// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/extensions/extension_creator.h"
#include <string>
#include <vector>
#include "base/bind.h"
#include "base/callback.h"
#include "base/file_util.h"
#include "base/files/scoped_temp_dir.h"
#include "base/memory/scoped_handle.h"
#include "base/strings/string_util.h"
#include "chrome/browser/extensions/extension_creator_filter.h"
#include "chrome/common/extensions/extension_file_util.h"
#include "crypto/rsa_private_key.h"
#include "crypto/signature_creator.h"
#include "extensions/common/crx_file.h"
#include "extensions/common/extension.h"
#include "extensions/common/id_util.h"
#include "grit/generated_resources.h"
#include "third_party/zlib/google/zip.h"
#include "ui/base/l10n/l10n_util.h"
namespace {
const int kRSAKeySize = 2048;
};
namespace extensions {
ExtensionCreator::ExtensionCreator() : error_type_(kOtherError) {
}
bool ExtensionCreator::InitializeInput(
const base::FilePath& extension_dir,
const base::FilePath& crx_path,
const base::FilePath& private_key_path,
const base::FilePath& private_key_output_path,
int run_flags) {
// Validate input |extension_dir|.
if (extension_dir.value().empty() ||
!base::DirectoryExists(extension_dir)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_DIRECTORY_NO_EXISTS);
return false;
}
base::FilePath absolute_extension_dir =
base::MakeAbsoluteFilePath(extension_dir);
if (absolute_extension_dir.empty()) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_CANT_GET_ABSOLUTE_PATH);
return false;
}
// Validate input |private_key| (if provided).
if (!private_key_path.value().empty() &&
!base::PathExists(private_key_path)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_PRIVATE_KEY_INVALID_PATH);
return false;
}
// If an |output_private_key| path is given, make sure it doesn't over-write
// an existing private key.
if (private_key_path.value().empty() &&
!private_key_output_path.value().empty() &&
base::PathExists(private_key_output_path)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_PRIVATE_KEY_EXISTS);
return false;
}
// Check whether crx file already exists. Should be last check, as this is
// a warning only.
if (!(run_flags & kOverwriteCRX) && base::PathExists(crx_path)) {
error_message_ = l10n_util::GetStringUTF8(IDS_EXTENSION_CRX_EXISTS);
error_type_ = kCRXExists;
return false;
}
return true;
}
bool ExtensionCreator::ValidateManifest(const base::FilePath& extension_dir,
crypto::RSAPrivateKey* key_pair,
int run_flags) {
std::vector<uint8> public_key_bytes;
if (!key_pair->ExportPublicKey(&public_key_bytes)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_PUBLIC_KEY_FAILED_TO_EXPORT);
return false;
}
std::string public_key;
public_key.insert(public_key.begin(),
public_key_bytes.begin(), public_key_bytes.end());
std::string extension_id = id_util::GenerateId(public_key);
// Load the extension once. We don't really need it, but this does a lot of
// useful validation of the structure.
int create_flags =
Extension::FOLLOW_SYMLINKS_ANYWHERE | Extension::ERROR_ON_PRIVATE_KEY;
if (run_flags & kRequireModernManifestVersion)
create_flags |= Extension::REQUIRE_MODERN_MANIFEST_VERSION;
scoped_refptr<Extension> extension(
extension_file_util::LoadExtension(
extension_dir,
extension_id,
Manifest::INTERNAL,
create_flags,
&error_message_));
return !!extension.get();
}
crypto::RSAPrivateKey* ExtensionCreator::ReadInputKey(const base::FilePath&
private_key_path) {
if (!base::PathExists(private_key_path)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_PRIVATE_KEY_NO_EXISTS);
return NULL;
}
std::string private_key_contents;
if (!base::ReadFileToString(private_key_path, &private_key_contents)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_PRIVATE_KEY_FAILED_TO_READ);
return NULL;
}
std::string private_key_bytes;
if (!Extension::ParsePEMKeyBytes(private_key_contents,
&private_key_bytes)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_PRIVATE_KEY_INVALID);
return NULL;
}
return crypto::RSAPrivateKey::CreateFromPrivateKeyInfo(
std::vector<uint8>(private_key_bytes.begin(), private_key_bytes.end()));
}
crypto::RSAPrivateKey* ExtensionCreator::GenerateKey(const base::FilePath&
output_private_key_path) {
scoped_ptr<crypto::RSAPrivateKey> key_pair(
crypto::RSAPrivateKey::Create(kRSAKeySize));
if (!key_pair) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_PRIVATE_KEY_FAILED_TO_GENERATE);
return NULL;
}
std::vector<uint8> private_key_vector;
if (!key_pair->ExportPrivateKey(&private_key_vector)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_PRIVATE_KEY_FAILED_TO_EXPORT);
return NULL;
}
std::string private_key_bytes(
reinterpret_cast<char*>(&private_key_vector.front()),
private_key_vector.size());
std::string private_key;
if (!Extension::ProducePEM(private_key_bytes, &private_key)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_PRIVATE_KEY_FAILED_TO_OUTPUT);
