Combined Decrypt Calls

(This is a merge of http://go/wvgerrit/93829, http://go/wvgerrit/93830, http://go/wvgerrit/93832, http://go/wvgerrit/93833, and http://go/wvgerrit/93834 from the Widevine repo.) This implements the CDM code changes necessary to take advantage of Combined Decrypt Calls on OEMCrypto v16. The result of this is that WVCryptoPlugin is much lighter now because it can pass the full sample down to the core in one call, but CryptoSession is heavier, as it now has to handle more complex fallback logic when devices can't handle multiple subsamples at once. This patch also removes support for the 'cens' and 'cbc1' schema, which are being dropped in OEMCrypto v16. This fixes an overflow in the code for handling those schemas by removing it entirely. This patch also fixes the "in chunks" legacy decrypt path to use larger chunk sizes on devices with higher resource rating tiers. Bug: 135285640 Bug: 123435824 Bug: 138584971 Bug: 139257871 Bug: 78289910 Bug: 149361893 Test: no new CE CDM Unit Test failures Test: Google Play plays Test: Netflix plays Test: no new GTS failures Change-Id: Ic4952c9fa3bc7fd5ed08698e88254380a7a18514
2020-02-18 14:46:31 -08:00
parent 3708c4d53f
commit a62886b925
28 changed files with 1253 additions and 1260 deletions
--- a/libwvdrmengine/oemcrypto/ref/src/oemcrypto_session.cpp
+++ b/libwvdrmengine/oemcrypto/ref/src/oemcrypto_session.cpp
@@ -24,6 +24,7 @@
 #include <openssl/sha.h>
 #include <openssl/x509.h>

+#include "advance_iv_ctr.h"
 #include "disallow_copy_and_assign.h"
 #include "keys.h"
 #include "log.h"
@@ -66,25 +67,6 @@ void advance_dest_buffer(OEMCrypto_DestBufferDesc* dest_buffer, size_t bytes) {
  }
 }

-// Advance an IV according to ISO-CENC's CTR modes. The lower half of the IV is
-// split off and treated as an unsigned 64-bit integer, then incremented by the
-// number of complete crypto blocks decrypted. The resulting value is then
-// copied back into the IV over the previous lower half.
-void advance_iv_ctr(uint8_t (*subsample_iv)[wvoec::KEY_IV_SIZE], size_t bytes) {
-  uint64_t counter;
-  // Per its type, sizeof(*subsample_iv) == wvoec::KEY_IV_SIZE
-  static_assert(sizeof(counter) * 2 == wvoec::KEY_IV_SIZE,
-                "A uint64_t failed to be half the size of an AES-128 IV.");
-  constexpr size_t half_iv_size = wvoec::KEY_IV_SIZE / 2;
-  memcpy(&counter, &(*subsample_iv)[half_iv_size], half_iv_size);
-
-  const size_t increment =
-      bytes / wvoec::AES_128_BLOCK_SIZE;  // The truncation here is intentional
-  counter = wvcdm::htonll64(wvcdm::ntohll64(counter) + increment);
-
-  memcpy(&(*subsample_iv)[half_iv_size], &counter, half_iv_size);
-}
-
 }  // namespace

 namespace wvoec_ref {
@@ -1604,8 +1586,8 @@ OEMCryptoResult SessionContext::DecryptSamples(
      advance_dest_buffer(&subsample_dest, subsample_length);
      if (subsample.num_bytes_encrypted > 0 &&
          current_content_key()->ctr_mode()) {
-        advance_iv_ctr(&subsample_iv,
-                       subsample.block_offset + subsample.num_bytes_encrypted);
+        wvcdm::AdvanceIvCtr(&subsample_iv, subsample.block_offset +
+                                               subsample.num_bytes_encrypted);
      }
    }  // Subsample loop
  }    // Sample loop