Use local provisioning server

Merge from Widevine repo of http://go/wvgerrit/133703 and
http://ag/14707867

In order to use a local provisioning server, we need to use a
different test keybox system id that is in the dev device database
instead of the production database. We also need to use a local
license server that uses the dev license server.

Bug: 187646550
Test: GtsMediaTestCases

Change-Id: Ice89143dd26de22757375a770c6bac716fcbc057

Add Keybox OTA Provisioning functions to OEMCrypto header

Merge from Widevine repo of http://go/wvgerrit/133704 and
http://go/ag/14707868

Bug: 188228998
Change-Id: Iff54bc2870e87bf7239e179e1d02fbcc8df6198f

Stub build changes to support OTA Keybox

Merge from Widevine repo of http://go/wvgerrit/133725 and
http://go/ag/14781459

This CL adds a new unit test file for testing OTA keybox
reprovisioning functionality. This new test is built when running the
dynamic adapter in the linux build, and in the Android build.

Bug: 187646550
Change-Id: I625513840188f95e74831ef2ea399e827e837439

Add OTA Keybox functions to dynamic adapter

Merge from Widevine repo of http://go/wvgerrit/125843
and http://go/ag/14781460

Bug: 187646550
Change-Id: Ief78ed10599c091690e0d7dc488ea71674c763b5

Refactor dynamic adapter keybox verification

Merge from Widevine repo of http://go/wvgerrit/133727
http://go/ag/14812524

The keybox validation needs to be done separately from initializing
the library so that we can support Keybox OTA Reprovisioning.

If L1 loads, but the keybox is missing, the initialization should
succeed. When the keybox is validated, the adapter should try to look
for a keybox on the filesystem. if none is found, it should either
return NEEDS PROVISIONING or an error.

Bug: 187646550
Change-Id: I34a8c365a5a5ca35c379bea827c85c749964744c

Update crypto session to use new OTA keybox functionality

Merge from Widevine repo of http://go/wvgerrit/133728 and
http://go/ag/14812525

This CL stubs out two new CryptoSession functions that call the new
OEMCrypto functions for OTA Keybox Provisioning. It builds!  Yay!

It also adds a boolean needs_keybox_provisioning that is set to true
when OEMCrypto reports that it needs a keybox. This should only happen
if there is no keybox installed and oemcrypto supports provisioning.

Bug: 187646550
Merged-In: Ide9533943125aa13b8899b652b118a0b410c882c
Change-Id: Ide9533943125aa13b8899b652b118a0b410c882c

libwvdrmengine/oemcrypto/test/ota_keybox_test.cpp

@@ -0,0 +1,53 @@
+// Copyright 2018 Google LLC. All Rights Reserved. This file and proprietary
+// source code may only be used and distributed under the Widevine License
+// Agreement.
+//
+
+#include <gtest/gtest.h>
+
+#include "OEMCryptoCENC.h"
+#include "clock.h"
+#include "log.h"
+#include "oec_decrypt_fallback_chain.h"
+#include "oec_device_features.h"
+#include "oec_session_util.h"
+#include "oec_test_data.h"
+#include "oemcrypto_session_tests_helper.h"
+#include "oemcrypto_types.h"
+#include "platform.h"
+#include "string_conversions.h"
+#include "test_sleep.h"
+
+using namespace std;
+
+namespace wvoec {
+class OTAKeyboxProvisioningTest : public ::testing::Test, public SessionUtil {
+ protected:
+  void SetUp() override {
+    ::testing::Test::SetUp();
+    wvcdm::TestSleep::SyncFakeClock();
+    const ::testing::TestInfo* const test_info =
+        ::testing::UnitTest::GetInstance()->current_test_info();
+    LOGD("Running test %s.%s", test_info->test_case_name(), test_info->name());
+    OEMCrypto_SetSandbox(kTestSandbox, sizeof(kTestSandbox));
+    ASSERT_EQ(OEMCrypto_SUCCESS, OEMCrypto_Initialize());
+  }
+
+  void TearDown() override {
+    OEMCrypto_Terminate();
+    ::testing::Test::TearDown();
+  }
+};
+
+TEST_F(OTAKeyboxProvisioningTest, BasicTest) {
+  OEMCryptoResult result = OEMCrypto_IsKeyboxValid();
+  if (result == OEMCrypto_SUCCESS) {
+    cout << "             "
+         << "Keybox valid after initialization. Skipping rest of test." << endl;
+    return;
+  }
+  ASSERT_EQ(result, OEMCrypto_ERROR_NEEDS_KEYBOX_PROVISIONING);
+  cout << "             "
+       << "OTA Keybox functions supported. Device needs provisioning." << endl;
+}
+}  // namespace wvoec