121d554c20
------------- Add libcurl to media_cas_packager_sdk. libcurl will later be used by a key fetcher to retrieve entitlement key from License Server using a HTTP request. ------------- Add a function named parsehelper to parse DCSL from the key smith response. ------------- Move wv_cas_key_fetcher to media_cas_packager_sdk so partners can use it request entitlement keys from License Server. ------------- Add pkcs7 write method to x509_cert.cc ------------- Update boringssl_repo to latest in master-with-bazel ------------- Add a TsPacket class to media_cas_packager_sdk to allow the construction of a ECM TS packet in the SDK. ------------- Move InsertEcm() from our internal CAS directory to the media_cas_packager_sdk, to be used to build a ECM TS packet by the SDK. ------------- Add METADATA in common folder ------------- Refactoring of certificate verification into DrmRootCertificate. ------------- Extend the default duration of leaf certificates. ------------- Fix moe_test ------------- Add a new method to WvCasEcm to allow partner to create a TS packet carrying the generated ECM. ------------- Change from SHA1 to SHA256 for Cast certificates ------------- Update crypto mode enumeration to match WV ECM document ------------- Fix the way we set the validity dates ------------- Move exported_root/util/status to common/ to prepare for util::Status migration Also added constructor/operator to copy from/to util::Status. ------------- Add GenerateDCSLrequest function to certificate_util.h. ------------- Fix build break ------------- Allow 'table_id' (in the section header) be specified by caller of SDK method WvCasEcm::GenerateTsPacket(). ------------- Created by MOE: https://github.com/google/moe MOE_MIGRATED_REVID=224535399
81 lines
3.2 KiB
C++
81 lines
3.2 KiB
C++
////////////////////////////////////////////////////////////////////////////////
|
|
// Copyright 2016 Google LLC.
|
|
//
|
|
// This software is licensed under the terms defined in the Widevine Master
|
|
// License Agreement. For a copy of this agreement, please contact
|
|
// widevine-licensing@google.com.
|
|
////////////////////////////////////////////////////////////////////////////////
|
|
//
|
|
// RAII wrapper classes for cleaning up various OpenSSL dynamically allocated
|
|
// structures.
|
|
|
|
#ifndef COMMON_OPENSSL_UTIL_H_
|
|
#define COMMON_OPENSSL_UTIL_H_
|
|
|
|
#include "openssl/bio.h"
|
|
#include "openssl/evp.h"
|
|
#include "openssl/pkcs7.h"
|
|
#include "openssl/rsa.h"
|
|
#include "openssl/x509v3.h"
|
|
|
|
template <typename T, void (*func)(T *)>
|
|
struct OpenSSLDeleter {
|
|
void operator()(T *obj) { func(obj); }
|
|
};
|
|
|
|
template <typename StackType, typename T, void (*func)(T *)>
|
|
struct OpenSSLStackDeleter {
|
|
void operator()(StackType *obj) {
|
|
sk_pop_free(reinterpret_cast<_STACK *>(obj),
|
|
reinterpret_cast<void (*)(void *)>(func));
|
|
}
|
|
};
|
|
|
|
template <typename StackType>
|
|
struct OpenSSLStackOnlyDeleter {
|
|
void operator()(StackType *obj) { sk_free(reinterpret_cast<_STACK *>(obj)); }
|
|
};
|
|
|
|
template <typename T, void (*func)(T *)>
|
|
using ScopedOpenSSLType = std::unique_ptr<T, OpenSSLDeleter<T, func>>;
|
|
template <typename StackType, typename T, void (*func)(T *)>
|
|
using ScopedOpenSSLStack =
|
|
std::unique_ptr<StackType, OpenSSLStackDeleter<StackType, T, func>>;
|
|
template <typename StackType>
|
|
using ScopedOpenSSLStackOnly =
|
|
std::unique_ptr<StackType, OpenSSLStackOnlyDeleter<StackType>>;
|
|
|
|
using ScopedBIGNUM = ScopedOpenSSLType<BIGNUM, BN_free>;
|
|
using ScopedBIO = ScopedOpenSSLType<BIO, BIO_vfree>;
|
|
using ScopedPKCS7 = ScopedOpenSSLType<PKCS7, PKCS7_free>;
|
|
using ScopedPKEY = ScopedOpenSSLType<EVP_PKEY, EVP_PKEY_free>;
|
|
using ScopedRSA = ScopedOpenSSLType<RSA, RSA_free>;
|
|
using ScopedX509 = ScopedOpenSSLType<X509, X509_free>;
|
|
using ScopedX509Extension =
|
|
ScopedOpenSSLType<X509_EXTENSION, X509_EXTENSION_free>;
|
|
using ScopedX509Name = ScopedOpenSSLType<X509_NAME, X509_NAME_free>;
|
|
using ScopedX509NameEntry =
|
|
ScopedOpenSSLType<X509_NAME_ENTRY, X509_NAME_ENTRY_free>;
|
|
using ScopedX509Store = ScopedOpenSSLType<X509_STORE, X509_STORE_free>;
|
|
using ScopedX509StoreCtx =
|
|
ScopedOpenSSLType<X509_STORE_CTX, X509_STORE_CTX_free>;
|
|
using ScopedX509Req = ScopedOpenSSLType<X509_REQ, X509_REQ_free>;
|
|
using ScopedAsn1UtcTime = ScopedOpenSSLType<ASN1_UTCTIME, ASN1_UTCTIME_free>;
|
|
using ScopedAsn1Time = ScopedOpenSSLType<ASN1_TIME, ASN1_TIME_free>;
|
|
using ScopedAsn1Utc8String =
|
|
ScopedOpenSSLType<ASN1_UTF8STRING, ASN1_UTF8STRING_free>;
|
|
using ScopedAsn1Integer = ScopedOpenSSLType<ASN1_INTEGER, ASN1_INTEGER_free>;
|
|
using ScopedAsn1Object = ScopedOpenSSLType<ASN1_OBJECT, ASN1_OBJECT_free>;
|
|
using ScopedAsn1OctetString =
|
|
ScopedOpenSSLType<ASN1_OCTET_STRING, ASN1_OCTET_STRING_free>;
|
|
|
|
// XxxStack deallocates the stack and its members while XxxStackOnly deallocates
|
|
// the stack only.
|
|
using ScopedX509Stack = ScopedOpenSSLStack<STACK_OF(X509), X509, X509_free>;
|
|
using ScopedX509StackOnly = ScopedOpenSSLStackOnly<STACK_OF(X509)>;
|
|
using ScopedX509InfoStack =
|
|
ScopedOpenSSLStack<STACK_OF(X509_INFO), X509_INFO, X509_INFO_free>;
|
|
using ScopedX509InfoStackOnly = ScopedOpenSSLStackOnly<STACK_OF(X509_INFO)>;
|
|
|
|
#endif // COMMON_OPENSSL_UTIL_H_
|