1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
|
// Copyright (c) 2006-2008 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/extensions/extensions_service.h"
#include "base/file_util.h"
#include "base/scoped_handle.h"
#include "base/scoped_temp_dir.h"
#include "base/string_util.h"
#include "base/third_party/nss/blapi.h"
#include "base/third_party/nss/sha256.h"
#include "base/thread.h"
#include "base/values.h"
#include "net/base/file_stream.h"
#include "chrome/browser/browser_process.h"
#include "chrome/browser/extensions/user_script_master.h"
#include "chrome/common/json_value_serializer.h"
#include "chrome/common/notification_service.h"
#include "chrome/common/unzip.h"
#if defined(OS_WIN)
#include "chrome/common/win_util.h"
#endif
// ExtensionsService
const char* ExtensionsService::kInstallDirectoryName = "Extensions";
const char* ExtensionsService::kCurrentVersionFileName = "Current Version";
const char* ExtensionsServiceBackend::kTempExtensionName = "TEMP_INSTALL";
// Chromium Extension magic number
static const char kExtensionFileMagic[] = "Cr24";
struct ExtensionHeader {
char magic[sizeof(kExtensionFileMagic) - 1];
uint32 version;
size_t header_size;
size_t manifest_size;
};
const size_t kZipHashBytes = 32; // SHA-256
const size_t kZipHashHexBytes = kZipHashBytes * 2; // Hex string is 2x size.
ExtensionsService::ExtensionsService(const FilePath& profile_directory,
UserScriptMaster* user_script_master)
: message_loop_(MessageLoop::current()),
backend_(new ExtensionsServiceBackend),
install_directory_(profile_directory.AppendASCII(kInstallDirectoryName)),
user_script_master_(user_script_master) {
}
ExtensionsService::~ExtensionsService() {
for (ExtensionList::iterator iter = extensions_.begin();
iter != extensions_.end(); ++iter) {
delete *iter;
}
}
bool ExtensionsService::Init() {
// TODO(aa): This message loop should probably come from a backend
// interface, similar to how the message loop for the frontend comes
// from the frontend interface.
g_browser_process->file_thread()->message_loop()->PostTask(FROM_HERE,
NewRunnableMethod(backend_.get(),
&ExtensionsServiceBackend::LoadExtensionsFromDirectory,
install_directory_,
scoped_refptr<ExtensionsServiceFrontendInterface>(this)));
// TODO(aa): Load extensions from other registered directories.
return true;
}
MessageLoop* ExtensionsService::GetMessageLoop() {
return message_loop_;
}
void ExtensionsService::InstallExtension(const FilePath& extension_path) {
// TODO(aa): This message loop should probably come from a backend
// interface, similar to how the message loop for the frontend comes
// from the frontend interface.
g_browser_process->file_thread()->message_loop()->PostTask(FROM_HERE,
NewRunnableMethod(backend_.get(),
&ExtensionsServiceBackend::InstallExtension,
extension_path,
install_directory_,
scoped_refptr<ExtensionsServiceFrontendInterface>(this)));
}
void ExtensionsService::LoadExtension(const FilePath& extension_path) {
// TODO(aa): This message loop should probably come from a backend
// interface, similar to how the message loop for the frontend comes
// from the frontend interface.
g_browser_process->file_thread()->message_loop()->PostTask(FROM_HERE,
NewRunnableMethod(backend_.get(),
&ExtensionsServiceBackend::LoadSingleExtension,
extension_path,
scoped_refptr<ExtensionsServiceFrontendInterface>(this)));
}
void ExtensionsService::OnExtensionsLoadedFromDirectory(
ExtensionList* new_extensions) {
extensions_.insert(extensions_.end(), new_extensions->begin(),
new_extensions->end());
// Tell UserScriptMaster about any scripts in the loaded extensions.
for (ExtensionList::iterator extension = extensions_.begin();
extension != extensions_.end(); ++extension) {
const UserScriptList& scripts = (*extension)->content_scripts();
for (UserScriptList::const_iterator script = scripts.begin();
script != scripts.end(); ++script) {
user_script_master_->AddLoneScript(*script);
}
}
// Tell UserScriptMaster to kick off the first scan.
user_script_master_->StartScan();
NotificationService::current()->Notify(
NotificationType::EXTENSIONS_LOADED,
NotificationService::AllSources(),
Details<ExtensionList>(new_extensions));
delete new_extensions;
}
void ExtensionsService::OnExtensionLoadError(const std::string& error) {
// TODO(aa): Print the error message out somewhere better. I think we are
// going to need some sort of 'extension inspector'.
