widevine-partner/android
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Remove Stale Licenses on Reprovisioning

Browse Source 
Merges change 267713c (Remove stale licenses on reprovisioning) from
the Widevine CDM repository.  This change removes licenses belonging
to the previous provisioning when provisioning changes.

Bug: 9761923
Change-Id: I473816dd11dd950f4fb009b5b004630bd2d2b579
This commit is contained in:
John "Juce" Bruce
2013-08-08 14:57:40 -07:00
parent ba66224ef4
commit 0fa3e16999
13 changed files with 250 additions and 104 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
libwvdrmengine/cdm/core/include/crypto_session.h
View File

@@ -22,17 +22,9 @@ class CryptoSession {
CryptoSession(); CryptoSession();
~CryptoSession(); ~CryptoSession();
typedef enum {
kSecurityLevelUninitialized,
kSecurityLevelL1,
kSecurityLevelL2,
kSecurityLevelL3,
kSecurityLevelUnknown
} SecurityLevel;
bool ValidateKeybox(); bool ValidateKeybox();
bool GetToken(std::string* token); bool GetToken(std::string* token);
SecurityLevel GetSecurityLevel(); CdmSecurityLevel GetSecurityLevel();
bool GetDeviceUniqueId(std::string* device_id); bool GetDeviceUniqueId(std::string* device_id);
bool GetSystemId(uint32_t* system_id); bool GetSystemId(uint32_t* system_id);
bool GetProvisioningId(std::string* provisioning_id); bool GetProvisioningId(std::string* provisioning_id);
@@ -96,6 +88,7 @@ class CryptoSession {
OEMCryptoBufferType destination_buffer_type_; OEMCryptoBufferType destination_buffer_type_;
bool is_destination_buffer_type_valid_; bool is_destination_buffer_type_valid_;
CdmSecurityLevel security_level_;
CORE_DISALLOW_COPY_AND_ASSIGN(CryptoSession); CORE_DISALLOW_COPY_AND_ASSIGN(CryptoSession);
}; };

8
libwvdrmengine/cdm/core/include/device_files.h
View File

@@ -17,10 +17,11 @@ class DeviceFiles {
kLicenseStateUnknown, kLicenseStateUnknown,
} LicenseState; } LicenseState;
DeviceFiles() {} DeviceFiles(): file_(NULL), security_level_(kSecurityLevelUninitialized),
initialized_(false) {}
virtual ~DeviceFiles() {} virtual ~DeviceFiles() {}
virtual bool Init(File* handle); virtual bool Init(const File* handle, CdmSecurityLevel security_level);
virtual bool StoreCertificate(const std::string& certificate, virtual bool StoreCertificate(const std::string& certificate,
const std::string& wrapped_private_key); const std::string& wrapped_private_key);
@@ -44,6 +45,7 @@ class DeviceFiles {
CdmKeyResponse* key_renewal_response, CdmKeyResponse* key_renewal_response,
std::string* release_server_url); std::string* release_server_url);
virtual bool DeleteLicense(const std::string& key_set_id); virtual bool DeleteLicense(const std::string& key_set_id);
virtual bool DeleteAllLicenses();
virtual bool LicenseExists(const std::string& key_set_id); virtual bool LicenseExists(const std::string& key_set_id);
// For testing only // For testing only
@@ -57,6 +59,8 @@ class DeviceFiles {
private: private:
File* file_; File* file_;
CdmSecurityLevel security_level_;
bool initialized_;
CORE_DISALLOW_COPY_AND_ASSIGN(DeviceFiles); CORE_DISALLOW_COPY_AND_ASSIGN(DeviceFiles);
}; };

3
libwvdrmengine/cdm/core/include/properties.h
View File

@@ -46,7 +46,8 @@ class Properties {
static bool GetDeviceName(std::string* device_name); static bool GetDeviceName(std::string* device_name);
static bool GetProductName(std::string* product_name); static bool GetProductName(std::string* product_name);
static bool GetBuildInfo(std::string* build_info); static bool GetBuildInfo(std::string* build_info);
static bool GetDeviceFilesBasePath(std::string* base_path); static bool GetDeviceFilesBasePath(CdmSecurityLevel security_level,
std::string* base_path);
static bool GetFactoryKeyboxPath(std::string* keybox); static bool GetFactoryKeyboxPath(std::string* keybox);
private: private:

8
libwvdrmengine/cdm/core/include/wv_cdm_types.h
View File

@@ -56,6 +56,14 @@ enum CdmLicenseType {
kLicenseTypeRelease kLicenseTypeRelease
}; };
enum CdmSecurityLevel {
kSecurityLevelUninitialized,
kSecurityLevelL1,
kSecurityLevelL2,
kSecurityLevelL3,
kSecurityLevelUnknown
};
struct CdmDecryptionParameters { struct CdmDecryptionParameters {
bool is_encrypted; bool is_encrypted;
bool is_secure; bool is_secure;

