| blob | c92320a073f2b3fcfe921a39374d8d12b72f9cd1 |
1 // Copyright 2013 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
7 #include <atlbase.h>
8 #include <atlcom.h>
10 #include <functional>
11 #include <iomanip>
12 #include <vector>
26 // The class BackgroundDownloader in this module is an adapter between
27 // the CrxDownloader interface and the BITS service interfaces.
28 // The interface exposed on the CrxDownloader code runs on the UI thread, while
29 // the BITS specific code runs in a single threaded apartment on the FILE
30 // thread.
31 // For every url to download, a BITS job is created, unless there is already
32 // an existing job for that url, in which case, the downloader connects to it.
33 // Once a job is associated with the url, the code looks for changes in the
34 // BITS job state. The checks are triggered by a timer.
35 // The BITS job contains just one file to download. There could only be one
36 // download in progress at a time. If Chrome closes down before the download is
37 // complete, the BITS job remains active and finishes in the background, without
38 // any intervention. The job can be completed next time the code runs, if the
39 // file is still needed, otherwise it will be cleaned up on a periodic basis.
40 //
41 // To list the BITS jobs for a user, use the |bitsadmin| tool. The command line
42 // to do that is: "bitsadmin /list /verbose". Another useful command is
43 // "bitsadmin /info" and provide the job id returned by the previous /list
44 // command.
45 //
46 // Ignoring the suspend/resume issues since this code is not using them, the
47 // job state machine implemented by BITS is something like this:
48 //
49 // Suspended--->Queued--->Connecting---->Transferring--->Transferred
50 // | ^ | | |
51 // | | V V | (complete)
52 // +----------|---------+-----------------+-----+ V
53 // | | | | Acknowledged
54 // | V V |
55 // | Transient Error------->Error |
56 // | | | |(cancel)
57 // | +-------+---------+--->-+
58 // | V |
59 // | (resume) | |
60 // +------<----------+ +---->Cancelled
61 //
62 // The job is created in the "suspended" state. Once |Resume| is called,
63 // BITS queues up the job, then tries to connect, begins transferring the
64 // job bytes, and moves the job to the "transferred state, after the job files
65 // have been transferred. When calling |Complete| for a job, the job files are
66 // made available to the caller, and the job is moved to the "acknowledged"
67 // state.
68 // At any point, the job can be cancelled, in which case, the job is moved
69 // to the "cancelled state" and the job object is removed from the BITS queue.
70 // Along the way, the job can encounter recoverable and non-recoverable errors.
71 // BITS moves the job to "transient error" or "error", depending on which kind
72 // of error has occured.
73 // If the job has reached the "transient error" state, BITS retries the
74 // job after a certain programmable delay. If the job can't be completed in a
75 // certain time interval, BITS stops retrying and errors the job out. This time
76 // interval is also programmable.
77 // If the job is in either of the error states, the job parameters can be
78 // adjusted to handle the error, after which the job can be resumed, and the
79 // whole cycle starts again.
80 // Jobs that are not touched in 90 days (or a value set by group policy) are
81 // automatically disposed off by BITS. This concludes the brief description of
82 // a job lifetime, according to BITS.
83 //
84 // In addition to how BITS is managing the life time of the job, there are a
85 // couple of special cases defined by the BackgroundDownloader.
86 // First, if the job encounters any of the 5xx HTTP responses, the job is
87 // not retried, in order to avoid DDOS-ing the servers.
88 // Second, there is a simple mechanism to detect stuck jobs, and allow the rest
89 // of the code to move on to trying other urls or trying other components.
90 // Last, after completing a job, irrespective of the outcome, the jobs older
91 // than a week are proactively cleaned up.
97 // All jobs created by this module have a specific description so they can
98 // be found at run-time or by using system administration tools.
101 // How often the code looks for changes in the BITS job state.
104 // How long BITS waits before retrying a job after the job encountered
105 // a transient error. If this value is not set, the BITS default is 10 minutes.
108 // How long to wait for stuck jobs. Stuck jobs could be queued for too long,
109 // have trouble connecting, could be suspended for any reason, or they have
110 // encountered some transient error.
113 // How long BITS waits before giving up on a job that could not be completed
114 // since the job has encountered its first transient error. If this value is
115 // not set, the BITS default is 14 days.
