Add test base that catches nonce flood

Merge from Widevine repo of http://go/wvgerrit/56520

This CL adds a test base that installs a test keybox and catches nonce
flood errors for all CDM tests.

In order to do this, a new class is added called a
CryptoSessionFactory.  The default factory just creates a new
CryptoSession.  All places in the code that create a new CryptoSession
now call the static method MakeCryptoSession, which uses the current
factory to create a CryptoSession.  If MakeCryptoSession is called and
there is no current factory, a default factory is created.

The CryptoSession constructor is now private, so that we do not
accidentally try to create one without using the factory.

For the new test base, we first create a special test
CryptoSessionFactory that creates a TestCryptoSession.  The test
factory catches the first call to MakeCryptoSession and injects an
installation of the test keybox after OEMCrypto_Initialize is called.

The TestCryptoSession injects a sleep statement and a retry whenever
it detects a nonce flood.

Test: current unit tests still pass.
bug: 72354901 Fix Generic Crypto tests.
bug: 111361440 Remove #ifdef from unit tests
Change-Id: I248e7f3c53721c04d2af412ef835e19bb4d15d9a

libwvdrmengine/cdm/core/src/cdm_engine.cpp

@@ -492,10 +492,11 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
                                        const std::string& query_token,
                                        std::string* query_response) {
   LOGI("CdmEngine::QueryStatus");
-  CryptoSession crypto_session(metrics_.GetCryptoMetrics());
+  scoped_ptr<CryptoSession> crypto_session(
+      CryptoSession::MakeCryptoSession(metrics_.GetCryptoMetrics()));
   CdmResponseType status;
   M_TIME(
-      status = crypto_session.Open(
+      status = crypto_session->Open(
           security_level),
       metrics_.GetCryptoMetrics(),
       crypto_session_open_,
@@ -511,7 +512,7 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
 
   if (query_token == QUERY_KEY_SECURITY_LEVEL) {
     CdmSecurityLevel found_security_level =
-        crypto_session.GetSecurityLevel();
+        crypto_session->GetSecurityLevel();
     switch (found_security_level) {
       case kSecurityLevelL1:
         *query_response = QUERY_VALUE_SECURITY_LEVEL_L1;
@@ -533,7 +534,7 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
     }
   } else if (query_token == QUERY_KEY_DEVICE_ID) {
     std::string deviceId;
-    bool got_id = crypto_session.GetExternalDeviceUniqueId(&deviceId);
+    bool got_id = crypto_session->GetExternalDeviceUniqueId(&deviceId);
     metrics_.GetCryptoMetrics()->crypto_session_get_device_unique_id_
         .Increment(got_id);
     if (!got_id) {
@@ -544,7 +545,7 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
     *query_response = deviceId;
   } else if (query_token == QUERY_KEY_SYSTEM_ID) {
     uint32_t system_id;
-    bool got_id = crypto_session.GetSystemId(&system_id);
+    bool got_id = crypto_session->GetSystemId(&system_id);
     if (!got_id) {
       LOGW("CdmEngine::QueryStatus: QUERY_KEY_SYSTEM_ID unknown failure");
       return UNKNOWN_ERROR;
@@ -555,7 +556,7 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
     *query_response = system_id_stream.str();
   } else if (query_token == QUERY_KEY_PROVISIONING_ID) {
     std::string provisioning_id;
-    if (!crypto_session.GetProvisioningId(&provisioning_id)) {
+    if (!crypto_session->GetProvisioningId(&provisioning_id)) {
       LOGW("CdmEngine::QueryStatus: GetProvisioningId failed");
       return UNKNOWN_ERROR;
     }
@@ -565,7 +566,7 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
              query_token == QUERY_KEY_MAX_HDCP_LEVEL) {
     CryptoSession::HdcpCapability current_hdcp;
     CryptoSession::HdcpCapability max_hdcp;
-    if (!crypto_session.GetHdcpCapabilities(&current_hdcp, &max_hdcp)) {
+    if (!crypto_session->GetHdcpCapabilities(&current_hdcp, &max_hdcp)) {
       LOGW("CdmEngine::QueryStatus: GetHdcpCapabilities failed");
       return UNKNOWN_ERROR;
     }
@@ -574,7 +575,7 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
                        current_hdcp : max_hdcp);
   } else if (query_token == QUERY_KEY_USAGE_SUPPORT) {
     bool supports_usage_reporting;
-    bool got_info = crypto_session.UsageInformationSupport(
+    bool got_info = crypto_session->UsageInformationSupport(
         &supports_usage_reporting);
 
