search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Suppress a Valgrind report.
[chromium-blink-merge.git] / extensions / browser / updater / extension_downloader.cc
blobf572fa0e562d8b5e6de4bce826c7dd11ced7cd80
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4
5 #include "extensions/browser/updater/extension_downloader.h"
6
7 #include <utility>
8
9 #include "base/bind.h"
10 #include "base/command_line.h"
11 #include "base/files/file_path.h"
12 #include "base/location.h"
13 #include "base/logging.h"
14 #include "base/metrics/histogram.h"
15 #include "base/metrics/sparse_histogram.h"
16 #include "base/stl_util.h"
17 #include "base/strings/string_number_conversions.h"
18 #include "base/strings/string_util.h"
19 #include "base/strings/stringprintf.h"
20 #include "base/time/time.h"
21 #include "base/version.h"
22 #include "content/public/browser/browser_thread.h"
23 #include "content/public/browser/notification_details.h"
24 #include "content/public/browser/notification_service.h"
25 #include "extensions/browser/extensions_browser_client.h"
26 #include "extensions/browser/notification_types.h"
27 #include "extensions/browser/updater/extension_cache.h"
28 #include "extensions/browser/updater/request_queue_impl.h"
29 #include "extensions/browser/updater/safe_manifest_parser.h"
30 #include "extensions/common/extension_urls.h"
31 #include "extensions/common/manifest_url_handlers.h"
32 #include "google_apis/gaia/identity_provider.h"
33 #include "net/base/backoff_entry.h"
34 #include "net/base/load_flags.h"
35 #include "net/base/net_errors.h"
36 #include "net/http/http_request_headers.h"
37 #include "net/http/http_status_code.h"
38 #include "net/url_request/url_fetcher.h"
39 #include "net/url_request/url_request_context_getter.h"
40 #include "net/url_request/url_request_status.h"
41
42 using base::Time;
43 using base::TimeDelta;
44 using content::BrowserThread;
45
46 namespace extensions {
47
48 const char ExtensionDownloader::kBlacklistAppID[] = "com.google.crx.blacklist";
49
50 namespace {
51
52 const net::BackoffEntry::Policy kDefaultBackoffPolicy = {
53 // Number of initial errors (in sequence) to ignore before applying
54 // exponential back-off rules.
55 0,
56
57 // Initial delay for exponential back-off in ms.
58 2000,
59
60 // Factor by which the waiting time will be multiplied.
61 2,
62
63 // Fuzzing percentage. ex: 10% will spread requests randomly
64 // between 90%-100% of the calculated time.
65 0.1,
66
67 // Maximum amount of time we are willing to delay our request in ms.
68 -1,
69
70 // Time to keep an entry from being discarded even when it
71 // has no significant state, -1 to never discard.
72 -1,
73
74 // Don't use initial delay unless the last request was an error.
75 false,
76 };
77
78 const char kAuthUserQueryKey[] = "authuser";
79
80 const int kMaxAuthUserValue = 10;
81 const int kMaxOAuth2Attempts = 3;
82
83 const char kNotFromWebstoreInstallSource[] = "notfromwebstore";
84 const char kDefaultInstallSource[] = "";
85
86 const char kGoogleDotCom[] = "google.com";
87 const char kTokenServiceConsumerId[] = "extension_downloader";
88 const char kWebstoreOAuth2Scope[] =
89 "https://www.googleapis.com/auth/chromewebstore.readonly";
90
91 #define RETRY_HISTOGRAM(name, retry_count, url) \
92 if ((url).DomainIs(kGoogleDotCom)) { \
93 UMA_HISTOGRAM_CUSTOM_COUNTS("Extensions." name "RetryCountGoogleUrl", \
94 retry_count, \
95 1, \
96 kMaxRetries, \
97 kMaxRetries + 1); \
98 } else { \
99 UMA_HISTOGRAM_CUSTOM_COUNTS("Extensions." name "RetryCountOtherUrl", \
100 retry_count, \
101 1, \
102 kMaxRetries, \
103 kMaxRetries + 1); \
104 }
105
106 bool ShouldRetryRequest(const net::URLRequestStatus& status,
107 int response_code) {
108 // Retry if the response code is a server error, or the request failed because
109 // of network errors as opposed to file errors.
110 return ((response_code >= 500 && status.is_success()) ||
111 status.status() == net::URLRequestStatus::FAILED);
112 }
113
114 // This parses and updates a URL query such that the value of the |authuser|
115 // query parameter is incremented by 1. If parameter was not present in the URL,
116 // it will be added with a value of 1. All other query keys and values are
117 // preserved as-is. Returns |false| if the user index exceeds a hard-coded
118 // maximum.
