Create algorithm suite and constants

Author: smswz

src/main/java/software/amazon/encryption/s3/S3EncryptionClient.java

@@ -2,13 +2,11 @@
 
 import java.io.ByteArrayInputStream;
 import java.io.IOException;
-import java.nio.charset.Charset;
 import java.nio.charset.StandardCharsets;
 import java.security.InvalidAlgorithmParameterException;
 import java.security.InvalidKeyException;
 import java.security.NoSuchAlgorithmException;
 import java.security.SecureRandom;
-import java.security.spec.InvalidParameterSpecException;
 import java.util.Base64;
 import java.util.Collections;
 import java.util.HashMap;
@@ -21,7 +19,6 @@
 import javax.crypto.NoSuchPaddingException;
 import javax.crypto.SecretKey;
 import javax.crypto.spec.GCMParameterSpec;
-import javax.crypto.spec.IvParameterSpec;
 import javax.crypto.spec.SecretKeySpec;
 import software.amazon.awssdk.awscore.exception.AwsServiceException;
 import software.amazon.awssdk.core.ResponseInputStream;
@@ -44,17 +41,18 @@
 import software.amazon.awssdk.utils.IoUtils;
 import software.amazon.encryption.s3.materials.DecryptionMaterials;
 import software.amazon.encryption.s3.materials.DefaultMaterialsManager;
-import software.amazon.encryption.s3.materials.DefaultMaterialsManager.DecryptionMaterialsRequest;
-import software.amazon.encryption.s3.materials.DefaultMaterialsManager.EncryptionMaterialsRequest;
+import software.amazon.encryption.s3.materials.DecryptionMaterialsRequest;
+import software.amazon.encryption.s3.materials.EncryptionMaterialsRequest;
 import software.amazon.encryption.s3.materials.EncryptedDataKey;
 import software.amazon.encryption.s3.materials.EncryptionMaterials;
+import software.amazon.encryption.s3.materials.MaterialsManager;
 
 public class S3EncryptionClient implements S3Client {
 
     private final S3Client _wrappedClient;
-    private final DefaultMaterialsManager _materialsManager;
+    private final MaterialsManager _materialsManager;
 
-    public S3EncryptionClient(S3Client client, DefaultMaterialsManager materialsManager) {
+    public S3EncryptionClient(S3Client client, MaterialsManager materialsManager) {
         _wrappedClient = client;
         _materialsManager = materialsManager;
     }

src/main/java/software/amazon/encryption/s3/algorithms/AlgorithmSuite.java

@@ -2,6 +2,48 @@
 
 
 public enum AlgorithmSuite {
-    // TODO: fill in these values
-    // ALG_AES_256_GCM_IV12_TAG16_NO_KDF(12, 16, Constants.GCM_MAX_CONTENT_LEN, "AES", 32, 0x0078, "AES", 32),
+    ALG_AES_256_GCM_NO_KDF(0x0078,
+            "AES",
+            256,
+            "AES/GCM/NoPadding",
+            128,
+            96,
+            128,
+            Constants.GCM_MAX_CONTENT_LENGTH_BITS);
+
+    private int _id;
+    private String _dataKeyAlgorithm;
+    private int _dataKeyLengthBits;
+    private String _cipherName;
+    private int _cipherBlockSizeBits;
+    private int _cipherNonceLengthBits;
+    private int _cipherTagLengthBits;
+    private long _cipherMaxContentLengthBits;
+
+    AlgorithmSuite(int id,
+            String dataKeyAlgorithm,
+            int dataKeyLengthBits,
+            String cipherName,
+            int cipherBlockSizeBits,
+            int cipherNonceLengthBits,
+            int cipherTagLengthBits,
+            long cipherMaxContentLengthBits
+    ) {
+        this._id = id;
+        this._dataKeyAlgorithm = dataKeyAlgorithm;
+        this._dataKeyLengthBits = dataKeyLengthBits;
+        this._cipherName = cipherName;
+        this._cipherBlockSizeBits = cipherBlockSizeBits;
+        this._cipherNonceLengthBits = cipherNonceLengthBits;
+        this._cipherTagLengthBits = cipherTagLengthBits;
+        this._cipherMaxContentLengthBits = cipherMaxContentLengthBits;
+    }
+
+    public String cipherName() {
+        return _cipherName;
+    }
+
+    public int nonceLengthBytes() {
+        return _cipherNonceLengthBits / 8;
+    }
 }

