net/dns/dns_transaction.cc

*6777b538SAndroid Build Coastguard Worker// Copyright 2012 The Chromium Authors
*6777b538SAndroid Build Coastguard Worker// Use of this source code is governed by a BSD-style license that can be
*6777b538SAndroid Build Coastguard Worker// found in the LICENSE file.
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker#include "net/dns/dns_transaction.h"
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker#include <cstdint>
*6777b538SAndroid Build Coastguard Worker#include <memory>
*6777b538SAndroid Build Coastguard Worker#include <optional>
*6777b538SAndroid Build Coastguard Worker#include <set>
*6777b538SAndroid Build Coastguard Worker#include <string>
*6777b538SAndroid Build Coastguard Worker#include <string_view>
*6777b538SAndroid Build Coastguard Worker#include <unordered_map>
*6777b538SAndroid Build Coastguard Worker#include <utility>
*6777b538SAndroid Build Coastguard Worker#include <vector>
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker#include "base/base64url.h"
*6777b538SAndroid Build Coastguard Worker#include "base/containers/circular_deque.h"
*6777b538SAndroid Build Coastguard Worker#include "base/containers/span.h"
*6777b538SAndroid Build Coastguard Worker#include "base/functional/bind.h"
*6777b538SAndroid Build Coastguard Worker#include "base/functional/callback_helpers.h"
*6777b538SAndroid Build Coastguard Worker#include "base/location.h"
*6777b538SAndroid Build Coastguard Worker#include "base/memory/ptr_util.h"
*6777b538SAndroid Build Coastguard Worker#include "base/memory/raw_ptr.h"
*6777b538SAndroid Build Coastguard Worker#include "base/memory/ref_counted.h"
*6777b538SAndroid Build Coastguard Worker#include "base/memory/safe_ref.h"
*6777b538SAndroid Build Coastguard Worker#include "base/memory/weak_ptr.h"
*6777b538SAndroid Build Coastguard Worker#include "base/metrics/histogram_functions.h"
*6777b538SAndroid Build Coastguard Worker#include "base/metrics/histogram_macros.h"
*6777b538SAndroid Build Coastguard Worker#include "base/numerics/byte_conversions.h"
*6777b538SAndroid Build Coastguard Worker#include "base/rand_util.h"
*6777b538SAndroid Build Coastguard Worker#include "base/ranges/algorithm.h"
*6777b538SAndroid Build Coastguard Worker#include "base/strings/stringprintf.h"
*6777b538SAndroid Build Coastguard Worker#include "base/task/sequenced_task_runner.h"
*6777b538SAndroid Build Coastguard Worker#include "base/task/single_thread_task_runner.h"
*6777b538SAndroid Build Coastguard Worker#include "base/threading/thread_checker.h"
*6777b538SAndroid Build Coastguard Worker#include "base/timer/elapsed_timer.h"
*6777b538SAndroid Build Coastguard Worker#include "base/timer/timer.h"
*6777b538SAndroid Build Coastguard Worker#include "base/values.h"
*6777b538SAndroid Build Coastguard Worker#include "build/build_config.h"
*6777b538SAndroid Build Coastguard Worker#include "net/base/backoff_entry.h"
*6777b538SAndroid Build Coastguard Worker#include "net/base/completion_once_callback.h"
*6777b538SAndroid Build Coastguard Worker#include "net/base/elements_upload_data_stream.h"
*6777b538SAndroid Build Coastguard Worker#include "net/base/idempotency.h"
*6777b538SAndroid Build Coastguard Worker#include "net/base/io_buffer.h"
*6777b538SAndroid Build Coastguard Worker#include "net/base/ip_address.h"
*6777b538SAndroid Build Coastguard Worker#include "net/base/ip_endpoint.h"
*6777b538SAndroid Build Coastguard Worker#include "net/base/load_flags.h"
*6777b538SAndroid Build Coastguard Worker#include "net/base/net_errors.h"
*6777b538SAndroid Build Coastguard Worker#include "net/base/upload_bytes_element_reader.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/dns_config.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/dns_names_util.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/dns_query.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/dns_response.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/dns_response_result_extractor.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/dns_server_iterator.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/dns_session.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/dns_udp_tracker.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/dns_util.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/host_cache.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/host_resolver_internal_result.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/public/dns_over_https_config.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/public/dns_over_https_server_config.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/public/dns_protocol.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/public/dns_query_type.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/public/secure_dns_policy.h"
*6777b538SAndroid Build Coastguard Worker#include "net/dns/resolve_context.h"
*6777b538SAndroid Build Coastguard Worker#include "net/http/http_request_headers.h"
*6777b538SAndroid Build Coastguard Worker#include "net/log/net_log.h"
*6777b538SAndroid Build Coastguard Worker#include "net/log/net_log_capture_mode.h"
*6777b538SAndroid Build Coastguard Worker#include "net/log/net_log_event_type.h"
*6777b538SAndroid Build Coastguard Worker#include "net/log/net_log_source.h"
*6777b538SAndroid Build Coastguard Worker#include "net/log/net_log_values.h"
*6777b538SAndroid Build Coastguard Worker#include "net/log/net_log_with_source.h"
*6777b538SAndroid Build Coastguard Worker#include "net/socket/client_socket_factory.h"
*6777b538SAndroid Build Coastguard Worker#include "net/socket/datagram_client_socket.h"
*6777b538SAndroid Build Coastguard Worker#include "net/socket/stream_socket.h"
*6777b538SAndroid Build Coastguard Worker#include "net/third_party/uri_template/uri_template.h"
*6777b538SAndroid Build Coastguard Worker#include "net/traffic_annotation/network_traffic_annotation.h"
*6777b538SAndroid Build Coastguard Worker#include "net/url_request/url_request.h"
*6777b538SAndroid Build Coastguard Worker#include "net/url_request/url_request_context.h"
*6777b538SAndroid Build Coastguard Worker#include "net/url_request/url_request_context_builder.h"
*6777b538SAndroid Build Coastguard Worker#include "url/url_constants.h"
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Workernamespace net {
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Workernamespace {
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Workerconstexpr net::NetworkTrafficAnnotationTag kTrafficAnnotation =
*6777b538SAndroid Build Coastguard Worker    net::DefineNetworkTrafficAnnotation("dns_transaction", R"(
*6777b538SAndroid Build Coastguard Worker        semantics {
*6777b538SAndroid Build Coastguard Worker          sender: "DNS Transaction"
*6777b538SAndroid Build Coastguard Worker          description:
*6777b538SAndroid Build Coastguard Worker            "DNS Transaction implements a stub DNS resolver as defined in RFC "
*6777b538SAndroid Build Coastguard Worker            "1034."
*6777b538SAndroid Build Coastguard Worker          trigger:
*6777b538SAndroid Build Coastguard Worker            "Any network request that may require DNS resolution, including "
*6777b538SAndroid Build Coastguard Worker            "navigations, connecting to a proxy server, detecting proxy "
*6777b538SAndroid Build Coastguard Worker            "settings, getting proxy config, certificate checking, and more."
*6777b538SAndroid Build Coastguard Worker          data:
*6777b538SAndroid Build Coastguard Worker            "Domain name that needs resolution."
*6777b538SAndroid Build Coastguard Worker          destination: OTHER
*6777b538SAndroid Build Coastguard Worker          destination_other:
*6777b538SAndroid Build Coastguard Worker            "The connection is made to a DNS server based on user's network "
*6777b538SAndroid Build Coastguard Worker            "settings."
*6777b538SAndroid Build Coastguard Worker        }
*6777b538SAndroid Build Coastguard Worker        policy {
*6777b538SAndroid Build Coastguard Worker          cookies_allowed: NO
*6777b538SAndroid Build Coastguard Worker          setting:
*6777b538SAndroid Build Coastguard Worker            "This feature cannot be disabled. Without DNS Transactions Chrome "
*6777b538SAndroid Build Coastguard Worker            "cannot resolve host names."
*6777b538SAndroid Build Coastguard Worker          policy_exception_justification:
*6777b538SAndroid Build Coastguard Worker            "Essential for Chrome's navigation."
*6777b538SAndroid Build Coastguard Worker        })");
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Workerconst char kDnsOverHttpResponseContentType[] = "application/dns-message";
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker// The maximum size of the DNS message for DoH, per
*6777b538SAndroid Build Coastguard Worker// https://datatracker.ietf.org/doc/html/rfc8484#section-6
*6777b538SAndroid Build Coastguard Workerconst int64_t kDnsOverHttpResponseMaximumSize = 65535;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker// Count labels in the fully-qualified name in DNS format.
*6777b538SAndroid Build Coastguard Workerint CountLabels(base::span<const uint8_t> name) {
*6777b538SAndroid Build Coastguard Worker  size_t count = 0;
*6777b538SAndroid Build Coastguard Worker  for (size_t i = 0; i < name.size() && name[i]; i += name[i] + 1)
*6777b538SAndroid Build Coastguard Worker    ++count;
*6777b538SAndroid Build Coastguard Worker  return count;
*6777b538SAndroid Build Coastguard Worker}
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Workerbool IsIPLiteral(const std::string& hostname) {
*6777b538SAndroid Build Coastguard Worker  IPAddress ip;
*6777b538SAndroid Build Coastguard Worker  return ip.AssignFromIPLiteral(hostname);
*6777b538SAndroid Build Coastguard Worker}
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Workerbase::Value::Dict NetLogStartParams(const std::string& hostname,
*6777b538SAndroid Build Coastguard Worker                                    uint16_t qtype) {
*6777b538SAndroid Build Coastguard Worker  base::Value::Dict dict;
*6777b538SAndroid Build Coastguard Worker  dict.Set("hostname", hostname);
*6777b538SAndroid Build Coastguard Worker  dict.Set("query_type", qtype);
*6777b538SAndroid Build Coastguard Worker  return dict;
*6777b538SAndroid Build Coastguard Worker}
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker// ----------------------------------------------------------------------------
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker// A single asynchronous DNS exchange, which consists of sending out a
*6777b538SAndroid Build Coastguard Worker// DNS query, waiting for a response, and returning the response that it
*6777b538SAndroid Build Coastguard Worker// matches. Logging is done in the socket and in the outer DnsTransaction.
*6777b538SAndroid Build Coastguard Workerclass DnsAttempt {
*6777b538SAndroid Build Coastguard Worker public:
*6777b538SAndroid Build Coastguard Worker  explicit DnsAttempt(size_t server_index) : server_index_(server_index) {}
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  DnsAttempt(const DnsAttempt&) = delete;
*6777b538SAndroid Build Coastguard Worker  DnsAttempt& operator=(const DnsAttempt&) = delete;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  virtual ~DnsAttempt() = default;
*6777b538SAndroid Build Coastguard Worker  // Starts the attempt. Returns ERR_IO_PENDING if cannot complete synchronously
*6777b538SAndroid Build Coastguard Worker  // and calls |callback| upon completion.
*6777b538SAndroid Build Coastguard Worker  virtual int Start(CompletionOnceCallback callback) = 0;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Returns the query of this attempt.
*6777b538SAndroid Build Coastguard Worker  virtual const DnsQuery* GetQuery() const = 0;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Returns the response or NULL if has not received a matching response from
*6777b538SAndroid Build Coastguard Worker  // the server.
*6777b538SAndroid Build Coastguard Worker  virtual const DnsResponse* GetResponse() const = 0;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  virtual base::Value GetRawResponseBufferForLog() const = 0;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Returns the net log bound to the source of the socket.
*6777b538SAndroid Build Coastguard Worker  virtual const NetLogWithSource& GetSocketNetLog() const = 0;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Returns the index of the destination server within DnsConfig::nameservers
*6777b538SAndroid Build Coastguard Worker  // (or DnsConfig::dns_over_https_servers for secure transactions).
*6777b538SAndroid Build Coastguard Worker  size_t server_index() const { return server_index_; }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Returns a Value representing the received response, along with a reference
*6777b538SAndroid Build Coastguard Worker  // to the NetLog source source of the UDP socket used.  The request must have
*6777b538SAndroid Build Coastguard Worker  // completed before this is called.
*6777b538SAndroid Build Coastguard Worker  base::Value::Dict NetLogResponseParams(NetLogCaptureMode capture_mode) const {
*6777b538SAndroid Build Coastguard Worker    base::Value::Dict dict;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (GetResponse()) {
*6777b538SAndroid Build Coastguard Worker      DCHECK(GetResponse()->IsValid());
*6777b538SAndroid Build Coastguard Worker      dict.Set("rcode", GetResponse()->rcode());
*6777b538SAndroid Build Coastguard Worker      dict.Set("answer_count", static_cast<int>(GetResponse()->answer_count()));
*6777b538SAndroid Build Coastguard Worker      dict.Set("additional_answer_count",
*6777b538SAndroid Build Coastguard Worker               static_cast<int>(GetResponse()->additional_answer_count()));
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    GetSocketNetLog().source().AddToEventParameters(dict);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (capture_mode == NetLogCaptureMode::kEverything) {
*6777b538SAndroid Build Coastguard Worker      dict.Set("response_buffer", GetRawResponseBufferForLog());
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return dict;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // True if current attempt is pending (waiting for server response).
*6777b538SAndroid Build Coastguard Worker  virtual bool IsPending() const = 0;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker private:
*6777b538SAndroid Build Coastguard Worker  const size_t server_index_;
*6777b538SAndroid Build Coastguard Worker};
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Workerclass DnsUDPAttempt : public DnsAttempt {
*6777b538SAndroid Build Coastguard Worker public:
*6777b538SAndroid Build Coastguard Worker  DnsUDPAttempt(size_t server_index,
*6777b538SAndroid Build Coastguard Worker                std::unique_ptr<DatagramClientSocket> socket,
*6777b538SAndroid Build Coastguard Worker                const IPEndPoint& server,
*6777b538SAndroid Build Coastguard Worker                std::unique_ptr<DnsQuery> query,
*6777b538SAndroid Build Coastguard Worker                DnsUdpTracker* udp_tracker)
*6777b538SAndroid Build Coastguard Worker      : DnsAttempt(server_index),
*6777b538SAndroid Build Coastguard Worker        socket_(std::move(socket)),
*6777b538SAndroid Build Coastguard Worker        server_(server),
*6777b538SAndroid Build Coastguard Worker        query_(std::move(query)),
*6777b538SAndroid Build Coastguard Worker        udp_tracker_(udp_tracker) {}
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  DnsUDPAttempt(const DnsUDPAttempt&) = delete;
*6777b538SAndroid Build Coastguard Worker  DnsUDPAttempt& operator=(const DnsUDPAttempt&) = delete;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // DnsAttempt methods.
