shaka-packager/packager/media/base/request_signer.cc

// Copyright 2014 Google LLC. All rights reserved.
//
// Use of this source code is governed by a BSD-style
// license that can be found in the LICENSE file or at
// https://developers.google.com/open-source/licenses/bsd

#include <packager/media/base/request_signer.h>

#include <absl/log/check.h>
#include <absl/log/log.h>
#include <mbedtls/md.h>

#include <packager/media/base/aes_encryptor.h>
#include <packager/media/base/rsa_key.h>

namespace shaka {
namespace media {

RequestSigner::RequestSigner(const std::string& signer_name)
    : signer_name_(signer_name) {}
RequestSigner::~RequestSigner() {}

AesRequestSigner::AesRequestSigner(const std::string& signer_name,
                                   std::unique_ptr<AesCbcEncryptor> encryptor)
    : RequestSigner(signer_name), aes_cbc_encryptor_(std::move(encryptor)) {
  DCHECK(aes_cbc_encryptor_);
}
AesRequestSigner::~AesRequestSigner() {}

AesRequestSigner* AesRequestSigner::CreateSigner(
    const std::string& signer_name,
    const std::vector<uint8_t>& aes_key,
    const std::vector<uint8_t>& iv) {
  std::unique_ptr<AesCbcEncryptor> encryptor(
      new AesCbcEncryptor(kPkcs5Padding, AesCryptor::kUseConstantIv));
  if (!encryptor->InitializeWithIv(aes_key, iv))
    return NULL;
  return new AesRequestSigner(signer_name, std::move(encryptor));
}

bool AesRequestSigner::GenerateSignature(const std::string& message,
                                         std::string* signature) {
  const mbedtls_md_info_t* md_info = mbedtls_md_info_from_type(MBEDTLS_MD_SHA1);
  DCHECK(md_info);

  std::string hash(mbedtls_md_get_size(md_info), 0);
  CHECK_EQ(0,
           mbedtls_md(md_info, reinterpret_cast<const uint8_t*>(message.data()),
                      message.size(), reinterpret_cast<uint8_t*>(hash.data())));

  return aes_cbc_encryptor_->Crypt(hash, signature);
}

RsaRequestSigner::RsaRequestSigner(
    const std::string& signer_name,
    std::unique_ptr<RsaPrivateKey> rsa_private_key)
    : RequestSigner(signer_name), rsa_private_key_(std::move(rsa_private_key)) {
  DCHECK(rsa_private_key_);
}
RsaRequestSigner::~RsaRequestSigner() {}

RsaRequestSigner* RsaRequestSigner::CreateSigner(
    const std::string& signer_name,
    const std::string& pkcs1_rsa_key) {
  std::unique_ptr<RsaPrivateKey> rsa_private_key(
      RsaPrivateKey::Create(pkcs1_rsa_key));
  if (!rsa_private_key)
    return NULL;
  return new RsaRequestSigner(signer_name, std::move(rsa_private_key));
}

bool RsaRequestSigner::GenerateSignature(const std::string& message,
                                         std::string* signature) {
  return rsa_private_key_->GenerateSignature(message, signature);
}

