support sm4 encryption (#311)

wujinhu · huiguangjun · commit 1cd06812736d · 2020-06-08T14:13:28.000+08:00
support sm4 encryption
diff --git a/src/main/java/com/aliyun/oss/common/parser/RequestMarshallers.java b/src/main/java/com/aliyun/oss/common/parser/RequestMarshallers.java
@@ -937,6 +937,9 @@ public byte[] marshall(SetBucketEncryptionRequest setBucketEncryptionRequest) {
     		} else {
     			xmlBody.append("<KMSMasterKeyID></KMSMasterKeyID>");
     		}
+            if (sseByDefault.getKMSDataEncryption() != null) {
+                xmlBody.append("<KMSDataEncryption>" + sseByDefault.getKMSDataEncryption() + "</KMSDataEncryption>");
+            }
 
     		xmlBody.append("</ApplyServerSideEncryptionByDefault>");
     		xmlBody.append("</ServerSideEncryptionRule>");
diff --git a/src/main/java/com/aliyun/oss/internal/OSSHeaders.java b/src/main/java/com/aliyun/oss/internal/OSSHeaders.java
@@ -32,6 +32,7 @@ public interface OSSHeaders extends HttpHeaders {
 
     static final String OSS_SERVER_SIDE_ENCRYPTION = "x-oss-server-side-encryption";
     static final String OSS_SERVER_SIDE_ENCRYPTION_KEY_ID = "x-oss-server-side-encryption-key-id";
+    static final String OSS_SERVER_SIDE_DATA_ENCRYPTION = "x-oss-server-side-data-encryption";
 
     static final String GET_OBJECT_IF_MODIFIED_SINCE = "If-Modified-Since";
     static final String GET_OBJECT_IF_UNMODIFIED_SINCE = "If-Unmodified-Since";
diff --git a/src/main/java/com/aliyun/oss/internal/OSSMultipartOperation.java b/src/main/java/com/aliyun/oss/internal/OSSMultipartOperation.java
@@ -363,6 +363,7 @@ public UploadPartResult uploadPart(UploadPartRequest uploadPartRequest) throws O
         result.setETag(trimQuotes(response.getHeaders().get(OSSHeaders.ETAG)));
         result.setRequestId(response.getRequestId());
         result.setPartSize(uploadPartRequest.getPartSize());
+        result.setResponse(response);
         ResponseParsers.setCRC(result, response);
 
         if (getInnerClient().getClientConfiguration().isCrcCheckEnabled()) {
diff --git a/src/main/java/com/aliyun/oss/internal/ResponseParsers.java b/src/main/java/com/aliyun/oss/internal/ResponseParsers.java
@@ -808,6 +808,7 @@ public AppendObjectResult parse(ResponseMessage response) throws ResponseParseEx
                     result.setNextPosition(Long.valueOf(nextPosition));
                 }
                 result.setObjectCRC(response.getHeaders().get(OSSHeaders.OSS_HASH_CRC64_ECMA));
+                result.setResponse(response);
                 setCRC(result, response);
                 return result;
             } finally {
@@ -941,6 +942,7 @@ public CopyObjectResult parse(ResponseMessage response) throws ResponseParseExce
                 CopyObjectResult result = parseCopyObjectResult(response.getContent());
                 result.setVersionId(response.getHeaders().get(OSSHeaders.OSS_HEADER_VERSION_ID));
                 result.setRequestId(response.getRequestId());
+                result.setResponse(response);
                 return result;
             } finally {
                 safeCloseResponse(response);
@@ -1036,6 +1038,7 @@ public InitiateMultipartUploadResult parse(ResponseMessage response) throws Resp
             try {
                 InitiateMultipartUploadResult result = parseInitiateMultipartUpload(response.getContent());
                 result.setRequestId(response.getRequestId());
+                result.setResponse(response);
                 return result;
             } finally {
                 safeCloseResponse(response);
@@ -1089,6 +1092,7 @@ public UploadPartCopyResult parse(ResponseMessage response) throws ResponseParse
                 result.setPartNumber(partNumber);
                 result.setETag(trimQuotes(parseUploadPartCopy(response.getContent())));
                 result.setRequestId(response.getRequestId());
+                result.setResponse(response);
                 return result;
             } finally {
                 safeCloseResponse(response);
@@ -2424,6 +2428,9 @@ public static BucketInfo parseGetBucketInfo(InputStream responseBody) throws Res
                 if (sseElem.getChild("KMSMasterKeyID") != null) {
                     applyServerSideEncryptionByDefault.setKMSMasterKeyID(sseElem.getChildText("KMSMasterKeyID"));
                 }
+                if (sseElem.getChild("KMSDataEncryption") != null) {
+                    applyServerSideEncryptionByDefault.setKMSDataEncryption(sseElem.getChildText("KMSDataEncryption"));
+                }
                 serverSideEncryptionConfiguration
                     .setApplyServerSideEncryptionByDefault(applyServerSideEncryptionByDefault);
 
