Sync Android reference with CDM reference.

The sc-dev branch on Android is out of sync with several important
changes on the CDM master branch.  This changes copies several CLs.

[ Merge of http://go/wvgerrit/104524 ]

OEMCrypto unittest: generic crypto APIs

Add unit tests to verify that generic crypto APIs do not crash for large
input buffer lengths and signature lengths.

[ Merge of http://go/wvgerrit/106583 ]

Fix secure buffer tests in OEMCrypto testbed

The secure buffers were not being used correctly in the testbed, and
were failing OEMCryptoMemoryCopyBufferForHugeBufferLengths.

[ Merge of http://go/wvgerrit/109603 ]

Reject block_offsets of 16 or greater in OEC Ref

This is a potential security hole. We will be enforcing that OEMCrypto
rejects this in an upcoming test, so the Ref must be updated to reject
it.

[ Merge of http://go/wvgerrit/110165 ]

Fix Format String Signedness

See above for full description.

[ Merge of http://go/wvgerrit/111784 ]

Fix heap overflow test in L3 and OEMCrypto ref

Check the length of wrapped_rsa_key_length before casting to
WrappedRSAKey struct.

[ Merge of http://go/wvgerrit/113563 ]

Reword "blacklisted" to "forbidden"

[ Merge of http://go/wvgerrit/113583 ]

Use error code from RAND_bytes

The return code from RAND_bytes was not used correctly.

[ Merge of http://go/wvgerrit/113644 ]

Check for buffer overflow when computing subsample size

The test DecryptCENCForNumBytesClearPlusEncryptedOverflowsSize
cleverly picks num_bytes_clear + num_bytes_encrypted = 1 after integer
overflow. This is in the refernce code, level 3, and odkitee.

[ Merge of http://go/wvgerrit/113683 ]

OEMCrypto reference code: respect analog flags for clear buffers

The reference code should honor the analog_display_active flag for
both clear and secure buffers.

[ Merge of http://go/wvgerrit/114883 ]

Add size check for IV in OEMCrypto APIs

IV is supposed to be 16 bytes but the size is never checked before iv
gets used in LoadProvisioning.

Bug: 145026457
Bug: 147569428
Bug: 159847851
Bug: 162372059
Bug: 169278035
Bug: 169980065
Bug: 173460694
Bug: 173994023
Bug: 174523584
Bug: 175001473
Bug: 175041667
Test: No compiled files changed
Change-Id: If0ccd1cd3a56f72eedd2a6cb202a34bc7b43ca0d

libwvdrmengine/oemcrypto/ref/src/oemcrypto_engine_ref.h

@@ -171,12 +171,12 @@ class CryptoEngine {
 
   // If 0 no restriction, otherwise it's the max subsample size for
   // DecryptCENC. This is not the same as the max sample or buffer size.
-  virtual size_t max_subsample_size() { return 1024 * 100; }  // 100 KiB
+  virtual size_t max_subsample_size() { return 4 * 1024 * 1024; }  // 4 MiB
 
   // If 0 no restriction, otherwise it's the max sample size for DecryptCENC.
   // This is the same as the max input and output buffer size for DecryptCENC
   // and CopyBuffer. It is not the same as the max subsample size.
-  virtual size_t max_sample_size() { return 1024 * 1024; }  // 1 MiB
+  virtual size_t max_sample_size() { return 16 * 1024 * 1024; }  // 16 MiB
 
   virtual bool srm_update_supported() { return false; }
 
@@ -193,7 +193,7 @@ class CryptoEngine {
     return OEMCrypto_ERROR_NOT_IMPLEMENTED;
   }
 
-  virtual bool srm_blacklisted_device_attached() { return false; }
+  virtual bool srm_forbidden_device_attached() { return false; }
 
   // Rate limit for nonce generation.  Default to 200 nonce/second.
   virtual int nonce_flood_count() { return 200; }