10
libwvdrmengine/cdm/core/src/cdm_engine.cpp
View File

@@ -347,17 +347,17 @@ CdmResponseType CdmEngine::QueryStatus(CdmQueryMap* key_info) {
LOGI("CdmEngine::QueryStatus"); LOGI("CdmEngine::QueryStatus");
CryptoSession crypto_session; CryptoSession crypto_session;
switch (crypto_session.GetSecurityLevel()) { switch (crypto_session.GetSecurityLevel()) {
case CryptoSession::kSecurityLevelL1: case kSecurityLevelL1:
(*key_info)[QUERY_KEY_SECURITY_LEVEL] = QUERY_VALUE_SECURITY_LEVEL_L1; (*key_info)[QUERY_KEY_SECURITY_LEVEL] = QUERY_VALUE_SECURITY_LEVEL_L1;
break; break;
case CryptoSession::kSecurityLevelL2: case kSecurityLevelL2:
(*key_info)[QUERY_KEY_SECURITY_LEVEL] = QUERY_VALUE_SECURITY_LEVEL_L2; (*key_info)[QUERY_KEY_SECURITY_LEVEL] = QUERY_VALUE_SECURITY_LEVEL_L2;
break; break;
case CryptoSession::kSecurityLevelL3: case kSecurityLevelL3:
(*key_info)[QUERY_KEY_SECURITY_LEVEL] = QUERY_VALUE_SECURITY_LEVEL_L3; (*key_info)[QUERY_KEY_SECURITY_LEVEL] = QUERY_VALUE_SECURITY_LEVEL_L3;
break; break;
case CryptoSession::kSecurityLevelUninitialized: case kSecurityLevelUninitialized:
case CryptoSession::kSecurityLevelUnknown: case kSecurityLevelUnknown:
(*key_info)[QUERY_KEY_SECURITY_LEVEL] = QUERY_VALUE_SECURITY_LEVEL_Unknown; (*key_info)[QUERY_KEY_SECURITY_LEVEL] = QUERY_VALUE_SECURITY_LEVEL_Unknown;
break; break;
default: default:

15
libwvdrmengine/cdm/core/src/cdm_session.cpp
View File

@@ -54,7 +54,8 @@ CdmResponseType CdmSession::RestoreOfflineSession(
// Retrieve license information from persistent store // Retrieve license information from persistent store
File file; File file;
DeviceFiles handle; DeviceFiles handle;
if (!handle.Init(&file)) return UNKNOWN_ERROR; if (!handle.Init(&file, crypto_session_->GetSecurityLevel()))
return UNKNOWN_ERROR;
DeviceFiles::LicenseState license_state; DeviceFiles::LicenseState license_state;
@@ -302,7 +303,8 @@ CdmResponseType CdmSession::ReleaseKey(const CdmKeyResponse& key_response) {
license_parser_.HandleKeyUpdateResponse(false, key_response); license_parser_.HandleKeyUpdateResponse(false, key_response);
File file; File file;
DeviceFiles handle; DeviceFiles handle;
if (handle.Init(&file)) handle.DeleteLicense(key_set_id_); if (handle.Init(&file, crypto_session_->GetSecurityLevel()))
handle.DeleteLicense(key_set_id_);
return sts; return sts;
} }
@@ -331,7 +333,8 @@ bool CdmSession::GenerateKeySetId(CdmKeySetId* key_set_id) {
File file; File file;
DeviceFiles handle; DeviceFiles handle;
if (!handle.Init(&file)) return false; if (!handle.Init(&file, crypto_session_->GetSecurityLevel()))
return false;
while (key_set_id->empty()) { while (key_set_id->empty()) {
if (!crypto_session_->GetRandom(&random_data[0], random_data.size())) if (!crypto_session_->GetRandom(&random_data[0], random_data.size()))
@@ -351,7 +354,8 @@ bool CdmSession::LoadDeviceCertificate(std::string* certificate,
std::string* wrapped_key) { std::string* wrapped_key) {
File file; File file;
DeviceFiles handle; DeviceFiles handle;
if (!handle.Init(&file)) return false; if (!handle.Init(&file, crypto_session_->GetSecurityLevel()))
return false;
return handle.RetrieveCertificate(certificate, wrapped_key); return handle.RetrieveCertificate(certificate, wrapped_key);
} }
@@ -359,7 +363,8 @@ bool CdmSession::LoadDeviceCertificate(std::string* certificate,
bool CdmSession::StoreLicense(DeviceFiles::LicenseState state) { bool CdmSession::StoreLicense(DeviceFiles::LicenseState state) {
File file; File file;
DeviceFiles handle; DeviceFiles handle;
if (!handle.Init(&file)) return false; if (!handle.Init(&file, crypto_session_->GetSecurityLevel()))
return false;
return handle.StoreLicense( return handle.StoreLicense(
key_set_id_, state, offline_pssh_data_, offline_key_request_, key_set_id_, state, offline_pssh_data_, offline_key_request_,

