Update ODK library for OPK compatibility

This is a merge from http://go/wvgerrit of several changes to the ODK library that allow it to be used in the same compilation unit as the OPK serialization/deserialization code. Merge of: http://go/wvgerrit/104403 http://go/wvgerrit/105663 http://go/wvgerrit/106004 http://go/wvgerrit/107903 http://go/wvgerrit/107985 http://go/wvgerrit/110167 http://go/wvgerrit/110403 http://go/wvgerrit/110423 http://go/wvgerrit/110663 http://go/wvgerrit/110703 http://go/wvgerrit/110985 http://go/wvgerrit/111703 http://go/wvgerrit/112563 http://go/wvgerrit/113243 http://go/wvgerrit/115204 http://go/wvgerrit/117803 http://go/wvgerrit/121949 bug: 174518179 bug: 175920940 bug: 175126254 Change-Id: I433459182043ca43a040cdbc16d04f2b8215067a
2021-04-09 14:43:02 -07:00
parent 985d0b5129
commit 6a59fee30a
22 changed files with 588 additions and 324 deletions
--- a/libwvdrmengine/oemcrypto/odk/src/odk.c
+++ b/libwvdrmengine/oemcrypto/odk/src/odk.c
@@ -27,9 +27,7 @@ static OEMCryptoResult ODK_PrepareRequest(
    return ODK_ERROR_CORE_MESSAGE;
  }

-  uint8_t blk[SIZE_OF_MESSAGE_STRUCT];
-  Message* msg = (Message*)blk;
-  InitMessage(msg, message, *core_message_length);
+  ODK_Message msg = ODK_Message_Create(message, *core_message_length);

  /* The core message should be at the beginning of the buffer, and with a
   * shorter length. */
@@ -52,7 +50,7 @@ static OEMCryptoResult ODK_PrepareRequest(
        return ODK_ERROR_CORE_MESSAGE;
      }
      Pack_ODK_PreparedLicenseRequest(
-          msg, (ODK_PreparedLicenseRequest*)prepared_request_buffer);
+          &msg, (ODK_PreparedLicenseRequest*)prepared_request_buffer);
      break;
    }
    case ODK_Renewal_Request_Type: {
@@ -61,7 +59,7 @@ static OEMCryptoResult ODK_PrepareRequest(
        return ODK_ERROR_CORE_MESSAGE;
      }
      Pack_ODK_PreparedRenewalRequest(
-          msg, (ODK_PreparedRenewalRequest*)prepared_request_buffer);
+          &msg, (ODK_PreparedRenewalRequest*)prepared_request_buffer);
      break;
    }
    case ODK_Provisioning_Request_Type: {
@@ -71,7 +69,7 @@ static OEMCryptoResult ODK_PrepareRequest(
        return ODK_ERROR_CORE_MESSAGE;
      }
      Pack_ODK_PreparedProvisioningRequest(
-          msg, (ODK_PreparedProvisioningRequest*)prepared_request_buffer);
+          &msg, (ODK_PreparedProvisioningRequest*)prepared_request_buffer);
      break;
    }
    default: {
@@ -80,13 +78,13 @@ static OEMCryptoResult ODK_PrepareRequest(
  }

  *core_message_length = core_message->message_length;
-  if (GetStatus(msg) != MESSAGE_STATUS_OK) {
+  if (ODK_Message_GetStatus(&msg) != MESSAGE_STATUS_OK) {
    /* This is to indicate the caller that the core_message_length has been
     * appropriately set, but the message buffer is either empty or too small,
     * which needs to be initialized and filled in the subsequent call. */
    return OEMCrypto_ERROR_SHORT_BUFFER;
  }
-  if (GetSize(msg) != *core_message_length) {
+  if (ODK_Message_GetSize(&msg) != *core_message_length) {
    /* This should not happen. Something is wrong. */
    return ODK_ERROR_CORE_MESSAGE;
  }
@@ -102,20 +100,11 @@ static OEMCryptoResult ODK_ParseResponse(
    return ODK_ERROR_CORE_MESSAGE;
  }

-  uint8_t blk[SIZE_OF_MESSAGE_STRUCT];
-  Message* msg = (Message*)blk;
-
-#pragma GCC diagnostic push
-#pragma GCC diagnostic ignored "-Wcast-qual"
-  /* We initialize the message buffer with a size of the entire message
-   * length. */
-  /* TODO(b/164486737): Fix the cast-qual warning */
-  InitMessage(msg, (uint8_t*)message, message_length);
-#pragma GCC diagnostic pop
+  ODK_Message msg = ODK_Message_Create((uint8_t*)message, message_length);

