d0/d42/widevine__encryption__flags_8cc_source.html

 // Copyright 2014 Google Inc. All rights reserved.

 //

 // Use of this source code is governed by a BSD-style

 // license that can be found in the LICENSE file or at

 // https://developers.google.com/open-source/licenses/bsd

 //

 // Defines command line flags for widevine_encryption.


 #include "packager/app/widevine_encryption_flags.h"


 #include "packager/app/validate_flag.h"

 #include "packager/base/logging.h"

 #include "packager/base/strings/string_piece.h"

 #include "packager/base/strings/string_util.h"


 DEFINE_bool(enable_widevine_encryption,

             false,

             "Enable encryption with Widevine license server/proxy. User should "

             "provide either AES signing key (--aes_signing_key, "

             "--aes_signing_iv) or RSA signing key (--rsa_signing_key_path).");

 DEFINE_bool(enable_widevine_decryption,

             false,

             "Enable decryption with Widevine license server/proxy. User should "

             "provide either AES signing key (--aes_signing_key, "

             "--aes_signing_iv) or RSA signing key (--rsa_signing_key_path).");

 DEFINE_bool(include_common_pssh,

             false,

             "When using Widevine encryption, include an additional v1 PSSH box "

             "for the common system ID that includes the key IDs. See: "

             "https://goo.gl/s8RIhr");

 DEFINE_string(key_server_url, "", "Key server url. Required for encryption and "

               "decryption");

 DEFINE_hex_bytes(content_id, "", "Content Id (hex).");

 DEFINE_string(policy,

               "",

               "The name of a stored policy, which specifies DRM content "

               "rights.");

 DEFINE_int32(max_sd_pixels,

              768 * 576,

              "The video track is considered SD if its max pixels per frame is "

              "no higher than max_sd_pixels. Default: 442368 (768 x 576).");

 DEFINE_int32(max_hd_pixels,

              1920 * 1080,

              "The video track is considered HD if its max pixels per frame is "

              "higher than max_sd_pixels, but no higher than max_hd_pixels. "

              "Default: 2073600 (1920 x 1080).");

 DEFINE_int32(max_uhd1_pixels,

              4096 * 2160,

              "The video track is considered UHD1 if its max pixels per frame "

              "is higher than max_hd_pixels, but no higher than max_uhd1_pixels."

              " Otherwise it is UHD2. Default: 8847360 (4096 x 2160).");

 DEFINE_string(signer, "", "The name of the signer.");

 DEFINE_hex_bytes(aes_signing_key,

                  "",

                  "AES signing key in hex string. --aes_signing_iv is required. "

                  "Exclusive with --rsa_signing_key_path.");

 DEFINE_hex_bytes(aes_signing_iv, "", "AES signing iv in hex string.");

 DEFINE_string(rsa_signing_key_path,

               "",

               "Stores PKCS#1 RSA private key for request signing. Exclusive "

               "with --aes_signing_key.");

 DEFINE_int32(crypto_period_duration,

              0,

              "Crypto period duration in seconds. If it is non-zero, key "

              "rotation is enabled.");


 namespace shaka {

 namespace {

 const bool kOptional = true;

 }  // namespace


 bool ValidateWidevineCryptoFlags() {

   bool success = true;


   const bool widevine_crypto =

       FLAGS_enable_widevine_encryption || FLAGS_enable_widevine_decryption;

   const char widevine_crypto_label[] =

       "--enable_widevine_encryption/decryption";

   // key_server_url and signer (optional) are associated with

   // enable_widevine_encryption and enable_widevine_descryption.

   if (!ValidateFlag("key_server_url",

                     FLAGS_key_server_url,

                     widevine_crypto,

                     !kOptional,

                     widevine_crypto_label)) {

     success = false;

   }

   if (!ValidateFlag("signer",

                     FLAGS_signer,

                     widevine_crypto,

                     kOptional,

                     widevine_crypto_label)) {

     success = false;

   }

   if (widevine_crypto && FLAGS_signer.empty() &&

       base::StartsWith(base::StringPiece(FLAGS_key_server_url), "http",

                        base::CompareCase::INSENSITIVE_ASCII)) {

     LOG(WARNING) << "--signer is likely required with "

                     "--enable_widevine_encryption/decryption.";

   }


   const char widevine_encryption_label[] = "--enable_widevine_encryption";

   // content_id and policy (optional) are associated with

   // enable_widevine_encryption.

   if (!ValidateFlag("content_id",

                     FLAGS_content_id_bytes,

                     FLAGS_enable_widevine_encryption,

                     !kOptional,

                     widevine_encryption_label)) {

     success = false;

   }

   if (!ValidateFlag("policy",

                     FLAGS_policy,

                     FLAGS_enable_widevine_encryption,

                     kOptional,

                     widevine_encryption_label)) {

     success = false;

   }

   if (FLAGS_include_common_pssh && !FLAGS_enable_widevine_encryption) {

     PrintError("--include_common_pssh is only valid with "

                "--enable_widevine_encryption");

     success = false;

   }


   if (FLAGS_max_sd_pixels <= 0) {

     PrintError("--max_sd_pixels must be positive.");

     success = false;

   }

   if (FLAGS_max_hd_pixels <= 0) {

     PrintError("--max_hd_pixels must be positive.");

     success = false;

   }

   if (FLAGS_max_uhd1_pixels <= 0) {

     PrintError("--max_uhd1_pixels must be positive.");

     success = false;

   }

   if (FLAGS_max_hd_pixels <= FLAGS_max_sd_pixels) {

     PrintError("--max_hd_pixels must be greater than --max_sd_pixels.");

     success = false;

   }

   if (FLAGS_max_uhd1_pixels <= FLAGS_max_hd_pixels) {

     PrintError("--max_uhd1_pixels must be greater than --max_hd_pixels.");

     success = false;

   }


   const bool aes = !FLAGS_aes_signing_key_bytes.empty() ||

                    !FLAGS_aes_signing_iv_bytes.empty();

   if (aes && (FLAGS_aes_signing_key_bytes.empty() ||

               FLAGS_aes_signing_iv_bytes.empty())) {

     PrintError("--aes_signing_key/iv is required if using aes signing.");

     success = false;

   }


   const bool rsa = !FLAGS_rsa_signing_key_path.empty();


   if (FLAGS_signer.empty() && (aes || rsa)) {

     PrintError("--signer is required if using aes/rsa signing.");

     success = false;

   }

   if (!FLAGS_signer.empty() && !aes && !rsa) {

     PrintError(

         "--aes_signing_key/iv or --rsa_signing_key_path is required with "

         "--signer.");

     success = false;

   }

   if (aes && rsa) {

     PrintError(

         "Only one of --aes_signing_key/iv and --rsa_signing_key_path should be "

         "specified.");

     success = false;

   }


   if (FLAGS_crypto_period_duration < 0) {

     PrintError("--crypto_period_duration should not be negative.");

     success = false;

   }

   return success;

 }


 }  // namespace shaka

shaka::PrintError
void PrintError(const std::string &error_message)
Definition: validate_flag.cc:15

shaka::ValidateFlag
bool ValidateFlag(const char *flag_name, const FlagType &flag_value, bool condition, bool optional, const char *label)
Definition: validate_flag.h:33

shaka::ValidateWidevineCryptoFlags
bool ValidateWidevineCryptoFlags()
Definition: widevine_encryption_flags.cc:72