Enable the CDM to track the DRM private key type.

[ Merge of http://go/wvgerrit/110923 ]

The CDM is responsible for telling OEMCrypto the underlying DRM
private key type when loading it into a session.  To do this, the
CDM must determine and store the key type of a successfully loaded
provisioning response.  The type of key is available from the
DRM certificate proto that is provided in the reponse.

This change introduces a class to contain the wrapped key and
type together.  To store the type, the CDM device files have been
updated to include a key type with the DRM certificate and to
store from and load to the new class.

Unittests have been updated for using the new class where the
wrapped key was used before.

Test: Linux unit tests
Bug: 140813486
Change-Id: I09249afe9c291632fb651ecd00eac697d6939ec7
(cherry picked from commit 6c457402e944079271cef488aa4699f986da6a2e)
Merged-In: I09249afe9c291632fb651ecd00eac697d6939ec7

libwvdrmengine/cdm/core/test/cdm_session_unittest.cpp

@@ -9,6 +9,7 @@
 
 #include "cdm_session.h"
 #include "crypto_key.h"
+#include "crypto_wrapped_key.h"
 #include "properties.h"
 #include "service_certificate.h"
 #include "string_conversions.h"
@@ -71,7 +72,7 @@ const std::string kToken = a2bs_hex(
     "8CD5A9DF6E3D3A99B806F6D60991358C5BE77117D4F3168F3348E9A048539F892F4D783152"
     "C7A8095224AA56B78C5CF7BD1AB1B179C0C0D11E3C3BAC84C141A00191321E3ACC17242E68"
     "3C");
-const std::string kWrappedKey = a2bs_hex(
+const std::string kWrappedKeyData = a2bs_hex(
     "3B84252DD84F1A710365014A114507FFFA3DD404625D61D1EEC7C3A39D72CB8D9318ADE9DA"
     "05D69F9776DAFDA49A97BC30E84CA275925DFD98CA04F7DB23465103A224852192DE232902"
     "99FF82024F5CCA7716ACA9BE0B56348BA16B9E3136D73789C842CB2ECA4820DDAAF59CCB9B"
@@ -108,14 +109,15 @@ const std::string kWrappedKey = a2bs_hex(
     "33EF70621A98184DDAB5E14BC971CF98CF6C91A37FFA83B00AD3BCABBAAB2DEF1C52F43003"
     "E74C92B44F9205D22262FB47948654229DE1920F8EDF96A19A88A1CA1552F8856FB4CBF83B"
     "AA3348419159D207F65FCE9C1A500C6818");
+const CryptoWrappedKey kWrappedKey = {CryptoWrappedKey::kRsa, kWrappedKeyData};
 
 class MockDeviceFiles : public DeviceFiles {
  public:
   MockDeviceFiles() : DeviceFiles(nullptr) {}
 
   MOCK_METHOD1(Init, bool(CdmSecurityLevel));
-  MOCK_METHOD5(RetrieveCertificate,
-               bool(bool, std::string*, std::string*, std::string*, uint32_t*));
+  MOCK_METHOD5(RetrieveCertificate, bool(bool, std::string*, CryptoWrappedKey*,
+                                         std::string*, uint32_t*));
 };
 
 class MockUsageTableHeader : public UsageTableHeader {
@@ -142,7 +144,8 @@ class MockCryptoSession : public TestCryptoSession {
   MOCK_METHOD0(GetSecurityLevel, CdmSecurityLevel());
   MOCK_METHOD0(Open, CdmResponseType());
   MOCK_METHOD1(Open, CdmResponseType(SecurityLevel));
-  MOCK_METHOD1(LoadCertificatePrivateKey, CdmResponseType(const std::string&));
+  MOCK_METHOD1(LoadCertificatePrivateKey,
+               CdmResponseType(const CryptoWrappedKey&));
   MOCK_METHOD0(DeleteAllUsageReports, CdmResponseType());
   MOCK_METHOD1(GetUsageSupportType, CdmResponseType(CdmUsageSupportType* type));
   MOCK_METHOD0(GetUsageTableHeader, UsageTableHeader*());
@@ -219,7 +222,7 @@ TEST_F(CdmSessionTest, InitWithBuiltInCertificate) {
               RetrieveCertificate(false, NotNull(), NotNull(), NotNull(), _))
       .WillOnce(DoAll(SetArgPointee<1>(kToken), SetArgPointee<2>(kWrappedKey),
                       Return(true)));
-  EXPECT_CALL(*crypto_session_, LoadCertificatePrivateKey(StrEq(kWrappedKey)))
+  EXPECT_CALL(*crypto_session_, LoadCertificatePrivateKey(kWrappedKey))
       .InSequence(crypto_session_seq)
       .WillOnce(Return(NO_ERROR));
   EXPECT_CALL(*file_handle_, Init(Eq(level))).WillOnce(Return(true));
@@ -247,7 +250,7 @@ TEST_F(CdmSessionTest, InitWithCertificate) {
               RetrieveCertificate(false, NotNull(), NotNull(), NotNull(), _))
       .WillOnce(DoAll(SetArgPointee<1>(kToken), SetArgPointee<2>(kWrappedKey),
                       Return(true)));
-  EXPECT_CALL(*crypto_session_, LoadCertificatePrivateKey(StrEq(kWrappedKey)))
+  EXPECT_CALL(*crypto_session_, LoadCertificatePrivateKey(kWrappedKey))
       .InSequence(crypto_session_seq)
       .WillOnce(Return(NO_ERROR));
   EXPECT_CALL(*license_parser_,
@@ -274,7 +277,7 @@ TEST_F(CdmSessionTest, ReInitFail) {
               RetrieveCertificate(false, NotNull(), NotNull(), NotNull(), _))
       .WillOnce(DoAll(SetArgPointee<1>(kToken), SetArgPointee<2>(kWrappedKey),
                       Return(true)));
-  EXPECT_CALL(*crypto_session_, LoadCertificatePrivateKey(StrEq(kWrappedKey)))
+  EXPECT_CALL(*crypto_session_, LoadCertificatePrivateKey(kWrappedKey))
       .InSequence(crypto_session_seq)
       .WillOnce(Return(NO_ERROR));
   EXPECT_CALL(*license_parser_,
@@ -329,7 +332,7 @@ TEST_F(CdmSessionTest, UpdateUsageEntry) {
               RetrieveCertificate(false, NotNull(), NotNull(), NotNull(), _))
       .WillOnce(DoAll(SetArgPointee<1>(kToken), SetArgPointee<2>(kWrappedKey),
                       Return(true)));
-  EXPECT_CALL(*crypto_session_, LoadCertificatePrivateKey(StrEq(kWrappedKey)))
+  EXPECT_CALL(*crypto_session_, LoadCertificatePrivateKey(kWrappedKey))
       .InSequence(crypto_session_seq)
       .WillOnce(Return(NO_ERROR));
   EXPECT_CALL(*crypto_session_, GetUsageTableHeader())

