FFmpeg
hls_sample_encryption.c
Go to the documentation of this file.
1 /*
2  * Apple HTTP Live Streaming Sample Encryption/Decryption
3  *
4  * Copyright (c) 2021 Nachiket Tarate
5  *
6  * This file is part of FFmpeg.
7  *
8  * FFmpeg is free software; you can redistribute it and/or
9  * modify it under the terms of the GNU Lesser General Public
10  * License as published by the Free Software Foundation; either
11  * version 2.1 of the License, or (at your option) any later version.
12  *
13  * FFmpeg is distributed in the hope that it will be useful,
14  * but WITHOUT ANY WARRANTY; without even the implied warranty of
15  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16  * Lesser General Public License for more details.
17  *
18  * You should have received a copy of the GNU Lesser General Public
19  * License along with FFmpeg; if not, write to the Free Software
20  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
21  */
22 
23 /**
24  * @file
25  * Apple HTTP Live Streaming Sample Encryption
26  * https://developer.apple.com/library/ios/documentation/AudioVideo/Conceptual/HLS_Sample_Encryption
27  */
28 
29 #include "libavutil/aes.h"
31 
32 #include "hls_sample_encryption.h"
33 
34 #include "libavcodec/adts_header.h"
35 #include "libavcodec/adts_parser.h"
36 #include "libavcodec/ac3tab.h"
38 
39 
40 typedef struct NALUnit {
41  uint8_t *data;
42  int type;
43  int length;
45 } NALUnit;
46 
47 typedef struct AudioFrame {
48  uint8_t *data;
49  int length;
51 } AudioFrame;
52 
53 typedef struct CodecParserContext {
54  const uint8_t *buf_ptr;
55  const uint8_t *buf_end;
57 
58 static const int eac3_sample_rate_tab[] = { 48000, 44100, 32000, 0 };
59 
61 {
62  if (size < 8)
63  return;
64 
65  info->codec_tag = AV_RL32(buf);
66 
67  if (info->codec_tag == MKTAG('z','a','a','c'))
68  info->codec_id = AV_CODEC_ID_AAC;
69  else if (info->codec_tag == MKTAG('z','a','c','3'))
70  info->codec_id = AV_CODEC_ID_AC3;
71  else if (info->codec_tag == MKTAG('z','e','c','3'))
72  info->codec_id = AV_CODEC_ID_EAC3;
73  else
74  info->codec_id = AV_CODEC_ID_NONE;
75 
76  buf += 4;
77  info->priming = AV_RL16(buf);
78  buf += 2;
79  info->version = *buf++;
80  info->setup_data_length = *buf++;
81 
82  if (info->setup_data_length > size - 8)
83  info->setup_data_length = size - 8;
84 
85  if (info->setup_data_length > HLS_MAX_AUDIO_SETUP_DATA_LEN)
86  return;
87 
88  memcpy(info->setup_data, buf, info->setup_data_length);
89 }
90 
92 {
93  int ret = 0;
94 
95  st->codecpar->codec_tag = info->codec_tag;
96 
97  if (st->codecpar->codec_id == AV_CODEC_ID_AAC)
98  return 0;
99 
101  return AVERROR_INVALIDDATA;
102 
103  if (st->codecpar->codec_id == AV_CODEC_ID_AC3) {
104  AC3HeaderInfo *ac3hdr = NULL;
105 
106  ret = avpriv_ac3_parse_header(&ac3hdr, info->setup_data, info->setup_data_length);
107  if (ret < 0) {
108  av_free(ac3hdr);
109  return ret;
110  }
111 
112  st->codecpar->sample_rate = ac3hdr->sample_rate;
115  st->codecpar->bit_rate = ac3hdr->bit_rate;
116 
117  av_free(ac3hdr);
118  } else { /* Parse 'dec3' EC3SpecificBox */
119  GetBitContext gb;
120  uint64_t mask;
121  int data_rate, fscod, acmod, lfeon;
122 
