fix c++?

Author: seebees

test-server/cpp-v2-transition-server/main.cpp

@@ -4,7 +4,7 @@
 #include <aws/s3-encryption/S3EncryptionClient.h>
 #include <aws/s3-encryption/materials/KMSEncryptionMaterials.h>
 #include <aws/s3-encryption/materials/SimpleEncryptionMaterials.h>
-#include <aws/core/utils/base64/Base64.h>
+#include <aws/core/utils/HashingUtils.h>
 #include <aws/s3/model/GetObjectRequest.h>
 #include <aws/s3/model/PutObjectRequest.h>
 #include <microhttpd.h>
@@ -141,40 +141,48 @@ MHD_Result handle_create_client(struct MHD_Connection *connection,
         inst_put = request["config"]["instructionFileConfig"]["enableInstructionFilePutObject"];
     }
 
-    // Create appropriate encryption materials based on key type
-    std::shared_ptr<Aws::S3Encryption::Materials::EncryptionMaterials> materials;
+    // Create CryptoConfigurationV2 and S3EncryptionClientV2 based on key type
+    std::shared_ptr<S3EncryptionClientV2> encryption_client;
 
     if (!aes_key_blob.empty()) {
       // Base64 decode the AES key
-      auto decoded = Aws::Utils::Base64::Decode(aes_key_blob);
-      if (!decoded.IsSuccess()) {
+      Aws::Utils::ByteBuffer decoded = Aws::Utils::HashingUtils::Base64Decode(aes_key_blob);
+      if (decoded.GetLength() == 0) {
         return send_response(connection, 400,
             "{\"error\":\"Failed to decode AES key\"}");
       }
 
       Aws::Utils::CryptoBuffer key_buffer(
-          decoded.GetResult().GetUnderlyingData(),
-          decoded.GetResult().GetLength()
+          decoded.GetUnderlyingData(),
+          decoded.GetLength()
       );
 
-      materials = std::make_shared<
+      auto materials = std::make_shared<
           Aws::S3Encryption::Materials::SimpleEncryptionMaterialsWithGCMAAD>(
           key_buffer
       );
+      CryptoConfigurationV2 config(materials);
+      
+      if (legacy1 || legacy2)
+        config.SetSecurityProfile(SecurityProfile::V2_AND_LEGACY);
+      if (inst_put)
+        config.SetStorageMethod(StorageMethod::INSTRUCTION_FILE);
+      
+      encryption_client = std::make_shared<S3EncryptionClientV2>(config);
     } else if (!kms_key_id.empty()) {
-      materials = std::make_shared<KMSWithContextEncryptionMaterials>(kms_key_id);
+      auto materials = std::make_shared<KMSWithContextEncryptionMaterials>(kms_key_id);
+      CryptoConfigurationV2 config(materials);
+      
+      if (legacy1 || legacy2)
+        config.SetSecurityProfile(SecurityProfile::V2_AND_LEGACY);
+      if (inst_put)
+        config.SetStorageMethod(StorageMethod::INSTRUCTION_FILE);
+      
+      encryption_client = std::make_shared<S3EncryptionClientV2>(config);
     } else {
       return send_response(connection, 400,
           "{\"error\":\"No valid key material provided\"}");
     }
-    
-    CryptoConfigurationV2 config(materials);
-    if (legacy1 || legacy2)
-      config.SetSecurityProfile(SecurityProfile::V2_AND_LEGACY);
-    if (inst_put)
-      config.SetStorageMethod(StorageMethod::INSTRUCTION_FILE);
-
-    auto encryption_client = std::make_shared<S3EncryptionClientV2>(config);
 
     std::string client_id = generate_uuid();
     set_client(client_id, encryption_client);

test-server/cpp-v3-server/main.cpp

@@ -4,7 +4,7 @@
 #include <aws/s3-encryption/S3EncryptionClient.h>
 #include <aws/s3-encryption/materials/KMSEncryptionMaterials.h>
 #include <aws/s3-encryption/materials/SimpleEncryptionMaterials.h>
-#include <aws/core/utils/base64/Base64.h>
+#include <aws/core/utils/HashingUtils.h>
 #include <aws/s3/model/GetObjectRequest.h>
 #include <aws/s3/model/PutObjectRequest.h>
 #include <microhttpd.h>
@@ -133,64 +133,85 @@ MHD_Result handle_create_client(struct MHD_Connection *connection,
         inst_put = request["config"]["instructionFileConfig"]["enableInstructionFilePutObject"];
     }
 
