Libgourou Commit Details

Date:

2022-12-21 21:06:03 (9 months 1 day ago)

Author:

Grégory Soutadé

Branch:

master

Commit:

f65e8cd9ebcb78ba232eb6b3cf6b3bd1b72a8c9c

Parents:

24bae89095f5ad12dfa516d114ed2058e874a74c

Message:

Check for target user before trying to decrypt a file

Changes:

M	include/libgourou_common.h (1 diff)
M	src/libgourou.cpp (2 diffs)

File differences

-129
130 130
131 131
132 
132
133
133 134
134 135
135 136
+␉DRM_IN_OUT_EQUALS,␊
␉DRM_MISSING_PARAMETER,␊
␉DRM_INVALID_KEY_SIZE,␊
␉DRM_ERR_ENCRYPTION_KEY_FP␊
␉DRM_ERR_ENCRYPTION_KEY_FP,␊
␉DRM_INVALID_USER␊
    };␊
    ␊
    #ifndef _NOEXCEPT␊
 ␉DRM_IN_OUT_EQUALS,␊
 ␉DRM_MISSING_PARAMETER,␊
 ␉DRM_INVALID_KEY_SIZE,␊
-␉DRM_ERR_ENCRYPTION_KEY_FP␊
+␉DRM_ERR_ENCRYPTION_KEY_FP,␊
+␉DRM_INVALID_USER␊
     };␊
     ␊
     #ifndef _NOEXCEPT␊

-1028
1029 1029
1030 1030
1031
1032
1033
1034
1035
1036
1037
1031 1038
1032 1039
1033 1040
... ...
1041 1048
1042 1049
1043 1050
1044 
1051
1045 1052
1046 1053
1047 1054
+    {␊
␉unsigned char rsaKey[RSA_KEY_SIZE];␊
␉␊
␉std::string user = extractTextElem(rightsDoc, "/adept:rights/licenseToken/user");␊
␊
␉if (this->user->getUUID() != user)␊
␉{␊
␉    EXCEPTION(DRM_INVALID_USER, "This book has been downloaded for another user (" << user << ")");␊
␉}␊
␉␊
␉if (!encryptionKey)␊
␉{␊
␉    std::string encryptedKey = extractTextElem(rightsDoc, "/adept:rights/licenseToken/encryptedKey");␊

␊
␉    ByteArray arrayEncryptedKey = ByteArray::fromBase64(encryptedKey);␊
␊
␉    std::string privateKeyData = user->getPrivateLicenseKey();␊
␉    std::string privateKeyData = this->user->getPrivateLicenseKey();␊
␉    ByteArray privateRSAKey = ByteArray::fromBase64(privateKeyData);␊
␉␊
␉    dumpBuffer(gourou::LG_LOG_DEBUG, "To decrypt : ", arrayEncryptedKey.data(), arrayEncryptedKey.length());␊
 ...
     {␊
 ␉unsigned char rsaKey[RSA_KEY_SIZE];␊
 ␉␊
+␉std::string user = extractTextElem(rightsDoc, "/adept:rights/licenseToken/user");␊
+␊
+␉if (this->user->getUUID() != user)␊
+␉{␊
+␉    EXCEPTION(DRM_INVALID_USER, "This book has been downloaded for another user (" << user << ")");␊
+␉}␊
+␉␊
 ␉if (!encryptionKey)␊
 ␉{␊
 ␉    std::string encryptedKey = extractTextElem(rightsDoc, "/adept:rights/licenseToken/encryptedKey");␊
 ␊
 ␉    ByteArray arrayEncryptedKey = ByteArray::fromBase64(encryptedKey);␊
 ␊
-␉    std::string privateKeyData = user->getPrivateLicenseKey();␊
+␉    std::string privateKeyData = this->user->getPrivateLicenseKey();␊
 ␉    ByteArray privateRSAKey = ByteArray::fromBase64(privateKeyData);␊
 ␉␊
 ␉    dumpBuffer(gourou::LG_LOG_DEBUG, "To decrypt : ", arrayEncryptedKey.data(), arrayEncryptedKey.length());␊

Download the corresponding diff file

Libgourou

File differences

Branches

Tags