feat: Implement Ranged-Get (#31)

- Implement Ranged-get for AES/CBC/PKCS5Padding
- Implement Ranged-get for AES/CTR/NoPadding
- Add test cases for ranged-gets

Author: imabhichow

src/main/java/software/amazon/encryption/s3/algorithms/AlgorithmConstants.java

@@ -1,9 +1,24 @@
 package software.amazon.encryption.s3.algorithms;
 
 class AlgorithmConstants {
-    // Maximum length of the content that can be encrypted in GCM mode.
-    static final long GCM_MAX_CONTENT_LENGTH_BITS = (1L<<39) - 256;
+    /**
+     * The maximum number of 16-byte blocks that can be encrypted with a
+     * GCM cipher.  Note the maximum bit-length of the plaintext is (2^39 - 256),
+     * which translates to a maximum byte-length of (2^36 - 32), which in turn
+     * translates to a maximum block-length of (2^32 - 2).
+     * <p>
+     * Reference: <a href="http://csrc.nist.gov/publications/nistpubs/800-38D/SP-800-38D.pdf">
+     * NIST Special Publication 800-38D.</a>.
+     */
+    static final long GCM_MAX_CONTENT_LENGTH_BITS = (1L << 39) - 256;
 
-    // Maximum length of the content that can be encrypted in CBC mode.
-    static final long CBC_MAX_CONTENT_LENGTH_BYTES = (1L<<55);
+    /**
+     * The Maximum length of the content that can be encrypted in CBC mode.
+     */
+    static final long CBC_MAX_CONTENT_LENGTH_BYTES = (1L << 55);
+
+    /**
+     * The maximum number of bytes that can be securely encrypted per a single key using AES/CTR.
+     */
+    static final long CTR_MAX_CONTENT_LENGTH_BYTES = -1;
 }

src/main/java/software/amazon/encryption/s3/algorithms/AlgorithmSuite.java

@@ -1,6 +1,5 @@
 package software.amazon.encryption.s3.algorithms;
 
-
 public enum AlgorithmSuite {
     ALG_AES_256_GCM_IV12_TAG16_NO_KDF(0x0078,
             false,
@@ -11,6 +10,15 @@ public enum AlgorithmSuite {
             96,
             128,
             AlgorithmConstants.GCM_MAX_CONTENT_LENGTH_BITS),
+    ALG_AES_256_CTR_IV16_TAG16_NO_KDF(0x0074,
+            true,
+            "AES",
+            256,
+            "AES/CTR/NoPadding",
+            128,
+            128,
+            128,
+            AlgorithmConstants.CTR_MAX_CONTENT_LENGTH_BYTES),
     ALG_AES_256_CBC_IV16_NO_KDF(0x0070,
             true,
             "AES",
@@ -32,14 +40,14 @@ public enum AlgorithmSuite {
     private long _cipherMaxContentLengthBits;
 
     AlgorithmSuite(int id,
-            boolean isLegacy,
-            String dataKeyAlgorithm,
-            int dataKeyLengthBits,
-            String cipherName,
-            int cipherBlockSizeBits,
-            int cipherNonceLengthBits,
-            int cipherTagLengthBits,
-            long cipherMaxContentLengthBits
+                   boolean isLegacy,
+                   String dataKeyAlgorithm,
+                   int dataKeyLengthBits,
+                   String cipherName,
+                   int cipherBlockSizeBits,
+                   int cipherNonceLengthBits,
+                   int cipherTagLengthBits,
+                   long cipherMaxContentLengthBits
     ) {
         this._id = id;
         this._isLegacy = isLegacy;
@@ -79,4 +87,12 @@ public int cipherTagLengthBits() {
     public int nonceLengthBytes() {
         return _cipherNonceLengthBits / 8;
     }
+
+    public int cipherBlockSizeBytes() {
+        return _cipherBlockSizeBits / 8;
+    }
+
+    public long cipherMaxContentLengthBits() {
+        return _cipherMaxContentLengthBits;
+    }
 }

src/main/java/software/amazon/encryption/s3/internal/BufferedAesGcmContentStrategy.java

