feat: add configuration option to set max buffer size (#166)

* feat: Add Configuration option to set max buffer size

Author: imabhichow

src/main/java/software/amazon/encryption/s3/S3AsyncEncryptionClient.java

@@ -42,6 +42,9 @@
 import java.util.function.Consumer;
 import java.util.function.Function;
 
+import static software.amazon.encryption.s3.S3EncryptionClientUtilities.DEFAULT_BUFFER_SIZE_BYTES;
+import static software.amazon.encryption.s3.S3EncryptionClientUtilities.MAX_ALLOWED_BUFFER_SIZE_BYTES;
+import static software.amazon.encryption.s3.S3EncryptionClientUtilities.MIN_ALLOWED_BUFFER_SIZE_BYTES;
 import static software.amazon.encryption.s3.internal.ApiNameVersion.API_NAME_INTERCEPTOR;
 
 /**
@@ -56,6 +59,7 @@ public class S3AsyncEncryptionClient extends DelegatingS3AsyncClient {
     private final boolean _enableLegacyUnauthenticatedModes;
     private final boolean _enableDelayedAuthenticationMode;
     private final boolean _enableMultipartPutObject;
+    private final long _bufferSize;
 
     private S3AsyncEncryptionClient(Builder builder) {
         super(builder._wrappedClient);
@@ -65,6 +69,7 @@ private S3AsyncEncryptionClient(Builder builder) {
         _enableLegacyUnauthenticatedModes = builder._enableLegacyUnauthenticatedModes;
         _enableDelayedAuthenticationMode = builder._enableDelayedAuthenticationMode;
         _enableMultipartPutObject = builder._enableMultipartPutObject;
+        _bufferSize = builder._bufferSize;
     }
 
     /**
@@ -181,6 +186,7 @@ public <T> CompletableFuture<T> getObject(GetObjectRequest getObjectRequest,
                 .cryptoMaterialsManager(_cryptoMaterialsManager)
                 .enableLegacyUnauthenticatedModes(_enableLegacyUnauthenticatedModes)
                 .enableDelayedAuthentication(_enableDelayedAuthenticationMode)
+                .bufferSize(_bufferSize)
                 .build();
 
         return pipeline.getObject(getObjectRequest, asyncResponseTransformer);
@@ -200,9 +206,9 @@ public CompletableFuture<DeleteObjectResponse> deleteObject(DeleteObjectRequest
         final DeleteObjectRequest actualRequest = deleteObjectRequest.toBuilder()
                 .overrideConfiguration(API_NAME_INTERCEPTOR)
                 .build();
-        final CompletableFuture<DeleteObjectResponse> response =  _wrappedClient.deleteObject(actualRequest);
+        final CompletableFuture<DeleteObjectResponse> response = _wrappedClient.deleteObject(actualRequest);
         final String instructionObjectKey = deleteObjectRequest.key() + ".instruction";
-        final CompletableFuture<DeleteObjectResponse> instructionResponse =  _wrappedClient.deleteObject(builder -> builder
+        final CompletableFuture<DeleteObjectResponse> instructionResponse = _wrappedClient.deleteObject(builder -> builder
                 .overrideConfiguration(API_NAME_INTERCEPTOR)
                 .bucket(deleteObjectRequest.bucket())
                 .key(instructionObjectKey));
@@ -257,6 +263,7 @@ public static class Builder {
         private boolean _enableMultipartPutObject = false;
         private Provider _cryptoProvider = null;
         private SecureRandom _secureRandom = new SecureRandom();
+        private long _bufferSize = -1L;
 
         private Builder() {
         }
@@ -434,6 +441,22 @@ public Builder enableMultipartPutObject(boolean _enableMultipartPutObject) {
             return this;
         }
 
