Merges to android Pi release (part 7)

These are a set of CLs merged from the wv cdm repo to the android repo. * Resolve intermittent decrypt error. Author: Jeff Fore <jfore@google.com> [ Merge of http://go/wvgerrit/35720 ] The CdmSession's closed state was not properly initialized resulting in intermittent SESSION_NOT_FOUND_FOR_DECRYPT errors. In CdmEngine::Decrypt the session is looked up by the key id. A list of open sessions is acquired by calling CdmSessionMap::GetSessionList and each session in the list is queried to see if it has the key. In building the list in CdmSessionMap::GetSessionList, sessions are only added to the query list *if* the session is not closed. The closed status was not initialized and during testing the query list would not contain the session causing CdmEngine::Decrypt to return SESSION_NOT_FOUND_FOR_DECRYPT resulting in the ce cdm api returning widevine::Cdm::kNoKey. * No support for pre- C++11 compilation. Author: Gene Morgan <gmorgan@google.com> [ Merge of http://go/wvgerrit/35381 ] * Handle unaligned nonce pointer in RewrapDeviceRSAKey calls. Author: Gene Morgan <gmorgan@google.com> [ Merge of http://go/wvgerrit/35340 ] The pointer points into a message and it may not be aligned. Always copy the nonce into aligned memory before checking it. BUG: 38140370 Add note to CHANGELOG for this. * Compiler strictness: more checks and code cleanup. Author: Gene Morgan <gmorgan@google.com> [ Merge of http://go/wvgerrit/35300 ] Use the switches proposed in b/38033653 (as much as possible - some conflicts with protobufs and gtest prevent fully accepting them). Switch to clang for x32 build; ensure that both x86-64 and x86-32 builds compile and link cleanly. BUG: 38032429 BUG: 38033653 This partially resolves b/38458986 * Android build fixes Author: Rahul Frias <rfrias@google.com> [ Merge of http://go/wvgerrit/35102 ] These corrections address compile warnings and errors for android and unit tests. * Embedded License: Add sub license key sessions. Author: Jeff Fore <jfore@google.com> [ Merge of http://go/wvgerrit/33680 ] NOTE: this adds the AddSubSession() method, but it is not yet being used. Use and proper cleanup is in an upcoming CL. * Embedded license: Add track label field. Author: Jeff Fore <jfore@google.com> [ Merge of http://go/wvgerrit/33660 ] A new track label field (a string) is added to the key container and the sub session data objects. This field will be used in handling sub license requests. * Embedded license: extract keys from init_data. Author: Jeff Fore <jfore@google.com> [ Merge of http://go/wvgerrit/33621 ] * Embedded license: add protobuf messages. Author: Jeff Fore <jfore@google.com> [ Merge of http://go/wvgerrit/33620 ] also sync the widevine header definition with recent naming changes. * Improve handling of provisioning response errors. Author: Gene Morgan <gmorgan@google.com> [ Merge of http://go/wvgerrit/33600 ] Separate out the case of no response and the case where the message is believed to be a JSON+base64 message but it doesn't parse properly. BUG: 71650075 Test: Not currently passing. Will be addressed in a subsequent commit in the chain. Change-Id: I3c86f1c54980b071aec7461ac58541836551f896
2018-01-09 23:36:42 -08:00
parent 00da44bb68
commit 80659961ac
38 changed files with 1249 additions and 360 deletions
--- a/libwvdrmengine/cdm/core/include/crypto_session.h
+++ b/libwvdrmengine/cdm/core/include/crypto_session.h
@@ -19,7 +19,8 @@ namespace wvcdm {
 class CryptoKey;
 class UsageTableHeader;

-typedef std::map<CryptoKeyId, CryptoKey*> CryptoKeyMap;
+typedef std::map<std::string, CryptoKey*> CryptoKeyMap;
+typedef std::map<std::string, CryptoSessionId> SubLicenseSessionMap;