libwvdrmengine/cdm/core/test/device_files_unittest.cpp

@@ -13,6 +13,7 @@
 
 #include "arraysize.h"
 #include "cdm_random.h"
+#include "crypto_wrapped_key.h"
 #include "file_store.h"
 #include "properties.h"
 #include "string_conversions.h"
@@ -28,100 +29,212 @@ const uint32_t kWrappedKeyLen = 500;
 
 const std::string kEmptyString;
 
-// Structurally valid test certificate.
-// The data elements in this module are used to test the storage and
-// retrieval of certificates and licenses
+// Structurally valid test certificate of provisioning 3.0.
+// {'certificate': {'algorithm': 'RSA',
+//                  'creation_time': '2020-12-14T23:17:27',
+//                  'public_key': ... 270 bytes,
+//                  'serial_number': '7CB49F987A635E1E0A52184694582D6E',
+//                  'type': 'DRM_USER_DEVICE'},
+//  'signature': ... 256 byts,
+//  'signer': {
+//      'certificate': {'creation_time': '2017-11-17T13:21:39',
+//                      'public_key': ... 270 bytes,
+//                      'serial_number': '65802C9B625E5A319C33DC1CB7C3C6D4',
+//                      'type': 'DRM_INTERMEDIATE'},
+//             'signature': ... 384 bytes }
+// }
+// Value of |certificate| in DeviceCertFile proto messages
+// kTestCertificateFileData and kTestCertificateFileWithoutKeyTypeData
 const std::string kTestCertificate = a2bs_hex(
-    "0A98030802120D73657269616C5F6E756D62657218B4B2CDE00422E8024D49494243674B43"
-    "415145412B78475A2F77637A39756746705030374E73706F365531376C3059684669467078"
-    "78553470546B334C69667A3952337A734973754552777461372B66574966784F6F32303865"
-    "74742F6A68736B69566F645345743351424768345842697079576F704B775A393348486144"
-    "565A41414C692F32412B785442745764456F37584755756A4B447643322F615A4B756B666A"
-    "704F6955493841684C41666A6D6C63442F555A31515068306D4873676C524E436D7043776D"
-    "7753584139564E6D687A2B5069422B446D6C3457576E4B572F56486F32756A54587871372B"
-    "65664D55344832666E79335365334B594F73465046475A31544E5153596C46755368577248"
-    "5074694C6D5564506F50364356326D4D4C31746B2B6C3744494971587251684C554B444143"
-    "654D35726F4D78306B4C6855574238502B30756A31434E6C4E4E344A525A6C433778466671"
-    "694D62465255395A344E3659774944415141422899203A11746573742E7769646576696E65"
-    "2E636F6D128202307836353063396632653637303165336665373364333035343930346139"
-    "61346262646239363733336631633463373433656635373361643661633134633561336266"
-    "38613437333166366536323736666165613532343733303336373766623864626466323466"
-    "66373865353363323530353263646361383765656366656538353437366263623861303563"
-    "62396131656665663763623837646436383232336531313763653830306163343631373731"
-    "37323534343735376134383762653332663561623866653038373966613861646437386265"
-    "34363565613866386435616366393737653966316165333664346434373831366561366564"
-    "343133373262");
+    "0AEB03080212107CB49F987A635E1E0A52184694582D6E1887C6E1FE05228E023082010A"
+    "0282010100DB13F5089C061E8EB62562692B3A06A774A99129BD63445FEC24448D07C30D"
+    "7343553442A989AF000B7D962033C290D9A81DDCBCF3980512445EB7E6CF544FC1FB3FC7"
+    "58FB9E06B6C28562A841E4AE2D3368795C41A2D6043CA9830E0F36583C8FDB839C2752C1"
+    "3E184034EE412BA8A90271295B094255A16319706F4D6C9CF1EBB1B39BA2A7B9B2780344"
+    "DD5834BF71F4D5185508D2FDFB10419BD4F48E79DDFC78471C11B9E99DF98221D6FAB25A"
+    "EE24574FB02D614974942A36527C62B73A6FB7CA9EF828EB598DA59060D654851103F857"
+    "A041E66B2FFB99713D31A64605932833E8CCDA6CF0F888AE6E78EDC9DA0D88A185B97FEB"
+    "3EA74CF146BE7D9267020301000128E83D3A0C7769646576696E652E636F6D480152AA01"
+    "080110001A8101044F554B9400E10B17185036B6A1628EFC61B22166DE2235717A44F953"
+    "B7928F3415B9D113835B10106CB6C2187F34188723D82ECF95CF5ECAB58923F173186081"
+    "5999F08BF4BE4A44DB7B991B5F915F2ADCEE481E26096AAEC3AC761B624A92158AC91035"
+    "041173392B1E495428F0D17406B10889B6B701FAF08D2284F95DBBCA2220595267DCA89A"
+    "2E57E7D4CA3C62ED6D12742408A07C103DF860DC0520C3664EEB1280028CD44E12AA7C1A"
+    "8EBF88C81A2A54EFD29F8BC6C377B0C11C3404F84D8B9EAD52A0E18E929A4923A4172C2A"
+    "C1CDADD16E41A7833AA0DE9D09F685DAC9ACC702CB9061632C1C82333A6FB6BC9C4B2540"
+    "BE18CED4AB0AF1C3EFE521308F3D4CF513C20500064FE935FDDF7BBAC0BA99AA7FA66017"
+    "898DEE6F6F5EF90C875D5D8DA39E769E8D1485253EEE93A97B35A8EAE8D3213D392B552F"
+    "B4B4A37955EBE7362287502EB649D982F06D308178642C1F69B12383B050CF60CD292093"
+    "29C148FB4F422ED5ED139A25A89E13D4AB2E8DB940299D1414AF30DDF0D06AF55C1978F6"
+    "E71E4548F20FFAE953A99D492F3D2847783338D74F66D2DFEBB50896ACBC4795A81AB405"
+    "0AAE020801121065802C9B625E5A319C33DC1CB7C3C6D418E3A5BDD005228E023082010A"
+    "0282010100B80502043C2A8A0FD8D25C613E1E3E3B5E349F332F04516A7510D38021A562"
+    "9B9AA027AEAD3C759B7AFE70BED65F3DF6860FF5EB60B983A3FFA33FDE06F3B73014DFC8"
+    "45AB371C6600562E9D904F842B8BA4A5D9200FFA3ED45D705520A5C372A889F9E3143862"
+    "34C6897AE655851FCD9ADB4EF9126C78386EA93BCB25BA3EC475C55C608E771C763AB025"
+    "06F9B07252D6ABF7EA64B1EBDE7B95C6407690533BD6890B9274C16066F74FC401EA355F"
+    "0A02106814D49BF0C89E6E1F8DB2A47841CD0DAD793296A107C36223404F2BF1FCA16FD0"
+    "A4B982634DB62407F8F14ACAE3B05A038BD3E4BBBAE4391BBFA7A47FB9D01DE857EA88E5"
+    "E36EE36E245859FC0F020301000128E83D1280037E06581A019184AB572AFDCADDD03F16"
+    "1CE68200F8E6F8AD161947360BC8D49C0D68009B1C4644F9B3F3FB6DDFD92EF92DE62D41"
+    "D459D29D81BFAEF3970A3A39D25B2662ECB03B2DA7B68302FAA6DD98D95A143CC8C1CB6A"
+    "DDA76D2EE9C3723FAF95A29CDC3E968B6821A91C051CA280A86669710A1AD7A44BF92180"
+    "27460DF694E2E9270396DF221963F21EE6AA220A5EE4A4D0FEB3D53EB5732F8F91E9A96B"
+    "3B8BE284C51339EA284D4D0EDD55B6AD56F7416420E05E059F9734A96BE25AA44560DBA8"
+    "C38755A42A82BD7F88EDD19DF346A667B33B8114C76A8838C423D824A50B23251A088136"
+    "D6E8F475299D2AFD46CEA51B5CBDF789A572125CD24FBB813B387A10CD2A30E3447634AB"
+    "3408F96B9CF3D98896D405F3F540D9C57962760FCD177CDD101EB8A4148B9C29CED5EAD6"
+    "45A95B698F1CDC6E1DB6678B85074186080D68D13CD37E07B16DE370CD9AFB9B25564A73"
+    "A30E2AF8085EA37D310C474F0E67AC00CA992A5296FAEDAD7AA06ECD790F1E3D426558FA"
+    "98383E3CD2ED4830");
 
