gecko-dev/netwerk/dns/TRR.h

/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
/* vim: set sw=2 ts=8 et tw=80 : */
/* This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this
 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */

#ifndef mozilla_net_TRR_h
#define mozilla_net_TRR_h

#include "nsIChannel.h"
#include "nsIHttpPushListener.h"
#include "nsIInterfaceRequestor.h"
#include "nsIStreamListener.h"

namespace mozilla { namespace net {

// the values map to RFC1035 type identifiers
enum TrrType {
  TRRTYPE_A = 1,
  TRRTYPE_NS = 2,
  TRRTYPE_CNAME = 5,
  TRRTYPE_AAAA = 28,
};

class DOHaddr : public LinkedListElement<DOHaddr> {
public:
  NetAddr mNet;
  uint32_t mTtl;
};

class TRRService;
extern TRRService *gTRRService;

class DOHresp {
public:
  ~DOHresp() {
    DOHaddr *el;
    while ((el = mAddresses.popLast())) {
      delete el;
    }
  }
  nsresult Add(uint32_t TTL, unsigned char *dns, int index, uint16_t len,
               bool aLocalAllowed);
  LinkedList<DOHaddr> mAddresses;
};

class TRR
  : public Runnable
  , public nsITimerCallback
  , public nsIHttpPushListener
  , public nsIInterfaceRequestor
  , public nsIStreamListener
{
public:
  NS_DECL_ISUPPORTS_INHERITED
  NS_DECL_NSIHTTPPUSHLISTENER
  NS_DECL_NSIINTERFACEREQUESTOR
  NS_DECL_NSIREQUESTOBSERVER
  NS_DECL_NSISTREAMLISTENER
  NS_DECL_NSITIMERCALLBACK

  // Never accept larger DOH responses than this as that would indicate
  // something is wrong. Typical ones are much smaller.
  static const unsigned int kMaxSize = 3200;

  // Number of "steps" we follow CNAME chains
  static const unsigned int kCnameChaseMax = 64;

  // when firing off a normal A or AAAA query
  explicit TRR(AHostResolver *aResolver,
               nsHostRecord *aRec,
               enum TrrType aType)
    : mozilla::Runnable("TRR")
    , mRec(aRec)
    , mHostResolver(aResolver)
    , mTRRService(gTRRService)
    , mType(aType)
    , mBodySize(0)
    , mFailed(false)
    , mCnameLoop(kCnameChaseMax)
  {
    mHost = aRec->host;
    mPB = aRec->pb;
  }

  // when following CNAMEs
  explicit TRR(AHostResolver *aResolver,
               nsHostRecord *aRec,
               nsCString &aHost,
               enum TrrType & aType,
               unsigned int aLoopCount,
               bool aPB)
    : mozilla::Runnable("TRR")
    , mHost(aHost)
    , mRec(aRec)
    , mHostResolver(aResolver)
    , mTRRService(gTRRService)
    , mType(aType)
    , mBodySize(0)
    , mFailed(false)
    , mPB(aPB)
    , mCnameLoop(aLoopCount)
  {

  }

  // used on push
  explicit TRR(AHostResolver *aResolver, bool aPB)
    : mozilla::Runnable("TRR")
    , mHostResolver(aResolver)
    , mTRRService(gTRRService)
    , mBodySize(0)
    , mFailed(false)
    , mPB(aPB)
    , mCnameLoop(kCnameChaseMax)
  { }

  // to verify a domain
  explicit TRR(AHostResolver *aResolver,
               nsACString &aHost,
               enum TrrType aType,
               bool aPB)
    : mozilla::Runnable("TRR")
    , mHost(aHost)
    , mHostResolver(aResolver)
    , mTRRService(gTRRService)
    , mType(aType)
    , mBodySize(0)
    , mFailed(false)
    , mPB(aPB)
    , mCnameLoop(kCnameChaseMax)
  { }

  NS_IMETHOD Run() override;
  void Cancel();
  enum TrrType Type() { return mType; }
  nsCString mHost;
  RefPtr<nsHostRecord> mRec;
  RefPtr<AHostResolver> mHostResolver;
  TRRService *mTRRService;

private:
  ~TRR() = default;
  nsresult SendHTTPRequest();
  nsresult DohEncode(nsCString &target);
  nsresult DohDecode();
  nsresult ReturnData();
  nsresult FailData();
  nsresult DohDecodeQuery(const nsCString &query,
                          nsCString &host, enum TrrType &type);
  nsresult ReceivePush(nsIHttpChannel *pushed, nsHostRecord *pushedRec);
  nsresult On200Response();

  nsCOMPtr<nsIChannel> mChannel;
  enum TrrType mType;
  TimeStamp mStartTime;
  unsigned char mResponse[kMaxSize];
  unsigned int mBodySize;
  bool mFailed;
  bool mPB;
  DOHresp mDNS;
  nsCOMPtr<nsITimer> mTimeout;
  nsCString mCname;
  uint32_t mCnameLoop; // loop detection counter
};