src/main/java/software/amazon/encryption/s3/algorithms/Constants.java

@@ -1,6 +1,6 @@
 package software.amazon.encryption.s3.algorithms;
 
 class Constants {
-    /** Maximum length of the content that can be encrypted in GCM mode. */
-    public static final long GCM_MAX_CONTENT_LEN = (1L << 36) - 32;
+    // Maximum length of the content that can be encrypted in GCM mode.
+    static final long GCM_MAX_CONTENT_LENGTH_BITS = (1L<<39) - 256;
 }

src/main/java/software/amazon/encryption/s3/materials/AESKeyring.java

@@ -1,26 +1,26 @@
 package software.amazon.encryption.s3.materials;
 
 import java.nio.charset.StandardCharsets;
-import java.security.NoSuchAlgorithmException;
 import java.security.SecureRandom;
 import java.util.ArrayList;
 import java.util.List;
 import javax.crypto.Cipher;
-import javax.crypto.NoSuchPaddingException;
 import javax.crypto.SecretKey;
 import javax.crypto.spec.GCMParameterSpec;
+import software.amazon.encryption.s3.algorithms.AlgorithmSuite;
 
 public class AESKeyring implements Keyring {
 
+    private static final String KEY_ALGORITHM = "AES";
     private static final String KEY_PROVIDER_ID = "AES/GCM";
     private static final String CIPHER_ALGORITHM = "AES/GCM/NoPadding";
-    private static final int IV_LENGTH_IN_BYTES = 12;
-    private static final int TAG_LENGTH_IN_BYTES = 16;
-    private static final int TAG_LENGTH_IN_BITS = TAG_LENGTH_IN_BYTES * 8;
+    private static final int NONCE_LENGTH_BYTES = 12;
+    private static final int TAG_LENGTH_BYTES = 16;
+    private static final int TAG_LENGTH_BITS = TAG_LENGTH_BYTES * 8;
     private final SecretKey _wrappingKey;
 
     public AESKeyring(SecretKey wrappingKey) {
-        if (!wrappingKey.getAlgorithm().equals("AES")) {
+        if (!wrappingKey.getAlgorithm().equals(KEY_ALGORITHM)) {
             // TODO: throw?
         }
 
@@ -34,24 +34,24 @@ public EncryptionMaterials onEncrypt(EncryptionMaterials materials) {
         try {
             SecureRandom secureRandom = new SecureRandom();
 
-            byte[] iv = new byte[IV_LENGTH_IN_BYTES];
-            secureRandom.nextBytes(iv);
-            GCMParameterSpec gcmParameterSpec = new GCMParameterSpec(TAG_LENGTH_IN_BITS, iv);
+            AlgorithmSuite algorithmSuite = materials.algorithmSuite();
+            byte[] nonce = new byte[NONCE_LENGTH_BYTES];
+            secureRandom.nextBytes(nonce);
+            GCMParameterSpec gcmParameterSpec = new GCMParameterSpec(TAG_LENGTH_BITS, nonce);
 
             final Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM);
             cipher.init(Cipher.ENCRYPT_MODE, _wrappingKey, gcmParameterSpec, secureRandom);
 
             // this is the CONTENT encryption, not the wrapping encryption
-            // TODO: get this from encryption context or preferably algorithm suite
-            cipher.updateAAD("AES/GCM/NoPadding".getBytes(StandardCharsets.UTF_8));
+            cipher.updateAAD(algorithmSuite.cipherName().getBytes(StandardCharsets.UTF_8));
 
             // The encrypted data key is the IV prepended to the ciphertext
-            iv = cipher.getIV();
+            nonce = cipher.getIV();
             byte[] ciphertext = cipher.doFinal(materials.plaintextDataKey());
 
-            byte[] encodedBytes = new byte[iv.length + ciphertext.length];
-            System.arraycopy(iv, 0, encodedBytes, 0, iv.length);
-            System.arraycopy(ciphertext, 0, encodedBytes, iv.length, ciphertext.length);
+            byte[] encodedBytes = new byte[nonce.length + ciphertext.length];
+            System.arraycopy(nonce, 0, encodedBytes, 0, nonce.length);
+            System.arraycopy(ciphertext, 0, encodedBytes, nonce.length, ciphertext.length);
 