}  // namespace media
}  // namespace shaka
feat!: Rewrite build system and third-party dependencies (#1310) This work was done over ~80 individual commits in the `cmake` branch, which are now being merged back into `main`. As a roll-up commit, it is too big to be reviewable, but each change was reviewed individually in context of the `cmake` branch. After this, the `cmake` branch will be renamed `cmake-porting-history` and preserved. --------- Co-authored-by: Geoff Jukes <geoffjukes@users.noreply.github.com> Co-authored-by: Bartek Zdanowski <bartek.zdanowski@gmail.com> Co-authored-by: Carlos Bentzen <cadubentzen@gmail.com> Co-authored-by: Dennis E. Mungai <2356871+Brainiarc7@users.noreply.github.com> Co-authored-by: Cosmin Stejerean <cstejerean@gmail.com> Co-authored-by: Carlos Bentzen <carlos.bentzen@bitmovin.com> Co-authored-by: Cosmin Stejerean <cstejerean@meta.com> Co-authored-by: Cosmin Stejerean <cosmin@offbytwo.com> 2023-12-01 17:32:19 +00:00			`// Copyright 2014 Google LLC. All rights reserved.`
Add copyright information. The information is generated by Edwin's copyright.py script with some minor manual modifications. Chromium's original copyright notice is not replaced. Also add LICENSE file taken from https://sites.google.com/a/google.com/ospo/releasing#TOC-BSD-License Change-Id: I231f09af96a0a611b1ca81e95cab82e12d7f529b 2014-02-14 23:21:05 +00:00			`//`
			`// Use of this source code is governed by a BSD-style`
			`// license that can be found in the LICENSE file or at`
			`// https://developers.google.com/open-source/licenses/bsd`
Add RSA signing support in WidevineEncryptorSource Defines an abstract request signer class and two implementations of the signer class, AesRequestSigner for AES-CBC signing and RsaRequestSigner for RSA-PSS signing. WidevineEncryptorSource now uses Signer for signature generation. Change-Id: I4528409a9be998535bccde40fdadb412e4bbdaf3 2014-01-14 04:52:05 +00:00
feat!: Rewrite build system and third-party dependencies (#1310) This work was done over ~80 individual commits in the `cmake` branch, which are now being merged back into `main`. As a roll-up commit, it is too big to be reviewable, but each change was reviewed individually in context of the `cmake` branch. After this, the `cmake` branch will be renamed `cmake-porting-history` and preserved. --------- Co-authored-by: Geoff Jukes <geoffjukes@users.noreply.github.com> Co-authored-by: Bartek Zdanowski <bartek.zdanowski@gmail.com> Co-authored-by: Carlos Bentzen <cadubentzen@gmail.com> Co-authored-by: Dennis E. Mungai <2356871+Brainiarc7@users.noreply.github.com> Co-authored-by: Cosmin Stejerean <cstejerean@gmail.com> Co-authored-by: Carlos Bentzen <carlos.bentzen@bitmovin.com> Co-authored-by: Cosmin Stejerean <cstejerean@meta.com> Co-authored-by: Cosmin Stejerean <cosmin@offbytwo.com> 2023-12-01 17:32:19 +00:00			`#include <packager/media/base/request_signer.h>`
Add RSA signing support in WidevineEncryptorSource Defines an abstract request signer class and two implementations of the signer class, AesRequestSigner for AES-CBC signing and RsaRequestSigner for RSA-PSS signing. WidevineEncryptorSource now uses Signer for signature generation. Change-Id: I4528409a9be998535bccde40fdadb412e4bbdaf3 2014-01-14 04:52:05 +00:00
feat!: Rewrite build system and third-party dependencies (#1310) This work was done over ~80 individual commits in the `cmake` branch, which are now being merged back into `main`. As a roll-up commit, it is too big to be reviewable, but each change was reviewed individually in context of the `cmake` branch. After this, the `cmake` branch will be renamed `cmake-porting-history` and preserved. --------- Co-authored-by: Geoff Jukes <geoffjukes@users.noreply.github.com> Co-authored-by: Bartek Zdanowski <bartek.zdanowski@gmail.com> Co-authored-by: Carlos Bentzen <cadubentzen@gmail.com> Co-authored-by: Dennis E. Mungai <2356871+Brainiarc7@users.noreply.github.com> Co-authored-by: Cosmin Stejerean <cstejerean@gmail.com> Co-authored-by: Carlos Bentzen <carlos.bentzen@bitmovin.com> Co-authored-by: Cosmin Stejerean <cstejerean@meta.com> Co-authored-by: Cosmin Stejerean <cosmin@offbytwo.com> 2023-12-01 17:32:19 +00:00			`#include <absl/log/check.h>`
			`#include <absl/log/log.h>`
			`#include <mbedtls/md.h>`

			`#include <packager/media/base/aes_encryptor.h>`
			`#include <packager/media/base/rsa_key.h>`
Add RSA signing support in WidevineEncryptorSource Defines an abstract request signer class and two implementations of the signer class, AesRequestSigner for AES-CBC signing and RsaRequestSigner for RSA-PSS signing. WidevineEncryptorSource now uses Signer for signature generation. Change-Id: I4528409a9be998535bccde40fdadb412e4bbdaf3 2014-01-14 04:52:05 +00:00
Rename top level namespace to shaka Issue #103 Change-Id: I67945c8ec6d2c178494d3b5400e5ec0170e9d115 2016-05-20 21:19:33 +00:00			`namespace shaka {`
Add RSA signing support in WidevineEncryptorSource Defines an abstract request signer class and two implementations of the signer class, AesRequestSigner for AES-CBC signing and RsaRequestSigner for RSA-PSS signing. WidevineEncryptorSource now uses Signer for signature generation. Change-Id: I4528409a9be998535bccde40fdadb412e4bbdaf3 2014-01-14 04:52:05 +00:00			`namespace media {`

