chromium/src
0
Fork 0
Code Activity
Files
27f334509e4edb51bb56d33660f8c9f7748036d1
src/net/dns/resolve_context.h
Eric Orth 4bb768e917 Add network-change invalidation for HostResolverCache 
No need to experiment guard this on usage of the new cache since it's
a cheap and safe operation.  Just won't have any practical effect since
HostResolverCache will stay empty and unread if the experiment is off.

Bug: 40269419
Change-Id: I67d5badb2ba6d1f517dbfdecfcc245eb6173ae0e
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/5973320
Reviewed-by: Kenichi Ishibashi <bashi@chromium.org>
Commit-Queue: Eric Orth <ericorth@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1376357}
2024-10-31 16:05:26 +00:00

352 lines
14 KiB
C++
Raw Blame History

// Copyright 2020 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef NET_DNS_RESOLVE_CONTEXT_H_
#define NET_DNS_RESOLVE_CONTEXT_H_
#include <memory>
#include <string>
#include <vector>
#include "base/memory/raw_ptr.h"
#include "base/memory/safe_ref.h"
#include "base/memory/weak_ptr.h"
#include "base/metrics/sample_vector.h"
#include "base/observer_list.h"
#include "base/observer_list_types.h"
#include "base/time/default_clock.h"
#include "base/time/default_tick_clock.h"
#include "base/time/time.h"
#include "base/timer/timer.h"
#include "net/base/isolation_info.h"
#include "net/base/net_export.h"
#include "net/base/network_handle.h"
#include "net/dns/dns_config.h"
#include "net/dns/public/secure_dns_mode.h"
namespace net {
class ClassicDnsServerIterator;
class DnsSession;
class DnsServerIterator;
class DohDnsServerIterator;
class HostCache;
class HostResolverCache;
class URLRequestContext;
// Represents various states of the DoH auto-upgrade process.
// These values are persisted to logs. Entries should not be renumbered and
// numeric values should never be reused. Update the corresponding enums.xml
// entry when making changes here.
enum class DohServerAutoupgradeStatus {
kSuccessWithNoPriorFailures = 0,
kSuccessWithSomePriorFailures = 1,
kFailureWithSomePriorSuccesses = 2,
kFailureWithNoPriorSuccesses = 3,
kMaxValue = kFailureWithNoPriorSuccesses
};
// Per-URLRequestContext data used by HostResolver. Expected to be owned by the
// ContextHostResolver, and all usage/references are expected to be cleaned up
// or cancelled before the URLRequestContext goes out of service.
class NET_EXPORT_PRIVATE ResolveContext : public base::CheckedObserver {
public:
// Number of failures allowed before a DoH server is designated 'unavailable'.
// In AUTOMATIC mode, non-probe DoH queries should not be sent to DoH servers
// that have reached this limit.
//
// This limit is different from the failure limit that governs insecure async
// resolver bypass in multiple ways: NXDOMAIN responses are never counted as
// failures, and the outcome of fallback queries is not taken into account.
static const int kAutomaticModeFailureLimit = 10;
// The amount of time to wait after `StartDohAutoupgradeSuccessTimer()` is
// called before `EmitDohAutoupgradeSuccessMetrics()` will be called to
// possibly record the state of the DoH auto-upgrade process.
static constexpr base::TimeDelta kDohAutoupgradeSuccessMetricTimeout =
base::Minutes(1);
class DohStatusObserver : public base::CheckedObserver {
public:
// Notification indicating that the current session for which DoH servers
// are being tracked has changed.
virtual void OnSessionChanged() = 0;
// Notification indicating that a DoH server has been marked unavailable,
// but is ready for usage such as availability probes.
//
// |network_change| true if the invalidation was triggered by a network
// connection change.
virtual void OnDohServerUnavailable(bool network_change) = 0;
protected:
DohStatusObserver() = default;
~DohStatusObserver() override = default;
};
ResolveContext(URLRequestContext* url_request_context,
bool enable_caching,
const base::Clock& clock = *base::DefaultClock::GetInstance(),
const base::TickClock& tick_clock =
*base::DefaultTickClock::GetInstance());
ResolveContext(const ResolveContext&) = delete;
ResolveContext& operator=(const ResolveContext&) = delete;
~ResolveContext() override;
// Returns an iterator for DoH DNS servers.
std::unique_ptr<DnsServerIterator> GetDohIterator(const DnsConfig& config,
const SecureDnsMode& mode,
const DnsSession* session);
// Returns an iterator for classic DNS servers.