             EncryptedDataKey encryptedDataKey = EncryptedDataKey.builder()
                     .keyProviderId(KEY_PROVIDER_ID)
@@ -65,30 +65,12 @@ public EncryptionMaterials onEncrypt(EncryptionMaterials materials) {
                     .encryptedDataKeys(encryptedDataKeys)
                     .build();
         } catch (Exception e) {
-            throw new UnsupportedOperationException("Unable to AES/GCM/NoPadding wrap", e);
+            throw new UnsupportedOperationException("Unable to " + CIPHER_ALGORITHM + " wrap", e);
         }
     }
 
     @Override
     public DecryptionMaterials onDecrypt(final DecryptionMaterials materials, List<EncryptedDataKey> encryptedDataKeys) {
-        /*
-        ByteBuffer encryptedCekBuff = ByteBuffer.wrap(encryptedCek);
-        // Split the IV from the front of the ciphertext
-        byte[] iv = new byte[IV_LENGTH_IN_BYTES];
-        byte[] taggedCek = new byte[encryptedCek.length - IV_LENGTH_IN_BYTES];
-        encryptedCekBuff.get(iv);
-        encryptedCekBuff.get(taggedCek);
-
-        Cipher cipher = this.cipherProvider.createCipher();
-        GCMParameterSpec gcmParameterSpec = new GCMParameterSpec(TAG_LENGTH_IN_BITS, iv);
-        try {
-            cipher.init(Cipher.DECRYPT_MODE, key, gcmParameterSpec);
-            cipher.updateAAD(this.cekAlgorithm.getBytes(StandardCharsets.UTF_8));
-            return cipher.doFinal(taggedCek);
-        } catch (Exception e) {
-            throw failure(e, "An exception was thrown when attempting to decrypt the Content Encryption Key");
-        }
-         */
         if (materials.plaintextDataKey() != null) {
             return materials;
         }
@@ -99,25 +81,26 @@ public DecryptionMaterials onDecrypt(final DecryptionMaterials materials, List<E
             }
 
             byte[] encodedBytes = encryptedDataKey.ciphertext();
-            byte[] iv = new byte[IV_LENGTH_IN_BYTES];
-            byte[] ciphertext = new byte[encodedBytes.length - iv.length];
+            byte[] nonce = new byte[NONCE_LENGTH_BYTES];
+            byte[] ciphertext = new byte[encodedBytes.length - nonce.length];
+
+            System.arraycopy(encodedBytes, 0, nonce, 0, nonce.length);
+            System.arraycopy(encodedBytes, nonce.length, ciphertext, 0, ciphertext.length);
 
-            System.arraycopy(encodedBytes, 0, iv, 0, iv.length);
-            System.arraycopy(encodedBytes, iv.length, ciphertext, 0, ciphertext.length);
 
-            GCMParameterSpec gcmParameterSpec = new GCMParameterSpec(TAG_LENGTH_IN_BITS, iv);
+            GCMParameterSpec gcmParameterSpec = new GCMParameterSpec(TAG_LENGTH_BITS, nonce);
             try {
                 final Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM);
                 cipher.init(Cipher.DECRYPT_MODE, _wrappingKey, gcmParameterSpec);
                 // this is the CONTENT encryption, not the wrapping encryption
-                // TODO: get this from encryption context or preferably algorithm suite
-                cipher.updateAAD("AES/GCM/NoPadding".getBytes(StandardCharsets.UTF_8));
+                AlgorithmSuite algorithmSuite = materials.algorithmSuite();
+                cipher.updateAAD(algorithmSuite.cipherName().getBytes(StandardCharsets.UTF_8));
                 byte[] plaintext = cipher.doFinal(ciphertext);
 
                 return materials.toBuilder().plaintextDataKey(plaintext).build();
             } catch (Exception e) {
                 // TODO: maybe this should fall through?
-                throw new UnsupportedOperationException("Unable to AES/GCM/NoPadding unwrap", e);
+                throw new UnsupportedOperationException("Unable to " + CIPHER_ALGORITHM + " unwrap", e);
             }
         }
 

src/main/java/software/amazon/encryption/s3/materials/DecryptionMaterials.java

@@ -1,16 +1,15 @@
 package software.amazon.encryption.s3.materials;
 
 import java.util.Collections;
-import java.util.List;
 import java.util.Map;
 import javax.crypto.SecretKey;
 import javax.crypto.spec.SecretKeySpec;
+import software.amazon.encryption.s3.algorithms.AlgorithmSuite;
 
 final public class DecryptionMaterials {
 
     // Identifies what sort of crypto algorithms we want to use
-    // In ESDK, this is an enum
-    private final int _algorithmSuiteId;
+    private final AlgorithmSuite _algorithmSuite;
 