119 bool IncrementAuthUserIndex(GURL* url) {
120 int user_index = 0;
121 std::string old_query = url->query();
122 std::vector<std::string> new_query_parts;
123 url::Component query(0, old_query.length());
124 url::Component key, value;
125 while (url::ExtractQueryKeyValue(old_query.c_str(), &query, &key, &value)) {
126 std::string key_string = old_query.substr(key.begin, key.len);
127 std::string value_string = old_query.substr(value.begin, value.len);
128 if (key_string == kAuthUserQueryKey) {
129 base::StringToInt(value_string, &user_index);
130 } else {
131 new_query_parts.push_back(base::StringPrintf(
132 "%s=%s", key_string.c_str(), value_string.c_str()));
133 }
134 }
135 if (user_index >= kMaxAuthUserValue)
136 return false;
137 new_query_parts.push_back(
138 base::StringPrintf("%s=%d", kAuthUserQueryKey, user_index + 1));
139 std::string new_query_string = JoinString(new_query_parts, '&');
140 url::Component new_query(0, new_query_string.size());
141 url::Replacements<char> replacements;
142 replacements.SetQuery(new_query_string.c_str(), new_query);
143 *url = url->ReplaceComponents(replacements);
144 return true;
145 }
146
147 } // namespace
148
149 UpdateDetails::UpdateDetails(const std::string& id, const Version& version)
150 : id(id), version(version) {
151 }
152
153 UpdateDetails::~UpdateDetails() {
154 }
155
156 ExtensionDownloader::ExtensionFetch::ExtensionFetch()
157 : url(), credentials(CREDENTIALS_NONE) {
158 }
159
160 ExtensionDownloader::ExtensionFetch::ExtensionFetch(
161 const std::string& id,
162 const GURL& url,
163 const std::string& package_hash,
164 const std::string& version,
165 const std::set<int>& request_ids)
166 : id(id),
167 url(url),
168 package_hash(package_hash),
169 version(version),
170 request_ids(request_ids),
171 credentials(CREDENTIALS_NONE),
172 oauth2_attempt_count(0) {
173 }
174
175 ExtensionDownloader::ExtensionFetch::~ExtensionFetch() {
176 }
177
178 ExtensionDownloader::ExtensionDownloader(
179 ExtensionDownloaderDelegate* delegate,
180 net::URLRequestContextGetter* request_context)
181 : OAuth2TokenService::Consumer(kTokenServiceConsumerId),
182 delegate_(delegate),
183 request_context_(request_context),
184 manifests_queue_(&kDefaultBackoffPolicy,
185 base::Bind(&ExtensionDownloader::CreateManifestFetcher,
186 base::Unretained(this))),
187 extensions_queue_(&kDefaultBackoffPolicy,
188 base::Bind(&ExtensionDownloader::CreateExtensionFetcher,
189 base::Unretained(this))),
190 extension_cache_(NULL),
191 enable_extra_update_metrics_(false),
192 weak_ptr_factory_(this) {
193 DCHECK(delegate_);
194 DCHECK(request_context_.get());
195 }
196
197 ExtensionDownloader::~ExtensionDownloader() {
198 }
199
200 bool ExtensionDownloader::AddExtension(const Extension& extension,
201 int request_id) {
202 // Skip extensions with empty update URLs converted from user
203 // scripts.
204 if (extension.converted_from_user_script() &&
205 ManifestURL::GetUpdateURL(&extension).is_empty()) {
206 return false;
207 }
208
209 // If the extension updates itself from the gallery, ignore any update URL
210 // data. At the moment there is no extra data that an extension can
211 // communicate to the the gallery update servers.
212 std::string update_url_data;
213 if (!ManifestURL::UpdatesFromGallery(&extension))
214 update_url_data = delegate_->GetUpdateUrlData(extension.id());
215
216 std::string install_source;
217 bool force_update =
218 delegate_->ShouldForceUpdate(extension.id(), &install_source);
219 return AddExtensionData(extension.id(),
220 *extension.version(),
221 extension.GetType(),
222 ManifestURL::GetUpdateURL(&extension),
223 update_url_data,
224 request_id,
225 force_update,
226 install_source);
227 }
228
229 bool ExtensionDownloader::AddPendingExtension(const std::string& id,
230 const GURL& update_url,
231 int request_id) {
232 // Use a zero version to ensure that a pending extension will always
233 // be updated, and thus installed (assuming all extensions have
234 // non-zero versions).
235 Version version("0.0.0.0");
236 DCHECK(version.IsValid());
237
238 return AddExtensionData(id,
239 version,
240 Manifest::TYPE_UNKNOWN,
241 update_url,
242 std::string(),
243 request_id,
244 false,
245 std::string());
246 }
247
248 void ExtensionDownloader::StartAllPending(ExtensionCache* cache) {
249 if (cache) {
250 extension_cache_ = cache;
251 extension_cache_->Start(base::Bind(&ExtensionDownloader::DoStartAllPending,
252 weak_ptr_factory_.GetWeakPtr()));
253 } else {
254 DoStartAllPending();
255 }
256 }
257
258 void ExtensionDownloader::DoStartAllPending() {
259 ReportStats();
260 url_stats_ = URLStats();
261
262 for (FetchMap::iterator it = fetches_preparing_.begin();
263 it != fetches_preparing_.end();
264 ++it) {
265 std::vector<linked_ptr<ManifestFetchData>>& list = it->second;
266 for (size_t i = 0; i < list.size(); ++i) {
267 StartUpdateCheck(scoped_ptr<ManifestFetchData>(list[i].release()));
268 }
269 }
270 fetches_preparing_.clear();
271 }
272
273 void ExtensionDownloader::StartBlacklistUpdate(
274 const std::string& version,
275 const ManifestFetchData::PingData& ping_data,
276 int request_id) {
277 // Note: it is very important that we use the https version of the update
278 // url here to avoid DNS hijacking of the blacklist, which is not validated
279 // by a public key signature like .crx files are.