3
libwvdrmengine/cdm/core/src/certificate_provisioning.cpp
View File

@@ -215,7 +215,7 @@ CdmResponseType CertificateProvisioning::HandleProvisioningResponse(
File file; File file;
DeviceFiles handle; DeviceFiles handle;
if (!handle.Init(&file)) { if (!handle.Init(&file, crypto_session_.GetSecurityLevel())) {
LOGE("HandleProvisioningResponse: failed to init DeviceFiles"); LOGE("HandleProvisioningResponse: failed to init DeviceFiles");
return UNKNOWN_ERROR; return UNKNOWN_ERROR;
} }
@@ -223,6 +223,7 @@ CdmResponseType CertificateProvisioning::HandleProvisioningResponse(
LOGE("HandleProvisioningResponse: failed to save provisioning certificate"); LOGE("HandleProvisioningResponse: failed to save provisioning certificate");
return UNKNOWN_ERROR; return UNKNOWN_ERROR;
} }
handle.DeleteAllLicenses();
return NO_ERROR; return NO_ERROR;
} }

46
libwvdrmengine/cdm/core/src/crypto_session.cpp
View File

@@ -35,7 +35,9 @@ bool CryptoSession::initialized_ = false;
int CryptoSession::session_count_ = 0; int CryptoSession::session_count_ = 0;
CryptoSession::CryptoSession() CryptoSession::CryptoSession()
: open_(false), is_destination_buffer_type_valid_(false) { : open_(false),
is_destination_buffer_type_valid_(false),
security_level_(kSecurityLevelUninitialized) {
Init(); Init();
} }
@@ -101,12 +103,22 @@ bool CryptoSession::GetToken(std::string* token) {
return true; return true;
} }
CryptoSession::SecurityLevel CryptoSession::GetSecurityLevel() { CdmSecurityLevel CryptoSession::GetSecurityLevel() {
LOGV("CryptoSession::GetSecurityLevel: Lock"); LOGV("CryptoSession::GetSecurityLevel: Lock");
AutoLock auto_lock(crypto_lock_); AutoLock auto_lock(crypto_lock_);
if (!initialized_) { if (!initialized_) {
return kSecurityLevelUninitialized; return kSecurityLevelUninitialized;
} }
switch (security_level_) {
case kSecurityLevelL1:
case kSecurityLevelL2:
case kSecurityLevelL3:
return security_level_;
default:
break;
}
std::string security_level = OEMCrypto_SecurityLevel(); std::string security_level = OEMCrypto_SecurityLevel();
if ((security_level.size() != 2) || (security_level.at(0) != 'L')) { if ((security_level.size() != 2) || (security_level.at(0) != 'L')) {
@@ -115,16 +127,20 @@ CryptoSession::SecurityLevel CryptoSession::GetSecurityLevel() {
switch (security_level.at(1)) { switch (security_level.at(1)) {
case '1': case '1':
return kSecurityLevelL1; security_level_ = kSecurityLevelL1;
break;
case '2': case '2':
return kSecurityLevelL2; security_level_ = kSecurityLevelL2;
break;
case '3': case '3':
return kSecurityLevelL3; security_level_ = kSecurityLevelL3;
break;
default: default:
return kSecurityLevelUnknown; security_level_ = kSecurityLevelUnknown;
break;
} }
return kSecurityLevelUnknown; return security_level_;
} }
bool CryptoSession::GetDeviceUniqueId(std::string* device_id) { bool CryptoSession::GetDeviceUniqueId(std::string* device_id) {
@@ -552,7 +568,8 @@ CdmResponseType CryptoSession::Decrypt(const CdmDecryptionParameters& params) {
switch (buffer_descriptor.type) { switch (buffer_descriptor.type) {
case OEMCrypto_BufferType_Clear: case OEMCrypto_BufferType_Clear:
buffer_descriptor.buffer.clear.address = buffer_descriptor.buffer.clear.address =
static_cast<uint8_t*>(params.decrypt_buffer) + params.decrypt_buffer_offset; static_cast<uint8_t*>(params.decrypt_buffer) +
params.decrypt_buffer_offset;
buffer_descriptor.buffer.clear.max_length = params.decrypt_buffer_length; buffer_descriptor.buffer.clear.max_length = params.decrypt_buffer_length;
break; break;
case OEMCrypto_BufferType_Secure: case OEMCrypto_BufferType_Secure:
@@ -567,14 +584,9 @@ CdmResponseType CryptoSession::Decrypt(const CdmDecryptionParameters& params) {
} }
OEMCryptoResult sts = OEMCrypto_DecryptCTR( OEMCryptoResult sts = OEMCrypto_DecryptCTR(
oec_session_id_, oec_session_id_, params.encrypt_buffer, params.encrypt_length,
params.encrypt_buffer, params.is_encrypted, &(*params.iv).front(), params.block_offset,
params.encrypt_length, &buffer_descriptor, params.subsample_flags);
params.is_encrypted,
&(*params.iv).front(),
params.block_offset,
&buffer_descriptor,
params.subsample_flags);
if (OEMCrypto_ERROR_INSUFFICIENT_RESOURCES == sts) { if (OEMCrypto_ERROR_INSUFFICIENT_RESOURCES == sts) {
return INSUFFICIENT_CRYPTO_RESOURCES; return INSUFFICIENT_CRYPTO_RESOURCES;
@@ -598,7 +610,7 @@ bool CryptoSession::GenerateNonce(uint32_t* nonce) {
bool CryptoSession::SetDestinationBufferType() { bool CryptoSession::SetDestinationBufferType() {
if (Properties::oem_crypto_use_secure_buffers()) { if (Properties::oem_crypto_use_secure_buffers()) {
if (GetSecurityLevel() == CryptoSession::kSecurityLevelL1) { if (GetSecurityLevel() == kSecurityLevelL1) {
destination_buffer_type_ = OEMCrypto_BufferType_Secure; destination_buffer_type_ = OEMCrypto_BufferType_Secure;
} else { } else {
destination_buffer_type_ = OEMCrypto_BufferType_Clear; destination_buffer_type_ = OEMCrypto_BufferType_Clear;