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int Start(CompletionOnceCallback callback) override {
*6777b538SAndroid Build Coastguard Worker    DCHECK_EQ(STATE_NONE, next_state_);
*6777b538SAndroid Build Coastguard Worker    callback_ = std::move(callback);
*6777b538SAndroid Build Coastguard Worker    start_time_ = base::TimeTicks::Now();
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_CONNECT_COMPLETE;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    int rv = socket_->ConnectAsync(
*6777b538SAndroid Build Coastguard Worker        server_,
*6777b538SAndroid Build Coastguard Worker        base::BindOnce(&DnsUDPAttempt::OnIOComplete, base::Unretained(this)));
*6777b538SAndroid Build Coastguard Worker    if (rv == ERR_IO_PENDING) {
*6777b538SAndroid Build Coastguard Worker      return rv;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    return DoLoop(rv);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  const DnsQuery* GetQuery() const override { return query_.get(); }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  const DnsResponse* GetResponse() const override {
*6777b538SAndroid Build Coastguard Worker    const DnsResponse* resp = response_.get();
*6777b538SAndroid Build Coastguard Worker    return (resp != nullptr && resp->IsValid()) ? resp : nullptr;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  base::Value GetRawResponseBufferForLog() const override {
*6777b538SAndroid Build Coastguard Worker    if (!response_)
*6777b538SAndroid Build Coastguard Worker      return base::Value();
*6777b538SAndroid Build Coastguard Worker    return NetLogBinaryValue(response_->io_buffer()->data(), read_size_);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  const NetLogWithSource& GetSocketNetLog() const override {
*6777b538SAndroid Build Coastguard Worker    return socket_->NetLog();
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  bool IsPending() const override { return next_state_ != STATE_NONE; }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker private:
*6777b538SAndroid Build Coastguard Worker  enum State {
*6777b538SAndroid Build Coastguard Worker    STATE_CONNECT_COMPLETE,
*6777b538SAndroid Build Coastguard Worker    STATE_SEND_QUERY,
*6777b538SAndroid Build Coastguard Worker    STATE_SEND_QUERY_COMPLETE,
*6777b538SAndroid Build Coastguard Worker    STATE_READ_RESPONSE,
*6777b538SAndroid Build Coastguard Worker    STATE_READ_RESPONSE_COMPLETE,
*6777b538SAndroid Build Coastguard Worker    STATE_NONE,
*6777b538SAndroid Build Coastguard Worker  };
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoLoop(int result) {
*6777b538SAndroid Build Coastguard Worker    CHECK_NE(STATE_NONE, next_state_);
*6777b538SAndroid Build Coastguard Worker    int rv = result;
*6777b538SAndroid Build Coastguard Worker    do {
*6777b538SAndroid Build Coastguard Worker      State state = next_state_;
*6777b538SAndroid Build Coastguard Worker      next_state_ = STATE_NONE;
*6777b538SAndroid Build Coastguard Worker      switch (state) {
*6777b538SAndroid Build Coastguard Worker        case STATE_CONNECT_COMPLETE:
*6777b538SAndroid Build Coastguard Worker          rv = DoConnectComplete(rv);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case STATE_SEND_QUERY:
*6777b538SAndroid Build Coastguard Worker          rv = DoSendQuery(rv);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case STATE_SEND_QUERY_COMPLETE:
*6777b538SAndroid Build Coastguard Worker          rv = DoSendQueryComplete(rv);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case STATE_READ_RESPONSE:
*6777b538SAndroid Build Coastguard Worker          rv = DoReadResponse();
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case STATE_READ_RESPONSE_COMPLETE:
*6777b538SAndroid Build Coastguard Worker          rv = DoReadResponseComplete(rv);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        default:
*6777b538SAndroid Build Coastguard Worker          NOTREACHED();
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker    } while (rv != ERR_IO_PENDING && next_state_ != STATE_NONE);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (rv != ERR_IO_PENDING)
*6777b538SAndroid Build Coastguard Worker      DCHECK_EQ(STATE_NONE, next_state_);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return rv;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoConnectComplete(int rv) {
*6777b538SAndroid Build Coastguard Worker    if (rv != OK) {
*6777b538SAndroid Build Coastguard Worker      DVLOG(1) << "Failed to connect socket: " << rv;
*6777b538SAndroid Build Coastguard Worker      udp_tracker_->RecordConnectionError(rv);
*6777b538SAndroid Build Coastguard Worker      return ERR_CONNECTION_REFUSED;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_SEND_QUERY;
*6777b538SAndroid Build Coastguard Worker    IPEndPoint local_address;
*6777b538SAndroid Build Coastguard Worker    if (socket_->GetLocalAddress(&local_address) == OK)
*6777b538SAndroid Build Coastguard Worker      udp_tracker_->RecordQuery(local_address.port(), query_->id());
*6777b538SAndroid Build Coastguard Worker    return OK;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoSendQuery(int rv) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_NE(ERR_IO_PENDING, rv);
*6777b538SAndroid Build Coastguard Worker    if (rv < 0)
*6777b538SAndroid Build Coastguard Worker      return rv;
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_SEND_QUERY_COMPLETE;
*6777b538SAndroid Build Coastguard Worker    return socket_->Write(
*6777b538SAndroid Build Coastguard Worker        query_->io_buffer(), query_->io_buffer()->size(),
*6777b538SAndroid Build Coastguard Worker        base::BindOnce(&DnsUDPAttempt::OnIOComplete, base::Unretained(this)),
*6777b538SAndroid Build Coastguard Worker        kTrafficAnnotation);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoSendQueryComplete(int rv) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_NE(ERR_IO_PENDING, rv);
*6777b538SAndroid Build Coastguard Worker    if (rv < 0)
*6777b538SAndroid Build Coastguard Worker      return rv;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    // Writing to UDP should not result in a partial datagram.
*6777b538SAndroid Build Coastguard Worker    if (rv != query_->io_buffer()->size())
*6777b538SAndroid Build Coastguard Worker      return ERR_MSG_TOO_BIG;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_READ_RESPONSE;
*6777b538SAndroid Build Coastguard Worker    return OK;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoReadResponse() {
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_READ_RESPONSE_COMPLETE;
*6777b538SAndroid Build Coastguard Worker    response_ = std::make_unique<DnsResponse>();
*6777b538SAndroid Build Coastguard Worker    return socket_->Read(
*6777b538SAndroid Build Coastguard Worker        response_->io_buffer(), response_->io_buffer_size(),
*6777b538SAndroid Build Coastguard Worker        base::BindOnce(&DnsUDPAttempt::OnIOComplete, base::Unretained(this)));
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoReadResponseComplete(int rv) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_NE(ERR_IO_PENDING, rv);
*6777b538SAndroid Build Coastguard Worker    if (rv < 0)
*6777b538SAndroid Build Coastguard Worker      return rv;
*6777b538SAndroid Build Coastguard Worker    read_size_ = rv;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    bool parse_result = response_->InitParse(rv, *query_);
*6777b538SAndroid Build Coastguard Worker    if (response_->id())
*6777b538SAndroid Build Coastguard Worker      udp_tracker_->RecordResponseId(query_->id(), response_->id().value());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (!parse_result)
*6777b538SAndroid Build Coastguard Worker      return ERR_DNS_MALFORMED_RESPONSE;
*6777b538SAndroid Build Coastguard Worker    if (response_->flags() & dns_protocol::kFlagTC)
*6777b538SAndroid Build Coastguard Worker      return ERR_DNS_SERVER_REQUIRES_TCP;
*6777b538SAndroid Build Coastguard Worker    if (response_->rcode() == dns_protocol::kRcodeNXDOMAIN)
*6777b538SAndroid Build Coastguard Worker      return ERR_NAME_NOT_RESOLVED;
*6777b538SAndroid Build Coastguard Worker    if (response_->rcode() != dns_protocol::kRcodeNOERROR)
*6777b538SAndroid Build Coastguard Worker      return ERR_DNS_SERVER_FAILED;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return OK;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void OnIOComplete(int rv) {
*6777b538SAndroid Build Coastguard Worker    rv = DoLoop(rv);
*6777b538SAndroid Build Coastguard Worker    if (rv != ERR_IO_PENDING)
*6777b538SAndroid Build Coastguard Worker      std::move(callback_).Run(rv);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  State next_state_ = STATE_NONE;
*6777b538SAndroid Build Coastguard Worker  base::TimeTicks start_time_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<DatagramClientSocket> socket_;
*6777b538SAndroid Build Coastguard Worker  IPEndPoint server_;
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<DnsQuery> query_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Should be owned by the DnsSession, to which the transaction should own a
*6777b538SAndroid Build Coastguard Worker  // reference.
*6777b538SAndroid Build Coastguard Worker  const raw_ptr<DnsUdpTracker> udp_tracker_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<DnsResponse> response_;
*6777b538SAndroid Build Coastguard Worker  int read_size_ = 0;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  CompletionOnceCallback callback_;
*6777b538SAndroid Build Coastguard Worker};
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Workerclass DnsHTTPAttempt : public DnsAttempt, public URLRequest::Delegate {
*6777b538SAndroid Build Coastguard Worker public:
*6777b538SAndroid Build Coastguard Worker  DnsHTTPAttempt(size_t doh_server_index,
*6777b538SAndroid Build Coastguard Worker                 std::unique_ptr<DnsQuery> query,
*6777b538SAndroid Build Coastguard Worker                 const string& server_template,
*6777b538SAndroid Build Coastguard Worker                 const GURL& gurl_without_parameters,
*6777b538SAndroid Build Coastguard Worker                 bool use_post,
*6777b538SAndroid Build Coastguard Worker                 URLRequestContext* url_request_context,
*6777b538SAndroid Build Coastguard Worker                 const IsolationInfo& isolation_info,
*6777b538SAndroid Build Coastguard Worker                 RequestPriority request_priority_,
*6777b538SAndroid Build Coastguard Worker                 bool is_probe)
*6777b538SAndroid Build Coastguard Worker      : DnsAttempt(doh_server_index),
*6777b538SAndroid Build Coastguard Worker        query_(std::move(query)),
*6777b538SAndroid Build Coastguard Worker        net_log_(NetLogWithSource::Make(NetLog::Get(),
*6777b538SAndroid Build Coastguard Worker                                        NetLogSourceType::DNS_OVER_HTTPS)) {
*6777b538SAndroid Build Coastguard Worker    GURL url;
*6777b538SAndroid Build Coastguard Worker    if (use_post) {
*6777b538SAndroid Build Coastguard Worker      // Set url for a POST request
*6777b538SAndroid Build Coastguard Worker      url = gurl_without_parameters;
*6777b538SAndroid Build Coastguard Worker    } else {
*6777b538SAndroid Build Coastguard Worker      // Set url for a GET request
*6777b538SAndroid Build Coastguard Worker      std::string url_string;
*6777b538SAndroid Build Coastguard Worker      std::unordered_map<string, string> parameters;
*6777b538SAndroid Build Coastguard Worker      std::string encoded_query;
*6777b538SAndroid Build Coastguard Worker      base::Base64UrlEncode(std::string_view(query_->io_buffer()->data(),
*6777b538SAndroid Build Coastguard Worker                                             query_->io_buffer()->size()),
*6777b538SAndroid Build Coastguard Worker                            base::Base64UrlEncodePolicy::OMIT_PADDING,
*6777b538SAndroid Build Coastguard Worker                            &encoded_query);
*6777b538SAndroid Build Coastguard Worker      parameters.emplace("dns", encoded_query);
*6777b538SAndroid Build Coastguard Worker      uri_template::Expand(server_template, parameters, &url_string);
*6777b538SAndroid Build Coastguard Worker      url = GURL(url_string);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    net_log_.BeginEvent(NetLogEventType::DOH_URL_REQUEST, [&] {
*6777b538SAndroid Build Coastguard Worker      if (is_probe) {
*6777b538SAndroid Build Coastguard Worker        return NetLogStartParams("(probe)", query_->qtype());
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker      std::optional<std::string> hostname =
*6777b538SAndroid Build Coastguard Worker          dns_names_util::NetworkToDottedName(query_->qname());
*6777b538SAndroid Build Coastguard Worker      DCHECK(hostname.has_value());
*6777b538SAndroid Build Coastguard Worker      return NetLogStartParams(*hostname, query_->qtype());
*6777b538SAndroid Build Coastguard Worker    });
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    HttpRequestHeaders extra_request_headers;
*6777b538SAndroid Build Coastguard Worker    extra_request_headers.SetHeader(HttpRequestHeaders::kAccept,
*6777b538SAndroid Build Coastguard Worker                                    kDnsOverHttpResponseContentType);
*6777b538SAndroid Build Coastguard Worker    // Send minimal request headers where possible.
*6777b538SAndroid Build Coastguard Worker    extra_request_headers.SetHeader(HttpRequestHeaders::kAcceptLanguage, "*");
*6777b538SAndroid Build Coastguard Worker    extra_request_headers.SetHeader(HttpRequestHeaders::kUserAgent, "Chrome");
*6777b538SAndroid Build Coastguard Worker    extra_request_headers.SetHeader(HttpRequestHeaders::kAcceptEncoding,
*6777b538SAndroid Build Coastguard Worker                                    "identity");
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    DCHECK(url_request_context);
*6777b538SAndroid Build Coastguard Worker    request_ = url_request_context->CreateRequest(
*6777b538SAndroid Build Coastguard Worker        url, request_priority_, this,
*6777b538SAndroid Build Coastguard Worker        net::DefineNetworkTrafficAnnotation("dns_over_https", R"(
*6777b538SAndroid Build Coastguard Worker        semantics {
*6777b538SAndroid Build Coastguard Worker          sender: "DNS over HTTPS"
*6777b538SAndroid Build Coastguard Worker          description: "Domain name resolution over HTTPS"
*6777b538SAndroid Build Coastguard Worker          trigger: "User enters a navigates to a domain or Chrome otherwise "
*6777b538SAndroid Build Coastguard Worker                   "makes a connection to a domain whose IP address isn't cached"
*6777b538SAndroid Build Coastguard Worker          data: "The domain name that is being requested"
*6777b538SAndroid Build Coastguard Worker          destination: OTHER
*6777b538SAndroid Build Coastguard Worker          destination_other: "The user configured DNS over HTTPS server, which"
*6777b538SAndroid Build Coastguard Worker                             "may be dns.google.com"
*6777b538SAndroid Build Coastguard Worker        }
*6777b538SAndroid Build Coastguard Worker        policy {
*6777b538SAndroid Build Coastguard Worker          cookies_allowed: NO
*6777b538SAndroid Build Coastguard Worker          setting:
*6777b538SAndroid Build Coastguard Worker            "You can configure this feature via that 'dns_over_https_servers' and"
*6777b538SAndroid Build Coastguard Worker            "'dns_over_https.method' prefs. Empty lists imply this feature is"
*6777b538SAndroid Build Coastguard Worker            "disabled"
*6777b538SAndroid Build Coastguard Worker          policy_exception_justification: "Experimental feature that"
*6777b538SAndroid Build Coastguard Worker                                          "is disabled by default"
*6777b538SAndroid Build Coastguard Worker        }
*6777b538SAndroid Build Coastguard Worker      )"),
*6777b538SAndroid Build Coastguard Worker        /*is_for_websockets=*/false, net_log_.source());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (use_post) {
*6777b538SAndroid Build Coastguard Worker      request_->set_method("POST");
*6777b538SAndroid Build Coastguard Worker      request_->SetIdempotency(IDEMPOTENT);
*6777b538SAndroid Build Coastguard Worker      std::unique_ptr<UploadElementReader> reader =
*6777b538SAndroid Build Coastguard Worker          std::make_unique<UploadBytesElementReader>(
*6777b538SAndroid Build Coastguard Worker              query_->io_buffer()->data(), query_->io_buffer()->size());
*6777b538SAndroid Build Coastguard Worker      request_->set_upload(
*6777b538SAndroid Build Coastguard Worker          ElementsUploadDataStream::CreateWithReader(std::move(reader), 0));
*6777b538SAndroid Build Coastguard Worker      extra_request_headers.SetHeader(HttpRequestHeaders::kContentType,
*6777b538SAndroid Build Coastguard Worker                                      kDnsOverHttpResponseContentType);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    request_->SetExtraRequestHeaders(extra_request_headers);
*6777b538SAndroid Build Coastguard Worker    // Apply special policy to DNS lookups for for a DoH server hostname to
*6777b538SAndroid Build Coastguard Worker    // avoid deadlock and enable the use of preconfigured IP addresses.
