Use license.widevine.com cert for provisioning server

Merge from Widevine repo of http://go/wvgerrit/44505 This CL changes the certificate provisioning code to verify the provisioning message using a cert from license.widevine.com instead of the staging certificate. It also adjusts the certificates in config_test_env.cpp because the license and provisioning servers are different and may probably have different certs. bug: 73031756 test: unit tests with mock oemcrypto, and read oemcrypto on sailfish Change-Id: I4b457a369a49ef07bda9e5632ab59e5f621ec966
2018-02-28 15:36:26 -08:00
parent 9acc38df40
commit 5bd4dbb502
7 changed files with 115 additions and 50 deletions
--- a/libwvdrmengine/cdm/core/src/service_certificate.cpp
+++ b/libwvdrmengine/cdm/core/src/service_certificate.cpp
@@ -11,7 +11,9 @@
 #include "wv_cdm_constants.h"

 namespace {
-// Service certificate for Google/Widevine Provisioning and License servers.
+// Root certificate for all Google/Widevine certificates.  I.e. all service
+// certificates and DRM certificates are signed by this cert, or have this cert
+// as the root of a signing chain.
 static const unsigned char kRootCertForProd[] = {
  0x0a, 0x9c, 0x03, 0x08, 0x00, 0x12, 0x01, 0x00,
  0x18, 0xdd, 0x94, 0x88, 0x8b, 0x05, 0x22, 0x8e,