118
libwvdrmengine/cdm/core/src/device_files.cpp
View File

@@ -21,22 +21,38 @@ using video_widevine_client::sdk::License_LicenseState_RELEASING;
namespace { namespace {
const char kCertificateFileName[] = "cert.bin"; const char kCertificateFileName[] = "cert.bin";
const char kLicenseFileNameExt[] = ".lic"; const char kLicenseFileNameExt[] = ".lic";
} // namespace const char kWildcard[] = "*";
} // namespace
namespace wvcdm { namespace wvcdm {
bool DeviceFiles::Init(const File* handle, CdmSecurityLevel security_level) {
bool DeviceFiles::Init(File* handle) {
file_ = handle;
if (handle == NULL) { if (handle == NULL) {
LOGW("DeviceFiles::Init: Invalid file handle parameter"); LOGW("DeviceFiles::Init: Invalid file handle parameter");
return false; return false;
} }
switch (security_level) {
case kSecurityLevelL1:
case kSecurityLevelL2:
case kSecurityLevelL3:
break;
default:
LOGW("DeviceFiles::Init: Unsupported security level %d", security_level);
return false;
}
file_ = const_cast<File*>(handle);
security_level_ = security_level;
initialized_ = true;
return true; return true;
} }
bool DeviceFiles::StoreCertificate(const std::string& certificate, bool DeviceFiles::StoreCertificate(const std::string& certificate,
const std::string& wrapped_private_key) { const std::string& wrapped_private_key) {
if (!initialized_) {
LOGW("DeviceFiles::StoreCertificate: not initialized");
return false;
}
// Fill in file information // Fill in file information
video_widevine_client::sdk::File file; video_widevine_client::sdk::File file;
@@ -69,6 +85,11 @@ bool DeviceFiles::StoreCertificate(const std::string& certificate,
bool DeviceFiles::RetrieveCertificate(std::string* certificate, bool DeviceFiles::RetrieveCertificate(std::string* certificate,
std::string* wrapped_private_key) { std::string* wrapped_private_key) {
if (!initialized_) {
LOGW("DeviceFiles::RetrieveCertificate: not initialized");
return false;
}
std::string serialized_hashed_file; std::string serialized_hashed_file;
if (!RetrieveFile(kCertificateFileName, &serialized_hashed_file)) if (!RetrieveFile(kCertificateFileName, &serialized_hashed_file))
return false; return false;
@@ -118,15 +139,19 @@ bool DeviceFiles::RetrieveCertificate(std::string* certificate,
return true; return true;
} }
bool DeviceFiles::StoreLicense( bool DeviceFiles::StoreLicense(const std::string& key_set_id,
const std::string& key_set_id, const LicenseState state,
const LicenseState state, const CdmInitData& pssh_data,
const CdmInitData& pssh_data, const CdmKeyMessage& license_request,
const CdmKeyMessage& license_request, const CdmKeyResponse& license_message,
const CdmKeyResponse& license_message, const CdmKeyMessage& license_renewal_request,
const CdmKeyMessage& license_renewal_request, const CdmKeyResponse& license_renewal,
const CdmKeyResponse& license_renewal, const std::string& release_server_url) {
const std::string& release_server_url) { if (!initialized_) {
LOGW("DeviceFiles::StoreLicense: not initialized");
return false;
}
// Fill in file information // Fill in file information
video_widevine_client::sdk::File file; video_widevine_client::sdk::File file;
@@ -134,7 +159,7 @@ bool DeviceFiles::StoreLicense(
file.set_version(video_widevine_client::sdk::File::VERSION_1); file.set_version(video_widevine_client::sdk::File::VERSION_1);
License* license = file.mutable_license(); License* license = file.mutable_license();
switch(state) { switch (state) {
case kLicenseStateActive: case kLicenseStateActive:
license->set_state(License_LicenseState_ACTIVE); license->set_state(License_LicenseState_ACTIVE);
break; break;
@@ -174,19 +199,21 @@ bool DeviceFiles::StoreLicense(
return StoreFile(file_name.c_str(), serialized_string); return StoreFile(file_name.c_str(), serialized_string);
} }
bool DeviceFiles::RetrieveLicense( bool DeviceFiles::RetrieveLicense(const std::string& key_set_id,
const std::string& key_set_id, LicenseState* state, CdmInitData* pssh_data,
LicenseState* state, CdmKeyMessage* license_request,
CdmInitData* pssh_data, CdmKeyResponse* license_message,
CdmKeyMessage* license_request, CdmKeyMessage* license_renewal_request,
CdmKeyResponse* license_message, CdmKeyResponse* license_renewal,
CdmKeyMessage* license_renewal_request, std::string* release_server_url) {
