Certificate provisioning verification

bug: 8620943

This is a merge of changes made to the Widevine CDM
repository during certificate provisioning verification.

The following changes are included:

Fixes for certificate based licensing
https://widevine-internal-review.googlesource.com/#/c/5162/

Base64 encode and decode now handles non-multiple of 24-bits input
https://widevine-internal-review.googlesource.com/#/c/4981/

Fixed issues with device provisioning response handling
https://widevine-internal-review.googlesource.com/#/c/5153/

Persistent storage to support device certificates
https://widevine-internal-review.googlesource.com/#/c/5161/

Enable loading of certificates
https://widevine-internal-review.googlesource.com/#/c/5172/

Provide license server url
https://widevine-internal-review.googlesource.com/#/c/5173/

Change-Id: I0c032c1ae0055dcc1a7a77ad4b0ea0898030dc7d

libwvdrmengine/cdm/core/src/crypto_session.cpp

@@ -16,6 +16,7 @@
 #include "wv_cdm_constants.h"
 
 namespace {
+  const uint32_t kMaxSignatureBufLength = 256;
 // Encode unsigned integer into a big endian formatted string
 std::string EncodeUint32(unsigned int u) {
   std::string s;
@@ -357,8 +358,8 @@ bool CryptoSession::GenerateDerivedKeys(const std::string& message,
 bool CryptoSession::GenerateSignature(const std::string& message,
                                       std::string* signature) {
   LOGV("GenerateSignature: id=%ld", (uint32_t) oec_session_id_);
-  uint8_t signature_buf[32];
-  uint32_t length = 32;
+  uint8_t signature_buf[kMaxSignatureBufLength];
+  size_t length = kMaxSignatureBufLength;
   OEMCryptoResult sts;
   if (Properties::use_certificates_as_identification()) {
     sts = OEMCrypto_GenerateRSASignature(
@@ -475,10 +476,11 @@ bool CryptoSession::SetDestinationBufferType() {
 }
 
 bool CryptoSession::RewrapDeviceRSAKey(const std::string& message,
-                                       const uint32_t* nonce,
-                                       const uint8_t* enc_rsa_key,
+                                       const std::string& signature,
+                                       const std::string& nonce,
+                                       const std::string& enc_rsa_key,
                                        size_t enc_rsa_key_length,
-                                       const uint8_t* enc_rsa_key_iv,
+                                       const std::string& rsa_key_iv,
                                        uint8_t* wrapped_rsa_key,
                                        size_t* wrapped_rsa_key_length) {
   LOGV("CryptoSession::RewrapDeviceRSAKey: Lock+++");
@@ -487,31 +489,28 @@ bool CryptoSession::RewrapDeviceRSAKey(const std::string& message,
 
   LOGV("crypto session id=%ld", static_cast<uint32_t>(oec_session_id_));
 
-  // HMAC-SHA256 signature
-  uint8_t signature[kSignatureSize];
-  size_t signature_length = kSignatureSize;
-  OEMCryptoResult status = OEMCrypto_GenerateSignature(
-      oec_session_id_,
-      reinterpret_cast<const uint8_t*>(message.data()),
-      message.size(),
-      signature,
-      &signature_length);
-  if (OEMCrypto_SUCCESS != status) {
-    LOGE("CryptoSession::RewrapDeviceRSAKey: GenerateSiganture failed");
-    return false;
+  const uint8_t* signed_msg = reinterpret_cast<const uint8_t*>(message.data());
+  const uint8_t* msg_rsa_key = NULL;
+  const uint8_t* msg_rsa_key_iv = NULL;
+  const uint32_t* msg_nonce = NULL;
+  if (enc_rsa_key.size() >= MAC_KEY_SIZE && rsa_key_iv.size() >= KEY_IV_SIZE) {
+    msg_rsa_key = signed_msg + GetOffset(message, enc_rsa_key);
+    msg_rsa_key_iv = signed_msg + GetOffset(message, rsa_key_iv);
+    msg_nonce = reinterpret_cast<const uint32_t*>(signed_msg + GetOffset(message, nonce));
   }
 
-  status = OEMCrypto_RewrapDeviceRSAKey(
+  OEMCryptoResult status = OEMCrypto_RewrapDeviceRSAKey(
       oec_session_id_,
-      reinterpret_cast<const uint8_t*>(message.data()), message.length(),
-      signature, signature_length,
-      nonce,
-      enc_rsa_key, enc_rsa_key_length,
-      enc_rsa_key_iv,
+      signed_msg, message.size(),
+      reinterpret_cast<const uint8_t*>(signature.data()), signature.size(),
+      msg_nonce,
+      msg_rsa_key, enc_rsa_key_length,
+      msg_rsa_key_iv,
       wrapped_rsa_key,
       wrapped_rsa_key_length);
 
   if (OEMCrypto_SUCCESS != status) {
+    LOGE("OEMCrypto_RewrapDeviceRSAKey fails with %d", status);
     return false;
   }
   return true;