+        /**
+         * Sets the buffer size for safe authentication used when delayed authentication mode is disabled.
+         * If buffer size is not given during client configuration, default buffer size is set to 64MiB.
+         * @param bufferSize the desired buffer size in Bytes.
+         * @return Returns a reference to this object so that method calls can be chained together.
+         * @throws S3EncryptionClientException if the specified buffer size is outside the allowed bounds
+         */
+        public Builder setBufferSize(long bufferSize) {
+            if (bufferSize < MIN_ALLOWED_BUFFER_SIZE_BYTES || bufferSize > MAX_ALLOWED_BUFFER_SIZE_BYTES) {
+                throw new S3EncryptionClientException("Invalid buffer size: " + bufferSize + " Bytes. Buffer size must be between " + MIN_ALLOWED_BUFFER_SIZE_BYTES + " and " + MAX_ALLOWED_BUFFER_SIZE_BYTES + " Bytes.");
+            }
+
+            this._bufferSize = bufferSize;
+            return this;
+        }
+
         /**
          * Allows the user to pass an instance of {@link Provider} to be used
          * for cryptographic operations. By default, the S3 Encryption Client
@@ -476,6 +499,14 @@ public S3AsyncEncryptionClient build() {
                 throw new S3EncryptionClientException("Exactly one must be set of: crypto materials manager, keyring, AES key, RSA key pair, KMS key id");
             }
 
+            if (_bufferSize >= 0) {
+                if (_enableDelayedAuthenticationMode) {
+                    throw new S3EncryptionClientException("Buffer size cannot be set when delayed authentication mode is enabled");
+                }
+            } else {
+                _bufferSize = DEFAULT_BUFFER_SIZE_BYTES;
+            }
+
             if (_keyring == null) {
                 if (_aesKey != null) {
                     _keyring = AesKeyring.builder()

src/main/java/software/amazon/encryption/s3/S3EncryptionClient.java

@@ -66,7 +66,10 @@
 import java.util.concurrent.Future;
 import java.util.function.Consumer;
 
+import static software.amazon.encryption.s3.S3EncryptionClientUtilities.DEFAULT_BUFFER_SIZE_BYTES;
 import static software.amazon.encryption.s3.S3EncryptionClientUtilities.INSTRUCTION_FILE_SUFFIX;
+import static software.amazon.encryption.s3.S3EncryptionClientUtilities.MAX_ALLOWED_BUFFER_SIZE_BYTES;
+import static software.amazon.encryption.s3.S3EncryptionClientUtilities.MIN_ALLOWED_BUFFER_SIZE_BYTES;
 import static software.amazon.encryption.s3.S3EncryptionClientUtilities.instructionFileKeysToDelete;
 import static software.amazon.encryption.s3.internal.ApiNameVersion.API_NAME_INTERCEPTOR;
 
@@ -88,6 +91,7 @@ public class S3EncryptionClient extends DelegatingS3Client {
     private final boolean _enableDelayedAuthenticationMode;
     private final boolean _enableMultipartPutObject;
     private final MultipartUploadObjectPipeline _multipartPipeline;
+    private final long _bufferSize;
 
     private S3EncryptionClient(Builder builder) {
         super(builder._wrappedClient);
@@ -99,6 +103,7 @@ private S3EncryptionClient(Builder builder) {
         _enableDelayedAuthenticationMode = builder._enableDelayedAuthenticationMode;
         _enableMultipartPutObject = builder._enableMultipartPutObject;
         _multipartPipeline = builder._multipartPipeline;
+        _bufferSize = builder._bufferSize;
     }
 
     /**
@@ -224,6 +229,7 @@ public <T> T getObject(GetObjectRequest getObjectRequest,
                 .cryptoMaterialsManager(_cryptoMaterialsManager)
                 .enableLegacyUnauthenticatedModes(_enableLegacyUnauthenticatedModes)
                 .enableDelayedAuthentication(_enableDelayedAuthenticationMode)
+                .bufferSize(_bufferSize)
                 .build();
 
         try {
@@ -498,6 +504,7 @@ public static class Builder {
         private Provider _cryptoProvider = null;
         private SecureRandom _secureRandom = new SecureRandom();
         private boolean _enableLegacyUnauthenticatedModes = false;
+        private long _bufferSize = -1L;
 
         private Builder() {
         }
@@ -686,6 +693,22 @@ public Builder enableMultipartPutObject(boolean _enableMultipartPutObject) {
             return this;
         }
 
