Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(2820)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: extensions/browser/content_verifier.cc

Issue 288273004: A bunch of remaining parts of extension content verification (Reland) (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: fix browser test Created 6 years, 7 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « extensions/browser/content_hash_reader.cc ('k') | extensions/browser/content_verifier_delegate.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: extensions/browser/content_verifier.cc
diff --git a/extensions/browser/content_verifier.cc b/extensions/browser/content_verifier.cc
index 548be16fb7a655ce9dfa3f492b7577cdf09862fa..1e164ea43390417bdc8f95f1f87f9b5bd08bf62b 100644
--- a/extensions/browser/content_verifier.cc
+++ b/extensions/browser/content_verifier.cc
@@ -10,10 +10,13 @@
#include "base/files/file_path.h"
#include "base/metrics/field_trial.h"
#include "content/public/browser/browser_thread.h"
+#include "content/public/common/content_switches.h"
#include "extensions/browser/content_hash_fetcher.h"
#include "extensions/browser/content_hash_reader.h"
#include "extensions/browser/content_verifier_delegate.h"
#include "extensions/browser/extension_registry.h"
+#include "extensions/common/constants.h"
+#include "extensions/common/extension_l10n_util.h"
#include "extensions/common/switches.h"
namespace {
@@ -49,17 +52,42 @@ ContentVerifyJob* ContentVerifier::CreateJobFor(
const std::string& extension_id,
const base::FilePath& extension_root,
const base::FilePath& relative_path) {
- if (!delegate_)
+ if (mode_ < BOOTSTRAP || !delegate_)
return NULL;
ExtensionRegistry* registry = ExtensionRegistry::Get(context_);
const Extension* extension =
registry->GetExtensionById(extension_id, ExtensionRegistry::EVERYTHING);
- if (!extension || !delegate_->ShouldBeVerified(*extension) ||
- !extension->version())
+ if (!extension || !extension->version() ||
+ !delegate_->ShouldBeVerified(*extension))
return NULL;
+ // Images used in the browser get transcoded during install, so skip checking
+ // them for now. TODO(asargent) - see if we can cache this list for a given
+ // extension id/version pair.
+ std::set<base::FilePath> browser_images =
+ delegate_->GetBrowserImagePaths(extension);
+ if (ContainsKey(browser_images, relative_path))
+ return NULL;
+
+ base::FilePath locales_dir = extension_root.Append(kLocaleFolder);
+ base::FilePath full_path = extension_root.Append(relative_path);
+ if (locales_dir.IsParent(full_path)) {
+ // TODO(asargent) - see if we can cache this list to avoid having to fetch
+ // it every time. Maybe it can never change at runtime? (Or if it can,
+ // maybe there is an event we can listen for to know to drop our cache).
+ std::set<std::string> all_locales;
+ extension_l10n_util::GetAllLocales(&all_locales);
+ // Since message catalogs get transcoded during installation, we want to
+ // ignore only those paths that the localization transcoding *did* ignore.
+ if (!extension_l10n_util::ShouldSkipValidation(
+ locales_dir, full_path, all_locales))
+ return NULL;
+ }
+
+ // TODO(asargent) - we can probably get some good performance wins by having
+ // a cache of ContentHashReader's that we hold onto past the end of each job.
return new ContentVerifyJob(
new ContentHashReader(extension_id,
*extension->version(),
@@ -98,6 +126,8 @@ void ContentVerifier::VerifyFailed(const std::string& extension_id,
// static
ContentVerifier::Mode ContentVerifier::GetMode() {
+ base::CommandLine* command_line = base::CommandLine::ForCurrentProcess();
+
Mode experiment_value = NONE;
const std::string group = base::FieldTrialList::FindFullName(kExperimentName);
if (group == "EnforceStrict")
@@ -107,8 +137,20 @@ ContentVerifier::Mode ContentVerifier::GetMode() {
else if (group == "Bootstrap")
experiment_value = BOOTSTRAP;
+ // The field trial value that normally comes from the server can be
+ // overridden on the command line, which we don't want to allow since malware
+ // can set chrome command line flags. There isn't currently a way to find out
+ // what the server-provided value is in this case, so we conservatively
+ // default to the strictest mode if we detect our experiment name being
+ // overridden.
+ if (command_line->HasSwitch(::switches::kForceFieldTrials)) {
+ std::string forced_trials =
+ command_line->GetSwitchValueASCII(::switches::kForceFieldTrials);
+ if (forced_trials.find(kExperimentName) != std::string::npos)
+ experiment_value = ENFORCE_STRICT;
+ }
+
Mode cmdline_value = NONE;
- base::CommandLine* command_line = base::CommandLine::ForCurrentProcess();
if (command_line->HasSwitch(switches::kExtensionContentVerification)) {
std::string switch_value = command_line->GetSwitchValueASCII(
switches::kExtensionContentVerification);
« no previous file with comments | « extensions/browser/content_hash_reader.cc ('k') | extensions/browser/content_verifier_delegate.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698