123  ret = init_get_bits8(&gb, info->setup_data, info->setup_data_length);
124  if (ret < 0)
125  return AVERROR_INVALIDDATA;
126 
127  data_rate = get_bits(&gb, 13);
128  skip_bits(&gb, 3);
129  fscod = get_bits(&gb, 2);
130  skip_bits(&gb, 10);
131  acmod = get_bits(&gb, 3);
132  lfeon = get_bits(&gb, 1);
133 
135 
137  if (lfeon)
139 
142 
143  st->codecpar->bit_rate = data_rate*1000;
144  }
145 
146  return 0;
147 }
148 
149 /*
150  * Remove start code emulation prevention 0x03 bytes
151  */
152 static void remove_scep_3_bytes(NALUnit *nalu)
153 {
154  int i = 0;
155  int j = 0;
156 
157  uint8_t *data = nalu->data;
158 
159  while (i < nalu->length) {
160  if (nalu->length - i > 3 && AV_RB24(&data[i]) == 0x000003) {
161  data[j++] = data[i++];
162  data[j++] = data[i++];
163  i++;
164  } else {
165  data[j++] = data[i++];
166  }
167  }
168 
169  nalu->length = j;
170 }
171 
173 {
174  const uint8_t *nalu_start = ctx->buf_ptr;
175 
176  if (ctx->buf_end - ctx->buf_ptr >= 4 && AV_RB32(ctx->buf_ptr) == 0x00000001)
177  nalu->start_code_length = 4;
178  else if (ctx->buf_end - ctx->buf_ptr >= 3 && AV_RB24(ctx->buf_ptr) == 0x000001)
179  nalu->start_code_length = 3;
180  else /* No start code at the beginning of the NAL unit */
181  return -1;
182 
183  ctx->buf_ptr += nalu->start_code_length;
184 
185  while (ctx->buf_ptr < ctx->buf_end) {
186  if (ctx->buf_end - ctx->buf_ptr >= 4 && AV_RB32(ctx->buf_ptr) == 0x00000001)
187  break;
188  else if (ctx->buf_end - ctx->buf_ptr >= 3 && AV_RB24(ctx->buf_ptr) == 0x000001)
189  break;
190  ctx->buf_ptr++;
191  }
192 
193  nalu->data = (uint8_t *)nalu_start + nalu->start_code_length;
194  nalu->length = ctx->buf_ptr - nalu->data;
195  nalu->type = *nalu->data & 0x1F;
196 
197  return 0;
198 }
199 
200 static int decrypt_nal_unit(HLSCryptoContext *crypto_ctx, NALUnit *nalu)
201 {
202  int ret = 0;
203  int rem_bytes;
204  uint8_t *data;
205  uint8_t iv[16];
206 
207  ret = av_aes_init(crypto_ctx->aes_ctx, crypto_ctx->key, 16 * 8, 1);
208  if (ret < 0)
209  return ret;
210 
211  /* Remove start code emulation prevention 0x03 bytes */
212  remove_scep_3_bytes(nalu);
213 
214  data = nalu->data + 32;
215  rem_bytes = nalu->length - 32;
216 
217  memcpy(iv, crypto_ctx->iv, 16);
218 
219  while (rem_bytes > 0) {
220  if (rem_bytes > 16) {
221  av_aes_crypt(crypto_ctx->aes_ctx, data, data, 1, iv, 1);
222  data += 16;
223  rem_bytes -= 16;
224  }
225  data += FFMIN(144, rem_bytes);
226  rem_bytes -= FFMIN(144, rem_bytes);
227  }
228 
229  return 0;
230 }
231 
233 {
234  int ret = 0;
236  NALUnit nalu;
237  uint8_t *data_ptr;
238  int move_nalu = 0;
239 
240  memset(&ctx, 0, sizeof(ctx));
241  ctx.buf_ptr = pkt->data;
242  ctx.buf_end = pkt->data + pkt->size;
243 
244  data_ptr = pkt->data;
245 
246  while (ctx.buf_ptr < ctx.buf_end) {
247  memset(&nalu, 0, sizeof(nalu));
248  ret = get_next_nal_unit(&ctx, &nalu);
249  if (ret < 0)
250  return ret;
251  if ((nalu.type == 0x01 || nalu.type == 0x05) && nalu.length > 48) {
252  int encrypted_nalu_length = nalu.length;
253  ret = decrypt_nal_unit(crypto_ctx, &nalu);
254  if (ret < 0)
255  return ret;
256  move_nalu = nalu.length != encrypted_nalu_length;
257  }
258  if (move_nalu)