 // A Wrapped Private Key
-// The data elements in this module are used to test the storage and
-// retrieval of certificates and licenses
-const std::string kTestWrappedPrivateKey =
-    "4F724B065326371A2F5F6F51467C2E26555C453B5C7C1B4F2738454B782E3E7B5340435A"
-    "66374D0612052C521A233D7A67194871751C78575E5177070130264C4F037633320E667B"
-    "1A49192924491338693D106E6113014A733A241A1A033E28352178146B4F543D38104A59"
-    "19120325502C31365506096D59585E08774B5B567A7B5D03451E6B11633E52672C226103"
-    "104B3E4C031A6403050F3A574D2C501711773802741F7F3A0D364757101D02181C7D4D35"
-    "207167506A424C094E4A72316F791F162D76657D2B5D3C2D7B273A286927717561316518"
-    "7E55282430491467086425432347701C3116446D21645C756B2D3D0F797C3220322D622A"
-    "254D0B7D4F1D5D0C0A36755D1246741A34783C45157247091C78232B7D2E0E1F637A2A37"
-    "39085D76166747034350613969072F5B5C5B21657E470C7E513B3F091D74455A3A073705"
-    "7B7E3B5337191D4E7536087C334B6028530F3F5B23380B6A076031294501003D6D1F240F"
-    "63053D5D0B271B6A0F26185650731308660B0447566041684F584C22216E567D3B775569"
-    "5F7F3D6B64525E7227165948101540243C19495C4C702F37490F26613353797825624143"
-    "263043020E1E6760123D51056F2F1E482F2E3D021B27677D3E7E3C0C11757C3448275E08"
-    "382E111263644C6D224714706D760A054A586E17505C3429575A41043F184209";
+// Value of |wrapped_private_key| in DeviceCertFile proto messages
+// kTestCertificateFileData and kTestCertificateFileWithoutKeyTypeData.
+// Value is randomly generated value and is not compatible with a real
+// OEMCrypto implementation.
+const std::string kTestWrappedPrivateKeyData = a2bs_hex(
+    "B36550E6BEACCB34F6C3B2ABF86634EE5383829C844F9B0C14DCF9A22FE3543CCBA8FD61"
+    "E21CEE503E7A40B93B07A4186A362D9E6F88DD48D4516635C6D0C253C03F12EFA6095618"
+    "D647F5212C518C4A6AA7172BC691530703FEDDFDB25ECF885A53FF2B4B98773979D61AE6"
+    "59E340489811512A5C2FD445A4B0AE88A3A7F29ACE5B01ECF580D0993227BC408B602B0B"
+    "C099920C17044FE66242372C2B2E8CA5C1EEC0844BC19198ADADE47FB449DC9B30784952"
+    "B3A8131B912CE928070D665C0557EBE7484FDABFBCA0F2C2BFD4FBDDB6681C4689FD276C"
+    "231B72B15AC4E5C3C088449DE4785F1D4835AC44E39B119991EFF6E72C7D3B8C75CE588D"
+    "B0B3AD69EB79C19B22CB518EF964C9D985AFD3677F0D13015AD7BEA84CD01E335E68AF15"
+    "3B989FE8BEEC60A94753C638535FA3F215F750F6954AC395F8702941409E7276910CE118"
+    "19649641318B5BD1B78DECEADB2B562312CC286DB0BCC14A60C84CB21AB6E75E59DAFBE7"
+    "01D6405DD3F47D2F8A95422ED8EB5ECE330C9886406B3B69180B697521F3865B4A05DF2B"
+    "B51D16CAFEF05866E5D55C360C759F5B10E0D354D63D5A14E5BA19DBF9394E18E474E790"
+    "63B4E877C2FE6BCA732ED39B091B6D7A21DD9D6D6750C1CA2ABC5DEC2A81B5359771849E"
+    "7B4560EB6D329E59455A70F57F035DFB50EC4354D7E068ADFAFAD4081ACA67FD");
+const CryptoWrappedKey kTestWrappedKey = {CryptoWrappedKey::kRsa,
+                                          kTestWrappedPrivateKeyData};
 
