9 #include "packager/app/widevine_encryption_flags.h"
11 #include "packager/app/validate_flag.h"
12 #include "packager/base/logging.h"
13 #include "packager/base/strings/string_piece.h"
14 #include "packager/base/strings/string_util.h"
16 DEFINE_bool(enable_widevine_encryption,
18 "Enable encryption with Widevine license server/proxy. User should "
19 "provide either AES signing key (--aes_signing_key, "
20 "--aes_signing_iv) or RSA signing key (--rsa_signing_key_path).");
21 DEFINE_bool(enable_widevine_decryption,
23 "Enable decryption with Widevine license server/proxy. User should "
24 "provide either AES signing key (--aes_signing_key, "
25 "--aes_signing_iv) or RSA signing key (--rsa_signing_key_path).");
26 DEFINE_bool(include_common_pssh,
28 "When using Widevine encryption, include an additional v1 PSSH box "
29 "for the common system ID that includes the key IDs. See: "
30 "https://goo.gl/507mKp");
31 DEFINE_string(key_server_url,
"",
"Key server url. Required for encryption and "
33 DEFINE_string(content_id,
"",
"Content Id (hex).");
36 "The name of a stored policy, which specifies DRM content "
38 DEFINE_int32(max_sd_pixels,
40 "The video track is considered SD if its max pixels per frame is "
41 "no higher than max_sd_pixels. Default: 442368 (768 x 576).");
42 DEFINE_int32(max_hd_pixels,
44 "The video track is considered HD if its max pixels per frame is "
45 "higher than max_sd_pixels, but no higher than max_hd_pixels. "
46 "Default: 2073600 (1920 x 1080).");
47 DEFINE_int32(max_uhd1_pixels,
49 "The video track is considered UHD1 if its max pixels per frame "
50 "is higher than max_hd_pixels, but no higher than max_uhd1_pixels."
51 " Otherwise it is UHD2. Default: 8847360 (4096 x 2160).");
52 DEFINE_string(signer,
"",
"The name of the signer.");
53 DEFINE_string(aes_signing_key,
55 "AES signing key in hex string. --aes_signing_iv is required. "
56 "Exclusive with --rsa_signing_key_path.");
57 DEFINE_string(aes_signing_iv,
59 "AES signing iv in hex string.");
60 DEFINE_string(rsa_signing_key_path,
62 "Stores PKCS#1 RSA private key for request signing. Exclusive "
63 "with --aes_signing_key.");
64 DEFINE_int32(crypto_period_duration,
66 "Crypto period duration in seconds. If it is non-zero, key "
67 "rotation is enabled.");
74 const bool widevine_crypto =
75 FLAGS_enable_widevine_encryption || FLAGS_enable_widevine_decryption;
76 const char widevine_crypto_label[] =
77 "--enable_widevine_encryption/decryption";
84 widevine_crypto_label)) {
91 widevine_crypto_label)) {
94 if (widevine_crypto && FLAGS_signer.empty() &&
95 base::StartsWith(base::StringPiece(FLAGS_key_server_url),
"http",
96 base::CompareCase::INSENSITIVE_ASCII)) {
97 LOG(WARNING) <<
"--signer is likely required with "
98 "--enable_widevine_encryption/decryption.";
101 const char widevine_encryption_label[] =
"--enable_widevine_encryption";
106 FLAGS_enable_widevine_encryption,
108 widevine_encryption_label)) {
113 FLAGS_enable_widevine_encryption,
115 widevine_encryption_label)) {
118 if (FLAGS_include_common_pssh && !FLAGS_enable_widevine_encryption) {
119 PrintError(
"--include_common_pssh is only valid with "
120 "--enable_widevine_encryption");
124 if (FLAGS_max_sd_pixels <= 0) {
125 PrintError(
"--max_sd_pixels must be positive.");
128 if (FLAGS_max_hd_pixels <= 0) {
129 PrintError(
"--max_hd_pixels must be positive.");
132 if (FLAGS_max_uhd1_pixels <= 0) {
133 PrintError(
"--max_uhd1_pixels must be positive.");
136 if (FLAGS_max_hd_pixels <= FLAGS_max_sd_pixels) {
137 PrintError(
"--max_hd_pixels must be greater than --max_sd_pixels.");
140 if (FLAGS_max_uhd1_pixels <= FLAGS_max_hd_pixels) {
141 PrintError(
"--max_uhd1_pixels must be greater than --max_hd_pixels.");
145 const bool aes = !FLAGS_signer.empty() && FLAGS_rsa_signing_key_path.empty();
146 const char aes_label[] =
147 "--signer is specified and exclusive with --rsa_signing_key_path";
150 "aes_signing_key", FLAGS_aes_signing_key, aes,
true, aes_label)) {
154 "aes_signing_iv", FLAGS_aes_signing_iv, aes,
true, aes_label)) {
158 const bool rsa = !FLAGS_signer.empty() && FLAGS_aes_signing_key.empty() &&
159 FLAGS_aes_signing_iv.empty();
160 const char rsa_label[] =
161 "--signer is specified and exclusive with --aes_signing_key/iv";
164 FLAGS_rsa_signing_key_path,
171 if (!FLAGS_signer.empty() &&
172 (FLAGS_aes_signing_key.empty() || FLAGS_aes_signing_iv.empty()) &&
173 FLAGS_rsa_signing_key_path.empty()) {
175 "--aes_signing_key/iv or --rsa_signing_key_path is required with "
180 if (FLAGS_crypto_period_duration < 0) {
181 PrintError(
"--crypto_period_duration should not be negative.");
void PrintError(const std::string &error_message)
bool ValidateWidevineCryptoFlags()
bool ValidateFlag(const char *flag_name, const std::string &flag_value, bool condition, bool optional, const char *label)