@@ -2721,6 +2728,9 @@ public static ServerSideEncryptionConfiguration parseGetBucketEncryption(InputSt
             Element sseElem = root.getChild("ApplyServerSideEncryptionByDefault");
             sseByDefault.setSSEAlgorithm(sseElem.getChildText("SSEAlgorithm"));
             sseByDefault.setKMSMasterKeyID(sseElem.getChildText("KMSMasterKeyID"));
+            if (sseElem.getChild("KMSDataEncryption") != null) {
+                sseByDefault.setKMSDataEncryption(sseElem.getChildText("KMSDataEncryption"));
+            }
             configuration.setApplyServerSideEncryptionByDefault(sseByDefault);
 
             return configuration;
diff --git a/src/main/java/com/aliyun/oss/model/DataEncryptionAlgorithm.java b/src/main/java/com/aliyun/oss/model/DataEncryptionAlgorithm.java
@@ -0,0 +1,33 @@
+package com.aliyun.oss.model;
+
+/**
+ * Server-side Data Encryption Algorithm.
+ */
+public enum DataEncryptionAlgorithm {
+    SM4("SM4");
+
+    private final String algorithm;
+
+    public String getAlgorithm() {
+        return algorithm;
+    }
+
+    private DataEncryptionAlgorithm(String algorithm) {
+        this.algorithm = algorithm;
+    }
+
+    @Override
+    public String toString() {
+        return algorithm;
+    }
+
+    public static DataEncryptionAlgorithm fromString(String algorithm) {
+        if (algorithm == null)
+            return null;
+        for (DataEncryptionAlgorithm e: values()) {
+            if (e.getAlgorithm().equals(algorithm))
+                return e;
+        }
+        throw new IllegalArgumentException("Unsupported data encryption algorithm " + algorithm);
+    }
+}
diff --git a/src/main/java/com/aliyun/oss/model/ObjectMetadata.java b/src/main/java/com/aliyun/oss/model/ObjectMetadata.java
@@ -320,6 +320,25 @@ public void setServerSideEncryptionKeyId(String serverSideEncryptionKeyId) {
         metadata.put(OSSHeaders.OSS_SERVER_SIDE_ENCRYPTION_KEY_ID, serverSideEncryptionKeyId);
     }
 
+    /**
+     * Sets the object's server side data encryption.
+     *
+     * @param serverSideDataEncryption
+     *            The server side data encryption.
+     */
+    public void setServerSideDataEncryption(String serverSideDataEncryption) {
+        metadata.put(OSSHeaders.OSS_SERVER_SIDE_DATA_ENCRYPTION, serverSideDataEncryption);
+    }
+
+    /**
+     * Gets the object's server side data encryption.
+     *
+     * @return The server side data encryption. Null means no data encryption.
+     */
+    public String getServerSideDataEncryption() {
+        return (String) metadata.get(OSSHeaders.OSS_SERVER_SIDE_DATA_ENCRYPTION);
+    }
+
     /**
      * Gets the object's storage type, which only supports "normal" and
      * "appendable" for now.
diff --git a/src/main/java/com/aliyun/oss/model/SSEAlgorithm.java b/src/main/java/com/aliyun/oss/model/SSEAlgorithm.java
@@ -25,6 +25,7 @@
 public enum SSEAlgorithm {
     AES256("AES256"),
     KMS("KMS"),
+    SM4("SM4"),
     ;
 
