Implement OpenVPN style DNS resolving #25489

bsclifton · 2022-09-19T20:56:09Z

Description

Basically, Windows can leak your ISP due to Smart Multi-Homed Name Resolution (even when you're on VPN). This is a feature of Windows and is expected behavior. See #22163 for full details.

We had attempted a solution using DNS over HTTP (see brave/brave-core#13434) but there were a few issues. See #25488 where we want to back this pull request and logic out.

The example shared by @bridiver can be found here:
https://github.com/OpenVPN/openvpn/blob/d92075e0ae6dba84a2e30e4ec12ca29250945371/src/openvpn/block_dns.c

This will block the other adapters (that Smart Multi-Homed Name Resolution would dispatch to) while Brave is open - meaning it will apply to all programs running on the device (instead of only queries made within Brave). A good test would be to hit https://browserleaks.com/dns from another browser when connected using the OpenVPN work-around

More context and details available to Brave employees by reading the security re-review here:
https://github.com/brave/security/issues/1029

Test cases

Start Brave, check browserleaks.com/dns shows your real location in any browser

Connect VPN
- check browserleaks.com/dns shows only VPN country locations, in all browsers
- check TaskManager or Windows services should show brave_vpn_helper.exe and launched service
Disconnect VPN and check browserleaks.com/dns
- check TaskManager Details tab should not show brave_vpn_helper.exe launched
- browserleaks.com/dns works and shows your real location in all browsers

Start Brave, check browserleaks.com/dns shows your real location in any browser

Connect VPN
- check browserleaks.com/dns shows VPN’s country locations only in all browsers
Close Brave
- check browserleaks.com/dns shows VPN’s country locations only in all browsers
Start Brave it should show connected VPN
Disconnect VPN and check browserleaks.com/dns
- check TaskManager Details tab should not show brave_vpn_helper.exe launched after 10 seconds
- browserleaks.com/dns works and shows your real location in all browsers

Install Brave without admin permissions,

check the helper vpn service was not registered (check list of services in the system)
setup and connect Brave VPN
check browserleaks.com/dns in Brave, it should not show the DNS leak because the browser should fallback to DoH overriding.

Install Brave as admin

setup and connect Brave VPN
check the helper service is launched..
kill helperservice executable in TaskManager
check the service automatically restarted after crash
repeat few times to kill it again and check the service will be restarted 3 times in total
after killing the service 4 time it should not be restarted again.
disconnect/Connect VPN again from Brave Browser and check it uses overridden DoH instead of VPN service. DNS leak should not happen.

Install Brave as admin

setup and connect Brave VPN
check the helper service is launched..
disconnect and connect vpn quickly
check the helper service is launched and dns data protected.

IPv6 test:
VPN OFF
- Navigate to https://test-ipv6.com/
- IPv6 should be ON
VPN ON
- Navigate to https://test-ipv6.com/
- IPv6 should be OFF
Through test
- VPN OFF
- Ping the ip 2001:470:1:18::223:250 it should respond without packet loss
- VPN ON
- Ping the ip 2001:470:1:18::223:250, it should not trasmit any response
- VPN OFF
- Ping the ip 2001:470:1:18::223:250 it should respond without packet loss

Install Brave as admin
- Setup and connect Brave VPN
- check the helper service is launched..
- crash service and check crash reports from the service created inside BraveSoftware\%channel%\User Data\Crashpad\reports
- Check reports will be uploaded to backtrace.io
- check the service will be uninstalled with the browser

The text was updated successfully, but these errors were encountered:

bsclifton · 2022-09-21T05:57:47Z

Needs discussion; marking as blocked for now

This is not a blocker for the release though

stephendonner · 2023-02-18T06:05:08Z

Removing blocked label as it's implemented, with QA/Yes and a provided testplan.

stephendonner · 2023-03-15T21:58:33Z

Verification `PASSED` using

Brave	1.50.91 Chromium: 111.0.5563.64 (Official Build) beta (64-bit)
Revision	c710e93d5b63b7095afe8c2c17df34408078439d-refs/branch-heads/5563@{#995}
OS	Windows 10 Version 22H2 (Build 19045.2728)

Admin-installed Brave - `PASSED`

Brave VPN Helper-service dynamic launching - `PASSED`

Steps:

(with Brave VPN installed as Admin, and configured)
launch Brave
click on the VPN button
toggle VPN to Connected
press ctrl + alt + del
click on Task Manager
confirm the presence of Brave VPN Helper service processes
disconnect and reconnect Brave VPN
confirm you see the processes disappear and then re-appear

`Brave VPN` `ON`	`Brave VPN` `OFF`	`Brave VPN` `ON`

Brave VPN Helper-service process kill & respawn - `PASSED`

Steps:

(with Brave VPN installed as Admin, and configured)
launch Brave
connect to BraveVPN
open the Task Manager via ctrl + alt + del
look for the Brave Beta Vpn Service process
kill the helper service executable by clicking End task in Task Manager
confirm the service automatically restarts after crash
repeat a few times to kill it again and check the service will be restarted 3 times in total
after killing the service the 4th time, it should not be restarted again
disconnect/Connect VPN again from Brave Browser and check it uses overridden DoH instead of VPN service. DNS leak should not happen.