-// The test certificate in file storage format.
-// The data elements in this module are used to test the storage and
-// retrieval of certificates and licenses
+// Structurally valid test certificate device file, missing |key_type| field.
+// {'certificate': kTestCertificate,
+//  'wrapped_private_key': kTestWrappedPrivateKeyData
+// }
+const std::string kTestCertificateFileWithoutKeyTypeData = a2bs_hex(
+    "0AA90F080110011AA20F0AA80B0AEB03080212107CB49F987A635E1E0A52184694582D6E"
+    "1887C6E1FE05228E023082010A0282010100DB13F5089C061E8EB62562692B3A06A774A9"
+    "9129BD63445FEC24448D07C30D7343553442A989AF000B7D962033C290D9A81DDCBCF398"
+    "0512445EB7E6CF544FC1FB3FC758FB9E06B6C28562A841E4AE2D3368795C41A2D6043CA9"
+    "830E0F36583C8FDB839C2752C13E184034EE412BA8A90271295B094255A16319706F4D6C"
+    "9CF1EBB1B39BA2A7B9B2780344DD5834BF71F4D5185508D2FDFB10419BD4F48E79DDFC78"
+    "471C11B9E99DF98221D6FAB25AEE24574FB02D614974942A36527C62B73A6FB7CA9EF828"
+    "EB598DA59060D654851103F857A041E66B2FFB99713D31A64605932833E8CCDA6CF0F888"
+    "AE6E78EDC9DA0D88A185B97FEB3EA74CF146BE7D9267020301000128E83D3A0C77696465"
+    "76696E652E636F6D480152AA01080110001A8101044F554B9400E10B17185036B6A1628E"
+    "FC61B22166DE2235717A44F953B7928F3415B9D113835B10106CB6C2187F34188723D82E"
+    "CF95CF5ECAB58923F1731860815999F08BF4BE4A44DB7B991B5F915F2ADCEE481E26096A"
+    "AEC3AC761B624A92158AC91035041173392B1E495428F0D17406B10889B6B701FAF08D22"
+    "84F95DBBCA2220595267DCA89A2E57E7D4CA3C62ED6D12742408A07C103DF860DC0520C3"
+    "664EEB1280028CD44E12AA7C1A8EBF88C81A2A54EFD29F8BC6C377B0C11C3404F84D8B9E"
+    "AD52A0E18E929A4923A4172C2AC1CDADD16E41A7833AA0DE9D09F685DAC9ACC702CB9061"
+    "632C1C82333A6FB6BC9C4B2540BE18CED4AB0AF1C3EFE521308F3D4CF513C20500064FE9"
+    "35FDDF7BBAC0BA99AA7FA66017898DEE6F6F5EF90C875D5D8DA39E769E8D1485253EEE93"
+    "A97B35A8EAE8D3213D392B552FB4B4A37955EBE7362287502EB649D982F06D308178642C"
+    "1F69B12383B050CF60CD29209329C148FB4F422ED5ED139A25A89E13D4AB2E8DB940299D"
+    "1414AF30DDF0D06AF55C1978F6E71E4548F20FFAE953A99D492F3D2847783338D74F66D2"
+    "DFEBB50896ACBC4795A81AB4050AAE020801121065802C9B625E5A319C33DC1CB7C3C6D4"
+    "18E3A5BDD005228E023082010A0282010100B80502043C2A8A0FD8D25C613E1E3E3B5E34"
+    "9F332F04516A7510D38021A5629B9AA027AEAD3C759B7AFE70BED65F3DF6860FF5EB60B9"
+    "83A3FFA33FDE06F3B73014DFC845AB371C6600562E9D904F842B8BA4A5D9200FFA3ED45D"
+    "705520A5C372A889F9E314386234C6897AE655851FCD9ADB4EF9126C78386EA93BCB25BA"
+    "3EC475C55C608E771C763AB02506F9B07252D6ABF7EA64B1EBDE7B95C6407690533BD689"
+    "0B9274C16066F74FC401EA355F0A02106814D49BF0C89E6E1F8DB2A47841CD0DAD793296"
+    "A107C36223404F2BF1FCA16FD0A4B982634DB62407F8F14ACAE3B05A038BD3E4BBBAE439"
+    "1BBFA7A47FB9D01DE857EA88E5E36EE36E245859FC0F020301000128E83D1280037E0658"
+    "1A019184AB572AFDCADDD03F161CE68200F8E6F8AD161947360BC8D49C0D68009B1C4644"
+    "F9B3F3FB6DDFD92EF92DE62D41D459D29D81BFAEF3970A3A39D25B2662ECB03B2DA7B683"
+    "02FAA6DD98D95A143CC8C1CB6ADDA76D2EE9C3723FAF95A29CDC3E968B6821A91C051CA2"
+    "80A86669710A1AD7A44BF9218027460DF694E2E9270396DF221963F21EE6AA220A5EE4A4"
+    "D0FEB3D53EB5732F8F91E9A96B3B8BE284C51339EA284D4D0EDD55B6AD56F7416420E05E"
+    "059F9734A96BE25AA44560DBA8C38755A42A82BD7F88EDD19DF346A667B33B8114C76A88"
+    "38C423D824A50B23251A088136D6E8F475299D2AFD46CEA51B5CBDF789A572125CD24FBB"
+    "813B387A10CD2A30E3447634AB3408F96B9CF3D98896D405F3F540D9C57962760FCD177C"
+    "DD101EB8A4148B9C29CED5EAD645A95B698F1CDC6E1DB6678B85074186080D68D13CD37E"
+    "07B16DE370CD9AFB9B25564A73A30E2AF8085EA37D310C474F0E67AC00CA992A5296FAED"
+    "AD7AA06ECD790F1E3D426558FA98383E3CD2ED483012F403B36550E6BEACCB34F6C3B2AB"
+    "F86634EE5383829C844F9B0C14DCF9A22FE3543CCBA8FD61E21CEE503E7A40B93B07A418"
+    "6A362D9E6F88DD48D4516635C6D0C253C03F12EFA6095618D647F5212C518C4A6AA7172B"
+    "C691530703FEDDFDB25ECF885A53FF2B4B98773979D61AE659E340489811512A5C2FD445"
+    "A4B0AE88A3A7F29ACE5B01ECF580D0993227BC408B602B0BC099920C17044FE66242372C"
+    "2B2E8CA5C1EEC0844BC19198ADADE47FB449DC9B30784952B3A8131B912CE928070D665C"
+    "0557EBE7484FDABFBCA0F2C2BFD4FBDDB6681C4689FD276C231B72B15AC4E5C3C088449D"
+    "E4785F1D4835AC44E39B119991EFF6E72C7D3B8C75CE588DB0B3AD69EB79C19B22CB518E"
+    "F964C9D985AFD3677F0D13015AD7BEA84CD01E335E68AF153B989FE8BEEC60A94753C638"
+    "535FA3F215F750F6954AC395F8702941409E7276910CE11819649641318B5BD1B78DECEA"
+    "DB2B562312CC286DB0BCC14A60C84CB21AB6E75E59DAFBE701D6405DD3F47D2F8A95422E"
