////////////////////////////////////////////////////////////////////////////////
// Copyright 2019 Google LLC.
//
// This software is licensed under the terms defined in the Widevine Master
// License Agreement. For a copy of this agreement, please contact
// widevine-licensing@google.com.
////////////////////////////////////////////////////////////////////////////////
//
// This is a pared down copy of the file in:
//
// Do not modify this file without keeping the other file in sync.
// Items in the original file but removed here include.
//    - comments
//    - SignedDeviceInfoService definition
//    - Google api annotations.
//
// TODO(user, yawenyu): Figure out how we can avoid having two copies
// of the same file.

syntax = "proto3";

package widevine;

option csharp_namespace = "Google.Chrome.Widevine.Deviceinfo.V1";
option java_multiple_files = true;
option java_outer_classname = "DeviceCertificateStatusProtos";
option java_package = "com.google.chrome.widevine.deviceinfo.v1";

// GCWDI == Google Chrome Widevine Device Info
option objc_class_prefix = "GCWDI";

// A request sent to Widevine Provisioning Server (keysmith) to retrieve
// 'DeviceCertificateStatusList'.
message DeviceCertificateStatusListRequest {
  // The version of sdk. Required.
  string sdk_version = 1;
  // POSIX time, in seconds, when this request was created. Required.
  uint64 sdk_time_seconds = 2;
  // The serialized service certificate used to sign the request. Required.
  bytes service_certificate = 3;
}

// A device certificate status resource in the Widevine Signed Device Info
// API. It intended to carry information about DRM and OEM certificate
// status and device information for a specific system ID. The information is
// intended to be shared publicly.

// A signed request sent to Widevine Provisioning Server (keysmith) to retrieve
// 'DeviceCertificateStatusList'.
message SignedDeviceInfoRequest {
  // A serialized DeviceCertificateStatusListRequest. Required.
  bytes device_certificate_status_list_request = 1;

  // TODO(user): What's the signature algorithm and the key used?
  bytes signature = 2;
}

// Contains a serialized DeviceCertificateStatusList and the signature.
message SignedDeviceInfo {
  // Serialized DeviceCertificateStatusList. Required.
  bytes device_certificate_status_list = 1;

  // Signature of device_certificate_status_list_request. Signed with root
  // certificate private key using RSASSA-PSS. Required.
  bytes signature = 2;
}