     private final String algorithm;
diff --git a/src/main/java/com/aliyun/oss/model/ServerSideEncryptionByDefault.java b/src/main/java/com/aliyun/oss/model/ServerSideEncryptionByDefault.java
@@ -27,7 +27,7 @@ public class ServerSideEncryptionByDefault {
 
     private String sseAlgorithm;
     private String kmsMasterKeyID;
-
+    private String kmsDataEncryption;
     /**
      * Creates a default instance.
      * 
@@ -126,5 +126,31 @@ public ServerSideEncryptionByDefault withKMSMasterKeyID(String kmsMasterKeyID) {
         setKMSMasterKeyID(kmsMasterKeyID);
         return this;
     }
-    
+
+    /**
+     * @return This parameter is allowed if SSEAlgorithm is kms.
+     */
+    public String getKMSDataEncryption() {
+        return kmsDataEncryption;
+    }
+
+    /**
+     * Sets the KMS data encryption. This parameter is allowed if SSEAlgorithm is kms.
+     *
+     * @param kmsDataEncryption KMS data encryption to use.
+     */
+    public void setKMSDataEncryption(String kmsDataEncryption) {
+        this.kmsDataEncryption = kmsDataEncryption;
+    }
+
+    /**
+     * Sets the KMS data encryption. This parameter is allowed if SSEAlgorithm is kms.
+     *
+     * @param kmsDataEncryption KMS data encryption to use.
+     * @return This object for method chaining.
+     */
+    public ServerSideEncryptionByDefault withKMSDataEncryption(String kmsDataEncryption) {
+        setKMSDataEncryption(kmsDataEncryption);
+        return this;
+    }
 }
diff --git a/src/test/java/com/aliyun/oss/common/parser/ResponseParsersTest.java b/src/test/java/com/aliyun/oss/common/parser/ResponseParsersTest.java
@@ -3852,4 +3852,101 @@ public void testparseListBucketInventoryConfigurations() {
             Assert.assertTrue(false);
         }
     }
+
+    @Test
+    public void testGetBucketEncryptionResponseParser() {
+        InputStream instream = null;
+        String respBody;
+
+        respBody = "" +
+                "<ServerSideEncryptionRule>\n" +
+                "  <ApplyServerSideEncryptionByDefault>\n" +
+                "    <SSEAlgorithm>KMS</SSEAlgorithm>\n" +
+                "    <KMSMasterKeyID>id</KMSMasterKeyID>\n" +
+                "    <KMSDataEncryption>SM4</KMSDataEncryption>\n" +
+                "  </ApplyServerSideEncryptionByDefault>\n" +
+                "</ServerSideEncryptionRule>";
+
+        try {
+            instream = new ByteArrayInputStream(respBody.getBytes("utf-8"));
+        } catch (UnsupportedEncodingException e) {
+            Assert.fail("UnsupportedEncodingException");
+        }
+
+        try {
+            ResponseMessage response = new ResponseMessage(null);
+            response.setContent(instream);
+            ResponseParsers.GetBucketEncryptionResponseParser parser = new ResponseParsers.GetBucketEncryptionResponseParser();
+            ServerSideEncryptionConfiguration config = parser.parse(response);
+            Assert.assertEquals(config.getApplyServerSideEncryptionByDefault().getSSEAlgorithm(), "KMS");
+            Assert.assertEquals(config.getApplyServerSideEncryptionByDefault().getKMSMasterKeyID(), "id");
+            Assert.assertEquals(config.getApplyServerSideEncryptionByDefault().getKMSDataEncryption(), "SM4");
+            Assert.assertTrue(true);
+        } catch (ResponseParseException e) {
+            Assert.assertTrue(false);
+        } catch (Exception e) {
+            Assert.assertTrue(false);
+        }
+
+        respBody = "" +
+                "<ServerSideEncryptionRule>\n" +
+                "  <ApplyServerSideEncryptionByDefault>\n" +
+                "    <SSEAlgorithm>KMS</SSEAlgorithm>\n" +
+                "    <KMSMasterKeyID>id</KMSMasterKeyID>\n" +
+                "  </ApplyServerSideEncryptionByDefault>\n" +