-    // Create appropriate encryption materials based on key type
-    std::shared_ptr<Aws::S3Encryption::Materials::EncryptionMaterials> materials;
+    std::string commitmentPolicy = get_config(request, "commitmentPolicy");
+    std::string encryptionAlgorithm = get_config(request, "encryptionAlgorithm");
+
+    // Create CryptoConfigurationV3 and S3EncryptionClientV3 based on key type
+    std::shared_ptr<S3EncryptionClientV3> encryption_client;
 
     if (!aes_key_blob.empty()) {
       // Base64 decode the AES key
-      auto decoded = Aws::Utils::Base64::Decode(aes_key_blob);
-      if (!decoded.IsSuccess()) {
+      Aws::Utils::ByteBuffer decoded = Aws::Utils::HashingUtils::Base64Decode(aes_key_blob);
+      if (decoded.GetLength() == 0) {
         return send_response(connection, 400,
             "{\"error\":\"Failed to decode AES key\"}");
       }
 
       Aws::Utils::CryptoBuffer key_buffer(
-          decoded.GetResult().GetUnderlyingData(),
-          decoded.GetResult().GetLength()
+          decoded.GetUnderlyingData(),
+          decoded.GetLength()
       );
 
-      materials = std::make_shared<
+      auto materials = std::make_shared<
           Aws::S3Encryption::Materials::SimpleEncryptionMaterialsWithGCMAAD>(
           key_buffer
       );
+      CryptoConfigurationV3 config(materials);
+      
+      if (legacy1 || legacy2)
+        config.AllowLegacy();
+      if (inst_put)
+        config.SetStorageMethod(StorageMethod::INSTRUCTION_FILE);
+      
+      if (commitmentPolicy == "REQUIRE_ENCRYPT_REQUIRE_DECRYPT") {
+        if (encryptionAlgorithm == "ALG_AES_256_GCM_IV12_TAG16_NO_KDF") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
+        if (encryptionAlgorithm == "ALG_AES_256_CBC_IV16_NO_KDF") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
+        config.SetCommitmentPolicy(CommitmentPolicy::REQUIRE_ENCRYPT_REQUIRE_DECRYPT);
+      } else if (commitmentPolicy == "REQUIRE_ENCRYPT_ALLOW_DECRYPT") {
+        if (encryptionAlgorithm == "ALG_AES_256_GCM_IV12_TAG16_NO_KDF") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
+        config.SetCommitmentPolicy(CommitmentPolicy::REQUIRE_ENCRYPT_ALLOW_DECRYPT);
+      } else if (commitmentPolicy == "FORBID_ENCRYPT_ALLOW_DECRYPT") {
+        if (encryptionAlgorithm == "ALG_AES_256_GCM_HKDF_SHA512_COMMIT_KEY") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
+        config.SetCommitmentPolicy(CommitmentPolicy::FORBID_ENCRYPT_ALLOW_DECRYPT);
+      }
+      
+      // Configure ClientConfiguration with retry strategy for throttling
+      Aws::Client::ClientConfiguration clientConfig;
+      clientConfig.maxConnections = 25;
+      clientConfig.retryStrategy = Aws::Client::InitRetryStrategy("standard");
+      
+      encryption_client = std::make_shared<S3EncryptionClientV3>(config, clientConfig);
     } else if (!kms_key_id.empty()) {
-      materials = std::make_shared<KMSWithContextEncryptionMaterials>(kms_key_id);
+      auto materials = std::make_shared<KMSWithContextEncryptionMaterials>(kms_key_id);
+      CryptoConfigurationV3 config(materials);
+      
+      if (legacy1 || legacy2)
+        config.AllowLegacy();
+      if (inst_put)
+        config.SetStorageMethod(StorageMethod::INSTRUCTION_FILE);
+      
+      if (commitmentPolicy == "REQUIRE_ENCRYPT_REQUIRE_DECRYPT") {