*6777b538SAndroid Build Coastguard Worker    request_->SetSecureDnsPolicy(SecureDnsPolicy::kBootstrap);
*6777b538SAndroid Build Coastguard Worker    request_->SetLoadFlags(request_->load_flags() | LOAD_DISABLE_CACHE |
*6777b538SAndroid Build Coastguard Worker                           LOAD_BYPASS_PROXY);
*6777b538SAndroid Build Coastguard Worker    request_->set_allow_credentials(false);
*6777b538SAndroid Build Coastguard Worker    request_->set_isolation_info(isolation_info);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  DnsHTTPAttempt(const DnsHTTPAttempt&) = delete;
*6777b538SAndroid Build Coastguard Worker  DnsHTTPAttempt& operator=(const DnsHTTPAttempt&) = delete;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // DnsAttempt overrides.
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int Start(CompletionOnceCallback callback) override {
*6777b538SAndroid Build Coastguard Worker    callback_ = std::move(callback);
*6777b538SAndroid Build Coastguard Worker    // Start the request asynchronously to avoid reentrancy in
*6777b538SAndroid Build Coastguard Worker    // the network stack.
*6777b538SAndroid Build Coastguard Worker    base::SequencedTaskRunner::GetCurrentDefault()->PostTask(
*6777b538SAndroid Build Coastguard Worker        FROM_HERE, base::BindOnce(&DnsHTTPAttempt::StartAsync,
*6777b538SAndroid Build Coastguard Worker                                  weak_factory_.GetWeakPtr()));
*6777b538SAndroid Build Coastguard Worker    return ERR_IO_PENDING;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  const DnsQuery* GetQuery() const override { return query_.get(); }
*6777b538SAndroid Build Coastguard Worker  const DnsResponse* GetResponse() const override {
*6777b538SAndroid Build Coastguard Worker    const DnsResponse* resp = response_.get();
*6777b538SAndroid Build Coastguard Worker    return (resp != nullptr && resp->IsValid()) ? resp : nullptr;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker  base::Value GetRawResponseBufferForLog() const override {
*6777b538SAndroid Build Coastguard Worker    if (!response_)
*6777b538SAndroid Build Coastguard Worker      return base::Value();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return NetLogBinaryValue(response_->io_buffer()->data(),
*6777b538SAndroid Build Coastguard Worker                             response_->io_buffer_size());
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker  const NetLogWithSource& GetSocketNetLog() const override { return net_log_; }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // URLRequest::Delegate overrides
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void OnResponseStarted(net::URLRequest* request, int net_error) override {
*6777b538SAndroid Build Coastguard Worker    DCHECK_NE(net::ERR_IO_PENDING, net_error);
*6777b538SAndroid Build Coastguard Worker    std::string content_type;
*6777b538SAndroid Build Coastguard Worker    if (net_error != OK) {
*6777b538SAndroid Build Coastguard Worker      // Update the error code if there was an issue resolving the secure
*6777b538SAndroid Build Coastguard Worker      // server hostname.
*6777b538SAndroid Build Coastguard Worker      if (IsHostnameResolutionError(net_error))
*6777b538SAndroid Build Coastguard Worker        net_error = ERR_DNS_SECURE_RESOLVER_HOSTNAME_RESOLUTION_FAILED;
*6777b538SAndroid Build Coastguard Worker      ResponseCompleted(net_error);
*6777b538SAndroid Build Coastguard Worker      return;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (request_->GetResponseCode() != 200 ||
*6777b538SAndroid Build Coastguard Worker        !request->response_headers()->GetMimeType(&content_type) ||
*6777b538SAndroid Build Coastguard Worker        0 != content_type.compare(kDnsOverHttpResponseContentType)) {
*6777b538SAndroid Build Coastguard Worker      ResponseCompleted(ERR_DNS_MALFORMED_RESPONSE);
*6777b538SAndroid Build Coastguard Worker      return;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    buffer_ = base::MakeRefCounted<GrowableIOBuffer>();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (request->response_headers()->HasHeader(
*6777b538SAndroid Build Coastguard Worker            HttpRequestHeaders::kContentLength)) {
*6777b538SAndroid Build Coastguard Worker      if (request_->response_headers()->GetContentLength() >
*6777b538SAndroid Build Coastguard Worker          kDnsOverHttpResponseMaximumSize) {
*6777b538SAndroid Build Coastguard Worker        ResponseCompleted(ERR_DNS_MALFORMED_RESPONSE);
*6777b538SAndroid Build Coastguard Worker        return;
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker      buffer_->SetCapacity(request_->response_headers()->GetContentLength() +
*6777b538SAndroid Build Coastguard Worker                           1);
*6777b538SAndroid Build Coastguard Worker    } else {
*6777b538SAndroid Build Coastguard Worker      buffer_->SetCapacity(kDnsOverHttpResponseMaximumSize + 1);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    DCHECK(buffer_->data());
*6777b538SAndroid Build Coastguard Worker    DCHECK_GT(buffer_->capacity(), 0);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    int bytes_read =
*6777b538SAndroid Build Coastguard Worker        request_->Read(buffer_.get(), buffer_->RemainingCapacity());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    // If IO is pending, wait for the URLRequest to call OnReadCompleted.
*6777b538SAndroid Build Coastguard Worker    if (bytes_read == net::ERR_IO_PENDING)
*6777b538SAndroid Build Coastguard Worker      return;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    OnReadCompleted(request_.get(), bytes_read);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void OnReceivedRedirect(URLRequest* request,
*6777b538SAndroid Build Coastguard Worker                          const RedirectInfo& redirect_info,
*6777b538SAndroid Build Coastguard Worker                          bool* defer_redirect) override {
*6777b538SAndroid Build Coastguard Worker    // Section 5 of RFC 8484 states that scheme must be https.
*6777b538SAndroid Build Coastguard Worker    if (!redirect_info.new_url.SchemeIs(url::kHttpsScheme)) {
*6777b538SAndroid Build Coastguard Worker      request->Cancel();
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void OnReadCompleted(net::URLRequest* request, int bytes_read) override {
*6777b538SAndroid Build Coastguard Worker    // bytes_read can be an error.
*6777b538SAndroid Build Coastguard Worker    if (bytes_read < 0) {
*6777b538SAndroid Build Coastguard Worker      ResponseCompleted(bytes_read);
*6777b538SAndroid Build Coastguard Worker      return;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    DCHECK_GE(bytes_read, 0);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (bytes_read > 0) {
*6777b538SAndroid Build Coastguard Worker      if (buffer_->offset() + bytes_read > kDnsOverHttpResponseMaximumSize) {
*6777b538SAndroid Build Coastguard Worker        ResponseCompleted(ERR_DNS_MALFORMED_RESPONSE);
*6777b538SAndroid Build Coastguard Worker        return;
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker      buffer_->set_offset(buffer_->offset() + bytes_read);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker      if (buffer_->RemainingCapacity() == 0) {
*6777b538SAndroid Build Coastguard Worker        buffer_->SetCapacity(buffer_->capacity() + 16384);  // Grow by 16kb.
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker      DCHECK(buffer_->data());
*6777b538SAndroid Build Coastguard Worker      DCHECK_GT(buffer_->capacity(), 0);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker      int read_result =
*6777b538SAndroid Build Coastguard Worker          request_->Read(buffer_.get(), buffer_->RemainingCapacity());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker      // If IO is pending, wait for the URLRequest to call OnReadCompleted.
*6777b538SAndroid Build Coastguard Worker      if (read_result == net::ERR_IO_PENDING)
*6777b538SAndroid Build Coastguard Worker        return;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker      if (read_result <= 0) {
*6777b538SAndroid Build Coastguard Worker        OnReadCompleted(request_.get(), read_result);
*6777b538SAndroid Build Coastguard Worker      } else {
*6777b538SAndroid Build Coastguard Worker        // Else, trigger OnReadCompleted asynchronously to avoid starving the IO
*6777b538SAndroid Build Coastguard Worker        // thread in case the URLRequest can provide data synchronously.
*6777b538SAndroid Build Coastguard Worker        base::SequencedTaskRunner::GetCurrentDefault()->PostTask(
*6777b538SAndroid Build Coastguard Worker            FROM_HERE, base::BindOnce(&DnsHTTPAttempt::OnReadCompleted,
*6777b538SAndroid Build Coastguard Worker                                      weak_factory_.GetWeakPtr(),
*6777b538SAndroid Build Coastguard Worker                                      request_.get(), read_result));
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker    } else {
*6777b538SAndroid Build Coastguard Worker      // URLRequest reported an EOF. Call ResponseCompleted.
*6777b538SAndroid Build Coastguard Worker      DCHECK_EQ(0, bytes_read);
*6777b538SAndroid Build Coastguard Worker      ResponseCompleted(net::OK);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  bool IsPending() const override { return !callback_.is_null(); }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker private:
*6777b538SAndroid Build Coastguard Worker  void StartAsync() {
*6777b538SAndroid Build Coastguard Worker    DCHECK(request_);
*6777b538SAndroid Build Coastguard Worker    request_->Start();
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void ResponseCompleted(int net_error) {
*6777b538SAndroid Build Coastguard Worker    request_.reset();
*6777b538SAndroid Build Coastguard Worker    std::move(callback_).Run(CompleteResponse(net_error));
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int CompleteResponse(int net_error) {
*6777b538SAndroid Build Coastguard Worker    net_log_.EndEventWithNetErrorCode(NetLogEventType::DOH_URL_REQUEST,
*6777b538SAndroid Build Coastguard Worker                                      net_error);
*6777b538SAndroid Build Coastguard Worker    DCHECK_NE(net::ERR_IO_PENDING, net_error);
*6777b538SAndroid Build Coastguard Worker    if (net_error != OK) {
*6777b538SAndroid Build Coastguard Worker      return net_error;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    if (!buffer_.get() || 0 == buffer_->capacity())
*6777b538SAndroid Build Coastguard Worker      return ERR_DNS_MALFORMED_RESPONSE;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    size_t size = buffer_->offset();
*6777b538SAndroid Build Coastguard Worker    buffer_->set_offset(0);
*6777b538SAndroid Build Coastguard Worker    if (size == 0u)
*6777b538SAndroid Build Coastguard Worker      return ERR_DNS_MALFORMED_RESPONSE;
*6777b538SAndroid Build Coastguard Worker    response_ = std::make_unique<DnsResponse>(buffer_, size);
*6777b538SAndroid Build Coastguard Worker    if (!response_->InitParse(size, *query_))
*6777b538SAndroid Build Coastguard Worker      return ERR_DNS_MALFORMED_RESPONSE;
*6777b538SAndroid Build Coastguard Worker    if (response_->rcode() == dns_protocol::kRcodeNXDOMAIN)
*6777b538SAndroid Build Coastguard Worker      return ERR_NAME_NOT_RESOLVED;
*6777b538SAndroid Build Coastguard Worker    if (response_->rcode() != dns_protocol::kRcodeNOERROR)
*6777b538SAndroid Build Coastguard Worker      return ERR_DNS_SERVER_FAILED;
*6777b538SAndroid Build Coastguard Worker    return OK;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  scoped_refptr<GrowableIOBuffer> buffer_;
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<DnsQuery> query_;
*6777b538SAndroid Build Coastguard Worker  CompletionOnceCallback callback_;
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<DnsResponse> response_;
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<URLRequest> request_;
*6777b538SAndroid Build Coastguard Worker  NetLogWithSource net_log_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  base::WeakPtrFactory<DnsHTTPAttempt> weak_factory_{this};
*6777b538SAndroid Build Coastguard Worker};
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Workervoid ConstructDnsHTTPAttempt(DnsSession* session,
*6777b538SAndroid Build Coastguard Worker                             size_t doh_server_index,
*6777b538SAndroid Build Coastguard Worker                             base::span<const uint8_t> qname,
*6777b538SAndroid Build Coastguard Worker                             uint16_t qtype,
*6777b538SAndroid Build Coastguard Worker                             const OptRecordRdata* opt_rdata,
*6777b538SAndroid Build Coastguard Worker                             std::vector<std::unique_ptr<DnsAttempt>>* attempts,
*6777b538SAndroid Build Coastguard Worker                             URLRequestContext* url_request_context,
*6777b538SAndroid Build Coastguard Worker                             const IsolationInfo& isolation_info,
*6777b538SAndroid Build Coastguard Worker                             RequestPriority request_priority,
*6777b538SAndroid Build Coastguard Worker                             bool is_probe) {
*6777b538SAndroid Build Coastguard Worker  DCHECK(url_request_context);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<DnsQuery> query;
*6777b538SAndroid Build Coastguard Worker  if (attempts->empty()) {
*6777b538SAndroid Build Coastguard Worker    query =
*6777b538SAndroid Build Coastguard Worker        std::make_unique<DnsQuery>(/*id=*/0, qname, qtype, opt_rdata,
*6777b538SAndroid Build Coastguard Worker                                   DnsQuery::PaddingStrategy::BLOCK_LENGTH_128);
*6777b538SAndroid Build Coastguard Worker  } else {
*6777b538SAndroid Build Coastguard Worker    query = std::make_unique<DnsQuery>(*attempts->at(0)->GetQuery());
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  DCHECK_LT(doh_server_index, session->config().doh_config.servers().size());
*6777b538SAndroid Build Coastguard Worker  const DnsOverHttpsServerConfig& doh_server =
*6777b538SAndroid Build Coastguard Worker      session->config().doh_config.servers()[doh_server_index];
*6777b538SAndroid Build Coastguard Worker  GURL gurl_without_parameters(
*6777b538SAndroid Build Coastguard Worker      GetURLFromTemplateWithoutParameters(doh_server.server_template()));
*6777b538SAndroid Build Coastguard Worker  attempts->push_back(std::make_unique<DnsHTTPAttempt>(
*6777b538SAndroid Build Coastguard Worker      doh_server_index, std::move(query), doh_server.server_template(),
*6777b538SAndroid Build Coastguard Worker      gurl_without_parameters, doh_server.use_post(), url_request_context,
*6777b538SAndroid Build Coastguard Worker      isolation_info, request_priority, is_probe));
*6777b538SAndroid Build Coastguard Worker}
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Workerclass DnsTCPAttempt : public DnsAttempt {
*6777b538SAndroid Build Coastguard Worker public:
*6777b538SAndroid Build Coastguard Worker  DnsTCPAttempt(size_t server_index,
