Merges to android Pi release (part 6)

These are a set of CLs merged from the wv cdm repo to the android repo.

* Enable Cast for Android Things build.

  Author: Thoren Paulson <thoren@google.com>

  [ Merge of http://go/wvgerrit/29941 ]

  Added a path to make_cast_libwvlevel3 for Android Things. Added the new
  system id to the preprocessor guards in android_keybox.cpp. Guarded the
  references to stderr in page_allocator.cpp because for some reason they
  don't get resolved when we link against the resulting library.

  BUG: 63443584

* Resolve memory leaks in use of OpenSSL.

  Author: Gene Morgan <gmorgan@google.com>

  [ Merge of http://go/wvgerrit/32700 ]

  Use of EVP_CIPHER_CTX requires a call to EVP_CIPHER_CTX_cleanup().

* Memory leak in OpenSSL RSA key handling.

  Author: Gene Morgan <gmorgan@google.com>

  [ Merge of http://go/wvgerrit/32621 ]

  This fixes a range of tests. --gtest_filter="CdmDecrypt*" runs
  five tests and still loses 5 objects totalling 1320 bytes (down
  from 6200 bytes).

* Unit test and mock OEMCrypto memory leaks.

  Author: Gene Morgan <gmorgan@google.com>

  [ Merge of http://go/wvgerrit/32640 ]

  More memory leak cleanup. All remaining leaks are due
  to calls to CRYPTO_malloc() without the matching free
  (i.e., calls into openssl).

* Clean up memory leaks in tests.

  Author: Gene Morgan <gmorgan@google.com>

  [ Merge of http://go/wvgerrit/32600 ]

  This is the first pass at cleaning up memory leaks. These leaks
  were affecting a lot of tests, making it hard to identify more
  serious leaks.

  Switch to unique_ptr<> pointers for CdmEngine in
  generic_crypto_unittest tests for FileSystem object in
  mock OEMCrypto's CryptoEngine object.

* Fix broken tests - linux-only & address sanitizer failures.

  Author: Gene Morgan <gmorgan@google.com>

  [ Merge of http://go/wvgerrit/32460 ]

  Fix broken test:
    WvCdmEnginePreProvTestStaging.ServiceCertificateInitialNoneTest

  Fix failures found by address sanitizer:
    DeviceFilesUsageInfoTest.RetrieveByProviderSessionToken
    DeviceFilesUsageInfoTest.UpdateUsageInfo

  NOTE: address sanitizer cannot handle EXPECT_CALL macros containing
  a call with a Contains matcher as an argument, e.g.:

  EXPECT_CALL(file,
              Write(Contains(certificate, wrapped_private_key, 0),
                    Gt(certificate.size() + wrapped_private_key.size())))

  The address sanitizer reports a crash, issues a report, and stops. A
  temporary fix is to replace the "Contains()" argument with "_".

* Usage license handling corrections

  Author: Rahul Frias <rfrias@google.com>

  [ Merge of http://go/wvgerrit/28540 ]

  Validate that offline licenses that do not contain a provider session
  token are not handled by the TEE.

  BUG: 38490468

  Test: WV Unit/integration tests, GtsMediaTestCases,
        WvCdmRequestLicenseTest.ReleaseRetryL3OfflineKeySessionUsageDisabledTest

* UsageTableEntry::CopyOldUsageEntry memcpy read out of range.

  Author: Gene Morgan <gmorgan@google.com>

  [ Merge of http://go/wvgerrit/32220 ]

  The function copies the pst from a variable length input vector
  into a 256 byte character array. But the length argument was a
  fixed value - MAC_KEY_SIZE. Depending on the actual PST length this
  can lead to memcpy reading out of bounds or the PST getting truncated.

BUG: 71650075
Test: Not currently passing. Will be addressed in a subsequent
  commit in the chain.

