Add Unit Test Classes, Add Mockito dependency (#14)

imabhichow · web-flow · commit 0cd3f8b1b65d · 2022-09-07T14:37:17.000-07:00
* Add Unit Test Classes, Add Mockito dependency.
diff --git a/pom.xml b/pom.xml
@@ -75,6 +75,14 @@
     </dependency>
 
     <!-- Test Dependencies -->
+    <!-- https://mvnrepository.com/artifact/org.mockito/mockito-core -->
+    <dependency>
+      <groupId>org.mockito</groupId>
+      <artifactId>mockito-core</artifactId>
+      <version>4.6.1</version>
+      <scope>test</scope>
+    </dependency>
+
     <dependency>
       <groupId>org.junit.jupiter</groupId>
       <artifactId>junit-jupiter</artifactId>
diff --git a/src/test/java/software/amazon/encryption/s3/S3EncryptionClientTest.java b/src/test/java/software/amazon/encryption/s3/S3EncryptionClientTest.java
@@ -1,5 +1,6 @@
 package software.amazon.encryption.s3;
 
+import org.junit.jupiter.api.BeforeAll;
 import org.junit.jupiter.api.Test;
 import software.amazon.awssdk.core.ResponseBytes;
 import software.amazon.awssdk.core.sync.RequestBody;
@@ -14,8 +15,7 @@
 import java.util.HashMap;
 import java.util.Map;
 
-import static org.junit.jupiter.api.Assertions.assertEquals;
-import static org.junit.jupiter.api.Assertions.assertThrows;
+import static org.junit.jupiter.api.Assertions.*;
 import static software.amazon.encryption.s3.S3EncryptionClient.withAdditionalEncryptionContext;
 
 /**
@@ -29,6 +29,41 @@ public class S3EncryptionClientTest {
     // This alias must point to the same key as KMS_KEY_ID
     private static final String KMS_KEY_ALIAS = System.getenv("AWS_S3EC_TEST_KMS_KEY_ALIAS");
 
+    private static SecretKey AES_KEY;
+    private static KeyPair RSA_KEY_PAIR;
+
+    @BeforeAll
+    public static void setUp() throws NoSuchAlgorithmException {
+        KeyGenerator keyGen = KeyGenerator.getInstance("AES");
+        keyGen.init(256);
+        AES_KEY = keyGen.generateKey();
+
+        KeyPairGenerator keyPairGen = KeyPairGenerator.getInstance("RSA");
+        keyPairGen.initialize(2048);
+        RSA_KEY_PAIR = keyPairGen.generateKeyPair();
+    }
+
+    @Test
+    public void s3EncryptionClientWithMultipleKeyringsFails() {
+        assertThrows(S3EncryptionClientException.class, () -> S3EncryptionClient.builder()
+                .aesKey(AES_KEY)
+                .rsaKeyPair(RSA_KEY_PAIR)
+                .build());
+    }
+
+    @Test
+    public void s3EncryptionClientWithNoKeyringsFails() {
+        assertThrows(S3EncryptionClientException.class, () -> S3EncryptionClient.builder()
+                .build());
+    }
+
+    @Test
+    public void s3EncryptionClientWithNoLegacyKeyringsFails() {
+        assertThrows(S3EncryptionClientException.class, () -> S3EncryptionClient.builder()
+                .enableLegacyModes(true)
+                .build());
+    }
+
     @Test
     public void KmsWithAliasARN() {
         S3Client v3Client = S3EncryptionClient.builder()
diff --git a/src/test/java/software/amazon/encryption/s3/internal/ApiNameVersionTest.java b/src/test/java/software/amazon/encryption/s3/internal/ApiNameVersionTest.java
@@ -0,0 +1,17 @@
+package software.amazon.encryption.s3.internal;
+
+import org.junit.jupiter.api.Test;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+
+public class ApiNameVersionTest {
+
+    private final static String EXPECTED_API_NAME = "AwsS3Encrypt";
+    private final static String EXPECTED_API_VERSION = "unknown";
+
+    @Test
+    public void testApiNameWithVersion() {
+        assertEquals(EXPECTED_API_NAME, ApiNameVersion.apiNameWithVersion().name());
+        assertEquals(EXPECTED_API_VERSION, ApiNameVersion.apiNameWithVersion().version());
