Issue 2160: Proxy requests for CRLSets through crlsets[n].brave.com

[jumde]

fixes brave/brave-browser#2160

Submitter Checklist:

• Submitted a ticket for my issue if one did not already exist.
• Used Github auto-closing keywords in the commit message.
• Added/updated tests for this change (for new code or code which already has tests).
• Verified that these changes build without errors on
  • Windows
  • macOS
  • Linux
• Verified that these changes pass automated tests (npm test brave_unit_tests && npm test brave_browser_tests) on
  • Windows
  • macOS
  • Linux
• Ran git rebase master (if needed).
• Ran git rebase -i to squash commits (if needed).
• Tagged reviewers and labelled the pull request as needed.
• Request a security/privacy review as needed.
• Add appropriate QA labels (QA/Yes or QA/No) to include the closed issue in milestone

Test Plan:

1. Delete the user data directory
2. Start brave and start network monitor like Little Snitch
3. Verify no connections are made to dl.google.com or *.gvt.com for fetching CRLSets
4. Verify if CRLSets exist in <data-dir>/CertificateRevocation/
5. Navigate to revoked.badssl.com to verify certificate error is displayed.

Reviewer Checklist:

• New files have MPL-2.0 license header.
• Request a security/privacy review as needed.
• Adequate test coverage exists to prevent regressions
• Verify test plan is specified in PR before merging to source

[diracdeltas]

are you sure these are never sent over HTTPS instead of HTTP?

[diracdeltas]

eventually i think it would be good to move all these proxy endpoints to a single endpoint like proxy.brave.com instead of having one endpoint for every google host. that way, people who use little snitch or other firewalls will only have to whitelist one host and new proxied requests will not trigger alerts.

[diracdeltas]

please add some kind of test for this

[jumde]

please add some kind of test for this

https://github.com/brave/brave-core/pull/920/files#diff-58c3b6971fd1539fa4e2376e5933752eR104

[diracdeltas]

@jumde sorry, i meant an automated test that runs as part of the test suite to check that these URLs are being rewritten as expected

[jumde]

@jumde sorry, i meant an automated test that runs as part of the test suite to check that these URLs are being rewritten as expected

https://github.com/brave/brave-core/pull/920/files#diff-f31851c38d55f93616f9233f6874e556R71

[pilgrim-brave]

I don't think we should enforce a blacklist here. If the URL remapping logic is solid (and backed by tests, thank you), then this check is unnecessary anyway.

[pilgrim-brave]

Tests LGTM

[diracdeltas]

note to the merger: this should be uplift-requested to the same release that #652 is in since it fixes an issue caused by that PR. currently it is requested to be in 0.57

[diracdeltas]

@pilgrim-brave ready for re-review

[diracdeltas]

merging and adding uplift to 0.57 request

[kjozwiak]

Because we're planning on migrating muon users during the 0.57.x release and security issues like these tend to be a bit more riskier as any regression(s) that might spawn from this will most likely require an immediate hotfix. This might complicate things during the muon migration. I proposed skipping 0.57.x and getting this into 0.58.x which will be released on Dec 20th. I double checked and made sure @diracdeltas was okay with this as well.

@jumde can you merge this into 0.58.x before Dec 4th so it gets included when 0.58.x moves into beta? BTW, there's no approval needed to land things into the dev channel for now 👍.

[jumde]

0.58.x - dac0881

[bbondy]

master: f8f2b2e

[jumde]

Reverted: #986 (master and 0.58.x)