Cdm to expose GetDeviceInformation() and GetDeviceSignedCsrPayload()

GetDeviceInformation() and GetDeviceSignedCsrPayload() are added to cdm_engine and crypto_session, so that they can be queried by DRM plugin. This is to allow the wv drm HAL to be able to extract BCC and CSR payload to build CSR for prov 4 device registration, such that we don't need a separate RKP HAL to do this job. Changes to the DRM plugin to use the exposed methods will be in the coming CL. Bug: 286556950 Test: request_license_test Merged from https://widevine-internal-review.googlesource.com/178890 Merged from https://widevine-internal-review.googlesource.com/179730 Change-Id: Ibafa3a58c99fbb8f1f25f8951d3749110bd32176
2023-07-19 11:17:12 -07:00
parent c600ccb741
commit 30669a7b67
9 changed files with 179 additions and 7 deletions
--- a/libwvdrmengine/cdm/core/include/cdm_engine.h
+++ b/libwvdrmengine/cdm/core/include/cdm_engine.h
@@ -180,6 +180,11 @@ class CdmEngine {
  virtual CdmResponseType QueryOemCryptoSessionId(
      const CdmSessionId& session_id, CdmQueryMap* query_response);

+  // Query Signed CSR payload for Prov 4 device
+  virtual CdmResponseType QueryDeviceSignedCsrPayload(
+      const std::string& challenge, const std::string& device_info,
+      std::string* query_response);
+
  // Generate and return a valid provisioning request.
  virtual CdmResponseType GetProvisioningRequest(
      CdmCertificateType cert_type, const std::string& cert_authority,
--- a/libwvdrmengine/cdm/core/include/crypto_session.h
+++ b/libwvdrmengine/cdm/core/include/crypto_session.h
@@ -196,6 +196,13 @@ class CryptoSession {
      std::string* additional_signature);
  virtual CdmResponseType GetBootCertificateChain(
      std::string* bcc, std::string* additional_signature);
+  virtual CdmResponseType GetDeviceInformation(
+      RequestedSecurityLevel requested_security_level,
+      std::string* device_info);
+  virtual CdmResponseType GetDeviceSignedCsrPayload(
+      RequestedSecurityLevel requested_security_level,
+      const std::string& challenge, const std::string& device_info,
+      std::string* signed_csr_payload);
  virtual CdmResponseType GenerateCertificateKeyPair(
      std::string* public_key, std::string* public_key_signature,
      std::string* wrapped_private_key, CryptoWrappedKey::Type* key_type);
--- a/libwvdrmengine/cdm/core/include/wv_cdm_constants.h
+++ b/libwvdrmengine/cdm/core/include/wv_cdm_constants.h
@@ -124,6 +124,7 @@ static const std::string QUERY_KEY_PRODUCTION_READY = "ProductionReady";
 // Internal query key.  Should not be exposed to Android apps.
 static const std::string QUERY_KEY_DEBUG_BOOT_CERTIFICATE_CHAIN =
    "DebugBootCertificateChain";
+static const std::string QUERY_KEY_DEVICE_INFORMATION = "DeviceInformation";

 static const std::string QUERY_VALUE_TRUE = "True";
 static const std::string QUERY_VALUE_FALSE = "False";
--- a/libwvdrmengine/cdm/core/include/wv_cdm_types.h
+++ b/libwvdrmengine/cdm/core/include/wv_cdm_types.h
@@ -461,6 +461,8 @@ enum CdmResponseEnum : int32_t {
  STORE_ATSC_LICENSE_ERROR = 395,
  SESSION_NOT_FOUND_GENERIC_CRYPTO = 396,
  SESSION_NOT_FOUND_24 = 397,
+  GET_DEVICE_INFORMATION_ERROR = 398,
+  GET_DEVICE_SIGNED_CSR_PAYLOAD_ERROR = 399,
  // Don't forget to add new values to
  //  * core/src/wv_cdm_types.cpp
  //  * android/include/mapErrors-inl.h