280 scoped_ptr<ManifestFetchData> blacklist_fetch(CreateManifestFetchData(
281 extension_urls::GetWebstoreUpdateUrl(), request_id));
282 DCHECK(blacklist_fetch->base_url().SchemeIsSecure());
283 blacklist_fetch->AddExtension(kBlacklistAppID,
284 version,
285 &ping_data,
286 std::string(),
287 kDefaultInstallSource,
288 false);
289 StartUpdateCheck(blacklist_fetch.Pass());
290 }
291
292 void ExtensionDownloader::SetWebstoreIdentityProvider(
293 scoped_ptr<IdentityProvider> identity_provider) {
294 identity_provider_.swap(identity_provider);
295 }
296
297 bool ExtensionDownloader::AddExtensionData(
298 const std::string& id,
299 const Version& version,
300 Manifest::Type extension_type,
301 const GURL& extension_update_url,
302 const std::string& update_url_data,
303 int request_id,
304 bool force_update,
305 const std::string& install_source_override) {
306 GURL update_url(extension_update_url);
307 // Skip extensions with non-empty invalid update URLs.
308 if (!update_url.is_empty() && !update_url.is_valid()) {
309 LOG(WARNING) << "Extension " << id << " has invalid update url "
310 << update_url;
311 return false;
312 }
313
314 // Make sure we use SSL for store-hosted extensions.
315 if (extension_urls::IsWebstoreUpdateUrl(update_url) &&
316 !update_url.SchemeIsSecure())
317 update_url = extension_urls::GetWebstoreUpdateUrl();
318
319 // Skip extensions with empty IDs.
320 if (id.empty()) {
321 LOG(WARNING) << "Found extension with empty ID";
322 return false;
323 }
324
325 if (update_url.DomainIs(kGoogleDotCom)) {
326 url_stats_.google_url_count++;
327 } else if (update_url.is_empty()) {
328 url_stats_.no_url_count++;
329 // Fill in default update URL.
330 update_url = extension_urls::GetWebstoreUpdateUrl();
331 } else {
332 url_stats_.other_url_count++;
333 }
334
335 switch (extension_type) {
336 case Manifest::TYPE_THEME:
337 ++url_stats_.theme_count;
338 break;
339 case Manifest::TYPE_EXTENSION:
340 case Manifest::TYPE_USER_SCRIPT:
341 ++url_stats_.extension_count;
342 break;
343 case Manifest::TYPE_HOSTED_APP:
344 case Manifest::TYPE_LEGACY_PACKAGED_APP:
345 ++url_stats_.app_count;
346 break;
347 case Manifest::TYPE_PLATFORM_APP:
348 ++url_stats_.platform_app_count;
349 break;
350 case Manifest::TYPE_UNKNOWN:
351 default:
352 ++url_stats_.pending_count;
353 break;
354 }
355
356 std::vector<GURL> update_urls;
357 update_urls.push_back(update_url);
358 // If metrics are enabled, also add to ManifestFetchData for the
359 // webstore update URL.
360 if (!extension_urls::IsWebstoreUpdateUrl(update_url) &&
361 enable_extra_update_metrics_) {
362 update_urls.push_back(extension_urls::GetWebstoreUpdateUrl());
363 }
364
365 for (size_t i = 0; i < update_urls.size(); ++i) {
366 DCHECK(!update_urls[i].is_empty());
367 DCHECK(update_urls[i].is_valid());
368
369 std::string install_source =
370 i == 0 ? kDefaultInstallSource : kNotFromWebstoreInstallSource;
371 if (!install_source_override.empty()) {
372 install_source = install_source_override;
373 }
374
375 ManifestFetchData::PingData ping_data;
376 ManifestFetchData::PingData* optional_ping_data = NULL;
377 if (delegate_->GetPingDataForExtension(id, &ping_data))
378 optional_ping_data = &ping_data;
379
380 // Find or create a ManifestFetchData to add this extension to.
381 bool added = false;
382 FetchMap::iterator existing_iter =
383 fetches_preparing_.find(std::make_pair(request_id, update_urls[i]));
384 if (existing_iter != fetches_preparing_.end() &&
385 !existing_iter->second.empty()) {
386 // Try to add to the ManifestFetchData at the end of the list.
387 ManifestFetchData* existing_fetch = existing_iter->second.back().get();
388 if (existing_fetch->AddExtension(id,
389 version.GetString(),
390 optional_ping_data,
391 update_url_data,
392 install_source,
393 force_update)) {
394 added = true;
395 }
396 }
397 if (!added) {
398 // Otherwise add a new element to the list, if the list doesn't exist or
399 // if its last element is already full.