+    "D8EB5ECE330C9886406B3B69180B697521F3865B4A05DF2BB51D16CAFEF05866E5D55C36"
+    "0C759F5B10E0D354D63D5A14E5BA19DBF9394E18E474E79063B4E877C2FE6BCA732ED39B"
+    "091B6D7A21DD9D6D6750C1CA2ABC5DEC2A81B5359771849E7B4560EB6D329E59455A70F5"
+    "7F035DFB50EC4354D7E068ADFAFAD4081ACA67FD1220F07050C50264B496211432D47DAA"
+    "88EE59BAD141B8FD372BAE67A6FF05C74DAC");
+
+// Structurally valid test certificate device file.
+// {'certificate': kTestCertificate,
+//  'key_type': 'RSA',
+//  'wrapped_private_key': kTestWrappedPrivateKeyData
+// }
 const std::string kTestCertificateFileData = a2bs_hex(
-    "0A950D080110011A8E0D0AA0050A98030802120D73657269616C5F6E756D62657218B4B2CD"
-    "E00422E8024D49494243674B43415145412B78475A2F77637A39756746705030374E73706F"
-    "365531376C305968466946707878553470546B334C69667A3952337A734973754552777461"
-    "372B66574966784F6F3230386574742F6A68736B69566F6453457433514247683458426970"
-    "79576F704B775A393348486144565A41414C692F32412B785442745764456F37584755756A"
-    "4B447643322F615A4B756B666A704F6955493841684C41666A6D6C63442F555A3151506830"
-    "6D4873676C524E436D7043776D7753584139564E6D687A2B5069422B446D6C3457576E4B57"
-    "2F56486F32756A54587871372B65664D55344832666E79335365334B594F73465046475A31"
-    "544E5153596C467553685772485074694C6D5564506F50364356326D4D4C31746B2B6C3744"
-    "494971587251684C554B444143654D35726F4D78306B4C6855574238502B30756A31434E6C"
-    "4E4E344A525A6C433778466671694D62465255395A344E3659774944415141422899203A11"
-    "746573742E7769646576696E652E636F6D1282023078363530633966326536373031653366"
-    "65373364333035343930346139613462626462393637333366316334633734336566353733"
-    "61643661633134633561336266386134373331663665363237366661656135323437333033"
-    "36373766623864626466323466663738653533633235303532636463613837656563666565"
-    "38353437366263623861303563623961316566656637636238376464363832323365313137"
-    "63653830306163343631373731373235343437353761343837626533326635616238666530"
-    "38373966613861646437386265343635656138663864356163663937376539663161653336"
-    "6434643437383136656136656434313337326212E807344637323442303635333236333731"
-    "41324635463646353134363743324532363535354334353342354337433142344632373338"
-    "34353442373832453345374235333430343335413636333734443036313230353243353231"
-    "41323333443741363731393438373137353143373835373545353137373037303133303236"
-    "34433446303337363333333230453636374231413439313932393234343931333338363933"
-    "44313036453631313330313441373333413234314131413033334532383335323137383134"
-    "36423446353433443338313034413539313931323033323535303243333133363535303630"
-    "39364435393538354530383737344235423536374137423544303334353145364231313633"
-    "33453532363732433232363130333130344233453443303331413634303330353046334135"
-    "37344432433530313731313737333830323734314637463341304433363437353731303144"
-    "30323138314337443444333532303731363735303641343234433039344534413732333136"
-    "46373931463136324437363635374432423544334332443742323733413238363932373731"
-    "37353631333136353138374535353238323433303439313436373038363432353433323334"
-    "37373031433331313634343644323136343543373536423244334430463739374333323230"
-    "33323244363232413235344430423744344631443544304330413336373535443132343637"
-    "34314133343738334334353135373234373039314337383233324237443245304531463633"
-    "37413241333733393038354437363136363734373033343335303631333936393037324635"
-    "42354335423231363537453437304337453531334233463039314437343435354133413037"
-    "33373035374237453342353333373139314434453735333630383743333334423630323835"
-    "33304633463542323333383042364130373630333132393435303130303344364431463234"
-    "30463633303533443544304232373142364130463236313835363530373331333038363630"
-    "42303434373536363034313638344635383443323232313645353637443342373735353639"
-    "35463746334436423634353235453732323731363539343831303135343032343343313934"
-    "39354334433730324633373439304632363631333335333739373832353632343134333236"
-    "33303433303230453145363736303132334435313035364632463145343832463245334430"
-    "32314232373637374433453745334330433131373537433334343832373545303833383245"
-    "31313132363336343443364432323437313437303644373630413035344135383645313735"
-    "303543333432393537354134313034334631383432303912205C6993E9656F73A41739773A"
-    "0FCBA8AE232CD8856ACE585FF6BFB2A09C20061E");
