refactor into separate projects and improve zip examination

Author: mike10004

crxtool/pom.xml renamed to crxtool-core/pom.xml

@@ -8,8 +8,8 @@
         <artifactId>crxtool-parent</artifactId>
         <version>0.4-SNAPSHOT</version>
     </parent>
-    <artifactId>crxtool</artifactId>
-    <name>crxtool</name>
+    <artifactId>crxtool-core</artifactId>
+    <name>crxtool-core</name>
     <description>Library for Chrome extension file analysis</description>
     <dependencies>
         <dependency>
@@ -65,5 +65,11 @@
             <artifactId>nanohttpd-server</artifactId>
             <scope>test</scope>
         </dependency>
+        <dependency>
+            <groupId>${project.groupId}</groupId>
+            <artifactId>crxtool-testing</artifactId>
+            <version>${project.version}</version>
+            <scope>test</scope>
+        </dependency>
     </dependencies>
 </project>

crxtool/src/main/java/io/github/mike10004/crxtool/BasicCrxPacker.java renamed to crxtool-core/src/main/java/io/github/mike10004/crxtool/BasicCrxPacker.java

@@ -34,17 +34,28 @@ public class BasicCrxParser implements CrxParser {
      */
     public BasicCrxParser() {}
 
+    private void checkMagicNumber(String magicNumber) throws CrxParsingException {
+        if (!"Cr24".equals(magicNumber)) {
+            throw new CrxParsingException("incorrect magic number: " + magicNumber);
+        }
+    }
+
     @Override
     public CrxMetadata parseMetadata(InputStream crxInput) throws IOException {
         LittleEndianDataInputStream in = new LittleEndianDataInputStream(crxInput);
         byte[] magicNumberBytes = new byte[4];
         in.readFully(magicNumberBytes);
         String magicNumber = new String(magicNumberBytes, StandardCharsets.US_ASCII);
+        checkMagicNumber(magicNumber);
         int version = Ints.checkedCast(UnsignedInteger.fromIntBits(in.readInt()).longValue());
         int pubkeyLength = Ints.checkedCast(UnsignedInteger.fromIntBits(in.readInt()).longValue());
         int signatureLength = Ints.checkedCast(UnsignedInteger.fromIntBits(in.readInt()).longValue());
-        checkState(pubkeyLength <= MAX_SANE_PUBKEY_LENGTH, "public key length is insane: %s", pubkeyLength);
-        checkState(signatureLength <= MAX_SANE_SIGNATURE_LENGTH, "signature length is insane: %s", signatureLength);
+        if (pubkeyLength <= 0 || pubkeyLength > MAX_SANE_PUBKEY_LENGTH) {
+            throw new CrxParsingException(String.format("public key length is insane: %s", pubkeyLength));
+        }
+        if (signatureLength <= 0 || signatureLength > MAX_SANE_SIGNATURE_LENGTH) {
+            throw new CrxParsingException(String.format("signature length is insane: %s", signatureLength));
+        }
         byte[] pubkeyBytes = new byte[pubkeyLength];
         ByteStreams.readFully(crxInput, pubkeyBytes);
         byte[] signatureBytes = new byte[signatureLength];

crxtool/src/main/java/io/github/mike10004/crxtool/BasicCrxParser.java renamed to crxtool-core/src/main/java/io/github/mike10004/crxtool/BasicCrxParser.java

@@ -3,7 +3,6 @@
 import com.google.common.io.ByteSource;
 
 import javax.annotation.Nullable;
-import java.io.ByteArrayOutputStream;
 import java.io.IOException;
 import java.io.OutputStream;
 import java.nio.file.Path;
@@ -13,7 +12,6 @@
 import java.security.PrivateKey;
 import java.security.Signature;
 import java.security.SignatureException;
-import java.util.zip.ZipOutputStream;
 