+    }
+}
diff --git a/src/test/java/software/amazon/encryption/s3/internal/ContentMetadataStrategyTest.java b/src/test/java/software/amazon/encryption/s3/internal/ContentMetadataStrategyTest.java
@@ -0,0 +1,59 @@
+package software.amazon.encryption.s3.internal;
+
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+import software.amazon.awssdk.services.s3.S3Client;
+import software.amazon.awssdk.services.s3.model.GetObjectRequest;
+import software.amazon.awssdk.services.s3.model.GetObjectResponse;
+import software.amazon.encryption.s3.algorithms.AlgorithmSuite;
+
+import java.util.Arrays;
+import java.util.HashMap;
+import java.util.Map;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.mockito.Mockito.mock;
+
+public class ContentMetadataStrategyTest {
+
+    private S3Client mockS3client;
+    private Map<String, String> metadata = new HashMap<>();
+    private GetObjectResponse getObjectResponse;
+    private ContentMetadata expectedContentMetadata;
+    private GetObjectRequest getObjectRequest;
+
+    @BeforeEach
+    public void setUp() {
+        mockS3client = mock(S3Client.class);
+        metadata.put("x-amz-tag-len" , "128");
+        metadata.put("x-amz-wrap-alg" , "AES/GCM");
+        metadata.put("x-amz-cek-alg" , "AES/GCM/NoPadding");
+        metadata.put("x-amz-key-v2" , "dYHaV24t2HuNACA50fWTh2xpMDk+kpnfhHBcaEonAR3kte6WTmV9uOUxFgyVpz+2dAcJQDj6AKrxKElf");
+        metadata.put("x-amz-iv" , "j3GWQ0HQVDOkPDf+");
+        metadata.put("x-amz-matdesc" , "{}");
+        getObjectRequest = GetObjectRequest.builder()
+                .bucket("TestBucket")
+                .key("TestKey")
+                .build();
+    }
+
+    @Test
+    public void decodeWithObjectMetadata() {
+        getObjectResponse = GetObjectResponse.builder()
+                .metadata(metadata)
+                .build();
+        byte[] bytes = {-113, 113, -106, 67, 65, -48, 84, 51, -92, 60, 55, -2};
+        expectedContentMetadata = ContentMetadata.builder()
+                .algorithmSuite(AlgorithmSuite.ALG_AES_256_GCM_IV12_TAG16_NO_KDF)
+                .encryptedDataKeyAlgorithm(null)
+                .encryptedDataKeyContext(new HashMap())
+                .contentNonce(bytes)
+                .build();
+
+        ContentMetadata contentMetadata = ContentMetadataStrategy.decode(mockS3client, getObjectRequest, getObjectResponse);
+        assertEquals(expectedContentMetadata.algorithmSuite(), contentMetadata.algorithmSuite());
+        String actualContentNonce = Arrays.toString(contentMetadata.contentNonce());
+        String expectedContentNonce = Arrays.toString(expectedContentMetadata.contentNonce());
+        assertEquals(expectedContentNonce, actualContentNonce);
+    }
+}
diff --git a/src/test/java/software/amazon/encryption/s3/internal/ContentMetadataTest.java b/src/test/java/software/amazon/encryption/s3/internal/ContentMetadataTest.java
@@ -0,0 +1,66 @@
+package software.amazon.encryption.s3.internal;
+
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+import software.amazon.encryption.s3.algorithms.AlgorithmSuite;
+import software.amazon.encryption.s3.materials.EncryptedDataKey;
+
+import java.util.Arrays;
+import java.util.HashMap;
+import java.util.Map;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertNotEquals;
+import static org.mockito.Mockito.mock;
+
+public class ContentMetadataTest {
+
+    private EncryptedDataKey encryptedDataKey;
+    private ContentMetadata actualContentMetadata;
+    private String encryptedDataKeyAlgorithm;
+    private final Map<String, String> encryptedDataKeyContext = new HashMap<>();
+    private byte[] contentNonce;
+
+    @BeforeEach
