Google Git
Sign in
chromium / chromium / src / refs/tags/89.0.4389.126 / . / services / network / url_loader_factory.cc
blob: adf7d7e9df186f032cb85d2aeba301c551442c78 [file] [log] [blame]
// Copyright 2017 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "services/network/url_loader_factory.h"
#include <memory>
#include <string>
#include <utility>
#include "base/bind.h"
#include "base/check_op.h"
#include "base/metrics/histogram_macros.h"
#include "base/notreached.h"
#include "base/optional.h"
#include "mojo/public/cpp/bindings/message.h"
#include "net/cookies/cookie_constants.h"
#include "net/url_request/url_request_context.h"
#include "services/network/cookie_manager.h"
#include "services/network/cookie_settings.h"
#include "services/network/cors/cors_url_loader_factory.h"
#include "services/network/network_context.h"
#include "services/network/network_service.h"
#include "services/network/network_usage_accumulator.h"
#include "services/network/public/cpp/is_potentially_trustworthy.h"
#include "services/network/public/cpp/resource_request.h"
#include "services/network/public/mojom/network_context.mojom.h"
#include "services/network/resource_scheduler/resource_scheduler_client.h"
#include "services/network/trust_tokens/local_trust_token_operation_delegate_impl.h"
#include "services/network/trust_tokens/trust_token_request_helper_factory.h"
#include "services/network/url_loader.h"
#include "services/network/web_bundle_url_loader_factory.h"
#include "url/gurl.h"
#include "url/origin.h"
namespace network {
namespace {
// An enum class representing whether / how keepalive requests are blocked. This
// is used for UMA so do NOT re-assign values.
enum class KeepaliveBlockStatus {
// The request is not blocked.
kNotBlocked = 0,
// The request is blocked due to NetworkContext::CanCreateLoader.
kBlockedDueToCanCreateLoader = 1,
// The request is blocked due to the number of requests per process.
kBlockedDueToNumberOfRequestsPerProcess = 2,
// The request is blocked due to the number of requests per top-level frame.
kBlockedDueToNumberOfRequestsPerTopLevelFrame = 3,
// The request is blocked due to the number of requests in the system.
kBlockedDueToNumberOfRequests = 4,
// The request is blocked due to the total size of URL and request headers.
kBlockedDueToTotalSizeOfUrlAndHeaders = 5,
// The request is NOT blocked but the total size of URL and request headers
// exceeds 384kb.
kNotBlockedButUrlAndHeadersExceeds384kb = 6,
// The request is NOT blocked but the total size of URL and request headers
// exceeds 256kb.
kNotBlockedButUrlAndHeadersExceeds256kb = 7,
kMaxValue = kNotBlockedButUrlAndHeadersExceeds256kb,
};
} // namespace
constexpr int URLLoaderFactory::kMaxKeepaliveConnections;
constexpr int URLLoaderFactory::kMaxKeepaliveConnectionsPerTopLevelFrame;
constexpr int URLLoaderFactory::kMaxTotalKeepaliveRequestSize;
URLLoaderFactory::URLLoaderFactory(
NetworkContext* context,
mojom::URLLoaderFactoryParamsPtr params,
scoped_refptr<ResourceSchedulerClient> resource_scheduler_client,
cors::CorsURLLoaderFactory* cors_url_loader_factory)
: context_(context),
params_(std::move(params)),
resource_scheduler_client_(std::move(resource_scheduler_client)),
header_client_(std::move(params_->header_client)),
coep_reporter_(std::move(params_->coep_reporter)),
cors_url_loader_factory_(cors_url_loader_factory),
cookie_observer_(std::move(params_->cookie_observer)) {
DCHECK(context);
DCHECK_NE(mojom::kInvalidProcessId, params_->process_id);
DCHECK(!params_->factory_override);
// Only non-navigation IsolationInfos should be bound to URLLoaderFactories.
DCHECK_EQ(net::IsolationInfo::RequestType::kOther,
params_->isolation_info.request_type());
DCHECK(!params_->automatically_assign_isolation_info ||
params_->isolation_info.IsEmpty());
if (!params_->top_frame_id) {
params_->top_frame_id = base::UnguessableToken::Create();
}
if (context_->network_service()) {
context_->network_service()->keepalive_statistics_recorder()->Register(
*params_->top_frame_id);
}
}
URLLoaderFactory::~URLLoaderFactory() {
if (context_->network_service()) {
context_->network_service()->keepalive_statistics_recorder()->Unregister(
*params_->top_frame_id);
}
}
void URLLoaderFactory::CreateLoaderAndStart(
mojo::PendingReceiver<mojom::URLLoader> receiver,
int32_t routing_id,
int32_t request_id,
uint32_t options,
const ResourceRequest& url_request,
mojo::PendingRemote<mojom::URLLoaderClient> client,
const net::MutableNetworkTrafficAnnotationTag& traffic_annotation) {
// Requests with |trusted_params| when params_->is_trusted is not set should
// have been rejected at the CorsURLLoader layer.