*6777b538SAndroid Build Coastguard Worker                std::unique_ptr<StreamSocket> socket,
*6777b538SAndroid Build Coastguard Worker                std::unique_ptr<DnsQuery> query)
*6777b538SAndroid Build Coastguard Worker      : DnsAttempt(server_index),
*6777b538SAndroid Build Coastguard Worker        socket_(std::move(socket)),
*6777b538SAndroid Build Coastguard Worker        query_(std::move(query)),
*6777b538SAndroid Build Coastguard Worker        length_buffer_(
*6777b538SAndroid Build Coastguard Worker            base::MakeRefCounted<IOBufferWithSize>(sizeof(uint16_t))) {}
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  DnsTCPAttempt(const DnsTCPAttempt&) = delete;
*6777b538SAndroid Build Coastguard Worker  DnsTCPAttempt& operator=(const DnsTCPAttempt&) = delete;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // DnsAttempt:
*6777b538SAndroid Build Coastguard Worker  int Start(CompletionOnceCallback callback) override {
*6777b538SAndroid Build Coastguard Worker    DCHECK_EQ(STATE_NONE, next_state_);
*6777b538SAndroid Build Coastguard Worker    callback_ = std::move(callback);
*6777b538SAndroid Build Coastguard Worker    start_time_ = base::TimeTicks::Now();
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_CONNECT_COMPLETE;
*6777b538SAndroid Build Coastguard Worker    int rv = socket_->Connect(
*6777b538SAndroid Build Coastguard Worker        base::BindOnce(&DnsTCPAttempt::OnIOComplete, base::Unretained(this)));
*6777b538SAndroid Build Coastguard Worker    if (rv == ERR_IO_PENDING) {
*6777b538SAndroid Build Coastguard Worker      return rv;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    return DoLoop(rv);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  const DnsQuery* GetQuery() const override { return query_.get(); }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  const DnsResponse* GetResponse() const override {
*6777b538SAndroid Build Coastguard Worker    const DnsResponse* resp = response_.get();
*6777b538SAndroid Build Coastguard Worker    return (resp != nullptr && resp->IsValid()) ? resp : nullptr;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  base::Value GetRawResponseBufferForLog() const override {
*6777b538SAndroid Build Coastguard Worker    if (!response_)
*6777b538SAndroid Build Coastguard Worker      return base::Value();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return NetLogBinaryValue(response_->io_buffer()->data(),
*6777b538SAndroid Build Coastguard Worker                             response_->io_buffer_size());
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  const NetLogWithSource& GetSocketNetLog() const override {
*6777b538SAndroid Build Coastguard Worker    return socket_->NetLog();
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  bool IsPending() const override { return next_state_ != STATE_NONE; }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker private:
*6777b538SAndroid Build Coastguard Worker  enum State {
*6777b538SAndroid Build Coastguard Worker    STATE_CONNECT_COMPLETE,
*6777b538SAndroid Build Coastguard Worker    STATE_SEND_LENGTH,
*6777b538SAndroid Build Coastguard Worker    STATE_SEND_QUERY,
*6777b538SAndroid Build Coastguard Worker    STATE_READ_LENGTH,
*6777b538SAndroid Build Coastguard Worker    STATE_READ_LENGTH_COMPLETE,
*6777b538SAndroid Build Coastguard Worker    STATE_READ_RESPONSE,
*6777b538SAndroid Build Coastguard Worker    STATE_READ_RESPONSE_COMPLETE,
*6777b538SAndroid Build Coastguard Worker    STATE_NONE,
*6777b538SAndroid Build Coastguard Worker  };
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoLoop(int result) {
*6777b538SAndroid Build Coastguard Worker    CHECK_NE(STATE_NONE, next_state_);
*6777b538SAndroid Build Coastguard Worker    int rv = result;
*6777b538SAndroid Build Coastguard Worker    do {
*6777b538SAndroid Build Coastguard Worker      State state = next_state_;
*6777b538SAndroid Build Coastguard Worker      next_state_ = STATE_NONE;
*6777b538SAndroid Build Coastguard Worker      switch (state) {
*6777b538SAndroid Build Coastguard Worker        case STATE_CONNECT_COMPLETE:
*6777b538SAndroid Build Coastguard Worker          rv = DoConnectComplete(rv);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case STATE_SEND_LENGTH:
*6777b538SAndroid Build Coastguard Worker          rv = DoSendLength(rv);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case STATE_SEND_QUERY:
*6777b538SAndroid Build Coastguard Worker          rv = DoSendQuery(rv);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case STATE_READ_LENGTH:
*6777b538SAndroid Build Coastguard Worker          rv = DoReadLength(rv);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case STATE_READ_LENGTH_COMPLETE:
*6777b538SAndroid Build Coastguard Worker          rv = DoReadLengthComplete(rv);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case STATE_READ_RESPONSE:
*6777b538SAndroid Build Coastguard Worker          rv = DoReadResponse(rv);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case STATE_READ_RESPONSE_COMPLETE:
*6777b538SAndroid Build Coastguard Worker          rv = DoReadResponseComplete(rv);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        default:
*6777b538SAndroid Build Coastguard Worker          NOTREACHED();
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker    } while (rv != ERR_IO_PENDING && next_state_ != STATE_NONE);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (rv != ERR_IO_PENDING)
*6777b538SAndroid Build Coastguard Worker      DCHECK_EQ(STATE_NONE, next_state_);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return rv;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoConnectComplete(int rv) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_NE(ERR_IO_PENDING, rv);
*6777b538SAndroid Build Coastguard Worker    if (rv < 0)
*6777b538SAndroid Build Coastguard Worker      return rv;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    uint16_t query_size = static_cast<uint16_t>(query_->io_buffer()->size());
*6777b538SAndroid Build Coastguard Worker    if (static_cast<int>(query_size) != query_->io_buffer()->size())
*6777b538SAndroid Build Coastguard Worker      return ERR_FAILED;
*6777b538SAndroid Build Coastguard Worker    base::as_writable_bytes(length_buffer_->span())
*6777b538SAndroid Build Coastguard Worker        .copy_from(base::U16ToBigEndian(query_size));
*6777b538SAndroid Build Coastguard Worker    buffer_ = base::MakeRefCounted<DrainableIOBuffer>(length_buffer_,
*6777b538SAndroid Build Coastguard Worker                                                      length_buffer_->size());
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_SEND_LENGTH;
*6777b538SAndroid Build Coastguard Worker    return OK;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoSendLength(int rv) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_NE(ERR_IO_PENDING, rv);
*6777b538SAndroid Build Coastguard Worker    if (rv < 0)
*6777b538SAndroid Build Coastguard Worker      return rv;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    buffer_->DidConsume(rv);
*6777b538SAndroid Build Coastguard Worker    if (buffer_->BytesRemaining() > 0) {
*6777b538SAndroid Build Coastguard Worker      next_state_ = STATE_SEND_LENGTH;
*6777b538SAndroid Build Coastguard Worker      return socket_->Write(
*6777b538SAndroid Build Coastguard Worker          buffer_.get(), buffer_->BytesRemaining(),
*6777b538SAndroid Build Coastguard Worker          base::BindOnce(&DnsTCPAttempt::OnIOComplete, base::Unretained(this)),
*6777b538SAndroid Build Coastguard Worker          kTrafficAnnotation);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    buffer_ = base::MakeRefCounted<DrainableIOBuffer>(
*6777b538SAndroid Build Coastguard Worker        query_->io_buffer(), query_->io_buffer()->size());
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_SEND_QUERY;
*6777b538SAndroid Build Coastguard Worker    return OK;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoSendQuery(int rv) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_NE(ERR_IO_PENDING, rv);
*6777b538SAndroid Build Coastguard Worker    if (rv < 0)
*6777b538SAndroid Build Coastguard Worker      return rv;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    buffer_->DidConsume(rv);
*6777b538SAndroid Build Coastguard Worker    if (buffer_->BytesRemaining() > 0) {
*6777b538SAndroid Build Coastguard Worker      next_state_ = STATE_SEND_QUERY;
*6777b538SAndroid Build Coastguard Worker      return socket_->Write(
*6777b538SAndroid Build Coastguard Worker          buffer_.get(), buffer_->BytesRemaining(),
*6777b538SAndroid Build Coastguard Worker          base::BindOnce(&DnsTCPAttempt::OnIOComplete, base::Unretained(this)),
*6777b538SAndroid Build Coastguard Worker          kTrafficAnnotation);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    buffer_ = base::MakeRefCounted<DrainableIOBuffer>(length_buffer_,
*6777b538SAndroid Build Coastguard Worker                                                      length_buffer_->size());
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_READ_LENGTH;
*6777b538SAndroid Build Coastguard Worker    return OK;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoReadLength(int rv) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_EQ(OK, rv);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_READ_LENGTH_COMPLETE;
*6777b538SAndroid Build Coastguard Worker    return ReadIntoBuffer();
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoReadLengthComplete(int rv) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_NE(ERR_IO_PENDING, rv);
*6777b538SAndroid Build Coastguard Worker    if (rv < 0)
*6777b538SAndroid Build Coastguard Worker      return rv;
*6777b538SAndroid Build Coastguard Worker    if (rv == 0)
*6777b538SAndroid Build Coastguard Worker      return ERR_CONNECTION_CLOSED;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    buffer_->DidConsume(rv);
*6777b538SAndroid Build Coastguard Worker    if (buffer_->BytesRemaining() > 0) {
*6777b538SAndroid Build Coastguard Worker      next_state_ = STATE_READ_LENGTH;
*6777b538SAndroid Build Coastguard Worker      return OK;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    response_length_ = base::U16FromBigEndian(
*6777b538SAndroid Build Coastguard Worker        base::as_bytes(length_buffer_->span().first<2u>()));
*6777b538SAndroid Build Coastguard Worker    // Check if advertised response is too short. (Optimization only.)
*6777b538SAndroid Build Coastguard Worker    if (response_length_ < query_->io_buffer()->size())
*6777b538SAndroid Build Coastguard Worker      return ERR_DNS_MALFORMED_RESPONSE;
*6777b538SAndroid Build Coastguard Worker    response_ = std::make_unique<DnsResponse>(response_length_);
*6777b538SAndroid Build Coastguard Worker    buffer_ = base::MakeRefCounted<DrainableIOBuffer>(response_->io_buffer(),
*6777b538SAndroid Build Coastguard Worker                                                      response_length_);
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_READ_RESPONSE;
*6777b538SAndroid Build Coastguard Worker    return OK;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoReadResponse(int rv) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_EQ(OK, rv);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    next_state_ = STATE_READ_RESPONSE_COMPLETE;
*6777b538SAndroid Build Coastguard Worker    return ReadIntoBuffer();
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int DoReadResponseComplete(int rv) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_NE(ERR_IO_PENDING, rv);
*6777b538SAndroid Build Coastguard Worker    if (rv < 0)
*6777b538SAndroid Build Coastguard Worker      return rv;
*6777b538SAndroid Build Coastguard Worker    if (rv == 0)
*6777b538SAndroid Build Coastguard Worker      return ERR_CONNECTION_CLOSED;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    buffer_->DidConsume(rv);
*6777b538SAndroid Build Coastguard Worker    if (buffer_->BytesRemaining() > 0) {
*6777b538SAndroid Build Coastguard Worker      next_state_ = STATE_READ_RESPONSE;
*6777b538SAndroid Build Coastguard Worker      return OK;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    DCHECK_GT(buffer_->BytesConsumed(), 0);
*6777b538SAndroid Build Coastguard Worker    if (!response_->InitParse(buffer_->BytesConsumed(), *query_))
*6777b538SAndroid Build Coastguard Worker      return ERR_DNS_MALFORMED_RESPONSE;
*6777b538SAndroid Build Coastguard Worker    if (response_->flags() & dns_protocol::kFlagTC)
*6777b538SAndroid Build Coastguard Worker      return ERR_UNEXPECTED;
*6777b538SAndroid Build Coastguard Worker    // TODO(szym): Frankly, none of these are expected.
*6777b538SAndroid Build Coastguard Worker    if (response_->rcode() == dns_protocol::kRcodeNXDOMAIN)
*6777b538SAndroid Build Coastguard Worker      return ERR_NAME_NOT_RESOLVED;
*6777b538SAndroid Build Coastguard Worker    if (response_->rcode() != dns_protocol::kRcodeNOERROR)
*6777b538SAndroid Build Coastguard Worker      return ERR_DNS_SERVER_FAILED;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return OK;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void OnIOComplete(int rv) {
*6777b538SAndroid Build Coastguard Worker    rv = DoLoop(rv);
*6777b538SAndroid Build Coastguard Worker    if (rv != ERR_IO_PENDING)
*6777b538SAndroid Build Coastguard Worker      std::move(callback_).Run(rv);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  int ReadIntoBuffer() {
*6777b538SAndroid Build Coastguard Worker    return socket_->Read(
*6777b538SAndroid Build Coastguard Worker        buffer_.get(), buffer_->BytesRemaining(),
*6777b538SAndroid Build Coastguard Worker        base::BindOnce(&DnsTCPAttempt::OnIOComplete, base::Unretained(this)));
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  State next_state_ = STATE_NONE;
*6777b538SAndroid Build Coastguard Worker  base::TimeTicks start_time_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<StreamSocket> socket_;
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<DnsQuery> query_;
*6777b538SAndroid Build Coastguard Worker  scoped_refptr<IOBufferWithSize> length_buffer_;
*6777b538SAndroid Build Coastguard Worker  scoped_refptr<DrainableIOBuffer> buffer_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  uint16_t response_length_ = 0;
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<DnsResponse> response_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  CompletionOnceCallback callback_;
*6777b538SAndroid Build Coastguard Worker};
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker// ----------------------------------------------------------------------------
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Workerconst net::BackoffEntry::Policy kProbeBackoffPolicy = {
*6777b538SAndroid Build Coastguard Worker    // Apply exponential backoff rules after the first error.
*6777b538SAndroid Build Coastguard Worker    0,
*6777b538SAndroid Build Coastguard Worker    // Begin with a 1s delay between probes.
*6777b538SAndroid Build Coastguard Worker    1000,
*6777b538SAndroid Build Coastguard Worker    // Increase the delay between consecutive probes by a factor of 1.5.