 class CryptoSession {
 public:
@@ -167,8 +168,19 @@ class CryptoSession {
  virtual CdmResponseType ShrinkUsageTableHeader(
      uint32_t new_entry_count, CdmUsageTableHeader* usage_table_header);
  virtual CdmResponseType MoveUsageEntry(uint32_t new_entry_number);
+  virtual bool CreateOldUsageEntry(
+      uint64_t time_since_license_received,
+      uint64_t time_since_first_decrypt,
+      uint64_t time_since_last_decrypt,
+      UsageDurationStatus status,
+      const std::string& server_mac_key,
+      const std::string& client_mac_key,
+      const std::string& provider_session_token);
  virtual CdmResponseType CopyOldUsageEntry(
      const std::string& provider_session_token);
+  virtual metrics::CryptoMetrics* GetCryptoMetrics() { return metrics_; }
+
+  virtual CdmResponseType AddSubSession(const std::string& sub_session_key_id);

 private:
  bool GetProvisioningMethod(CdmClientTokenType* token_type);
@@ -231,6 +243,7 @@ class CryptoSession {
  std::string oem_token_; // Cached OEMCrypto Public Key
  bool update_usage_table_after_close_session_;
  CryptoSessionId oec_session_id_;
+  SubLicenseSessionMap sub_license_oec_sessions_;

  OEMCryptoBufferType destination_buffer_type_;
  bool is_destination_buffer_type_valid_;
--- a/libwvdrmengine/cdm/core/include/initialization_data.h
+++ b/libwvdrmengine/cdm/core/include/initialization_data.h
@@ -5,6 +5,7 @@

 #include <string>

+#include "license_protocol.pb.h"
 #include "wv_cdm_types.h"

 namespace wvcdm {
@@ -27,6 +28,7 @@ class InitializationData {
  const CdmInitData& data() const { return data_; }
  std::vector<uint8_t> hls_iv() const { return hls_iv_; }
  CdmHlsMethod hls_method() const { return hls_method_; }
+  std::vector<video_widevine::SubLicense> ExtractEmbeddedKeys() const;

 private:
  // Parse a blob of multiple concatenated PSSH atoms to extract the first
--- a/libwvdrmengine/cdm/core/include/license.h
+++ b/libwvdrmengine/cdm/core/include/license.h
@@ -51,7 +51,7 @@ class CdmLicense {
      const CdmKeyResponse& license_response,
      const CdmKeyResponse& license_renewal_response,
      int64_t playback_start_time, int64_t last_playback_time,
-      int64_t grace_period_end_time);
+      int64_t grace_period_end_time, CdmSession* cdm_session);
  virtual bool RestoreLicenseForRelease(const CdmKeyMessage& license_request,
                                        const CdmKeyResponse& license_response);
  virtual bool IsKeyLoaded(const KeyId& key_id);
--- a/libwvdrmengine/cdm/core/include/policy_engine.h
+++ b/libwvdrmengine/cdm/core/include/policy_engine.h
@@ -154,6 +154,9 @@ class PolicyEngine {
  // expiry time changes.
  void NotifyExpirationUpdate(int64_t current_time);

+  // Guard against clock rollbacks
+  int64_t GetCurrentTime();
+
  // set_clock() is for testing only. It alters ownership of the
  // passed-in pointer.
  void set_clock(Clock* clock);
@@ -185,6 +188,9 @@ class PolicyEngine {
  // calculate the time where renewal retries should occur.
  int64_t next_renewal_time_;

+  // to assist in clock rollback checks
+  int64_t last_recorded_current_time_;
+
  // Used to dispatch CDM events.
  CdmSessionId session_id_;
  WvCdmEventListener* event_listener_;
--- a/libwvdrmengine/cdm/core/include/usage_table_header.h
+++ b/libwvdrmengine/cdm/core/include/usage_table_header.h
@@ -92,6 +92,8 @@ class UsageTableHeader {

  virtual bool is_inited() { return is_inited_; }

+  virtual bool CreateDummyOldUsageEntry(CryptoSession* crypto_session);
+
  // This handle and file system is only to be used when accessing
  // usage_table_header. Usage entries should use the file system provided
  // by CdmSession.
--- a/libwvdrmengine/cdm/core/include/wv_cdm_types.h
+++ b/libwvdrmengine/cdm/core/include/wv_cdm_types.h
@@ -21,7 +21,6 @@ typedef std::string CdmKeySetId;
 typedef std::string RequestId;
 typedef uint32_t CryptoResult;
 typedef uint32_t CryptoSessionId;
-typedef std::string CryptoKeyId;
 typedef std::map<std::string, std::string> CdmAppParameterMap;
 typedef std::map<std::string, std::string> CdmQueryMap;
 typedef std::vector<std::string> CdmUsageInfo;