digital_cinema_tools
digital_cinema_tools copied to clipboard
wolfgangw
base64 error message generated on simple encrypted/KDM test
cinemaslides v0.2013.10.03
Just thought I'd try a simple test against a Dolby Show Player DSS200 Software version 4.6.1.4 Warner Brothers Room 20
My command line: was cinemaslides -t dcp -o qtest -x fade,2,10,2 --encrypt chick.png
my system: Linux ipod2 3.12-1-686-pae #1 SMP Debian 3.12.9-1 (2014-02-01) i686 GNU/Linux
Trying to load the KDM into the Dolby server generated the message base64 error (see attached picture, love to know a simple way to move real log files off these Dolby servers... ) Here's a link to the DCP I generated (in dropbox), I also have a folder in that DCP of the key's used, called "keys" https://www.dropbox.com/sh/0rcuf5kils69ivk/uaS42N7-su
Hi,
did you modify any of your files after the DCP and/or KDM creation manually because the server says "invalid signature". OPEN and SAVE etc... your DCP looks good, but if you change 1 bit in the file the signature value is not follow your modification and the server was not ingest your KDM. And did you try the KDM creation with modified transitional-1 (mt-1) option?
No, I did not modify the DCP and/or KDM. I tried to keep this as simple of a test as possible, ie just out of the box.
No I did not try the mt-1 option.
My plans are to re-run a test, however, it takes a while, do to trying to get time in the theaters between gigs.
Yours truly, Brian
On Fri, Feb 21, 2014 at 1:02 AM, tomaspy [email protected] wrote:
Hi,
did you modify any of your files after the DCP and/or KDM creation manually because the server says "invalid signature". OPEN and SAVE etc... your DCP looks good, but if you change 1 bit in the file the signature value is not follow your modification and the server was not ingest your KDM. And did you try the KDM creation with modified transitional-1 (mt-1) option?
Reply to this email directly or view it on GitHubhttps://github.com/wolfgangw/digital_cinema_tools/issues/26#issuecomment-35709871 .
Sure happy to. Please find it included here below (git won't let me attach it, sorry for just including.)
Also, per the above, please note the entire thing is located here: https://www.dropbox.com/sh/0rcuf5kils69ivk/uaS42N7-su (for the kdm and other key details please see the 'keys' subdir).
<?xml version="1.0" encoding="UTF-8"?>
<DCinemaSecurityMessage xmlns="http://www.smpte-ra.org/schemas/430-3/2006/ETM" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:enc="http://www.w3.org/2001/04/xmlenc#">
<!-- cinemaslides v0.2013.10.03 smpte kdm dci-specific -->
<AuthenticatedPublic Id="ID_AuthenticatedPublic">
<MessageId>urn:uuid:1ca22946-f55f-40e0-812d-ff351e233503</MessageId>
<MessageType>http://www.smpte-ra.org/430-1/2006/KDM#kdm-key-type</MessageType>
<AnnotationText>cinemaslides 2014-02-18T22:27:10-08:00</AnnotationText>
<IssueDate>2014-02-18T22:27:10-08:00</IssueDate>
<Signer>
<ds:X509IssuerName>dnQualifier=FskymIRbn1NPcw9e5wCWTrQ/\+/k=,CN=.smpte-430-2.INTERMEDIATE.NOT_FOR_PRODUCTION,OU=example.org,O=example.org</ds:X509IssuerName>
<ds:X509SerialNumber>7</ds:X509SerialNumber>
</Signer>