LOG(WARNING) << error;
#if defined(OS_WIN)
win_util::MessageBox(NULL, UTF8ToWide(error),
L"Extension load error", MB_OK | MB_SETFOREGROUND);
#endif
}
void ExtensionsService::OnExtensionInstallError(const std::string& error) {
// TODO(erikkay): Print the error message out somewhere better.
LOG(WARNING) << error;
#if defined(OS_WIN)
win_util::MessageBox(NULL, UTF8ToWide(error),
L"Extension load error", MB_OK | MB_SETFOREGROUND);
#endif
}
void ExtensionsService::OnExtensionInstalled(FilePath path) {
NotificationService::current()->Notify(
NotificationType::EXTENSION_INSTALLED,
NotificationService::AllSources(),
Details<FilePath>(&path));
// Immediately try to load the extension.
g_browser_process->file_thread()->message_loop()->PostTask(FROM_HERE,
NewRunnableMethod(backend_.get(),
&ExtensionsServiceBackend::LoadSingleExtension,
path,
scoped_refptr<ExtensionsServiceFrontendInterface>(this)));
}
// ExtensionsServicesBackend
bool ExtensionsServiceBackend::LoadExtensionsFromDirectory(
const FilePath& path_in,
scoped_refptr<ExtensionsServiceFrontendInterface> frontend) {
FilePath path = path_in;
// Create the <Profile>/Extensions directory if it doesn't exist.
if (!file_util::DirectoryExists(path))
file_util::CreateDirectory(path);
if (!file_util::AbsolutePath(&path))
NOTREACHED();
// Find all child directories in the install directory and load their
// manifests. Post errors and results to the frontend.
scoped_ptr<ExtensionList> extensions(new ExtensionList);
file_util::FileEnumerator enumerator(path,
false, // not recursive
file_util::FileEnumerator::DIRECTORIES);
for (FilePath child_path = enumerator.Next(); !child_path.value().empty();
child_path = enumerator.Next()) {
std::string version_str;
if (!ReadCurrentVersion(child_path, &version_str)) {
ReportExtensionLoadError(frontend.get(), child_path, StringPrintf(
"Could not read '%s' file.",
ExtensionsService::kCurrentVersionFileName));
continue;
}
child_path = child_path.AppendASCII(version_str);
Extension* extension = LoadExtension(child_path, frontend);
if (extension)
extensions->push_back(extension);
}
ReportExtensionsLoaded(frontend.get(), extensions.release());
return true;
}
bool ExtensionsServiceBackend::LoadSingleExtension(
const FilePath& path_in,
scoped_refptr<ExtensionsServiceFrontendInterface> frontend) {
FilePath path = path_in;
if (!file_util::AbsolutePath(&path))
NOTREACHED();
Extension* extension = LoadExtension(path, frontend);
if (extension) {
ExtensionList* extensions = new ExtensionList;
extensions->push_back(extension);
ReportExtensionsLoaded(frontend.get(), extensions);
return true;
}
return false;
}
Extension* ExtensionsServiceBackend::LoadExtension(
const FilePath& path,
scoped_refptr<ExtensionsServiceFrontendInterface> frontend) {
FilePath manifest_path =
path.AppendASCII(Extension::kManifestFilename);
if (!file_util::PathExists(manifest_path)) {
ReportExtensionLoadError(frontend.get(), path,
Extension::kInvalidManifestError);
return NULL;
}
JSONFileValueSerializer serializer(manifest_path.ToWStringHack());
std::string error;
scoped_ptr<Value> root(serializer.Deserialize(&error));
if (!root.get()) {
ReportExtensionLoadError(frontend.get(), path,
error);
return NULL;
}
if (!root->IsType(Value::TYPE_DICTIONARY)) {
ReportExtensionLoadError(frontend.get(), path,
Extension::kInvalidManifestError);
return NULL;
}
scoped_ptr<Extension> extension(new Extension(path));
if (!extension->InitFromValue(*static_cast<DictionaryValue*>(root.get()),
&error)) {
ReportExtensionLoadError(frontend.get(), path, error);
return NULL;
}
// Validate that claimed resources actually exist.
