1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
|
/*
Copyright (C) 2013-2015 Carl Hetherington <cth@carlh.net>
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
*/
#ifndef LIBDCP_DECRYPTED_KDM_H
#define LIBDCP_DECRYPTED_KDM_H
/** @file src/decrypted_kdm.h
* @brief DecryptedKDM class.
*/
#include "key.h"
#include "local_time.h"
#include "decrypted_kdm_key.h"
#include "types.h"
#include "certificates.h"
#include <boost/filesystem.hpp>
namespace dcp {
class DecryptedKDMKey;
class EncryptedKDM;
class Signer;
class CPL;
/** @class DecryptedKDM
* @brief A decrypted KDM.
*
* This is a KDM that has either been decrypted by a target private key, or one which
* has been created (by some other means) ready for encryption later.
*
* A DecryptedKDM object can be created either from an EncryptedKDM and private key file,
* or from the details of the assets that the KDM should protect.
*/
class DecryptedKDM
{
public:
/** @param kdm Encrypted KDM.
* @param private_key Private key as a PEM-format string.
*/
DecryptedKDM (EncryptedKDM const & kdm, std::string private_key);
/** Construct a DecryptedKDM.
* @param cpl CPL that the keys are for.
* @param key Key that was used to encrypt the assets.
* @param not_valid_before Start time for the KDM.
* @param not_valid_after End time for the KDM.
*/
DecryptedKDM (
boost::shared_ptr<const CPL> cpl,
Key key,
LocalTime not_valid_before,
LocalTime not_valid_after,
std::string annotation_text,
std::string content_title_text,
std::string issue_date
);
/** Encrypt this KDM's keys and sign the whole KDM.
* @param signer Signer.
* @param recipient Certificate of the projector/server which should receive this KDM's keys.
* @param formulation Formulation to use for the encrypted KDM.
* @return Encrypted KDM.
*/
EncryptedKDM encrypt (boost::shared_ptr<const Signer> signer, Certificate recipient, Formulation formulation) const;
/** @return This KDM's (decrypted) keys, which could be used to decrypt assets. */
std::list<DecryptedKDMKey> keys () const {
return _keys;
}
private:
LocalTime _not_valid_before;
LocalTime _not_valid_after;
std::string _annotation_text;
std::string _content_title_text;
std::string _issue_date;
std::list<DecryptedKDMKey> _keys;
};
}
#endif
|