     if (!got_info) {
@@ -590,7 +591,7 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
         supports_usage_reporting ? QUERY_VALUE_TRUE : QUERY_VALUE_FALSE;
   } else if (query_token == QUERY_KEY_NUMBER_OF_OPEN_SESSIONS) {
     size_t number_of_open_sessions;
-    if (!crypto_session.GetNumberOfOpenSessions(&number_of_open_sessions)) {
+    if (!crypto_session->GetNumberOfOpenSessions(&number_of_open_sessions)) {
       LOGW("CdmEngine::QueryStatus: GetNumberOfOpenSessions failed");
       return UNKNOWN_ERROR;
     }
@@ -600,7 +601,7 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
     *query_response = open_sessions_stream.str();
   } else if (query_token == QUERY_KEY_MAX_NUMBER_OF_SESSIONS) {
     size_t maximum_number_of_sessions = 0;
-    if (!crypto_session.GetMaxNumberOfSessions(&maximum_number_of_sessions)) {
+    if (!crypto_session->GetMaxNumberOfSessions(&maximum_number_of_sessions)) {
       LOGW("CdmEngine::QueryStatus: GetMaxNumberOfOpenSessions failed");
       return UNKNOWN_ERROR;
     }
@@ -610,7 +611,7 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
     *query_response = max_sessions_stream.str();
   } else if (query_token == QUERY_KEY_OEMCRYPTO_API_VERSION) {
     uint32_t api_version;
-    if (!crypto_session.GetApiVersion(&api_version)) {
+    if (!crypto_session->GetApiVersion(&api_version)) {
       LOGW("CdmEngine::QueryStatus: GetApiVersion failed");
       return UNKNOWN_ERROR;
     }
@@ -620,7 +621,7 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
     *query_response = api_version_stream.str();
   } else if (query_token == QUERY_KEY_CURRENT_SRM_VERSION) {
     uint16_t current_srm_version;
-    if (!crypto_session.GetSrmVersion(&current_srm_version)) {
+    if (!crypto_session->GetSrmVersion(&current_srm_version)) {
       LOGW("CdmEngine::QueryStatus: GetCurrentSRMVersion failed");
       return UNKNOWN_ERROR;
     }
@@ -629,7 +630,7 @@ CdmResponseType CdmEngine::QueryStatus(SecurityLevel security_level,
     current_srm_version_stream << current_srm_version;
     *query_response = current_srm_version_stream.str();
   } else if (query_token == QUERY_KEY_SRM_UPDATE_SUPPORT) {
-    bool is_srm_update_supported = crypto_session.IsSrmUpdateSupported();
+    bool is_srm_update_supported = crypto_session->IsSrmUpdateSupported();
     *query_response =
         is_srm_update_supported ? QUERY_VALUE_TRUE : QUERY_VALUE_FALSE;
   } else if (query_token == QUERY_KEY_WVCDM_VERSION) {
@@ -833,10 +834,11 @@ CdmResponseType CdmEngine::HandleProvisioningResponse(
   if (NULL == cert_provisioning_.get()) {
     // Certificate provisioning object has been released. Check if a concurrent
     // provisioning attempt has succeeded before declaring failure.
-    CryptoSession crypto_session(metrics_.GetCryptoMetrics());
+    scoped_ptr<CryptoSession> crypto_session(
+        CryptoSession::MakeCryptoSession(metrics_.GetCryptoMetrics()));
     CdmResponseType status;
     M_TIME(
-        status = crypto_session.Open(
+        status = crypto_session->Open(
             cert_provisioning_requested_security_level_),
         metrics_.GetCryptoMetrics(),
         crypto_session_open_,
@@ -848,7 +850,7 @@ CdmResponseType CdmEngine::HandleProvisioningResponse(
           "missing and crypto session open failed.");
       return EMPTY_PROVISIONING_CERTIFICATE_2;
     }
-    CdmSecurityLevel security_level = crypto_session.GetSecurityLevel();
+    CdmSecurityLevel security_level = crypto_session->GetSecurityLevel();
     if (!IsProvisioned(security_level)) {
       LOGE(
           "CdmEngine::HandleProvisioningResponse: provisioning object "
@@ -888,9 +890,10 @@ bool CdmEngine::IsProvisioned(CdmSecurityLevel security_level) {
 CdmResponseType CdmEngine::Unprovision(CdmSecurityLevel security_level) {
   // Devices with baked-in DRM certs cannot be reprovisioned and therefore must
   // not be unprovisioned.
-  CryptoSession crypto_session(metrics_.GetCryptoMetrics());
+  scoped_ptr<CryptoSession> crypto_session(
+      CryptoSession::MakeCryptoSession(metrics_.GetCryptoMetrics()));
   CdmClientTokenType token_type = kClientTokenUninitialized;
-  CdmResponseType res = crypto_session.GetProvisioningMethod(
+  CdmResponseType res = crypto_session->GetProvisioningMethod(
     security_level == kSecurityLevelL3 ? kLevel3 : kLevelDefault,
     &token_type);
   if (res != NO_ERROR) {
@@ -921,10 +924,11 @@ CdmResponseType CdmEngine::Unprovision(CdmSecurityLevel security_level) {
 }
 
