Fail UDP DNS query upon malformed response.

Instead of continuing to wait for UDP data, fail the DNS query in DnsUDPAttempt. The motivation is to call the callback at most once, to conform to //net convention. See https://docs.google.com/document/d/1CNq4plxEbprzXwkeIrEtwM4b-Na2ZOqw8UHPRK3t-1w for analysis of data (restricted view). Net.DNS.ResultAfterMalformedResponse histogram is removed in follow-up CL https://crrev.com/c/1149112. Bug: 779589 Change-Id: I0ef3c460e40cefe8160334cad17f9ef9abec3b39 Reviewed-on: https://chromium-review.googlesource.com/1146878 Commit-Queue: Bence Béky <bnc@chromium.org> Reviewed-by: Matt Menke <mmenke@chromium.org> Cr-Commit-Position: refs/heads/master@{#577761}

Fail UDP DNS query upon malformed response.
Instead of continuing to wait for UDP data, fail the DNS query in DnsUDPAttempt. The motivation is to call the callback at most once, to conform to //net convention. See https://docs.google.com/document/d/1CNq4plxEbprzXwkeIrEtwM4b-Na2ZOqw8UHPRK3t-1w for analysis of data (restricted view). Net.DNS.ResultAfterMalformedResponse histogram is removed in follow-up CL https://crrev.com/c/1149112. Bug: 779589 Change-Id: I0ef3c460e40cefe8160334cad17f9ef9abec3b39 Reviewed-on: https://chromium-review.googlesource.com/1146878 Commit-Queue: Bence Béky <bnc@chromium.org> Reviewed-by: Matt Menke <mmenke@chromium.org> Cr-Commit-Position: refs/heads/master@{#577761}
a640f0f1 · Bence Béky · Commit Bot · b3232669 · a640f0f1 · a640f0f1
Commit a640f0f1 authored Jul 25, 2018 by Bence Béky Committed by Commit Bot Jul 25, 2018
Hide whitespace changes
Inline Side-by-side

Showing with 32 additions and 71 deletions

net/dns/dns_transaction.cc net/dns/dns_transaction.cc +7 -52

net/dns/dns_transaction_unittest.cc net/dns/dns_transaction_unittest.cc +25 -19

No files found.
--- a/net/dns/dns_transaction.cc
+++ b/net/dns/dns_transaction.cc
@@ -112,26 +112,6 @@ std::unique_ptr<base::Value> NetLogStartCallback(
  return std::move(dict);
 }

-// Values are used in UMA histograms. Do not change existing values.
-enum MalformedResponseResult {
-  MALFORMED_OK = 0,
-  MALFORMED_MALFORMED = 1,
-  MALFORMED_FAILED = 2,
-  MALFORMED_MAX
-};
-
-void RecordMalformedResponseHistogram(int net_error) {
-  MalformedResponseResult error_type;
-  if (net_error == OK)
-    error_type = MALFORMED_OK;
-  else if (net_error == ERR_DNS_MALFORMED_RESPONSE)
-    error_type = MALFORMED_MALFORMED;
-  else
-    error_type = MALFORMED_FAILED;
-  UMA_HISTOGRAM_ENUMERATION("Net.DNS.ResultAfterMalformedResponse", error_type,
-                            MALFORMED_MAX);
-}
-
 // ----------------------------------------------------------------------------

 // A single asynchronous DNS exchange, which consists of sending out a
@@ -199,16 +179,11 @@ class DnsUDPAttempt : public DnsAttempt {
                std::unique_ptr<DnsQuery> query)
      : DnsAttempt(server_index),
        next_state_(STATE_NONE),
-        received_malformed_response_(false),
        socket_lease_(std::move(socket_lease)),
        query_(std::move(query)) {}

  // DnsAttempt methods.

-  // TODO(https://crbug.com/779589):  This method violates the usual convention
-  // that |callback| is only called once.  In particular, this method might
-  // return ERR_IO_PENDING, then |callback| might be called with
-  // ERR_DNS_MALFORMED_RESPONSE, then again with some other error code.
  int Start(const CompletionCallback& callback) override {
    DCHECK_EQ(STATE_NONE, next_state_);
    callback_ = callback;
@@ -265,20 +240,15 @@ class DnsUDPAttempt : public DnsAttempt {
    } while (rv != ERR_IO_PENDING && next_state_ != STATE_NONE);

    set_result(rv);
-    if (received_malformed_response_) {
-      // If we received a malformed response, and are now waiting for another
-      // one, indicate to the transaction that the server might be misbehaving.
-      if (rv == ERR_IO_PENDING)
-        return ERR_DNS_MALFORMED_RESPONSE;
-
-      // This is a new response after the original malformed one.
-      RecordMalformedResponseHistogram(rv);
-    }
+
+    if (rv == ERR_IO_PENDING)
+      return rv;
+
    if (rv == OK) {
      DCHECK_EQ(STATE_NONE, next_state_);
      UMA_HISTOGRAM_LONG_TIMES_100("AsyncDNS.UDPAttemptSuccess",
                                   base::TimeTicks::Now() - start_time_);
-    } else if (rv != ERR_IO_PENDING) {
+    } else {
      UMA_HISTOGRAM_LONG_TIMES_100("AsyncDNS.UDPAttemptFail",
                                   base::TimeTicks::Now() - start_time_);
    }
@@ -320,17 +290,8 @@ class DnsUDPAttempt : public DnsAttempt {
      return rv;

