Add Entitlement License to OEMCrypto

This CL adds entitlement license features and moves cipher mode from
LoadKeys to SelectKeys.

Merge from Widevine repo of http://go/wvgerrit/41660

bug: 70334840 Entitlement License - cdm layer
bug: 70334345 Entitlement License - reference code and unit tests

test: Entitlement license unit tests pass.
Change-Id: Ic7d7f42c15e6d83ef7fcfd8a866c778adc4c8095

libwvdrmengine/oemcrypto/test/oec_session_util.h

@@ -103,6 +103,13 @@ struct Test_PST_Report {
   std::string pst;
 };
 
+struct EntitledContentKeyData {
+  uint8_t entitlement_key_id[wvcdm::KEY_SIZE];
+  uint8_t content_key_id[wvcdm::KEY_SIZE];
+  uint8_t content_key_data_iv[wvcdm::KEY_SIZE];
+  uint8_t content_key_data[wvcdm::KEY_SIZE];
+};
+
 // Increment counter for AES-CTR.  The CENC spec specifies we increment only
 // the low 64 bits of the IV counter, and leave the high 64 bits alone.  This
 // is different from the OpenSSL implementation, so we implement the CTR loop
@@ -151,9 +158,27 @@ class Session {
   // by FillSimpleMessage, modified if needed, and then encrypted and signed by
   // the server's mac key in EncryptAndSign.
   void LoadTestKeys(const std::string& pst = "", bool new_mac_keys = true);
+  // Loads the entitlement keys in the message pointed to by message_ptr()
+  // using OEMCrypto_LoadKeys.  This message should have already been created
+  // by FillSimpleEntitlementMessage, modified if needed, and then encrypted
+  // and signed by the server's mac key in EncryptAndSign.
+  void LoadEnitlementTestKeys(const std::string& pst = "",
+                              bool new_mac_keys = true,
+                              OEMCryptoResult expected_sts = OEMCrypto_SUCCESS);
+  // Fills an OEMCrypto_EntitledContentKeyObject using the information from
+  // the license_ and randomly generated content keys. This method should be
+  // called after LoadEnitlementTestKeys.
+  void FillEntitledKeyArray();
+  // Encrypts and loads the entitled content keys via
+  // OEMCrypto_LoadEntitledContentKeys.
+  void LoadEntitledContentKeys(
+      OEMCryptoResult expected_sts = OEMCrypto_SUCCESS);
   // This uses OEMCrypto_QueryKeyControl to check that the keys in OEMCrypto
   // have the correct key control data.
   void VerifyTestKeys();
+  // This uses OEMCrypto_QueryKeyControl to check that the keys in OEMCrypto
+  // have the correct key control data.
+  void VerifyEntitlementTestKeys();
   // This creates a refresh key or license renewal message, signs it with the
   // server's mac key, and calls OEMCrypto_RefreshKeys.
   void RefreshTestKeys(const size_t key_count, uint32_t control_bits,
@@ -166,6 +191,12 @@ class Session {
   // before being loaded in LoadTestKeys.
   void FillSimpleMessage(uint32_t duration, uint32_t control, uint32_t nonce,
                          const std::string& pst = "");
+  // This fills the data structure license_ with entitlement key information.
+  // This data can be modified, and then should be encrypted and signed in
+  // EncryptAndSign before being loaded in LoadEnitlementTestKeys.
+  void FillSimpleEntitlementMessage(
+      uint32_t duration, uint32_t control,
+      uint32_t nonce, const std::string& pst = "");
   // Like FillSimpleMessage, this fills encrypted_license_ with data.  The name
   // is a little misleading: the license renewal message is not encrypted, it
   // is just signed.  The signature is computed in RefreshTestKeys, above.
@@ -360,6 +391,12 @@ class Session {
   vector<uint8_t> encrypted_usage_entry_;
   uint32_t usage_entry_number_;
   string pst_;
+
+  // Clear Entitlement key data. This is the backing data for
+  // |entitled_key_array_|.
+  EntitledContentKeyData entitled_key_data_[kMaxNumKeys];
+  // Entitled key object. Pointers are backed by |entitled_key_data_|.
+  OEMCrypto_EntitledContentKeyObject entitled_key_array_[kMaxNumKeys];
 };
 
 }  // namespace wvoec