830a7acc48
This is a merge from the Widevine repo of http://go/wvgerrit/117311 Update backwards compatibility builds http://go/wvgerrit/117423 Restrict maximum size of key id To protect from out-of-memory found by fuzz testing. http://go/wvgerrit/117683 Generation number should wrap The master generation number should wrap around on overflow. This means that we cannot use less than to check for a skew of 1. http://go/wvgerrit/119232 Replace 0 with nullptr Bug: 176234903 Bug: 184866351 Bug: 161243686 Test: ran unit tests (CL affects test code only) Merged-In: Ie787bcf9c66a7605700c3dc29a8aa16406926ce3 Change-Id: I2b02a36a70a0920f31ffc00de102a23516d4b20e
133 lines
5.2 KiB
C++
133 lines
5.2 KiB
C++
// Copyright 2018 Google LLC. All Rights Reserved. This file and proprietary
|
|
// source code may only be used and distributed under the Widevine
|
|
// License Agreement.
|
|
//
|
|
// Reference implementation of OEMCrypto APIs
|
|
//
|
|
#ifndef OEMCRYPTO_USAGE_TABLE_REF_H_
|
|
#define OEMCRYPTO_USAGE_TABLE_REF_H_
|
|
|
|
#include <stdint.h>
|
|
#include <map>
|
|
#include <memory>
|
|
#include <string>
|
|
#include <vector>
|
|
|
|
#include "OEMCryptoCENC.h"
|
|
#include "odk_structs.h"
|
|
#include "oemcrypto_types.h"
|
|
#include "openssl/sha.h"
|
|
|
|
namespace wvoec_ref {
|
|
|
|
class SessionContext;
|
|
class CryptoEngine;
|
|
class UsageTable;
|
|
|
|
const size_t kMaxPSTLength = 255;
|
|
// This is the data we store offline.
|
|
struct StoredUsageEntry {
|
|
int64_t generation_number;
|
|
int64_t time_of_license_received;
|
|
int64_t time_of_first_decrypt;
|
|
int64_t time_of_last_decrypt;
|
|
enum OEMCrypto_Usage_Entry_Status status;
|
|
uint8_t mac_key_server[wvoec::MAC_KEY_SIZE];
|
|
uint8_t mac_key_client[wvoec::MAC_KEY_SIZE];
|
|
uint32_t index;
|
|
uint8_t pst[kMaxPSTLength+1]; // add 1 for padding.
|
|
uint8_t pst_length;
|
|
};
|
|
|
|
class UsageTableEntry {
|
|
public:
|
|
UsageTableEntry(UsageTable* table, uint32_t index, int64_t generation);
|
|
virtual ~UsageTableEntry(); // Free memory, remove reference in header.
|
|
bool Inactive() { return data_.status >= kInactive; }
|
|
// Mark this entry as modified and forbid a usage report until the data has
|
|
// been saved. This is done on important events like first decrypt and
|
|
// deactivation.
|
|
void ForbidReport();
|
|
OEMCryptoResult SetPST(const uint8_t* pst, size_t pst_length);
|
|
bool VerifyPST(const uint8_t* pst, size_t pst_length);
|
|
bool VerifyMacKeys(const std::vector<uint8_t>& server,
|
|
const std::vector<uint8_t>& client);
|
|
bool SetMacKeys(const std::vector<uint8_t>& server,
|
|
const std::vector<uint8_t>& client);
|
|
virtual OEMCryptoResult ReportUsage(const std::vector<uint8_t>& pst,
|
|
uint8_t* buffer, size_t* buffer_length);
|
|
virtual void UpdateAndIncrement(ODK_ClockValues* clock_values);
|
|
// Save all data to the given buffer. This should be called after updating the
|
|
// data.
|
|
OEMCryptoResult SaveData(CryptoEngine* ce, SessionContext* session,
|
|
uint8_t* signed_buffer, size_t buffer_size);
|
|
// Load all data from the buffer, and then update clock_values.
|
|
OEMCryptoResult LoadData(CryptoEngine* ce, uint32_t index,
|
|
const std::vector<uint8_t>& buffer,
|
|
ODK_ClockValues* clock_values);
|
|
int64_t generation_number() { return data_.generation_number; }
|
|
void set_generation_number(int64_t value) { data_.generation_number = value; }
|
|
void set_index(int32_t index) { data_.index = index; }
|
|
uint32_t index() { return data_.index; }
|
|
void set_recent_decrypt(bool recent_decrypt) {
|
|
recent_decrypt_ = recent_decrypt;
|
|
}
|
|
static size_t SignedEntrySize();
|
|
const uint8_t* mac_key_server() const { return data_.mac_key_server; }
|
|
const uint8_t* mac_key_client() const { return data_.mac_key_client; }
|
|
|
|
protected:
|
|
UsageTable* usage_table_; // Owner of this object.
|
|
bool recent_decrypt_;
|
|
bool forbid_report_;
|
|
StoredUsageEntry data_;
|
|
};
|
|
|
|
class UsageTable {
|
|
public:
|
|
explicit UsageTable(CryptoEngine* ce) : ce_(ce), header_loaded_(false){};
|
|
virtual ~UsageTable();
|
|
|
|
OEMCryptoResult CreateNewUsageEntry(SessionContext* session,
|
|
std::unique_ptr<UsageTableEntry>* entry,
|
|
uint32_t* usage_entry_number);
|
|
OEMCryptoResult LoadUsageEntry(SessionContext* session,
|
|
std::unique_ptr<UsageTableEntry>* entry,
|
|
uint32_t index,
|
|
const std::vector<uint8_t>& buffer,
|
|
ODK_ClockValues* clock_values);
|
|
OEMCryptoResult UpdateUsageEntry(
|
|
SessionContext* session, UsageTableEntry* entry, uint8_t* header_buffer,
|
|
size_t* header_buffer_length, uint8_t* entry_buffer,
|
|
size_t* entry_buffer_length, ODK_ClockValues* clock_values);
|
|
OEMCryptoResult MoveEntry(UsageTableEntry* entry, uint32_t new_index);
|
|
OEMCryptoResult CreateUsageTableHeader(uint8_t* header_buffer,
|
|
size_t* header_buffer_length);
|
|
OEMCryptoResult LoadUsageTableHeader(const std::vector<uint8_t>& buffer);
|
|
OEMCryptoResult ShrinkUsageTableHeader(uint32_t new_table_size,
|
|
uint8_t* header_buffer,
|
|
size_t* header_buffer_length);
|
|
void ReleaseEntry(uint32_t index) { sessions_[index] = nullptr; }
|
|
void IncrementGeneration();
|
|
static size_t SignedHeaderSize(size_t count);
|
|
|
|
protected:
|
|
virtual UsageTableEntry* MakeEntry(uint32_t index);
|
|
virtual OEMCryptoResult SaveUsageTableHeader(uint8_t* signed_buffer,
|
|
size_t buffer_size);
|
|
virtual bool SaveGenerationNumber();
|
|
virtual bool LoadGenerationNumber(bool or_make_new_one);
|
|
|
|
CryptoEngine* ce_;
|
|
bool header_loaded_;
|
|
int64_t master_generation_number_;
|
|
std::vector<int64_t> generation_numbers_;
|
|
std::vector<SessionContext*> sessions_;
|
|
|
|
friend class UsageTableEntry;
|
|
};
|
|
|
|
} // namespace wvoec_ref
|
|
|
|
#endif // OEMCRYPTO_USAGE_TABLE_REF_H_
|