S3 Client Side Encryption

[kstich]

Adds the S3EncryptionClient and supporting implementations. This implements envelope encryption and utilizes OpenSSL to provide CBC and GCM (on PHP >= 7.1) support . Uses pluggable strategies (via MetadataStrategyInterface) for handling a MetadataEnvelope in conjunction with a MaterialsProvider. A KmsMaterialsProvider is provided for key management . Supports ->putObject[Async] and ->getObject[Async] operations. This is cross compatible with Java, Ruby, Go, and C++ for the provided feature set. A service guide is also included.

/cc @jeskew @mtdowling @cjyclaire

Resolves #831

[codecov-io]

Codecov Report

Merging #1395 into master will decrease coverage by 0.33%.
The diff coverage is 95.91%.

@@             Coverage Diff              @@
##             master    #1395      +/-   ##
============================================
- Coverage      91.9%   91.56%   -0.34%     
- Complexity     2472     2521      +49     
============================================
  Files           142      156      +14     
  Lines          7545     7045     -500     
============================================
- Hits           6934     6451     -483     
+ Misses          611      594      -17

Impacted Files	Coverage Δ	Complexity Δ
src/TraceMiddleware.php	96.77% <ø> (+0.62%)	47 <0> (ø)	⬇️
src/S3/Crypto/HeadersMetadataStrategy.php	100% <100%> (ø)	5 <5> (?)
src/S3/Crypto/InstructionFileMetadataStrategy.php	100% <100%> (ø)	6 <6> (?)
src/Crypto/KmsMaterialsProvider.php	100% <100%> (ø)	8 <8> (?)
src/Crypto/Cipher/Cbc.php	100% <100%> (ø)	10 <10> (?)
src/Crypto/MetadataEnvelope.php	100% <100%> (ø)	7 <7> (?)
src/Crypto/MaterialsProvider.php	100% <100%> (ø)	3 <3> (?)
src/Crypto/DecryptionTrait.php	92.18% <92.18%> (ø)	11 <11> (?)
src/Crypto/AesGcmDecryptingStream.php	93.1% <93.1%> (ø)	7 <7> (?)
src/Crypto/AesGcmEncryptingStream.php	93.54% <93.54%> (ø)	8 <8> (?)
... and 137 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 1ba6da5...29bfb98. Read the comment docs.

[kstich]

Codecov report of decreased coverage is incorrect. Details show that 95.99% of the diff is covered which is higher than the current 91.90% coverage.

[jeskew]

I think this may be to blame for the purported coverage drop. There may be code paths not taken in PHP 7.1

[kstich]

Yeah, it looks like CodeCov is taking the first report and using that, which explains the wild shifts as well. I'm going to set this up to use 7.1 with latest dependencies only, putting us on stable grounds that we can update with further PHP releases.

[jeskew]

Is this the name of a particular bucket? Including a resource identifier here seems fragile.

[kstich]

It is a bucket name and it is fragile. This is how the AWS SDK for Go handles it and we do something similar for the other full integration tests as well. These tests need to talk to other SDKs and don't get a getResourcePrefix added. I'm open to suggestions on this.

[jeskew]

The S3 test should be creating and deleting buckets via BeforeSuite and AfterSuite hooks. I understand that this test suite has to work this way to integrate with other SDK tests, but maybe in the future there could a test that works on multiple accounts.

[jeskew]

Couldn't AesTaggedGcmEncryptingStream be removed if you just used an AppendStream here?

[jeskew]

Very nit but passim: I believe SDK style requires no newline between the file opener and the namespace declaration.

[jeskew]

What's a cmk? Could abbreviations be avoided in this parameter name, or is the expanded version too long to reasonably type?

[kstich]

'kms_cmk_id' is how the key is indexed in the materials description, this is consistent with the Java (and other) SDK implementations. The 'KeyId' naming on Encrypt is used for the $kmsKeyId variable.

[jeskew]

What if saving this instruction file fails? Is the ciphertext blob deleted from S3?

[kstich]

The $strategy->save() call is made before the PutObject call for the ciphertext. The instruction file will remain on S3 if there is a failure after it has been uploaded, not automatically deleted. I'll add a note to the guide and update the doc block for this file.

[jeskew]

encrypt isn't returning a promise, is it?

[kstich]

It is not returning a promise, but an AesStreamInterface. This is why it's the only piece wrapped in the Promise\promise_for call.

[jeskew]

I guess it's more of a style issue, but why does this need to be in an async context at all? With the exception of $this->client->putObjectAsync, this chain of functions seems to be operating synchronously and then returning non-promise values. Wouldn't it be easier to read if it was just iterative statements that returned the promise from putObjectAsync at the end?

[kstich]

The thought on async basing the manipulation was if someone invokes $s3EncryptionClient->putObjectAsync(), let's defer the heavy lifting that makes up the encryption work and other calls until they are executed. If someone invokes $s3EncryptionClient->putObject(), the work is immediately waited for anyways.

[jeskew]

gotcha that makes sense

[jeskew]

I believe this is a copy-paste error. IIRC, this case (and the following one) were meant to exercise round-tripping of multibyte characters, e.g.:

[Psr7\stream_for('دست‌نوشته‌ها نمی‌سوزند')],
[Psr7\stream_for('Рукописи не горят')],

[jeskew]

From context, I'm guessing that CEK stands for "content encryption key" and CMK stands for "content master key"; why not just use EncryptionKey and MasterKey as the parameter names?

[jeskew]

The test classes should probably be in a namespace corresponding to the directory structure.

[cjyclaire]

Haven't gone through all yet, post my stashed comments before I forget them : )

[cjyclaire]

why a hash? why not a array of supported ciphers?

[cjyclaire]

Typo, decrypted text data?

[kstich]

Good catch!

[cjyclaire]

Hmmm "return" is sufficient without "break"?

[cjyclaire]

Hmm PHP will return null if there is no return

[kstich]

Yeah, I wanted to be explicit here though since there are other return statements in this function.

[cjyclaire]

What's the failed scenario look like? Especially for "getObject"? It will be great if some error scenario (besides invalid arguments) can be tested as well

[jeskew]

The S3 test should be creating and deleting buckets via BeforeSuite and AfterSuite hooks. I understand that this test suite has to work this way to integrate with other SDK tests, but maybe in the future there could a test that works on multiple accounts.