@@ -39,7 +39,9 @@ private BufferedAesGcmContentStrategy(Builder builder) {
         this._secureRandom = builder._secureRandom;
     }
 
-    public static Builder builder() { return new Builder(); }
+    public static Builder builder() {
+        return new Builder();
+    }
 
     @Override
     public EncryptedContent encryptContent(EncryptionMaterials materials, byte[] content) {
@@ -117,7 +119,8 @@ public InputStream decryptContent(ContentMetadata contentMetadata, DecryptionMat
     public static class Builder {
         private SecureRandom _secureRandom = new SecureRandom();
 
-        private Builder() {}
+        private Builder() {
+        }
 
         /**
          * Note that this does NOT create a defensive copy of the SecureRandom object. Any modifications to the

…on/s3/internal/CbcCipherInputStream.java …ption/s3/internal/CipherInputStream.javasrc/main/java/software/amazon/encryption/s3/internal/CbcCipherInputStream.java renamed to src/main/java/software/amazon/encryption/s3/internal/CipherInputStream.java src/main/java/software/amazon/encryption/s3/internal/CbcCipherInputStream.java renamed to src/main/java/software/amazon/encryption/s3/internal/CipherInputStream.java

@@ -9,10 +9,9 @@
 import java.io.InputStream;
 
 /**
- * A cipher stream for decrypting CBC encrypted data. There is nothing particularly
- * specific to CBC, but other algorithms may require additional considerations.
+ * A cipher stream for encrypting or decrypting data using an unauthenticated block cipher.
  */
-public class CbcCipherInputStream extends SdkFilterInputStream {
+public class CipherInputStream extends SdkFilterInputStream {
     private static final int MAX_RETRY_COUNT = 1000;
     private static final int DEFAULT_IN_BUFFER_SIZE = 512;
     private final Cipher cipher;
@@ -23,7 +22,7 @@ public class CbcCipherInputStream extends SdkFilterInputStream {
     private int currentPosition;
     private int maxPosition;
 
-    public CbcCipherInputStream(InputStream inputStream, Cipher cipher) {
+    public CipherInputStream(InputStream inputStream, Cipher cipher) {
         super(inputStream);
         this.cipher = cipher;
         this.inputBuffer = new byte[DEFAULT_IN_BUFFER_SIZE];
@@ -143,9 +142,8 @@ public void reset() throws IOException {
      * Reads and process the next chunk of data into memory.
      *
      * @return the length of the data chunk read and processed, or -1 if end of
-     *         stream.
-     * @throws IOException
-     *             if there is an IO exception from the underlying input stream
+     * stream.
+     * @throws IOException if there is an IO exception from the underlying input stream
      */
     private int nextChunk() throws IOException {
         abortIfNeeded();

src/main/java/software/amazon/encryption/s3/internal/ContentMetadata.java

@@ -19,6 +19,7 @@ public class ContentMetadata {
     private final byte[] _contentNonce;
     private final String _contentCipher;
     private final String _contentCipherTagLength;
+    private final String _contentRange;
 
     private ContentMetadata(Builder builder) {
         _algorithmSuite = builder._algorithmSuite;
@@ -30,6 +31,7 @@ private ContentMetadata(Builder builder) {
         _contentNonce = builder._contentNonce;
         _contentCipher = builder._contentCipher;
         _contentCipherTagLength = builder._contentCipherTagLength;
+        _contentRange = builder._contentRange;
     }
 
     public static Builder builder() {
@@ -73,6 +75,10 @@ public String contentCipherTagLength() {
         return _contentCipherTagLength;
     }
 
+    public String contentRange() {
+        return _contentRange;
+    }
+
     public static class Builder {
         private AlgorithmSuite _algorithmSuite;
 