259  memmove(data_ptr, nalu.data - nalu.start_code_length, nalu.start_code_length + nalu.length);
260  data_ptr += nalu.start_code_length + nalu.length;
261  }
262 
263  av_shrink_packet(pkt, data_ptr - pkt->data);
264 
265  return 0;
266 }
267 
269 {
270  int ret = 0;
271 
272  AACADTSHeaderInfo *adts_hdr = NULL;
273 
274  /* Find next sync word 0xFFF */
275  while (ctx->buf_ptr < ctx->buf_end - 1) {
276  if (*ctx->buf_ptr == 0xFF && (*(ctx->buf_ptr + 1) & 0xF0) == 0xF0)
277  break;
278  ctx->buf_ptr++;
279  }
280 
281  if (ctx->buf_ptr >= ctx->buf_end - 1)
282  return -1;
283 
284  frame->data = (uint8_t*)ctx->buf_ptr;
285 
286  ret = avpriv_adts_header_parse (&adts_hdr, frame->data, ctx->buf_end - frame->data);
287  if (ret < 0)
288  return ret;
289 
290  frame->header_length = adts_hdr->crc_absent ? AV_AAC_ADTS_HEADER_SIZE : AV_AAC_ADTS_HEADER_SIZE + 2;
291  frame->length = adts_hdr->frame_length;
292 
293  av_free(adts_hdr);
294 
295  return 0;
296 }
297 
299 {
300  int ret = 0;
301 
302  AC3HeaderInfo *hdr = NULL;
303 
304  /* Find next sync word 0x0B77 */
305  while (ctx->buf_ptr < ctx->buf_end - 1) {
306  if (*ctx->buf_ptr == 0x0B && *(ctx->buf_ptr + 1) == 0x77)
307  break;
308  ctx->buf_ptr++;
309  }
310 
311  if (ctx->buf_ptr >= ctx->buf_end - 1)
312  return -1;
313 
314  frame->data = (uint8_t*)ctx->buf_ptr;
315  frame->header_length = 0;
316 
317  ret = avpriv_ac3_parse_header(&hdr, frame->data, ctx->buf_end - frame->data);
318  if (ret < 0) {
319  av_free(hdr);
320  return ret;
321  }
322 
323  frame->length = hdr->frame_size;
324 
325  av_free(hdr);
326 
327  return 0;
328 }
329 
331 {
332  if (codec_id == AV_CODEC_ID_AAC)
333  return get_next_adts_frame(ctx, frame);
336  else
337  return AVERROR_INVALIDDATA;
338 }
339 
341 {
342  int ret = 0;
343  uint8_t *data;
344  int num_of_encrypted_blocks;
345 
346  ret = av_aes_init(crypto_ctx->aes_ctx, crypto_ctx->key, 16 * 8, 1);
347  if (ret < 0)
348  return ret;
349 
350  data = frame->data + frame->header_length + 16;
351 
352  num_of_encrypted_blocks = (frame->length - frame->header_length - 16)/16;
353 
354  av_aes_crypt(crypto_ctx->aes_ctx, data, data, num_of_encrypted_blocks, crypto_ctx->iv, 1);
355 
356  return 0;
357 }
358 
360 {
361  int ret = 0;
364 
365  memset(&ctx, 0, sizeof(ctx));
366  ctx.buf_ptr = pkt->data;
367  ctx.buf_end = pkt->data + pkt->size;
368 
369  while (ctx.buf_ptr < ctx.buf_end) {
370  memset(&frame, 0, sizeof(frame));
372  if (ret < 0)
373  return ret;
374  if (frame.length - frame.header_length > 31) {
375  ret = decrypt_sync_frame(codec_id, crypto_ctx, &frame);
376  if (ret < 0)
377  return ret;
378  }
379  ctx.buf_ptr += frame.length;
380  }
381 
382  return 0;
383 }
384 
386 {
387  if (codec_id == AV_CODEC_ID_H264)
388  return decrypt_video_frame(crypto_ctx, pkt);
390  return decrypt_audio_frame(codec_id, crypto_ctx, pkt);
391 
392  return AVERROR_INVALIDDATA;
393 }
AudioFrame::data
uint8_t * data
Definition: hls_sample_encryption.c:48
get_next_adts_frame
static int get_next_adts_frame(CodecParserContext *ctx, AudioFrame *frame)
Definition: hls_sample_encryption.c:268
av_aes_init
int av_aes_init(AVAES *a, const uint8_t *key, int key_bits, int decrypt)
Initialize an AVAES context.