*6777b538SAndroid Build Coastguard Worker    1.5,
*6777b538SAndroid Build Coastguard Worker    // Fuzz the delay between consecutive probes between 80%-100% of the
*6777b538SAndroid Build Coastguard Worker    // calculated time.
*6777b538SAndroid Build Coastguard Worker    0.2,
*6777b538SAndroid Build Coastguard Worker    // Cap the maximum delay between consecutive probes at 1 hour.
*6777b538SAndroid Build Coastguard Worker    1000 * 60 * 60,
*6777b538SAndroid Build Coastguard Worker    // Never expire entries.
*6777b538SAndroid Build Coastguard Worker    -1,
*6777b538SAndroid Build Coastguard Worker    // Do not apply an initial delay.
*6777b538SAndroid Build Coastguard Worker    false,
*6777b538SAndroid Build Coastguard Worker};
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker// Probe runner that continually sends test queries (with backoff) to DoH
*6777b538SAndroid Build Coastguard Worker// servers to determine availability.
*6777b538SAndroid Build Coastguard Worker//
*6777b538SAndroid Build Coastguard Worker// Expected to be contained in request classes owned externally to HostResolver,
*6777b538SAndroid Build Coastguard Worker// so no assumptions are made regarding cancellation compared to the DnsSession
*6777b538SAndroid Build Coastguard Worker// or ResolveContext. Instead, uses WeakPtrs to gracefully clean itself up and
*6777b538SAndroid Build Coastguard Worker// stop probing after session or context destruction.
*6777b538SAndroid Build Coastguard Workerclass DnsOverHttpsProbeRunner : public DnsProbeRunner {
*6777b538SAndroid Build Coastguard Worker public:
*6777b538SAndroid Build Coastguard Worker  DnsOverHttpsProbeRunner(base::WeakPtr<DnsSession> session,
*6777b538SAndroid Build Coastguard Worker                          base::WeakPtr<ResolveContext> context)
*6777b538SAndroid Build Coastguard Worker      : session_(session), context_(context) {
*6777b538SAndroid Build Coastguard Worker    DCHECK(session_);
*6777b538SAndroid Build Coastguard Worker    DCHECK(!session_->config().doh_config.servers().empty());
*6777b538SAndroid Build Coastguard Worker    DCHECK(context_);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    std::optional<std::vector<uint8_t>> qname =
*6777b538SAndroid Build Coastguard Worker        dns_names_util::DottedNameToNetwork(kDohProbeHostname);
*6777b538SAndroid Build Coastguard Worker    DCHECK(qname.has_value());
*6777b538SAndroid Build Coastguard Worker    formatted_probe_qname_ = std::move(qname).value();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    for (size_t i = 0; i < session_->config().doh_config.servers().size();
*6777b538SAndroid Build Coastguard Worker         i++) {
*6777b538SAndroid Build Coastguard Worker      probe_stats_list_.push_back(nullptr);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  ~DnsOverHttpsProbeRunner() override = default;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void Start(bool network_change) override {
*6777b538SAndroid Build Coastguard Worker    DCHECK(session_);
*6777b538SAndroid Build Coastguard Worker    DCHECK(context_);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    const auto& config = session_->config().doh_config;
*6777b538SAndroid Build Coastguard Worker    // Start probe sequences for any servers where it is not currently running.
*6777b538SAndroid Build Coastguard Worker    for (size_t i = 0; i < config.servers().size(); i++) {
*6777b538SAndroid Build Coastguard Worker      if (!probe_stats_list_[i]) {
*6777b538SAndroid Build Coastguard Worker        probe_stats_list_[i] = std::make_unique<ProbeStats>();
*6777b538SAndroid Build Coastguard Worker        ContinueProbe(i, probe_stats_list_[i]->weak_factory.GetWeakPtr(),
*6777b538SAndroid Build Coastguard Worker                      network_change,
*6777b538SAndroid Build Coastguard Worker                      base::TimeTicks::Now() /* sequence_start_time */);
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  base::TimeDelta GetDelayUntilNextProbeForTest(
*6777b538SAndroid Build Coastguard Worker      size_t doh_server_index) const override {
*6777b538SAndroid Build Coastguard Worker    if (doh_server_index >= probe_stats_list_.size() ||
*6777b538SAndroid Build Coastguard Worker        !probe_stats_list_[doh_server_index])
*6777b538SAndroid Build Coastguard Worker      return base::TimeDelta();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return probe_stats_list_[doh_server_index]
*6777b538SAndroid Build Coastguard Worker        ->backoff_entry->GetTimeUntilRelease();
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker private:
*6777b538SAndroid Build Coastguard Worker  struct ProbeStats {
*6777b538SAndroid Build Coastguard Worker    ProbeStats()
*6777b538SAndroid Build Coastguard Worker        : backoff_entry(
*6777b538SAndroid Build Coastguard Worker              std::make_unique<net::BackoffEntry>(&kProbeBackoffPolicy)) {}
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    std::unique_ptr<net::BackoffEntry> backoff_entry;
*6777b538SAndroid Build Coastguard Worker    std::vector<std::unique_ptr<DnsAttempt>> probe_attempts;
*6777b538SAndroid Build Coastguard Worker    base::WeakPtrFactory<ProbeStats> weak_factory{this};
*6777b538SAndroid Build Coastguard Worker  };
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void ContinueProbe(size_t doh_server_index,
*6777b538SAndroid Build Coastguard Worker                     base::WeakPtr<ProbeStats> probe_stats,
*6777b538SAndroid Build Coastguard Worker                     bool network_change,
*6777b538SAndroid Build Coastguard Worker                     base::TimeTicks sequence_start_time) {
*6777b538SAndroid Build Coastguard Worker    // If the DnsSession or ResolveContext has been destroyed, no reason to
*6777b538SAndroid Build Coastguard Worker    // continue probing.
*6777b538SAndroid Build Coastguard Worker    if (!session_ || !context_) {
*6777b538SAndroid Build Coastguard Worker      probe_stats_list_.clear();
*6777b538SAndroid Build Coastguard Worker      return;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    // If the ProbeStats for which this probe was scheduled has been deleted,
*6777b538SAndroid Build Coastguard Worker    // don't continue to send probes.
*6777b538SAndroid Build Coastguard Worker    if (!probe_stats)
*6777b538SAndroid Build Coastguard Worker      return;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    // Cancel the probe sequence for this server if the server is already
*6777b538SAndroid Build Coastguard Worker    // available.
*6777b538SAndroid Build Coastguard Worker    if (context_->GetDohServerAvailability(doh_server_index, session_.get())) {
*6777b538SAndroid Build Coastguard Worker      probe_stats_list_[doh_server_index] = nullptr;
*6777b538SAndroid Build Coastguard Worker      return;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    // Schedule a new probe assuming this one will fail. The newly scheduled
*6777b538SAndroid Build Coastguard Worker    // probe will not run if an earlier probe has already succeeded. Probes may
*6777b538SAndroid Build Coastguard Worker    // take awhile to fail, which is why we schedule the next one here rather
*6777b538SAndroid Build Coastguard Worker    // than on probe completion.
*6777b538SAndroid Build Coastguard Worker    DCHECK(probe_stats);
*6777b538SAndroid Build Coastguard Worker    DCHECK(probe_stats->backoff_entry);
*6777b538SAndroid Build Coastguard Worker    probe_stats->backoff_entry->InformOfRequest(false /* success */);
*6777b538SAndroid Build Coastguard Worker    base::SequencedTaskRunner::GetCurrentDefault()->PostDelayedTask(
*6777b538SAndroid Build Coastguard Worker        FROM_HERE,
*6777b538SAndroid Build Coastguard Worker        base::BindOnce(&DnsOverHttpsProbeRunner::ContinueProbe,
*6777b538SAndroid Build Coastguard Worker                       weak_ptr_factory_.GetWeakPtr(), doh_server_index,
*6777b538SAndroid Build Coastguard Worker                       probe_stats, network_change, sequence_start_time),
*6777b538SAndroid Build Coastguard Worker        probe_stats->backoff_entry->GetTimeUntilRelease());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    unsigned attempt_number = probe_stats->probe_attempts.size();
*6777b538SAndroid Build Coastguard Worker    ConstructDnsHTTPAttempt(
*6777b538SAndroid Build Coastguard Worker        session_.get(), doh_server_index, formatted_probe_qname_,
*6777b538SAndroid Build Coastguard Worker        dns_protocol::kTypeA, /*opt_rdata=*/nullptr,
*6777b538SAndroid Build Coastguard Worker        &probe_stats->probe_attempts, context_->url_request_context(),
*6777b538SAndroid Build Coastguard Worker        context_->isolation_info(), RequestPriority::DEFAULT_PRIORITY,
*6777b538SAndroid Build Coastguard Worker        /*is_probe=*/true);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    DnsAttempt* probe_attempt = probe_stats->probe_attempts.back().get();
*6777b538SAndroid Build Coastguard Worker    probe_attempt->Start(base::BindOnce(
*6777b538SAndroid Build Coastguard Worker        &DnsOverHttpsProbeRunner::ProbeComplete, weak_ptr_factory_.GetWeakPtr(),
*6777b538SAndroid Build Coastguard Worker        attempt_number, doh_server_index, std::move(probe_stats),
*6777b538SAndroid Build Coastguard Worker        network_change, sequence_start_time,
*6777b538SAndroid Build Coastguard Worker        base::TimeTicks::Now() /* query_start_time */));
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void ProbeComplete(unsigned attempt_number,
*6777b538SAndroid Build Coastguard Worker                     size_t doh_server_index,
*6777b538SAndroid Build Coastguard Worker                     base::WeakPtr<ProbeStats> probe_stats,
*6777b538SAndroid Build Coastguard Worker                     bool network_change,
*6777b538SAndroid Build Coastguard Worker                     base::TimeTicks sequence_start_time,
*6777b538SAndroid Build Coastguard Worker                     base::TimeTicks query_start_time,
*6777b538SAndroid Build Coastguard Worker                     int rv) {
*6777b538SAndroid Build Coastguard Worker    bool success = false;
*6777b538SAndroid Build Coastguard Worker    while (probe_stats && session_ && context_) {
*6777b538SAndroid Build Coastguard Worker      if (rv != OK) {
*6777b538SAndroid Build Coastguard Worker        // The DoH probe queries don't go through the standard DnsAttempt path,
*6777b538SAndroid Build Coastguard Worker        // so the ServerStats have not been updated yet.
*6777b538SAndroid Build Coastguard Worker        context_->RecordServerFailure(doh_server_index, /*is_doh_server=*/true,
*6777b538SAndroid Build Coastguard Worker                                      rv, session_.get());
*6777b538SAndroid Build Coastguard Worker        break;
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker      // Check that the response parses properly before considering it a
*6777b538SAndroid Build Coastguard Worker      // success.
*6777b538SAndroid Build Coastguard Worker      DCHECK_LT(attempt_number, probe_stats->probe_attempts.size());
*6777b538SAndroid Build Coastguard Worker      const DnsAttempt* attempt =
*6777b538SAndroid Build Coastguard Worker          probe_stats->probe_attempts[attempt_number].get();
*6777b538SAndroid Build Coastguard Worker      const DnsResponse* response = attempt->GetResponse();
*6777b538SAndroid Build Coastguard Worker      if (response) {
*6777b538SAndroid Build Coastguard Worker        DnsResponseResultExtractor extractor(*response);
*6777b538SAndroid Build Coastguard Worker        DnsResponseResultExtractor::ResultsOrError results =
*6777b538SAndroid Build Coastguard Worker            extractor.ExtractDnsResults(
*6777b538SAndroid Build Coastguard Worker                DnsQueryType::A,
*6777b538SAndroid Build Coastguard Worker                /*original_domain_name=*/kDohProbeHostname,
*6777b538SAndroid Build Coastguard Worker                /*request_port=*/0);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker        if (results.has_value()) {
*6777b538SAndroid Build Coastguard Worker          for (const auto& result : results.value()) {
*6777b538SAndroid Build Coastguard Worker            if (result->type() == HostResolverInternalResult::Type::kData &&
*6777b538SAndroid Build Coastguard Worker                !result->AsData().endpoints().empty()) {
*6777b538SAndroid Build Coastguard Worker              context_->RecordServerSuccess(
*6777b538SAndroid Build Coastguard Worker                  doh_server_index, /*is_doh_server=*/true, session_.get());
*6777b538SAndroid Build Coastguard Worker              context_->RecordRtt(doh_server_index, /*is_doh_server=*/true,
*6777b538SAndroid Build Coastguard Worker                                  base::TimeTicks::Now() - query_start_time, rv,
*6777b538SAndroid Build Coastguard Worker                                  session_.get());
*6777b538SAndroid Build Coastguard Worker              success = true;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker              // Do not delete the ProbeStats and cancel the probe sequence. It
*6777b538SAndroid Build Coastguard Worker              // will cancel itself on the next scheduled ContinueProbe() call
*6777b538SAndroid Build Coastguard Worker              // if the server is still available. This way, the backoff
*6777b538SAndroid Build Coastguard Worker              // schedule will be maintained if a server quickly becomes
*6777b538SAndroid Build Coastguard Worker              // unavailable again before that scheduled call.
*6777b538SAndroid Build Coastguard Worker              break;
*6777b538SAndroid Build Coastguard Worker            }
*6777b538SAndroid Build Coastguard Worker          }
*6777b538SAndroid Build Coastguard Worker        }
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker      if (!success) {
*6777b538SAndroid Build Coastguard Worker        context_->RecordServerFailure(
*6777b538SAndroid Build Coastguard Worker            doh_server_index, /*is_doh_server=*/true,
*6777b538SAndroid Build Coastguard Worker            /*rv=*/ERR_DNS_SECURE_PROBE_RECORD_INVALID, session_.get());
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker      break;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    base::UmaHistogramLongTimes(
*6777b538SAndroid Build Coastguard Worker        base::JoinString({"Net.DNS.ProbeSequence",
*6777b538SAndroid Build Coastguard Worker                          network_change ? "NetworkChange" : "ConfigChange",
*6777b538SAndroid Build Coastguard Worker                          success ? "Success" : "Failure", "AttemptTime"},
*6777b538SAndroid Build Coastguard Worker                         "."),
*6777b538SAndroid Build Coastguard Worker        base::TimeTicks::Now() - sequence_start_time);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  base::WeakPtr<DnsSession> session_;
*6777b538SAndroid Build Coastguard Worker  base::WeakPtr<ResolveContext> context_;
*6777b538SAndroid Build Coastguard Worker  std::vector<uint8_t> formatted_probe_qname_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // List of ProbeStats, one for each DoH server, indexed by the DoH server
*6777b538SAndroid Build Coastguard Worker  // config index.