@@ -83,8 +89,9 @@ public static class Builder {
         private byte[] _contentNonce;
         private String _contentCipher;
         private String _contentCipherTagLength;
+        public String _contentRange;
 
-        private Builder () {
+        private Builder() {
 
         }
 
@@ -113,8 +120,14 @@ public Builder contentNonce(byte[] contentNonce) {
             return this;
         }
 
+        public Builder contentRange(String contentRange) {
+            _contentRange = contentRange;
+            return this;
+        }
 
-        public ContentMetadata build() { return new ContentMetadata(this); }
+        public ContentMetadata build() {
+            return new ContentMetadata(this);
+        }
     }
 
 }

src/main/java/software/amazon/encryption/s3/internal/ContentMetadataStrategy.java

@@ -1,10 +1,5 @@
 package software.amazon.encryption.s3.internal;
 
-import java.nio.charset.StandardCharsets;
-import java.util.Base64;
-import java.util.HashMap;
-import java.util.Map;
-import java.util.Map.Entry;
 import software.amazon.awssdk.core.ResponseInputStream;
 import software.amazon.awssdk.protocols.jsoncore.JsonNode;
 import software.amazon.awssdk.protocols.jsoncore.JsonNodeParser;
@@ -20,6 +15,12 @@
 import software.amazon.encryption.s3.materials.EncryptionMaterials;
 import software.amazon.encryption.s3.materials.S3Keyring;
 
+import java.nio.charset.StandardCharsets;
+import java.util.Base64;
+import java.util.HashMap;
+import java.util.Map;
+import java.util.Map.Entry;
+
 public abstract class ContentMetadataStrategy implements ContentMetadataEncodingStrategy, ContentMetadataDecodingStrategy {
 
     private static final Base64.Encoder ENCODER = Base64.getEncoder();
@@ -44,17 +45,16 @@ public ContentMetadata decodeMetadata(S3Client client, GetObjectRequest getObjec
             for (Map.Entry<String, JsonNode> entry : objectNode.asObject().entrySet()) {
                 metadata.put(entry.getKey(), entry.getValue().asString());
             }
-
-            return ContentMetadataStrategy.readFromMap(metadata);
+            return ContentMetadataStrategy.readFromMap(metadata, response);
         }
     };
 
     public static final ContentMetadataStrategy OBJECT_METADATA = new ContentMetadataStrategy() {
 
         @Override
         public PutObjectRequest encodeMetadata(EncryptionMaterials materials,
-                EncryptedContent encryptedContent, PutObjectRequest request) {
-            Map<String,String> metadata = new HashMap<>(request.metadata());
+                                               EncryptedContent encryptedContent, PutObjectRequest request) {
+            Map<String, String> metadata = new HashMap<>(request.metadata());
             EncryptedDataKey edk = materials.encryptedDataKeys().get(0);
             metadata.put(MetadataKeyConstants.ENCRYPTED_DATA_KEY_V2, ENCODER.encodeToString(edk.encryptedDatakey()));
             metadata.put(MetadataKeyConstants.CONTENT_NONCE, ENCODER.encodeToString(encryptedContent.nonce));
@@ -64,7 +64,7 @@ public PutObjectRequest encodeMetadata(EncryptionMaterials materials,
 
             try (JsonWriter jsonWriter = JsonWriter.create()) {
                 jsonWriter.writeStartObject();
-                for (Entry<String,String> entry : materials.encryptionContext().entrySet()) {
+                for (Entry<String, String> entry : materials.encryptionContext().entrySet()) {
                     jsonWriter.writeFieldName(entry.getKey()).writeValue(entry.getValue());
                 }
                 jsonWriter.writeEndObject();
@@ -80,19 +80,20 @@ public PutObjectRequest encodeMetadata(EncryptionMaterials materials,
 