DCHECK(!url_request.trusted_params || params_->is_trusted);
std::string origin_string;
bool has_origin = url_request.headers.GetHeader("Origin", &origin_string) &&
origin_string != "null";
base::Optional<url::Origin> request_initiator = url_request.request_initiator;
if (has_origin && request_initiator.has_value()) {
url::Origin origin = url::Origin::Create(GURL(origin_string));
bool origin_head_same_as_request_origin =
request_initiator.value().IsSameOriginWith(origin);
UMA_HISTOGRAM_BOOLEAN(
"NetworkService.URLLoaderFactory.OriginHeaderSameAsRequestOrigin",
origin_head_same_as_request_origin);
}
if (url_request.web_bundle_token_params.has_value() &&
url_request.destination !=
network::mojom::RequestDestination::kWebBundle) {
// Load a subresource from a WebBundle.
base::WeakPtr<WebBundleURLLoaderFactory> web_bundle_url_loader_factory =
context_->GetWebBundleManager().GetWebBundleURLLoaderFactory(
url_request.web_bundle_token_params->token);
if (web_bundle_url_loader_factory) {
web_bundle_url_loader_factory->CreateLoaderAndStart(
std::move(receiver), routing_id, request_id, options, url_request,
std::move(client), traffic_annotation);
return;
}
// Fails if the token is missing in the WebBundleManager. This can happen
// when the network process crashes. In normal cases, our assumption is this
// shouldn't happen as long as requests from a renderer are ordered.
//
// TODO(crbug.com/1082020): Re-visit this case to be more robust.
URLLoaderCompletionStatus status;
status.error_code = net::ERR_INVALID_WEB_BUNDLE; // Tentative.
status.completion_time = base::TimeTicks::Now();
mojo::Remote<mojom::URLLoaderClient>(std::move(client))->OnComplete(status);
return;
}
mojom::NetworkServiceClient* network_service_client = nullptr;
base::WeakPtr<KeepaliveStatisticsRecorder> keepalive_statistics_recorder;
base::WeakPtr<NetworkUsageAccumulator> network_usage_accumulator;
base::Optional<DataPipeUseTracker> data_pipe_use_tracker;
if (context_->network_service()) {
network_service_client = context_->network_service()->client();
keepalive_statistics_recorder = context_->network_service()
->keepalive_statistics_recorder()
->AsWeakPtr();
network_usage_accumulator =
context_->network_service()->network_usage_accumulator()->AsWeakPtr();
data_pipe_use_tracker.emplace(context_->network_service(),
DataPipeUser::kUrlLoader);
}
bool exhausted = false;
if (!context_->CanCreateLoader(params_->process_id)) {
exhausted = true;
}
int keepalive_request_size = 0;
if (url_request.keepalive && keepalive_statistics_recorder) {
const size_t url_size = url_request.url.spec().size();
size_t headers_size = 0;
net::HttpRequestHeaders merged_headers = url_request.headers;
merged_headers.MergeFrom(url_request.cors_exempt_headers);
for (const auto& pair : merged_headers.GetHeaderVector()) {
headers_size += (pair.key.size() + pair.value.size());
}
UMA_HISTOGRAM_COUNTS_10000("Net.KeepaliveRequest.UrlSize", url_size);
UMA_HISTOGRAM_COUNTS_10000("Net.KeepaliveRequest.HeadersSize",
headers_size);
UMA_HISTOGRAM_COUNTS_10000("Net.KeepaliveRequest.UrlPlusHeadersSize",
url_size + headers_size);
keepalive_request_size = url_size + headers_size;
KeepaliveBlockStatus block_status = KeepaliveBlockStatus::kNotBlocked;
const auto& top_frame_id = *params_->top_frame_id;
const auto& recorder = *keepalive_statistics_recorder;
if (!context_->CanCreateLoader(params_->process_id)) {
// We already checked this, but we have this here for histogram.
