feat: Configurable SecureRandom (#40)

Author: lucasmcdonald3

src/main/java/software/amazon/encryption/s3/S3EncryptionClient.java

@@ -3,6 +3,7 @@
 import edu.umd.cs.findbugs.annotations.SuppressFBWarnings;
 
 import java.security.KeyPair;
+import java.security.SecureRandom;
 import java.util.Map;
 import java.util.function.Consumer;
 import javax.crypto.SecretKey;
@@ -22,7 +23,6 @@
 import software.amazon.awssdk.services.s3.model.GetObjectResponse;
 import software.amazon.awssdk.services.s3.model.PutObjectRequest;
 import software.amazon.awssdk.services.s3.model.PutObjectResponse;
-import software.amazon.awssdk.services.s3.model.S3Exception;
 import software.amazon.encryption.s3.internal.GetEncryptedObjectPipeline;
 import software.amazon.encryption.s3.internal.PutEncryptedObjectPipeline;
 import software.amazon.encryption.s3.materials.AesKeyring;
@@ -44,12 +44,14 @@ public class S3EncryptionClient implements S3Client {
 
     private final S3Client _wrappedClient;
     private final CryptographicMaterialsManager _cryptoMaterialsManager;
+    private final SecureRandom _secureRandom;
     private final boolean _enableLegacyUnauthenticatedModes;
     private final boolean _enableDelayedAuthenticationMode;
 
     private S3EncryptionClient(Builder builder) {
         _wrappedClient = builder._wrappedClient;
         _cryptoMaterialsManager = builder._cryptoMaterialsManager;
+        _secureRandom = builder._secureRandom;
         _enableLegacyUnauthenticatedModes = builder._enableLegacyUnauthenticatedModes;
         _enableDelayedAuthenticationMode = builder._enableDelayedAuthenticationMode;
     }
@@ -71,6 +73,7 @@ public PutObjectResponse putObject(PutObjectRequest putObjectRequest, RequestBod
         PutEncryptedObjectPipeline pipeline = PutEncryptedObjectPipeline.builder()
                 .s3Client(_wrappedClient)
                 .cryptoMaterialsManager(_cryptoMaterialsManager)
+                .secureRandom(_secureRandom)
                 .build();
 
         return pipeline.putObject(putObjectRequest, requestBody);
@@ -122,6 +125,7 @@ public static class Builder {
         private String _kmsKeyId;
         private boolean _enableLegacyUnauthenticatedModes = false;
         private boolean _enableDelayedAuthenticationMode = false;
+        private SecureRandom _secureRandom = new SecureRandom();
 
         private Builder() {}
 
@@ -215,6 +219,14 @@ public Builder enableDelayedAuthenticationMode(boolean shouldEnableDelayedAuthen
             return this;
         }
 
+        public Builder secureRandom(SecureRandom secureRandom) {
+            if (secureRandom == null) {
+                throw new S3EncryptionClientException("SecureRandom provided to S3EncryptionClient cannot be null");
+            }
+            _secureRandom = secureRandom;
+            return this;
+        }
+
         public S3EncryptionClient build() {
             if (!onlyOneNonNull(_cryptoMaterialsManager, _keyring, _aesKey, _rsaKeyPair, _kmsKeyId)) {
                 throw new S3EncryptionClientException("Exactly one must be set of: crypto materials manager, keyring, AES key, RSA key pair, KMS key id");
@@ -225,16 +237,19 @@ public S3EncryptionClient build() {
                     _keyring = AesKeyring.builder()
                             .wrappingKey(_aesKey)
                             .enableLegacyUnauthenticatedModes(_enableLegacyUnauthenticatedModes)
+                            .secureRandom(_secureRandom)
                             .build();
                 } else if (_rsaKeyPair != null) {
                     _keyring = RsaKeyring.builder()
                             .wrappingKeyPair(_rsaKeyPair)
                             .enableLegacyUnauthenticatedModes(_enableLegacyUnauthenticatedModes)
+                            .secureRandom(_secureRandom)
                             .build();
                 } else if (_kmsKeyId != null) {
                     _keyring = KmsKeyring.builder()
                             .wrappingKeyId(_kmsKeyId)
                             .enableLegacyUnauthenticatedModes(_enableLegacyUnauthenticatedModes)
+                            .secureRandom(_secureRandom)
                             .build();
                 }
             }

src/main/java/software/amazon/encryption/s3/internal/BufferedAesGcmContentStrategy.java

