Changes from Widevine CDM repo

Squashed commit of these CLs from the widevine cdm repo: Update YT CP server URI to point to the UAT server https://widevine-internal-review.googlesource.com/#/c/9327/ OEMCrypto Version 9 API https://widevine-internal-review.googlesource.com/#/c/9142/ Correct Device ID length in OEMCrypto reference version https://widevine-internal-review.googlesource.com/#/c/8723/ Modify tests to prevent intermittent failures https://widevine-internal-review.googlesource.com/#/c/8982/ Generate a unique license request ID https://widevine-internal-review.googlesource.com/#/c/8721/ Re-enable android timer mechanisms https://widevine-internal-review.googlesource.com/#/c/8833/ Do not close CDM session on removeKeys https://widevine-internal-review.googlesource.com/#/c/8703/ And numerous changes required by Eureka, Steel, and CTE versions of Widevine CDM, as highlighted here: https://widevine-internal-review.googlesource.com/#/c/8596/ https://widevine-internal-review.googlesource.com/#/c/8955/ https://widevine-internal-review.googlesource.com/#/c/8922/ https://widevine-internal-review.googlesource.com/#/c/8890/ https://widevine-internal-review.googlesource.com/#/c/8871/ https://widevine-internal-review.googlesource.com/#/c/8706/ https://widevine-internal-review.googlesource.com/#/c/8425/ Change-Id: Iafd33905227e74eb2132c240b929d2282ab68042
2014-03-14 15:00:22 -07:00
parent 7e8bea7d8d
commit dd75655102
45 changed files with 856 additions and 711 deletions
--- a/libwvdrmengine/oemcrypto/mock/src/oemcrypto_engine_mock.cpp
+++ b/libwvdrmengine/oemcrypto/mock/src/oemcrypto_engine_mock.cpp
@@ -31,8 +31,9 @@
 static const int kPssSaltLength = 20;

 namespace {
-// Increment counter for AES-CTR
-void ctr128_inc(uint8_t* counter) {
+// Increment counter for AES-CTR.  The CENC spec specifies we increment only
+// the low 64 bits of the IV counter, and leave the high 64 bits alone.
+void ctr128_inc64(uint8_t* counter) {
  uint32_t n = 16;
  do {
    if (++counter[--n] != 0) return;
@@ -899,11 +900,11 @@ bool CryptoEngine::DecryptCTR(SessionContext* session,
                              const uint8_t* cipher_data,
                              size_t cipher_data_length,
                              bool is_encrypted,
-                              void* clear_data,
+                              uint8_t* clear_data,
                              BufferType buffer_type) {

  // If the data is clear, we do not need a current key selected.
-  if (!is_encrypted) {
+  if (!is_encrypted && buffer_type != kBufferTypeDirect) {
    memcpy(reinterpret_cast<uint8_t*>(clear_data),
           cipher_data, cipher_data_length);
    return true;
@@ -961,20 +962,20 @@ bool CryptoEngine::DecryptCTR(SessionContext* session,

  // Encrypt the IV.
  uint8_t ecount_buf[AES_BLOCK_SIZE];
-  if (block_offset != 0) {
-    // The context is needed only when not starting a new block.
-    AES_encrypt(aes_iv, ecount_buf, &aes_key);
-    ctr128_inc(aes_iv);
-  }

-  // Decryption.
-  unsigned int block_offset_cur = block_offset;
-  AES_ctr128_encrypt(
-      cipher_data, reinterpret_cast<uint8_t*>(clear_data), cipher_data_length,
-      &aes_key, aes_iv, ecount_buf, &block_offset_cur);
-  if (block_offset_cur != ((block_offset + cipher_data_length) % AES_BLOCK_SIZE)) {
-    LOGE("[DecryptCTR(): FAILURE: byte offset wrong.]");
-    return false;
+  // The CENC spec specifies we increment only the low 64 bits of the IV
+  // counter, and leave the high 64 bits alone.  This is different from the
+  // OpenSSL implementation, which increments the entire 128 bit iv. That is
+  // why we implement the CTR loop ourselves.
+  size_t l = 0;
+  while (l < cipher_data_length) {
+    AES_encrypt(aes_iv, ecount_buf, &aes_key);
+    for (int n = block_offset; n < AES_BLOCK_SIZE && l < cipher_data_length;
+         ++n, ++l) {
+      clear_data[l] = cipher_data[l] ^ ecount_buf[n];
+    }
+    ctr128_inc64(aes_iv);
+    block_offset = 0;
  }
  return true;
 }