OEMCrypto v16.1

Merge of http://go/wvgerrit/93404 This CL updates the Widevine CDM to support OEMCrypto v16.1 Test: Tested in 16.2 CL Bug: 141247171 Change-Id: I69bd993500f6fb63bf6010c8b0250dc7acc3d71b
2020-01-18 10:11:24 -08:00
parent 7e2619e379
commit 7665614b2e
132 changed files with 12331 additions and 9341 deletions
--- a/libwvdrmengine/oemcrypto/include/OEMCryptoCENC.h
+++ b/libwvdrmengine/oemcrypto/include/OEMCryptoCENC.h
--- a/libwvdrmengine/oemcrypto/include/OEMCryptoCENCCommon.h
+++ b/libwvdrmengine/oemcrypto/include/OEMCryptoCENCCommon.h
@@ -0,0 +1 @@
+../../oemcrypto/odk/include/OEMCryptoCENCCommon.h
--- a/libwvdrmengine/oemcrypto/include/level3.h
+++ b/libwvdrmengine/oemcrypto/include/level3.h
@@ -187,15 +187,12 @@ OEMCryptoResult Level3_QueryKeyControl(OEMCrypto_SESSION session,
                                       size_t key_id_length,
                                       uint8_t* key_control_block,
                                       size_t* key_control_block_length);
-OEMCryptoResult Level3_DecryptCENC(OEMCrypto_SESSION session,
-                                   const uint8_t *data_addr,
-                                   size_t data_length,
-                                   bool is_encrypted,
-                                   const uint8_t *iv,
-                                   size_t block_offset,
-                                   OEMCrypto_DestBufferDesc* out_buffer,
-                                   const OEMCrypto_CENCEncryptPatternDesc* pattern,
-                                   uint8_t subsample_flags);
+OEMCryptoResult Level3_DecryptCENC(
+    OEMCrypto_SESSION session, const uint8_t* data_addr, size_t data_length,
+    bool is_encrypted, const uint8_t* iv, size_t block_offset,
+    OEMCrypto_DestBufferDesc* out_buffer_descriptor,
+    const OEMCrypto_CENCEncryptPatternDesc_V15* pattern,
+    uint8_t subsample_flags);
 OEMCryptoResult Level3_InstallKeyboxOrOEMCert(const uint8_t* rot,
                                              size_t rotLength);
 OEMCryptoResult Level3_IsKeyboxOrOEMCertValid(void);
@@ -371,11 +368,10 @@ OEMCryptoResult Level3_RefreshKeys(
 OEMCryptoResult Level3_LoadEntitledContentKeys(
    OEMCrypto_SESSION session, const uint8_t* message, size_t message_length,
    size_t num_keys, const OEMCrypto_EntitledContentKeyObject* key_array);
-OEMCryptoResult Level3_CopyBuffer(OEMCrypto_SESSION session,
-                                  const uint8_t *data_addr,
-                                  size_t data_length,
-                                  OEMCrypto_DestBufferDesc* out_buffer,
-                                  uint8_t subsample_flags);
+OEMCryptoResult Level3_CopyBuffer(
+    OEMCrypto_SESSION session, const uint8_t* data_addr, size_t data_length,
+    const OEMCrypto_DestBufferDesc* out_buffer_descriptor,
+    uint8_t subsample_flags);

 // The following are specific to Google's Level 3 implementation and are not
 // required.
--- a/libwvdrmengine/oemcrypto/include/oemcrypto_types.h
+++ b/libwvdrmengine/oemcrypto/include/oemcrypto_types.h
@@ -23,45 +23,59 @@ typedef struct WidevineKeybox {   // 128 bytes total.
  uint8_t crc_[4];
 } WidevineKeybox;

