Update license_protocol and client_identification protos

[ Merge of http://go/wvgerrit/65442 ] This also requires the removal of sub session related code as references were removed from the proto. Bug: 119077124 Test: WV unit/integration tests Change-Id: Ida1a591afc267ec97344e5bba00bbf401887a202
2018-11-05 10:08:53 -08:00
parent 87b3c3cbe7
commit d8cc5481e3
3 changed files with 64 additions and 170 deletions
--- a/libwvdrmengine/cdm/core/src/license_protocol.proto
+++ b/libwvdrmengine/cdm/core/src/license_protocol.proto
@@ -23,6 +23,22 @@ enum LicenseType {
  OFFLINE = 2;
 }

+enum PlatformVerificationStatus {
+  // The platform is not verified.
+  PLATFORM_UNVERIFIED = 0;
+  // Tampering detected on the platform.
+  PLATFORM_TAMPERED = 1;
+  // The platform has been verified by means of software.
+  PLATFORM_SOFTWARE_VERIFIED = 2;
+  // The platform has been verified by means of hardware (e.g. secure boot).
+  PLATFORM_HARDWARE_VERIFIED = 3;
+  // Platform verification was not performed.
+  PLATFORM_NO_VERIFICATION = 4;
+  // Platform and secure storage capability have been verified by means of
+  // software.
+  PLATFORM_SECURE_STORAGE_SOFTWARE_VERIFIED = 5;
+}
+
 // LicenseIdentification is propagated from LicenseRequest to License,
 // incrementing version with each iteration.
 message LicenseIdentification {
@@ -98,16 +114,11 @@ message License {

  message KeyContainer {
    enum KeyType {
-      // Exactly one key of this type must appear.
-      SIGNING = 1;
-      CONTENT = 2;
-      KEY_CONTROL = 3;
-      OPERATOR_SESSION = 4;
-      // TODO(jfore): Drop subsession type once subsession support is removed
-      // from the cdm. For now, SUB_SESSION is defined as type 6 so that it
-      // is defined to satisfy the build.
-      SUB_SESSION = 6;
-      ENTITLEMENT = 5;
+      SIGNING = 1;  // Exactly one key of this type must appear.
+      CONTENT = 2;  // Content key.
+      KEY_CONTROL = 3;  // Key control block for license renewals. No key.
+      OPERATOR_SESSION = 4;  // wrapped keys for auxiliary crypto operations.
+      ENTITLEMENT = 5;  // Entitlement keys.
    }

    // The SecurityLevel enumeration allows the server to communicate the level
@@ -152,6 +163,7 @@ message License {
        HDCP_V2 = 2;
        HDCP_V2_1 = 3;
        HDCP_V2_2 = 4;
+        HDCP_V2_3 = 5;
        HDCP_NO_DIGITAL_OUTPUT = 0xff;
      }
      optional HDCP hdcp = 1 [default = HDCP_NONE];
@@ -164,6 +176,20 @@ message License {
        COPY_NEVER = 3;
      }
      optional CGMS cgms_flags = 2 [default = CGMS_NONE];
+
+      enum HdcpSrmRule {
+        HDCP_SRM_RULE_NONE = 0;
+        // In 'required_protection', this means most current SRM is required.
+        // Update the SRM on the device. If update cannot happen,
+        // do not allow the key.
+        // In 'requested_protection', this means most current SRM is requested.
+        // Update the SRM on the device. If update cannot happen,
+        // allow use of the key anyway.
+        CURRENT_SRM = 1;
+      }
+      optional HdcpSrmRule hdcp_srm_rule = 3 [default = HDCP_SRM_RULE_NONE];
+      // Optional requirement to indicate analog output is not allowed.
+      optional bool disable_analog_output = 4 [default = false];
    }

