feat: Adding test vector spec to MPL (#263)

Test vectors are important both for compatibility
but also to help reason about correctness.

Having empirical tests gives confidence to our proofs.

Author: seebees

framework/test-vectors/README.md

@@ -0,0 +1,113 @@
+[//]: # "Copyright Amazon.com Inc. or its affiliates. All Rights Reserved."
+[//]: # "SPDX-License-Identifier: CC-BY-SA-4.0"
+
+## Summary
+
+These test vectors are intended to be used to validate interoperability
+across implementations of clients in a runtime,
+for the AWS Crypto Tools AWS Cryptographic Material Providers Library (MPL).
+
+They are composed of JSON manifest files that define one or more test cases,
+including sufficient information to process each test case.
+These manifest files can also identify additional resources needed for a given test case.
+These resources will be identified with a URI.
+If identifying a local file, the URI will be a relative path from the manifest file's
+parent directory to the target file.
+
+Every manifest type definition must include a unique type name that will be used by
+test vector handlers to identify the manifest type.
+
+See https://github.com/awslabs/aws-crypto-tools-test-vector-framework for additional information.
+This framework is much of the motivation for this work.
+
+The manifest is meant to produce encryption and decryption materials that every
+runtime implementation can process and produce the desired output for that test vector.
+
+These test vectors are not meant to be processed by a top level client library like
+the AWS Encryption SDK or the AWS Database Encryption SDK. However; they may be able
+to use the manifest to see how to construct keyrings that they can use in their test
+vectors.
+
+```mermaid
+flowchart LR
+  subgraph MPL Encryption-Materials
+    direction LR
+    MPL-Manifest --> MPL-Java -->|MPL-TestVector|EncryptionMaterials
+    MPL-Manifest --> MPL-NET -->|MPL-TestVector|EncryptionMaterials
+    MPL-Manifest --> MPL-X -->|MPL-TestVector|EncryptionMaterials
+  end
+```
+
+```mermaid
+flowchart LR
+  subgraph MPL Decryption-Materials
+    direction LR
+    MPL-Manifest+MPL-TestVector --> MPL-Java -->|MPL-TestVector|DecryptionMaterials
+    MPL-Manifest+MPL-TestVector --> MPL-NET -->|MPL-TestVector|DecryptionMaterials
+    MPL-Manifest+MPL-TestVector --> MPL-X -->|MPL-TestVector|DecryptionMaterials
+  end
+```
+
+```mermaid
+flowchart LR
+  subgraph ESDK Usage of MPL Manifest
+    direction LR
+    MPL-Manifest-. Keyring-Construction .-> ESDK-Java --> ESDK-Manifest
+
+    MPL-Manifest-. Keyring-Construction .-> ESDK-NET --> ESDK-Manifest
+  end
+```
+
+## Glossary
+
+- **Test Vector** : Information about a single test case. Used to either process existing data
+  or create new data.
+- **Test Vector Manifest** : A document that describes one or more test vectors.
+
+## Out of Scope
+
+This file is not a definition or description of any specific type of test vector or manifest.
+
+## Motivation
+
+The AWS Crypto Tools team has built several tools that require multiple implementations.
+Interoperability between these implementations and runtimes is critical.
+To ensure that these implementations are actually interoperable,
+we needed to define test vectors that would allow validation
+of various aspects of these tools.
+As we built more tools and required more types of test vectors,
+it became evident that there would be value in defining an extensible framework
+for defining many different types of test vectors to avoid having to reinvent the wheel
+for every client.
+
+We also need to be able to maintain backwards compatibility.
+By producing manifests that can be stored
+we can ensure that new clients can decrypt old messages.
+
+The latest version of the MPL being written in Dafny
+and much of the design requirements are proven by Dafny specifications.
+These specifications are valuable but having empirical tests
+makes this proof even stronger.
+Because you can write and prove a specification
+but it may not be correct.
+This is especially true for backwards compatibility.
+But even for code reviews and understanding the impact of a change,
+looking at how test vectors are created helps reason about the edge cases of a change.
+
+## Drawbacks
+
+Not every configuration can be practically tested.
+See [test vector enumeration](test-vector-enumeration.md#selecting-a-representative-input-value) for details.
+
+We will need to write minimal clients in every language with which we want to use these test
+vectors to understand the manifests described in subsequent features.
+
+This should represent acceptable overhead: we would need to write some amount of code for each
+language to handle the test vectors anyway and this framework lets us define a consistent
+way of handling those test vectors while remaining simple to process.
+
+Additionally, using Dafny can lower this overhead.
+The challenge now is to compose the proper level of reusability.
+The MPL is the base library for many encryption clients
+and there may be some work to be able to reuse parts of these test vectors
+in other libraries.