+        /**
+         * Sets the buffer size for safe authentication used when delayed authentication mode is disabled.
+         * If buffer size is not given during client configuration, default buffer size is set to 64MiB.
+         * @param bufferSize the desired buffer size in Bytes.
+         * @return Returns a reference to this object so that method calls can be chained together.
+         * @throws S3EncryptionClientException if the specified buffer size is outside the allowed bounds
+         */
+        public Builder setBufferSize(long bufferSize) {
+            if (bufferSize < MIN_ALLOWED_BUFFER_SIZE_BYTES || bufferSize > MAX_ALLOWED_BUFFER_SIZE_BYTES) {
+                throw new S3EncryptionClientException("Invalid buffer size: " + bufferSize + " Bytes. Buffer size must be between " + MIN_ALLOWED_BUFFER_SIZE_BYTES + " and " + MAX_ALLOWED_BUFFER_SIZE_BYTES + " Bytes.");
+            }
+
+            this._bufferSize = bufferSize;
+            return this;
+        }
+
         /**
          * Allows the user to pass an instance of {@link Provider} to be used
          * for cryptographic operations. By default, the S3 Encryption Client
@@ -728,6 +751,14 @@ public S3EncryptionClient build() {
                 throw new S3EncryptionClientException("Exactly one must be set of: crypto materials manager, keyring, AES key, RSA key pair, KMS key id");
             }
 
+            if (_bufferSize >= 0) {
+                if (_enableDelayedAuthenticationMode) {
+                    throw new S3EncryptionClientException("Buffer size cannot be set when delayed authentication mode is enabled");
+                }
+            } else {
+                _bufferSize = DEFAULT_BUFFER_SIZE_BYTES;
+            }
+
             if (_wrappedClient == null) {
                 _wrappedClient = S3Client.create();
             }

src/main/java/software/amazon/encryption/s3/S3EncryptionClientUtilities.java

@@ -4,6 +4,7 @@
 
 import software.amazon.awssdk.services.s3.model.DeleteObjectsRequest;
 import software.amazon.awssdk.services.s3.model.ObjectIdentifier;
+import software.amazon.encryption.s3.algorithms.AlgorithmSuite;
 
 import java.util.List;
 import java.util.stream.Collectors;
@@ -15,6 +16,13 @@
 public class S3EncryptionClientUtilities {
 
     public static final String INSTRUCTION_FILE_SUFFIX = ".instruction";
+    public static final long MIN_ALLOWED_BUFFER_SIZE_BYTES = AlgorithmSuite.ALG_AES_256_GCM_IV12_TAG16_NO_KDF.cipherBlockSizeBytes();
+    public static final long MAX_ALLOWED_BUFFER_SIZE_BYTES = AlgorithmSuite.ALG_AES_256_GCM_IV12_TAG16_NO_KDF.cipherMaxContentLengthBytes();
+
+    /**
+     * The Default Buffer Size for Safe authentication is set to 64MiB.
+     */
+    public static final long DEFAULT_BUFFER_SIZE_BYTES = 64 * 1024 * 1024;
 
     /**
      * For a given DeleteObjectsRequest, return a list of ObjectIdentifiers

src/main/java/software/amazon/encryption/s3/internal/BufferedAesGcmContentStrategy.java

@@ -4,7 +4,6 @@
 
 import org.reactivestreams.Subscriber;
 import software.amazon.awssdk.core.async.SdkPublisher;
-import software.amazon.encryption.s3.legacy.internal.RangedGetUtils;
 import software.amazon.encryption.s3.materials.CryptographicMaterials;
 
 import java.nio.ByteBuffer;
@@ -13,30 +12,23 @@ public class BufferedCipherPublisher implements SdkPublisher<ByteBuffer> {
 
     private final SdkPublisher<ByteBuffer> wrappedPublisher;
     private final Long contentLength;
-    private final long[] range;
-    private final String contentRange;
-    private final int cipherTagLengthBits;
     private final CryptographicMaterials materials;
     private final byte[] iv;
+    private final long bufferSize;
 