    DCHECK(rv);
-    if (!response_->InitParse(rv, *query_)) {
-      // Other implementations simply ignore mismatched responses. Since each
-      // DnsUDPAttempt binds to a different port, we might find that responses
-      // to previously timed out queries lead to failures in the future.
-      // Our solution is to make another attempt, in case the query truly
-      // failed, but keep this attempt alive, in case it was a false alarm.
-      received_malformed_response_ = true;
-      RecordMalformedResponseHistogram(ERR_DNS_MALFORMED_RESPONSE);
-      next_state_ = STATE_READ_RESPONSE;
-      return OK;
-    }
+    if (!response_->InitParse(rv, *query_))
+      return ERR_DNS_MALFORMED_RESPONSE;
    if (response_->flags() & dns_protocol::kFlagTC)
      return ERR_DNS_SERVER_REQUIRES_TCP;
    if (response_->rcode() == dns_protocol::kRcodeNXDOMAIN)
@@ -348,7 +309,6 @@ class DnsUDPAttempt : public DnsAttempt {
  }

  State next_state_;
-  bool received_malformed_response_;
  base::TimeTicks start_time_;

  std::unique_ptr<DnsSession::SocketLease> socket_lease_;
@@ -1280,11 +1240,6 @@ class DnsTransactionImpl : public DnsTransaction,
          }
          if (MoreAttemptsAllowed()) {
            result = MakeAttempt();
-          } else if (result.rv == ERR_DNS_MALFORMED_RESPONSE &&
-                     !had_tcp_attempt_ && !doh_attempt_) {
-            // For UDP only, ignore the response and wait until the last
-            // attempt times out.
-            return AttemptResult(ERR_IO_PENDING, NULL);
          } else {
            return AttemptResult(result.rv, NULL);
          }

--- a/net/dns/dns_transaction_unittest.cc
+++ b/net/dns/dns_transaction_unittest.cc
@@ -935,15 +935,20 @@ TEST_F(DnsTransactionTest, MismatchedResponseSync) {
  config_.attempts = 2;
  ConfigureFactory();

-  // Attempt receives mismatched response followed by valid response.
+  // First attempt receives mismatched response synchronously.
  std::unique_ptr<DnsSocketData> data(new DnsSocketData(
      0 /* id */, kT0HostName, kT0Qtype, SYNCHRONOUS, Transport::UDP));
  data->AddResponseData(kT1ResponseDatagram, arraysize(kT1ResponseDatagram),
                        SYNCHRONOUS);
-  data->AddResponseData(kT0ResponseDatagram, arraysize(kT0ResponseDatagram),
-                        SYNCHRONOUS);
  AddSocketData(std::move(data));

+  // Second attempt receives valid response synchronously.
+  std::unique_ptr<DnsSocketData> data1(new DnsSocketData(
+      0 /* id */, kT0HostName, kT0Qtype, SYNCHRONOUS, Transport::UDP));
+  data1->AddResponseData(kT0ResponseDatagram, arraysize(kT0ResponseDatagram),
+                         ASYNC);
+  AddSocketData(std::move(data1));
+
  TransactionHelper helper0(kT0HostName, kT0Qtype, kT0RecordCount);
  EXPECT_TRUE(helper0.Run(transaction_factory_.get()));
 }
@@ -952,33 +957,34 @@ TEST_F(DnsTransactionTest, MismatchedResponseAsync) {
  config_.attempts = 2;
  ConfigureFactory();

-  // First attempt receives mismatched response followed by valid response.
-  // Second attempt times out.
-  std::unique_ptr<DnsSocketData> data(new DnsSocketData(
+  // First attempt receives mismatched response asynchronously.
+  std::unique_ptr<DnsSocketData> data0(new DnsSocketData(
      0 /* id */, kT0HostName, kT0Qtype, ASYNC, Transport::UDP));
-  data->AddResponseData(kT1ResponseDatagram, arraysize(kT1ResponseDatagram),
-                        ASYNC);
-  data->AddResponseData(kT0ResponseDatagram, arraysize(kT0ResponseDatagram),
-                        ASYNC);
-  AddSocketData(std::move(data));
-  AddQueryAndTimeout(kT0HostName, kT0Qtype);
+  data0->AddResponseData(kT1ResponseDatagram, arraysize(kT1ResponseDatagram),
+                         ASYNC);
+  AddSocketData(std::move(data0));
+
+  // Second attempt receives valid response asynchronously.
+  std::unique_ptr<DnsSocketData> data1(new DnsSocketData(
+      0 /* id */, kT0HostName, kT0Qtype, ASYNC, Transport::UDP));
+  data1->AddResponseData(kT0ResponseDatagram, arraysize(kT0ResponseDatagram),
+                         ASYNC);
+  AddSocketData(std::move(data1));

  TransactionHelper helper0(kT0HostName, kT0Qtype, kT0RecordCount);
  EXPECT_TRUE(helper0.Run(transaction_factory_.get()));
 }

-TEST_F(DnsTransactionTestWithMockTime, MismatchedResponseFail) {
+TEST_F(DnsTransactionTest, MismatchedResponseFail) {
  ConfigureFactory();

-  // Attempt receives mismatched response but times out because only one attempt
-  // is allowed.
+  // Attempt receives mismatched response and fails because only one attempt is
+  // allowed.
  AddAsyncQueryAndResponse(1 /* id */, kT0HostName, kT0Qtype,
                           kT0ResponseDatagram, arraysize(kT0ResponseDatagram));

-  TransactionHelper helper0(kT0HostName, kT0Qtype, ERR_DNS_TIMED_OUT);
-  EXPECT_FALSE(helper0.Run(transaction_factory_.get()));
-  FastForwardBy(session_->NextTimeout(0, 0));
-  EXPECT_TRUE(helper0.has_completed());
+  TransactionHelper helper0(kT0HostName, kT0Qtype, ERR_DNS_MALFORMED_RESPONSE);
+  EXPECT_TRUE(helper0.Run(transaction_factory_.get()));
 }

 TEST_F(DnsTransactionTest, MismatchedResponseNxdomain) {