CdmKeyResponse* license_renewal, if (!initialized_) {
std::string* release_server_url) { LOGW("DeviceFiles::RetrieveLicense: not initialized");
return false;
}
std::string serialized_hashed_file; std::string serialized_hashed_file;
std::string file_name = key_set_id + kLicenseFileNameExt; std::string file_name = key_set_id + kLicenseFileNameExt;
if (!RetrieveFile(file_name.c_str(), &serialized_hashed_file)) if (!RetrieveFile(file_name.c_str(), &serialized_hashed_file)) return false;
return false;
HashedFile hashed_file; HashedFile hashed_file;
if (!hashed_file.ParseFromString(serialized_hashed_file)) { if (!hashed_file.ParseFromString(serialized_hashed_file)) {
@@ -228,7 +255,7 @@ bool DeviceFiles::RetrieveLicense(
License license = file.license(); License license = file.license();
switch(license.state()) { switch (license.state()) {
case License_LicenseState_ACTIVE: case License_LicenseState_ACTIVE:
*state = kLicenseStateActive; *state = kLicenseStateActive;
break; break;
@@ -237,7 +264,7 @@ bool DeviceFiles::RetrieveLicense(
break; break;
default: default:
LOGW("DeviceFiles::RetrieveLicense: Unrecognized license state: %u", LOGW("DeviceFiles::RetrieveLicense: Unrecognized license state: %u",
kLicenseStateUnknown); kLicenseStateUnknown);
*state = kLicenseStateUnknown; *state = kLicenseStateUnknown;
break; break;
} }
@@ -251,13 +278,13 @@ bool DeviceFiles::RetrieveLicense(
} }
bool DeviceFiles::DeleteLicense(const std::string& key_set_id) { bool DeviceFiles::DeleteLicense(const std::string& key_set_id) {
if (!file_) { if (!initialized_) {
LOGW("DeviceFiles::DeleteLicense: Invalid file handle"); LOGW("DeviceFiles::DeleteLicense: not initialized");
return false; return false;
} }
std::string path; std::string path;
if (!Properties::GetDeviceFilesBasePath(&path)) { if (!Properties::GetDeviceFilesBasePath(security_level_, &path)) {
LOGW("DeviceFiles::StoreFile: Unable to get base path"); LOGW("DeviceFiles::StoreFile: Unable to get base path");
return false; return false;
} }
@@ -267,14 +294,31 @@ bool DeviceFiles::DeleteLicense(const std::string& key_set_id) {
return file_->Remove(path); return file_->Remove(path);
} }
bool DeviceFiles::LicenseExists(const std::string& key_set_id) { bool DeviceFiles::DeleteAllLicenses() {
if (!file_) { if (!initialized_) {
LOGW("DeviceFiles::LicenseExists: Invalid file handle"); LOGW("DeviceFiles::DeleteLicense: not initialized");
return false; return false;
} }
std::string path; std::string path;
if (!Properties::GetDeviceFilesBasePath(&path)) { if (!Properties::GetDeviceFilesBasePath(security_level_, &path)) {
LOGW("DeviceFiles::StoreFile: Unable to get base path");
return false;
}
path.append(kWildcard);
path.append(kLicenseFileNameExt);
return file_->Remove(path);
}
bool DeviceFiles::LicenseExists(const std::string& key_set_id) {
if (!initialized_) {
LOGW("DeviceFiles::LicenseExists: not initialized");
return false;
}
std::string path;
if (!Properties::GetDeviceFilesBasePath(security_level_, &path)) {
LOGW("DeviceFiles::StoreFile: Unable to get base path"); LOGW("DeviceFiles::StoreFile: Unable to get base path");
return false; return false;
} }
@@ -307,7 +351,7 @@ bool DeviceFiles::StoreFile(const char* name, const std::string& data) {
} }
std::string path; std::string path;
if (!Properties::GetDeviceFilesBasePath(&path)) { if (!Properties::GetDeviceFilesBasePath(security_level_, &path)) {
LOGW("DeviceFiles::StoreFile: Unable to get base path"); LOGW("DeviceFiles::StoreFile: Unable to get base path");
return false; return false;
} }
@@ -352,7 +396,7 @@ bool DeviceFiles::RetrieveFile(const char* name, std::string* data) {
} }
std::string path; std::string path;
if (!Properties::GetDeviceFilesBasePath(&path)) { if (!Properties::GetDeviceFilesBasePath(security_level_, &path)) {
LOGW("DeviceFiles::StoreFile: Unable to get base path"); LOGW("DeviceFiles::StoreFile: Unable to get base path");
return false; return false;
} }
@@ -385,7 +429,7 @@ bool DeviceFiles::RetrieveFile(const char* name, std::string* data) {
} }
LOGV("DeviceFiles::RetrieveFile: success: %s (%db)", path.c_str(), LOGV("DeviceFiles::RetrieveFile: success: %s (%db)", path.c_str(),
data->size()); data->size());
return true; return true;
} }