+    "0AAB0F080110011AA40F0AA80B0AEB03080212107CB49F987A635E1E0A52184694582D6E"
+    "1887C6E1FE05228E023082010A0282010100DB13F5089C061E8EB62562692B3A06A774A9"
+    "9129BD63445FEC24448D07C30D7343553442A989AF000B7D962033C290D9A81DDCBCF398"
+    "0512445EB7E6CF544FC1FB3FC758FB9E06B6C28562A841E4AE2D3368795C41A2D6043CA9"
+    "830E0F36583C8FDB839C2752C13E184034EE412BA8A90271295B094255A16319706F4D6C"
+    "9CF1EBB1B39BA2A7B9B2780344DD5834BF71F4D5185508D2FDFB10419BD4F48E79DDFC78"
+    "471C11B9E99DF98221D6FAB25AEE24574FB02D614974942A36527C62B73A6FB7CA9EF828"
+    "EB598DA59060D654851103F857A041E66B2FFB99713D31A64605932833E8CCDA6CF0F888"
+    "AE6E78EDC9DA0D88A185B97FEB3EA74CF146BE7D9267020301000128E83D3A0C77696465"
+    "76696E652E636F6D480152AA01080110001A8101044F554B9400E10B17185036B6A1628E"
+    "FC61B22166DE2235717A44F953B7928F3415B9D113835B10106CB6C2187F34188723D82E"
+    "CF95CF5ECAB58923F1731860815999F08BF4BE4A44DB7B991B5F915F2ADCEE481E26096A"
+    "AEC3AC761B624A92158AC91035041173392B1E495428F0D17406B10889B6B701FAF08D22"
+    "84F95DBBCA2220595267DCA89A2E57E7D4CA3C62ED6D12742408A07C103DF860DC0520C3"
+    "664EEB1280028CD44E12AA7C1A8EBF88C81A2A54EFD29F8BC6C377B0C11C3404F84D8B9E"
+    "AD52A0E18E929A4923A4172C2AC1CDADD16E41A7833AA0DE9D09F685DAC9ACC702CB9061"
+    "632C1C82333A6FB6BC9C4B2540BE18CED4AB0AF1C3EFE521308F3D4CF513C20500064FE9"
+    "35FDDF7BBAC0BA99AA7FA66017898DEE6F6F5EF90C875D5D8DA39E769E8D1485253EEE93"
+    "A97B35A8EAE8D3213D392B552FB4B4A37955EBE7362287502EB649D982F06D308178642C"
+    "1F69B12383B050CF60CD29209329C148FB4F422ED5ED139A25A89E13D4AB2E8DB940299D"
+    "1414AF30DDF0D06AF55C1978F6E71E4548F20FFAE953A99D492F3D2847783338D74F66D2"
+    "DFEBB50896ACBC4795A81AB4050AAE020801121065802C9B625E5A319C33DC1CB7C3C6D4"
+    "18E3A5BDD005228E023082010A0282010100B80502043C2A8A0FD8D25C613E1E3E3B5E34"
+    "9F332F04516A7510D38021A5629B9AA027AEAD3C759B7AFE70BED65F3DF6860FF5EB60B9"
+    "83A3FFA33FDE06F3B73014DFC845AB371C6600562E9D904F842B8BA4A5D9200FFA3ED45D"
+    "705520A5C372A889F9E314386234C6897AE655851FCD9ADB4EF9126C78386EA93BCB25BA"
+    "3EC475C55C608E771C763AB02506F9B07252D6ABF7EA64B1EBDE7B95C6407690533BD689"
+    "0B9274C16066F74FC401EA355F0A02106814D49BF0C89E6E1F8DB2A47841CD0DAD793296"
+    "A107C36223404F2BF1FCA16FD0A4B982634DB62407F8F14ACAE3B05A038BD3E4BBBAE439"
+    "1BBFA7A47FB9D01DE857EA88E5E36EE36E245859FC0F020301000128E83D1280037E0658"
+    "1A019184AB572AFDCADDD03F161CE68200F8E6F8AD161947360BC8D49C0D68009B1C4644"
+    "F9B3F3FB6DDFD92EF92DE62D41D459D29D81BFAEF3970A3A39D25B2662ECB03B2DA7B683"
+    "02FAA6DD98D95A143CC8C1CB6ADDA76D2EE9C3723FAF95A29CDC3E968B6821A91C051CA2"
+    "80A86669710A1AD7A44BF9218027460DF694E2E9270396DF221963F21EE6AA220A5EE4A4"
+    "D0FEB3D53EB5732F8F91E9A96B3B8BE284C51339EA284D4D0EDD55B6AD56F7416420E05E"
+    "059F9734A96BE25AA44560DBA8C38755A42A82BD7F88EDD19DF346A667B33B8114C76A88"
+    "38C423D824A50B23251A088136D6E8F475299D2AFD46CEA51B5CBDF789A572125CD24FBB"
+    "813B387A10CD2A30E3447634AB3408F96B9CF3D98896D405F3F540D9C57962760FCD177C"
+    "DD101EB8A4148B9C29CED5EAD645A95B698F1CDC6E1DB6678B85074186080D68D13CD37E"
+    "07B16DE370CD9AFB9B25564A73A30E2AF8085EA37D310C474F0E67AC00CA992A5296FAED"
+    "AD7AA06ECD790F1E3D426558FA98383E3CD2ED483012F403B36550E6BEACCB34F6C3B2AB"
+    "F86634EE5383829C844F9B0C14DCF9A22FE3543CCBA8FD61E21CEE503E7A40B93B07A418"
+    "6A362D9E6F88DD48D4516635C6D0C253C03F12EFA6095618D647F5212C518C4A6AA7172B"
+    "C691530703FEDDFDB25ECF885A53FF2B4B98773979D61AE659E340489811512A5C2FD445"
+    "A4B0AE88A3A7F29ACE5B01ECF580D0993227BC408B602B0BC099920C17044FE66242372C"
+    "2B2E8CA5C1EEC0844BC19198ADADE47FB449DC9B30784952B3A8131B912CE928070D665C"
+    "0557EBE7484FDABFBCA0F2C2BFD4FBDDB6681C4689FD276C231B72B15AC4E5C3C088449D"
+    "E4785F1D4835AC44E39B119991EFF6E72C7D3B8C75CE588DB0B3AD69EB79C19B22CB518E"
+    "F964C9D985AFD3677F0D13015AD7BEA84CD01E335E68AF153B989FE8BEEC60A94753C638"
+    "535FA3F215F750F6954AC395F8702941409E7276910CE11819649641318B5BD1B78DECEA"
+    "DB2B562312CC286DB0BCC14A60C84CB21AB6E75E59DAFBE701D6405DD3F47D2F8A95422E"
+    "D8EB5ECE330C9886406B3B69180B697521F3865B4A05DF2BB51D16CAFEF05866E5D55C36"
+    "0C759F5B10E0D354D63D5A14E5BA19DBF9394E18E474E79063B4E877C2FE6BCA732ED39B"
+    "091B6D7A21DD9D6D6750C1CA2ABC5DEC2A81B5359771849E7B4560EB6D329E59455A70F5"
+    "7F035DFB50EC4354D7E068ADFAFAD4081ACA67FD18001220A28ED0C0D4697C870B56192C"
+    "F2AF86D7362398EB250F6A29BE3A0C4887F0D653");
 