Definition: aes.c:201
AV_CODEC_ID_AC3
@ AV_CODEC_ID_AC3
Definition: codec_id.h:443
ff_ac3_channel_layout_tab
const uint16_t ff_ac3_channel_layout_tab[8]
Map audio coding mode (acmod) to channel layout mask.
Definition: ac3_channel_layout_tab.h:31
decrypt_video_frame
static int decrypt_video_frame(HLSCryptoContext *crypto_ctx, AVPacket *pkt)
Definition: hls_sample_encryption.c:232
CodecParserContext::buf_ptr
const uint8_t * buf_ptr
Definition: hls_sample_encryption.c:54
AV_AAC_ADTS_HEADER_SIZE
#define AV_AAC_ADTS_HEADER_SIZE
Definition: adts_parser.h:25
get_next_sync_frame
static int get_next_sync_frame(enum AVCodecID codec_id, CodecParserContext *ctx, AudioFrame *frame)
Definition: hls_sample_encryption.c:330
NALUnit::start_code_length
int start_code_length
Definition: hls_sample_encryption.c:44
AVPacket::data
uint8_t * data
Definition: packet.h:522
data
const char data[16]
Definition: mxf.c:148
AVCodecParameters::codec_tag
uint32_t codec_tag
Additional information about the codec (corresponds to the AVI FOURCC).
Definition: codec_par.h:59
get_next_ac3_eac3_sync_frame
static int get_next_ac3_eac3_sync_frame(CodecParserContext *ctx, AudioFrame *frame)
Definition: hls_sample_encryption.c:298
CodecParserContext::buf_end
const uint8_t * buf_end
Definition: hls_sample_encryption.c:55
AVFrame::data
uint8_t * data[AV_NUM_DATA_POINTERS]
pointer to the picture/channel planes.
Definition: frame.h:361
skip_bits
static void skip_bits(GetBitContext *s, int n)
Definition: get_bits.h:381
get_bits
static unsigned int get_bits(GetBitContext *s, int n)
Read 1-25 bits.
Definition: get_bits.h:335
eac3_sample_rate_tab
static const int eac3_sample_rate_tab[]
Definition: hls_sample_encryption.c:58
AC3HeaderInfo::channel_layout
uint64_t channel_layout
Definition: ac3_parser_internal.h:62
av_shrink_packet
void av_shrink_packet(AVPacket *pkt, int size)
Reduce packet size, correctly zeroing padding.
Definition: avpacket.c:113
GetBitContext
Definition: get_bits.h:108
AC3HeaderInfo
Definition: ac3_parser_internal.h:34
CodecParserContext
Definition: hls_sample_encryption.c:53
AC3HeaderInfo::frame_size
uint16_t frame_size
Definition: ac3_parser_internal.h:61
ff_hls_senc_read_audio_setup_info
void ff_hls_senc_read_audio_setup_info(HLSAudioSetupInfo *info, const uint8_t *buf, size_t size)
Definition: hls_sample_encryption.c:60
HLSCryptoContext::iv
uint8_t iv[16]
Definition: hls_sample_encryption.h:46
get_next_nal_unit
static int get_next_nal_unit(CodecParserContext *ctx, NALUnit *nalu)
Definition: hls_sample_encryption.c:172
pkt
AVPacket * pkt
Definition: movenc.c:59
init_get_bits8
static int init_get_bits8(GetBitContext *s, const uint8_t *buffer, int byte_size)
Initialize GetBitContext.
