2017-02-02 18:28:29 +00:00
|
|
|
// Copyright 2017 Google Inc. All rights reserved.
|
|
|
|
//
|
|
|
|
// Use of this source code is governed by a BSD-style
|
|
|
|
// license that can be found in the LICENSE file or at
|
|
|
|
// https://developers.google.com/open-source/licenses/bsd
|
|
|
|
|
|
|
|
#ifndef PACKAGER_MEDIA_CRYPTO_ENCRYPTION_HANDLER_H_
|
|
|
|
#define PACKAGER_MEDIA_CRYPTO_ENCRYPTION_HANDLER_H_
|
|
|
|
|
|
|
|
#include "packager/media/base/key_source.h"
|
|
|
|
#include "packager/media/base/media_handler.h"
|
2017-05-22 20:31:41 +00:00
|
|
|
#include "packager/packager.h"
|
2017-02-02 18:28:29 +00:00
|
|
|
|
|
|
|
namespace shaka {
|
|
|
|
namespace media {
|
|
|
|
|
|
|
|
class AesCryptor;
|
|
|
|
class VideoSliceHeaderParser;
|
|
|
|
class VPxParser;
|
|
|
|
struct EncryptionKey;
|
|
|
|
struct VPxFrameInfo;
|
|
|
|
|
|
|
|
/// This structure defines encryption options.
|
|
|
|
struct EncryptionOptions {
|
|
|
|
/// Clear lead duration in seconds.
|
|
|
|
double clear_lead_in_seconds = 0;
|
|
|
|
/// The protection scheme: 'cenc', 'cens', 'cbc1', 'cbcs'.
|
|
|
|
FourCC protection_scheme = FOURCC_cenc;
|
|
|
|
/// Crypto period duration in seconds. A positive value means key rotation is
|
|
|
|
/// enabled, the key source must support key rotation in this case.
|
|
|
|
double crypto_period_duration_in_seconds = 0;
|
2017-05-22 20:31:41 +00:00
|
|
|
/// Enable/disable subsample encryption for VP9.
|
2017-03-28 15:19:15 +00:00
|
|
|
bool vp9_subsample_encryption = true;
|
2017-05-22 20:31:41 +00:00
|
|
|
/// Stream label function used to get the label of the encrypted stream. Must
|
|
|
|
/// be set.
|
|
|
|
std::function<std::string(
|
|
|
|
const EncryptionParams::EncryptedStreamAttributes& stream_attributes)>
|
|
|
|
stream_label_func;
|
2017-02-02 18:28:29 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
class EncryptionHandler : public MediaHandler {
|
|
|
|
public:
|
|
|
|
EncryptionHandler(const EncryptionOptions& encryption_options,
|
|
|
|
KeySource* key_source);
|
|
|
|
|
|
|
|
~EncryptionHandler() override;
|
|
|
|
|
|
|
|
protected:
|
|
|
|
/// @name MediaHandler implementation overrides.
|
|
|
|
/// @{
|
|
|
|
Status InitializeInternal() override;
|
|
|
|
Status Process(std::unique_ptr<StreamData> stream_data) override;
|
|
|
|
/// @}
|
|
|
|
|
|
|
|
private:
|
|
|
|
friend class EncryptionHandlerTest;
|
|
|
|
|
|
|
|
EncryptionHandler(const EncryptionHandler&) = delete;
|
|
|
|
EncryptionHandler& operator=(const EncryptionHandler&) = delete;
|
|
|
|
|
|
|
|
// Processes |stream_info| and sets up stream specific variables.
|
|
|
|
Status ProcessStreamInfo(StreamInfo* stream_info);
|
Implement ChunkingHandler
This handler is a multi-in multi-out handler. If more than one input is
provided, there should be one and only one video stream; also, all inputs
should come from the same thread and are synchronized.
There can be multiple chunking handler running in different threads or even
different processes, we use the "consistent chunking algorithm" to make sure
the chunks in different streams are aligned without explicit communcating
with each other - which is not efficient and often difficult.
Consistent Chunking Algorithm:
1. Find the consistent chunkable boundary
Let the timestamps for video frames be (t1, t2, t3, ...). Then a
consistent chunkable boundary is simply the first chunkable boundary after
(tk / N) != (tk-1 / N), where '/' denotes integer division, and N is the
intended chunk duration.
2. Chunk only at the consistent chunkable boundary
This algorithm will make sure the chunks from different video streams are
aligned if they have aligned GoPs. However, this algorithm will only work
for video streams. To be able to chunk non video streams at similar
positions as video streams, ChunkingHandler is designed to accept one video
input and multiple non video inputs, the non video inputs are chunked when
the video input is chunked. If the inputs are synchronized - which is true
if the inputs come from the same demuxer, the video and non video chunks
are aligned.