400 linked_ptr<ManifestFetchData> fetch(
401 CreateManifestFetchData(update_urls[i], request_id));
402 fetches_preparing_[std::make_pair(request_id, update_urls[i])].push_back(
403 fetch);
404 added = fetch->AddExtension(id,
405 version.GetString(),
406 optional_ping_data,
407 update_url_data,
408 install_source,
409 force_update);
410 DCHECK(added);
411 }
412 }
413
414 return true;
415 }
416
417 void ExtensionDownloader::ReportStats() const {
418 UMA_HISTOGRAM_COUNTS_100("Extensions.UpdateCheckExtension",
419 url_stats_.extension_count);
420 UMA_HISTOGRAM_COUNTS_100("Extensions.UpdateCheckTheme",
421 url_stats_.theme_count);
422 UMA_HISTOGRAM_COUNTS_100("Extensions.UpdateCheckApp", url_stats_.app_count);
423 UMA_HISTOGRAM_COUNTS_100("Extensions.UpdateCheckPackagedApp",
424 url_stats_.platform_app_count);
425 UMA_HISTOGRAM_COUNTS_100("Extensions.UpdateCheckPending",
426 url_stats_.pending_count);
427 UMA_HISTOGRAM_COUNTS_100("Extensions.UpdateCheckGoogleUrl",
428 url_stats_.google_url_count);
429 UMA_HISTOGRAM_COUNTS_100("Extensions.UpdateCheckOtherUrl",
430 url_stats_.other_url_count);
431 UMA_HISTOGRAM_COUNTS_100("Extensions.UpdateCheckNoUrl",
432 url_stats_.no_url_count);
433 }
434
435 void ExtensionDownloader::StartUpdateCheck(
436 scoped_ptr<ManifestFetchData> fetch_data) {
437 const std::set<std::string>& id_set(fetch_data->extension_ids());
438
439 if (!ExtensionsBrowserClient::Get()->IsBackgroundUpdateAllowed()) {
440 NotifyExtensionsDownloadFailed(id_set,
441 fetch_data->request_ids(),
442 ExtensionDownloaderDelegate::DISABLED);
443 }
444
445 RequestQueue<ManifestFetchData>::iterator i;
446 for (i = manifests_queue_.begin(); i != manifests_queue_.end(); ++i) {
447 if (fetch_data->full_url() == i->full_url()) {
448 // This url is already scheduled to be fetched.
449 i->Merge(*fetch_data);
450 return;
451 }
452 }
453
454 if (manifests_queue_.active_request() &&
455 manifests_queue_.active_request()->full_url() == fetch_data->full_url()) {
456 manifests_queue_.active_request()->Merge(*fetch_data);
457 } else {
458 UMA_HISTOGRAM_COUNTS(
459 "Extensions.UpdateCheckUrlLength",
460 fetch_data->full_url().possibly_invalid_spec().length());
461
462 manifests_queue_.ScheduleRequest(fetch_data.Pass());
463 }
464 }
465
466 void ExtensionDownloader::CreateManifestFetcher() {
467 if (VLOG_IS_ON(2)) {
468 std::vector<std::string> id_vector(
469 manifests_queue_.active_request()->extension_ids().begin(),
470 manifests_queue_.active_request()->extension_ids().end());
471 std::string id_list = JoinString(id_vector, ',');
472 VLOG(2) << "Fetching " << manifests_queue_.active_request()->full_url()
473 << " for " << id_list;
474 }
475
476 manifest_fetcher_.reset(
477 net::URLFetcher::Create(kManifestFetcherId,
478 manifests_queue_.active_request()->full_url(),
479 net::URLFetcher::GET,
480 this));
481 manifest_fetcher_->SetRequestContext(request_context_.get());
482 manifest_fetcher_->SetLoadFlags(net::LOAD_DO_NOT_SEND_COOKIES |
483 net::LOAD_DO_NOT_SAVE_COOKIES |
484 net::LOAD_DISABLE_CACHE);
485 // Update checks can be interrupted if a network change is detected; this is
486 // common for the retail mode AppPack on ChromeOS. Retrying once should be
487 // enough to recover in those cases; let the fetcher retry up to 3 times
488 // just in case. http://crosbug.com/130602
489 manifest_fetcher_->SetAutomaticallyRetryOnNetworkChanges(3);
490 manifest_fetcher_->Start();
491 }
492
493 void ExtensionDownloader::OnURLFetchComplete(const net::URLFetcher* source) {
494 VLOG(2) << source->GetResponseCode() << " " << source->GetURL();
495
496 if (source == manifest_fetcher_.get()) {
497 std::string data;
498 source->GetResponseAsString(&data);
499 OnManifestFetchComplete(source->GetURL(),
500 source->GetStatus(),
501 source->GetResponseCode(),
502 source->GetBackoffDelay(),
503 data);
504 } else if (source == extension_fetcher_.get()) {
505 OnCRXFetchComplete(source,
506 source->GetURL(),
507 source->GetStatus(),
508 source->GetResponseCode(),
509 source->GetBackoffDelay());
510 } else {
511 NOTREACHED();
512 }
513 }
514
515 void ExtensionDownloader::OnManifestFetchComplete(
516 const GURL& url,
517 const net::URLRequestStatus& status,
518 int response_code,
519 const base::TimeDelta& backoff_delay,
520 const std::string& data) {
521 // We want to try parsing the manifest, and if it indicates updates are
522 // available, we want to fire off requests to fetch those updates.