18
libwvdrmengine/cdm/core/test/device_files_unittest.cpp
View File

@@ -6,6 +6,7 @@
#include "gtest/gtest.h" #include "gtest/gtest.h"
#include "properties.h" #include "properties.h"
#include "string_conversions.h" #include "string_conversions.h"
#include "wv_cdm_types.h"
namespace wvcdm { namespace wvcdm {
@@ -995,7 +996,8 @@ class MockFile : public File {
class DeviceFilesTest : public ::testing::Test { class DeviceFilesTest : public ::testing::Test {
protected: protected:
virtual void SetUp() { virtual void SetUp() {
ASSERT_TRUE(Properties::GetDeviceFilesBasePath(&device_base_path_)); ASSERT_TRUE(Properties::GetDeviceFilesBasePath(kSecurityLevelL1,
&device_base_path_));
} }
std::string GenerateRandomData(uint32_t len) { std::string GenerateRandomData(uint32_t len) {
@@ -1073,7 +1075,7 @@ TEST_P(DeviceFilesStoreTest, StoreCertificate) {
EXPECT_CALL(file, Read(_, _)).Times(0); EXPECT_CALL(file, Read(_, _)).Times(0);
DeviceFiles device_files; DeviceFiles device_files;
EXPECT_TRUE(device_files.Init(&file)); EXPECT_TRUE(device_files.Init(&file, kSecurityLevelL1));
EXPECT_TRUE(device_files.StoreCertificate(certificate, wrapped_private_key)); EXPECT_TRUE(device_files.StoreCertificate(certificate, wrapped_private_key));
} }
@@ -1098,7 +1100,7 @@ TEST_F(DeviceFilesTest, ReadCertificate) {
EXPECT_CALL(file, Write(_, _)).Times(0); EXPECT_CALL(file, Write(_, _)).Times(0);
DeviceFiles device_files; DeviceFiles device_files;
EXPECT_TRUE(device_files.Init(&file)); EXPECT_TRUE(device_files.Init(&file, kSecurityLevelL1));
std::string certificate, wrapped_private_key; std::string certificate, wrapped_private_key;
ASSERT_TRUE( ASSERT_TRUE(
@@ -1140,7 +1142,7 @@ TEST_P(DeviceFilesStoreTest, StoreLicense) {
EXPECT_CALL(file, Read(_, _)).Times(0); EXPECT_CALL(file, Read(_, _)).Times(0);
DeviceFiles device_files; DeviceFiles device_files;
EXPECT_TRUE(device_files.Init(&file)); EXPECT_TRUE(device_files.Init(&file, kSecurityLevelL1));
EXPECT_TRUE(device_files.StoreLicense( EXPECT_TRUE(device_files.StoreLicense(
license_test_data[license_num].key_set_id, license_test_data[license_num].key_set_id,
license_test_data[license_num].license_state, license_test_data[license_num].license_state,
@@ -1183,7 +1185,7 @@ TEST_F(DeviceFilesTest, StoreLicenses) {
EXPECT_CALL(file, Read(_, _)).Times(0); EXPECT_CALL(file, Read(_, _)).Times(0);
DeviceFiles device_files; DeviceFiles device_files;
EXPECT_TRUE(device_files.Init(&file)); EXPECT_TRUE(device_files.Init(&file, kSecurityLevelL1));
for (size_t i = 0; i < kNumberOfLicenses; i++) { for (size_t i = 0; i < kNumberOfLicenses; i++) {
EXPECT_TRUE(device_files.StoreLicense( EXPECT_TRUE(device_files.StoreLicense(
license_test_data[i].key_set_id, license_test_data[i].license_state, license_test_data[i].key_set_id, license_test_data[i].license_state,
@@ -1218,7 +1220,7 @@ TEST_F(DeviceFilesTest, RetrieveLicenses) {
EXPECT_CALL(file, Write(_, _)).Times(0); EXPECT_CALL(file, Write(_, _)).Times(0);
DeviceFiles device_files; DeviceFiles device_files;
EXPECT_TRUE(device_files.Init(&file)); EXPECT_TRUE(device_files.Init(&file, kSecurityLevelL1));
DeviceFiles::LicenseState license_state; DeviceFiles::LicenseState license_state;
CdmInitData pssh_data; CdmInitData pssh_data;
CdmKeyMessage key_request; CdmKeyMessage key_request;
@@ -1264,7 +1266,7 @@ TEST_F(DeviceFilesTest, UpdateLicenseState) {
EXPECT_CALL(file, Read(_, _)).Times(0); EXPECT_CALL(file, Read(_, _)).Times(0);
DeviceFiles device_files; DeviceFiles device_files;
EXPECT_TRUE(device_files.Init(&file)); EXPECT_TRUE(device_files.Init(&file, kSecurityLevelL1));
EXPECT_TRUE(device_files.StoreLicense( EXPECT_TRUE(device_files.StoreLicense(
license_update_test_data[0].key_set_id, license_update_test_data[0].key_set_id,
license_update_test_data[0].license_state, license_update_test_data[0].license_state,
@@ -1308,7 +1310,7 @@ TEST_F(DeviceFilesTest, DeleteLicense) {
EXPECT_CALL(file, Write(_, _)).Times(0); EXPECT_CALL(file, Write(_, _)).Times(0);
DeviceFiles device_files; DeviceFiles device_files;
EXPECT_TRUE(device_files.Init(&file)); EXPECT_TRUE(device_files.Init(&file, kSecurityLevelL1));
DeviceFiles::LicenseState license_state; DeviceFiles::LicenseState license_state;
CdmInitData pssh_data; CdmInitData pssh_data;
CdmKeyMessage key_request; CdmKeyMessage key_request;

