d0/d42/widevine__encryption__flags_8cc_source.html

 // Copyright 2014 Google Inc. All rights reserved.
 //
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file or at
 // https://developers.google.com/open-source/licenses/bsd
 //
 // Defines command line flags for widevine_encryption.

 #include "packager/app/widevine_encryption_flags.h"

 #include "packager/app/validate_flag.h"
 #include "packager/base/logging.h"
 #include "packager/base/strings/string_piece.h"
 #include "packager/base/strings/string_util.h"

 DEFINE_bool(enable_widevine_encryption,
             false,
             "Enable encryption with Widevine key server. User should provide "
             "either AES signing key (--aes_signing_key, --aes_signing_iv) or "
             "RSA signing key (--rsa_signing_key_path).");
 DEFINE_bool(enable_widevine_decryption,
             false,
             "Enable decryption with Widevine license server/proxy. User should "
             "provide either AES signing key (--aes_signing_key, "
             "--aes_signing_iv) or RSA signing key (--rsa_signing_key_path).");
 DEFINE_bool(include_common_pssh,
             false,
             "When using Widevine encryption, include an additional v1 PSSH box "
             "for the common system ID that includes the key IDs. See: "
             "https://goo.gl/s8RIhr");
 DEFINE_string(key_server_url, "", "Key server url. Required for encryption and "
               "decryption");
 DEFINE_hex_bytes(content_id, "", "Content Id (hex).");
 DEFINE_string(policy,
               "",
               "The name of a stored policy, which specifies DRM content "
               "rights.");
 DEFINE_int32(max_sd_pixels,
              768 * 576,
              "The video track is considered SD if its max pixels per frame is "
              "no higher than max_sd_pixels. Default: 442368 (768 x 576).");
 DEFINE_int32(max_hd_pixels,
              1920 * 1080,
              "The video track is considered HD if its max pixels per frame is "
              "higher than max_sd_pixels, but no higher than max_hd_pixels. "
              "Default: 2073600 (1920 x 1080).");
 DEFINE_int32(max_uhd1_pixels,
              4096 * 2160,
              "The video track is considered UHD1 if its max pixels per frame "
              "is higher than max_hd_pixels, but no higher than max_uhd1_pixels."
              " Otherwise it is UHD2. Default: 8847360 (4096 x 2160).");
 DEFINE_string(signer, "", "The name of the signer.");
 DEFINE_hex_bytes(aes_signing_key,
                  "",
                  "AES signing key in hex string. --aes_signing_iv is required. "
                  "Exclusive with --rsa_signing_key_path.");
 DEFINE_hex_bytes(aes_signing_iv, "", "AES signing iv in hex string.");
 DEFINE_string(rsa_signing_key_path,
               "",
               "Stores PKCS#1 RSA private key for request signing. Exclusive "
               "with --aes_signing_key.");
 DEFINE_int32(crypto_period_duration,
              0,
              "Crypto period duration in seconds. If it is non-zero, key "
              "rotation is enabled.");
 DEFINE_hex_bytes(group_id, "", "Identifier for a group of licenses (hex).");

 namespace shaka {
 namespace {
 const bool kOptional = true;
 }  // namespace

 bool ValidateWidevineCryptoFlags() {
   bool success = true;

   const bool widevine_crypto =
       FLAGS_enable_widevine_encryption || FLAGS_enable_widevine_decryption;
   const char widevine_crypto_label[] =
       "--enable_widevine_encryption/decryption";
   // key_server_url and signer (optional) are associated with
   // enable_widevine_encryption and enable_widevine_descryption.
   if (!ValidateFlag("key_server_url",
                     FLAGS_key_server_url,
                     widevine_crypto,
                     !kOptional,
                     widevine_crypto_label)) {
     success = false;
   }
   if (!ValidateFlag("signer",
                     FLAGS_signer,
                     widevine_crypto,
                     kOptional,
                     widevine_crypto_label)) {
     success = false;
   }
   if (widevine_crypto && FLAGS_signer.empty() &&
       base::StartsWith(base::StringPiece(FLAGS_key_server_url), "http",
                        base::CompareCase::INSENSITIVE_ASCII)) {
     LOG(WARNING) << "--signer is likely required with "
                     "--enable_widevine_encryption/decryption.";
   }

   const char widevine_encryption_label[] = "--enable_widevine_encryption";
   // content_id and policy (optional) are associated with
   // enable_widevine_encryption.
   if (!ValidateFlag("content_id",
                     FLAGS_content_id_bytes,
                     FLAGS_enable_widevine_encryption,
                     !kOptional,
                     widevine_encryption_label)) {
     success = false;
   }
   if (!ValidateFlag("policy",
                     FLAGS_policy,
                     FLAGS_enable_widevine_encryption,
                     kOptional,
                     widevine_encryption_label)) {
     success = false;
   }
   if (FLAGS_include_common_pssh && !FLAGS_enable_widevine_encryption) {
     PrintError("--include_common_pssh is only valid with "
                "--enable_widevine_encryption");
     success = false;
   }

   if (FLAGS_max_sd_pixels <= 0) {
     PrintError("--max_sd_pixels must be positive.");
     success = false;
   }
   if (FLAGS_max_hd_pixels <= 0) {
     PrintError("--max_hd_pixels must be positive.");
     success = false;
   }
   if (FLAGS_max_uhd1_pixels <= 0) {
     PrintError("--max_uhd1_pixels must be positive.");
     success = false;
   }
   if (FLAGS_max_hd_pixels <= FLAGS_max_sd_pixels) {
     PrintError("--max_hd_pixels must be greater than --max_sd_pixels.");
     success = false;
   }
   if (FLAGS_max_uhd1_pixels <= FLAGS_max_hd_pixels) {
     PrintError("--max_uhd1_pixels must be greater than --max_hd_pixels.");
     success = false;
   }

   const bool aes = !FLAGS_aes_signing_key_bytes.empty() ||
                    !FLAGS_aes_signing_iv_bytes.empty();
   if (aes && (FLAGS_aes_signing_key_bytes.empty() ||
               FLAGS_aes_signing_iv_bytes.empty())) {
     PrintError("--aes_signing_key/iv is required if using aes signing.");
     success = false;
   }

   const bool rsa = !FLAGS_rsa_signing_key_path.empty();

   if (FLAGS_signer.empty() && (aes || rsa)) {
     PrintError("--signer is required if using aes/rsa signing.");
     success = false;
   }
   if (!FLAGS_signer.empty() && !aes && !rsa) {
     PrintError(
         "--aes_signing_key/iv or --rsa_signing_key_path is required with "
         "--signer.");
     success = false;
   }
   if (aes && rsa) {
     PrintError(
         "Only one of --aes_signing_key/iv and --rsa_signing_key_path should be "
         "specified.");
     success = false;
   }

   if (FLAGS_crypto_period_duration < 0) {
     PrintError("--crypto_period_duration should not be negative.");
     success = false;
   }
   return success;
 }

 }  // namespace shaka
shaka::PrintError
void PrintError(const std::string &error_message)
Definition: validate_flag.cc:15

shaka::ValidateFlag
bool ValidateFlag(const char *flag_name, const FlagType &flag_value, bool condition, bool optional, const char *label)
Definition: validate_flag.h:37

shaka::ValidateWidevineCryptoFlags
bool ValidateWidevineCryptoFlags()
Definition: widevine_encryption_flags.cc:73

shaka
All the methods that are virtual are virtual for mocking.
Definition: gflags_hex_bytes.cc:11