Source release v3.5.0

oemcrypto/test/oec_session_util.h

@@ -10,6 +10,7 @@
 #include <vector>
 
 #include "oec_device_features.h"
+#include "pst_report.h"
 #include "wv_cdm_constants.h"
 
 using namespace std;
@@ -18,19 +19,7 @@ using namespace std;
 // which is std::vector in this case.
 namespace std {
 
-struct PatternTestVariant {
-  PatternTestVariant(size_t encrypt, size_t skip, OEMCryptoCipherMode mode_) {
-    this->pattern.encrypt = encrypt;
-    this->pattern.skip = skip;
-    this->pattern.offset = 0;
-    this->mode = mode_;
-  }
-  OEMCrypto_CENCEncryptPatternDesc pattern;
-  OEMCryptoCipherMode mode;
-};
-
 void PrintTo(const vector<uint8_t>& value, ostream* os);
-void PrintTo(const PatternTestVariant& param, ostream* os);
 
 }  // namespace std
 
@@ -50,6 +39,7 @@ const int kLongSleep = 2 * kSpeedMultiplier;
 const uint32_t kDuration = 2 * kSpeedMultiplier;
 const uint32_t kLongDuration = 5 * kSpeedMultiplier;
 const int32_t kTimeTolerance = 3 * kSpeedMultiplier;
+const time_t kUsageTableTimeTolerance = 10 * kSpeedMultiplier;
 }  // namespace
 
 typedef struct {
@@ -101,6 +91,18 @@ struct RSAPrivateKeyMessage {
   uint32_t nonce;
 };
 