<RequiredExtensions>
<KDMRequiredExtensions xmlns="http://www.smpte-ra.org/schemas/430-1/2006/KDM">
<Recipient>
<X509IssuerSerial>
<ds:X509IssuerName>dnQualifier=4dl0oY64k/gzxFwgTB0eISmnFhg=,CN=.Cinea.MFGCA.1,O=DC256.Cinea.Com,OU=MFGCA1.DC256.Cinea.Com</ds:X509IssuerName>
<ds:X509SerialNumber>9691</ds:X509SerialNumber>
</X509IssuerSerial>
<X509SubjectName>dnQualifier=Dw1P3\+omC0C3tOoLo4g8En6Wtns=,CN=SM.Dolby256-CAT862-0007e34c,O=DC256.Cinea.Com,OU=DolbyMediaBlock</X509SubjectName>
</Recipient>
<CompositionPlaylistId>urn:uuid:f93a7965-4ad9-4840-8744-9bfd5bee76ec</CompositionPlaylistId>
<ContentTitleText>Cinemaslides test</ContentTitleText>
<ContentAuthenticator>JxBz7ZS/FMQh4iuB5dDEXCrIADE=</ContentAuthenticator>
<ContentKeysNotValidBefore>2014-02-19T20:03:10-08:00</ContentKeysNotValidBefore>
<ContentKeysNotValidAfter>2014-03-18T22:27:10-08:00</ContentKeysNotValidAfter>
<AuthorizedDeviceInfo>
<DeviceListIdentifier>urn:uuid:abf67061-457b-4978-88a1-89150f7ce257</DeviceListIdentifier>
<DeviceListDescription>Dolby256-CAT862-0007e34c</DeviceListDescription>
<DeviceList>
<CertificateThumbprint>2jmj7l5rSw0yVb/vlWAYkK/YBwk=</CertificateThumbprint>
</DeviceList>
</AuthorizedDeviceInfo>
<KeyIdList>
<TypedKeyId>
<KeyType>MDIK</KeyType>
<KeyId>urn:uuid:e17d4ee0-a756-4ab4-bb52-a820e6544ade</KeyId>
</TypedKeyId>
</KeyIdList>
<ForensicMarkFlagList>
<ForensicMarkFlag>http://www.smpte-ra.org/430-1/2006/KDM#mrkflg-picture-disable</ForensicMarkFlag>
<ForensicMarkFlag>http://www.smpte-ra.org/430-1/2006/KDM#mrkflg-audio-disable</ForensicMarkFlag>
</ForensicMarkFlagList>
</KDMRequiredExtensions>
</RequiredExtensions>
<NonCriticalExtensions/>
</AuthenticatedPublic>
<AuthenticatedPrivate Id="ID_AuthenticatedPrivate">
<enc:EncryptedKey>
<enc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
</enc:EncryptionMethod>
<enc:CipherData>
<enc:CipherValue/>
</enc:CipherData>
</enc:EncryptedKey>
</AuthenticatedPrivate>
<ds:Signature>
<ds:SignedInfo>
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments"/>
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
<ds:Reference URI="#ID_AuthenticatedPublic">
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
<ds:DigestValue>oXLoh8yx4hSiz+AdolnjKw7lXVg/5YJxbb6pxtKVf8Q=</ds:DigestValue>
</ds:Reference>
<ds:Reference URI="#ID_AuthenticatedPrivate">
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
<ds:DigestValue>rtMKfcwcU4JYKeGzraaxUJDKXLcq2xMYEG59BDSc5Sk=</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignatureValue>pHcUnpEnmGLxdQ70ikcwPvHGNENccWeHQNGnc3pSFDqgInaRCtFP2Qc0SG+gGP1D
QvSinu/nOPxyZU1VlTt6goZfnv2uDxGvDfSyxkVNMojYga4IQ3iAoYbxxDk/L/o0
crraLvrtIsUNmFBok5r91+LC4go5NMqSYOzhMecNsL0dj8IzqITfuSdrAwY4br/Z
p5fCBFnYnPuaCw7pYsclK28bz8YlD23aOE5PNYTnyNmNxoyH0t0eWsqucdUK68hQ
NayybaZgZ10Y3v5nfgTNMI9eLcSV3akoXbdhUAAGeAzre2tYoCXGQs2TrxUVraox
320eziGQFon5SjCzCh+wlg==</ds:SignatureValue>
<ds:KeyInfo>
<ds:X509Data>
<ds:X509IssuerSerial>
<ds:X509IssuerName>dnQualifier=FskymIRbn1NPcw9e5wCWTrQ/\+/k=,CN=.smpte-430-2.INTERMEDIATE.NOT_FOR_PRODUCTION,OU=example.org,O=example.org</ds:X509IssuerName>
<ds:X509SerialNumber>7</ds:X509SerialNumber>
</ds:X509IssuerSerial>