     public BufferedCipherPublisher(final SdkPublisher<ByteBuffer> wrappedPublisher, final Long contentLength,
-                                   long[] range, String contentRange, int cipherTagLengthBits,
-                                   final CryptographicMaterials materials, final byte[] iv) {
+                                   final CryptographicMaterials materials, final byte[] iv, final long bufferSize) {
         this.wrappedPublisher = wrappedPublisher;
         this.contentLength = contentLength;
-        this.range = range;
-        this.contentRange = contentRange;
-        this.cipherTagLengthBits = cipherTagLengthBits;
         this.materials = materials;
         this.iv = iv;
+        this.bufferSize = bufferSize;
     }
 
     @Override
     public void subscribe(Subscriber<? super ByteBuffer> subscriber) {
         // Wrap the (customer) subscriber in a CipherSubscriber, then subscribe it
         // to the wrapped (ciphertext) publisher
-        Subscriber<? super ByteBuffer> wrappedSubscriber = RangedGetUtils.adjustToDesiredRange(subscriber, range,
-                contentRange, cipherTagLengthBits);
-        wrappedPublisher.subscribe(new BufferedCipherSubscriber(wrappedSubscriber, contentLength, materials, iv));
+        wrappedPublisher.subscribe(new BufferedCipherSubscriber(subscriber, contentLength, materials, iv, bufferSize));
     }
 }

src/main/java/software/amazon/encryption/s3/internal/BufferedCipherPublisher.java

@@ -25,10 +25,6 @@
  */
 public class BufferedCipherSubscriber implements Subscriber<ByteBuffer> {
 
-    // 64MiB ought to be enough for most usecases
-    private static final long BUFFERED_MAX_CONTENT_LENGTH_MiB = 64;
-    private static final long BUFFERED_MAX_CONTENT_LENGTH_BYTES = 1024 * 1024 * BUFFERED_MAX_CONTENT_LENGTH_MiB;
-
     private final AtomicInteger contentRead = new AtomicInteger(0);
     private final AtomicBoolean doneFinal = new AtomicBoolean(false);
     private final Subscriber<? super ByteBuffer> wrappedSubscriber;
@@ -40,16 +36,17 @@ public class BufferedCipherSubscriber implements Subscriber<ByteBuffer> {
     private byte[] outputBuffer;
     private final Queue<ByteBuffer> buffers = new ConcurrentLinkedQueue<>();
 
-    BufferedCipherSubscriber(Subscriber<? super ByteBuffer> wrappedSubscriber, Long contentLength, CryptographicMaterials materials, byte[] iv) {
+    BufferedCipherSubscriber(Subscriber<? super ByteBuffer> wrappedSubscriber, Long contentLength, CryptographicMaterials materials, byte[] iv, long bufferSizeInBytes) {
         this.wrappedSubscriber = wrappedSubscriber;
         if (contentLength == null) {
             throw new S3EncryptionClientException("contentLength cannot be null in buffered mode. To enable unbounded " +
                     "streaming, reconfigure the S3 Encryption Client with Delayed Authentication mode enabled.");
         }
-        if (contentLength > BUFFERED_MAX_CONTENT_LENGTH_BYTES) {
-            throw new S3EncryptionClientException(String.format("The object you are attempting to decrypt exceeds the maximum content " +
-                    "length allowed in default mode. Please enable Delayed Authentication mode to decrypt objects larger" +
-                    "than %d", BUFFERED_MAX_CONTENT_LENGTH_MiB));
+        if (contentLength > bufferSizeInBytes) {
+            throw new S3EncryptionClientException(String.format("The object you are attempting to decrypt exceeds the maximum buffer size: " + bufferSizeInBytes +
+                    " for the default (buffered) mode. Either increase your buffer size when configuring your client, " +
+                    "or enable Delayed Authentication mode to disable buffered decryption."));
+
         }
         this.contentLength = Math.toIntExact(contentLength);
         this.materials = materials;