for (UserScriptList::const_iterator iter =
extension->content_scripts().begin();
iter != extension->content_scripts().end(); ++iter) {
if (!file_util::PathExists(iter->path())) {
ReportExtensionLoadError(frontend.get(), path, StringPrintf(
"Could not load content script '%s'.",
WideToUTF8(iter->path().ToWStringHack()).c_str()));
return NULL;
}
}
return extension.release();
}
void ExtensionsServiceBackend::ReportExtensionLoadError(
ExtensionsServiceFrontendInterface *frontend, const FilePath& path,
const std::string &error) {
// TODO(erikkay): note that this isn't guaranteed to work properly on Linux.
std::string path_str = WideToASCII(path.ToWStringHack());
std::string message = StringPrintf("Could not load extension from '%s'. %s",
path_str.c_str(), error.c_str());
frontend->GetMessageLoop()->PostTask(FROM_HERE, NewRunnableMethod(
frontend, &ExtensionsServiceFrontendInterface::OnExtensionLoadError,
message));
}
void ExtensionsServiceBackend::ReportExtensionsLoaded(
ExtensionsServiceFrontendInterface *frontend, ExtensionList* extensions) {
frontend->GetMessageLoop()->PostTask(FROM_HERE, NewRunnableMethod(
frontend,
&ExtensionsServiceFrontendInterface::OnExtensionsLoadedFromDirectory,
extensions));
}
// The extension file format is a header, followed by the manifest, followed
// by the zip file. The header is a magic number, a version, the size of the
// header, and the size of the manifest. These ints are 4 byte little endian.
DictionaryValue* ExtensionsServiceBackend::ReadManifest(
const FilePath& extension_path,
scoped_refptr<ExtensionsServiceFrontendInterface> frontend) {
ScopedStdioHandle file(file_util::OpenFile(extension_path, "rb"));
if (!file.get()) {
ReportExtensionInstallError(frontend, extension_path,
"no such extension file");
return NULL;
}
// Read and verify the header.
ExtensionHeader header;
size_t len;
// TODO(erikkay): Yuck. I'm not a big fan of this kind of code, but it
// appears that we don't have any endian/alignment aware serialization
// code in the code base. So for now, this assumes that we're running
// on a little endian machine with 4 byte alignment.
len = fread(&header, 1, sizeof(ExtensionHeader), file.get());
if (len < sizeof(ExtensionHeader)) {
ReportExtensionInstallError(frontend, extension_path,
"invalid extension header");
return NULL;
}
if (strncmp(kExtensionFileMagic, header.magic, sizeof(header.magic))) {
ReportExtensionInstallError(frontend, extension_path,
"bad magic number");
return NULL;
}
if (header.version != Extension::kExpectedFormatVersion) {
ReportExtensionInstallError(frontend, extension_path,
"bad version number");
return NULL;
}
if (header.header_size > sizeof(ExtensionHeader))
fseek(file.get(), header.header_size - sizeof(ExtensionHeader), SEEK_CUR);
char buf[1 << 16];
std::string manifest_str;
size_t read_size = std::min(sizeof(buf), header.manifest_size);
size_t remainder = header.manifest_size;
while ((len = fread(buf, 1, read_size, file.get())) > 0) {
manifest_str.append(buf, len);
if (len <= remainder)
break;
remainder -= len;
read_size = std::min(sizeof(buf), remainder);
}
// Verify the JSON
JSONStringValueSerializer json(manifest_str);
std::string error;
scoped_ptr<Value> val(json.Deserialize(&error));
if (!val.get()) {
ReportExtensionInstallError(frontend, extension_path, error);
return NULL;
}
if (!val->IsType(Value::TYPE_DICTIONARY)) {
ReportExtensionInstallError(frontend, extension_path,
"manifest isn't a JSON dictionary");
return NULL;
}
DictionaryValue* manifest = static_cast<DictionaryValue*>(val.get());
std::string zip_hash;
if (!manifest->GetString(Extension::kZipHashKey, &zip_hash)) {
ReportExtensionInstallError(frontend, extension_path,
"missing zip_hash key");
return NULL;
}
if (zip_hash.size() != kZipHashHexBytes) {
ReportExtensionInstallError(frontend, extension_path,
"invalid zip_hash key");
return NULL;
}
// Read the rest of the zip file and compute a hash to compare against
// what the manifest claims. Compute the hash incrementally since the
// zip file could be large.