+struct Test_PST_Report {
+  Test_PST_Report(const std::string& pst_in,
+                  OEMCrypto_Usage_Entry_Status status_in)
+      : status(status_in), pst(pst_in) {}
+
+  OEMCrypto_Usage_Entry_Status status;
+  int64_t seconds_since_license_received;
+  int64_t seconds_since_first_decrypt;
+  int64_t seconds_since_last_decrypt;
+  std::string pst;
+};
+
 // Increment counter for AES-CTR.  The CENC spec specifies we increment only
 // the low 64 bits of the IV counter, and leave the high 64 bits alone.  This
 // is different from the OpenSSL implementation, so we implement the CTR loop
@@ -203,6 +205,13 @@ class Session {
   void TestDecryptCTR(bool select_key_first = true,
                       OEMCryptoResult expected_result = OEMCrypto_SUCCESS,
                       int key_index = 0);
+  // This compares the actual result with the expected result.  If OEMCrypto is
+  // an older version, we allow it to report an equivalent error code.
+  void TestDecryptResult(OEMCryptoResult expected_result,
+                         OEMCryptoResult actual_result);
+  // Verify that an attempt to select an expired key either succeeds, or gives
+  // an actionable error code.
+  void TestSelectExpired(unsigned int key_index);
   // Calls OEMCrypto_GetOEMPublicCertificate and loads the OEM cert's public
   // rsa key into public_rsa_.
   void LoadOEMCert(bool verify_cert = false);
@@ -241,27 +250,68 @@ class Session {
   // Calls OEMCrypto_RewrapDeviceRSAKey30 with the given provisioning response
   // message. If force is true, we assert that the key loads successfully.
   void RewrapRSAKey30(const struct RSAPrivateKeyMessage& encrypted,
-                      size_t message_size,
                       const std::vector<uint8_t>& encrypted_message_key,
                       vector<uint8_t>* wrapped_key, bool force);
   // Loads the specified wrapped_rsa_key into OEMCrypto, and then runs
   // GenerateDerivedKeysFromSessionKey to install known encryption and mac keys.
   void InstallRSASessionTestKey(const vector<uint8_t>& wrapped_rsa_key);
-  // Generates a usage report for the specified pst.  If expect_success is true,
+  // Creates a new usage entry, and keeps track of the index.
+  void CreateNewUsageEntry();
+  // Copy encrypted usage entry from other session, and then load it.
+  // This session must already be open.
+  void LoadUsageEntry(uint32_t index, const vector<uint8_t>& buffer);
+  // Copy encrypted usage entry from other session.
+  // This session must already be open.
+  void LoadUsageEntry(const Session& other) {
+    LoadUsageEntry(other.usage_entry_number(), other.encrypted_usage_entry());
+  }
+  // Reload previously used usage entry.
+  void ReloadUsageEntry() { LoadUsageEntry(*this); }
+  // Update the usage entry and save the header to the specified buffer.
+  void UpdateUsageEntry(std::vector<uint8_t>* header_buffer);
+  // Deactivate this session's usage entry.
+  void DeactivateUsageEntry(const std::string& pst);
+  // The usage entry number for this session's usage entry.
+  uint32_t usage_entry_number() const { return usage_entry_number_; }
+  void set_usage_entry_number(uint32_t v) { usage_entry_number_ = v; }
+  // The encrypted buffer holding the recently updated and saved usage entry.
+  const vector<uint8_t>& encrypted_usage_entry() const {
+    return encrypted_usage_entry_;
+  }
+  // Generates a usage report for the specified pst.  If there is success,
   // the report's signature is verified, and several fields are given sanity
   // checks.  If other is not null, then the mac keys are copied from other in
   // order to verify signatures.
-  void GenerateReport(const std::string& pst, bool expect_success = true,
+  void GenerateReport(const std::string& pst,
+                      OEMCryptoResult expected_result = OEMCrypto_SUCCESS,
                       Session* other = 0);
-  // Returns a pointer to the usage report generated by the previous call to
-  // GenerateReport.
-  OEMCrypto_PST_Report* pst_report();
-  // Creates a signed delete usage table entry message and calls
-  // OEMCrypto_DeleteUsageEntry on it.
-  void DeleteEntry(const std::string& pst);
-  // Calls OEMCrypto_ForceDeleteUsageEntry to delete a usage table entry without
-  // a signed message.
-  void ForceDeleteEntry(const std::string& pst);
+  // Move this usage entry to a new index.
+  void MoveUsageEntry(uint32_t new_index, std::vector<uint8_t>* header_buffer,
+                      OEMCryptoResult expect_result = OEMCrypto_SUCCESS);
+  // PST used in FillSimpleMesage.
+  string pst() const { return pst_; }
+  // Returns a pointer-like thing to the usage report generated by the previous
+  // call to GenerateReport.
+  wvcdm::Unpacked_PST_Report pst_report() {
+    return wvcdm::Unpacked_PST_Report(&pst_report_buffer_[0]);
+  }
+  // Verify the values in the PST report.  The signature should have been
+  // verified in GenerateReport, above.
+  void VerifyPST(const Test_PST_Report& report);
+  // Generate and Verify the Usage Report. If any time is greater than 10
+  // minutes, it is assumed to be an absolute time, and time_since will be
+  // computed relative to now.
+  void GenerateVerifyReport(const std::string& pst,
+                            OEMCrypto_Usage_Entry_Status status,
+                            int64_t time_license_received = 0,
+                            int64_t time_first_decrypt = 0,
+                            int64_t time_last_decrypt = 0);
+  // Create an entry in the old usage table based on the given report.
+  void CreateOldEntry(const Test_PST_Report &report);
+  // Create a new entry and copy the old entry into it.  Then very the report
+  // is right.
+  void CopyAndVerifyOldEntry(const Test_PST_Report &report,
+                             std::vector<uint8_t>* header_buffer);
 
   // The unencrypted license response or license renewal response.
   MessageData& license() { return license_; }
@@ -281,8 +331,7 @@ class Session {
   void set_num_keys(int num_keys) { num_keys_ = num_keys; }
   // The current number of keys to use in the license(), encrypted_license()
   // and key_array().
-  int num_keys() const { return num_keys_; }
-  size_t key_array_size() const { return num_keys_; }
+  unsigned int num_keys() const { return num_keys_; }
 
   // Set the size of the buffer used the encrypted license.
   // Must be between sizeof(MessageData) and kMaxMessageSize.
@@ -307,7 +356,10 @@ class Session {
   size_t message_size_;  // How much of the padded message to use.
   OEMCrypto_KeyObject key_array_[kMaxNumKeys];
   std::vector<uint8_t> signature_;
-  int num_keys_;
+  unsigned int num_keys_;
+  vector<uint8_t> encrypted_usage_entry_;
+  uint32_t usage_entry_number_;
+  string pst_;
 };
 
 }  // namespace wvoec