Definition: get_bits.h:545
AV_CH_LOW_FREQUENCY
#define AV_CH_LOW_FREQUENCY
Definition: channel_layout.h:171
mask
static const uint16_t mask[17]
Definition: lzw.c:38
HLSCryptoContext::aes_ctx
struct AVAES * aes_ctx
Definition: hls_sample_encryption.h:44
av_channel_layout_from_mask
int av_channel_layout_from_mask(AVChannelLayout *channel_layout, uint64_t mask)
Initialize a native channel layout from a bitmask indicating which channels are present.
Definition: channel_layout.c:242
info
MIPS optimizations info
Definition: mips.txt:2
ctx
AVFormatContext * ctx
Definition: movenc.c:48
AV_RL16
uint64_t_TMPL AV_WL64 unsigned int_TMPL AV_WL32 unsigned int_TMPL AV_WL24 unsigned int_TMPL AV_RL16
Definition: bytestream.h:94
AC3HeaderInfo::sample_rate
uint16_t sample_rate
Definition: ac3_parser_internal.h:58
codec_id
enum AVCodecID codec_id
Definition: vaapi_decode.c:386
AV_CODEC_ID_H264
@ AV_CODEC_ID_H264
Definition: codec_id.h:79
frame
static AVFrame * frame
Definition: demux_decode.c:54
AudioFrame::length
int length
Definition: hls_sample_encryption.c:49
AVStream::codecpar
AVCodecParameters * codecpar
Codec parameters associated with this stream.
Definition: avformat.h:766
aes.h
NULL
#define NULL
Definition: coverity.c:32
decrypt_audio_frame
static int decrypt_audio_frame(enum AVCodecID codec_id, HLSCryptoContext *crypto_ctx, AVPacket *pkt)
Definition: hls_sample_encryption.c:359
av_aes_crypt
void av_aes_crypt(AVAES *a, uint8_t *dst, const uint8_t *src, int count, uint8_t *iv, int decrypt)
Encrypt or decrypt a buffer using a previously initialized context.
Definition: aes.c:169
AACADTSHeaderInfo::frame_length
uint32_t frame_length
Definition: adts_header.h:37
AVCodecParameters::ch_layout
AVChannelLayout ch_layout
Audio only.
Definition: codec_par.h:180
AVCodecParameters::sample_rate
int sample_rate
Audio only.
Definition: codec_par.h:184
AVCodecID
AVCodecID
Identify the syntax and semantics of the bitstream.
Definition: codec_id.h:49
AV_CODEC_ID_EAC3
@ AV_CODEC_ID_EAC3
Definition: codec_id.h:480
AV_CODEC_ID_AAC
@ AV_CODEC_ID_AAC
Definition: codec_id.h:442
avpriv_adts_header_parse
int avpriv_adts_header_parse(AACADTSHeaderInfo **phdr, const uint8_t *buf, size_t size)
Parse the ADTS frame header contained in the buffer, which is the first 54 bits.