Change-Id: I81a4593d7d04d0ef6069ce48d0601b6fbdd85de9

libwvdrmengine/cdm/core/include/cdm_engine.h

@@ -14,6 +14,7 @@
 #include "file_store.h"
 #include "initialization_data.h"
 #include "lock.h"
+#include "metrics_collections.h"
 #include "oemcrypto_adapter.h"
 #include "scoped_ptr.h"
 #include "service_certificate.h"
@@ -290,7 +291,7 @@ class CdmEngine {
   // dead lock.
   virtual void OnTimerEvent();
 
-  virtual metrics::MetricsGroup* GetMetrics() { return &metrics_; }
+  virtual metrics::EngineMetrics* GetMetrics() { return &metrics_; }
 
  private:
   // private methods
@@ -320,7 +321,7 @@ class CdmEngine {
    * ensure that all data has been properly recorded in the group before
    * it is published.
    */
-  metrics::MetricsGroup metrics_;
+  metrics::EngineMetrics metrics_;
   metrics::TimerMetric life_span_;
 
   CdmSessionMap session_map_;

libwvdrmengine/cdm/core/include/cdm_session.h

@@ -12,7 +12,7 @@
 #include "file_store.h"
 #include "initialization_data.h"
 #include "license.h"
-#include "metrics_group.h"
+#include "metrics_collections.h"
 #include "oemcrypto_adapter.h"
 #include "policy_engine.h"
 #include "scoped_ptr.h"
@@ -28,13 +28,30 @@ class UsageTableHeader;
 
 class CdmSession {
  public:
-  CdmSession(FileSystem* file_system);
+  // Creates a new instance of the CdmSession with the given |file_system|
+  // and |metrics| parameters. Both parameters are owned by the caller and
+  // must remain in scope througout the scope of the new instance. |metrics|
+  // must not be null.
+  CdmSession(FileSystem* file_system, metrics::SessionMetrics* metrics);
   virtual ~CdmSession();
 
   void Close() { closed_ = true; }
   bool IsClosed() { return closed_; }
 
+  // Initializes this instance of CdmSession with the given property set.
+  // |cdm_client_property_set| MAY be null, is owned by the caller,
+  // and must remain in scope throughout the scope of this session.
   virtual CdmResponseType Init(CdmClientPropertySet* cdm_client_property_set);
+
+  // Initializes this instance of CdmSession with the given parmeters.
+  // All parameters are owned by the caller.
+  // |service_certificate| is caller owned, cannot be null, and must be in
+  //     scope as long as the session is in scope.
+  // |cdm_client_property_set| is caller owned, may be null, but must be
+  //     in scope as long as the session is in scope.
+  // |forced_session_id| is caller owned and may be null.
+  // |event_listener| is caller owned, may be null, but must be in scope
+  //     as long as the session is in scope.
   virtual CdmResponseType Init(ServiceCertificate* service_certificate,
                                CdmClientPropertySet* cdm_client_property_set,
                                const CdmSessionId* forced_session_id,
@@ -171,7 +188,7 @@ class CdmSession {
                                         CdmSigningAlgorithm algorithm,
                                         const std::string& signature);
 
-  virtual metrics::MetricsGroup* GetMetrics() { return &metrics_; }
+  virtual metrics::SessionMetrics* GetMetrics() { return metrics_; }
 
  private:
   friend class CdmSessionTest;
@@ -190,20 +207,14 @@ class CdmSession {
   void set_file_handle(DeviceFiles* file_handle);
 
   // instance variables
-
-  /*
-   * The metrics group must be the first variable declared to ensure
-   * that it is the last member destroyed so that no child members
-   * try to use a reference to it after it is destroyed. This will
-   * ensure that all data has been properly recorded in the group before
-   * it is published.
-   */
-  metrics::MetricsGroup metrics_;
+  metrics::SessionMetrics* metrics_;
+  metrics::CryptoMetrics* crypto_metrics_;
   metrics::TimerMetric life_span_;
 
   bool initialized_;
   bool closed_;  // Session closed, but final shared_ptr has not been released.
   CdmSessionId session_id_;
+  FileSystem* file_system_;
   scoped_ptr<CdmLicense> license_parser_;
   scoped_ptr<CryptoSession> crypto_session_;
   scoped_ptr<PolicyEngine> policy_engine_;

libwvdrmengine/cdm/core/include/certificate_provisioning.h

@@ -7,7 +7,7 @@
 
 #include "crypto_session.h"
 #include "license_protocol.pb.h"
-#include "metrics_group.h"
+#include "metrics_collections.h"
 #include "oemcrypto_adapter.h"
 #include "scoped_ptr.h"
 #include "wv_cdm_types.h"
@@ -21,7 +21,7 @@ class ServiceCertificate;
 
 class CertificateProvisioning {
  public:
-  CertificateProvisioning(metrics::MetricsGroup* metrics,
+  CertificateProvisioning(metrics::CryptoMetrics* metrics,
                           ServiceCertificate* service_certificate) :
       crypto_session_(metrics),
       cert_type_(kCertificateWidevine),

libwvdrmengine/cdm/core/include/crypto_session.h

@@ -9,7 +9,7 @@
 
 #include "OEMCryptoCENC.h"
 #include "lock.h"
-#include "metrics_group.h"
+#include "metrics_collections.h"
 #include "oemcrypto_adapter.h"
 #include "timer_metric.h"
 #include "wv_cdm_types.h"
@@ -36,7 +36,10 @@ class CryptoSession {
     bool rsa_cast;
   };
 
