feat!: Updates to the AWS Encryption SDK

This change includes fixes for issues that were reported by Thai Duong
from Google's Security team, and for issues that were identified by AWS
Cryptography.

See: https://docs.aws.amazon.com/encryption-sdk/latest/developer-guide/migration.html

BREAKING CHANGE: AWS KMS KeyIDs must be specified explicitly or
Discovery mode explicitly chosen. Key committing suites are now default.
CommitmentPolicy requires commitment by default.

Author: alex-chew

CMakeLists.txt

@@ -49,8 +49,8 @@ include(FindOpenSSL)
 set(PROJECT_NAME aws-encryption-sdk)
 
 # Version number of the SDK to be consumed by C code and Doxygen
-set(MAJOR 1)
-set(MINOR 7)
+set(MAJOR 2)
+set(MINOR 0)
 set(PATCH 0)
 
 # Compiler feature tests and feature flags
@@ -161,7 +161,6 @@ target_link_libraries(aws-encryption-sdk-test PRIVATE ${PLATFORM_LIBS} ${OPENSSL
 target_link_libraries(aws-encryption-sdk-test PUBLIC AWS::aws-c-common)
 target_compile_definitions(aws-encryption-sdk-test PRIVATE AWS_CRYPTOSDK_TEST_STATIC=)
 target_compile_definitions(aws-encryption-sdk-test PUBLIC AWS_ENCRYPTION_SDK_FORCE_STATIC)
-target_compile_definitions(aws-encryption-sdk-test PRIVATE UNIT_TEST_ONLY_ALLOW_ENCRYPT_WITH_COMMITMENT)
 
 include(CodeCoverageTargets)
 

aws-encryption-sdk-cpp/tests/data/commitment_known_answer_tests.json

@@ -1023,4 +1023,4 @@
             "comment": "46. [Java ESDK] alg=ALG_AES_256_GCM_HKDF_SHA512_COMMIT_KEY_ECDSA_P384; unframed"
         }
     ]
-}
+}

aws-encryption-sdk-cpp/tests/test_vectors/static_test_vectors.cpp

@@ -305,11 +305,12 @@ static int process_test_scenarios(
             goto next_test_scenario;
         }
 
-        if (!(session = aws_cryptosdk_session_new_from_cmm(alloc, AWS_CRYPTOSDK_DECRYPT, cmm))) {
+        if (!(session = aws_cryptosdk_session_new_from_cmm_2(alloc, AWS_CRYPTOSDK_DECRYPT, cmm))) {
             failed++;
             fprintf(stderr, "Failed to initialize aws_cryptosdk_session, %s\n", aws_error_str(aws_last_error()));
             goto next_test_scenario;
         }
+        aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_FORBID_ENCRYPT_ALLOW_DECRYPT);
 
         if (test_loadfile(ct_filename.c_str(), &ciphertext, &ct_len)) {
             failed++;

examples/CMakeLists.txt

@@ -70,6 +70,10 @@ if (BUILD_AWS_ENC_SDK_CPP)
           $ENV{AWS_ENC_SDK_EXAMPLE_KEY_ARN} ${CMAKE_CURRENT_SOURCE_DIR}/example_data/aes_256_key)
         aws_add_test(example_string ${CMAKE_CURRENT_BINARY_DIR}/string
           $ENV{AWS_ENC_SDK_EXAMPLE_KEY_ARN})
+        aws_add_test(example_string_alternate_algorithm_suite ${CMAKE_CURRENT_BINARY_DIR}/string_alternate_algorithm_suite
+          $ENV{AWS_ENC_SDK_EXAMPLE_KEY_ARN})
+        aws_add_test(example_string_legacy_compatibility ${CMAKE_CURRENT_BINARY_DIR}/string_legacy_compatibility
+          $ENV{AWS_ENC_SDK_EXAMPLE_KEY_ARN})
 
         set_tests_properties(example_file_streaming PROPERTIES FIXTURES_REQUIRED Examples)
     endif()

examples/caching_cmm.cpp

@@ -69,7 +69,10 @@ std::vector<uint8_t> encrypt(struct aws_allocator *alloc, struct aws_cryptosdk_c
     struct aws_cryptosdk_session *session = aws_cryptosdk_session_new_from_cmm_2(alloc, AWS_CRYPTOSDK_ENCRYPT, cmm);
     if (!session) abort();
 
-    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_FORBID_ENCRYPT_ALLOW_DECRYPT)) {
+    /* For clarity, we set the commitment policy explicitly. The COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT
+     * policy is selected by default in v2.0, so this is not required.
+     */
+    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT)) {
         error("set_commitment_policy");
     }
 
@@ -89,7 +92,10 @@ std::string decrypt(
     struct aws_cryptosdk_session *session = aws_cryptosdk_session_new_from_cmm_2(alloc, AWS_CRYPTOSDK_DECRYPT, cmm);
     if (!session) abort();
 