*6777b538SAndroid Build Coastguard Worker  std::vector<std::unique_ptr<ProbeStats>> probe_stats_list_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  base::WeakPtrFactory<DnsOverHttpsProbeRunner> weak_ptr_factory_{this};
*6777b538SAndroid Build Coastguard Worker};
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker// ----------------------------------------------------------------------------
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker// Implements DnsTransaction. Configuration is supplied by DnsSession.
*6777b538SAndroid Build Coastguard Worker// The suffix list is built according to the DnsConfig from the session.
*6777b538SAndroid Build Coastguard Worker// The fallback period for each DnsUDPAttempt is given by
*6777b538SAndroid Build Coastguard Worker// ResolveContext::NextClassicFallbackPeriod(). The first server to attempt on
*6777b538SAndroid Build Coastguard Worker// each query is given by ResolveContext::NextFirstServerIndex, and the order is
*6777b538SAndroid Build Coastguard Worker// round-robin afterwards. Each server is attempted DnsConfig::attempts times.
*6777b538SAndroid Build Coastguard Workerclass DnsTransactionImpl final : public DnsTransaction {
*6777b538SAndroid Build Coastguard Worker public:
*6777b538SAndroid Build Coastguard Worker  DnsTransactionImpl(DnsSession* session,
*6777b538SAndroid Build Coastguard Worker                     std::string hostname,
*6777b538SAndroid Build Coastguard Worker                     uint16_t qtype,
*6777b538SAndroid Build Coastguard Worker                     const NetLogWithSource& parent_net_log,
*6777b538SAndroid Build Coastguard Worker                     const OptRecordRdata* opt_rdata,
*6777b538SAndroid Build Coastguard Worker                     bool secure,
*6777b538SAndroid Build Coastguard Worker                     SecureDnsMode secure_dns_mode,
*6777b538SAndroid Build Coastguard Worker                     ResolveContext* resolve_context,
*6777b538SAndroid Build Coastguard Worker                     bool fast_timeout)
*6777b538SAndroid Build Coastguard Worker      : session_(session),
*6777b538SAndroid Build Coastguard Worker        hostname_(std::move(hostname)),
*6777b538SAndroid Build Coastguard Worker        qtype_(qtype),
*6777b538SAndroid Build Coastguard Worker        opt_rdata_(opt_rdata),
*6777b538SAndroid Build Coastguard Worker        secure_(secure),
*6777b538SAndroid Build Coastguard Worker        secure_dns_mode_(secure_dns_mode),
*6777b538SAndroid Build Coastguard Worker        fast_timeout_(fast_timeout),
*6777b538SAndroid Build Coastguard Worker        net_log_(NetLogWithSource::Make(NetLog::Get(),
*6777b538SAndroid Build Coastguard Worker                                        NetLogSourceType::DNS_TRANSACTION)),
*6777b538SAndroid Build Coastguard Worker        resolve_context_(resolve_context->AsSafeRef()) {
*6777b538SAndroid Build Coastguard Worker    DCHECK(session_.get());
*6777b538SAndroid Build Coastguard Worker    DCHECK(!hostname_.empty());
*6777b538SAndroid Build Coastguard Worker    DCHECK(!IsIPLiteral(hostname_));
*6777b538SAndroid Build Coastguard Worker    parent_net_log.AddEventReferencingSource(NetLogEventType::DNS_TRANSACTION,
*6777b538SAndroid Build Coastguard Worker                                             net_log_.source());
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  DnsTransactionImpl(const DnsTransactionImpl&) = delete;
*6777b538SAndroid Build Coastguard Worker  DnsTransactionImpl& operator=(const DnsTransactionImpl&) = delete;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  ~DnsTransactionImpl() override {
*6777b538SAndroid Build Coastguard Worker    DCHECK_CALLED_ON_VALID_THREAD(thread_checker_);
*6777b538SAndroid Build Coastguard Worker    if (!callback_.is_null()) {
*6777b538SAndroid Build Coastguard Worker      net_log_.EndEventWithNetErrorCode(NetLogEventType::DNS_TRANSACTION,
*6777b538SAndroid Build Coastguard Worker                                        ERR_ABORTED);
*6777b538SAndroid Build Coastguard Worker    }  // otherwise logged in DoCallback or Start
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  const std::string& GetHostname() const override {
*6777b538SAndroid Build Coastguard Worker    DCHECK_CALLED_ON_VALID_THREAD(thread_checker_);
*6777b538SAndroid Build Coastguard Worker    return hostname_;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  uint16_t GetType() const override {
*6777b538SAndroid Build Coastguard Worker    DCHECK_CALLED_ON_VALID_THREAD(thread_checker_);
*6777b538SAndroid Build Coastguard Worker    return qtype_;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void Start(ResponseCallback callback) override {
*6777b538SAndroid Build Coastguard Worker    DCHECK(!callback.is_null());
*6777b538SAndroid Build Coastguard Worker    DCHECK(callback_.is_null());
*6777b538SAndroid Build Coastguard Worker    DCHECK(attempts_.empty());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    callback_ = std::move(callback);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    net_log_.BeginEvent(NetLogEventType::DNS_TRANSACTION,
*6777b538SAndroid Build Coastguard Worker                        [&] { return NetLogStartParams(hostname_, qtype_); });
*6777b538SAndroid Build Coastguard Worker    time_from_start_ = std::make_unique<base::ElapsedTimer>();
*6777b538SAndroid Build Coastguard Worker    AttemptResult result(PrepareSearch(), nullptr);
*6777b538SAndroid Build Coastguard Worker    if (result.rv == OK) {
*6777b538SAndroid Build Coastguard Worker      qnames_initial_size_ = qnames_.size();
*6777b538SAndroid Build Coastguard Worker      result = ProcessAttemptResult(StartQuery());
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    // Must always return result asynchronously, to avoid reentrancy.
*6777b538SAndroid Build Coastguard Worker    if (result.rv != ERR_IO_PENDING) {
*6777b538SAndroid Build Coastguard Worker      // Clear all other non-completed attempts. They are no longer needed and
*6777b538SAndroid Build Coastguard Worker      // they may interfere with this posted result.
*6777b538SAndroid Build Coastguard Worker      ClearAttempts(result.attempt);
*6777b538SAndroid Build Coastguard Worker      base::SingleThreadTaskRunner::GetCurrentDefault()->PostTask(
*6777b538SAndroid Build Coastguard Worker          FROM_HERE, base::BindOnce(&DnsTransactionImpl::DoCallback,
*6777b538SAndroid Build Coastguard Worker                                    weak_ptr_factory_.GetWeakPtr(), result));
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void SetRequestPriority(RequestPriority priority) override {
*6777b538SAndroid Build Coastguard Worker    request_priority_ = priority;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker private:
*6777b538SAndroid Build Coastguard Worker  // Wrapper for the result of a DnsUDPAttempt.
*6777b538SAndroid Build Coastguard Worker  struct AttemptResult {
*6777b538SAndroid Build Coastguard Worker    AttemptResult() = default;
*6777b538SAndroid Build Coastguard Worker    AttemptResult(int rv, const DnsAttempt* attempt)
*6777b538SAndroid Build Coastguard Worker        : rv(rv), attempt(attempt) {}
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    int rv;
*6777b538SAndroid Build Coastguard Worker    raw_ptr<const DnsAttempt, AcrossTasksDanglingUntriaged> attempt;
*6777b538SAndroid Build Coastguard Worker  };
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Used in UMA (DNS.AttemptType). Do not renumber or remove values.
*6777b538SAndroid Build Coastguard Worker  enum class DnsAttemptType {
*6777b538SAndroid Build Coastguard Worker    kUdp = 0,
*6777b538SAndroid Build Coastguard Worker    kTcpLowEntropy = 1,
*6777b538SAndroid Build Coastguard Worker    kTcpTruncationRetry = 2,
*6777b538SAndroid Build Coastguard Worker    kHttp = 3,
*6777b538SAndroid Build Coastguard Worker    kMaxValue = kHttp,
*6777b538SAndroid Build Coastguard Worker  };
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Prepares |qnames_| according to the DnsConfig.
*6777b538SAndroid Build Coastguard Worker  int PrepareSearch() {
*6777b538SAndroid Build Coastguard Worker    const DnsConfig& config = session_->config();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    std::optional<std::vector<uint8_t>> labeled_qname =
*6777b538SAndroid Build Coastguard Worker        dns_names_util::DottedNameToNetwork(
*6777b538SAndroid Build Coastguard Worker            hostname_,
*6777b538SAndroid Build Coastguard Worker            /*require_valid_internet_hostname=*/true);
*6777b538SAndroid Build Coastguard Worker    if (!labeled_qname.has_value())
*6777b538SAndroid Build Coastguard Worker      return ERR_INVALID_ARGUMENT;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (hostname_.back() == '.') {
*6777b538SAndroid Build Coastguard Worker      // It's a fully-qualified name, no suffix search.
*6777b538SAndroid Build Coastguard Worker      qnames_.push_back(std::move(labeled_qname).value());
*6777b538SAndroid Build Coastguard Worker      return OK;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    int ndots = CountLabels(labeled_qname.value()) - 1;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (ndots > 0 && !config.append_to_multi_label_name) {
*6777b538SAndroid Build Coastguard Worker      qnames_.push_back(std::move(labeled_qname).value());
*6777b538SAndroid Build Coastguard Worker      return OK;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    // Set true when `labeled_qname` is put on the list.
*6777b538SAndroid Build Coastguard Worker    bool had_qname = false;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (ndots >= config.ndots) {
*6777b538SAndroid Build Coastguard Worker      qnames_.push_back(labeled_qname.value());
*6777b538SAndroid Build Coastguard Worker      had_qname = true;
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    for (const auto& suffix : config.search) {
*6777b538SAndroid Build Coastguard Worker      std::optional<std::vector<uint8_t>> qname =
*6777b538SAndroid Build Coastguard Worker          dns_names_util::DottedNameToNetwork(
*6777b538SAndroid Build Coastguard Worker              hostname_ + "." + suffix,
*6777b538SAndroid Build Coastguard Worker              /*require_valid_internet_hostname=*/true);
*6777b538SAndroid Build Coastguard Worker      // Ignore invalid (too long) combinations.
*6777b538SAndroid Build Coastguard Worker      if (!qname.has_value())
*6777b538SAndroid Build Coastguard Worker        continue;
*6777b538SAndroid Build Coastguard Worker      if (qname.value().size() == labeled_qname.value().size()) {
*6777b538SAndroid Build Coastguard Worker        if (had_qname)
*6777b538SAndroid Build Coastguard Worker          continue;
*6777b538SAndroid Build Coastguard Worker        had_qname = true;
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker      qnames_.push_back(std::move(qname).value());
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (ndots > 0 && !had_qname)
*6777b538SAndroid Build Coastguard Worker      qnames_.push_back(std::move(labeled_qname).value());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return qnames_.empty() ? ERR_DNS_SEARCH_EMPTY : OK;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void DoCallback(AttemptResult result) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_NE(ERR_IO_PENDING, result.rv);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    // TODO(mgersh): consider changing back to a DCHECK once
*6777b538SAndroid Build Coastguard Worker    // https://crbug.com/779589 is fixed.
*6777b538SAndroid Build Coastguard Worker    if (callback_.is_null())
*6777b538SAndroid Build Coastguard Worker      return;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    const DnsResponse* response =
*6777b538SAndroid Build Coastguard Worker        result.attempt ? result.attempt->GetResponse() : nullptr;
*6777b538SAndroid Build Coastguard Worker    CHECK(result.rv != OK || response != nullptr);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    timer_.Stop();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    net_log_.EndEventWithNetErrorCode(NetLogEventType::DNS_TRANSACTION,
*6777b538SAndroid Build Coastguard Worker                                      result.rv);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    std::move(callback_).Run(result.rv, response);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void RecordAttemptUma(DnsAttemptType attempt_type) {
*6777b538SAndroid Build Coastguard Worker    UMA_HISTOGRAM_ENUMERATION("Net.DNS.DnsTransaction.AttemptType",
*6777b538SAndroid Build Coastguard Worker                              attempt_type);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  AttemptResult MakeAttempt() {
*6777b538SAndroid Build Coastguard Worker    DCHECK(MoreAttemptsAllowed());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    DnsConfig config = session_->config();
*6777b538SAndroid Build Coastguard Worker    if (secure_) {
*6777b538SAndroid Build Coastguard Worker      DCHECK(!config.doh_config.servers().empty());
*6777b538SAndroid Build Coastguard Worker      RecordAttemptUma(DnsAttemptType::kHttp);
*6777b538SAndroid Build Coastguard Worker      return MakeHTTPAttempt();
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    DCHECK_GT(config.nameservers.size(), 0u);
*6777b538SAndroid Build Coastguard Worker    return MakeClassicDnsAttempt();
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  AttemptResult MakeClassicDnsAttempt() {
*6777b538SAndroid Build Coastguard Worker    uint16_t id = session_->NextQueryId();
*6777b538SAndroid Build Coastguard Worker    std::unique_ptr<DnsQuery> query;
*6777b538SAndroid Build Coastguard Worker    if (attempts_.empty()) {
*6777b538SAndroid Build Coastguard Worker      query =
*6777b538SAndroid Build Coastguard Worker          std::make_unique<DnsQuery>(id, qnames_.front(), qtype_, opt_rdata_);
*6777b538SAndroid Build Coastguard Worker    } else {
*6777b538SAndroid Build Coastguard Worker      query = attempts_[0]->GetQuery()->CloneWithNewId(id);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    DCHECK(dns_server_iterator_->AttemptAvailable());
*6777b538SAndroid Build Coastguard Worker    size_t server_index = dns_server_iterator_->GetNextAttemptIndex();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    size_t attempt_number = attempts_.size();
*6777b538SAndroid Build Coastguard Worker    AttemptResult result;
*6777b538SAndroid Build Coastguard Worker    if (session_->udp_tracker()->low_entropy()) {
*6777b538SAndroid Build Coastguard Worker      result = MakeTcpAttempt(server_index, std::move(query));
*6777b538SAndroid Build Coastguard Worker      RecordAttemptUma(DnsAttemptType::kTcpLowEntropy);
*6777b538SAndroid Build Coastguard Worker    } else {
*6777b538SAndroid Build Coastguard Worker      result = MakeUdpAttempt(server_index, std::move(query));
*6777b538SAndroid Build Coastguard Worker      RecordAttemptUma(DnsAttemptType::kUdp);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (result.rv == ERR_IO_PENDING) {
*6777b538SAndroid Build Coastguard Worker      base::TimeDelta fallback_period =
*6777b538SAndroid Build Coastguard Worker          resolve_context_->NextClassicFallbackPeriod(
*6777b538SAndroid Build Coastguard Worker              server_index, attempt_number, session_.get());
*6777b538SAndroid Build Coastguard Worker      timer_.Start(FROM_HERE, fallback_period, this,
*6777b538SAndroid Build Coastguard Worker                   &DnsTransactionImpl::OnFallbackPeriodExpired);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return result;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Makes another attempt at the current name, |qnames_.front()|, using the
*6777b538SAndroid Build Coastguard Worker  // next nameserver.
