fixed all changes requested from PR

Author: Anirav Kareddy

src/examples/java/software/amazon/encryption/s3/examples/HelloWorldProgramExample.java

@@ -0,0 +1,43 @@
+package software.amazon.encryption.s3.examples;
+
+import software.amazon.awssdk.core.sync.RequestBody;
+import software.amazon.awssdk.services.s3.S3Client;
+import software.amazon.awssdk.services.s3.model.PutObjectRequest;
+import software.amazon.encryption.s3.S3EncryptionClient;
+import software.amazon.awssdk.regions.Region;
+
+public class HelloWorldProgramExample {
+    public static void main(String[] args) {
+        //Create AWS KMS key (go to KMS to do this):
+        String kmsKeyId = "arn:aws:kms:us-east-2:597133212884:key/1483518b-144f-48d7-84ce-735ff8d6da98";
+        //Think of object as the "plaintext message"
+        String object = "Hello World";
+        //Created new bucket for this program...had to update permissions to fix bugs
+        String bucket = "testing-bucket-hello-world";
+        //Object Key: Identifier of object in S3
+        String object_key = "hello-world.txt";
+
+        try (S3Client v3Client = S3EncryptionClient.builder()
+                .kmsKeyId(kmsKeyId)
+                .enableLegacyUnauthenticatedModes(true)
+                .region(Region.US_EAST_2)
+                .build()) {
+
+            v3Client.putObject(PutObjectRequest.builder()
+                    .bucket(bucket)
+                    .key(object_key)
+                    .build(), RequestBody.fromString(object));
+
+            String output = v3Client.getObjectAsBytes(builder -> builder
+                    .bucket(bucket)
+                    .key(object_key)
+            ).asUtf8String();
+
+            System.out.println("Object stored in S3 is: "+output);
+
+        } catch (Exception e) {
+            throw new RuntimeException(e);
+        }
+    }
+}
+

src/main/java/software/amazon/encryption/s3/internal/ContentMetadataEncodingStrategy.java

@@ -1,3 +1,5 @@
+// Copyright Amazon.com Inc. or its affiliates. All Rights Reserved.
+// SPDX-License-Identifier: Apache-2.0
 package software.amazon.encryption.s3.internal;
 
 import software.amazon.awssdk.protocols.jsoncore.JsonWriter;

src/main/java/software/amazon/encryption/s3/internal/ConvertSDKRequests.java

@@ -13,7 +13,9 @@
 public class ConvertSDKRequests {
 
   public static PutObjectRequest convertRequest(CreateMultipartUploadRequest request) {
-
+    /*Converts a CreateMultipartUploadRequest into a PutObjectRequest by setting optional fields needed for
+    putInstructionFile operation.
+     */
     final PutObjectRequest.Builder output = PutObjectRequest.builder();
     request
             .toBuilder()
@@ -119,13 +121,13 @@ public static PutObjectRequest convertRequest(CreateMultipartUploadRequest reque
                     // Rather than silently dropping the value,
                     // we loudly signal that we don't know how to handle this field.
                     throw new IllegalArgumentException(
-                            f.locationName() + " is an unknown field. " +
+                            f.memberName() + " is an unknown field. " +
                                     "The S3 Encryption Client does not recognize this option and cannot set it on the PutObjectRequest." +
                                     "This may be a new S3 feature." +
                                     "Please report this to the Amazon S3 Encryption Client for Java: " +
                                     "https://github.com/aws/amazon-s3-encryption-client-java/issues." +
-                                    "To work around this issue you can disable multi part upload," +
-                                    "use the Async client, or not set this value on PutObject." +
+                                    "To work around this issue, you can disable Instruction File on PutObject or disable" +
+                                    "multi part upload, or use the Async client, or not set this value on PutObject." +
                                     "You may be able to update this value after the PutObject request completes."
                     );
                 }
@@ -138,7 +140,9 @@ public static PutObjectRequest convertRequest(CreateMultipartUploadRequest reque
   }
 