     // Additional information passed into encrypted that is required on decryption as well
     // Should NOT contain sensitive information
@@ -23,7 +22,7 @@ final public class DecryptionMaterials {
 
 
     private DecryptionMaterials(Builder builder) {
-        this._algorithmSuiteId = builder._algorithmSuiteId;
+        this._algorithmSuite = builder._algorithmSuite;
         this._encryptionContext = builder._encryptionContext;
         this._plaintextDataKey = builder._plaintextDataKey;
     }
@@ -32,8 +31,8 @@ static public Builder builder() {
         return new Builder();
     }
 
-    public int algorithmSuiteId() {
-        return _algorithmSuiteId;
+    public AlgorithmSuite algorithmSuite() {
+        return _algorithmSuite;
     }
 
     public Map<String, String> encryptionContext() {
@@ -50,22 +49,22 @@ public SecretKey dataKey() {
 
     public Builder toBuilder() {
         return new Builder()
-                .algorithmSuiteId(_algorithmSuiteId)
+                .algorithmSuite(_algorithmSuite)
                 .encryptionContext(_encryptionContext)
                 .plaintextDataKey(_plaintextDataKey);
     }
 
     static public class Builder {
 
-        private int _algorithmSuiteId = -1;
+        private AlgorithmSuite _algorithmSuite = AlgorithmSuite.ALG_AES_256_GCM_NO_KDF;
         private Map<String, String> _encryptionContext = Collections.emptyMap();
         private byte[] _plaintextDataKey = null;
 
         private Builder() {
         }
 
-        public Builder algorithmSuiteId(int id) {
-            _algorithmSuiteId = id;
+        public Builder algorithmSuite(AlgorithmSuite algorithmSuite) {
+            _algorithmSuite = algorithmSuite;
             return this;
         }
 

src/main/java/software/amazon/encryption/s3/materials/DecryptionMaterialsRequest.java

@@ -0,0 +1,12 @@
+package software.amazon.encryption.s3.materials;
+
+import java.util.List;
+import java.util.Map;
+import software.amazon.encryption.s3.algorithms.AlgorithmSuite;
+
+public class DecryptionMaterialsRequest {
+
+    public AlgorithmSuite algorithmSuite;
+    public List<EncryptedDataKey> encryptedDataKeys;
+    public Map<String, String> encryptionContext;
+}

src/main/java/software/amazon/encryption/s3/materials/DefaultMaterialsManager.java

@@ -2,12 +2,11 @@
 
 import java.security.NoSuchAlgorithmException;
 import java.security.SecureRandom;
-import java.util.List;
-import java.util.Map;
 import javax.crypto.KeyGenerator;
 import javax.crypto.SecretKey;
+import software.amazon.encryption.s3.algorithms.AlgorithmSuite;
 
-public class DefaultMaterialsManager {
+public class DefaultMaterialsManager implements MaterialsManager {
     // TODO: allow this to be configurable?
     private final SecureRandom _secureRandom = new SecureRandom();
     private final Keyring _keyring;
@@ -21,7 +20,7 @@ public EncryptionMaterials getEncryptionMaterials(EncryptionMaterialsRequest req
         SecretKey key = generateDataKey();
 
         EncryptionMaterials materials = EncryptionMaterials.builder()
-                .algorithmSuiteId(0x0078)
+                .algorithmSuite(AlgorithmSuite.ALG_AES_256_GCM_NO_KDF)
                 .encryptionContext(request.encryptionContext)
                 .plaintextDataKey(key.getEncoded())
                 .build();
@@ -43,20 +42,11 @@ private SecretKey generateDataKey() {
 
     public DecryptionMaterials getDecryptionMaterials(DecryptionMaterialsRequest request) {
         DecryptionMaterials materials = DecryptionMaterials.builder()
-                .algorithmSuiteId(request.algorithmSuiteId)
+                .algorithmSuite(request.algorithmSuite)
                 .encryptionContext(request.encryptionContext)
                 .build();
 
         return _keyring.onDecrypt(materials, request.encryptedDataKeys);
     }
 
-    public static class EncryptionMaterialsRequest {
-        public Map<String, String> encryptionContext;
-    }
-
-    public static class DecryptionMaterialsRequest {
-        public int algorithmSuiteId;
-        public List<EncryptedDataKey> encryptedDataKeys;
-        public Map<String, String> encryptionContext;
-    }
 }