523 if (status.status() == net::URLRequestStatus::SUCCESS &&
524 (response_code == 200 || (url.SchemeIsFile() && data.length() > 0))) {
525 RETRY_HISTOGRAM("ManifestFetchSuccess",
526 manifests_queue_.active_request_failure_count(),
527 url);
528 VLOG(2) << "beginning manifest parse for " << url;
529 scoped_refptr<SafeManifestParser> safe_parser(new SafeManifestParser(
530 data,
531 base::Bind(
532 &ExtensionDownloader::HandleManifestResults,
533 weak_ptr_factory_.GetWeakPtr(),
534 base::Owned(manifests_queue_.reset_active_request().release()))));
535 safe_parser->Start();
536 } else {
537 VLOG(1) << "Failed to fetch manifest '" << url.possibly_invalid_spec()
538 << "' response code:" << response_code;
539 if (ShouldRetryRequest(status, response_code) &&
540 manifests_queue_.active_request_failure_count() < kMaxRetries) {
541 manifests_queue_.RetryRequest(backoff_delay);
542 } else {
543 RETRY_HISTOGRAM("ManifestFetchFailure",
544 manifests_queue_.active_request_failure_count(),
545 url);
546 NotifyExtensionsDownloadFailed(
547 manifests_queue_.active_request()->extension_ids(),
548 manifests_queue_.active_request()->request_ids(),
549 ExtensionDownloaderDelegate::MANIFEST_FETCH_FAILED);
550 }
551 }
552 manifest_fetcher_.reset();
553 manifests_queue_.reset_active_request();
554
555 // If we have any pending manifest requests, fire off the next one.
556 manifests_queue_.StartNextRequest();
557 }
558
559 void ExtensionDownloader::HandleManifestResults(
560 const ManifestFetchData* fetch_data,
561 const UpdateManifest::Results* results) {
562 // Keep a list of extensions that will not be updated, so that the |delegate_|
563 // can be notified once we're done here.
564 std::set<std::string> not_updated(fetch_data->extension_ids());
565
566 if (!results) {
567 VLOG(2) << "parsing manifest failed (" << fetch_data->full_url() << ")";
568 NotifyExtensionsDownloadFailed(
569 not_updated, fetch_data->request_ids(),
570 ExtensionDownloaderDelegate::MANIFEST_INVALID);
571 return;
572 } else {
573 VLOG(2) << "parsing manifest succeeded (" << fetch_data->full_url() << ")";
574 }
575
576 // Examine the parsed manifest and kick off fetches of any new crx files.
577 std::vector<int> updates;
578 DetermineUpdates(*fetch_data, *results, &updates);
579 for (size_t i = 0; i < updates.size(); i++) {
580 const UpdateManifest::Result* update = &(results->list.at(updates[i]));
581 const std::string& id = update->extension_id;
582 not_updated.erase(id);
583
584 GURL crx_url = update->crx_url;
585 if (id != kBlacklistAppID) {
586 NotifyUpdateFound(update->extension_id, update->version);
587 } else {
588 // The URL of the blacklist file is returned by the server and we need to
589 // be sure that we continue to be able to reliably detect whether a URL
590 // references a blacklist file.
591 DCHECK(extension_urls::IsBlacklistUpdateUrl(crx_url)) << crx_url;
592
593 // Force https (crbug.com/129587).
594 if (!crx_url.SchemeIsSecure()) {
595 url::Replacements<char> replacements;
596 std::string scheme("https");
597 replacements.SetScheme(scheme.c_str(),
598 url::Component(0, scheme.size()));
599 crx_url = crx_url.ReplaceComponents(replacements);
600 }
601 }
602 scoped_ptr<ExtensionFetch> fetch(
603 new ExtensionFetch(update->extension_id, crx_url, update->package_hash,
604 update->version, fetch_data->request_ids()));
605 FetchUpdatedExtension(fetch.Pass());
606 }
607
608 // If the manifest response included a <daystart> element, we want to save
609 // that value for any extensions which had sent a ping in the request.