@@ -117,7 +117,7 @@ public InputStream decryptContent(ContentMetadata contentMetadata, DecryptionMat
     }
 
     public static class Builder {
-        private SecureRandom _secureRandom = new SecureRandom();
+        private SecureRandom _secureRandom;
 
         private Builder() {
         }
@@ -128,6 +128,9 @@ private Builder() {
          */
         @SuppressFBWarnings(value = "EI_EXPOSE_REP")
         public Builder secureRandom(SecureRandom secureRandom) {
+            if (secureRandom == null) {
+                throw new S3EncryptionClientException("SecureRandom provided to BufferedAesGcmContentStrategy cannot be null");
+            }
             _secureRandom = secureRandom;
             return this;
         }

src/main/java/software/amazon/encryption/s3/internal/PutEncryptedObjectPipeline.java

@@ -3,6 +3,7 @@
 import edu.umd.cs.findbugs.annotations.SuppressFBWarnings;
 
 import java.io.IOException;
+import java.security.SecureRandom;
 
 import software.amazon.awssdk.core.sync.RequestBody;
 import software.amazon.awssdk.services.s3.S3Client;
@@ -18,6 +19,7 @@ public class PutEncryptedObjectPipeline {
 
     final private S3Client _s3Client;
     final private CryptographicMaterialsManager _cryptoMaterialsManager;
+    final private SecureRandom _secureRandom;
     final private ContentEncryptionStrategy _contentEncryptionStrategy;
     final private ContentMetadataEncodingStrategy _contentMetadataEncodingStrategy;
 
@@ -26,6 +28,7 @@ public class PutEncryptedObjectPipeline {
     private PutEncryptedObjectPipeline(Builder builder) {
         this._s3Client = builder._s3Client;
         this._cryptoMaterialsManager = builder._cryptoMaterialsManager;
+        this._secureRandom = builder._secureRandom;
         this._contentEncryptionStrategy = builder._contentEncryptionStrategy;
         this._contentMetadataEncodingStrategy = builder._contentMetadataEncodingStrategy;
     }
@@ -53,13 +56,11 @@ public PutObjectResponse putObject(PutObjectRequest request, RequestBody request
     public static class Builder {
         private S3Client _s3Client;
         private CryptographicMaterialsManager _cryptoMaterialsManager;
-        // Default to AesGcm since it is the only active (non-legacy) content encryption strategy
-        private ContentEncryptionStrategy _contentEncryptionStrategy =
-                BufferedAesGcmContentStrategy
-                        .builder()
-                        .build();
+        private SecureRandom _secureRandom;
+        private ContentEncryptionStrategy _contentEncryptionStrategy;
         private ContentMetadataEncodingStrategy _contentMetadataEncodingStrategy = ContentMetadataStrategy.OBJECT_METADATA;
 
+
         private Builder() {}
 
         /**
@@ -77,17 +78,19 @@ public Builder cryptoMaterialsManager(CryptographicMaterialsManager cryptoMateri
             return this;
         }
 
-        public Builder contentEncryptionStrategy(ContentEncryptionStrategy strategy) {
-            this._contentEncryptionStrategy = strategy;
-            return this;
-        }
-
-        public Builder metadataEncodingStrategy(ContentMetadataEncodingStrategy strategy) {
-            this._contentMetadataEncodingStrategy = strategy;
+        public Builder secureRandom(SecureRandom secureRandom) {
+            this._secureRandom = secureRandom;
             return this;
         }
 
