libaacs | branch: master | npzacs <npz...@gmail.com> | Mon Oct 21 16:17:11 2013 +0300| [e9329e428c627e0e350fedc5c7b16f85381d54dd] | committer: npzacs
internal key db support > http://git.videolan.org/gitweb.cgi/libaacs.git/?a=commit;h=e9329e428c627e0e350fedc5c7b16f85381d54dd --- src/Makefile.am | 1 + src/file/keydb.h | 26 ++++++++++++++++++ src/file/keydbcfg.c | 75 +++++++++++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 102 insertions(+) diff --git a/src/Makefile.am b/src/Makefile.am index c11483b..83ce5af 100644 --- a/src/Makefile.am +++ b/src/Makefile.am @@ -20,6 +20,7 @@ libaacs_la_SOURCES=\ file/file_posix.c \ file/keydbcfg.c \ file/keydbcfg.h \ + file/keydb.h \ file/keydbcfg-parser.y \ file/keydbcfg-lexer.l \ util/attributes.h \ diff --git a/src/file/keydb.h b/src/file/keydb.h new file mode 100644 index 0000000..c98762f --- /dev/null +++ b/src/file/keydb.h @@ -0,0 +1,26 @@ + +/* encrypted keys */ + +static const uint32_t internal_device_number = 0; + +static const uint8_t internal_dk_list[][21] = { + { + }, +}; + +static const uint8_t internal_pk_list[][16] = { + { + }, +}; + +static const uint8_t internal_hc_list[][112] = { + { + }, +}; + +/* customize this function to "hide" the keys in the binary */ + +static void decrypt_key(uint8_t *out, const uint8_t *in, size_t size) +{ + memcpy(out, in, size); +} diff --git a/src/file/keydbcfg.c b/src/file/keydbcfg.c index 8577e68..de3a9e2 100644 --- a/src/file/keydbcfg.c +++ b/src/file/keydbcfg.c @@ -277,6 +277,18 @@ static int _parse_cert_file(config_file *cf, FILE *fp) return result; } +static int _is_duplicate_dk(dk_list *list, dk_list *e) +{ + while (list) { + if (!memcmp(list, e, sizeof(*e))) { + return 1; + } + list = list->next; + } + + return 0; +} + static int _load_pk_file(config_file *cf) { static const char pk_file_name[] = PK_FILE_NAME; @@ -606,6 +618,66 @@ static char *_find_config_file(void) return cfg_file; } +#include "keydb.h" + +static int _parse_embedded(config_file *cf) +{ + int result = 0, jj; + unsigned ii; + + /* reverse order to maintain key positions (items are added to list head) */ + for (jj = sizeof(internal_dk_list) / sizeof(internal_dk_list[0]) - 1; jj >= 0; --jj) { + dk_list *e = calloc(1, sizeof(dk_list)); + + decrypt_key(e->key, internal_dk_list[jj], 16); + e->node = internal_device_number; + e->uv = MKINT_BE32(internal_dk_list[jj] + 16); + e->u_mask_shift = internal_dk_list[jj][20]; + + if (_is_duplicate_dk(cf->dkl, e)) { + X_FREE(e); + + } else { + e->next = cf->dkl; + cf->dkl = e; + result++; + } + } + + for (ii = 0; ii < sizeof(internal_pk_list) / sizeof(internal_pk_list[0]); ii++) { + pk_list *e = calloc(1, sizeof(pk_list)); + + decrypt_key(e->key, internal_pk_list[ii], 16); + + if (_is_duplicate_pk(cf->pkl, e->key)) { + X_FREE(e); + + } else { + e->next = cf->pkl; + cf->pkl = e; + result++; + } + } + + for (ii = 0; ii < sizeof(internal_hc_list) / sizeof(internal_hc_list[0]); ii++) { + cert_list *e = calloc(1, sizeof(cert_list)); + + decrypt_key(e->host_priv_key, internal_hc_list[ii], 20); + decrypt_key(e->host_cert, internal_hc_list[ii] + 20, 92); + + if (_is_duplicate_cert(cf->host_cert_list, e)) { + X_FREE(e); + + } else { + e->next = cf->host_cert_list; + cf->host_cert_list = e; + result++; + } + } + + return result; +} + config_file *keydbcfg_config_load(const char *configfile_path) { int config_ok = 0; @@ -631,6 +703,9 @@ config_file *keydbcfg_config_load(const char *configfile_path) config_ok = _load_pk_file(cf) || config_ok; config_ok = _load_cert_file(cf) || config_ok; + /* embedded keys */ + config_ok = _parse_embedded(cf) || config_ok; + if (!config_ok) { DEBUG(DBG_AACS | DBG_CRIT, "No valid AACS configuration files found\n"); keydbcfg_config_file_close(cf); _______________________________________________ libaacs-devel mailing list libaacs-devel@videolan.org https://mailman.videolan.org/listinfo/libaacs-devel