         @Override
         public ContentMetadata decodeMetadata(S3Client client, GetObjectRequest request, GetObjectResponse response) {
-            return ContentMetadataStrategy.readFromMap(response.metadata());
+            return ContentMetadataStrategy.readFromMap(response.metadata(), response);
         }
     };
 
-    private static ContentMetadata readFromMap(Map<String, String> metadata) {
+    private static ContentMetadata readFromMap(Map<String, String> metadata, GetObjectResponse response) {
         // Get algorithm suite
         final String contentEncryptionAlgorithm = metadata.get(MetadataKeyConstants.CONTENT_CIPHER);
         AlgorithmSuite algorithmSuite;
+        String contentRange = response.contentRange();
         if (contentEncryptionAlgorithm == null
                 || contentEncryptionAlgorithm.equals(AlgorithmSuite.ALG_AES_256_CBC_IV16_NO_KDF.cipherName())) {
             algorithmSuite = AlgorithmSuite.ALG_AES_256_CBC_IV16_NO_KDF;
         } else if (contentEncryptionAlgorithm.equals(AlgorithmSuite.ALG_AES_256_GCM_IV12_TAG16_NO_KDF.cipherName())) {
-            algorithmSuite = AlgorithmSuite.ALG_AES_256_GCM_IV12_TAG16_NO_KDF;
+            algorithmSuite = (contentRange == null ) ? AlgorithmSuite.ALG_AES_256_GCM_IV12_TAG16_NO_KDF : AlgorithmSuite.ALG_AES_256_CTR_IV16_TAG16_NO_KDF;
         } else {
             throw new S3EncryptionClientException(
                     "Unknown content encryption algorithm: " + contentEncryptionAlgorithm);
@@ -115,6 +116,7 @@ private static ContentMetadata readFromMap(Map<String, String> metadata) {
 
                 break;
             case ALG_AES_256_GCM_IV12_TAG16_NO_KDF:
+            case ALG_AES_256_CTR_IV16_TAG16_NO_KDF:
                 // Check tag length
                 final int tagLength = Integer.parseInt(metadata.get(MetadataKeyConstants.CONTENT_CIPHER_TAG_LENGTH));
                 if (tagLength != algorithmSuite.cipherTagLengthBits()) {
@@ -162,15 +164,16 @@ private static ContentMetadata readFromMap(Map<String, String> metadata) {
                 .encryptedDataKey(edk)
                 .encryptedDataKeyContext(encryptionContext)
                 .contentNonce(nonce)
+                .contentRange(contentRange)
                 .build();
     }
 
     public static ContentMetadata decode(S3Client client, GetObjectRequest request, GetObjectResponse response) {
         Map<String, String> metadata = response.metadata();
         ContentMetadataDecodingStrategy strategy;
         if (metadata != null
-            && metadata.containsKey(MetadataKeyConstants.CONTENT_NONCE)
-            && (metadata.containsKey(MetadataKeyConstants.ENCRYPTED_DATA_KEY_V1)
+                && metadata.containsKey(MetadataKeyConstants.CONTENT_NONCE)
+                && (metadata.containsKey(MetadataKeyConstants.ENCRYPTED_DATA_KEY_V1)
                 || metadata.containsKey(MetadataKeyConstants.ENCRYPTED_DATA_KEY_V2))) {
             strategy = OBJECT_METADATA;
         } else {

src/main/java/software/amazon/encryption/s3/internal/GetEncryptedObjectPipeline.java

@@ -2,27 +2,25 @@
 
 import edu.umd.cs.findbugs.annotations.SuppressFBWarnings;
 