std::unique_ptr<DnsServerIterator> GetClassicDnsIterator(
const DnsConfig& config,
const DnsSession* session);
// Returns whether |doh_server_index| is eligible for use in AUTOMATIC mode,
// that is that consecutive failures are less than kAutomaticModeFailureLimit
// and the server has had at least one successful query or probe. Always
// |false| if |session| is not the current session.
bool GetDohServerAvailability(size_t doh_server_index,
const DnsSession* session) const;
// Returns the number of DoH servers available for use in AUTOMATIC mode (see
// GetDohServerAvailability()). Always 0 if |session| is not the current
// session.
size_t NumAvailableDohServers(const DnsSession* session) const;
// Record failure to get a response from the server (e.g. SERVFAIL, connection
// failures, or that the server failed to respond before the fallback period
// elapsed. If |is_doh_server| and the number of failures has surpassed a
// threshold, sets the DoH probe state to unavailable. Noop if |session| is
// not the current session. Should only be called with with server failure
// |rv|s, not e.g. OK, ERR_NAME_NOT_RESOLVED (which at the transaction level
// is expected to be nxdomain), or ERR_IO_PENDING.
void RecordServerFailure(size_t server_index,
bool is_doh_server,
int rv,
const DnsSession* session);
// Record that server responded successfully. Noop if |session| is not the
// current session.
void RecordServerSuccess(size_t server_index,
bool is_doh_server,
const DnsSession* session);
// Record how long it took to receive a response from the server. Noop if
// |session| is not the current session.
void RecordRtt(size_t server_index,
bool is_doh_server,
base::TimeDelta rtt,
int rv,
const DnsSession* session);
// Return the period the next query should run before fallback to next
// attempt. (Not actually a "timeout" because queries are not typically
// cancelled as additional attempts are made.) |attempt| counts from 0 and is
// used for exponential backoff.
base::TimeDelta NextClassicFallbackPeriod(size_t classic_server_index,
int attempt,
const DnsSession* session);
// Return the period the next DoH query should run before fallback to next
// attempt.
base::TimeDelta NextDohFallbackPeriod(size_t doh_server_index,
const DnsSession* session);
// Return a timeout for an insecure transaction (from Transaction::Start()).
// Expected that the transaction will skip waiting for this timeout if it is
// using fast timeouts, and also expected that transactions will always wait
// for all attempts to run for at least their fallback period before dying
// with timeout.
base::TimeDelta ClassicTransactionTimeout(const DnsSession* session);
// Return a timeout for a secure transaction (from Transaction::Start()).
// Expected that the transaction will skip waiting for this timeout if it is
// using fast timeouts, and also expected that transactions will always wait
// for all attempts to run for at least their fallback period before dying
// with timeout.
base::TimeDelta SecureTransactionTimeout(SecureDnsMode secure_dns_mode,
const DnsSession* session);
void RegisterDohStatusObserver(DohStatusObserver* observer);
void UnregisterDohStatusObserver(const DohStatusObserver* observer);
URLRequestContext* url_request_context() { return url_request_context_; }
const URLRequestContext* url_request_context() const {
return url_request_context_;
}
void set_url_request_context(URLRequestContext* url_request_context) {
DCHECK(!url_request_context_);
DCHECK(url_request_context);
url_request_context_ = url_request_context;
}
HostCache* host_cache() { return host_cache_.get(); }
HostResolverCache* host_resolver_cache() {
return host_resolver_cache_.get();
}
// Invalidate or clear saved per-context cached data that is not expected to
// stay valid between connections or sessions (eg the HostCache and DNS server
// stats). |new_session|, if non-null, will be the new "current" session for
// which per-session data will be kept.
void InvalidateCachesAndPerSessionData(const DnsSession* new_session,
bool network_change);
const DnsSession* current_session_for_testing() const {
return current_session_.get();
}
void StartDohAutoupgradeSuccessTimer(const DnsSession* session);
bool doh_autoupgrade_metrics_timer_is_running_for_testing() {
return doh_autoupgrade_success_metric_timer_.IsRunning();
}
// Returns IsolationInfo that should be used for DoH requests. Using a single
// transient IsolationInfo ensures that DNS requests aren't pooled with normal
// web requests, but still allows them to be pooled with each other, to allow
// reusing connections to the DoH server across different third party
// contexts. One downside of a transient IsolationInfo is that it means
// metadata about the DoH server itself will not be cached across restarts
// (alternative service info if it supports QUIC, for instance).
const IsolationInfo& isolation_info() const { return isolation_info_; }
// Network to perform the DNS lookups for. When equal to
// handles::kInvalidNetworkHandle the decision of which one to target is left
// to the resolver. Virtual for testing.