 /**
  * Interface defining methods to pack Chrome extensions.
@@ -46,22 +44,7 @@ default void packExtension(Path extensionDir, KeyPair keyPair, OutputStream outp
      * @throws SignatureException if thrown by {@link java.security.Signature#update(byte[])} or {@link Signature#sign()}
      */
     default void packExtension(Path extensionDir, @Nullable ZipConfig zipConfig, KeyPair keyPair, OutputStream output) throws IOException, NoSuchAlgorithmException, InvalidKeyException, SignatureException {
-        ByteArrayOutputStream zipBuffer = new ByteArrayOutputStream(1024);
-        try (ZipOutputStream zipOutputStream = new ZipOutputStream(zipBuffer)) {
-            java.nio.file.Files.walkFileTree(extensionDir, new ZippingFileVisitor(extensionDir, zipOutputStream));
-            if (zipConfig != null) {
-                if (zipConfig.comment != null) {
-                    zipOutputStream.setComment(zipConfig.comment);
-                }
-                if (zipConfig.method != null) {
-                    zipOutputStream.setMethod(zipConfig.method);
-                }
-                if (zipConfig.level != null) {
-                    zipOutputStream.setLevel(zipConfig.level);
-                }
-            }
-        }
-        byte[] zipBytes = zipBuffer.toByteArray();
+        byte[] zipBytes = Zipping.zipDirectory(extensionDir, zipConfig);
         packExtension(ByteSource.wrap(zipBytes), keyPair, output);
     }
 

crxtool/src/main/java/io/github/mike10004/crxtool/CommonsLang3StringUtils.java renamed to crxtool-core/src/main/java/io/github/mike10004/crxtool/CommonsLang3StringUtils.java

@@ -23,4 +23,19 @@ public interface CrxParser {
     static CrxParser getDefault() {
         return BasicCrxParser.getDefaultInstance();
     }
+
+    @SuppressWarnings("unused")
+    class CrxParsingException extends IOException {
+        public CrxParsingException(String message) {
+            super(message);
+        }
+
+        public CrxParsingException(String message, Throwable cause) {
+            super(message, cause);
+        }
+
+        public CrxParsingException(Throwable cause) {
+            super(cause);
+        }
+    }
 }

crxtool/src/main/java/io/github/mike10004/crxtool/CrxMetadata.java renamed to crxtool-core/src/main/java/io/github/mike10004/crxtool/CrxMetadata.java

@@ -48,4 +48,11 @@ static PublicKey extractPublicKey(PrivateKey privateKey) throws NoSuchAlgorithmE
         return publicKey;
     }
 
+
+    // https://stackoverflow.com/a/24689684/2657036
+    public static KeyPair generateRsKeyPair(SecureRandom random) throws NoSuchAlgorithmException {
+        KeyPairGenerator keyGen = KeyPairGenerator.getInstance("RSA");
+        keyGen.initialize(1024, random);
+        return keyGen.generateKeyPair();
+    }
 }

crxtool/src/main/java/io/github/mike10004/crxtool/CrxPacker.java renamed to crxtool-core/src/main/java/io/github/mike10004/crxtool/CrxPacker.java

@@ -0,0 +1,33 @@
+package io.github.mike10004.crxtool;
+
+import javax.annotation.Nullable;
+import java.io.ByteArrayOutputStream;
+import java.io.IOException;
+import java.nio.file.Path;
+import java.util.zip.ZipOutputStream;
+
+public class Zipping {
+
+    private Zipping() {}
+
+
+    public static byte[] zipDirectory(Path extensionDir, @Nullable ZipConfig zipConfig) throws IOException {
+        ByteArrayOutputStream zipBuffer = new ByteArrayOutputStream(1024);
+        try (ZipOutputStream zipOutputStream = new ZipOutputStream(zipBuffer)) {
+            java.nio.file.Files.walkFileTree(extensionDir, new ZippingFileVisitor(extensionDir, zipOutputStream));
+            if (zipConfig != null) {
+                if (zipConfig.comment != null) {
+                    zipOutputStream.setComment(zipConfig.comment);
+                }
+                if (zipConfig.method != null) {
+                    zipOutputStream.setMethod(zipConfig.method);
+                }
+                if (zipConfig.level != null) {
+                    zipOutputStream.setLevel(zipConfig.level);
+                }
+            }
+        }
+        byte[] zipBytes = zipBuffer.toByteArray();
+        return zipBytes;
+    }
+}

crxtool/src/main/java/io/github/mike10004/crxtool/CrxParser.java renamed to crxtool-core/src/main/java/io/github/mike10004/crxtool/CrxParser.java

@@ -5,6 +5,7 @@
 import com.google.common.io.CountingOutputStream;
 import com.google.common.io.Files;
 import com.google.common.io.LittleEndianDataOutputStream;
+import io.github.mike10004.crxtool.testing.Unzippage;
 import org.junit.Rule;
 import org.junit.Test;
 import org.junit.rules.TemporaryFolder;

crxtool/src/main/java/io/github/mike10004/crxtool/KeyPairs.java renamed to crxtool-core/src/main/java/io/github/mike10004/crxtool/KeyPairs.java