-    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_FORBID_ENCRYPT_ALLOW_DECRYPT)) {
+    /* For clarity, we set the commitment policy explicitly. The COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT
+     * policy is selected by default in v2.0, so this is not required.
+     */
+    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT)) {
         error("set_commitment_policy");
     }
 

examples/file_streaming.cpp

@@ -56,7 +56,10 @@ static int process_file(
     struct aws_cryptosdk_session *session = aws_cryptosdk_session_new_from_keyring_2(allocator, mode, kms_keyring);
     if (!session) abort();
 
-    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_FORBID_ENCRYPT_ALLOW_DECRYPT)) {
+    /* For clarity, we set the commitment policy explicitly. The COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT
+     * policy is selected by default in v2.0, so this is not required.
+     */
+    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT)) {
         fprintf(stderr, "set_commitment_policy failed: %s", aws_error_debug_str(aws_last_error()));
         abort();
     }

examples/kms_discovery.cpp

@@ -50,7 +50,10 @@ void encrypt_string(
     if (!session) abort();
     aws_cryptosdk_keyring_release(kms_keyring);
 
-    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_FORBID_ENCRYPT_ALLOW_DECRYPT)) {
+    /* For clarity, we set the commitment policy explicitly. The COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT
+     * policy is selected by default in v2.0, so this is not required.
+     */
+    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT)) {
         fprintf(stderr, "set_commitment_policy failed: %s", aws_error_debug_str(aws_last_error()));
         abort();
     }
@@ -87,7 +90,10 @@ void decrypt_string(
         aws_cryptosdk_session_new_from_keyring_2(alloc, AWS_CRYPTOSDK_DECRYPT, kms_keyring);
     if (!session) abort();
 
-    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_FORBID_ENCRYPT_ALLOW_DECRYPT)) {
+    /* For clarity, we set the commitment policy explicitly. The COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT
+     * policy is selected by default in v2.0, so this is not required.
+     */
+    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT)) {
         fprintf(stderr, "set_commitment_policy failed: %s", aws_error_debug_str(aws_last_error()));
         abort();
     }

examples/multi_keyring.cpp

@@ -32,7 +32,10 @@ void encrypt_or_decrypt(
     struct aws_cryptosdk_session *session = aws_cryptosdk_session_new_from_keyring_2(alloc, mode, keyring);
     if (!session) abort();
 
-    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_FORBID_ENCRYPT_ALLOW_DECRYPT)) {
+    /* For clarity, we set the commitment policy explicitly. The COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT
+     * policy is selected by default in v2.0, so this is not required.
+     */
+    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT)) {
         fprintf(stderr, "set_commitment_policy failed: %s", aws_error_debug_str(aws_last_error()));
         abort();
     }

examples/raw_aes_keyring.c

@@ -33,7 +33,10 @@ void encrypt_or_decrypt_with_keyring(
     struct aws_cryptosdk_session *session = aws_cryptosdk_session_new_from_keyring_2(alloc, mode, keyring);
     if (!session) abort();
 
-    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_FORBID_ENCRYPT_ALLOW_DECRYPT)) {
+    /* For clarity, we set the commitment policy explicitly. The COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT
+     * policy is selected by default in v2.0, so this is not required.
+     */
+    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT)) {
         fprintf(stderr, "set_commitment_policy failed: %s", aws_error_debug_str(aws_last_error()));
         abort();
     }

examples/raw_rsa_keyring.c

@@ -33,7 +33,10 @@ void encrypt_or_decrypt_with_keyring(
     struct aws_cryptosdk_session *session = aws_cryptosdk_session_new_from_keyring_2(alloc, mode, keyring);
     if (!session) abort();
 
-    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_FORBID_ENCRYPT_ALLOW_DECRYPT)) {
+    /* For clarity, we set the commitment policy explicitly. The COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT
+     * policy is selected by default in v2.0, so this is not required.
+     */
+    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT)) {
         fprintf(stderr, "set_commitment_policy failed: %s", aws_error_debug_str(aws_last_error()));
         abort();
     }

examples/string.cpp

@@ -46,7 +46,10 @@ int encrypt_string(
         return AWS_OP_ERR;
     }
 
-    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_FORBID_ENCRYPT_ALLOW_DECRYPT)) {
+    /* For clarity, we set the commitment policy explicitly. The COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT
+     * policy is selected by default in v2.0, so this is not required.
+     */
+    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT)) {
         fprintf(stderr, "set_commitment_policy failed: %s", aws_error_debug_str(aws_last_error()));
         return AWS_OP_ERR;
     }
@@ -118,7 +121,7 @@ int decrypt_string_and_verify_encryption_context(
         return AWS_OP_ERR;
     }
 
-    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_FORBID_ENCRYPT_ALLOW_DECRYPT)) {
+    if (aws_cryptosdk_session_set_commitment_policy(session, COMMITMENT_POLICY_REQUIRE_ENCRYPT_REQUIRE_DECRYPT)) {
         fprintf(stderr, "set_commitment_policy failed: %s", aws_error_debug_str(aws_last_error()));
         return AWS_OP_ERR;
     }