   public static CreateMultipartUploadRequest convertRequest(PutObjectRequest request) {
-
+     /*Converts a PutObjectRequest into a CreateMultipartUploadRequest by setting optional fields needed for high-level
+     multipart upload operation.
+     */
     final CreateMultipartUploadRequest.Builder output = CreateMultipartUploadRequest.builder();
     request
       .toBuilder()
@@ -251,7 +255,7 @@ public static CreateMultipartUploadRequest convertRequest(PutObjectRequest reque
               // Rather than silently dropping the value,
               // we loudly signal that we don't know how to handle this field.
               throw new IllegalArgumentException(
-                f.locationName() + " is an unknown field. " +
+                f.memberName() + " is an unknown field. " +
                   "The S3 Encryption Client does not recognize this option and cannot set it on the CreateMultipartUploadRequest." +
                   "This may be a new S3 feature." +
                   "Please report this to the Amazon S3 Encryption Client for Java: " +

src/main/java/software/amazon/encryption/s3/internal/MultipartUploadObjectPipeline.java

@@ -262,6 +262,9 @@ public MultipartUploadObjectPipeline build() {
                         .secureRandom(_secureRandom)
                         .build();
             }
+            if(_instructionFileConfig == null) {
+                _instructionFileConfig = InstructionFileConfig.builder().build();
+            }
             _contentMetadataEncodingStrategy = new ContentMetadataEncodingStrategy(_instructionFileConfig);
             return new MultipartUploadObjectPipeline(this);
         }

src/main/java/software/amazon/encryption/s3/internal/PutEncryptedObjectPipeline.java

@@ -121,6 +121,9 @@ public PutEncryptedObjectPipeline build() {
                         .secureRandom(_secureRandom)
                         .build();
             }
+            if(_instructionFileConfig == null) {
+                _instructionFileConfig = InstructionFileConfig.builder().build();
+            }
             _contentMetadataEncodingStrategy = new ContentMetadataEncodingStrategy(_instructionFileConfig);
 
             return new PutEncryptedObjectPipeline(this);

src/test/java/software/amazon/encryption/s3/S3AsyncEncryptionClientTest.java

@@ -45,6 +45,7 @@
 import software.amazon.awssdk.services.s3.model.PutObjectResponse;
 import software.amazon.awssdk.services.s3.model.S3Exception;
 import software.amazon.awssdk.services.s3.model.StorageClass;
+import software.amazon.awssdk.services.s3.model.StorageClassAnalysisDataExport;
 import software.amazon.awssdk.services.s3.multipart.MultipartConfiguration;
 import software.amazon.encryption.s3.internal.ConvertSDKRequests;
 import software.amazon.encryption.s3.internal.InstructionFileConfig;
@@ -883,8 +884,8 @@ public void testAsyncInstructionFileConfigMultipart() {
     public void testAsyncInstructionFileConfigMultipartWithOptions() {
         final String objectKey = appendTestSuffix("test-multipart-async-instruction-file-config-options");
         final String input = "SimpleTestOfV3EncryptionClient";
+        final StorageClass storageClass = StorageClass.STANDARD_IA;
 
-        AwsCredentialsProvider credentials = DefaultCredentialsProvider.create();
         S3Client wrappedClient = S3Client.create();
         S3AsyncClient v3Client = S3AsyncEncryptionClient.builder()
                 .instructionFileConfig(InstructionFileConfig.builder()
@@ -893,25 +894,16 @@ public void testAsyncInstructionFileConfigMultipartWithOptions() {
                         .build())
                 .kmsKeyId(KMS_KEY_ID)
                 .enableMultipartPutObject(true)
-                .credentialsProvider(credentials)
                 .build();
-        CreateMultipartUploadRequest multipartUploadRequest = CreateMultipartUploadRequest.builder()
+        PutObjectRequest putObjectRequest = PutObjectRequest.builder()
                 .bucket(BUCKET)
                 .key(objectKey)
-                .storageClass(StorageClass.STANDARD_IA)
+                .storageClass(storageClass)
                 .build();
-        assertNotNull(multipartUploadRequest);
-
-        PutObjectRequest putObjectRequest = ConvertSDKRequests.convertRequest(multipartUploadRequest);
-
-        assertNotNull(putObjectRequest);
-        assertEquals(putObjectRequest.storageClassAsString(), multipartUploadRequest.storageClassAsString());
 