} // namespace net
} // namespace mozilla

#endif // include guard
bug 1434852 - introducing TRR (DOH); r=mcmanus,valentin Provides an optional resolver mechanism for Firefox that allows running together with or instead of the native resolver. TRR offers resolving of host names using a dedicated DNS-over-HTTPS server (HTTPS is required, HTTP/2 is preferable). DNS-over-HTTPS (DOH) allows DNS resolves with enhanced privacy, secure transfers and improved performance. To keep the failure rate at a minimum, the TRR system manages a dynamic persistent blacklist for host names that can't be resolved with DOH but works with the native resolver. Blacklisted entries will not be retried over DOH for a couple of days. "localhost" and names in the ".local" TLD will not be resolved via DOH. TRR is preffed OFF by default and you need to set a URI for an available DOH server to be able to use it. Since the URI for DOH is set with a name itself, it may have to use the native resolver for bootstrapping. (Optionally, the user can set the IP address of the DOH server in a pref to avoid the required initial native resolve.) When TRR starts up, it will first verify that it works by checking a "confirmation" domain name. This confirmation domain is a pref by default set to "example.com". TRR will also by default await the captive-portal detection to raise its green flag before getting activated. All prefs for TRR are under the "network.trr" hierarchy. The DNS-over-HTTPS spec: https://tools.ietf.org/html/draft-ietf-doh-dns-over-https-03 MozReview-Commit-ID: GuuU6vjTjlm --HG-- extra : rebase_source : 53fcca757334090ac05fec540ef29d109d5ceed3 2018-02-01 12:20:49 +03:00			`/* -- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -- */`
			`/* vim: set sw=2 ts=8 et tw=80 : */`
			`/* This Source Code Form is subject to the terms of the Mozilla Public`
			`* License, v. 2.0. If a copy of the MPL was not distributed with this`
			`* file, You can obtain one at http://mozilla.org/MPL/2.0/. */`

			`#ifndef mozilla_net_TRR_h`
			`#define mozilla_net_TRR_h`

			`#include "nsIChannel.h"`
			`#include "nsIHttpPushListener.h"`
			`#include "nsIInterfaceRequestor.h"`
			`#include "nsIStreamListener.h"`

			`namespace mozilla { namespace net {`

			`// the values map to RFC1035 type identifiers`
			`enum TrrType {`
			`TRRTYPE_A = 1,`
			`TRRTYPE_NS = 2,`
			`TRRTYPE_CNAME = 5,`
			`TRRTYPE_AAAA = 28,`
			`};`

			`class DOHaddr : public LinkedListElement<DOHaddr> {`
			`public:`
			`NetAddr mNet;`
			`uint32_t mTtl;`
			`};`

			`class TRRService;`
			`extern TRRService *gTRRService;`

			`class DOHresp {`
			`public:`
			`~DOHresp() {`
			`DOHaddr *el;`
			`while ((el = mAddresses.popLast())) {`
			`delete el;`
			`}`
			`}`
			`nsresult Add(uint32_t TTL, unsigned char *dns, int index, uint16_t len,`
			`bool aLocalAllowed);`
			`LinkedList<DOHaddr> mAddresses;`
			`};`

			`class TRR`
			`: public Runnable`
			`, public nsITimerCallback`
			`, public nsIHttpPushListener`
			`, public nsIInterfaceRequestor`
			`, public nsIStreamListener`
			`{`
			`public:`
			`NS_DECL_ISUPPORTS_INHERITED`
			`NS_DECL_NSIHTTPPUSHLISTENER`
			`NS_DECL_NSIINTERFACEREQUESTOR`
			`NS_DECL_NSIREQUESTOBSERVER`
			`NS_DECL_NSISTREAMLISTENER`
			`NS_DECL_NSITIMERCALLBACK`

			`// Never accept larger DOH responses than this as that would indicate`
			`// something is wrong. Typical ones are much smaller.`
			`static const unsigned int kMaxSize = 3200;`

			`// Number of "steps" we follow CNAME chains`
			`static const unsigned int kCnameChaseMax = 64;`

			`// when firing off a normal A or AAAA query`
			`explicit TRR(AHostResolver *aResolver,`
			`nsHostRecord *aRec,`
			`enum TrrType aType)`
			`: mozilla::Runnable("TRR")`
			`, mRec(aRec)`
			`, mHostResolver(aResolver)`
			`, mTRRService(gTRRService)`
			`, mType(aType)`
			`, mBodySize(0)`
			`, mFailed(false)`
			`, mCnameLoop(kCnameChaseMax)`
			`{`
			`mHost = aRec->host;`
			`mPB = aRec->pb;`
			`}`