21
libwvdrmengine/cdm/core/test/file_store_unittest.cpp
View File

@@ -8,6 +8,9 @@
namespace { namespace {
const std::string kTestFileName = "test.txt"; const std::string kTestFileName = "test.txt";
const std::string kTestFileName2 = "test2.txt";
const std::string kTestFileNameExt = ".txt";
const std::string kWildcard = "*";
} // namespace } // namespace
namespace wvcdm { namespace wvcdm {
@@ -97,6 +100,24 @@ TEST_F(FileTest, RemoveDirAndFile) {
EXPECT_FALSE(file.Exists(path)); EXPECT_FALSE(file.Exists(path));
} }
TEST_F(FileTest, RemoveWildcardFiles) {
std::string path1 = test_vectors::kTestDir + kTestFileName;
std::string path2 = test_vectors::kTestDir + kTestFileName2;
std::string wildcard_path =
test_vectors::kTestDir + kWildcard + kTestFileNameExt;
File file;
EXPECT_TRUE(file.Open(path1, File::kCreate));
file.Close();
EXPECT_TRUE(file.Open(path2, File::kCreate));
file.Close();
EXPECT_TRUE(file.Exists(path1));
EXPECT_TRUE(file.Exists(path2));
EXPECT_TRUE(file.Remove(wildcard_path));
EXPECT_FALSE(file.Exists(path1));
EXPECT_FALSE(file.Exists(path2));
}
TEST_F(FileTest, IsDir) { TEST_F(FileTest, IsDir) {
std::string path = test_vectors::kTestDir + kTestFileName; std::string path = test_vectors::kTestDir + kTestFileName;
File file; File file;