*6777b538SAndroid Build Coastguard Worker  AttemptResult MakeUdpAttempt(size_t server_index,
*6777b538SAndroid Build Coastguard Worker                               std::unique_ptr<DnsQuery> query) {
*6777b538SAndroid Build Coastguard Worker    DCHECK(!secure_);
*6777b538SAndroid Build Coastguard Worker    DCHECK(!session_->udp_tracker()->low_entropy());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    const DnsConfig& config = session_->config();
*6777b538SAndroid Build Coastguard Worker    DCHECK_LT(server_index, config.nameservers.size());
*6777b538SAndroid Build Coastguard Worker    size_t attempt_number = attempts_.size();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    std::unique_ptr<DatagramClientSocket> socket =
*6777b538SAndroid Build Coastguard Worker        resolve_context_->url_request_context()
*6777b538SAndroid Build Coastguard Worker            ->GetNetworkSessionContext()
*6777b538SAndroid Build Coastguard Worker            ->client_socket_factory->CreateDatagramClientSocket(
*6777b538SAndroid Build Coastguard Worker                DatagramSocket::RANDOM_BIND, net_log_.net_log(),
*6777b538SAndroid Build Coastguard Worker                net_log_.source());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    attempts_.push_back(std::make_unique<DnsUDPAttempt>(
*6777b538SAndroid Build Coastguard Worker        server_index, std::move(socket), config.nameservers[server_index],
*6777b538SAndroid Build Coastguard Worker        std::move(query), session_->udp_tracker()));
*6777b538SAndroid Build Coastguard Worker    ++attempts_count_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    DnsAttempt* attempt = attempts_.back().get();
*6777b538SAndroid Build Coastguard Worker    net_log_.AddEventReferencingSource(NetLogEventType::DNS_TRANSACTION_ATTEMPT,
*6777b538SAndroid Build Coastguard Worker                                       attempt->GetSocketNetLog().source());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    int rv = attempt->Start(base::BindOnce(
*6777b538SAndroid Build Coastguard Worker        &DnsTransactionImpl::OnAttemptComplete, base::Unretained(this),
*6777b538SAndroid Build Coastguard Worker        attempt_number, true /* record_rtt */, base::TimeTicks::Now()));
*6777b538SAndroid Build Coastguard Worker    return AttemptResult(rv, attempt);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  AttemptResult MakeHTTPAttempt() {
*6777b538SAndroid Build Coastguard Worker    DCHECK(secure_);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    size_t doh_server_index = dns_server_iterator_->GetNextAttemptIndex();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    unsigned attempt_number = attempts_.size();
*6777b538SAndroid Build Coastguard Worker    ConstructDnsHTTPAttempt(session_.get(), doh_server_index, qnames_.front(),
*6777b538SAndroid Build Coastguard Worker                            qtype_, opt_rdata_, &attempts_,
*6777b538SAndroid Build Coastguard Worker                            resolve_context_->url_request_context(),
*6777b538SAndroid Build Coastguard Worker                            resolve_context_->isolation_info(),
*6777b538SAndroid Build Coastguard Worker                            request_priority_, /*is_probe=*/false);
*6777b538SAndroid Build Coastguard Worker    ++attempts_count_;
*6777b538SAndroid Build Coastguard Worker    DnsAttempt* attempt = attempts_.back().get();
*6777b538SAndroid Build Coastguard Worker    // Associate this attempt with the DoH request in NetLog.
*6777b538SAndroid Build Coastguard Worker    net_log_.AddEventReferencingSource(
*6777b538SAndroid Build Coastguard Worker        NetLogEventType::DNS_TRANSACTION_HTTPS_ATTEMPT,
*6777b538SAndroid Build Coastguard Worker        attempt->GetSocketNetLog().source());
*6777b538SAndroid Build Coastguard Worker    attempt->GetSocketNetLog().AddEventReferencingSource(
*6777b538SAndroid Build Coastguard Worker        NetLogEventType::DNS_TRANSACTION_HTTPS_ATTEMPT, net_log_.source());
*6777b538SAndroid Build Coastguard Worker    int rv = attempt->Start(base::BindOnce(
*6777b538SAndroid Build Coastguard Worker        &DnsTransactionImpl::OnAttemptComplete, base::Unretained(this),
*6777b538SAndroid Build Coastguard Worker        attempt_number, true /* record_rtt */, base::TimeTicks::Now()));
*6777b538SAndroid Build Coastguard Worker    if (rv == ERR_IO_PENDING) {
*6777b538SAndroid Build Coastguard Worker      base::TimeDelta fallback_period = resolve_context_->NextDohFallbackPeriod(
*6777b538SAndroid Build Coastguard Worker          doh_server_index, session_.get());
*6777b538SAndroid Build Coastguard Worker      timer_.Start(FROM_HERE, fallback_period, this,
*6777b538SAndroid Build Coastguard Worker                   &DnsTransactionImpl::OnFallbackPeriodExpired);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    return AttemptResult(rv, attempts_.back().get());
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  AttemptResult RetryUdpAttemptAsTcp(const DnsAttempt* previous_attempt) {
*6777b538SAndroid Build Coastguard Worker    DCHECK(previous_attempt);
*6777b538SAndroid Build Coastguard Worker    DCHECK(!had_tcp_retry_);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    // Only allow a single TCP retry per query.
*6777b538SAndroid Build Coastguard Worker    had_tcp_retry_ = true;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    size_t server_index = previous_attempt->server_index();
*6777b538SAndroid Build Coastguard Worker    // Use a new query ID instead of reusing the same one from the UDP attempt.
*6777b538SAndroid Build Coastguard Worker    // RFC5452, section 9.2 requires an unpredictable ID for all outgoing
*6777b538SAndroid Build Coastguard Worker    // queries, with no distinction made between queries made via TCP or UDP.
*6777b538SAndroid Build Coastguard Worker    std::unique_ptr<DnsQuery> query =
*6777b538SAndroid Build Coastguard Worker        previous_attempt->GetQuery()->CloneWithNewId(session_->NextQueryId());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    // Cancel all attempts that have not received a response, as they will
*6777b538SAndroid Build Coastguard Worker    // likely similarly require TCP retry.
*6777b538SAndroid Build Coastguard Worker    ClearAttempts(nullptr);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    AttemptResult result = MakeTcpAttempt(server_index, std::move(query));
*6777b538SAndroid Build Coastguard Worker    RecordAttemptUma(DnsAttemptType::kTcpTruncationRetry);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    if (result.rv == ERR_IO_PENDING) {
*6777b538SAndroid Build Coastguard Worker      // On TCP upgrade, use 2x the upgraded fallback period.
*6777b538SAndroid Build Coastguard Worker      base::TimeDelta fallback_period = timer_.GetCurrentDelay() * 2;
*6777b538SAndroid Build Coastguard Worker      timer_.Start(FROM_HERE, fallback_period, this,
*6777b538SAndroid Build Coastguard Worker                   &DnsTransactionImpl::OnFallbackPeriodExpired);
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return result;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  AttemptResult MakeTcpAttempt(size_t server_index,
*6777b538SAndroid Build Coastguard Worker                               std::unique_ptr<DnsQuery> query) {
*6777b538SAndroid Build Coastguard Worker    DCHECK(!secure_);
*6777b538SAndroid Build Coastguard Worker    const DnsConfig& config = session_->config();
*6777b538SAndroid Build Coastguard Worker    DCHECK_LT(server_index, config.nameservers.size());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    // TODO(https://crbug.com/1123197): Pass a non-null NetworkQualityEstimator.
*6777b538SAndroid Build Coastguard Worker    NetworkQualityEstimator* network_quality_estimator = nullptr;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    std::unique_ptr<StreamSocket> socket =
*6777b538SAndroid Build Coastguard Worker        resolve_context_->url_request_context()
*6777b538SAndroid Build Coastguard Worker            ->GetNetworkSessionContext()
*6777b538SAndroid Build Coastguard Worker            ->client_socket_factory->CreateTransportClientSocket(
*6777b538SAndroid Build Coastguard Worker                AddressList(config.nameservers[server_index]), nullptr,
*6777b538SAndroid Build Coastguard Worker                network_quality_estimator, net_log_.net_log(),
*6777b538SAndroid Build Coastguard Worker                net_log_.source());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    unsigned attempt_number = attempts_.size();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    attempts_.push_back(std::make_unique<DnsTCPAttempt>(
*6777b538SAndroid Build Coastguard Worker        server_index, std::move(socket), std::move(query)));
*6777b538SAndroid Build Coastguard Worker    ++attempts_count_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    DnsAttempt* attempt = attempts_.back().get();
*6777b538SAndroid Build Coastguard Worker    net_log_.AddEventReferencingSource(
*6777b538SAndroid Build Coastguard Worker        NetLogEventType::DNS_TRANSACTION_TCP_ATTEMPT,
*6777b538SAndroid Build Coastguard Worker        attempt->GetSocketNetLog().source());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    int rv = attempt->Start(base::BindOnce(
*6777b538SAndroid Build Coastguard Worker        &DnsTransactionImpl::OnAttemptComplete, base::Unretained(this),
*6777b538SAndroid Build Coastguard Worker        attempt_number, false /* record_rtt */, base::TimeTicks::Now()));
*6777b538SAndroid Build Coastguard Worker    return AttemptResult(rv, attempt);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Begins query for the current name. Makes the first attempt.
*6777b538SAndroid Build Coastguard Worker  AttemptResult StartQuery() {
*6777b538SAndroid Build Coastguard Worker    std::optional<std::string> dotted_qname =
*6777b538SAndroid Build Coastguard Worker        dns_names_util::NetworkToDottedName(qnames_.front());
*6777b538SAndroid Build Coastguard Worker    net_log_.BeginEventWithStringParams(
*6777b538SAndroid Build Coastguard Worker        NetLogEventType::DNS_TRANSACTION_QUERY, "qname",
*6777b538SAndroid Build Coastguard Worker        dotted_qname.value_or("???MALFORMED_NAME???"));
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    attempts_.clear();
*6777b538SAndroid Build Coastguard Worker    had_tcp_retry_ = false;
*6777b538SAndroid Build Coastguard Worker    if (secure_) {
*6777b538SAndroid Build Coastguard Worker      dns_server_iterator_ = resolve_context_->GetDohIterator(
*6777b538SAndroid Build Coastguard Worker          session_->config(), secure_dns_mode_, session_.get());
*6777b538SAndroid Build Coastguard Worker    } else {
*6777b538SAndroid Build Coastguard Worker      dns_server_iterator_ = resolve_context_->GetClassicDnsIterator(
*6777b538SAndroid Build Coastguard Worker          session_->config(), session_.get());
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    DCHECK(dns_server_iterator_);
*6777b538SAndroid Build Coastguard Worker    // Check for available server before starting as DoH servers might be
*6777b538SAndroid Build Coastguard Worker    // unavailable.
*6777b538SAndroid Build Coastguard Worker    if (!dns_server_iterator_->AttemptAvailable())
*6777b538SAndroid Build Coastguard Worker      return AttemptResult(ERR_BLOCKED_BY_CLIENT, nullptr);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return MakeAttempt();
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void OnAttemptComplete(unsigned attempt_number,
*6777b538SAndroid Build Coastguard Worker                         bool record_rtt,
*6777b538SAndroid Build Coastguard Worker                         base::TimeTicks start,
*6777b538SAndroid Build Coastguard Worker                         int rv) {
*6777b538SAndroid Build Coastguard Worker    DCHECK_LT(attempt_number, attempts_.size());
*6777b538SAndroid Build Coastguard Worker    const DnsAttempt* attempt = attempts_[attempt_number].get();
*6777b538SAndroid Build Coastguard Worker    if (record_rtt && attempt->GetResponse()) {
*6777b538SAndroid Build Coastguard Worker      resolve_context_->RecordRtt(
*6777b538SAndroid Build Coastguard Worker          attempt->server_index(), secure_ /* is_doh_server */,
*6777b538SAndroid Build Coastguard Worker          base::TimeTicks::Now() - start, rv, session_.get());
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    if (callback_.is_null())
*6777b538SAndroid Build Coastguard Worker      return;
*6777b538SAndroid Build Coastguard Worker    AttemptResult result = ProcessAttemptResult(AttemptResult(rv, attempt));
*6777b538SAndroid Build Coastguard Worker    if (result.rv != ERR_IO_PENDING)
*6777b538SAndroid Build Coastguard Worker      DoCallback(result);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void LogResponse(const DnsAttempt* attempt) {
*6777b538SAndroid Build Coastguard Worker    if (attempt) {
*6777b538SAndroid Build Coastguard Worker      net_log_.AddEvent(NetLogEventType::DNS_TRANSACTION_RESPONSE,
*6777b538SAndroid Build Coastguard Worker                        [&](NetLogCaptureMode capture_mode) {
*6777b538SAndroid Build Coastguard Worker                          return attempt->NetLogResponseParams(capture_mode);
*6777b538SAndroid Build Coastguard Worker                        });
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  bool MoreAttemptsAllowed() const {
*6777b538SAndroid Build Coastguard Worker    if (had_tcp_retry_)
*6777b538SAndroid Build Coastguard Worker      return false;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return dns_server_iterator_->AttemptAvailable();
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Resolves the result of a DnsAttempt until a terminal result is reached
*6777b538SAndroid Build Coastguard Worker  // or it will complete asynchronously (ERR_IO_PENDING).
*6777b538SAndroid Build Coastguard Worker  AttemptResult ProcessAttemptResult(AttemptResult result) {
*6777b538SAndroid Build Coastguard Worker    while (result.rv != ERR_IO_PENDING) {
*6777b538SAndroid Build Coastguard Worker      LogResponse(result.attempt);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker      switch (result.rv) {
*6777b538SAndroid Build Coastguard Worker        case OK:
*6777b538SAndroid Build Coastguard Worker          resolve_context_->RecordServerSuccess(result.attempt->server_index(),
*6777b538SAndroid Build Coastguard Worker                                                secure_ /* is_doh_server */,
*6777b538SAndroid Build Coastguard Worker                                                session_.get());
*6777b538SAndroid Build Coastguard Worker          net_log_.EndEventWithNetErrorCode(
*6777b538SAndroid Build Coastguard Worker              NetLogEventType::DNS_TRANSACTION_QUERY, result.rv);
*6777b538SAndroid Build Coastguard Worker          DCHECK(result.attempt);
*6777b538SAndroid Build Coastguard Worker          DCHECK(result.attempt->GetResponse());
*6777b538SAndroid Build Coastguard Worker          return result;
*6777b538SAndroid Build Coastguard Worker        case ERR_NAME_NOT_RESOLVED:
*6777b538SAndroid Build Coastguard Worker          resolve_context_->RecordServerSuccess(result.attempt->server_index(),
*6777b538SAndroid Build Coastguard Worker                                                secure_ /* is_doh_server */,
*6777b538SAndroid Build Coastguard Worker                                                session_.get());
*6777b538SAndroid Build Coastguard Worker          net_log_.EndEventWithNetErrorCode(
*6777b538SAndroid Build Coastguard Worker              NetLogEventType::DNS_TRANSACTION_QUERY, result.rv);
*6777b538SAndroid Build Coastguard Worker          // Try next suffix. Check that qnames_ isn't already empty first,
*6777b538SAndroid Build Coastguard Worker          // which can happen when there are two attempts running at once.
