device_files proto changes for Expiring DRM certificates

[ Merge of http://go/wvgerrit/119644 ]

This change includes additional fields in DeviceCertificate, License and
UsageInfo.

New DRM certificate will include a creation and expiration time.
In addition acquisition_time_seconds will allow the client to calulate
expiration time even when client and provisioning service clocks
are not in sync.

expiration_time_seconds will allow clients to expire DRM certificates
that do include an expiration time. A random value within a window
(4-8 months after update) will be calculated to avoid
a provisioning storm.

Drm certificate will be added to offline licenses. In a future release,
licenses will be removed on expiry and the certification information
that needs to be sent to the license service will be reduced.
This should reduce space overhead.

UsageInfo will use a certificate cache in case multiple usage info
entries use the same DRM certificate.

Bug: 169740403
Test: WV unit/integration tests
Change-Id: I2f34a1df526fa8168162a1b1ea930a2f257b87cd

libwvdrmengine/cdm/core/src/device_files.proto

@@ -28,6 +28,15 @@ message DeviceCertificate {
   optional bytes certificate = 1;
   optional bytes wrapped_private_key = 2;
   optional PrivateKeyType key_type = 3 [default = RSA];
+  // Used by DRM certificates with an expiry time. Set by the client when
+  // the certificate is received. Aids expiration calculation at the
+  // client when provisioning server and client clocks are not aligned
+  optional int64 acquisition_time_seconds = 4;
+  // Used by DRM certificates without an expiration time. This is for
+  // upgrading devices with pre-existing DRM certificates. The client will
+  // calculate an expiration time 6 months into the future with a randomized
+  // +/-2 month window
+  optional int64 expiration_time_seconds = 5;
 }
 
 message License {
@@ -56,6 +65,7 @@ message License {
   optional int64 grace_period_end_time = 11 [default = 0];
   optional bytes usage_entry = 12;
   optional int64 usage_entry_number = 13;
+  optional DeviceCertificate drm_certificate = 14;
 }
 
 message UsageInfo {
@@ -68,9 +78,19 @@ message UsageInfo {
     optional bytes key_set_id = 4;
     optional bytes usage_entry = 5;
     optional int64 usage_entry_number = 6;
+    // If not present, use the legacy DRM certificate rather than
+    // one in DrmDeviceCertificate
+    optional int32 drm_certificate_entry_number = 7;
+  }
+
+  // A cache of DeviceCertificates associated with usage entries
+  message DrmDeviceCertificate {
+    optional int32 drm_certificate_entry_number = 1;
+    optional DeviceCertificate drm_certificate = 2;
   }
 
   repeated ProviderSession sessions = 1;
+  repeated DrmDeviceCertificate drm_device_certificates = 2;
 }
 
 message HlsAttributes {
@@ -92,7 +112,7 @@ message UsageTableInfo {
 
     optional UsageEntryStorage storage = 1;
     optional bytes key_set_id = 2;
-    optional bytes usage_info_file_name = 3; // hash of the app_id
+    optional bytes usage_info_file_name = 3;  // hash of the app_id
 
     // LRU table replacement data.
     optional int64 last_use_time = 4 [default = 0];
@@ -114,9 +134,7 @@ message File {
     USAGE_TABLE_INFO = 5;
   }
 
-  enum FileVersion {
-    VERSION_1 = 1;
-  }
+  enum FileVersion { VERSION_1 = 1; }
 
   optional FileType type = 1;
   optional FileVersion version = 2 [default = VERSION_1];