return NULL;
}
std::string pem_output;
if (!Extension::FormatPEMForFileOutput(private_key, &pem_output,
false)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_PRIVATE_KEY_FAILED_TO_OUTPUT);
return NULL;
}
if (!output_private_key_path.empty()) {
if (-1 == file_util::WriteFile(output_private_key_path,
pem_output.c_str(), pem_output.size())) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_PRIVATE_KEY_FAILED_TO_OUTPUT);
return NULL;
}
}
return key_pair.release();
}
bool ExtensionCreator::CreateZip(const base::FilePath& extension_dir,
const base::FilePath& temp_path,
base::FilePath* zip_path) {
*zip_path = temp_path.Append(FILE_PATH_LITERAL("extension.zip"));
scoped_refptr<ExtensionCreatorFilter> filter = new ExtensionCreatorFilter();
const base::Callback<bool(const base::FilePath&)>& filter_cb =
base::Bind(&ExtensionCreatorFilter::ShouldPackageFile, filter.get());
if (!zip::ZipWithFilterCallback(extension_dir, *zip_path, filter_cb)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_FAILED_DURING_PACKAGING);
return false;
}
return true;
}
bool ExtensionCreator::SignZip(const base::FilePath& zip_path,
crypto::RSAPrivateKey* private_key,
std::vector<uint8>* signature) {
scoped_ptr<crypto::SignatureCreator> signature_creator(
crypto::SignatureCreator::Create(private_key));
ScopedStdioHandle zip_handle(base::OpenFile(zip_path, "rb"));
size_t buffer_size = 1 << 16;
scoped_ptr<uint8[]> buffer(new uint8[buffer_size]);
int bytes_read = -1;
while ((bytes_read = fread(buffer.get(), 1, buffer_size,
zip_handle.get())) > 0) {
if (!signature_creator->Update(buffer.get(), bytes_read)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_ERROR_WHILE_SIGNING);
return false;
}
}
zip_handle.Close();
if (!signature_creator->Final(signature)) {
error_message_ =
l10n_util::GetStringUTF8(IDS_EXTENSION_ERROR_WHILE_SIGNING);
return false;
}
return true;
}
bool ExtensionCreator::WriteCRX(const base::FilePath& zip_path,
crypto::RSAPrivateKey* private_key,
const std::vector<uint8>& signature,
const base::FilePath& crx_path) {
if (base::PathExists(crx_path))
base::DeleteFile(crx_path, false);
ScopedStdioHandle crx_handle(base::OpenFile(crx_path, "wb"));
if (!crx_handle.get()) {
error_message_ = l10n_util::GetStringUTF8(IDS_EXTENSION_SHARING_VIOLATION);
return false;
}
std::vector<uint8> public_key;
CHECK(private_key->ExportPublicKey(&public_key));
CrxFile::Error error;
scoped_ptr<CrxFile> crx(
CrxFile::Create(public_key.size(), signature.size(), &error));
if (!crx) {
LOG(ERROR) << "cannot create CrxFileHeader: " << error;
}
const CrxFile::Header header = crx->header();
if (fwrite(&header, sizeof(header), 1, crx_handle.get()) != 1) {
PLOG(ERROR) << "fwrite failed to write header";
}
if (fwrite(&public_key.front(), sizeof(uint8), public_key.size(),
crx_handle.get()) != public_key.size()) {
PLOG(ERROR) << "fwrite failed to write public_key.front";
}
if (fwrite(&signature.front(), sizeof(uint8), signature.size(),
crx_handle.get()) != signature.size()) {
PLOG(ERROR) << "fwrite failed to write signature.front";
}
size_t buffer_size = 1 << 16;
scoped_ptr<uint8[]> buffer(new uint8[buffer_size]);
size_t bytes_read = 0;
ScopedStdioHandle zip_handle(base::OpenFile(zip_path, "rb"));
while ((bytes_read = fread(buffer.get(), 1, buffer_size,
zip_handle.get())) > 0) {
if (fwrite(buffer.get(), sizeof(char), bytes_read, crx_handle.get()) !=
bytes_read) {
PLOG(ERROR) << "fwrite failed to write buffer";
}
}
return true;
}
bool ExtensionCreator::Run(const base::FilePath& extension_dir,
const base::FilePath& crx_path,
const base::FilePath& private_key_path,
const base::FilePath& output_private_key_path,
int run_flags) {
// Check input diretory and read manifest.
if (!InitializeInput(extension_dir, crx_path, private_key_path,
output_private_key_path, run_flags)) {
return false;
}
// Initialize Key Pair
scoped_ptr<crypto::RSAPrivateKey> key_pair;
if (!private_key_path.value().empty())
key_pair.reset(ReadInputKey(private_key_path));
else
key_pair.reset(GenerateKey(output_private_key_path));
if (!key_pair)
return false;
// Perform some extra validation by loading the extension.
// TODO(aa): Can this go before creating the key pair? This would mean not
// passing ID into LoadExtension which seems OK.
if (!ValidateManifest(extension_dir, key_pair.get(), run_flags))
return false;
base::ScopedTempDir temp_dir;
if (!temp_dir.CreateUniqueTempDir())
return false;
// Zip up the extension.
base::FilePath zip_path;
std::vector<uint8> signature;
bool result = false;
if (CreateZip(extension_dir, temp_dir.path(), &zip_path) &&
SignZip(zip_path, key_pair.get(), &signature) &&
WriteCRX(zip_path, key_pair.get(), signature, crx_path)) {
result = true;
}
base::DeleteFile(zip_path, false);
return result;
}
} // namespace extensions