virtual handles::NetworkHandle GetTargetNetwork() const;
base::SafeRef<ResolveContext> AsSafeRef() {
return weak_ptr_factory_.GetSafeRef();
}
base::WeakPtr<ResolveContext> GetWeakPtr() {
return weak_ptr_factory_.GetWeakPtr();
}
private:
friend DohDnsServerIterator;
friend ClassicDnsServerIterator;
// Runtime statistics of DNS server.
struct ServerStats {
explicit ServerStats(std::unique_ptr<base::SampleVector> rtt_histogram);
ServerStats(ServerStats&&);
~ServerStats();
// Count of consecutive failures after last success.
int last_failure_count = 0;
// True if any success has ever been recorded for this server for the
// current connection.
bool current_connection_success = false;
// Last time when server returned failure or exceeded fallback period. Reset
// each time that a server returned success.
base::TimeTicks last_failure;
// Last time when server returned success.
base::TimeTicks last_success;
// Whether the server has ever returned failure. Used for per-provider
// health metrics.
bool has_failed_previously = false;
// A histogram of observed RTT .
std::unique_ptr<base::SampleVector> rtt_histogram;
};
// Return the (potentially rotating) index of the first configured server (to
// be passed to [Doh]ServerIndexToUse()). Always returns 0 if |session| is not
// the current session.
size_t FirstServerIndex(bool doh_server, const DnsSession* session);
bool IsCurrentSession(const DnsSession* session) const;
// Returns the ServerStats for the designated server. Returns nullptr if no
// ServerStats found.
ServerStats* GetServerStats(size_t server_index, bool is_doh_server);
// Return the fallback period for the next query.
base::TimeDelta NextFallbackPeriodHelper(const ServerStats* server_stats,
int attempt);
template <typename Iterator>
base::TimeDelta TransactionTimeoutHelper(Iterator server_stats_begin,
Iterator server_stats_end);
// Record the time to perform a query.
void RecordRttForUma(size_t server_index,
bool is_doh_server,
base::TimeDelta rtt,
int rv,
base::TimeDelta base_fallback_period,
const DnsSession* session);
std::string GetQueryTypeForUma(size_t server_index,
bool is_doh_server,
const DnsSession* session);
std::string GetDohProviderIdForUma(size_t server_index,
bool is_doh_server,
const DnsSession* session);
bool GetProviderUseExtraLogging(size_t server_index,
bool is_doh_server,
const DnsSession* session);
void NotifyDohStatusObserversOfSessionChanged();
void NotifyDohStatusObserversOfUnavailable(bool network_change);
static bool ServerStatsToDohAvailability(const ServerStats& stats);
// Emit histograms indicating the current state of all configured DoH
// providers (for use in determining whether DoH auto-upgrade was successful).
void EmitDohAutoupgradeSuccessMetrics();
raw_ptr<URLRequestContext> url_request_context_;
std::unique_ptr<HostCache> host_cache_;
std::unique_ptr<HostResolverCache> host_resolver_cache_;
// Current maximum server fallback period. Updated on connection change.
base::TimeDelta max_fallback_period_;
// All DohStatusObservers only hold a WeakPtr<ResolveContext>, so there's no
// need for check_empty to be true.
base::ObserverList<DohStatusObserver,
false /* check_empty */,
false /* allow_reentrancy */>
doh_status_observers_;
// Per-session data is only stored and valid for the latest session. Before
// accessing, should check that |current_session_| is valid and matches a
// passed in DnsSession.
//
// Using a WeakPtr, so even if a new session has the same pointer as an old
// invalidated session, it can be recognized as a different session.
//
// TODO(crbug.com/40106440): Make const DnsSession once server stats have been
// moved and no longer need to be read from DnsSession for availability logic.
base::WeakPtr<const DnsSession> current_session_;
// Current index into |config_.nameservers| to begin resolution with.
int classic_server_index_ = 0;
base::TimeDelta initial_fallback_period_;
// Track runtime statistics of each classic (insecure) DNS server.
std::vector<ServerStats> classic_server_stats_;
// Track runtime statistics of each DoH server.
std::vector<ServerStats> doh_server_stats_;
const IsolationInfo isolation_info_;
base::OneShotTimer doh_autoupgrade_success_metric_timer_;
base::WeakPtrFactory<ResolveContext> weak_ptr_factory_{this};
};
} // namespace net
#endif // NET_DNS_RESOLVE_CONTEXT_H_
View Git Blame Copy Permalink