-import java.io.ByteArrayInputStream;
-import java.io.IOException;
-import java.io.InputStream;
-import java.util.Collections;
-import java.util.List;
-
 import software.amazon.awssdk.core.ResponseInputStream;
 import software.amazon.awssdk.core.sync.ResponseTransformer;
 import software.amazon.awssdk.http.AbortableInputStream;
 import software.amazon.awssdk.services.s3.S3Client;
 import software.amazon.awssdk.services.s3.model.GetObjectRequest;
 import software.amazon.awssdk.services.s3.model.GetObjectResponse;
-import software.amazon.awssdk.utils.IoUtils;
 import software.amazon.encryption.s3.S3EncryptionClientException;
 import software.amazon.encryption.s3.algorithms.AlgorithmSuite;
-import software.amazon.encryption.s3.legacy.internal.AesCbcContentStrategy;
+import software.amazon.encryption.s3.legacy.internal.RangedGetUtils;
+import software.amazon.encryption.s3.legacy.internal.UnauthenticatedContentStrategy;
 import software.amazon.encryption.s3.materials.CryptographicMaterialsManager;
 import software.amazon.encryption.s3.materials.DecryptMaterialsRequest;
 import software.amazon.encryption.s3.materials.DecryptionMaterials;
 import software.amazon.encryption.s3.materials.EncryptedDataKey;
 
+import java.io.InputStream;
+import java.util.Collections;
+import java.util.List;
+
 /**
  * This class will determine the necessary mechanisms to decrypt objects returned from S3.
  * Due to supporting various legacy modes, this is not a predefined pipeline like
@@ -36,7 +34,9 @@ public class GetEncryptedObjectPipeline {
     private final boolean _enableLegacyUnauthenticatedModes;
     private final boolean _enableDelayedAuthentication;
 
-    public static Builder builder() { return new Builder(); }
+    public static Builder builder() {
+        return new Builder();
+    }
 
     private GetEncryptedObjectPipeline(Builder builder) {
         this._s3Client = builder._s3Client;
@@ -46,9 +46,15 @@ private GetEncryptedObjectPipeline(Builder builder) {
     }
 
     public <T> T getObject(GetObjectRequest getObjectRequest,
-            ResponseTransformer<GetObjectResponse, T> responseTransformer) {
-        ResponseInputStream<GetObjectResponse> objectStream = _s3Client.getObject(
-                getObjectRequest);
+                           ResponseTransformer<GetObjectResponse, T> responseTransformer) {
+        ResponseInputStream<GetObjectResponse> objectStream;
+        if (!_enableLegacyUnauthenticatedModes && getObjectRequest.range() != null) {
+            throw new S3EncryptionClientException("Enable legacy unauthenticated modes to use Ranged Get.");
+        }
+        objectStream = _s3Client.getObject(getObjectRequest
+                .toBuilder()
+                .range(RangedGetUtils.getCryptoRangeAsString(getObjectRequest.range()))
+                .build());
 
         GetObjectResponse getObjectResponse = objectStream.response();
         ContentMetadata contentMetadata = ContentMetadataStrategy.decode(_s3Client, getObjectRequest, getObjectResponse);
@@ -84,7 +90,8 @@ public <T> T getObject(GetObjectRequest getObjectRequest,
     private ContentDecryptionStrategy selectContentDecryptionStrategy(final DecryptionMaterials materials) {
         switch (materials.algorithmSuite()) {
             case ALG_AES_256_CBC_IV16_NO_KDF:
-                return AesCbcContentStrategy.builder().build();
+            case ALG_AES_256_CTR_IV16_TAG16_NO_KDF:
+                return UnauthenticatedContentStrategy.builder().build();
             case ALG_AES_256_GCM_IV12_TAG16_NO_KDF:
                 if (_enableDelayedAuthentication) {
                     // TODO: Implement StreamingAesGcmContentStrategy
@@ -106,7 +113,8 @@ public static class Builder {
         private boolean _enableLegacyUnauthenticatedModes;
         private boolean _enableDelayedAuthentication;
 
-        private Builder() {}
+        private Builder() {
+        }
 
         /**
          * Note that this does NOT create a defensive clone of S3Client. Any modifications made to the wrapped