test/encryption_test.cc

   1 /*
   2     Copyright (C) 2013-2014 Carl Hetherington <cth@carlh.net>
   3
   4     This program is free software; you can redistribute it and/or modify
   5     it under the terms of the GNU General Public License as published by
   6     the Free Software Foundation; either version 2 of the License, or
   7     (at your option) any later version.
   8
   9     This program is distributed in the hope that it will be useful,
  10     but WITHOUT ANY WARRANTY; without even the implied warranty of
  11     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  12     GNU General Public License for more details.
  13
  14     You should have received a copy of the GNU General Public License
  15     along with this program; if not, write to the Free Software
  16     Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
  17
  18 */
  19
  20 #include "KM_util.h"
  21 #include "metadata.h"
  22 #include "certificates.h"
  23 #include "dcp.h"
  24 #include "signer.h"
  25 #include "cpl.h"
  26 #include "mono_picture_mxf.h"
  27 #include "picture_mxf_writer.h"
  28 #include "sound_mxf_writer.h"
  29 #include "sound_mxf.h"
  30 #include "reel.h"
  31 #include "test.h"
  32 #include "file.h"
  33 #include "signer_chain.h"
  34 #include "subtitle_content.h"
  35 #include "reel_mono_picture_asset.h"
  36 #include "reel_sound_asset.h"
  37 #include "encrypted_kdm.h"
  38 #include "decrypted_kdm.h"
  39 #include <sndfile.h>
  40 #include <boost/test/unit_test.hpp>
  41 #include <boost/shared_ptr.hpp>
  42
  43 using boost::shared_ptr;
  44
  45 /* Load a certificate chain from build/test/data/ *.pem and then build
  46    an encrypted DCP and a KDM using it.
  47 */
  48 BOOST_AUTO_TEST_CASE (encryption_test)
  49 {
  50         boost::filesystem::remove_all ("build/test/signer");
  51         boost::filesystem::create_directory ("build/test/signer");
  52         dcp::make_signer_chain ("build/test/signer", "openssl");
  53
  54         Kumu::libdcp_test = true;
  55
  56         dcp::MXFMetadata mxf_metadata;
  57         mxf_metadata.company_name = "OpenDCP";
  58         mxf_metadata.product_name = "OpenDCP";
  59         mxf_metadata.product_version = "0.0.25";
  60
  61         dcp::XMLMetadata xml_metadata;
  62         xml_metadata.issuer = "OpenDCP 0.0.25";
  63         xml_metadata.creator = "OpenDCP 0.0.25";
  64         xml_metadata.issue_date = "2012-07-17T04:45:18+00:00";
  65
  66         boost::filesystem::remove_all ("build/test/DCP/bar");
  67         boost::filesystem::create_directories ("build/test/DCP/bar");
  68         dcp::DCP d ("build/test/DCP/bar");
  69
  70         /* Use test/ref/crypt so this test is repeatable */
  71         dcp::CertificateChain chain;
  72         chain.add (shared_ptr<dcp::Certificate> (new dcp::Certificate (boost::filesystem::path ("test/ref/crypt/ca.self-signed.pem"))));
  73         chain.add (shared_ptr<dcp::Certificate> (new dcp::Certificate (boost::filesystem::path ("test/ref/crypt/intermediate.signed.pem"))));
  74         chain.add (shared_ptr<dcp::Certificate> (new dcp::Certificate (boost::filesystem::path ("test/ref/crypt/leaf.signed.pem"))));
  75
  76         shared_ptr<dcp::Signer> signer (
  77                 new dcp::Signer (
  78                         chain,
  79                         "test/ref/crypt/leaf.key"
  80                         )
  81                 );
  82
  83         shared_ptr<dcp::CPL> cpl (new dcp::CPL ("A Test DCP", dcp::FEATURE));
  84
  85         dcp::Key key;
