1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
|
// Copyright 2016 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "components/cdm/renderer/widevine_key_system_properties.h"
#include "widevine_cdm_version.h" // In SHARED_INTERMEDIATE_DIR.
#if defined(WIDEVINE_CDM_AVAILABLE)
using media::EmeConfigRule;
using media::EmeFeatureSupport;
using media::EmeInitDataType;
using media::EmeMediaType;
using media::EmeSessionTypeSupport;
using media::SupportedCodecs;
using Robustness = cdm::WidevineKeySystemProperties::Robustness;
namespace cdm {
namespace {
Robustness ConvertRobustness(const std::string& robustness) {
if (robustness.empty())
return Robustness::EMPTY;
if (robustness == "SW_SECURE_CRYPTO")
return Robustness::SW_SECURE_CRYPTO;
if (robustness == "SW_SECURE_DECODE")
return Robustness::SW_SECURE_DECODE;
if (robustness == "HW_SECURE_CRYPTO")
return Robustness::HW_SECURE_CRYPTO;
if (robustness == "HW_SECURE_DECODE")
return Robustness::HW_SECURE_DECODE;
if (robustness == "HW_SECURE_ALL")
return Robustness::HW_SECURE_ALL;
return Robustness::INVALID;
}
} // namespace
WidevineKeySystemProperties::WidevineKeySystemProperties(
media::SupportedCodecs codecs,
base::flat_set<media::EncryptionMode> encryption_schemes,
media::SupportedCodecs hw_secure_codecs,
base::flat_set<media::EncryptionMode> hw_secure_encryption_schemes,
Robustness max_audio_robustness,
Robustness max_video_robustness,
media::EmeSessionTypeSupport persistent_license_support,
media::EmeSessionTypeSupport persistent_release_message_support,
media::EmeFeatureSupport persistent_state_support,
media::EmeFeatureSupport distinctive_identifier_support)
: codecs_(codecs),
encryption_schemes_(std::move(encryption_schemes)),
hw_secure_codecs_(hw_secure_codecs),
hw_secure_encryption_schemes_(std::move(hw_secure_encryption_schemes)),
max_audio_robustness_(max_audio_robustness),
max_video_robustness_(max_video_robustness),
persistent_license_support_(persistent_license_support),
persistent_release_message_support_(persistent_release_message_support),
persistent_state_support_(persistent_state_support),
distinctive_identifier_support_(distinctive_identifier_support) {}
WidevineKeySystemProperties::~WidevineKeySystemProperties() = default;
std::string WidevineKeySystemProperties::GetKeySystemName() const {
return kWidevineKeySystem;
}
bool WidevineKeySystemProperties::IsSupportedInitDataType(
EmeInitDataType init_data_type) const {
// Here we assume that support for a container imples support for the
// associated initialization data type. KeySystems handles validating
// |init_data_type| x |container| pairings.
if (init_data_type == EmeInitDataType::WEBM)
return (codecs_ & media::EME_CODEC_WEBM_ALL) != 0;
if (init_data_type == EmeInitDataType::CENC)
return (codecs_ & media::EME_CODEC_MP4_ALL) != 0;
return false;
}
EmeConfigRule WidevineKeySystemProperties::GetEncryptionSchemeConfigRule(
media::EncryptionMode encryption_scheme) const {
bool is_supported = encryption_schemes_.count(encryption_scheme);
bool is_hw_secure_supported =
hw_secure_encryption_schemes_.count(encryption_scheme);
if (is_supported && is_hw_secure_supported)
return EmeConfigRule::SUPPORTED;
else if (is_supported && !is_hw_secure_supported)
return EmeConfigRule::HW_SECURE_CODECS_NOT_ALLOWED;
else if (!is_supported && is_hw_secure_supported)
return EmeConfigRule::HW_SECURE_CODECS_REQUIRED;
else
return EmeConfigRule::NOT_SUPPORTED;
}
SupportedCodecs WidevineKeySystemProperties::GetSupportedCodecs() const {
return codecs_;
}
SupportedCodecs WidevineKeySystemProperties::GetSupportedHwSecureCodecs()
const {
return hw_secure_codecs_;
}
EmeConfigRule WidevineKeySystemProperties::GetRobustnessConfigRule(
EmeMediaType media_type,
const std::string& requested_robustness) const {
Robustness robustness = ConvertRobustness(requested_robustness);
if (robustness == Robustness::INVALID)
return EmeConfigRule::NOT_SUPPORTED;
Robustness max_robustness = Robustness::INVALID;
switch (media_type) {
case EmeMediaType::AUDIO:
max_robustness = max_audio_robustness_;
break;
case EmeMediaType::VIDEO:
max_robustness = max_video_robustness_;
break;
}
// We can compare robustness levels whenever they are not HW_SECURE_CRYPTO
// and SW_SECURE_DECODE in some order. If they are exactly those two then the
// robustness requirement is not supported.
if ((max_robustness == Robustness::HW_SECURE_CRYPTO &&
robustness == Robustness::SW_SECURE_DECODE) ||
(max_robustness == Robustness::SW_SECURE_DECODE &&
robustness == Robustness::HW_SECURE_CRYPTO) ||
robustness > max_robustness) {
return EmeConfigRule::NOT_SUPPORTED;
}
#if defined(OS_CHROMEOS)
// Hardware security requires remote attestation.
if (robustness >= Robustness::HW_SECURE_CRYPTO)
return EmeConfigRule::IDENTIFIER_REQUIRED;
// For video, recommend remote attestation if HW_SECURE_ALL is available,
// regardless of the value of |robustness|, because it enables hardware
// accelerated decoding.
// TODO(sandersd): Only do this when hardware accelerated decoding is
// available for the requested codecs.
if (media_type == EmeMediaType::VIDEO &&
max_robustness == Robustness::HW_SECURE_ALL) {
return EmeConfigRule::IDENTIFIER_RECOMMENDED;
}
#elif defined(OS_ANDROID)
// On Android, require hardware secure codecs for SW_SECURE_DECODE and above.
if (robustness >= Robustness::SW_SECURE_DECODE) {
return EmeConfigRule::HW_SECURE_CODECS_REQUIRED;
}
#else
// On Linux/Mac/Win, require hardware secure codecs for HW_SECURE_CRYPTO and
// above.
if (robustness >= Robustness::HW_SECURE_CRYPTO) {
return EmeConfigRule::HW_SECURE_CODECS_REQUIRED;
}
#endif // defined(OS_CHROMEOS)
// TODO(crbug.com/848532): Handle HW_SECURE* levels for Windows.
return EmeConfigRule::SUPPORTED;
}
EmeSessionTypeSupport
WidevineKeySystemProperties::GetPersistentLicenseSessionSupport() const {
return persistent_license_support_;
}
EmeSessionTypeSupport
WidevineKeySystemProperties::GetPersistentUsageRecordSessionSupport() const {
return persistent_release_message_support_;
}
EmeFeatureSupport WidevineKeySystemProperties::GetPersistentStateSupport()
const {
return persistent_state_support_;
}
EmeFeatureSupport WidevineKeySystemProperties::GetDistinctiveIdentifierSupport()
const {
return distinctive_identifier_support_;
}
} // namespace cdm
#endif // WIDEVINE_CDM_AVAILABLE
|