framework/test-vectors/complete-vectors/README.md

@@ -0,0 +1,24 @@
+[//]: # "Copyright Amazon.com Inc. or its affiliates. All Rights Reserved."
+[//]: # "SPDX-License-Identifier: CC-BY-SA-4.0"
+
+## Summary
+
+For each type of keyring or cmm description,
+there is a file that describes how this component is tested.
+This simplifies reasoning about each component.
+For example, to find out how the DefaultCMM is tested,
+look at the default-cmm.md file
+that describes how this component is tested
+and the various features that can be reasoned about.
+
+The test vectors MUST aggregate all these individual tests together
+into larger manifest files.
+
+Unless otherwise specified, all "Basic Tests" MUST use a `DefaultCMM`
+
+## Motivation
+
+By keeping every component separate it is easier to find
+and reason about the completeness of testing.
+This also allows top level clients like the ESDK or DBESDK to
+reuse the key or cmm description to avoid reinventing the wheel.

framework/test-vectors/complete-vectors/default-cmm.md

@@ -0,0 +1,81 @@
+[//]: # "Copyright Amazon.com Inc. or its affiliates. All Rights Reserved."
+[//]: # "SPDX-License-Identifier: CC-BY-SA-4.0"
+
+# Default CMM Vectors
+
+## Version
+
+1.0.0
+
+## Summary
+
+This describes the test cases for the [Default CMM](../../default-cmm.md)
+
+## Reference-level Explanation
+
+### Basic tests
+
+A test MUST verify that on both encrypt and decrypt the correct
+plaintext data key is produced.
+
+A test MUST verify that an encrypt keyring that returns
+an incorrect plaintext data key will fail.
+
+A test MUST verify that a decrypt keyring that returns
+an incorrect plaintext data key will fail.
+
+### Required and reproduced encryption context success cases
+
+For a given [encryption context](../../structures.md#encryption-context),
+every subset of the keys for this encryption context
+MUST be attempted as the `requiredEncryptionContextKeys`.
+For example, `{ a: a, b: b }` produces the complete set of keys subsets: `{ {}, { a }, { b }, { a, b } }` called `requiredEncryptionContextKeys`.
+
+For every `requiredEncryptionContextKeys` produced above
+`reproducedEncryptionContext` MUST be attempted
+for every subset of the encryption context
+where the `requiredEncryptionContextKeys` is a subset of the attempted subset.
+
+For example:
+
+- Given an empty `requiredEncryptionContextKeys`,
+  every combination of the original encryption context
+  will succeed as `reproducedEncryptionContext`.
+- Given a `requiredEncryptionContextKeys` consisting of `{a}` the
+  `reproducedEncryptionContext` to try would be: - `{ a : a }` and `{ a : a, b : b}`
+
+### Required encryption context keys failures on encrypt
+
+For a given [encryption context](../../structures.md#encryption-context),
+every subset of the keys for this encryption context
+MUST be attempted as the `requiredEncryptionContextKeys`.
+The keys of the encryption context attempted however
+where the `requiredEncryptionContextKeys` MUST NOT be a subset of the attempted subset.
+
+For example:
+
+- Given an `encryptionContext`: `{a:a, b:b, c:c}` will produce the subset
+  of `requiredEncryptionContextKeys`, `{{}, {a}, {b}, {c}, {a,b}, {a,c), {b,c}, {a,b,c}}`
+- Given a `requiredEncryptionContextKeys` consisting of `{a}` the
+  `reproducedEncryptionContext` to try would be:
+- `{b:b, c:c}`
+- Given a `requiredEncryptionContextKeys` consisting of `{a,b}` the
+  `reproducedEncryptionContext` to try would be:
+- `{}`, `{c:c}`, and `{a:a, c:c}`
+- Given a `requiredEncryptionContextKeys` consisting of `{a,b,c}` the
+  `reproducedEncryptionContext` to try would be:
+- `{}`
+
+### Reproduced encryption context failures on decrypt
+
+For a given [encryption context](../../structures.md#encryption-context),
+every subset of the keys for this encryption context
+MUST be attempted as the `requiredEncryptionContextKeys`.
+An incorrect encryption context
+MUST be attempted that differs from the correct encryption context
+by both values and keys.
+
+For example given the encryption context `{ a: a, b: b }`,
+all possible combinations that are not empty of `{ a: c, b: c, c: c}`.
+The test MUST attempt the union of every incorrect encryption context
+with every subset of the original encryption context.

framework/test-vectors/complete-vectors/encryption-context.md

@@ -0,0 +1,25 @@
+[//]: # "Copyright Amazon.com Inc. or its affiliates. All Rights Reserved."
+[//]: # "SPDX-License-Identifier: CC-BY-SA-4.0"
+
+# Encryption Context Vectors
+
+## Version
+
+1.0.0
+
+## Summary
+
+This is a description of the standard encryption contexts to test.
+
+## Reference-level Explanation
+
+### Standard Encryption Contexts Constraints
+
+- MUST have an empty map.
+  - The number of the items in the empty map MUST equal 0.
+- MUST have a small map.
+  - The number of the items in the small map MUST be between 1 and 10.
+- MUST have a large map.
+  - The number of the items in the large map MUST be greater than 10.
+- MUST have multibyte UTF8 characters in both the key and value.
+- MUST have multibyte non-BMP characters in both the key and value.