70
libwvdrmengine/cdm/src/file_store.cpp
View File

@@ -14,9 +14,11 @@
#include "log.h" #include "log.h"
namespace { namespace {
const char* kCurrentDirectory = "."; const char kCurrentDirectory[] = ".";
const char* kParentDirectory = ".."; const char kParentDirectory[] = "..";
} // namespace const char kPathDelimiter[] = "/";
const char kWildcard[] = "*";
} // namespace
namespace wvcdm { namespace wvcdm {
@@ -49,9 +51,9 @@ bool File::Open(const std::string& name, int flags) {
} }
if (flags & File::kBinary) { if (flags & File::kBinary) {
open_flags = (flags & File::kReadOnly)? "rb" : "rb+"; open_flags = (flags & File::kReadOnly) ? "rb" : "rb+";
} else { } else {
open_flags = (flags & File::kReadOnly)? "r" : "r+"; open_flags = (flags & File::kReadOnly) ? "r" : "r+";
} }
impl_->file_ = fopen(name.c_str(), open_flags.c_str()); impl_->file_ = fopen(name.c_str(), open_flags.c_str());
@@ -104,14 +106,15 @@ bool File::Exists(const std::string& path) {
bool File::Remove(const std::string& path) { bool File::Remove(const std::string& path) {
if (IsDirectory(path)) { if (IsDirectory(path)) {
// Handle directory deletion
DIR* dir; DIR* dir;
if ((dir = opendir(path.c_str())) != NULL) { if ((dir = opendir(path.c_str())) != NULL) {
// first remove files and dir within it // first remove files and dir within it
struct dirent* entry; struct dirent* entry;
while ((entry = readdir(dir)) != NULL) { while ((entry = readdir(dir)) != NULL) {
if (strcmp(entry->d_name, kCurrentDirectory) && if (strcmp(entry->d_name, kCurrentDirectory) &&
(strcmp(entry->d_name, kParentDirectory))) { (strcmp(entry->d_name, kParentDirectory))) {
std::string path_to_remove = path + '/'; std::string path_to_remove = path + kPathDelimiter;
path_to_remove += entry->d_name; path_to_remove += entry->d_name;
if (!Remove(path_to_remove)) { if (!Remove(path_to_remove)) {
closedir(dir); closedir(dir);
@@ -127,9 +130,46 @@ bool File::Remove(const std::string& path) {
} }
return true; return true;
} else { } else {
if (unlink(path.c_str()) && (errno != ENOENT)) { size_t wildcard_pos = path.find(kWildcard);
LOGW("File::Remove: unlink failed: %d", errno); if (wildcard_pos == std::string::npos) {
return false; // Handle file deletion
if (unlink(path.c_str()) && (errno != ENOENT)) {
LOGW("File::Remove: unlink failed: %d", errno);
return false;
}
} else {
// Handle wildcard specified file deletion
size_t delimiter_pos = path.rfind(kPathDelimiter, wildcard_pos);
if (delimiter_pos == std::string::npos) {
LOGW("File::Remove: unable to find path delimiter before wildcard");
return false;
}
DIR* dir;
std::string dir_path = path.substr(0, delimiter_pos);
if ((dir = opendir(dir_path.c_str())) == NULL) {
LOGW("File::Remove: directory open failed for wildcard");
return false;
}
struct dirent* entry;
std::string ext = path.substr(wildcard_pos + 1);
while ((entry = readdir(dir)) != NULL) {
size_t filename_len = strlen(entry->d_name);
if (filename_len > ext.size()) {
if (strcmp(entry->d_name + filename_len - ext.size(), ext.c_str()) ==
0) {
std::string file_path_to_remove =
dir_path + kPathDelimiter + entry->d_name;
if (!Remove(file_path_to_remove)) {
closedir(dir);
return false;
}
}
}
}
closedir(dir);
} }
return true; return true;
} }
@@ -137,13 +177,11 @@ bool File::Remove(const std::string& path) {
bool File::CreateDirectory(std::string path) { bool File::CreateDirectory(std::string path) {
size_t size = path.size(); size_t size = path.size();
if ((size == 1) && (path[0] == '/')) if ((size == 1) && (path[0] == '/')) return true;
return true;
if (size <= 1) if (size <= 1) return false;
return false;
if (path.at(size-1) == '/') { if (path.at(size - 1) == '/') {
--size; --size;
path.resize(size); path.resize(size);
} }
@@ -158,7 +196,7 @@ bool File::CreateDirectory(std::string path) {
} }
} }
path.at(pos) = '/'; path.at(pos) = '/';
pos = path.find('/', pos+1); pos = path.find('/', pos + 1);
} }
if (mkdir(path.c_str(), 0775) != 0) { if (mkdir(path.c_str(), 0775) != 0) {
if (errno != EEXIST) { if (errno != EEXIST) {

23
libwvdrmengine/cdm/src/properties_android.cpp
View File

@@ -11,6 +11,12 @@
namespace { namespace {
const char kBasePathPrefix[] = "/data/mediadrm/IDM";
const char kL1Dir[] = "/L1";
const char kL2Dir[] = "/L2";
const char kL3Dir[] = "/L3";
const char kFactoryKeyboxPath[] = "/factory/wv.keys";
bool GetAndroidProperty(const char* key, std::string* value) { bool GetAndroidProperty(const char* key, std::string* value) {
char val[PROPERTY_VALUE_MAX]; char val[PROPERTY_VALUE_MAX];
if (!key) { if (!key) {
@@ -81,13 +87,24 @@ bool Properties::GetBuildInfo(std::string* build_info) {
return GetAndroidProperty("ro.build.fingerprint", build_info); return GetAndroidProperty("ro.build.fingerprint", build_info);
} }
bool Properties::GetDeviceFilesBasePath(std::string* base_path) { bool Properties::GetDeviceFilesBasePath(CdmSecurityLevel security_level,
std::string* base_path) {
if (!base_path) { if (!base_path) {
LOGW("Properties::GetDeviceFilesBasePath: Invalid parameter"); LOGW("Properties::GetDeviceFilesBasePath: Invalid parameter");
return false; return false;
} }
std::stringstream ss; std::stringstream ss;
ss << "/data/mediadrm/IDM" << getuid() << "/"; ss << kBasePathPrefix << getuid();
switch (security_level) {
case kSecurityLevelL1: ss << kL1Dir; break;
case kSecurityLevelL2: ss << kL2Dir; break;
case kSecurityLevelL3: ss << kL3Dir; break;
default:
LOGW("Properties::GetDeviceFilesBasePath: Unknown security level: %d",
security_level);
return false;
}
*base_path = ss.str(); *base_path = ss.str();
return true; return true;
} }
@@ -97,7 +114,7 @@ bool Properties::GetFactoryKeyboxPath(std::string* keybox) {
LOGW("Properties::GetFactoryKeyboxPath: Invalid parameter"); LOGW("Properties::GetFactoryKeyboxPath: Invalid parameter");
return false; return false;
} }
*keybox = "/factory/wv.keys"; *keybox = kFactoryKeyboxPath;
return true; return true;
} }