			`RequestSigner::RequestSigner(const std::string& signer_name)`
			`: signer_name_(signer_name) {}`
			`RequestSigner::~RequestSigner() {}`

			`AesRequestSigner::AesRequestSigner(const std::string& signer_name,`
Replace scoped_ptr with std::unique_ptr Change-Id: I1ed18bf876b6154d08a1f7913aa7e76c525451f9 2016-08-17 17:41:40 +00:00			`std::unique_ptr<AesCbcEncryptor> encryptor)`
			`: RequestSigner(signer_name), aes_cbc_encryptor_(std::move(encryptor)) {`
Add RSA signing support in WidevineEncryptorSource Defines an abstract request signer class and two implementations of the signer class, AesRequestSigner for AES-CBC signing and RsaRequestSigner for RSA-PSS signing. WidevineEncryptorSource now uses Signer for signature generation. Change-Id: I4528409a9be998535bccde40fdadb412e4bbdaf3 2014-01-14 04:52:05 +00:00			`DCHECK(aes_cbc_encryptor_);`
			`}`
			`AesRequestSigner::~AesRequestSigner() {}`

Move hex string out of packager.h Also added validation failure tests in packager_test.py. Change-Id: I6697a3138d57889110250404205536dd5cd53cd0 2017-06-14 23:18:16 +00:00			`AesRequestSigner* AesRequestSigner::CreateSigner(`
			`const std::string& signer_name,`
			`const std::vector<uint8_t>& aes_key,`
			`const std::vector<uint8_t>& iv) {`
Replace scoped_ptr with std::unique_ptr Change-Id: I1ed18bf876b6154d08a1f7913aa7e76c525451f9 2016-08-17 17:41:40 +00:00			`std::unique_ptr<AesCbcEncryptor> encryptor(`
Fix a few problems in AesCryptor classes - CBC cryptors should accept IV of size 8 bytes - it will be zero extended to 16 bytes. - Fixed iv() not updated problem in AesPatternCryptor. - Replace kChainAcrossCalls with ConstantIvFlag enum flags. Change-Id: I3fb4de0e8abbe891e6271e779373ba53f8df660d 2016-04-13 17:52:41 +00:00			`new AesCbcEncryptor(kPkcs5Padding, AesCryptor::kUseConstantIv));`
Add RSA signing support in WidevineEncryptorSource Defines an abstract request signer class and two implementations of the signer class, AesRequestSigner for AES-CBC signing and RsaRequestSigner for RSA-PSS signing. WidevineEncryptorSource now uses Signer for signature generation. Change-Id: I4528409a9be998535bccde40fdadb412e4bbdaf3 2014-01-14 04:52:05 +00:00			`if (!encryptor->InitializeWithIv(aes_key, iv))`
			`return NULL;`
Replace scoped_ptr with std::unique_ptr Change-Id: I1ed18bf876b6154d08a1f7913aa7e76c525451f9 2016-08-17 17:41:40 +00:00			`return new AesRequestSigner(signer_name, std::move(encryptor));`
Add RSA signing support in WidevineEncryptorSource Defines an abstract request signer class and two implementations of the signer class, AesRequestSigner for AES-CBC signing and RsaRequestSigner for RSA-PSS signing. WidevineEncryptorSource now uses Signer for signature generation. Change-Id: I4528409a9be998535bccde40fdadb412e4bbdaf3 2014-01-14 04:52:05 +00:00			`}`

			`bool AesRequestSigner::GenerateSignature(const std::string& message,`
			`std::string* signature) {`
feat!: Rewrite build system and third-party dependencies (#1310) This work was done over ~80 individual commits in the `cmake` branch, which are now being merged back into `main`. As a roll-up commit, it is too big to be reviewable, but each change was reviewed individually in context of the `cmake` branch. After this, the `cmake` branch will be renamed `cmake-porting-history` and preserved. --------- Co-authored-by: Geoff Jukes <geoffjukes@users.noreply.github.com> Co-authored-by: Bartek Zdanowski <bartek.zdanowski@gmail.com> Co-authored-by: Carlos Bentzen <cadubentzen@gmail.com> Co-authored-by: Dennis E. Mungai <2356871+Brainiarc7@users.noreply.github.com> Co-authored-by: Cosmin Stejerean <cstejerean@gmail.com> Co-authored-by: Carlos Bentzen <carlos.bentzen@bitmovin.com> Co-authored-by: Cosmin Stejerean <cstejerean@meta.com> Co-authored-by: Cosmin Stejerean <cosmin@offbytwo.com> 2023-12-01 17:32:19 +00:00			`const mbedtls_md_info_t* md_info = mbedtls_md_info_from_type(MBEDTLS_MD_SHA1);`
			`DCHECK(md_info);`

