Add Constellation/STAR encryption for P3A #14399
Conversation
DJAndries
requested review from
iefremov,
fmarier,
a team and
bridiver
as code owners
github-actions
bot
added
the
CI/run-audit-deps
DJAndries
force-pushed
the
p3a-star-v2
branch
4 times, most recently
from
491f29f
to
e590d91
Compare
There was a problem hiding this comment.
My comments have been addressed. Approving
@fmarier feel free to close this one out once you're satisfied with it
DJAndries
force-pushed
the
p3a-star-v2
branch
from
c71f93b
to
4a34aaf
Compare
DJAndries
force-pushed
the
p3a-star-v2
branch
2 times, most recently
from
4bbe614
to
241c7c5
Compare
…service in browser process instead, misc feedback fixes
…e randomness server
DJAndries
force-pushed
the
p3a-star-v2
branch
3 times, most recently
from
c9fa07b
to
a477fae
Compare
…ponse/server unavailability, misc feedback updates for p3a config
|
Will perform smoke tests before merge |
|
How's this going? It would be good to get this merged so other code can build on it. Since it's disabled by default, it should be fine to land as long as it hasn't broken the default experience. |
i intend on merging this later today |
|
@DJAndries would you be able to write a test plan for QA? |
updated now that #18340 has landed |
| } | ||
|
|
||
| content::BrowserTaskEnvironment task_environment_; | ||
| network::TestURLLoaderFactory url_loader_factory; |
There was a problem hiding this comment.
These variables are not named according to convention required by the the style guide [1]. I'm flagging this to raise some awareness, to authors and reviewers, as I've come across a few places today where such cases seemed to have got into master.
I also think we could there are some area for improvement about which members should have been kept private, or protected.
[1] https://google.github.io/styleguide/cppguide.html#Variable_Names
Resolves brave/brave-browser#24338
Submitter Checklist:
QA/YesorQA/No;release-notes/includeorrelease-notes/exclude;OS/...) to the associated issuenpm run test -- brave_browser_tests,npm run test -- brave_unit_tests,npm run lint,npm run gn_check,npm run tslintgit rebase master(if needed)Reviewer Checklist:
gnAfter-merge Checklist:
changes has landed on
Test Plan:
Please test in a version that includes #18340 or #18410.
Access https://star-randsrv.bsg.brave.software/info and note the
currentEpochvalue.Perform this first test without a MITM proxy (Nitro Enclave attestation will not work without proxy).
--enable-features="BraveP3AConstellation" --p3a-star-randomness-host=https://star-randsrv.bsg.bravesoftware.com --p3a-constellation-upload-url=https://collector.bsg.bravesoftware.com/brave.p3a.approved_cert_fpshould contain a value prefixed withsha256/,brave.p3a.current_epochshould contain the value noted above,brave.p3a.current_pkshould contain a long string,brave.p3a.next_epoch_timeshould contain a numerical timestamp value,p3a.logs_constellation_prepshould exist with the typical list of metrics/values/etc.p3a.constellation_logs.{epoch number}should contain a list of metrics with the name as the key, and the encrypted base-64 value as the value. A new log should appear in the list every minute. Verify that the relevant metrics in thep3a.logs_constellation_preplist indicate being sent.--p3a-fake-star-epoch=. Add one to the current epoch and append the value to the flag.p3a.constellation_logs.{original epoch number}.p3a.constellation_logs.{original epoch number}do not exist (due to expiry).Perform this second test using a MITM proxy, and add the
--p3a-disable-star-attestationflag./inforequest is sent to the randomness server./randomnessrequests are sent to the randomness server. Ensure that the number of metrics existing in the Constellation logs (in local state) matches the number of randomness requests sent. Ensure no requests are sent to the upload url./inforequest should be sent. Encrypted metrics should be uploaded to the upload URL after a few minutes. Randomness requests should fail since the current fake epoch is not valid.Ensure JSON metrics are sent as usual with or without the Constellation feature enabled.