    message VideoResolutionConstraint {
@@ -218,6 +244,8 @@ message License {
  // LicenseRequest.request_time.  If this time is not set in the request,
  // the local time at the license service is used in this field.
  optional int64 license_start_time = 4;
+  // TODO(b/65054419): Deprecate remote_attestation_verified in favor of
+  // platform_verification_status, below.
  optional bool remote_attestation_verified = 5 [default = false];
  // Client token generated by the content provider. Optional.
  optional bytes provider_client_token = 6;
@@ -225,12 +253,22 @@ message License {
  // specification. Propagated from Widevine PSSH box. Optional.
  optional uint32 protection_scheme = 7;
  // 8 byte verification field "HDCPDATA" followed by unsigned 32 bit minimum
-  // HDCP SRM version. Additional details can be found in
-  // Widevine Modular DRM Security Integration Guide for CENC.
+  // HDCP SRM version (whether the version is for HDCP1 SRM or HDCP2 SRM
+  // depends on client max_hdcp_version).
+  // Additional details can be found in Widevine Modular DRM Security
+  // Integration Guide for CENC.
  optional bytes srm_requirement = 8;
-  // If present this contains a signed SRM file that should be installed
-  // on the client device.
+  // If present this contains a signed SRM file (either HDCP1 SRM or HDCP2 SRM
+  // depending on client max_hdcp_version) that should be installed on the
+  // client device.
  optional bytes srm_update = 9;
+  // Indicates the status of any type of platform verification performed by the
+  // server.
+  optional PlatformVerificationStatus platform_verification_status = 10
+      [default = PLATFORM_NO_VERIFICATION];
+  // IDs of the groups for which keys are delivered in this license, if any.
+  repeated bytes group_ids = 11;
+
 }

 enum ProtocolVersion {
@@ -240,7 +278,7 @@ enum ProtocolVersion {

 message LicenseRequest {
  message ContentIdentification {
-    message CencDeprecated  {
+    message CencDeprecated {
      repeated bytes pssh = 1;
      optional LicenseType license_type = 2;
      optional bytes request_id = 3;  // Opaque, client-specified.
@@ -271,26 +309,13 @@ message LicenseRequest {
      optional bytes request_id = 4;
    }

-    //oneof content_id_variant {
+    oneof content_id_variant {
      // Exactly one of these must be present.
-      optional CencDeprecated cenc_id_deprecated = 1;
-      optional WebmDeprecated webm_id_deprecated = 2;
-      optional ExistingLicense existing_license = 3;
-      optional InitData init_data = 4;
-    //}
-  }
-
-  message SubSessionData {
-    // Required. The key ID for the corresponding SUB_SESSION_KEY. The
-    // value must match the sub_session_key_id field for a
-    // corresponding SubLicense message from the PSSH.
-    optional string sub_session_key_id = 1;
-    // Required. The nonce for the track.
-    optional uint32 nonce = 2;
-    // Required for initial license request used for each CONTENT key_container
-    // to know which nonce to use for building its key control block.
-    // Not needed for renewal license request.
-    optional string track_label = 3;
+      CencDeprecated cenc_id_deprecated = 1;
+      WebmDeprecated webm_id_deprecated = 2;
+      ExistingLicense existing_license = 3;
+      InitData init_data = 4;
+    }
  }

  enum RequestType {
@@ -316,9 +341,6 @@ message LicenseRequest {
  optional uint32 key_control_nonce = 7;
  // Encrypted ClientIdentification message, used for privacy purposes.
  optional EncryptedClientIdentification encrypted_client_id = 8;
-  // Optional sub session context information. Required for using
-  // SubLicenses from the PSSH.
-  repeated SubSessionData sub_session_data = 9;
 }

 message LicenseError {
@@ -332,7 +354,6 @@ message LicenseError {
    // or similar circumstances.
    SERVICE_UNAVAILABLE = 3;
  }
-
  optional Error error_code = 1;
 }

@@ -376,6 +397,9 @@ message SignedMessage {
    ERROR_RESPONSE = 3;
    SERVICE_CERTIFICATE_REQUEST = 4;
    SERVICE_CERTIFICATE = 5;
+    SUB_LICENSE = 6;
+    CAS_LICENSE_REQUEST = 7;
+    CAS_LICENSE = 8;
  }

  optional MessageType type = 1;
@@ -386,9 +410,9 @@ message SignedMessage {
  // request for ChromeOS client devices operating in verified mode. Remote
  // attestation challenge data is |msg| field above. Optional.
  optional RemoteAttestation remote_attestation = 5;
+
  repeated MetricData metric_data = 6;
 }
-
 message GroupKeys {
  enum GroupLicenseVersion {
    GROUP_LICENSE_VERSION_1 = 0;
@@ -534,6 +558,7 @@ message ClientIdentification {
      HDCP_V2 = 2;
      HDCP_V2_1 = 3;
      HDCP_V2_2 = 4;
+      HDCP_V2_3 = 5;
      HDCP_NO_DIGITAL_OUTPUT = 0xff;
    }