Regular sync.

Changes include:
1. Fix refreshkeys when handling renewal response.
2. Change ECM start detect method.
3. Fix signing key truncation.
4. Reformat C++ code.
5. Return license_id in LICENSE_CAS_READY payload.
6. Expose OEMCrypto API version in the license request.
7. Add support for newly added widevine cas ids.
8. Store content iv and encryption mode info to entitled key.
9. Upgrade ODK library to 16.4.

oemcrypto/odk/include/odk_structs.h

@@ -12,10 +12,10 @@
 
 /* The version of this library. */
 #define ODK_MAJOR_VERSION 16
-#define ODK_MINOR_VERSION 3
+#define ODK_MINOR_VERSION 4
 
 /* ODK Version string. Date changed automatically on each release. */
-#define ODK_RELEASE_DATE "ODK v16.3 2020-06-02"
+#define ODK_RELEASE_DATE "ODK v16.4 2020-10-07"
 
 /* The  lowest version number for an ODK message. */
 #define ODK_FIRST_VERSION 16

oemcrypto/odk/src/odk.c

@@ -299,20 +299,24 @@ OEMCryptoResult ODK_ParseLicense(
     return ODK_ERROR_CORE_MESSAGE;
   }
 
-  if (parsed_license->nonce_required) {
-    if (initial_license_load) {
-      if (nonce_values->nonce !=
-              license_response.request.core_message.nonce_values.nonce ||
-          nonce_values->session_id !=
-              license_response.request.core_message.nonce_values.session_id) {
-        return OEMCrypto_ERROR_INVALID_NONCE;
-      }
-    } else { /* !initial_license_load */
-      nonce_values->nonce =
-          license_response.request.core_message.nonce_values.nonce;
-      nonce_values->session_id =
-          license_response.request.core_message.nonce_values.session_id;
+/* If this is the first time we load this license, then we verify that the
+   * nonce values are the correct, otherwise we copy the nonce values. If the
+   * nonce values are not required to be correct, then we don't know if this is
+   * an initial load or not. In that case, we also copy the values so that we
+   * can use the nonce values later for a renewal.
+   */
+  if (parsed_license->nonce_required && initial_license_load) {
+    if (nonce_values->nonce !=
+            license_response.request.core_message.nonce_values.nonce ||
+        nonce_values->session_id !=
+            license_response.request.core_message.nonce_values.session_id) {
+      return OEMCrypto_ERROR_INVALID_NONCE;
     }
+  } else { /* !initial_license_load, or can't tell if initial. */
+    nonce_values->nonce =
+        license_response.request.core_message.nonce_values.nonce;
+    nonce_values->session_id =
+        license_response.request.core_message.nonce_values.session_id;
   }
   /* For v16, in order to be backwards compatible with a v15 license server,
    * OEMCrypto stores a hash of the core license request and only signs the
@@ -359,9 +363,12 @@ OEMCryptoResult ODK_ParseRenewal(const uint8_t* message, size_t message_length,
    */
   /* If a renewal request is lost in transit, we should throw it out and create
    * a new one. We use the timestamp to make sure we have the latest request.
+   * We only do this if playback has already started. This allows us to reload
+   * an offline license and also reload a renewal before starting playback.
    */
-  if (clock_values->time_of_renewal_request <
-      renewal_response.request.playback_time) {
+  if (clock_values->timer_status != ODK_CLOCK_TIMER_STATUS_LICENSE_LOADED &&
+      clock_values->time_of_renewal_request <
+          renewal_response.request.playback_time) {
     return ODK_STALE_RENEWAL;
   }
   return ODK_ComputeRenewalDuration(timer_limits, clock_values, system_time,