  86
  87         shared_ptr<dcp::MonoPictureMXF> mp (new dcp::MonoPictureMXF (dcp::Fraction (24, 1)));
  88         mp->set_metadata (mxf_metadata);
  89         mp->set_key (key);
  90
  91         shared_ptr<dcp::PictureMXFWriter> writer = mp->start_write ("build/test/DCP/bar/video.mxf", dcp::SMPTE, false);
  92         dcp::File j2c ("test/data/32x32_red_square.j2c");
  93         for (int i = 0; i < 24; ++i) {
  94                 writer->write (j2c.data (), j2c.size ());
  95         }
  96         writer->finalize ();
  97
  98         shared_ptr<dcp::SoundMXF> ms (new dcp::SoundMXF (dcp::Fraction (24, 1), 48000, 1));
  99         ms->set_key (key);
 100         shared_ptr<dcp::SoundMXFWriter> sound_writer = ms->start_write ("build/test/DCP/bar/audio.mxf", dcp::SMPTE);
 101
 102         SF_INFO info;
 103         info.format = 0;
 104         SNDFILE* sndfile = sf_open ("test/data/1s_24-bit_48k_silence.wav", SFM_READ, &info);
 105         BOOST_CHECK (sndfile);
 106         float buffer[4096*6];
 107         float* channels[1];
 108         channels[0] = buffer;
 109         while (1) {
 110                 sf_count_t N = sf_readf_float (sndfile, buffer, 4096);
 111                 sound_writer->write (channels, N);
 112                 if (N < 4096) {
 113                         break;
 114                 }
 115         }
 116
 117         sound_writer->finalize ();
 118
 119         cpl->add (shared_ptr<dcp::Reel> (new dcp::Reel (
 120                                                  shared_ptr<dcp::ReelMonoPictureAsset> (new dcp::ReelMonoPictureAsset (mp, 0)),
 121                                                  shared_ptr<dcp::ReelSoundAsset> (new dcp::ReelSoundAsset (ms, 0)),
 122                                                  shared_ptr<dcp::ReelSubtitleAsset> ()
 123                                                  )));
 124         d.add (cpl);
 125         d.write_xml (dcp::SMPTE, xml_metadata, signer);
 126
 127         dcp::DecryptedKDM kdm (
 128                 cpl,
 129                 dcp::LocalTime ("2013-01-01T00:00:00+00:00"),
 130                 dcp::LocalTime ("2017-01-08T00:00:00+00:00"),
 131                 "libdcp",
 132                 "test",
 133                 "2012-07-17T04:45:18+00:00"
 134                 );
 135
 136         kdm.encrypt(signer, signer->certificates().leaf()).as_xml ("build/test/bar.kdm.xml");
 137
 138         int r = system (
 139                 "xmllint --path schema --nonet --noout --schema schema/SMPTE-430-1-2006-Amd-1-2009-KDM.xsd build/test/bar.kdm.xml "
 140                 "> build/test/xmllint.log 2>&1 < /dev/null"
 141                 );
 142
 143 #ifdef DCPOMATIC_POSIX
 144         BOOST_CHECK_EQUAL (WEXITSTATUS (r), 0);
 145 #else
 146         BOOST_CHECK_EQUAL (r, 0);
 147 #endif
 148
 149         r = system ("xmlsec1 verify "
 150                 "--pubkey-cert-pem test/ref/crypt/leaf.signed.pem "
 151                 "--trusted-pem test/ref/crypt/intermediate.signed.pem "
 152                 "--trusted-pem test/ref/crypt/ca.self-signed.pem "
 153                 "--id-attr:Id http://www.smpte-ra.org/schemas/430-3/2006/ETM:AuthenticatedPublic "
 154                 "--id-attr:Id http://www.smpte-ra.org/schemas/430-3/2006/ETM:AuthenticatedPrivate "
 155                     "build/test/bar.kdm.xml > build/test/xmlsec1.log 2>&1 < /dev/null");
 156
 157 #ifdef DCPOMATIC_POSIX
 158         BOOST_CHECK_EQUAL (WEXITSTATUS (r), 0);
 159 #else
 160         BOOST_CHECK_EQUAL (r, 0);
 161 #endif
 162 }