Definition: adts_parser.c:46
ac3_parser_internal.h
AVPacket::size
int size
Definition: packet.h:523
HLSCryptoContext
Definition: hls_sample_encryption.h:43
size
int size
Definition: twinvq_data.h:10344
AV_RB32
uint64_t_TMPL AV_WL64 unsigned int_TMPL AV_WL32 unsigned int_TMPL AV_WL24 unsigned int_TMPL AV_WL16 uint64_t_TMPL AV_WB64 unsigned int_TMPL AV_RB32
Definition: bytestream.h:96
NALUnit::length
int length
Definition: hls_sample_encryption.c:43
hls_sample_encryption.h
NALUnit::type
int type
Definition: hls_sample_encryption.c:42
ff_hls_senc_decrypt_frame
int ff_hls_senc_decrypt_frame(enum AVCodecID codec_id, HLSCryptoContext *crypto_ctx, AVPacket *pkt)
Definition: hls_sample_encryption.c:385
NALUnit::data
uint8_t * data
Definition: hls_sample_encryption.c:41
AV_CODEC_ID_NONE
@ AV_CODEC_ID_NONE
Definition: codec_id.h:50
i
#define i(width, name, range_min, range_max)
Definition: cbs_h2645.c:255
HLS_MAX_AUDIO_SETUP_DATA_LEN
#define HLS_MAX_AUDIO_SETUP_DATA_LEN
Definition: hls_sample_encryption.h:41
avpriv_ac3_parse_header
int avpriv_ac3_parse_header(AC3HeaderInfo **phdr, const uint8_t *buf, size_t size)
Definition: ac3_parser.c:265
FFMIN
#define FFMIN(a, b)
Definition: macros.h:49
ff_hls_senc_parse_audio_setup_info
int ff_hls_senc_parse_audio_setup_info(AVStream *st, HLSAudioSetupInfo *info)
Definition: hls_sample_encryption.c:91
ret
ret
Definition: filter_design.txt:187
AVStream
Stream structure.
Definition: avformat.h:743
remove_scep_3_bytes
static void remove_scep_3_bytes(NALUnit *nalu)
Definition: hls_sample_encryption.c:152
adts_parser.h
AV_RL32
uint64_t_TMPL AV_WL64 unsigned int_TMPL AV_RL32
Definition: bytestream.h:92
AACADTSHeaderInfo::crc_absent
uint8_t crc_absent
Definition: adts_header.h:32
NALUnit
Definition: hls_sample_encryption.c:40
channel_layout.h
av_channel_layout_uninit
void av_channel_layout_uninit(AVChannelLayout *channel_layout)
Free any allocated data in the channel layout and reset the channel count to 0.
Definition: channel_layout.c:432
decrypt_sync_frame
static int decrypt_sync_frame(enum AVCodecID codec_id, HLSCryptoContext *crypto_ctx, AudioFrame *frame)
Definition: hls_sample_encryption.c:340
decrypt_nal_unit
static int decrypt_nal_unit(HLSCryptoContext *crypto_ctx, NALUnit *nalu)
Definition: hls_sample_encryption.c:200
adts_header.h
av_free
#define av_free(p)
Definition: tableprint_vlc.h:33
AVCodecParameters::codec_id
enum AVCodecID codec_id
Specific type of the encoded data (the codec used).
Definition: codec_par.h:55
AVPacket
This structure stores compressed data.
Definition: packet.h:499
AudioFrame
Definition: audio_frame_queue.h:27
AudioFrame::header_length
int header_length
Definition: hls_sample_encryption.c:50
AVCodecParameters::bit_rate
int64_t bit_rate
The average bitrate of the encoded data (in bits per second).
Definition: codec_par.h:97
AVERROR_INVALIDDATA
#define AVERROR_INVALIDDATA
Invalid data found when processing input.
Definition: error.h:61
MKTAG
#define MKTAG(a, b, c, d)
Definition: macros.h:55
ac3tab.h
HLSAudioSetupInfo
Definition: hls_sample_encryption.h:49
AV_RB24
uint64_t_TMPL AV_WL64 unsigned int_TMPL AV_WL32 unsigned int_TMPL AV_WL24 unsigned int_TMPL AV_WL16 uint64_t_TMPL AV_WB64 unsigned int_TMPL AV_WB32 unsigned int_TMPL AV_RB24
Definition: bytestream.h:97
AC3HeaderInfo::bit_rate
uint32_t bit_rate
Definition: ac3_parser_internal.h:59
AACADTSHeaderInfo
Definition: adts_header.h:28
HLSCryptoContext::key
uint8_t key[16]
Definition: hls_sample_encryption.h:45