen with network permission disabled.
[deleted]
angela did you check cached background processes also? It likely autostarts after reboot and suspends itself to launch quickly when you open the app, but even in that state it's still active. Until you actually open the app, it won't be showing in the list of running processes. That's just my understanding by observing behaviour of certain system apps.
doublefree AFAIK this lists only apps running a ForegroundService I.e. it does not list apps running in the background.
yet it does show me apps which are running the background - it states "active" - what you might mean is that it doesn't show all processes?
angela Neither App is running and this messages are showing after every restart.
angela This error happens immediately after a restart every time.
Do you have some sort of auto-update?
angela package: org.mozilla.firefox:2016007175
And did you try to update the apk? since this seems to be an older build (whch would make sense for TOR tho)
angela doublefree So there could be other Apps running and I don't know? That seems bad. Why is Firefox constantly running in the background? And Tor? What purpose could that serve?
More user-friendly; apps start faster etc. That's why most Android-OS also use the "deep sleep" option for apps which aren't used regular. The lack of process control is indeed a problem with Android, imo
angela Is there a way to shut down or kill apps in GOS?
You can go into "apps", select an app and "force stop"
[deleted]
angela how do you check which apps or processes are running?
Settings > System > Developer options > Running services
You can also tap three dots and show cached processes
It is the sole reason why I keep my Developer options unlocked
- Edited
angela I dont know what it is or how to check it.
There is an app for that - or via developer options; this guide should work:
https://support.corellium.com/troubleshooting-faqs/apps-and-processes-android
[deleted] kudos for being faster around 1 sec
ILIKETRAINS i never ran fitefox or requested it to autostart and it is not showing in active app.
i think this is some exploit or ive been hacked. i should probably stoping using gos :-( cell phones are too frequently targeted
[deleted]
- Edited
angela activate it by tapping 7 times on Build number in Settings > About phone. Don't go playing with anything else, just view the running services
angela I don't see developer option
you might need to activate it. Go to "setting" > "about phone" and tap like 7 times on the "build number" 8at the end)
A message like "you're now a developer" should appear
angela i never ran fitefox or requested it to autostart and it is not showing in active app.
wait...? You have a browser that you don't use?
And the most stupid question: what a about de- and re-sinstall?
angela i think this is some exploit or ive been hacked. i should probably stoping using gos :-( cell phones are too frequently targeted
well... GOS shouldn't be blamed. But indeed, smart phones in general - as you said.
thanks
i activated it and looked at the runnjng processes. firefox is not there.
ILIKETRAINS i can de and re instill but i wish i knew why this happend
is firefox starting up then shutting down at startup?
[deleted]
angela tap three dots in that list and view cached...
I had the same issue. After stopping the app from the Seetings>Apps menu Firefox ceased to annoy me with failed background stuff. I haven't used it ever since.
I don't know why Firefox assumes it's ok to start background processes and I've never bothered to check. I know FF on android still shares usage data (or whatever) despite unchecking the box in the settings. So I assumed it had something to do with that.
I think it's a bit premature to assume you've been hacked because FF generates errors. It's certainly not trivial to hack into a GOS device and I doubt that a sophisticated attack would solely rely on Firefox. Before you start to reset your device try to rule out any other possible explanation for FFs behavior. Then, if being hacked is still the most likely explanation proceed with a clean reinstall of GrapheneOS.
I just tried on my phone with a fresh install of Firefox, and I get the same error message.
Firefox must be trying to start in the background for some reason. Maybe to get notifications, sync bookmarks, or whatever. I'd suggest you ask them in one of their communities what their app is doing in the background.
I doubt you'll see it in any lists of running apps because Firefox may just start up quickly, do something and close again within seconds.
After disabling Settings > Apps > All apps > Firefox > App battery usage > Allow background usage, I haven't seen the error pop up. It probably would stop popping up if battery saver mode is on, too. Firefox may request to run after the phone starts up, so it popping up after a restart wouldn't be surprising.
I'm deleting Firefox.
I knew it had telemetry but autorunning on boot without telling me is a violation of trust.
Is there a way to see if other Apps engage in this sort of Tretchery? Tor browser is giving me the same error.
[deleted]
angela it's not a treachery but added functionality :) you need to calm down a bit please and keep learning. I myself have a long way to go. But you are right to let go of Firefox, Mull and all things alike. Stick with Vanadium, our devs are very smart guys.
angela My phone does the same thing with both Firefox and Tor, so it's not unique behavior to your phone.
Does Vandium make users stand out through conventional fingerprinting (canvas, audio, textmetrics etc)? My threat model involves risks of being tracked and fewer risks of being hacked. I could disable the background usage of Tor.
It's really unfortunate that not only do Tor and Firefox both have this error, but it's done in a way that could allow for an exploit.
I am sure you already know this but you can check your browser's fingerprint here: https://coveryourtracks.eff.org/
It may or may not be very accurate but it provides a good first impression on your situation.
This one (https://browserleaks.com/) is a little more in depth. I am sure there are others.
Is there a way to see if other Apps engage in this sort of Tretchery?
I guess you have to uninstall all apps with RECEIVE_BOOT_COMPLETED permission (installt-ime permission) which are likely >50% of your apps.
The Vikings are continuing to expand.
doublefree I guess you have to uninstall all apps with RECEIVE_BOOT_COMPLETED permission (install-time permission)
There are ways apps can tell if a device has booted even if they do not have this permission. Unfortunately many of the install-time permissions are misleadingly named or they suggest an app can not do something which is still possible. It is easy to get confused by looking at those permissions.
angela Does Vandium make users stand out through conventional fingerprinting (canvas, audio, textmetrics etc)? My threat model involves risks of being tracked and fewer risks of being hacked. I could disable the background usage of Tor.
Well... Orbot perhaps? But it might opens a new vector at entrance nodes for you. Depending what VPN-app you have to sacrifice
And your firefox and TOR browser share the same issue bc TOR browser is a modded firefox
The devs here themselves here acknowledge that their security with vandium is high but their anti fingerprinting isn't "there yet" (but also not the biggest fans of TOR(-browser) when speaking about their browser)
AcidDemon It was a subjective statement without any numbers, like "Pink is a pretty color." There have been many cell phone exploits that people didn't discover until later, many think MBS's assasins were possibly able to slaughter a journalist because of one such exploit. (Even if the exploit didn't lead to the meeting, the knowledge that he was encircled and monitored in ways he didn't know may have.) Even if there is bias from reading only the worst cases, there are many ways user privacy is targeted with cell phones to an extreme amount and and it shouldn't be a controversial statement.