         CompletableFuture<PutObjectResponse> putObjectResponse = v3Client.putObject(putObjectRequest, AsyncRequestBody.fromString(input));
         putObjectResponse.join();
 
-        assertNotNull(putObjectResponse);
-
         ResponseBytes<GetObjectResponse> instructionFileResponse = wrappedClient.getObjectAsBytes(builder -> builder
                 .bucket(BUCKET)
                 .key(objectKey + ".instruction")
@@ -920,12 +912,8 @@ public void testAsyncInstructionFileConfigMultipartWithOptions() {
         Map<String, String> metadata = instructionFileResponse.response().metadata();
         assertTrue(metadata.containsKey("x-amz-crypto-instr-file"));
 
-        HeadObjectResponse instructionHeadResponse = wrappedClient.headObject(builder -> builder
-                .bucket(BUCKET)
-                .key(objectKey + ".instruction")
-                .build());
-        assertNotNull(instructionHeadResponse.storageClass());
-        assertEquals(instructionHeadResponse.storageClassAsString(), StorageClass.STANDARD_IA.toString());
+        assertEquals(storageClass.toString(), instructionFileResponse.response().storageClassAsString());
+
         CompletableFuture<ResponseBytes<GetObjectResponse>> futureGetObj = v3Client.getObject(builder -> builder
                 .bucket(BUCKET)
                 .key(objectKey)
@@ -934,7 +922,7 @@ public void testAsyncInstructionFileConfigMultipartWithOptions() {
         assertNotNull(getResponse);
         assertEquals(input, getResponse.asUtf8String());
 
-        assertEquals(getResponse.response().storageClassAsString(), StorageClass.STANDARD_IA.toString());
+        assertEquals(getResponse.response().storageClassAsString(), storageClass.toString());
 
         deleteObject(BUCKET, objectKey, v3Client);
         v3Client.close();

src/test/java/software/amazon/encryption/s3/S3EncryptionClientCompatibilityTest.java

@@ -138,7 +138,6 @@ public void AesWrapV1toV3() {
 
         // Asserts
         final String input = "AesGcmV1toV3";
-        System.out.println(System.getenv("AWS_S3EC_TEST_BUCKET"));
         v1Client.putObject(BUCKET, objectKey, input);
 