-  CryptoSession(metrics::MetricsGroup* metrics);
+  // Creates an instance of CryptoSession with the given |crypto_metrics|.
+  // |crypto_metrics| is owned by the caller, must NOT be null, and must
+  // exist as long as the new CryptoSession exists.
+  explicit CryptoSession(metrics::CryptoMetrics* crypto_metrics);
   virtual ~CryptoSession();
 
   virtual bool GetClientToken(std::string* client_token);
@@ -220,7 +223,7 @@ class CryptoSession {
   static bool initialized_;
   static int session_count_;
 
-  metrics::MetricsGroup* metrics_;
+  metrics::CryptoMetrics* metrics_;
   metrics::TimerMetric life_span_;
 
   bool open_;

libwvdrmengine/cdm/core/include/usage_table_header.h

@@ -9,9 +9,8 @@
 #include "device_files.h"
 #include "file_store.h"
 #include "lock.h"
-#include "metrics_group.h"
+#include "metrics_collections.h"
 #include "scoped_ptr.h"
-#include "timer_metric.h"
 #include "wv_cdm_types.h"
 
 namespace wvcdm {
@@ -67,29 +66,29 @@ class UsageTableHeader {
   // should not be in use by any open CryptoSession objects when calls
   // to DeleteEntry and MoveEntry are made.
   CdmResponseType DeleteEntry(uint32_t usage_entry_number, DeviceFiles* handle,
-                              metrics::MetricsGroup* metrics);
+                              metrics::CryptoMetrics* metrics);
 
  private:
   CdmResponseType MoveEntry(uint32_t from /* usage entry number */,
                             const CdmUsageEntry& from_usage_entry,
                             uint32_t to /* usage entry number */,
                             DeviceFiles* handle,
-                            metrics::MetricsGroup* metrics);
+                            metrics::CryptoMetrics* metrics);
 
   CdmResponseType GetEntry(uint32_t usage_entry_number, DeviceFiles* handle,
                            CdmUsageEntry* usage_entry);
   CdmResponseType StoreEntry(uint32_t usage_entry_number, DeviceFiles* handle,
                              const CdmUsageEntry& usage_entry);
 
-  CdmResponseType Shrink(metrics::MetricsGroup* metrics,
+  CdmResponseType Shrink(metrics::CryptoMetrics* metrics,
                          uint32_t number_of_usage_entries_to_delete);
 
   CdmResponseType UpgradeFromUsageTable(DeviceFiles* handle,
-                                        metrics::MetricsGroup* metrics);
+                                        metrics::CryptoMetrics* metrics);
   bool UpgradeLicensesFromUsageTable(DeviceFiles* handle,
-                                     metrics::MetricsGroup* metrics);
+                                     metrics::CryptoMetrics* metrics);
   bool UpgradeUsageInfoFromUsageTable(DeviceFiles* handle,
-                                      metrics::MetricsGroup* metrics);
+                                      metrics::CryptoMetrics* metrics);
 
   virtual bool is_inited() { return is_inited_; }
 

libwvdrmengine/cdm/core/include/wv_cdm_constants.h

@@ -77,6 +77,7 @@ static const std::string QUERY_VALUE_SECURITY_LEVEL_L1 = "L1";
 static const std::string QUERY_VALUE_SECURITY_LEVEL_L2 = "L2";
 static const std::string QUERY_VALUE_SECURITY_LEVEL_L3 = "L3";
 static const std::string QUERY_VALUE_SECURITY_LEVEL_UNKNOWN = "Unknown";
+static const std::string QUERY_VALUE_SECURITY_LEVEL_DEFAULT = "Default";
 static const std::string QUERY_VALUE_DISCONNECTED = "Disconnected";
 static const std::string QUERY_VALUE_UNPROTECTED = "Unprotected";
 static const std::string QUERY_VALUE_HDCP_V1 = "HDCP-1.x";