@@ -0,0 +1,107 @@
+package io.github.mike10004.crxtool;
+
+import com.google.common.io.ByteSource;
+import com.google.common.io.Resources;
+import io.github.mike10004.crxtool.CrxParser.CrxParsingException;
+import io.github.mike10004.crxtool.testing.Unzippage;
+import org.junit.Rule;
+import org.junit.Test;
+import org.junit.rules.TemporaryFolder;
+
+import java.io.ByteArrayInputStream;
+import java.io.EOFException;
+import java.io.File;
+import java.io.FileInputStream;
+import java.io.IOException;
+import java.io.InputStream;
+import java.net.URL;
+import java.nio.charset.StandardCharsets;
+import java.nio.file.Files;
+import java.util.Arrays;
+import java.util.Random;
+
+import static org.junit.Assert.assertArrayEquals;
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertNotNull;
+
+public class BasicCrxParserTest {
+
+    @Rule
+    public TemporaryFolder temporaryFolder = new TemporaryFolder();
+
+    private Random random = new Random(getClass().getName().hashCode());
+
+    @Test
+    public void parseMetadata() throws Exception {
+        BasicCrxParser parser = new BasicCrxParser();
+        CrxMetadata metadata;
+        Unzippage unzippage;
+        try (InputStream in = Tests.getMakePageRedCrxResource().openStream()) {
+            metadata = parser.parseMetadata(in);
+            unzippage = Unzippage.unzip(in);
+        }
+        System.out.format("headerLength=%s%nid=%s%npubkey=%s%nsignature=%s%n", metadata.headerLength(), metadata.id, metadata.pubkeyBase64, metadata.signatureBase64);
+        assertEquals("id", "dnogaomdbgfngjgalaoggcfahgeibfdc", metadata.id);
+        unzippage.allEntries().forEach(entry -> {
+            System.out.format("%s%n", entry);
+        });
+        for (String filename : Arrays.asList("background.js", "manifest.json")) {
+            ByteSource entryBytes = unzippage.getFileBytes(filename);
+            assertNotNull("entry bytes present expected", entryBytes);
+            URL reference = getClass().getResource("/make_page_red/" + filename);
+            byte[] actualBytes = entryBytes.read();
+            byte[] expectedBytes = Resources.toByteArray(reference);
+            assertArrayEquals("file bytes", expectedBytes, actualBytes);
+        }
+    }
+
+    @Test(expected = CrxParsingException.class)
+    public void parseMetadata_randomBytes() throws Exception {
+        byte[] bytes = new byte[10 * 1024];
+        random.nextBytes(bytes);
+        try (InputStream in = new ByteArrayInputStream(bytes)) {
+            new BasicCrxParser().parseMetadata(in);
+        }
+    }
+
+    @Test(expected = CrxParsingException.class)
+    public void parseMetadata_zipFile() throws Exception {
+        File zipFile = createRandomZipFile();
+        try (InputStream in = new FileInputStream(zipFile)) {
+            new BasicCrxParser().parseMetadata(in);
+        }
+    }
+
+    @Test(expected = EOFException.class)
+    public void parseMetadata_prematureEof() throws Exception {
+        byte[] bytes = "Cr24".getBytes(StandardCharsets.US_ASCII);
+        new BasicCrxParser().parseMetadata(new ByteArrayInputStream(bytes));
+    }
+
+    @Test(expected = CrxParsingException.class)
+    public void parseMetadata_blankAfterMagicNumber() throws Exception {
+        byte[] magic = "Cr24".getBytes(StandardCharsets.US_ASCII);
+        byte[] bytes = new byte[10 * 1024];
+        System.arraycopy(magic, 0, bytes, 0, magic.length);
+        CrxMetadata md = new BasicCrxParser().parseMetadata(new ByteArrayInputStream(bytes));
+        System.out.println(md);
+    }
+
+    private File createRandomZipFile() throws IOException {
+        File root = temporaryFolder.newFolder();
+        File file1 = new File(root, "file1.dat");
+        byte[] bytes1 = new byte[1024];
+        File file2 = new File(root, "file2.dat");
+        byte[] bytes2 = new byte[10 * 1024];
+
+        random.nextBytes(bytes1);
+        random.nextBytes(bytes2);
+        Files.write(file1.toPath(), bytes1);
+        Files.write(file2.toPath(), bytes2);
+        byte[] zipData = Zipping.zipDirectory(root.toPath(), null);
+        File zipFile = temporaryFolder.newFile();
+        Files.write(zipFile.toPath(), zipData);
+        return zipFile;
+    }
+
+}

crxtool/src/main/java/io/github/mike10004/crxtool/ZipConfig.java renamed to crxtool-core/src/main/java/io/github/mike10004/crxtool/ZipConfig.java

