OEMCrypto and OPK v17.5

CHANGELOG.md

@@ -2,6 +2,37 @@
 
 [TOC]
 
+## [Version 17.5][v17.5]
+
+This release is mostly testing-focused, including new tests that provide
+stricter enforcement of the existing OEMCrypto specification.
+
+This release of OPK fixes a rare but possible null dereference bug.
+
+### Tests
+
+- Added new tests to better validate the behavior of
+  `OEMCrypto_BuildInformation()`
+  - Verifies output length is set correctly
+  - Verifies content is ASCII text without trailing null bytes
+- Removed OEMCryptoLicenseTest.RejectCbc1API16
+- Fixed erroneous failures on devices with low TEE memory caused by sending an
+  output buffer to decrypt that was much larger than necessary
+
+### API
+
+- Clarified the expected handling of the pattern (0,0) in cbcs mode. For more
+  information, please check the [OEMCrypto v17 Delta Document][delta-17].
+
+### OPK
+
+- Fixed a potential null dereference in `OPK_DispatchMessage()` if the allocator
+  runs out of memory
+- Fixed incorrect behavior of `OEMCrypto_RemoveEntitledKeySession()` when the
+  session is already closed
+
+[delta-17]: https://developers.google.com/widevine/drm/client/oemcrypto/v17/delta
+
 ## [Version 17.4][v17.4]
 
 This is a minor release that includes a few security fixes.
@@ -289,3 +320,4 @@ Public release for OEMCrypto API and ODK library version 16.4.
 [v17.2.1]: https://widevine-partner.googlesource.com/oemcrypto/+/refs/tags/v17.2.1
 [v17.3]: https://widevine-partner.googlesource.com/oemcrypto/+/refs/tags/v17.3
 [v17.4]: https://widevine-partner.googlesource.com/oemcrypto/+/refs/tags/v17.4
+[v17.5]: https://widevine-partner.googlesource.com/oemcrypto/+/refs/tags/v17.5