			`// when following CNAMEs`
			`explicit TRR(AHostResolver *aResolver,`
			`nsHostRecord *aRec,`
			`nsCString &aHost,`
			`enum TrrType & aType,`
			`unsigned int aLoopCount,`
			`bool aPB)`
			`: mozilla::Runnable("TRR")`
			`, mHost(aHost)`
			`, mRec(aRec)`
			`, mHostResolver(aResolver)`
			`, mTRRService(gTRRService)`
			`, mType(aType)`
			`, mBodySize(0)`
			`, mFailed(false)`
			`, mPB(aPB)`
			`, mCnameLoop(aLoopCount)`
			`{`

			`}`

			`// used on push`
			`explicit TRR(AHostResolver *aResolver, bool aPB)`
			`: mozilla::Runnable("TRR")`
			`, mHostResolver(aResolver)`
			`, mTRRService(gTRRService)`
			`, mBodySize(0)`
			`, mFailed(false)`
			`, mPB(aPB)`
			`, mCnameLoop(kCnameChaseMax)`
			`{ }`

			`// to verify a domain`
			`explicit TRR(AHostResolver *aResolver,`
			`nsACString &aHost,`
			`enum TrrType aType,`
			`bool aPB)`
			`: mozilla::Runnable("TRR")`
			`, mHost(aHost)`
			`, mHostResolver(aResolver)`
			`, mTRRService(gTRRService)`
			`, mType(aType)`
			`, mBodySize(0)`
			`, mFailed(false)`
			`, mPB(aPB)`
			`, mCnameLoop(kCnameChaseMax)`
			`{ }`

			`NS_IMETHOD Run() override;`
			`void Cancel();`
			`enum TrrType Type() { return mType; }`
			`nsCString mHost;`
			`RefPtr<nsHostRecord> mRec;`
			`RefPtr<AHostResolver> mHostResolver;`
			`TRRService *mTRRService;`

			`private:`
bug 1438947 - avoid unnecessary timer cancels + clears r=valentin To avoid race risk. MozReview-Commit-ID: 2h8xkmgjPP7 --HG-- extra : rebase_source : 31e0fef119862343467049347b012cc6e3056f2c 2018-02-17 02:35:14 +03:00			`~TRR() = default;`
bug 1434852 - introducing TRR (DOH); r=mcmanus,valentin Provides an optional resolver mechanism for Firefox that allows running together with or instead of the native resolver. TRR offers resolving of host names using a dedicated DNS-over-HTTPS server (HTTPS is required, HTTP/2 is preferable). DNS-over-HTTPS (DOH) allows DNS resolves with enhanced privacy, secure transfers and improved performance. To keep the failure rate at a minimum, the TRR system manages a dynamic persistent blacklist for host names that can't be resolved with DOH but works with the native resolver. Blacklisted entries will not be retried over DOH for a couple of days. "localhost" and names in the ".local" TLD will not be resolved via DOH. TRR is preffed OFF by default and you need to set a URI for an available DOH server to be able to use it. Since the URI for DOH is set with a name itself, it may have to use the native resolver for bootstrapping. (Optionally, the user can set the IP address of the DOH server in a pref to avoid the required initial native resolve.) When TRR starts up, it will first verify that it works by checking a "confirmation" domain name. This confirmation domain is a pref by default set to "example.com". TRR will also by default await the captive-portal detection to raise its green flag before getting activated. All prefs for TRR are under the "network.trr" hierarchy. The DNS-over-HTTPS spec: https://tools.ietf.org/html/draft-ietf-doh-dns-over-https-03 MozReview-Commit-ID: GuuU6vjTjlm --HG-- extra : rebase_source : 53fcca757334090ac05fec540ef29d109d5ceed3 2018-02-01 12:20:49 +03:00			`nsresult SendHTTPRequest();`
			`nsresult DohEncode(nsCString &target);`
			`nsresult DohDecode();`
			`nsresult ReturnData();`
			`nsresult FailData();`
			`nsresult DohDecodeQuery(const nsCString &query,`
			`nsCString &host, enum TrrType &type);`
			`nsresult ReceivePush(nsIHttpChannel pushed, nsHostRecord pushedRec);`
			`nsresult On200Response();`

			`nsCOMPtr<nsIChannel> mChannel;`
			`enum TrrType mType;`
			`TimeStamp mStartTime;`
			`unsigned char mResponse[kMaxSize];`
			`unsigned int mBodySize;`
			`bool mFailed;`
			`bool mPB;`
			`DOHresp mDNS;`
			`nsCOMPtr<nsITimer> mTimeout;`
			`nsCString mCname;`
			`uint32_t mCnameLoop; // loop detection counter`
			`};`

			`} // namespace net`
			`} // namespace mozilla`

			`#endif // include guard`