         public PutEncryptedObjectPipeline build() {
+            // Default to AesGcm since it is the only active (non-legacy) content encryption strategy
+            if (_contentEncryptionStrategy == null) {
+                _contentEncryptionStrategy = BufferedAesGcmContentStrategy
+                    .builder()
+                    .secureRandom(_secureRandom)
+                    .build();
+            }
             return new PutEncryptedObjectPipeline(this);
         }
     }

src/main/java/software/amazon/encryption/s3/materials/S3Keyring.java

@@ -104,7 +104,7 @@ public DecryptionMaterials onDecrypt(final DecryptionMaterials materials, List<E
 
     abstract public static class Builder<KeyringT extends S3Keyring, BuilderT extends Builder<KeyringT, BuilderT>> {
         private boolean _enableLegacyUnauthenticatedModes = false;
-        private SecureRandom _secureRandom = new SecureRandom();
+        private SecureRandom _secureRandom;
         private DataKeyGenerator _dataKeyGenerator = new DefaultDataKeyGenerator();
 
 
@@ -124,7 +124,7 @@ public BuilderT enableLegacyUnauthenticatedModes(boolean shouldEnableLegacyUnaut
         @SuppressFBWarnings(value = "EI_EXPOSE_REP")
         public BuilderT secureRandom(final SecureRandom secureRandom) {
             if (secureRandom == null) {
-                throw new S3EncryptionClientException("SecureRandom cannot be null!");
+                throw new S3EncryptionClientException("SecureRandom provided to S3Keyring cannot be null");
             }
             _secureRandom = secureRandom;
             return builder();

src/test/java/software/amazon/encryption/s3/S3EncryptionClientTest.java

@@ -1,12 +1,16 @@
 package software.amazon.encryption.s3;
 
+import java.security.SecureRandom;
+
 import org.junit.jupiter.api.BeforeAll;
 import org.junit.jupiter.api.Test;
+
 import software.amazon.awssdk.core.ResponseBytes;
 import software.amazon.awssdk.core.sync.RequestBody;
 import software.amazon.awssdk.services.s3.S3Client;
 import software.amazon.awssdk.services.s3.model.GetObjectResponse;
 import software.amazon.awssdk.services.s3.model.PutObjectRequest;
+import software.amazon.encryption.s3.materials.AesKeyring;
 import software.amazon.encryption.s3.materials.CryptographicMaterialsManager;
 import software.amazon.encryption.s3.materials.DefaultCryptoMaterialsManager;
 import software.amazon.encryption.s3.materials.KmsKeyring;
@@ -23,6 +27,13 @@
 import java.util.Map;
 
 import static org.junit.jupiter.api.Assertions.*;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.Mockito.mock;
+import static org.mockito.Mockito.never;
+import static org.mockito.Mockito.times;
+import static org.mockito.Mockito.verify;
+import static org.mockito.Mockito.withSettings;
+
 import static software.amazon.encryption.s3.S3EncryptionClient.withAdditionalEncryptionContext;
 import static software.amazon.encryption.s3.utils.S3EncryptionClientTestResources.BUCKET;
 import static software.amazon.encryption.s3.utils.S3EncryptionClientTestResources.KMS_KEY_ALIAS;
@@ -249,6 +260,104 @@ public void s3EncryptionClientWithWrappedS3EncryptionClientFails() {
             .build());
     }
 