610 if (fetch_data->base_url().DomainIs(kGoogleDotCom) &&
611 results->daystart_elapsed_seconds >= 0) {
612 Time day_start =
613 Time::Now() - TimeDelta::FromSeconds(results->daystart_elapsed_seconds);
614
615 const std::set<std::string>& extension_ids = fetch_data->extension_ids();
616 std::set<std::string>::const_iterator i;
617 for (i = extension_ids.begin(); i != extension_ids.end(); i++) {
618 const std::string& id = *i;
619 ExtensionDownloaderDelegate::PingResult& result = ping_results_[id];
620 result.did_ping = fetch_data->DidPing(id, ManifestFetchData::ROLLCALL);
621 result.day_start = day_start;
622 }
623 }
624
625 NotifyExtensionsDownloadFailed(
626 not_updated, fetch_data->request_ids(),
627 ExtensionDownloaderDelegate::NO_UPDATE_AVAILABLE);
628 }
629
630 void ExtensionDownloader::DetermineUpdates(
631 const ManifestFetchData& fetch_data,
632 const UpdateManifest::Results& possible_updates,
633 std::vector<int>* result) {
634 for (size_t i = 0; i < possible_updates.list.size(); i++) {
635 const UpdateManifest::Result* update = &possible_updates.list[i];
636 const std::string& id = update->extension_id;
637
638 if (!fetch_data.Includes(id)) {
639 VLOG(2) << "Ignoring " << id << " from this manifest";
640 continue;
641 }
642
643 if (VLOG_IS_ON(2)) {
644 if (update->version.empty())
645 VLOG(2) << "manifest indicates " << id << " has no update";
646 else
647 VLOG(2) << "manifest indicates " << id << " latest version is '"
648 << update->version << "'";
649 }
650
651 if (!delegate_->IsExtensionPending(id)) {
652 // If we're not installing pending extension, and the update
653 // version is the same or older than what's already installed,
654 // we don't want it.
655 std::string version;
656 if (!delegate_->GetExtensionExistingVersion(id, &version)) {
657 VLOG(2) << id << " is not installed";
658 continue;
659 }
660
661 VLOG(2) << id << " is at '" << version << "'";
662
663 // We should skip the version check if update was forced.
664 if (!fetch_data.DidForceUpdate(id)) {
665 Version existing_version(version);
666 Version update_version(update->version);
667 if (!update_version.IsValid() ||
668 update_version.CompareTo(existing_version) <= 0) {
669 continue;
670 }
671 }
672 }
673
674 // If the update specifies a browser minimum version, do we qualify?
675 if (update->browser_min_version.length() > 0 &&
676 !ExtensionsBrowserClient::Get()->IsMinBrowserVersionSupported(
677 update->browser_min_version)) {
678 // TODO(asargent) - We may want this to show up in the extensions UI
679 // eventually. (http://crbug.com/12547).
680 LOG(WARNING) << "Updated version of extension " << id
681 << " available, but requires chrome version "
682 << update->browser_min_version;
683 continue;
684 }
685 VLOG(2) << "will try to update " << id;
686 result->push_back(i);
687 }
688 }
689
690 // Begins (or queues up) download of an updated extension.
691 void ExtensionDownloader::FetchUpdatedExtension(
692 scoped_ptr<ExtensionFetch> fetch_data) {
693 if (!fetch_data->url.is_valid()) {
694 // TODO(asargent): This can sometimes be invalid. See crbug.com/130881.
695 LOG(ERROR) << "Invalid URL: '" << fetch_data->url.possibly_invalid_spec()
696 << "' for extension " << fetch_data->id;
697 return;
698 }
699
700 for (RequestQueue<ExtensionFetch>::iterator iter = extensions_queue_.begin();
701 iter != extensions_queue_.end();
702 ++iter) {
703 if (iter->id == fetch_data->id || iter->url == fetch_data->url) {
704 iter->request_ids.insert(fetch_data->request_ids.begin(),
705 fetch_data->request_ids.end());
706 return; // already scheduled
707 }
708 }
709
710 if (extensions_queue_.active_request() &&
711 extensions_queue_.active_request()->url == fetch_data->url) {
712 extensions_queue_.active_request()->request_ids.insert(
713 fetch_data->request_ids.begin(), fetch_data->request_ids.end());
714 } else {
715 std::string version;
716 if (extension_cache_ &&
717 extension_cache_->GetExtension(fetch_data->id, NULL, &version) &&
718 version == fetch_data->version) {
719 base::FilePath crx_path;
720 // Now get .crx file path and mark extension as used.
721 extension_cache_->GetExtension(fetch_data->id, &crx_path, &version);
722 NotifyDelegateDownloadFinished(fetch_data.Pass(), crx_path, false);
723 } else {
724 extensions_queue_.ScheduleRequest(fetch_data.Pass());
725 }
726 }
727 }
728
729 void ExtensionDownloader::NotifyDelegateDownloadFinished(
730 scoped_ptr<ExtensionFetch> fetch_data,
731 const base::FilePath& crx_path,
732 bool file_ownership_passed) {
733 delegate_->OnExtensionDownloadFinished(
734 CRXFileInfo(fetch_data->id, crx_path, fetch_data->package_hash),
735 file_ownership_passed, fetch_data->url, fetch_data->version,
736 ping_results_[fetch_data->id], fetch_data->request_ids);
737 ping_results_.erase(fetch_data->id);
738 }
739
740 void ExtensionDownloader::CreateExtensionFetcher() {
741 const ExtensionFetch* fetch = extensions_queue_.active_request();
742 extension_fetcher_.reset(net::URLFetcher::Create(
743 kExtensionFetcherId, fetch->url, net::URLFetcher::GET, this));
744 extension_fetcher_->SetRequestContext(request_context_.get());
745 extension_fetcher_->SetAutomaticallyRetryOnNetworkChanges(3);
746
747 int load_flags = net::LOAD_DISABLE_CACHE;
748 bool is_secure = fetch->url.SchemeIsSecure();
749 if (fetch->credentials != ExtensionFetch::CREDENTIALS_COOKIES || !is_secure) {
750 load_flags |= net::LOAD_DO_NOT_SEND_COOKIES | net::LOAD_DO_NOT_SAVE_COOKIES;
751 }
752 extension_fetcher_->SetLoadFlags(load_flags);
753
754 // Download CRX files to a temp file. The blacklist is small and will be
755 // processed in memory, so it is fetched into a string.