*6777b538SAndroid Build Coastguard Worker          // TODO(mgersh): remove this workaround for https://crbug.com/774846
*6777b538SAndroid Build Coastguard Worker          // when https://crbug.com/779589 is fixed.
*6777b538SAndroid Build Coastguard Worker          if (!qnames_.empty())
*6777b538SAndroid Build Coastguard Worker            qnames_.pop_front();
*6777b538SAndroid Build Coastguard Worker          if (qnames_.empty()) {
*6777b538SAndroid Build Coastguard Worker            return result;
*6777b538SAndroid Build Coastguard Worker          } else {
*6777b538SAndroid Build Coastguard Worker            result = StartQuery();
*6777b538SAndroid Build Coastguard Worker          }
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case ERR_DNS_TIMED_OUT:
*6777b538SAndroid Build Coastguard Worker          timer_.Stop();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker          if (result.attempt) {
*6777b538SAndroid Build Coastguard Worker            DCHECK(result.attempt == attempts_.back().get());
*6777b538SAndroid Build Coastguard Worker            resolve_context_->RecordServerFailure(
*6777b538SAndroid Build Coastguard Worker                result.attempt->server_index(), secure_ /* is_doh_server */,
*6777b538SAndroid Build Coastguard Worker                result.rv, session_.get());
*6777b538SAndroid Build Coastguard Worker          }
*6777b538SAndroid Build Coastguard Worker          if (MoreAttemptsAllowed()) {
*6777b538SAndroid Build Coastguard Worker            result = MakeAttempt();
*6777b538SAndroid Build Coastguard Worker            break;
*6777b538SAndroid Build Coastguard Worker          }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker          if (!fast_timeout_ && AnyAttemptPending()) {
*6777b538SAndroid Build Coastguard Worker            StartTimeoutTimer();
*6777b538SAndroid Build Coastguard Worker            return AttemptResult(ERR_IO_PENDING, nullptr);
*6777b538SAndroid Build Coastguard Worker          }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker          return result;
*6777b538SAndroid Build Coastguard Worker        case ERR_DNS_SERVER_REQUIRES_TCP:
*6777b538SAndroid Build Coastguard Worker          result = RetryUdpAttemptAsTcp(result.attempt);
*6777b538SAndroid Build Coastguard Worker          break;
*6777b538SAndroid Build Coastguard Worker        case ERR_BLOCKED_BY_CLIENT:
*6777b538SAndroid Build Coastguard Worker          net_log_.EndEventWithNetErrorCode(
*6777b538SAndroid Build Coastguard Worker              NetLogEventType::DNS_TRANSACTION_QUERY, result.rv);
*6777b538SAndroid Build Coastguard Worker          return result;
*6777b538SAndroid Build Coastguard Worker        default:
*6777b538SAndroid Build Coastguard Worker          // Server failure.
*6777b538SAndroid Build Coastguard Worker          DCHECK(result.attempt);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker          // If attempt is not the most recent attempt, means this error is for
*6777b538SAndroid Build Coastguard Worker          // a previous attempt that already passed its fallback period and
*6777b538SAndroid Build Coastguard Worker          // continued attempting in parallel with new attempts (see the
*6777b538SAndroid Build Coastguard Worker          // ERR_DNS_TIMED_OUT case above). As the failure was already recorded
*6777b538SAndroid Build Coastguard Worker          // at fallback time and is no longer being waited on, ignore this
*6777b538SAndroid Build Coastguard Worker          // failure.
*6777b538SAndroid Build Coastguard Worker          if (result.attempt == attempts_.back().get()) {
*6777b538SAndroid Build Coastguard Worker            timer_.Stop();
*6777b538SAndroid Build Coastguard Worker            resolve_context_->RecordServerFailure(
*6777b538SAndroid Build Coastguard Worker                result.attempt->server_index(), secure_ /* is_doh_server */,
*6777b538SAndroid Build Coastguard Worker                result.rv, session_.get());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker            if (MoreAttemptsAllowed()) {
*6777b538SAndroid Build Coastguard Worker              result = MakeAttempt();
*6777b538SAndroid Build Coastguard Worker              break;
*6777b538SAndroid Build Coastguard Worker            }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker            if (fast_timeout_) {
*6777b538SAndroid Build Coastguard Worker              return result;
*6777b538SAndroid Build Coastguard Worker            }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker            // No more attempts can be made, but there may be other attempts
*6777b538SAndroid Build Coastguard Worker            // still pending, so start the timeout timer.
*6777b538SAndroid Build Coastguard Worker            StartTimeoutTimer();
*6777b538SAndroid Build Coastguard Worker          }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker          // If any attempts are still pending, continue to wait for them.
*6777b538SAndroid Build Coastguard Worker          if (AnyAttemptPending()) {
*6777b538SAndroid Build Coastguard Worker            DCHECK(timer_.IsRunning());
*6777b538SAndroid Build Coastguard Worker            return AttemptResult(ERR_IO_PENDING, nullptr);
*6777b538SAndroid Build Coastguard Worker          }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker          return result;
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    return result;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Clears and cancels all pending attempts. If |leave_attempt| is not
*6777b538SAndroid Build Coastguard Worker  // null, that attempt is not cleared even if pending.
*6777b538SAndroid Build Coastguard Worker  void ClearAttempts(const DnsAttempt* leave_attempt) {
*6777b538SAndroid Build Coastguard Worker    for (auto it = attempts_.begin(); it != attempts_.end();) {
*6777b538SAndroid Build Coastguard Worker      if ((*it)->IsPending() && it->get() != leave_attempt) {
*6777b538SAndroid Build Coastguard Worker        it = attempts_.erase(it);
*6777b538SAndroid Build Coastguard Worker      } else {
*6777b538SAndroid Build Coastguard Worker        ++it;
*6777b538SAndroid Build Coastguard Worker      }
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  bool AnyAttemptPending() {
*6777b538SAndroid Build Coastguard Worker    return base::ranges::any_of(attempts_,
*6777b538SAndroid Build Coastguard Worker                                [](std::unique_ptr<DnsAttempt>& attempt) {
*6777b538SAndroid Build Coastguard Worker                                  return attempt->IsPending();
*6777b538SAndroid Build Coastguard Worker                                });
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void OnFallbackPeriodExpired() {
*6777b538SAndroid Build Coastguard Worker    if (callback_.is_null())
*6777b538SAndroid Build Coastguard Worker      return;
*6777b538SAndroid Build Coastguard Worker    DCHECK(!attempts_.empty());
*6777b538SAndroid Build Coastguard Worker    AttemptResult result = ProcessAttemptResult(
*6777b538SAndroid Build Coastguard Worker        AttemptResult(ERR_DNS_TIMED_OUT, attempts_.back().get()));
*6777b538SAndroid Build Coastguard Worker    if (result.rv != ERR_IO_PENDING)
*6777b538SAndroid Build Coastguard Worker      DoCallback(result);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void StartTimeoutTimer() {
*6777b538SAndroid Build Coastguard Worker    DCHECK(!fast_timeout_);
*6777b538SAndroid Build Coastguard Worker    DCHECK(!timer_.IsRunning());
*6777b538SAndroid Build Coastguard Worker    DCHECK(!callback_.is_null());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    base::TimeDelta timeout;
*6777b538SAndroid Build Coastguard Worker    if (secure_) {
*6777b538SAndroid Build Coastguard Worker      timeout = resolve_context_->SecureTransactionTimeout(secure_dns_mode_,
*6777b538SAndroid Build Coastguard Worker                                                           session_.get());
*6777b538SAndroid Build Coastguard Worker    } else {
*6777b538SAndroid Build Coastguard Worker      timeout = resolve_context_->ClassicTransactionTimeout(session_.get());
*6777b538SAndroid Build Coastguard Worker    }
*6777b538SAndroid Build Coastguard Worker    timeout -= time_from_start_->Elapsed();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    timer_.Start(FROM_HERE, timeout, this, &DnsTransactionImpl::OnTimeout);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void OnTimeout() {
*6777b538SAndroid Build Coastguard Worker    if (callback_.is_null())
*6777b538SAndroid Build Coastguard Worker      return;
*6777b538SAndroid Build Coastguard Worker    DoCallback(AttemptResult(ERR_DNS_TIMED_OUT, nullptr));
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  scoped_refptr<DnsSession> session_;
*6777b538SAndroid Build Coastguard Worker  std::string hostname_;
*6777b538SAndroid Build Coastguard Worker  uint16_t qtype_;
*6777b538SAndroid Build Coastguard Worker  raw_ptr<const OptRecordRdata, DanglingUntriaged> opt_rdata_;
*6777b538SAndroid Build Coastguard Worker  const bool secure_;
*6777b538SAndroid Build Coastguard Worker  const SecureDnsMode secure_dns_mode_;
*6777b538SAndroid Build Coastguard Worker  // Cleared in DoCallback.
*6777b538SAndroid Build Coastguard Worker  ResponseCallback callback_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // When true, transaction should time out immediately on expiration of the
*6777b538SAndroid Build Coastguard Worker  // last attempt fallback period rather than waiting the overall transaction
*6777b538SAndroid Build Coastguard Worker  // timeout period.
*6777b538SAndroid Build Coastguard Worker  const bool fast_timeout_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  NetLogWithSource net_log_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Search list of fully-qualified DNS names to query next (in DNS format).
*6777b538SAndroid Build Coastguard Worker  base::circular_deque<std::vector<uint8_t>> qnames_;
*6777b538SAndroid Build Coastguard Worker  size_t qnames_initial_size_ = 0;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // List of attempts for the current name.
*6777b538SAndroid Build Coastguard Worker  std::vector<std::unique_ptr<DnsAttempt>> attempts_;
*6777b538SAndroid Build Coastguard Worker  // Count of attempts, not reset when |attempts_| vector is cleared.
*6777b538SAndroid Build Coastguard Worker  int attempts_count_ = 0;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Records when an attempt was retried via TCP due to a truncation error.
*6777b538SAndroid Build Coastguard Worker  bool had_tcp_retry_ = false;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  // Iterator to get the index of the DNS server for each search query.
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<DnsServerIterator> dns_server_iterator_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  base::OneShotTimer timer_;
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<base::ElapsedTimer> time_from_start_;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  base::SafeRef<ResolveContext> resolve_context_;
*6777b538SAndroid Build Coastguard Worker  RequestPriority request_priority_ = DEFAULT_PRIORITY;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  THREAD_CHECKER(thread_checker_);
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  base::WeakPtrFactory<DnsTransactionImpl> weak_ptr_factory_{this};
*6777b538SAndroid Build Coastguard Worker};
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker// ----------------------------------------------------------------------------
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker// Implementation of DnsTransactionFactory that returns instances of
*6777b538SAndroid Build Coastguard Worker// DnsTransactionImpl.
*6777b538SAndroid Build Coastguard Workerclass DnsTransactionFactoryImpl : public DnsTransactionFactory {
*6777b538SAndroid Build Coastguard Worker public:
*6777b538SAndroid Build Coastguard Worker  explicit DnsTransactionFactoryImpl(DnsSession* session) {
*6777b538SAndroid Build Coastguard Worker    session_ = session;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<DnsTransaction> CreateTransaction(
*6777b538SAndroid Build Coastguard Worker      std::string hostname,
*6777b538SAndroid Build Coastguard Worker      uint16_t qtype,
*6777b538SAndroid Build Coastguard Worker      const NetLogWithSource& net_log,
*6777b538SAndroid Build Coastguard Worker      bool secure,
*6777b538SAndroid Build Coastguard Worker      SecureDnsMode secure_dns_mode,
*6777b538SAndroid Build Coastguard Worker      ResolveContext* resolve_context,
*6777b538SAndroid Build Coastguard Worker      bool fast_timeout) override {
*6777b538SAndroid Build Coastguard Worker    return std::make_unique<DnsTransactionImpl>(
*6777b538SAndroid Build Coastguard Worker        session_.get(), std::move(hostname), qtype, net_log, opt_rdata_.get(),
*6777b538SAndroid Build Coastguard Worker        secure, secure_dns_mode, resolve_context, fast_timeout);
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<DnsProbeRunner> CreateDohProbeRunner(
*6777b538SAndroid Build Coastguard Worker      ResolveContext* resolve_context) override {
*6777b538SAndroid Build Coastguard Worker    // Start a timer that will emit metrics after a timeout to indicate whether
*6777b538SAndroid Build Coastguard Worker    // DoH auto-upgrade was successful for this session.
*6777b538SAndroid Build Coastguard Worker    resolve_context->StartDohAutoupgradeSuccessTimer(session_.get());
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    return std::make_unique<DnsOverHttpsProbeRunner>(
*6777b538SAndroid Build Coastguard Worker        session_->GetWeakPtr(), resolve_context->GetWeakPtr());
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  void AddEDNSOption(std::unique_ptr<OptRecordRdata::Opt> opt) override {
*6777b538SAndroid Build Coastguard Worker    DCHECK(opt);
*6777b538SAndroid Build Coastguard Worker    if (opt_rdata_ == nullptr)
*6777b538SAndroid Build Coastguard Worker      opt_rdata_ = std::make_unique<OptRecordRdata>();
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker    opt_rdata_->AddOpt(std::move(opt));
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker  SecureDnsMode GetSecureDnsModeForTest() override {
*6777b538SAndroid Build Coastguard Worker    return session_->config().secure_dns_mode;
*6777b538SAndroid Build Coastguard Worker  }
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker private:
*6777b538SAndroid Build Coastguard Worker  scoped_refptr<DnsSession> session_;
*6777b538SAndroid Build Coastguard Worker  std::unique_ptr<OptRecordRdata> opt_rdata_;
*6777b538SAndroid Build Coastguard Worker};
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker}  // namespace
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard WorkerDnsTransactionFactory::DnsTransactionFactory() = default;
*6777b538SAndroid Build Coastguard WorkerDnsTransactionFactory::~DnsTransactionFactory() = default;
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker// static
*6777b538SAndroid Build Coastguard Workerstd::unique_ptr<DnsTransactionFactory> DnsTransactionFactory::CreateFactory(
*6777b538SAndroid Build Coastguard Worker    DnsSession* session) {
*6777b538SAndroid Build Coastguard Worker  return std::make_unique<DnsTransactionFactoryImpl>(session);
*6777b538SAndroid Build Coastguard Worker}
*6777b538SAndroid Build Coastguard Worker
*6777b538SAndroid Build Coastguard Worker}  // namespace net