+    @Test
+    public void s3EncryptionClientWithNullSecureRandomFails() {
+        assertThrows(S3EncryptionClientException.class, () -> S3EncryptionClient.builder()
+            .aesKey(AES_KEY)
+            .secureRandom(null)
+            .build());
+    }
+
+    @Test
+    public void s3EncryptionClientFromKMSKeyDoesNotUseUnprovidedSecureRandom() {
+        SecureRandom mockSecureRandom = mock(SecureRandom.class, withSettings().withoutAnnotations());
+
+        final String objectKey = "no-secure-random-object-kms";
+
+        S3Client v3Client = S3EncryptionClient.builder()
+            .kmsKeyId(KMS_KEY_ID)
+            .build();
+
+        simpleV3RoundTrip(v3Client, objectKey);
+
+        verify(mockSecureRandom, never()).nextBytes(any());
+    }
+
+    @Test
+    public void s3EncryptionClientFromKMSKeyIdWithSecureRandomUsesObjectOnceForRoundTripCall() {
+        SecureRandom mockSecureRandom = mock(SecureRandom.class, withSettings().withoutAnnotations());
+
+        final String objectKey = "secure-random-object-kms";
+
+        S3Client v3Client = S3EncryptionClient.builder()
+            .kmsKeyId(KMS_KEY_ID)
+            .secureRandom(mockSecureRandom)
+            .build();
+
+        simpleV3RoundTrip(v3Client, objectKey);
+
+        // Should only be called from encryption content strategy.
+        // KMS keyring does not use SecureRandom for encryptDataKey.
+        verify(mockSecureRandom, times(1)).nextBytes(any());
+    }
+
+    @Test
+    public void s3EncryptionClientFromAESKeyWithSecureRandomUsesObjectTwiceForRoundTripCall() {
+        SecureRandom mockSecureRandom = mock(SecureRandom.class, withSettings().withoutAnnotations());
+
+        final String objectKey = "secure-random-object-aes";
+
+        S3Client v3Client = S3EncryptionClient.builder()
+            .aesKey(AES_KEY)
+            .secureRandom(mockSecureRandom)
+            .build();
+
+        simpleV3RoundTrip(v3Client, objectKey);
+
+        // Should be called once from encryption content strategy and again from AES encryptDataKey.
+        verify(mockSecureRandom, times(2)).nextBytes(any());
+    }
+
+    @Test
+    public void s3EncryptionClientFromRSAKeyWithSecureRandomUsesObjectTwiceForRoundTripCall() {
+        SecureRandom mockSecureRandom = mock(SecureRandom.class, withSettings().withoutAnnotations());
+
+        final String objectKey = "secure-random-object-rsa";
+
+        S3Client v3Client = S3EncryptionClient.builder()
+            .rsaKeyPair(RSA_KEY_PAIR)
+            .secureRandom(mockSecureRandom)
+            .build();
+
+        simpleV3RoundTrip(v3Client, objectKey);
+
+        // Should be called once from encryption content strategy and again from RSA encryptDataKey.
+        verify(mockSecureRandom, times(2)).nextBytes(any());
+    }
+
+    @Test
+    public void s3EncryptionClientFromAESKeyringUsesDifferentSecureRandomThanKeyring() {
+        SecureRandom mockSecureRandomKeyring = mock(SecureRandom.class, withSettings().withoutAnnotations());
+        SecureRandom mockSecureRandomClient = mock(SecureRandom.class, withSettings().withoutAnnotations());
+
+        AesKeyring keyring = AesKeyring.builder()
+            .wrappingKey(AES_KEY)
+            .secureRandom(mockSecureRandomKeyring)
+            .build();
+
+        final String objectKey = "secure-random-object-aes-different-keyring";
+
+        S3Client v3Client = S3EncryptionClient.builder()
+            .keyring(keyring)
+            .secureRandom(mockSecureRandomClient)
+            .build();
+
+        simpleV3RoundTrip(v3Client, objectKey);
+
+        verify(mockSecureRandomKeyring, times(1)).nextBytes(any());
+        verify(mockSecureRandomClient, times(1)).nextBytes(any());
+    }
+
     /**
      * A simple, reusable round-trip (encryption + decryption) using a given
      * S3Client. Useful for testing client configuration.

src/test/java/software/amazon/encryption/s3/internal/BufferedAesGcmContentStrategyTest.java

@@ -0,0 +1,16 @@
+package software.amazon.encryption.s3.internal;
+
+import static org.junit.jupiter.api.Assertions.assertThrows;
+
+import org.junit.jupiter.api.Test;
+
+import software.amazon.encryption.s3.S3EncryptionClientException;
+
+public class BufferedAesGcmContentStrategyTest {
+
+    @Test
+    public void buildBufferedAesGcmContentStrategyWithNullSecureRandomFails() {
+      assertThrows(S3EncryptionClientException.class, () -> BufferedAesGcmContentStrategy.builder().secureRandom(null));
+    }
+
+}