756 if (fetch->id != kBlacklistAppID) {
757 extension_fetcher_->SaveResponseToTemporaryFile(
758 BrowserThread::GetMessageLoopProxyForThread(BrowserThread::FILE));
759 }
760
761 if (fetch->credentials == ExtensionFetch::CREDENTIALS_OAUTH2_TOKEN &&
762 is_secure) {
763 if (access_token_.empty()) {
764 // We should try OAuth2, but we have no token cached. This
765 // ExtensionFetcher will be started once the token fetch is complete,
766 // in either OnTokenFetchSuccess or OnTokenFetchFailure.
767 DCHECK(identity_provider_.get());
768 OAuth2TokenService::ScopeSet webstore_scopes;
769 webstore_scopes.insert(kWebstoreOAuth2Scope);
770 access_token_request_ =
771 identity_provider_->GetTokenService()->StartRequest(
772 identity_provider_->GetActiveAccountId(), webstore_scopes, this);
773 return;
774 }
775 extension_fetcher_->AddExtraRequestHeader(
776 base::StringPrintf("%s: Bearer %s",
777 net::HttpRequestHeaders::kAuthorization,
778 access_token_.c_str()));
779 }
780
781 VLOG(2) << "Starting fetch of " << fetch->url << " for " << fetch->id;
782 extension_fetcher_->Start();
783 }
784
785 void ExtensionDownloader::OnCRXFetchComplete(
786 const net::URLFetcher* source,
787 const GURL& url,
788 const net::URLRequestStatus& status,
789 int response_code,
790 const base::TimeDelta& backoff_delay) {
791 ExtensionFetch& active_request = *extensions_queue_.active_request();
792 const std::string& id = active_request.id;
793 if (status.status() == net::URLRequestStatus::SUCCESS &&
794 (response_code == 200 || url.SchemeIsFile())) {
795 RETRY_HISTOGRAM("CrxFetchSuccess",
796 extensions_queue_.active_request_failure_count(),
797 url);
798 base::FilePath crx_path;
799 // Take ownership of the file at |crx_path|.
800 CHECK(source->GetResponseAsFilePath(true, &crx_path));
801 scoped_ptr<ExtensionFetch> fetch_data =
802 extensions_queue_.reset_active_request();
803 if (extension_cache_) {
804 const std::string& version = fetch_data->version;
805 extension_cache_->PutExtension(
806 id,
807 crx_path,
808 version,
809 base::Bind(&ExtensionDownloader::NotifyDelegateDownloadFinished,
810 weak_ptr_factory_.GetWeakPtr(),
811 base::Passed(&fetch_data)));
812 } else {
813 NotifyDelegateDownloadFinished(fetch_data.Pass(), crx_path, true);
814 }
815 } else if (IterateFetchCredentialsAfterFailure(
816 &active_request, status, response_code)) {
817 extensions_queue_.RetryRequest(backoff_delay);
818 } else {
819 const std::set<int>& request_ids = active_request.request_ids;
820 const ExtensionDownloaderDelegate::PingResult& ping = ping_results_[id];
821 VLOG(1) << "Failed to fetch extension '" << url.possibly_invalid_spec()
822 << "' response code:" << response_code;
823 if (ShouldRetryRequest(status, response_code) &&
824 extensions_queue_.active_request_failure_count() < kMaxRetries) {
825 extensions_queue_.RetryRequest(backoff_delay);
826 } else {
827 RETRY_HISTOGRAM("CrxFetchFailure",
828 extensions_queue_.active_request_failure_count(),
829 url);
830 // status.error() is 0 (net::OK) or negative. (See net/base/net_errors.h)
831 UMA_HISTOGRAM_SPARSE_SLOWLY("Extensions.CrxFetchError", -status.error());
832 delegate_->OnExtensionDownloadFailed(
833 id, ExtensionDownloaderDelegate::CRX_FETCH_FAILED, ping, request_ids);
834 }
835 ping_results_.erase(id);
836 extensions_queue_.reset_active_request();
837 }
838
839 extension_fetcher_.reset();
840
841 // If there are any pending downloads left, start the next one.