+    public void setUp() {
+        encryptedDataKey = mock(EncryptedDataKey.class);
+        contentNonce = "Test String".getBytes();
+        encryptedDataKeyAlgorithm =   "Test Algorithm";
+        encryptedDataKeyContext.put("testKey", "testValue");
+
+        actualContentMetadata = ContentMetadata.builder()
+                .algorithmSuite(AlgorithmSuite.ALG_AES_256_GCM_IV12_TAG16_NO_KDF)
+                .encryptedDataKey(encryptedDataKey)
+                .contentNonce(contentNonce)
+                .encryptedDataKeyAlgorithm(encryptedDataKeyAlgorithm)
+                .encryptedDataKeyContext(encryptedDataKeyContext)
+                .build();
+    }
+
+    @Test
+    public void testAlgorithmSuite() {
+        assertEquals(AlgorithmSuite.ALG_AES_256_GCM_IV12_TAG16_NO_KDF, actualContentMetadata.algorithmSuite());
+        assertNotEquals(AlgorithmSuite.ALG_AES_256_CBC_IV16_NO_KDF, actualContentMetadata.algorithmSuite());
+    }
+
+    @Test
+    public void testEncryptedDataKey() {
+        assertEquals(encryptedDataKey, actualContentMetadata.encryptedDataKey());
+    }
+
+    @Test
+    public void testEncryptedDataKeyAlgorithm() {
+        assertEquals(encryptedDataKeyAlgorithm, actualContentMetadata.encryptedDataKeyAlgorithm());
+    }
+
+    @Test
+    public void testEncryptedDataKeyContext() {
+        assertEquals(encryptedDataKeyContext, actualContentMetadata.encryptedDataKeyContext());
+    }
+
+    @Test
+    public void testContentNonce() {
+        assertEquals(Arrays.toString(contentNonce),Arrays.toString(actualContentMetadata.contentNonce()));
+    }
+}
+
diff --git a/src/test/java/software/amazon/encryption/s3/materials/DecryptionMaterialsTest.java b/src/test/java/software/amazon/encryption/s3/materials/DecryptionMaterialsTest.java
@@ -0,0 +1,48 @@
+package software.amazon.encryption.s3.materials;
+
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+import software.amazon.awssdk.services.s3.model.GetObjectRequest;
+import software.amazon.encryption.s3.algorithms.AlgorithmSuite;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertNotEquals;
+
+public class DecryptionMaterialsTest {
+
+    private DecryptionMaterials actualDecryptionMaterials;
+    private GetObjectRequest s3Request;
+    private Map<String, String> encryptionContext = new HashMap<>();
+
+    @BeforeEach
+    public void setUp() {
+        s3Request = GetObjectRequest.builder().bucket("testBucket").key("testKey").build();
+        encryptionContext.put("testKey", "testValue");
+
+        actualDecryptionMaterials = DecryptionMaterials.builder()
+                .algorithmSuite(AlgorithmSuite.ALG_AES_256_GCM_IV12_TAG16_NO_KDF)
+                .s3Request(s3Request)
+                .encryptionContext(encryptionContext)
+                .build();
+    }
+
+    @Test
+    public  void testS3Request() {
+        assertEquals(s3Request, actualDecryptionMaterials.s3Request());
+    }
+
+    @Test
+    public void testAlgorithmSuite() {
+        assertEquals(AlgorithmSuite.ALG_AES_256_GCM_IV12_TAG16_NO_KDF, actualDecryptionMaterials.algorithmSuite());
+        assertNotEquals(AlgorithmSuite.ALG_AES_256_CBC_IV16_NO_KDF, actualDecryptionMaterials.algorithmSuite());
+    }
+
+    @Test
+    public void testEncryptionContext() {
+        assertEquals(encryptionContext, actualDecryptionMaterials.encryptionContext());
+    }
+}
+
diff --git a/src/test/java/software/amazon/encryption/s3/materials/DefaultDataKeyGeneratorTest.java b/src/test/java/software/amazon/encryption/s3/materials/DefaultDataKeyGeneratorTest.java
@@ -0,0 +1,21 @@
+package software.amazon.encryption.s3.materials;
+
