widevine-partner/oemcrypto
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

OPK v18.5

Browse Source
This commit is contained in:
Matt Feddersen
2024-03-28 17:57:34 -07:00
parent 8161b155b3
commit e150f9297d
53 changed files with 1150 additions and 354 deletions
Download Patch File Download Diff File Expand all files Collapse all files

41
CHANGELOG.md
View File

@@ -2,6 +2,46 @@
[TOC]
## [Version 18.5][v18.5]
This is a minor release that includes a few security fixes and bug fixes.
General
- Change OEMCrypto_FreeSecureBuffer() |output_descriptor| parameter to be
[in,out] type.
- Use strlen() instead of sizeof() to get the length of BUILD_INFO.
- Add OEMCrypto_GetEmbeddedDrmCertificate() definition to OPK, with
OEMCrypto_ERROR_NOT_IMPLEMENTED.
- Remove default.h include file from wtpi_config, which was causing a mismatch
between reported config values and actual config values.
- Remove extra is_debug field and trailing comma from BuildInformation.
- Reduce trusted clock skew on restarts in wtpi_reference implementation.
- Remove -Wno-unused-parameter cflag
OPK serialization layer
- Avoid writing any value to output parameters if the OEMCryptoResult is not
OEMCrypto_SUCCESS. (Applies to [out] type only. Not [in] or [in,out]). This
avoids subtle bugs where the serialization logic may unexpectedly modify (eg
set to 0) an output parameter on failure.
- Initialize pointers in a few corner cases.
Tests
- Fix default cipher mode for CAS unit test.
- Skip entitlement session tests that are only supported on CAS devices.
- Don't force decrypt count to increase in unit tests
- Skip some cast tests if not supported.
OP-TEE port changes
- Fix memory leaks on failure cases in AES decrypt, RSA key creation, and ECC
key creation.
- Check incoming message size from REE to avoid OOB.
- Generate ECC keypair and zero pad appropriately.
- Add file existence check in RPMB impl
## [Version 18.4][v18.4]
Version 18.4 includes the reference implementation in OPK to support MediaCAS,
@@ -479,3 +519,4 @@ Public release for OEMCrypto API and ODK library version 16.4.
[v18.1]: https://widevine-partner.googlesource.com/oemcrypto/+/refs/tags/v18.1
[v18.3]: https://widevine-partner.googlesource.com/oemcrypto/+/refs/tags/v18.3
[v18.4]: https://widevine-partner.googlesource.com/oemcrypto/+/refs/tags/v18.4
[v18.5]: https://widevine-partner.googlesource.com/oemcrypto/+/refs/tags/v18.5