 struct LicenseInfo {
   std::string key_set_id;
@@ -2129,9 +2242,10 @@ MATCHER_P(StrAndLenContains, str_vector, "") {
 
 TEST_F(DeviceCertificateTest, StoreCertificate) {
   MockFileSystem file_system;
-  std::string certificate(CdmRandom::RandomData(kCertificateLen));
-  std::string wrapped_private_key(CdmRandom::RandomData(kWrappedKeyLen));
-  std::string device_certificate_path =
+  const std::string certificate(CdmRandom::RandomData(kCertificateLen));
+  const CryptoWrappedKey private_key(CryptoWrappedKey::kRsa,
+                                     CdmRandom::RandomData(kWrappedKeyLen));
+  const std::string device_certificate_path =
       device_base_path_ + DeviceFiles::GetCertificateFileName(false);
 
   // Call to Open will return a unique_ptr, freeing this object.
@@ -2141,21 +2255,21 @@ TEST_F(DeviceCertificateTest, StoreCertificate) {
       .WillOnce(Return(file));
   EXPECT_CALL(*file, Write(_, _))
       .With(AllArgs(StrAndLenContains(
-          std::vector<std::string>{certificate, wrapped_private_key})))
+          std::vector<std::string>{certificate, private_key.key()})))
       .WillOnce(ReturnArg<1>());
   EXPECT_CALL(*file, Read(_, _)).Times(0);
 
   DeviceFiles device_files(&file_system);
   EXPECT_TRUE(device_files.Init(kSecurityLevelL1));
-  EXPECT_TRUE(device_files.StoreCertificate(certificate, wrapped_private_key));
+  EXPECT_TRUE(device_files.StoreCertificate(certificate, private_key));
 }
 