Change-Id: Id3bad51ab14f311efdb8713b6cd36d36cf9e4639
2017-02-07 18:58:47 +00:00
|
|
|
// Processes media sample and encrypts it if needed.
|
2017-02-02 18:28:29 +00:00
|
|
|
Status ProcessMediaSample(MediaSample* sample);
|
|
|
|
|
2017-03-11 02:48:04 +00:00
|
|
|
Status SetupProtectionPattern(StreamType stream_type);
|
|
|
|
bool CreateEncryptor(const EncryptionKey& encryption_key);
|
2017-02-02 18:28:29 +00:00
|
|
|
bool EncryptVpxFrame(const std::vector<VPxFrameInfo>& vpx_frames,
|
|
|
|
MediaSample* sample,
|
|
|
|
DecryptConfig* decrypt_config);
|
|
|
|
bool EncryptNalFrame(MediaSample* sample, DecryptConfig* decrypt_config);
|
|
|
|
void EncryptBytes(uint8_t* data, size_t size);
|
|
|
|
|
|
|
|
// Testing injections.
|
|
|
|
void InjectVpxParserForTesting(std::unique_ptr<VPxParser> vpx_parser);
|
|
|
|
void InjectVideoSliceHeaderParserForTesting(
|
|
|
|
std::unique_ptr<VideoSliceHeaderParser> header_parser);
|
|
|
|
|
Implement ChunkingHandler
This handler is a multi-in multi-out handler. If more than one input is
provided, there should be one and only one video stream; also, all inputs
should come from the same thread and are synchronized.
There can be multiple chunking handler running in different threads or even
different processes, we use the "consistent chunking algorithm" to make sure
the chunks in different streams are aligned without explicit communcating
with each other - which is not efficient and often difficult.
Consistent Chunking Algorithm:
1. Find the consistent chunkable boundary
Let the timestamps for video frames be (t1, t2, t3, ...). Then a
consistent chunkable boundary is simply the first chunkable boundary after
(tk / N) != (tk-1 / N), where '/' denotes integer division, and N is the
intended chunk duration.
2. Chunk only at the consistent chunkable boundary
This algorithm will make sure the chunks from different video streams are
aligned if they have aligned GoPs. However, this algorithm will only work
for video streams. To be able to chunk non video streams at similar
positions as video streams, ChunkingHandler is designed to accept one video
input and multiple non video inputs, the non video inputs are chunked when
the video input is chunked. If the inputs are synchronized - which is true
if the inputs come from the same demuxer, the video and non video chunks
are aligned.
Change-Id: Id3bad51ab14f311efdb8713b6cd36d36cf9e4639
2017-02-07 18:58:47 +00:00
|
|
|
const EncryptionOptions encryption_options_;
|
2017-02-02 18:28:29 +00:00
|
|
|
KeySource* key_source_ = nullptr;
|
|
|
|
KeySource::TrackType track_type_ = KeySource::TRACK_TYPE_UNKNOWN;
|
2017-03-11 02:48:04 +00:00
|
|
|
// Current encryption config and encryptor.
|
|
|
|
std::shared_ptr<EncryptionConfig> encryption_config_;
|
2017-02-02 18:28:29 +00:00
|
|
|
std::unique_ptr<AesCryptor> encryptor_;
|
2017-03-11 02:48:04 +00:00
|
|
|
Codec codec_ = kUnknownCodec;
|
2017-02-02 18:28:29 +00:00
|
|
|
// Specifies the size of NAL unit length in bytes. Can be 1, 2 or 4 bytes. 0
|
|
|
|
// if it is not a NAL structured video.
|
|
|
|
uint8_t nalu_length_size_ = 0;
|
2017-03-11 02:48:04 +00:00
|
|
|
// For Sample AES, 32 bytes for Video and 16 bytes for audio.
|
|
|
|
size_t leading_clear_bytes_size_ = 0;
|
|
|
|
// For Sample AES, 48+1 bytes for video NAL and 16+1 bytes for audio.
|
|
|
|
size_t min_protected_data_size_ = 0;
|
2017-02-02 18:28:29 +00:00
|
|
|
// Remaining clear lead in the stream's time scale.
|
|
|
|
int64_t remaining_clear_lead_ = 0;
|
|
|
|
// Crypto period duration in the stream's time scale.
|
|
|
|
uint64_t crypto_period_duration_ = 0;
|
|
|
|
// Previous crypto period index if key rotation is enabled.
|
|
|
|
int64_t prev_crypto_period_index_ = -1;
|
2017-03-11 02:48:04 +00:00
|
|
|
bool check_new_crypto_period_ = false;
|
2017-02-02 18:28:29 +00:00
|
|
|
|
|
|
|
// Number of encrypted blocks (16-byte-block) in pattern based encryption.
|
|
|
|
uint8_t crypt_byte_block_ = 0;
|
|
|
|
/// Number of unencrypted blocks (16-byte-block) in pattern based encryption.
|
|
|
|
uint8_t skip_byte_block_ = 0;
|
|
|
|
|
|
|
|
// VPx parser for VPx streams.
|
|
|
|
std::unique_ptr<VPxParser> vpx_parser_;
|
|
|
|
// Video slice header parser for NAL strucutred streams.
|
|
|
|
std::unique_ptr<VideoSliceHeaderParser> header_parser_;
|
|
|
|
};
|
|
|
|
|
|
|
|
} // namespace media
|
|
|
|
} // namespace shaka
|
|
|
|
|
|
|
|
#endif // PACKAGER_MEDIA_CRYPTO_ENCRYPTION_HANDLER_H_
|