<ds:X509Certificate>MIIEezCCA2OgAwIBAgIBBzANBgkqhkiG9w0BAQsFADCBijEUMBIGA1UEChMLZXhh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=</ds:X509Certificate>
</ds:X509Data>
<ds:X509Data>
<ds:X509IssuerSerial>
<ds:X509IssuerName>dnQualifier=jtol/7VBuIAeAyBdjngdKOF7hAs=,CN=.smpte-430-2.ROOT.NOT_FOR_PRODUCTION,OU=example.org,O=example.org</ds:X509IssuerName>
<ds:X509SerialNumber>6</ds:X509SerialNumber>
</ds:X509IssuerSerial>
<ds:X509Certificate>MIIEfzCCA2egAwIBAgIBBjANBgkqhkiG9w0BAQsFADCBgjEUMBIGA1UEChMLZXhh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</ds:X509Certificate>
</ds:X509Data>
<ds:X509Data>
<ds:X509IssuerSerial>
<ds:X509IssuerName>dnQualifier=jtol/7VBuIAeAyBdjngdKOF7hAs=,CN=.smpte-430-2.ROOT.NOT_FOR_PRODUCTION,OU=example.org,O=example.org</ds:X509IssuerName>
<ds:X509SerialNumber>5</ds:X509SerialNumber>
</ds:X509IssuerSerial>
<ds:X509Certificate>MIIEdzCCA1+gAwIBAgIBBTANBgkqhkiG9w0BAQsFADCBgjEUMBIGA1UEChMLZXhh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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</ds:Signature>
</DCinemaSecurityMessage>
So the Dolby's message Cannot get base64 Key Cipher Value ... is right on the money as your KDM has an empty CipherValue element.
Please run the exact call you're using to generate this KDM again, add the -v debug switch and post the output.
Btw, generating a KDM targeting your CPL and using your content key here works perfectly fine.
Not a problem. Here you go. Looks like something here (full error log posted below): unknown option DCinema asn1parse [options] <infile
Hmm, let me guess, properly quoted strings on F'd up names that crazy people (non software folk) that don't understand how painful it is to quote things properly so they pass through in the right manner (while not allowing some nefarious pieces of code to do weird things in a shell type problem....) here's the command line
quandt@ipod2:~/Downloads$ cinemaslides -v debug --kdm --cpl qtest/cpl_f93a7965-4ad9-4840-8744-9bfd5bee76ec_.xml --target WB\ DCinema\ certs/Room\ 20\ -\ Cat\ 862\ -\ 516940/cert_Dolby256-CAT862-516940.pem.crt --start 1 > log.log 2> err.log
//The err.log output... unknown option DCinema asn1parse [options] <infile where options are -inform arg input format - one of DER PEM -in arg input file -out arg output file (output format is always DER -noout arg don't produce any output -offset arg offset into file -length arg length of section in file -i indent entries -dump dump unknown data in hex form -dlimit arg dump the first arg bytes of unknown data in hex form -oid file file of extra oid definitions -strparse offset a series of these can be used to 'dig' into multiple ASN1 blob wrappings -genstr str string to generate ASN1 structure from -genconf file file to generate ASN1 structure from Usage: rsautl [options] -in file input file -out file output file -inkey file input key -keyform arg private key format - default PEM -pubin input is an RSA public -certin input is a certificate carrying an RSA public key -ssl use SSL v2 padding -raw use no padding -pkcs use PKCS#1 v1.5 padding (default) -oaep use PKCS#1 OAEP -sign sign with private key -verify verify with public key -encrypt encrypt with public key -decrypt decrypt with private key -hexdump hex dump output -engine e use engine e, possibly a hardware device. -passin arg pass phrase source