 TEST_P(DeviceCertificateTest, ReadCertificate) {
   MockFileSystem file_system;
   const bool atsc_mode = GetParam();
-  std::string device_certificate_path =
+  const std::string device_certificate_path =
       device_base_path_ + DeviceFiles::GetCertificateFileName(atsc_mode);
-  std::string data = kTestCertificateFileData;
+  const std::string data = kTestCertificateFileData;
 
   // Call to Open will return a unique_ptr, freeing this object.
   MockFile* file = new MockFile();
@@ -2174,14 +2288,51 @@ TEST_P(DeviceCertificateTest, ReadCertificate) {
   DeviceFiles device_files(&file_system);
   EXPECT_TRUE(device_files.Init(kSecurityLevelL1));
 
-  std::string certificate, wrapped_private_key;
+  std::string certificate;
+  CryptoWrappedKey private_key;
   std::string serial_number;
   uint32_t system_id = 0;
-  ASSERT_TRUE(device_files.RetrieveCertificate(atsc_mode, &certificate,
-                                               &wrapped_private_key,
-                                               &serial_number, &system_id));
+  ASSERT_TRUE(device_files.RetrieveCertificate(
+      atsc_mode, &certificate, &private_key, &serial_number, &system_id));
   EXPECT_EQ(kTestCertificate, certificate);
-  EXPECT_EQ(kTestWrappedPrivateKey, wrapped_private_key);
+  EXPECT_EQ(kTestWrappedKey, private_key);
+  EXPECT_EQ("7CB49F987A635E1E0A52184694582D6E", b2a_hex(serial_number));
+}
+
+TEST_P(DeviceCertificateTest, ReadCertificateWithoutKeyType) {
+  // Stored files without an explicit key type should default to RSA.
+  MockFileSystem file_system;
+  const bool atsc_mode = GetParam();
+  const std::string device_certificate_path =
+      device_base_path_ + DeviceFiles::GetCertificateFileName(atsc_mode);
+  const std::string data = kTestCertificateFileWithoutKeyTypeData;
+
+  // Call to Open will return a unique_ptr, freeing this object.
+  MockFile* file = new MockFile();
+  EXPECT_CALL(file_system, Exists(StrEq(device_certificate_path)))
+      .Times(2)
+      .WillRepeatedly(Return(true));
+  EXPECT_CALL(file_system, FileSize(StrEq(device_certificate_path)))
+      .WillOnce(Return(data.size()));
+  EXPECT_CALL(file_system, DoOpen(StrEq(device_certificate_path), _))
+      .WillOnce(Return(file));
+  EXPECT_CALL(*file, Read(NotNull(), Eq(data.size())))
+      .WillOnce(DoAll(SetArrayArgument<0>(data.begin(), data.end()),
+                      Return(data.size())));
+  EXPECT_CALL(*file, Write(_, _)).Times(0);
+
+  DeviceFiles device_files(&file_system);
+  EXPECT_TRUE(device_files.Init(kSecurityLevelL1));
+
+  std::string certificate;
+  CryptoWrappedKey private_key;
+  std::string serial_number;
+  uint32_t system_id = 0;
+  ASSERT_TRUE(device_files.RetrieveCertificate(
+      atsc_mode, &certificate, &private_key, &serial_number, &system_id));
+  EXPECT_EQ(kTestCertificate, certificate);
+  EXPECT_EQ(kTestWrappedKey, private_key);
+  EXPECT_EQ("7CB49F987A635E1E0A52184694582D6E", b2a_hex(serial_number));
 }
 
 TEST_P(DeviceCertificateTest, HasCertificate) {
@@ -2210,7 +2361,8 @@ INSTANTIATE_TEST_CASE_P(AtscMode, DeviceCertificateTest,
 TEST_P(DeviceFilesSecurityLevelTest, SecurityLevel) {
   MockFileSystem file_system;
   std::string certificate(CdmRandom::RandomData(kCertificateLen));
-  std::string wrapped_private_key(CdmRandom::RandomData(kWrappedKeyLen));
+  const CryptoWrappedKey private_key(CryptoWrappedKey::kRsa,
+                                     CdmRandom::RandomData(kWrappedKeyLen));
 
   CdmSecurityLevel security_level = GetParam();
   std::string device_base_path;
@@ -2226,13 +2378,13 @@ TEST_P(DeviceFilesSecurityLevelTest, SecurityLevel) {
       .WillOnce(Return(file));
   EXPECT_CALL(*file, Write(_, _))
       .With(AllArgs(StrAndLenContains(
-          std::vector<std::string>{certificate, wrapped_private_key})))
+          std::vector<std::string>{certificate, private_key.key()})))
       .WillOnce(ReturnArg<1>());
   EXPECT_CALL(*file, Read(_, _)).Times(0);
 
   DeviceFiles device_files(&file_system);
   EXPECT_TRUE(device_files.Init(security_level));
-  EXPECT_TRUE(device_files.StoreCertificate(certificate, wrapped_private_key));
+  EXPECT_TRUE(device_files.StoreCertificate(certificate, private_key));
 }
 
 INSTANTIATE_TEST_CASE_P(SecurityLevel, DeviceFilesSecurityLevelTest,

libwvdrmengine/cdm/core/test/test_printers.cpp

@@ -68,6 +68,9 @@ void PrintTo(const enum CdmResponseType& value, ::std::ostream* os) {
     case CERT_PROVISIONING_RESPONSE_ERROR_8:
       *os << "CERT_PROVISIONING_RESPONSE_ERROR_8";
       break;
+    case CERT_PROVISIONING_RESPONSE_ERROR_9:
+      *os << "CERT_PROVISIONING_RESPONSE_ERROR_9";
+      break;
     case CLIENT_ID_AES_ENCRYPT_ERROR:
       *os << "CLIENT_ID_AES_ENCRYPT_ERROR";
       break;