+        if (encryptionAlgorithm == "ALG_AES_256_GCM_IV12_TAG16_NO_KDF") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
+        if (encryptionAlgorithm == "ALG_AES_256_CBC_IV16_NO_KDF") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
+        config.SetCommitmentPolicy(CommitmentPolicy::REQUIRE_ENCRYPT_REQUIRE_DECRYPT);
+      } else if (commitmentPolicy == "REQUIRE_ENCRYPT_ALLOW_DECRYPT") {
+        if (encryptionAlgorithm == "ALG_AES_256_GCM_IV12_TAG16_NO_KDF") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
+        config.SetCommitmentPolicy(CommitmentPolicy::REQUIRE_ENCRYPT_ALLOW_DECRYPT);
+      } else if (commitmentPolicy == "FORBID_ENCRYPT_ALLOW_DECRYPT") {
+        if (encryptionAlgorithm == "ALG_AES_256_GCM_HKDF_SHA512_COMMIT_KEY") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
+        config.SetCommitmentPolicy(CommitmentPolicy::FORBID_ENCRYPT_ALLOW_DECRYPT);
+      }
+      
+      // Configure ClientConfiguration with retry strategy for throttling
+      Aws::Client::ClientConfiguration clientConfig;
+      clientConfig.maxConnections = 25;
+      clientConfig.retryStrategy = Aws::Client::InitRetryStrategy("standard");
+      
+      encryption_client = std::make_shared<S3EncryptionClientV3>(config, clientConfig);
     } else {
       return send_response(connection, 400,
           "{\"error\":\"No valid key material provided\"}");
     }
-    
-            // Configure ClientConfiguration with retry strategy for throttling
-            Aws::Client::ClientConfiguration clientConfig;
-            clientConfig.maxConnections = 25;
-            clientConfig.retryStrategy = Aws::MakeShared<Aws::Client::DefaultRetryStrategy>(
-                "S3EncryptionClient",
-                5  // maxRetries - will use exponential backoff for throttling
-            );
-
-            CryptoConfigurationV3 config(materials);
-            config.SetClientConfiguration(clientConfig);
-    if (legacy1 || legacy2)
-      config.AllowLegacy();
-    if (inst_put)
-      config.SetStorageMethod(StorageMethod::INSTRUCTION_FILE);
-
-    std::string commitmentPolicy = get_config(request, "commitmentPolicy");
-    std::string encryptionAlgorithm = get_config(request, "encryptionAlgorithm");
-  
-    if (commitmentPolicy == "REQUIRE_ENCRYPT_REQUIRE_DECRYPT") {
-      if (encryptionAlgorithm == "ALG_AES_256_GCM_IV12_TAG16_NO_KDF") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
-      if (encryptionAlgorithm == "ALG_AES_256_CBC_IV16_NO_KDF") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
-      config.SetCommitmentPolicy(CommitmentPolicy::REQUIRE_ENCRYPT_REQUIRE_DECRYPT);
-    } else if (commitmentPolicy == "REQUIRE_ENCRYPT_ALLOW_DECRYPT") {
-      if (encryptionAlgorithm == "ALG_AES_256_GCM_IV12_TAG16_NO_KDF") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
-      config.SetCommitmentPolicy(CommitmentPolicy::REQUIRE_ENCRYPT_ALLOW_DECRYPT);
-    } else if (commitmentPolicy == "FORBID_ENCRYPT_ALLOW_DECRYPT") {
-      if (encryptionAlgorithm == "ALG_AES_256_GCM_HKDF_SHA512_COMMIT_KEY") return unsupported(connection, commitmentPolicy, encryptionAlgorithm);
-      config.SetCommitmentPolicy(CommitmentPolicy::FORBID_ENCRYPT_ALLOW_DECRYPT);
-    }
-
-    auto encryption_client = std::make_shared<S3EncryptionClientV3>(config);
 
     std::string client_id = generate_uuid();
     set_client(client_id, encryption_client);