const unsigned char* ubuf = reinterpret_cast<const unsigned char*>(buf);
SHA256Context ctx;
SHA256_Begin(&ctx);
while ((len = fread(buf, 1, sizeof(buf), file.get())) > 0)
SHA256_Update(&ctx, ubuf, len);
uint8 hash[32];
SHA256_End(&ctx, hash, NULL, sizeof(hash));
std::vector<uint8> zip_hash_bytes;
if (!HexStringToBytes(zip_hash, &zip_hash_bytes)) {
ReportExtensionInstallError(frontend, extension_path,
"invalid zip_hash key");
return NULL;
}
if (zip_hash_bytes.size() != kZipHashBytes) {
ReportExtensionInstallError(frontend, extension_path,
"invalid zip_hash key");
return NULL;
}
for (size_t i = 0; i < kZipHashBytes; ++i) {
if (zip_hash_bytes[i] != hash[i]) {
ReportExtensionInstallError(frontend, extension_path,
"zip_hash key didn't match zip hash");
return NULL;
}
}
// TODO(erikkay): The manifest will also contain a signature of the hash
// (or perhaps the whole manifest) for authentication purposes.
// The caller owns val (now cast to manifest).
val.release();
return manifest;
}
bool ExtensionsServiceBackend::ReadCurrentVersion(
const FilePath& extension_path,
std::string* version_string) {
FilePath current_version =
extension_path.AppendASCII(ExtensionsService::kCurrentVersionFileName);
if (file_util::PathExists(current_version)) {
if (file_util::ReadFileToString(current_version, version_string)) {
TrimWhitespace(*version_string, TRIM_ALL, version_string);
return true;
}
}
return false;
}
bool ExtensionsServiceBackend::CheckCurrentVersion(
const FilePath& extension_path,
const std::string& version,
const FilePath& dest_dir,
scoped_refptr<ExtensionsServiceFrontendInterface> frontend) {
std::string version_str;
if (ReadCurrentVersion(dest_dir, &version_str)) {
if (version_str == version) {
FilePath version_dir = dest_dir.AppendASCII(version_str);
if (file_util::PathExists(version_dir)) {
ReportExtensionInstallError(frontend, extension_path,
"Extension version already installed");
return false;
}
// If the existing version_dir doesn't exist, then we'll return true
// so that we attempt to repair the broken installation.
} else {
scoped_ptr<Version> cur_version(
Version::GetVersionFromString(version_str));
scoped_ptr<Version> new_version(
Version::GetVersionFromString(version));
if (cur_version->CompareTo(*new_version) >= 0) {
ReportExtensionInstallError(frontend, extension_path,
"More recent version of extension already installed");
return false;
}
}
}
return true;
}
bool ExtensionsServiceBackend::UnzipExtension(const FilePath& extension_path,
const FilePath& temp_dir,
scoped_refptr<ExtensionsServiceFrontendInterface> frontend) {
// <profile>/Extensions/INSTALL_TEMP/<version>
if (!file_util::CreateDirectory(temp_dir)) {
ReportExtensionInstallError(frontend, extension_path,
"Couldn't create version directory.");
return false;
}
if (!Unzip(extension_path, temp_dir, NULL)) {
// Remove what we just installed.
file_util::Delete(temp_dir, true);
ReportExtensionInstallError(frontend, extension_path,
"Couldn't unzip extension.");
return false;
}
return true;
}
bool ExtensionsServiceBackend::InstallDirSafely(
const FilePath& extension_path,
const FilePath& source_dir,
const FilePath& dest_dir,
scoped_refptr<ExtensionsServiceFrontendInterface> frontend) {
if (file_util::PathExists(dest_dir)) {
// By the time we get here, it should be safe to assume that this directory
// is not currently in use (it's not the current active version).
if (!file_util::Delete(dest_dir, true)) {
ReportExtensionInstallError(frontend, extension_path,
"Can't delete existing version directory.");
return false;
}
} else {
FilePath parent = dest_dir.DirName();
if (!file_util::DirectoryExists(parent)) {
if (!file_util::CreateDirectory(parent)) {
ReportExtensionInstallError(frontend, extension_path,
"Couldn't create extension directory.");
return false;
}
}
}
if (!file_util::Move(source_dir, dest_dir)) {
ReportExtensionInstallError(frontend, extension_path,
"Couldn't move temporary directory.");
return false;
}
return true;
}
bool ExtensionsServiceBackend::SetCurrentVersion(
const FilePath& extension_path,
const FilePath& dest_dir,
std::string version,
scoped_refptr<ExtensionsServiceFrontendInterface> frontend) {
// Write out the new CurrentVersion file.