         ResponseBytes<GetObjectResponse> objectResponse = v3Client.getObjectAsBytes(builder -> builder
@@ -222,39 +221,6 @@ public void AesGcmV2toV3WithInstructionFile() {
         deleteObject(BUCKET, objectKey, v3Client);
         v3Client.close();
     }
-    @Test
-    public void multipartPutObjectWithOptionsAndInstructionFileV2() throws IOException, InterruptedException, ExecutionException {
-        final String objectKey = appendTestSuffix("multipart-put-object-with-options-and-instruction-file-v2");
-        final long fileSizeLimit = 1024 * 1024 * 10; //sets file size limit to 10 MB
-        final InputStream inputStream = new BoundedInputStream(fileSizeLimit);
-
-        //Now, we will create encryption client (v2) with instruction file config enabled and multipart upload enabled
-        EncryptionMaterialsProvider materialsProvider =
-                new StaticEncryptionMaterialsProvider(new EncryptionMaterials(AES_KEY));
-        CryptoConfigurationV2 cryptoConfig =
-                new CryptoConfigurationV2(CryptoMode.StrictAuthenticatedEncryption)
-                        .withStorageMode(CryptoStorageMode.InstructionFile);
-        AmazonS3EncryptionV2 v2Client = AmazonS3EncryptionClientV2.encryptionBuilder()
-                .withCryptoConfiguration(cryptoConfig)
-                .withEncryptionMaterialsProvider(materialsProvider)
-                .build();
-        UploadObjectRequest uploadObjectRequest = new UploadObjectRequest(BUCKET, objectKey, inputStream, new ObjectMetadata())
-                .withPartSize(1024 * 1024 * 5)
-                .withStorageClass(StorageClass.StandardInfrequentAccess);
-        v2Client.uploadObject(uploadObjectRequest);
-
-        //Assert that the storage class on main object matches "GLACIER"
-        GetObjectMetadataRequest mainObjectRequest = new GetObjectMetadataRequest(BUCKET, objectKey);
-        ObjectMetadata  mainObjectMetadata = v2Client.getObjectMetadata(mainObjectRequest);
-        assertEquals("STANDARD_IA", mainObjectMetadata.getStorageClass());
-
-        //Assert that the instruction file does not contain storage class (V2)
-        GetObjectMetadataRequest  instructionObjectRequest = new GetObjectMetadataRequest(BUCKET, objectKey + ".instruction");
-        ObjectMetadata instructionFileMetadata = v2Client.getObjectMetadata(instructionObjectRequest);
-
-        assertNotEquals("STANDARD_IA", instructionFileMetadata.getStorageClass());
-
-    }
 
     @Test
     public void AesGcmV3toV1() {
@@ -633,7 +599,7 @@ public void KmsV1toV3() {
         assertEquals(input, output);
 
         // Cleanup
-//        deleteObject(BUCKET, objectKey, v3Client);
+        deleteObject(BUCKET, objectKey, v3Client);
         v3Client.close();
     }
 

src/test/java/software/amazon/encryption/s3/S3EncryptionClientInstructionFileTest.java

@@ -21,6 +21,7 @@
 import software.amazon.awssdk.services.s3.model.GetObjectResponse;
 import software.amazon.awssdk.services.s3.model.NoSuchKeyException;
 import software.amazon.awssdk.services.s3.model.SdkPartType;
+import software.amazon.awssdk.services.s3.model.StorageClass;
 import software.amazon.awssdk.services.s3.model.UploadPartRequest;
 import software.amazon.awssdk.services.s3.model.UploadPartResponse;
 import software.amazon.encryption.s3.internal.InstructionFileConfig;
@@ -96,7 +97,7 @@ public void testInstructionFileExists() {
 
     @Test
     public void testDisabledClientFails() {
-        final String objectKey = appendTestSuffix("instruction-file-put-object");
+        final String objectKey = appendTestSuffix("instruction-file-put-object-disabled-fails");
         final String input = "SimpleTestOfV3EncryptionClient";
         S3Client wrappedClient = S3Client.create();
         S3Client s3Client = S3EncryptionClient.builder()
@@ -144,7 +145,7 @@ public void testDisabledClientFails() {
      */
     @Test
     public void testInstructionFileDelete() {
-        final String objectKey = appendTestSuffix("instruction-file-put-object");
+        final String objectKey = appendTestSuffix("instruction-file-put-object-delete");
         final String input = "SimpleTestOfV3EncryptionClient";
         S3Client wrappedClient = S3Client.create();
         S3Client s3Client = S3EncryptionClient.builder()
@@ -318,6 +319,7 @@ public void testMultipartPutWithInstructionFile() throws IOException, NoSuchAlgo
         final long fileSizeLimit = 1024 * 1024 * 50; //50 MB
         final InputStream inputStream = new BoundedInputStream(fileSizeLimit);
         final InputStream objectStreamForResult = new BoundedInputStream(fileSizeLimit);
+        final StorageClass storageClass = StorageClass.STANDARD_IA;
 