842 extensions_queue_.StartNextRequest();
843 }
844
845 void ExtensionDownloader::NotifyExtensionsDownloadFailed(
846 const std::set<std::string>& extension_ids,
847 const std::set<int>& request_ids,
848 ExtensionDownloaderDelegate::Error error) {
849 for (std::set<std::string>::const_iterator it = extension_ids.begin();
850 it != extension_ids.end();
851 ++it) {
852 const ExtensionDownloaderDelegate::PingResult& ping = ping_results_[*it];
853 delegate_->OnExtensionDownloadFailed(*it, error, ping, request_ids);
854 ping_results_.erase(*it);
855 }
856 }
857
858 void ExtensionDownloader::NotifyUpdateFound(const std::string& id,
859 const std::string& version) {
860 UpdateDetails updateInfo(id, Version(version));
861 content::NotificationService::current()->Notify(
862 extensions::NOTIFICATION_EXTENSION_UPDATE_FOUND,
863 content::NotificationService::AllBrowserContextsAndSources(),
864 content::Details<UpdateDetails>(&updateInfo));
865 }
866
867 bool ExtensionDownloader::IterateFetchCredentialsAfterFailure(
868 ExtensionFetch* fetch,
869 const net::URLRequestStatus& status,
870 int response_code) {
871 bool auth_failure = status.status() == net::URLRequestStatus::CANCELED ||
872 (status.status() == net::URLRequestStatus::SUCCESS &&
873 (response_code == net::HTTP_UNAUTHORIZED ||
874 response_code == net::HTTP_FORBIDDEN));
875 if (!auth_failure) {
876 return false;
877 }
878 // Here we decide what to do next if the server refused to authorize this
879 // fetch.
880 switch (fetch->credentials) {
881 case ExtensionFetch::CREDENTIALS_NONE:
882 if (fetch->url.DomainIs(kGoogleDotCom) && identity_provider_) {
883 fetch->credentials = ExtensionFetch::CREDENTIALS_OAUTH2_TOKEN;
884 } else {
885 fetch->credentials = ExtensionFetch::CREDENTIALS_COOKIES;
886 }
887 return true;
888 case ExtensionFetch::CREDENTIALS_OAUTH2_TOKEN:
889 fetch->oauth2_attempt_count++;
890 // OAuth2 may fail due to an expired access token, in which case we
891 // should invalidate the token and try again.
892 if (response_code == net::HTTP_UNAUTHORIZED &&
893 fetch->oauth2_attempt_count <= kMaxOAuth2Attempts) {
894 DCHECK(identity_provider_.get());
895 OAuth2TokenService::ScopeSet webstore_scopes;
896 webstore_scopes.insert(kWebstoreOAuth2Scope);
897 identity_provider_->GetTokenService()->InvalidateToken(
898 identity_provider_->GetActiveAccountId(),
899 webstore_scopes,
900 access_token_);
901 access_token_.clear();
902 return true;
903 }
904 // Either there is no Gaia identity available, the active identity
905 // doesn't have access to this resource, or the server keeps returning
906 // 401s and we've retried too many times. Fall back on cookies.
907 if (access_token_.empty() || response_code == net::HTTP_FORBIDDEN ||
908 fetch->oauth2_attempt_count > kMaxOAuth2Attempts) {
909 fetch->credentials = ExtensionFetch::CREDENTIALS_COOKIES;
910 return true;
911 }
912 // Something else is wrong. Time to give up.
913 return false;
914 case ExtensionFetch::CREDENTIALS_COOKIES:
915 if (response_code == net::HTTP_FORBIDDEN) {
916 // Try the next session identity, up to some maximum.
917 return IncrementAuthUserIndex(&fetch->url);
918 }
919 return false;
920 default:
921 NOTREACHED();
922 }
923 NOTREACHED();
924 return false;
925 }
926
927 void ExtensionDownloader::OnGetTokenSuccess(
928 const OAuth2TokenService::Request* request,
929 const std::string& access_token,
930 const base::Time& expiration_time) {
931 access_token_ = access_token;
932 extension_fetcher_->AddExtraRequestHeader(
933 base::StringPrintf("%s: Bearer %s",
934 net::HttpRequestHeaders::kAuthorization,
935 access_token_.c_str()));
936 extension_fetcher_->Start();
937 }
938
939 void ExtensionDownloader::OnGetTokenFailure(
940 const OAuth2TokenService::Request* request,
941 const GoogleServiceAuthError& error) {
942 // If we fail to get an access token, kick the pending fetch and let it fall
943 // back on cookies.
944 extension_fetcher_->Start();
945 }
946
947 ManifestFetchData* ExtensionDownloader::CreateManifestFetchData(
948 const GURL& update_url,
949 int request_id) {
950 ManifestFetchData::PingMode ping_mode = ManifestFetchData::NO_PING;
951 if (update_url.DomainIs(ping_enabled_domain_.c_str()))
952 ping_mode = ManifestFetchData::PING_WITH_ENABLED_STATE;
953 return new ManifestFetchData(
954 update_url, request_id, brand_code_, manifest_query_params_, ping_mode);
955 }
956
957 } // namespace extensions