Populate length and digest for ZIP files contained in ZIPs

Also removed arraysize in this file, since it has been deprecated in favor of base::size(). Bug: 831394 Change-Id: I8b279a188d786f3ef234565de8e4647970b0f0ae Reviewed-on: https://chromium-review.googlesource.com/1114223Reviewed-by: Ken Rockot <rockot@chromium.org> Reviewed-by: Varun Khaneja <vakh@chromium.org> Commit-Queue: Daniel Rubery <drubery@chromium.org> Cr-Commit-Position: refs/heads/master@{#570821}

Populate length and digest for ZIP files contained in ZIPs
Also removed arraysize in this file, since it has been deprecated in favor of base::size(). Bug: 831394 Change-Id: I8b279a188d786f3ef234565de8e4647970b0f0ae Reviewed-on: https://chromium-review.googlesource.com/1114223Reviewed-by: Ken Rockot <rockot@chromium.org> Reviewed-by: Varun Khaneja <vakh@chromium.org> Commit-Queue: Daniel Rubery <drubery@chromium.org> Cr-Commit-Position: refs/heads/master@{#570821}
8731e71d · Daniel Rubery · Commit Bot · aa87cb3c · 8731e71d · 8731e71d
Commit 8731e71d authored Jun 27, 2018 by Daniel Rubery Committed by Commit Bot Jun 27, 2018
2 changed files
--- a/chrome/common/safe_browsing/zip_analyzer.cc
+++ b/chrome/common/safe_browsing/zip_analyzer.cc
@@ -54,8 +54,7 @@ class HashingFileWriter : public zip::FileWriterDelegate {
 HashingFileWriter::HashingFileWriter(base::File* file)
    : zip::FileWriterDelegate(file),
-      sha256_(crypto::SecureHash::Create(crypto::SecureHash::SHA256)) {
+      sha256_(crypto::SecureHash::Create(crypto::SecureHash::SHA256)) {}
-}
 bool HashingFileWriter::WriteBytes(const char* data, int num_bytes) {
  if (!zip::FileWriterDelegate::WriteBytes(data, num_bytes))
@@ -80,8 +79,7 @@ bool StringIsMachOMagic(std::string bytes) {
 }
 #endif  // OS_MACOSX
-void AnalyzeContainedFile(
+void SetLengthAndDigestForContainedFile(
-    const scoped_refptr<BinaryFeatureExtractor>& binary_feature_extractor,
    const base::FilePath& file_path,
    zip::ZipReader* reader,
    base::File* temp_file,
@@ -96,20 +94,25 @@ void AnalyzeContainedFile(
  if (reader->ExtractCurrentEntry(&writer,
                                  std::numeric_limits<uint64_t>::max())) {
    uint8_t digest[crypto::kSHA256Length];
-    writer.ComputeDigest(&digest[0], arraysize(digest));
+    writer.ComputeDigest(&digest[0], base::size(digest));
    archived_binary->mutable_digests()->set_sha256(&digest[0],
-                                                   arraysize(digest));
+                                                   base::size(digest));
-    if (!binary_feature_extractor->ExtractImageFeaturesFromFile(
+  }
-            temp_file->Duplicate(),
+}
-            BinaryFeatureExtractor::kDefaultOptions,
-            archived_binary->mutable_image_headers(),
+void AnalyzeContainedBinary(
-            archived_binary->mutable_signature()->mutable_signed_data())) {
+    const scoped_refptr<BinaryFeatureExtractor>& binary_feature_extractor,
-      archived_binary->clear_image_headers();
+    base::File* temp_file,
-      archived_binary->clear_signature();
+    ClientDownloadRequest::ArchivedBinary* archived_binary) {
-    } else if (!archived_binary->signature().signed_data_size()) {
+  if (!binary_feature_extractor->ExtractImageFeaturesFromFile(
-      // No SignedData blobs were extracted, so clear the signature field.
+          temp_file->Duplicate(), BinaryFeatureExtractor::kDefaultOptions,
-      archived_binary->clear_signature();
+          archived_binary->mutable_image_headers(),
-    }
+          archived_binary->mutable_signature()->mutable_signed_data())) {
+    archived_binary->clear_image_headers();
+    archived_binary->clear_signature();
+  } else if (!archived_binary->signature().signed_data_size()) {
+    // No SignedData blobs were extracted, so clear the signature field.
+    archived_binary->clear_signature();
  }
 }
@@ -159,10 +162,9 @@ void AnalyzeZipFile(base::File zip_file,
      archived_archive_filenames.insert(file.BaseName());
      ClientDownloadRequest::ArchivedBinary* archived_archive =
          results->archived_binary.Add();
-      std::string file_basename_utf8(file.BaseName().AsUTF8Unsafe());
-      if (base::StreamingUtf8Validator::Validate(file_basename_utf8))
-        archived_archive->set_file_basename(file_basename_utf8);
      archived_archive->set_download_type(ClientDownloadRequest::ARCHIVE);
+      SetLengthAndDigestForContainedFile(file, &reader, &temp_file,
+                                         archived_archive);
    } else if (current_entry_is_executable) {
 #if defined(OS_MACOSX)
      // This check prevents running analysis on .app files since they are
@@ -175,8 +177,12 @@ void AnalyzeZipFile(base::File zip_file,
 #endif  // OS_MACOSX
        DVLOG(2) << "Downloaded a zipped executable: " << file.value();
        results->has_executable = true;
-        AnalyzeContainedFile(binary_feature_extractor, file, &reader,
+        ClientDownloadRequest::ArchivedBinary* archived_binary =
-                             &temp_file, results->archived_binary.Add());
+            results->archived_binary.Add();
+        SetLengthAndDigestForContainedFile(file, &reader, &temp_file,
+                                           archived_binary);
+        AnalyzeContainedBinary(binary_feature_extractor, &temp_file,
+                               archived_binary);
 #if defined(OS_MACOSX)
      }
 #endif  // OS_MACOSX

--- a/chrome/services/file_util/public/cpp/sandboxed_zip_analyzer_unittest.cc
+++ b/chrome/services/file_util/public/cpp/sandboxed_zip_analyzer_unittest.cc
@@ -304,6 +304,8 @@ TEST_F(SandboxedZipAnalyzerTest, ZippedArchiveNoBinaries) {
  ASSERT_EQ(1u, results.archived_archive_filenames.size());
  EXPECT_EQ(FILE_PATH_LITERAL("hello.zip"),
            results.archived_archive_filenames[0].value());
+  EXPECT_GT(results.archived_binary[0].length(), 0);
+  EXPECT_FALSE(results.archived_binary[0].digests().sha256().empty());
 }
 TEST_F(SandboxedZipAnalyzerTest, ZippedRarArchiveNoBinaries) {