 CdmResponseType CdmEngine::DeleteUsageTable(CdmSecurityLevel security_level) {
-  CryptoSession crypto_session(metrics_.GetCryptoMetrics());
+  scoped_ptr<CryptoSession> crypto_session(
+      CryptoSession::MakeCryptoSession(metrics_.GetCryptoMetrics()));
   CdmResponseType status;
   M_TIME(
-      status = crypto_session.Open(
+      status = crypto_session->Open(
           security_level == kSecurityLevelL3 ?
               kLevel3 :
               kLevelDefault),
@@ -937,7 +941,7 @@ CdmResponseType CdmEngine::DeleteUsageTable(CdmSecurityLevel security_level) {
        status);
     return UNPROVISION_ERROR_4;
   }
-  status = crypto_session.DeleteAllUsageReports();
+  status = crypto_session->DeleteAllUsageReports();
   metrics_.GetCryptoMetrics()->crypto_session_delete_all_usage_reports_
       .Increment(status);
   if (status != NO_ERROR) {
@@ -1004,7 +1008,7 @@ CdmResponseType CdmEngine::DeleteUsageRecord(const std::string& app_id,
 
   // Got provider token. Remove from OEMCrypto.
   scoped_ptr<CryptoSession> crypto_session(
-      new CryptoSession(metrics_.GetCryptoMetrics()));
+      CryptoSession::MakeCryptoSession(metrics_.GetCryptoMetrics()));
   CdmResponseType status = crypto_session->Open(
       security_level == kSecurityLevelL3 ? kLevel3 : kLevelDefault);
   if (status == NO_ERROR) {
@@ -1213,7 +1217,7 @@ CdmResponseType CdmEngine::RemoveAllUsageInfo(
 
   // Got at least one provider token. Remove from OEMCrypto.
   scoped_ptr<CryptoSession> crypto_session(
-      new CryptoSession(metrics_.GetCryptoMetrics()));
+      CryptoSession::MakeCryptoSession(metrics_.GetCryptoMetrics()));
   CdmResponseType status = crypto_session->Open(
       security_level == kSecurityLevelL3 ? kLevel3 : kLevelDefault);
   if (status == NO_ERROR) {
@@ -1367,7 +1371,7 @@ CdmResponseType CdmEngine::RemoveUsageInfo(
               DeviceFiles::GetUsageInfoFileName(app_id),
               provider_session_token);
           scoped_ptr<CryptoSession> crypto_session(
-              new CryptoSession(metrics_.GetCryptoMetrics()));
+              CryptoSession::MakeCryptoSession(metrics_.GetCryptoMetrics()));
           status = crypto_session->Open(
               static_cast<CdmSecurityLevel>(j) == kSecurityLevelL3
               ? kLevel3 : kLevelDefault);
@@ -1805,7 +1809,7 @@ void CdmEngine::DeleteAllUsageReportsUponFactoryReset() {
   if (!file_system_->Exists(device_base_path_level1) &&
       !file_system_->Exists(device_base_path_level3)) {
     scoped_ptr<CryptoSession> crypto_session(
-        new CryptoSession(metrics_.GetCryptoMetrics()));
+        CryptoSession::MakeCryptoSession(metrics_.GetCryptoMetrics()));
     CdmResponseType status;
     M_TIME(
         status = crypto_session->Open(