			`std::string hash(mbedtls_md_get_size(md_info), 0);`
			`CHECK_EQ(0,`
			`mbedtls_md(md_info, reinterpret_cast<const uint8_t*>(message.data()),`
			`message.size(), reinterpret_cast<uint8_t*>(hash.data())));`

			`return aes_cbc_encryptor_->Crypt(hash, signature);`
Add RSA signing support in WidevineEncryptorSource Defines an abstract request signer class and two implementations of the signer class, AesRequestSigner for AES-CBC signing and RsaRequestSigner for RSA-PSS signing. WidevineEncryptorSource now uses Signer for signature generation. Change-Id: I4528409a9be998535bccde40fdadb412e4bbdaf3 2014-01-14 04:52:05 +00:00			`}`

Replace scoped_ptr with std::unique_ptr Change-Id: I1ed18bf876b6154d08a1f7913aa7e76c525451f9 2016-08-17 17:41:40 +00:00			`RsaRequestSigner::RsaRequestSigner(`
			`const std::string& signer_name,`
			`std::unique_ptr<RsaPrivateKey> rsa_private_key)`
			`: RequestSigner(signer_name), rsa_private_key_(std::move(rsa_private_key)) {`
Add RSA signing support in WidevineEncryptorSource Defines an abstract request signer class and two implementations of the signer class, AesRequestSigner for AES-CBC signing and RsaRequestSigner for RSA-PSS signing. WidevineEncryptorSource now uses Signer for signature generation. Change-Id: I4528409a9be998535bccde40fdadb412e4bbdaf3 2014-01-14 04:52:05 +00:00			`DCHECK(rsa_private_key_);`
			`}`
			`RsaRequestSigner::~RsaRequestSigner() {}`

			`RsaRequestSigner* RsaRequestSigner::CreateSigner(`
			`const std::string& signer_name,`
			`const std::string& pkcs1_rsa_key) {`
Replace scoped_ptr with std::unique_ptr Change-Id: I1ed18bf876b6154d08a1f7913aa7e76c525451f9 2016-08-17 17:41:40 +00:00			`std::unique_ptr<RsaPrivateKey> rsa_private_key(`
Add RSA signing support in WidevineEncryptorSource Defines an abstract request signer class and two implementations of the signer class, AesRequestSigner for AES-CBC signing and RsaRequestSigner for RSA-PSS signing. WidevineEncryptorSource now uses Signer for signature generation. Change-Id: I4528409a9be998535bccde40fdadb412e4bbdaf3 2014-01-14 04:52:05 +00:00			`RsaPrivateKey::Create(pkcs1_rsa_key));`
			`if (!rsa_private_key)`
			`return NULL;`
Replace scoped_ptr with std::unique_ptr Change-Id: I1ed18bf876b6154d08a1f7913aa7e76c525451f9 2016-08-17 17:41:40 +00:00			`return new RsaRequestSigner(signer_name, std::move(rsa_private_key));`
Add RSA signing support in WidevineEncryptorSource Defines an abstract request signer class and two implementations of the signer class, AesRequestSigner for AES-CBC signing and RsaRequestSigner for RSA-PSS signing. WidevineEncryptorSource now uses Signer for signature generation. Change-Id: I4528409a9be998535bccde40fdadb412e4bbdaf3 2014-01-14 04:52:05 +00:00			`}`

			`bool RsaRequestSigner::GenerateSignature(const std::string& message,`
			`std::string* signature) {`
			`return rsa_private_key_->GenerateSignature(message, signature);`
			`}`

			`} // namespace media`
Rename top level namespace to shaka Issue #103 Change-Id: I67945c8ec6d2c178494d3b5400e5ec0170e9d115 2016-05-20 21:19:33 +00:00			`} // namespace shaka`