`screencast`	`browserleaks.com/dns`	`brave://settings/security`

Crash reporting - `PASSED`

Steps:

(with Brave VPN installed as Admin, and configured)
open Registry Editor
look for Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BraveBetaVpnService
edit the ImagePath string to be "C:\Program Files\BraveSoftware\Brave-Browser-Beta\Application\111.1.50.94\brave_vpn_helper.exe" --crash-me (or similar)
launch Brave
connect to Brave VPN
press ctrl + alt + del to open Task Manager
context click on one of the column headings
toggle Command line on
look for the brave_vpn_helper.exe process that's launched with --type=crashpad-handler
toggle Brave VPN to Disconnected
toggle Brave VPN to Connected
confirm the brave_vpn_helper.exe process disappears from the Task Manager (as it crashed)
open C:\ProgramData\BraveSoftware\BraveBetaVpnService\Crashpad\reports
confirm crash-report .dmp (dump) files populate the above folder for each crash
grab a .dmp filename
load https://brave.sp.backtrace.io/
enter basic auth
set the filters to upload_file_minidump equal_to dump-filename (without the .dmp extension)
press enter
confirm crash-dump report loads

example	example	example	example

Non-admin installed Brave

DoH fallback - `PASSED`

double-click on the appropriate beta build's ` installer
when prompted by Windows to allow the app to make changes, click No
click Yes on the Brave-Browser-Beta can be installed without administrator privileges. Continue? dialog
configure Brave VPN
launch Brave
connect to Brave VPN
press ctrl + alt + del to open Task Manager
ensure there's no Brave VPN Helper service/process running
load https://browserleaks.com/dns
confirm under ISP your local ISP's DNS resolvers aren't shown (should be Cloudflare)
open brave://settings/security
confirm it says This setting is locked by BraveVPN while it is connected, under Use Secure DNS

`Task Manager`	`browserleaks.com/dns`	`brave://settings/security`

IPv6 Connectivity- `PASSED`

test-ipv6.com - PASSED

Steps:

(with Brave VPN installed as Admin, and configured)
launch Brave
connect to Brave VPN
load https://test-ipv6.com
confirm you receive a score, in red, of 0/10
disconnect from Brave VPN
reload the URL
confirm you receive a score, in green, of 10/10

`VPN off`	`VPN on`

ipv6-test.com - PASSED

Steps:

(with Brave VPN installed as Admin, and configured)
launch Brave
connect to Brave VPN
load https://ipv6-test.com
confirm IPv6 reads Not supported under IPv6 connectivity
disconnect from Brave VPN
reload https://ipv6-test.com
confirm IPv6 reads Supported

`VPN off`	`VPN on`

IPv6 address reachability (ping) - PASSED

Steps:

(with Brave VPN installed as Admin, and configured)
launch Brave
with Brave VPN Disconnected, ping 2001:470:1:18::223:250
confirm it responds to all pings, with 0% packet loss
connect to BraveVPN
ping 2001:470:1:18::223:250
confirm it drops all packets, with 100% loss

`VPN off`	`VPN on`

spylogsster · 2023-03-17T21:19:04Z

one more PR for crashes autoupload brave/brave-core#17074

stephendonner · 2023-03-20T22:03:29Z

Removing QA Pass-Win64 as this also needs to be verified on Windows 11.

stephendonner · 2023-03-23T16:02:50Z

Removing QA Pass-Win64 as this also needs to be verified on Windows 11.

Something's wrong with my installation/setup on Windows 11, so I logged #29217.

stephendonner · 2023-03-31T05:10:37Z

@MadhaviSeelam do you have bandwidth to take this, since my personal Windows 11 installation is neither true release (it's a preview release) nor acting right, per the above issue? Thanks!

MadhaviSeelam · 2023-04-03T21:57:18Z

Verification PASSED using

Brave | 1.50.110 Chromium: 112.0.5615.49 (Official Build) (64-bit)
-- | --
Revision | bd2a7bcb881c11e8cfe3078709382934e3916914-refs/branch-heads/5615@{#936}
OS | Windows 11 Version 22H2 (Build 22621.1413)