         S3Client wrappedClient = S3Client.create();
         S3Client s3Client = S3EncryptionClient.builder()
@@ -326,6 +328,7 @@ public void testMultipartPutWithInstructionFile() throws IOException, NoSuchAlgo
                         .enableInstructionFilePutObject(true)
                         .build())
                 .kmsKeyId(KMS_KEY_ID)
+                .enableMultipartPutObject(true)
                 .build();
 
         Map<String, String> encryptionContext = new HashMap<>();
@@ -334,6 +337,7 @@ public void testMultipartPutWithInstructionFile() throws IOException, NoSuchAlgo
 
         s3Client.putObject(builder -> builder
                 .bucket(BUCKET)
+                .storageClass(storageClass)
                 .overrideConfiguration(withAdditionalConfiguration(encryptionContext))
                 .key(object_key), RequestBody.fromInputStream(inputStream, fileSizeLimit));
 
@@ -343,6 +347,7 @@ public void testMultipartPutWithInstructionFile() throws IOException, NoSuchAlgo
                 .key(object_key + ".instruction")
                 .build());
         assertTrue(directInstGetResponse.response().metadata().containsKey("x-amz-crypto-instr-file"));
+        assertEquals(storageClass.toString(), directInstGetResponse.response().storageClassAsString());
 
         ResponseInputStream<GetObjectResponse> getResponse = s3Client.getObject(builder -> builder
                 .bucket(BUCKET)
@@ -364,6 +369,7 @@ public void testLowLevelMultipartPutWithInstructionFile() throws NoSuchAlgorithm
         final int PART_SIZE = 10 * 1024 * 1024;
         final InputStream inputStream = new BoundedInputStream(fileSizeLimit);
         final InputStream objectStreamForResult = new BoundedInputStream(fileSizeLimit);
+        final StorageClass storageClass = StorageClass.STANDARD_IA;
 
         KeyPairGenerator keyPairGen = KeyPairGenerator.getInstance("RSA");
         keyPairGen.initialize(2048);
@@ -382,7 +388,7 @@ public void testLowLevelMultipartPutWithInstructionFile() throws NoSuchAlgorithm
 
 
         CreateMultipartUploadResponse initiateResult = v3Client.createMultipartUpload(builder ->
-                builder.bucket(BUCKET).key(object_key));
+                builder.bucket(BUCKET).key(object_key).storageClass(storageClass));
 
         List<CompletedPart> partETags = new ArrayList<>();
 
@@ -443,6 +449,7 @@ public void testLowLevelMultipartPutWithInstructionFile() throws NoSuchAlgorithm
                 .key(object_key + ".instruction")
                 .build());
         assertTrue(directInstGetResponse.response().metadata().containsKey("x-amz-crypto-instr-file"));
+        assertEquals(storageClass.toString(), directInstGetResponse.response().storageClassAsString());
 
         ResponseInputStream<GetObjectResponse> getResponse = v3Client.getObject(builder -> builder
                 .bucket(BUCKET)

src/test/java/software/amazon/encryption/s3/internal/ConvertSDKRequestsTest.java

@@ -3,7 +3,6 @@
 import software.amazon.awssdk.awscore.AwsRequestOverrideConfiguration;
 import software.amazon.awssdk.services.s3.model.*;
 
-import java.awt.event.ComponentListener;
 import java.time.Duration;
 import java.time.Instant;
 import java.util.HashMap;
@@ -486,7 +485,7 @@ public void testBasicConvertMultipartUploadRequest() {
   }
 
   @Test
-  public void testConversionAllFields() {
+  public void testConversionAllFieldsMultipartUploadRequestToPutObjectRequest() {
     Map<String, String> metadata = new HashMap<String, String>();
     metadata.put("test-key-1", "test-value-1");
     metadata.put("test-key-2", "test-value-2");