  /* The core message should be at the beginning of the buffer, and with a
   * shorter length. The core message is the part we are parsing. */
-  SetSize(msg, core_message_length);
+  ODK_Message_SetSize(&msg, core_message_length);

  /* Parse message and unpack it into response buffer. */
  switch (message_type) {
@@ -123,14 +112,14 @@ static OEMCryptoResult ODK_ParseResponse(
      if (sizeof(ODK_LicenseResponse) > response_buffer_length) {
        return ODK_ERROR_CORE_MESSAGE;
      }
-      Unpack_ODK_LicenseResponse(msg, (ODK_LicenseResponse*)response_buffer);
+      Unpack_ODK_LicenseResponse(&msg, (ODK_LicenseResponse*)response_buffer);
      break;
    }
    case ODK_Renewal_Response_Type: {
      if (sizeof(ODK_RenewalResponse) > response_buffer_length) {
        return ODK_ERROR_CORE_MESSAGE;
      }
-      Unpack_ODK_RenewalResponse(msg, (ODK_RenewalResponse*)response_buffer);
+      Unpack_ODK_RenewalResponse(&msg, (ODK_RenewalResponse*)response_buffer);
      break;
    }
    case ODK_Provisioning_Response_Type: {
@@ -138,7 +127,7 @@ static OEMCryptoResult ODK_ParseResponse(
        return ODK_ERROR_CORE_MESSAGE;
      }
      Unpack_ODK_ProvisioningResponse(
-          msg, (ODK_ProvisioningResponse*)response_buffer);
+          &msg, (ODK_ProvisioningResponse*)response_buffer);
      break;
    }
    default: {
@@ -147,9 +136,9 @@ static OEMCryptoResult ODK_ParseResponse(
  }

  ODK_CoreMessage* core_message = (ODK_CoreMessage*)response_buffer;
-  if (GetStatus(msg) != MESSAGE_STATUS_OK ||
+  if (ODK_Message_GetStatus(&msg) != MESSAGE_STATUS_OK ||
      message_type != core_message->message_type ||
-      GetOffset(msg) != core_message->message_length) {
+      ODK_Message_GetOffset(&msg) != core_message->message_length) {
    return ODK_ERROR_CORE_MESSAGE;
  }

@@ -307,20 +296,24 @@ OEMCryptoResult ODK_ParseLicense(
    return ODK_ERROR_CORE_MESSAGE;
  }

-  if (parsed_license->nonce_required) {
-    if (initial_license_load) {
-      if (nonce_values->nonce !=
-              license_response.request.core_message.nonce_values.nonce ||
-          nonce_values->session_id !=
-              license_response.request.core_message.nonce_values.session_id) {
-        return OEMCrypto_ERROR_INVALID_NONCE;
-      }
-    } else { /* !initial_license_load */
-      nonce_values->nonce =
-          license_response.request.core_message.nonce_values.nonce;
-      nonce_values->session_id =
-          license_response.request.core_message.nonce_values.session_id;
+  /* If this is the first time we load this license, then we verify that the
+   * nonce values are the correct, otherwise we copy the nonce values. If the
+   * nonce values are not required to be correct, then we don't know if this is
+   * an initial load or not. In that case, we also copy the values so that we
+   * can use the nonce values later for a renewal.
+   */
+  if (parsed_license->nonce_required && initial_license_load) {
+    if (nonce_values->nonce !=
+            license_response.request.core_message.nonce_values.nonce ||
+        nonce_values->session_id !=
+            license_response.request.core_message.nonce_values.session_id) {
+      return OEMCrypto_ERROR_INVALID_NONCE;
    }
+  } else { /* !initial_license_load, or can't tell if initial. */
+    nonce_values->nonce =
+        license_response.request.core_message.nonce_values.nonce;
+    nonce_values->session_id =
+        license_response.request.core_message.nonce_values.session_id;
  }
  /* For v16, in order to be backwards compatible with a v15 license server,
   * OEMCrypto stores a hash of the core license request and only signs the
@@ -367,9 +360,12 @@ OEMCryptoResult ODK_ParseRenewal(const uint8_t* message, size_t message_length,
   */
  /* If a renewal request is lost in transit, we should throw it out and create
   * a new one. We use the timestamp to make sure we have the latest request.
+   * We only do this if playback has already started. This allows us to reload
+   * an offline license and also reload a renewal before starting playback.
   */
-  if (clock_values->time_of_renewal_request <
-      renewal_response.request.playback_time) {
+  if (clock_values->timer_status != ODK_CLOCK_TIMER_STATUS_LICENSE_LOADED &&
+      clock_values->time_of_renewal_request <
+          renewal_response.request.playback_time) {
    return ODK_STALE_RENEWAL;
  }
  return ODK_ComputeRenewalDuration(timer_limits, clock_values, system_time,