framework/test-vectors/complete-vectors/hierarchy.md

@@ -0,0 +1,79 @@
+[//]: # "Copyright Amazon.com Inc. or its affiliates. All Rights Reserved."
+[//]: # "SPDX-License-Identifier: CC-BY-SA-4.0"
+
+# Aws Kms Hierarchical Keyring Vectors
+
+## Version
+
+1.0.0
+
+## Summary
+
+This describes the test cases for the [Aws Kms Hierarchical Keyring](../../aws-kms/aws-kms-hierarchical-keyring.md)
+
+## Reference-level Explanation
+
+### Basic tests
+
+For a given static branch key,
+a test MUST attempt to encrypt and decrypt
+with every available [algorithm suite](../../algorithm-suites.md#algorithm-suite-id)
+
+For every available algorithm suite and static branch key,
+a test MUST attempt to encrypt and decrypt with every [standard encryption context](./encryption-context.md#standard-encryption-contexts).
+
+### Input dimensions
+
+#### Encrypt
+
+- key description
+  - key: range of [representative branch keys](#representative-branch-keys)
+
+#### Decrypt
+
+- key description
+  - key: range of [representative branch keys](#representative-branch-keys)
+  - logicalKeyStore:
+    - "Default",
+      - Represents the logical key store name on encrypt
+    - "Other"
+      - Represents any other logical key store name
+
+### Representative branch keys
+
+- `"static-branch-key-1"`
+  - MUST be some valid branch key.
+- `"static-branch-key-2"`
+  - MUST be some valid branch key other than `static-branch-key-1`.
+- `"branch-key-no-permissions"`
+  - MUST be some valid branch key where the test vector runner does not have permissions for the KMS key.
+- `"branch-key-not-in-table"`
+  - MUST be some branch key ID not present in the keystore table.,
+- `"branch-key-no-version"`
+  - MUST be some branch key that is in the table, but the configured version is not in the table.
+- `"invalid-branch-key-material"`
+  - MUST be some branch key with illegally mutated invalid branch key material.
+
+### Evaluation rules
+
+- If encrypting key type is anything other than `"aws-kms-hierarchy"`
+  and decrypting key type is `"aws-kms-hierarchy"`,
+  the result MUST be `"negative-decrypt"`.
+- If encrypting key type is `"aws-kms-hierarchy"`
+  and decrypting key type is anything other than `"aws-kms-hierarchy"`,
+  the result MUST be `"negative-decrypt"`.
+- If the logical key store is "Other",
+  the result MUST be `"negative-decrypt"`.
+- If `"key"` is different on encrypt and decrypt,
+  the result MUST be `"negative-decrypt"`.
+  (i.e. no key specified here is interoperable with any other key.)
+- If `"key"` is any of:
+  - `"branch-key-no-permissions"`
+  - `"branch-key-not-in-table"`
+  - `"branch-key-no-version"`
+  - `"invalid-branch-key"`
+    (i.e. an "invalid" key with a particular invalid condition)
+    on either encrypt or decrypt,
+    the result MUST be either `"negative-encrypt"` or `"negative-decrypt"`,
+    depending on whether the invalid key was specified on encrypt or decrypt.
+- In all other cases, the result MUST be `"positive"`.

framework/test-vectors/complete-vectors/kms-mrk-aware-discovery.md

@@ -0,0 +1,23 @@
+[//]: # "Copyright Amazon.com Inc. or its affiliates. All Rights Reserved."
+[//]: # "SPDX-License-Identifier: CC-BY-SA-4.0"
+
+# Aws Kms Mrk Discovery Keyring Vectors
+
+## Version
+
+1.0.0
+
+## Summary
+
+This describes the test cases for the [Aws Kms Mrk Discovery Keyring](../../aws-kms/aws-kms-mrk-discovery-keyring.md)
+
+## Reference-level Explanation
+
+### Basic tests
+
+A test MUST attempt to encrypt with a single region key.
+A test MUST attempt to encrypt with a multi region key.
+A test MUST attempt to decrypt with a discovery filter and without a filter.
+A test MUST attempt to encrypt and decrypt
+with every available [algorithm suite](../../algorithm-suites.md#algorithm-suite-id)
+A test MUST attempt every [standard encryption context](./encryption-context.md#standard-encryption-contexts).

framework/test-vectors/complete-vectors/kms-mrk-aware.md

@@ -0,0 +1,24 @@
+[//]: # "Copyright Amazon.com Inc. or its affiliates. All Rights Reserved."
+[//]: # "SPDX-License-Identifier: CC-BY-SA-4.0"
+
+# Aws Kms Mrk Keyring Vectors
+
+## Version
+
+1.0.0
+
+## Summary
+
+This describes the test cases for the [Aws Kms Mrk Keyring](../../aws-kms/aws-kms-mrk-keyring.md)
+
+## Reference-level Explanation
+
+### Basic tests
+
+A test MUST attempt to encrypt and decrypt
+with every combination of 2 MRKs in different regions.
+A test MUST attempt to decrypt with only one of the MRKs used
+to encrypt.
+A test MUST attempt to encrypt and decrypt
+with every available [algorithm suite](../../algorithm-suites.md#algorithm-suite-id)
+A test MUST attempt every [standard encryption context](./encryption-context.md#standard-encryption-contexts).