118 // How often the jobs which were started but not completed for any reason
119 // are cleaned up. Reasons for jobs to be left behind include browser restarts,
120 // system restarts, etc. Also, the check to purge stale jobs only happens
121 // at most once a day. If the job clean up code is not running, the BITS
122 // default policy is to cancel jobs after 90 days of inactivity.
126 // Returns the status code from a given BITS error.
128 // BITS errors are defined in bitsmsg.h. Although not documented, it is
129 // clear that all errors corresponding to http status code have the high
130 // word equal to 0x8019 and the low word equal to the http status code.
137 }
139 // Returns the files in a BITS job.
156 }
159 }
161 // Returns the file name, the url, and some per-file progress information.
162 // The function out parameters can be NULL if that data is not requested.
175 }
183 }
186 BG_FILE_PROGRESS bg_file_progress = {};
191 }
194 }
199 }
201 // Returns the job error code in |error_code| if the job is in the transient
202 // or the final error state. Otherwise, the job error is not available and
203 // the function fails.
219 }
221 // Finds the component updater jobs matching the given predicate.
222 // Returns S_OK if the function has found at least one job, returns S_FALSE if
223 // no job was found, and it returns an error otherwise.
238 // Iterate over jobs, run the predicate, and select the job only if
239 // the job description matches the component updater jobs.
248 }
249 }
252 }
254 // Compares the job creation time and returns true if the job creation time
255 // is older than |num_days|.
256 struct JobCreationOlderThanDays
259 };
272 }
274 // Compares the url of a file in a job and returns true if the remote name
275 // of any file in a job matches the argument.
276 struct JobFileUrlEqual
281 };
295 }
298 }
300 // Creates an instance of the BITS manager.
306 // TODO: add UMA pings.
308 }
311 }
322 }
323 }
325 // Cleans up incompleted jobs that are too old.
334 kPurgeStaleJobsIntervalBetweenChecksDays));
344 bits_manager,
352 }
355 }
369 }
372 }
379 FROM_HERE,
382 url));
383 }
385 // Called once when this class is asked to do a download. Creates or opens
386 // an existing bits job, hooks up the notifications, and starts the timer.
400 }
402 // A repeating timer retains the user task. This timer can be stopped and
403 // reset multiple times.
409 }
411 // Called any time the timer fires.
426 }
446 // Fall through.
448 // Fall through.
463 }
464 }
466 // Completes the BITS download, picks up the file path of the response, and
467 // notifies the CrxDownloader. The function should be called only once.
502 }
503 }
508 }
512 // Consider the url handled if it has been successfully downloaded or a
513 // 5xx has been received.
517 DownloadMetrics download_metrics;
525 // Clean up stale jobs before invoking the callback.
530 Result result;
535 FROM_HERE,
538 is_handled,
539 result,
540 download_metrics));
542 // Once the task is posted to the the UI thread, this object may be deleted
543 // by its owner. It is not safe to access members of this object on the
544 // FILE thread from this point on. The timer is stopped and all BITS
545 // interface pointers have been released.
546 }
548 // Called when the BITS job has been transferred successfully. Completes the
549 // BITS job by removing it from the BITS queue and making the download
550 // available to the caller.
556 }
558 // Called when the job has encountered an error and no further progress can
559 // be made. Cancels this job and removes it from the BITS queue.
567 }
569 // Called when the job has encountered a transient error, such as a
570 // network disconnect, a server error, or some other recoverable error.
572 // If the job appears to be stuck, handle the transient error as if
573 // it were a final error. This causes the job to be cancelled and a specific
574 // error be returned, if the error was available.
578 }
580 // Don't retry at all if the transient error was a 5xx.
587 }
588 }
593 }
596 // Resets the baseline for detecting a stuck job since the job is transferring
597 // data and it is making progress.
599 }
601 // Called when the download was cancelled. Since the observer should have
602 // been disconnected by now, this notification must not be seen.
605 }
607 // Called when the download was completed. Same as above.
610 }
612 // Creates or opens a job for the given url and queues it up. Tries to
613 // install a job observer but continues on if an observer can't be set up.
622 }
632 }
635 }
641 bits_manager_,
646 }
648 // Use kJobDescription as a temporary job display name until the proper
649 // display name is initialized later on.
653 BG_JOB_TYPE_DOWNLOAD,
661 }
700 }
706 }