@@ -19,7 +19,6 @@
 import java.nio.file.Path;
 import java.nio.file.attribute.BasicFileAttributes;
 import java.security.KeyPair;
-import java.security.KeyPairGenerator;
 import java.security.NoSuchAlgorithmException;
 import java.security.SecureRandom;
 import java.util.ArrayList;
@@ -79,6 +78,12 @@ public static File getAddFooterManifestFile() {
         }
     }
 
+    public static KeyPair generateRsaKeyPair(long seed) throws NoSuchAlgorithmException {
+        byte[] seedBytes = Longs.toByteArray(seed);
+        SecureRandom random = new SecureRandom(seedBytes);
+        return KeyPairs.generateRsKeyPair(random);
+    }
+
     public static class DirDiff {
         public final ImmutableMap<String, Optional<ByteSource>> referenceOnly;
         public final ImmutableMap<String, Optional<ByteSource>> queryOnly;
@@ -203,13 +208,4 @@ protected void visitFile(Path referenceFile, Path queryFile) {
         return new DirDiff(referenceOnly, queryOnly, differents);
     }
 
-    // https://stackoverflow.com/a/24689684/2657036
-    public static KeyPair generateRsaKeyPair(long seed) throws NoSuchAlgorithmException {
-        KeyPairGenerator keyGen = KeyPairGenerator.getInstance("RSA");
-        byte[] seedBytes = Longs.toByteArray(seed);
-        SecureRandom random = new SecureRandom(seedBytes);
-        keyGen.initialize(1024, random);
-        return keyGen.generateKeyPair();
-    }
-
 }

crxtool-core/src/main/java/io/github/mike10004/crxtool/Zipping.java

@@ -3,6 +3,7 @@
 import com.google.common.collect.ImmutableSet;
 import com.google.common.io.ByteSource;
 import com.google.common.io.Files;
+import io.github.mike10004.crxtool.testing.Unzippage;
 import org.junit.Rule;
 import org.junit.Test;
 import org.junit.rules.TemporaryFolder;

crxtool/src/main/java/io/github/mike10004/crxtool/ZippingFileVisitor.java renamed to crxtool-core/src/main/java/io/github/mike10004/crxtool/ZippingFileVisitor.java

@@ -0,0 +1,62 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
+    <parent>
+        <artifactId>crxtool-parent</artifactId>
+        <groupId>com.github.mike10004</groupId>
+        <version>0.4-SNAPSHOT</version>
+    </parent>
+    <modelVersion>4.0.0</modelVersion>
+    <artifactId>crxtool-maven-plugin</artifactId>
+    <packaging>maven-plugin</packaging>
+    <name>crxtool-maven-plugin Maven Mojo</name>
+    <url>http://maven.apache.org</url>
+    <build>
+        <plugins>
+            <!-- creates the plugin.xml descriptor resource -->
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-plugin-plugin</artifactId>
+                <version>3.5</version>
+            </plugin>
+        </plugins>
+    </build>
+    <dependencies>
+        <dependency>
+            <groupId>org.apache.maven</groupId>
+            <artifactId>maven-plugin-api</artifactId>
+            <version>3.5.2</version>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.maven</groupId>
+            <artifactId>maven-project</artifactId>
+            <version>2.2.1</version>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.maven</groupId>
+            <artifactId>maven-core</artifactId>
+            <version>3.5.2</version>
+        </dependency>
+        <dependency>
+            <groupId>junit</groupId>
+            <artifactId>junit</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.maven.plugin-tools</groupId>
+            <artifactId>maven-plugin-annotations</artifactId>
+            <version>3.5</version>
+            <scope>provided</scope><!-- annotations are needed only to build the plugin -->
+        </dependency>
+        <dependency>
+            <groupId>${project.groupId}</groupId>
+            <artifactId>crxtool-core</artifactId>
+            <version>${project.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>com.github.mike10004</groupId>
+            <artifactId>crxtool-testing</artifactId>
+            <version>0.4-SNAPSHOT</version>
+            <scope>test</scope>
+        </dependency>
+    </dependencies>
+</project>