DCHECK(exhausted);
block_status = KeepaliveBlockStatus::kBlockedDueToCanCreateLoader;
} else if (recorder.num_inflight_requests() >= kMaxKeepaliveConnections) {
exhausted = true;
block_status = KeepaliveBlockStatus::kBlockedDueToNumberOfRequests;
} else if (recorder.NumInflightRequestsPerTopLevelFrame(top_frame_id) >=
kMaxKeepaliveConnectionsPerTopLevelFrame) {
exhausted = true;
block_status =
KeepaliveBlockStatus::kBlockedDueToNumberOfRequestsPerTopLevelFrame;
} else if (recorder.GetTotalRequestSizePerTopLevelFrame(top_frame_id) +
keepalive_request_size >
kMaxTotalKeepaliveRequestSize) {
exhausted = true;
block_status =
KeepaliveBlockStatus::kBlockedDueToTotalSizeOfUrlAndHeaders;
} else if (recorder.GetTotalRequestSizePerTopLevelFrame(top_frame_id) +
keepalive_request_size >
384 * 1024) {
block_status =
KeepaliveBlockStatus::kNotBlockedButUrlAndHeadersExceeds384kb;
} else if (recorder.GetTotalRequestSizePerTopLevelFrame(top_frame_id) +
keepalive_request_size >
256 * 1024) {
block_status =
KeepaliveBlockStatus::kNotBlockedButUrlAndHeadersExceeds256kb;
} else {
block_status = KeepaliveBlockStatus::kNotBlocked;
}
UMA_HISTOGRAM_ENUMERATION("Net.KeepaliveRequest.BlockStatus", block_status);
}
if (exhausted) {
URLLoaderCompletionStatus status;
status.error_code = net::ERR_INSUFFICIENT_RESOURCES;
status.exists_in_cache = false;
status.completion_time = base::TimeTicks::Now();
mojo::Remote<mojom::URLLoaderClient>(std::move(client))->OnComplete(status);
return;
}
std::unique_ptr<TrustTokenRequestHelperFactory> trust_token_factory;
if (url_request.trust_token_params) {
trust_token_factory = std::make_unique<TrustTokenRequestHelperFactory>(
context_->trust_token_store(),
context_->network_service()->trust_token_key_commitments(),
// It's safe to use Unretained because |context_| is guaranteed to
// outlive the URLLoader that will own this
// TrustTokenRequestHelperFactory.
base::BindRepeating(&NetworkContext::client,
base::Unretained(context_)),
// It's safe to use Unretained here because
// NetworkContext::CookieManager outlives the URLLoaders associated with
// the NetworkContext.
base::BindRepeating(
[](const CookieManager* manager) {
return !manager->cookie_settings()
.are_third_party_cookies_blocked();
},
base::Unretained(context_->cookie_manager())));
}
mojo::PendingRemote<mojom::CookieAccessObserver> cookie_observer;
if (url_request.trusted_params &&
url_request.trusted_params->cookie_observer) {
cookie_observer =
std::move(const_cast<mojo::PendingRemote<mojom::CookieAccessObserver>&>(
url_request.trusted_params->cookie_observer));
} else if (cookie_observer_) {
cookie_observer_->Clone(cookie_observer.InitWithNewPipeAndPassReceiver());
}
if (url_request.destination ==
network::mojom::RequestDestination::kWebBundle) {
DCHECK(url_request.web_bundle_token_params.has_value());
base::WeakPtr<WebBundleURLLoaderFactory> web_bundle_url_loader_factory =
context_->GetWebBundleManager().CreateWebBundleURLLoaderFactory(
url_request.url, *url_request.web_bundle_token_params, params_);
client =
web_bundle_url_loader_factory->WrapURLLoaderClient(std::move(client));
}
auto loader = std::make_unique<URLLoader>(
context_->url_request_context(), network_service_client,
context_->client(),
base::BindOnce(&cors::CorsURLLoaderFactory::DestroyURLLoader,
base::Unretained(cors_url_loader_factory_)),
std::move(receiver), options, url_request, std::move(client),
std::move(data_pipe_use_tracker),
static_cast<net::NetworkTrafficAnnotationTag>(traffic_annotation),
params_.get(), coep_reporter_ ? coep_reporter_.get() : nullptr,
request_id, keepalive_request_size,
context_->require_network_isolation_key(), resource_scheduler_client_,
std::move(keepalive_statistics_recorder),
std::move(network_usage_accumulator),
header_client_.is_bound() ? header_client_.get() : nullptr,
context_->origin_policy_manager(), std::move(trust_token_factory),
context_->cors_origin_access_list(), std::move(cookie_observer));
cors_url_loader_factory_->OnLoaderCreated(std::move(loader));
}
void URLLoaderFactory::Clone(
mojo::PendingReceiver<mojom::URLLoaderFactory> receiver) {
NOTREACHED();
}
} // namespace network