+                "</ServerSideEncryptionRule>";
+
+        try {
+            instream = new ByteArrayInputStream(respBody.getBytes("utf-8"));
+        } catch (UnsupportedEncodingException e) {
+            Assert.fail("UnsupportedEncodingException");
+        }
+
+        try {
+            ResponseMessage response = new ResponseMessage(null);
+            response.setContent(instream);
+            ResponseParsers.GetBucketEncryptionResponseParser parser = new ResponseParsers.GetBucketEncryptionResponseParser();
+            ServerSideEncryptionConfiguration config = parser.parse(response);
+            Assert.assertEquals(config.getApplyServerSideEncryptionByDefault().getSSEAlgorithm(), "KMS");
+            Assert.assertEquals(config.getApplyServerSideEncryptionByDefault().getKMSMasterKeyID(), "id");
+            Assert.assertEquals(config.getApplyServerSideEncryptionByDefault().getKMSDataEncryption(), null);
+            Assert.assertTrue(true);
+        } catch (ResponseParseException e) {
+            Assert.assertTrue(false);
+        } catch (Exception e) {
+            Assert.assertTrue(false);
+        }
+
+        respBody = "invalid";
+
+        try {
+            instream = new ByteArrayInputStream(respBody.getBytes("utf-8"));
+        } catch (UnsupportedEncodingException e) {
+            Assert.fail("UnsupportedEncodingException");
+        }
+
+        try {
+            ResponseMessage response = new ResponseMessage(null);
+            response.setContent(instream);
+            ResponseParsers.GetBucketEncryptionResponseParser parser = new ResponseParsers.GetBucketEncryptionResponseParser();
+            parser.parse(response);
+            Assert.assertTrue(false);
+        } catch (ResponseParseException e) {
+            Assert.assertTrue(true);
+        } catch (Exception e) {
+            Assert.assertTrue(false);
+        }
+
+        try {
+            ResponseMessage response = new ResponseMessage(null);
+            response.setContent(null);
+            ResponseParsers.GetBucketEncryptionResponseParser parser = new ResponseParsers.GetBucketEncryptionResponseParser();
+            parser.parse(response);
+            Assert.assertTrue(false);
+        } catch (ResponseParseException e) {
+            Assert.assertTrue(true);
+        } catch (Exception e) {
+            Assert.assertTrue(false);
+        }
+    }
 }
diff --git a/src/test/java/com/aliyun/oss/integrationtests/BucketEncryptionTest.java b/src/test/java/com/aliyun/oss/integrationtests/BucketEncryptionTest.java
diff --git a/src/test/java/com/aliyun/oss/integrationtests/ObjectEncryptionTest.java b/src/test/java/com/aliyun/oss/integrationtests/ObjectEncryptionTest.java
diff --git a/src/test/java/com/aliyun/oss/integrationtests/TestUtils.java b/src/test/java/com/aliyun/oss/integrationtests/TestUtils.java

Original file line number	Diff line number	Diff line change
`@@ -937,6 +937,9 @@ public byte[] marshall(SetBucketEncryptionRequest setBucketEncryptionRequest) {`
`937`	`937`	`} else {`
`938`	`938`	`xmlBody.append("<KMSMasterKeyID></KMSMasterKeyID>");`
`939`	`939`	`}`
	`940`	`+ if (sseByDefault.getKMSDataEncryption() != null) {`
	`941`	`+ xmlBody.append("<KMSDataEncryption>" + sseByDefault.getKMSDataEncryption() + "</KMSDataEncryption>");`
	`942`	`+ }`
`940`	`943`
`941`	`944`	`xmlBody.append("</ApplyServerSideEncryptionByDefault>");`
`942`	`945`	`xmlBody.append("</ServerSideEncryptionRule>");`
Original file line number	Diff line number	Diff line change
`@@ -25,6 +25,7 @@`
`25`	`25`	`public enum SSEAlgorithm {`
`26`	`26`	`AES256("AES256"),`
`27`	`27`	`KMS("KMS"),`
	`28`	`+ SM4("SM4"),`
`28`	`29`	`;`
`29`	`30`
`30`	`31`	`private final String algorithm;`