// <profile>/Extension/<name>/CurrentVersion
FilePath current_version =
dest_dir.AppendASCII(ExtensionsService::kCurrentVersionFileName);
FilePath current_version_old =
current_version.InsertBeforeExtension(FILE_PATH_LITERAL("_old"));
if (file_util::PathExists(current_version_old)) {
if (!file_util::Delete(current_version_old, false)) {
ReportExtensionInstallError(frontend, extension_path,
"Couldn't remove CurrentVersion_old file.");
return false;
}
}
if (file_util::PathExists(current_version)) {
if (!file_util::Move(current_version, current_version_old)) {
ReportExtensionInstallError(frontend, extension_path,
"Couldn't move CurrentVersion file.");
return false;
}
}
net::FileStream stream;
int flags = base::PLATFORM_FILE_CREATE_ALWAYS | base::PLATFORM_FILE_WRITE;
if (stream.Open(current_version, flags) != 0)
return false;
if (stream.Write(version.c_str(), version.size(), NULL) < 0) {
// Restore the old CurrentVersion.
if (file_util::PathExists(current_version_old)) {
if (!file_util::Move(current_version_old, current_version)) {
LOG(WARNING) << "couldn't restore " << current_version_old.value() <<
" to " << current_version.value();
// TODO(erikkay): This is an ugly state to be in. Try harder?
}
}
ReportExtensionInstallError(frontend, extension_path,
"Couldn't create CurrentVersion file.");
return false;
}
return true;
}
bool ExtensionsServiceBackend::InstallExtension(
const FilePath& extension_path,
const FilePath& install_dir,
scoped_refptr<ExtensionsServiceFrontendInterface> frontend) {
LOG(INFO) << "Installing extension " << extension_path.value();
// <profile>/Extensions/INSTALL_TEMP
FilePath temp_dir = install_dir.AppendASCII(kTempExtensionName);
// Ensure we're starting with a clean slate.
if (file_util::PathExists(temp_dir)) {
if (!file_util::Delete(temp_dir, true)) {
ReportExtensionInstallError(frontend, extension_path,
"Couldn't delete existing temporary directory.");
return false;
}
}
ScopedTempDir scoped_temp;
scoped_temp.Set(temp_dir);
if (!scoped_temp.IsValid()) {
ReportExtensionInstallError(frontend, extension_path,
"Couldn't create temporary directory.");
return false;
}
// Read and verify the extension.
scoped_ptr<DictionaryValue> manifest(ReadManifest(extension_path, frontend));
if (!manifest.get()) {
// ReadManifest has already reported the extension error.
return false;
}
DictionaryValue* dict = manifest.get();
Extension extension;
std::string error;
if (!extension.InitFromValue(*dict, &error)) {
ReportExtensionInstallError(frontend, extension_path,
"Invalid extension manifest.");
return false;
}
// <profile>/Extensions/<id>
FilePath dest_dir = install_dir.AppendASCII(extension.id());
std::string version = extension.VersionString();
if (!CheckCurrentVersion(extension_path, version, dest_dir, frontend))
return false;
// <profile>/Extensions/INSTALL_TEMP/<version>
FilePath temp_version = temp_dir.AppendASCII(version);
if (!UnzipExtension(extension_path, temp_version, frontend))
return false;
// <profile>/Extensions/<dir_name>/<version>
FilePath version_dir = dest_dir.AppendASCII(version);
if (!InstallDirSafely(extension_path, temp_version, version_dir, frontend))
return false;
if (!SetCurrentVersion(extension_path, dest_dir, version, frontend)) {
if (!file_util::Delete(version_dir, true))
LOG(WARNING) << "Can't remove " << dest_dir.value();
return false;
}
ReportExtensionInstalled(frontend, dest_dir);
return true;
}
void ExtensionsServiceBackend::ReportExtensionInstallError(
ExtensionsServiceFrontendInterface *frontend, const FilePath& path,
const std::string &error) {
// TODO(erikkay): note that this isn't guaranteed to work properly on Linux.
std::string path_str = WideToASCII(path.ToWStringHack());
std::string message =
StringPrintf("Could not install extension from '%s'. %s",
path_str.c_str(), error.c_str());
frontend->GetMessageLoop()->PostTask(FROM_HERE, NewRunnableMethod(
frontend, &ExtensionsServiceFrontendInterface::OnExtensionInstallError,
message));
}
void ExtensionsServiceBackend::ReportExtensionInstalled(
ExtensionsServiceFrontendInterface *frontend, FilePath path) {
frontend->GetMessageLoop()->PostTask(FROM_HERE, NewRunnableMethod(
frontend,
&ExtensionsServiceFrontendInterface::OnExtensionInstalled,
path));
}
|