+/*
+ * SRM_Restriction_Data
+ *
+ * Structure passed into LoadKeys to specify required SRM version.
+ */
+typedef struct {
+  uint8_t verification[8];       // must be "HDCPDATA"
+  uint32_t minimum_srm_version;  // version number.
+} SRM_Restriction_Data;
+
+// clang-format off
 // Key Control Block Bit Masks:
-const uint32_t kControlObserveDataPath = (1<<31);
-const uint32_t kControlObserveHDCP     = (1<<30);
-const uint32_t kControlObserveCGMS     = (1<<29);
-const uint32_t kControlRequireAntiRollbackHardware = (1<<28);
-const uint32_t kControlAllowHashVerification = (1<<24);
-const uint32_t kSharedLicense          = (1<<23);
-const uint32_t kControlSRMVersionRequired = (1<<22);
-const uint32_t kControlDisableAnalogOutput = (1<<21);
-const uint32_t kControlSecurityPatchLevelShift = 15;
-const uint32_t kControlSecurityPatchLevelMask =
-    (0x3F<<kControlSecurityPatchLevelShift);
-const uint32_t kControlReplayMask      = (0x03<<13);
-const uint32_t kControlNonceRequired   = (0x01<<13);
-const uint32_t kControlNonceOrEntry    = (0x02<<13);
-const uint32_t kControlHDCPVersionShift = 9;
-const uint32_t kControlHDCPVersionMask = (0x0F<<kControlHDCPVersionShift);
-const uint32_t kControlAllowEncrypt    = (1<<8);
-const uint32_t kControlAllowDecrypt    = (1<<7);
-const uint32_t kControlAllowSign       = (1<<6);
-const uint32_t kControlAllowVerify     = (1<<5);
-const uint32_t kControlDataPathSecure  = (1<<4);
-const uint32_t kControlNonceEnabled    = (1<<3);
-const uint32_t kControlHDCPRequired    = (1<<2);
-const uint32_t kControlCGMSMask        = (0x03);
-const uint32_t kControlCGMSCopyFreely  = (0x00);
-const uint32_t kControlCGMSCopyOnce    = (0x02);
-const uint32_t kControlCGMSCopyNever   = (0x03);
+const uint32_t kControlObserveDataPath              = (1u << 31);
+const uint32_t kControlObserveHDCP                  = (1u << 30);
+const uint32_t kControlObserveCGMS                  = (1u << 29);
+const uint32_t kControlRequireAntiRollbackHardware  = (1u << 28);
+const uint32_t kControlAllowHashVerification        = (1u << 24);
+const uint32_t kSharedLicense                       = (1u << 23);
+const uint32_t kControlSRMVersionRequired           = (1u << 22);
+const uint32_t kControlDisableAnalogOutput          = (1u << 21);
+const uint32_t kControlSecurityPatchLevelShift      = 15;
+const uint32_t kControlSecurityPatchLevelMask       =
+    (0x3Fu << kControlSecurityPatchLevelShift);
+const uint32_t kControlReplayMask                   = (0x03u << 13);
+const uint32_t kControlNonceRequired                = (0x01u << 13);
+const uint32_t kControlNonceOrEntry                 = (0x02u << 13);
+const uint32_t kControlHDCPVersionShift             = 9;
+const uint32_t kControlHDCPVersionMask              =
+    (0x0Fu << kControlHDCPVersionShift);
+const uint32_t kControlAllowEncrypt                 = (1u << 8);
+const uint32_t kControlAllowDecrypt                 = (1u << 7);
+const uint32_t kControlAllowSign                    = (1u << 6);
+const uint32_t kControlAllowVerify                  = (1u << 5);
+const uint32_t kControlDataPathSecure               = (1u << 4);
+const uint32_t kControlNonceEnabled                 = (1u << 3);
+const uint32_t kControlHDCPRequired                 = (1u << 2);
+const uint32_t kControlCGMSMask                     = (0x03);
+const uint32_t kControlCGMSCopyFreely               = (0x00);
+const uint32_t kControlCGMSCopyOnce                 = (0x02);
+const uint32_t kControlCGMSCopyNever                = (0x03);
+// clang-format on

 // Various constants and sizes:
-static const size_t KEY_CONTROL_SIZE = 16;
-static const size_t KEY_ID_SIZE = 16;
-static const size_t KEY_IV_SIZE = 16;
-static const size_t KEY_PAD_SIZE = 16;
-static const size_t KEY_SIZE = 16;
-static const size_t MAC_KEY_SIZE = 32;
-static const size_t KEYBOX_KEY_DATA_SIZE = 72;
-static const size_t SRM_REQUIREMENT_SIZE = 12;
-
+constexpr size_t KEY_CONTROL_SIZE = 16;
+constexpr size_t KEY_ID_SIZE = 16;
+constexpr size_t KEY_IV_SIZE = 16;
+constexpr size_t KEY_PAD_SIZE = 16;
+constexpr size_t KEY_SIZE = 16;
+constexpr size_t AES_128_BLOCK_SIZE = 16;
+constexpr size_t MAC_KEY_SIZE = 32;
+constexpr size_t KEYBOX_KEY_DATA_SIZE = 72;
+constexpr size_t SRM_REQUIREMENT_SIZE = 12;
+constexpr size_t HMAC_SHA256_SIGNATURE_SIZE = 32;

 }  // namespace wvoec
				`@@ -0,0 +1 @@`
				`../../oemcrypto/odk/include/OEMCryptoCENCCommon.h`