//The log.log output (sure wish I could attach files in github, odd I can' quandt@ipod2:~/Downloads$ cat log.log
- cinemaslides v0.2013.10.03
- ruby version: 1.9.3
- cinemaslides -v debug --kdm --cpl qtest/cpl_f93a7965-4ad9-4840-8744-9bfd5bee76ec_.xml --target "WB DCinema certs/Room 20 - Cat 862 - 516940/cert_Dolby256-CAT862-516940.pem.crt" --start 1
- CINEMASLIDESDIR is set to /home/quandt/.digital_cinema_tools/CINEMASLIDESDIR
- /home/quandt/.digital_cinema_tools/CINEMASLIDESDIR is writeable kdm * All necessary tools available kdm * CINEMACERTSTORE is set to /home/quandt/.digital_cinema_tools/CERTSTORE kdm * KDM signer: /O=example.org/OU=example.org/CN=CS.smpte-430-2.LEAF.NOT_FOR_PRODUCTION/dnQualifier=TDjXMXPqa03ab7/UBJdcjCfh8/c= kdm * Content keystore at: /home/quandt/.digital_cinema_tools/CINEMASLIDESDIR/keys kdm * CPL: qtest/cpl_f93a7965-4ad9-4840-8744-9bfd5bee76ec_.xml kdm * Content title: Cinemaslides test kdm * CPL UUID: f93a7965-4ad9-4840-8744-9bfd5bee76ec kdm * CPL has 1 reel kdm * Reel # 1 (70d9ba28-a368-4ef5-b2e9-16ff4c6a8b6c) kdm * MDIK => e17d4ee0-a756-4ab4-bb52-a820e6544ade kdm * CPL carries 3 certificates kdm * CPL signer certificate thumbprint: JxBz7ZS/FMQh4iuB5dDEXCrIADE= kdm * References 1 content key kdm * Checking content keys ... kdm * Valid: e17d4ee0-a756-4ab4-bb52-a820e6544ade kdm * All content keys valid kdm * Target: kdm * OU=DolbyMediaBlock kdm * O=DC256.Cinea.Com kdm * CN=SM.Dolby256-CAT862-0007e34c kdm * Target device name: Dolby256-CAT862-0007e34c kdm * dnQualifier=Dw1P3+omC0C3tOoLo4g8En6Wtns= kdm * Signer certificate is valid during requested KDM time window kdm * Target certificate is valid during requested KDM time window kdm * KDM requested valid from Saturday Mar 8 2014 (17:39) kdm * KDM requested valid until Friday Apr 4 2014 (20:03) kdm * KDM requirements all met kdm * KDM formulation requested: 'dci-specific' kdm * Encrypt payload for content key ID e17d4ee0-a756-4ab4-bb52-a820e6544ade kdm * Prepare KDM XML for signature kdm * Sign and write KDM to disk kdm * Pick up KDM at kdm_CINEMASLIDES-TEST_Dolby256-CAT862-0007e34c_20140308_20140404_QUA_OV_ds_e1fb7d98.xml kdm * KDM done
Fixed. See https://github.com/wolfgangw/digital_cinema_tools_distribution/commit/ab1f7b1b7f574510272ba4322f3a6ba7d495cfdf
Yes, it was whitespace fed to an OpenSSL call which would, of course, fail :)
Brian, thanks for the feedback.
Happy to help.
I'll do some retesting hopefully at WB and Lionsgate next week and let you know.
On Sat, Mar 8, 2014 at 11:53 PM, Wolfgang Woehl [email protected]:
Fixed. See wolfgangw/digital_cinema_tools_distribution@ab1f7b1https://github.com/wolfgangw/digital_cinema_tools_distribution/commit/ab1f7b1b7f574510272ba4322f3a6ba7d495cfdf
Yes, it was whitespace fed to an OpenSSL call which would, of course, fail :)
Brian, thanks for the feedback.
Reply to this email directly or view it on GitHubhttps://github.com/wolfgangw/digital_cinema_tools/issues/26#issuecomment-37121431 .