+import org.junit.jupiter.api.Test;
+import software.amazon.encryption.s3.algorithms.AlgorithmSuite;
+
+import javax.crypto.SecretKey;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+
+public class DefaultDataKeyGeneratorTest {
+
+    private final DataKeyGenerator dataKeyGenerator = new DefaultDataKeyGenerator();
+
+    @Test
+    public void testGenerateDataKey() {
+        SecretKey actualSecretKey = dataKeyGenerator.generateDataKey(AlgorithmSuite.ALG_AES_256_CBC_IV16_NO_KDF);
+        assertEquals("AES", actualSecretKey.getAlgorithm());
+        actualSecretKey = dataKeyGenerator.generateDataKey(AlgorithmSuite.ALG_AES_256_CBC_IV16_NO_KDF);
+        assertEquals("AES", actualSecretKey.getAlgorithm());
+    }
+}
diff --git a/src/test/java/software/amazon/encryption/s3/materials/EncryptedDataKeyTest.java b/src/test/java/software/amazon/encryption/s3/materials/EncryptedDataKeyTest.java
@@ -0,0 +1,44 @@
+package software.amazon.encryption.s3.materials;
+
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+
+import java.util.Arrays;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+
+public class EncryptedDataKeyTest {
+
+    private EncryptedDataKey actualEncryptedDataKey;
+    private byte[] ciphertext;
+    private String keyProviderId;
+    private byte[] keyProviderInfo;
+    
+    @BeforeEach
+    public void setUp() {
+        keyProviderId = "testKeyProviderId";
+        keyProviderInfo = new byte[]{20, 10, 30, 5};
+        ciphertext = new byte[]{20, 10, 30, 5};
+
+        actualEncryptedDataKey = EncryptedDataKey.builder()
+                .keyProviderId(keyProviderId)
+                .keyProviderInfo(keyProviderInfo)
+                .ciphertext(ciphertext)
+                .build();
+    }
+
+    @Test
+    public void keyProviderId() {
+        assertEquals(keyProviderId, actualEncryptedDataKey.keyProviderId());
+    }
+
+    @Test
+    public void keyProviderInfo() {
+        assertEquals(Arrays.toString(keyProviderInfo), Arrays.toString(actualEncryptedDataKey.keyProviderInfo()));
+    }
+
+    @Test
+    public void ciphertext() {
+        assertEquals(Arrays.toString(ciphertext), Arrays.toString(actualEncryptedDataKey.ciphertext()));
+    }
+}
diff --git a/src/test/java/software/amazon/encryption/s3/materials/EncryptionMaterialsRequestTest.java b/src/test/java/software/amazon/encryption/s3/materials/EncryptionMaterialsRequestTest.java
@@ -0,0 +1,36 @@
+package software.amazon.encryption.s3.materials;
+
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+import software.amazon.awssdk.services.s3.model.PutObjectRequest;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+
+public class EncryptionMaterialsRequestTest {
+
+    private PutObjectRequest request;
+    private EncryptionMaterialsRequest actualRequestBuilder;
+    private Map<String, String> encryptionContext = new HashMap<>();
+
+    @BeforeEach
+    public void setUp() {
+        request = PutObjectRequest.builder().bucket("testBucket").key("testKey").build();
+        encryptionContext.put("Key","Value");
+
+        actualRequestBuilder = EncryptionMaterialsRequest.builder()
+                .s3Request(request).encryptionContext(encryptionContext).build();
+    }
+
+    @Test
+    public void testS3Request() {
+        assertEquals(request, actualRequestBuilder.s3Request());
+    }
+
+    @Test
+    public void testEncryptionContext() {
+        assertEquals(encryptionContext, actualRequestBuilder.encryptionContext());
+    }
+}
diff --git a/src/test/java/software/amazon/encryption/s3/materials/EncryptionMaterialsTest.java b/src/test/java/software/amazon/encryption/s3/materials/EncryptionMaterialsTest.java
