Fix HeaderValueMatches & dependencies upgrades (#4)

* Fix HeaderValueMatches, move to Java 11, upgrade lib dependencies, refresh TimestampMicrosConverter implementation * Upgrade Java version * Upgrade Java version
michelin · Jan 6, 2023 · 6c46427 · 6c46427
1 parent 0cd6775
commit 6c46427
Show file tree

Hide file tree

Showing 10 changed files with 441 additions and 394 deletions.
diff --git a/.github/workflows/on_push_master.yml b/.github/workflows/on_push_master.yml
@@ -15,7 +15,7 @@ jobs:
       - uses: actions/setup-java@v2
         with:
           distribution: 'adopt'
-          java-version: '8'
+          java-version: '11'
       - name: Cache Gradle packages
         uses: actions/cache@v1
         with:

diff --git a/.github/workflows/on_push_tag.yml b/.github/workflows/on_push_tag.yml
@@ -13,7 +13,7 @@ jobs:
       - uses: actions/setup-java@v2
         with:
           distribution: 'adopt'
-          java-version: '8'
+          java-version: '11'
       - name: Cache Gradle packages
         uses: actions/cache@v1
         with:

diff --git a/build.gradle b/build.gradle
@@ -18,16 +18,16 @@ repositories {
 
 dependencies {
 
-    implementation 'org.apache.kafka:connect-api:2.8.0'
-    implementation 'org.apache.kafka:connect-transforms:2.8.0'
-    implementation 'org.apache.kafka:kafka_2.13:2.8.0'
+    implementation 'org.apache.kafka:connect-api:3.1.2'
+    implementation 'org.apache.kafka:connect-transforms:3.1.2'
+    implementation 'org.apache.kafka:kafka_2.13:3.1.2'
 
     // Use JUnit Jupiter for testing.
-    testImplementation 'org.junit.jupiter:junit-jupiter:5.8.2'
+    testImplementation 'org.junit.jupiter:junit-jupiter:5.9.0'
 }
 java {
-    sourceCompatibility = '1.8'
-    targetCompatibility = '1.8'
+    sourceCompatibility = '11'
+    targetCompatibility = '11'
 }
 test {
     // Use JUnit Platform for unit tests.

diff --git a/settings.gradle b/settings.gradle
@@ -13,7 +13,7 @@ buildscript {
         }
     }
     dependencies {
-        classpath 'io.alcide:gradle-semantic-build-versioning:4.2.1'
+        classpath 'io.alcide:gradle-semantic-build-versioning:4.2.2'
     }
 }
 

diff --git a/src/main/java/com/michelin/kafka/config/providers/AES256ConfigProvider.java b/src/main/java/com/michelin/kafka/config/providers/AES256ConfigProvider.java
@@ -9,31 +9,38 @@
 import org.apache.kafka.common.config.provider.ConfigProvider;
 import org.apache.kafka.common.config.types.Password;
 
+import javax.crypto.BadPaddingException;
 import javax.crypto.Cipher;
-import javax.crypto.SecretKey;
+import javax.crypto.IllegalBlockSizeException;
 import javax.crypto.SecretKeyFactory;
 import javax.crypto.spec.IvParameterSpec;
 import javax.crypto.spec.PBEKeySpec;
 import javax.crypto.spec.SecretKeySpec;
-import java.security.spec.KeySpec;
+import java.nio.charset.StandardCharsets;
 import java.util.Base64;
 import java.util.HashMap;
 import java.util.Map;
 import java.util.Set;
 
+/**
+ * AES256 encrypted Kafka config provider.
+ *
+ * @author Michelin
+ */
 public class AES256ConfigProvider implements ConfigProvider {
-
     public static final String OVERVIEW_DOC = "A ConfigProvider to decode values encoded with AES256 key.";
 
     private static final String AES_KEY_CONFIG = "key";
     private static final String SALT_CONFIG = "salt";
+
+    /**
+     * Definition of accepted parameters: key and salt.
+     */
     public static final ConfigDef CONFIG_DEF = new ConfigDef()
             .define(AES_KEY_CONFIG, ConfigDef.Type.PASSWORD, ConfigDef.NO_DEFAULT_VALUE,
-                    new ConfigDef.NonNullValidator(), ConfigDef.Importance.HIGH,
-                    "The AES256 key.")
+                    new ConfigDef.NonNullValidator(), ConfigDef.Importance.HIGH, "The AES256 key.")
             .define(SALT_CONFIG, ConfigDef.Type.STRING, ConfigDef.NO_DEFAULT_VALUE,
-                    new ConfigDef.NonEmptyString(), ConfigDef.Importance.HIGH,
-                    "The AES256 salt.");
+                    new ConfigDef.NonEmptyString(), ConfigDef.Importance.HIGH, "The AES256 salt.");
 
     /**
      * Represents the aes256 key
@@ -46,26 +53,25 @@ public class AES256ConfigProvider implements ConfigProvider {
     private String salt;
 
     @Override
-    public void configure(Map<String, ?> configs) {
-        Map<String, Object> parsedConfigs = CONFIG_DEF.parse(configs);
+    public void configure(final Map<String, ?> pConfigs) {
+        final var parsedConfigs = CONFIG_DEF.parse(pConfigs);
         this.aesKey = (Password) parsedConfigs.get(AES_KEY_CONFIG);
-        this.salt = parsedConfigs.get(SALT_CONFIG).toString();
+        this.salt = parsedConfigs.get(SALT_CONFIG).toString().trim();
     }
 
     @Override
-    public ConfigData get(String path) {
+    public ConfigData get(final String pPath) {
         return new ConfigData(new HashMap<>());
     }
 
     @Override
-    public ConfigData get(String path, Set<String> keys) {
-        Map<String, String> decoded = new HashMap<>();
-
-        final Cipher cipher = this.getCipher();
-        keys.forEach(key -> {
+    public ConfigData get(final String pPath, final Set<String> pKeys) {
+        final var decoded = new HashMap<String, String>();
+        final var cipher = this.getCipher();
+        pKeys.forEach(key -> {
             try {
-                decoded.put(key, new String(cipher.doFinal(Base64.getDecoder().decode(key))));
-            } catch (Exception e) {
+                decoded.put(key, new String(cipher.doFinal(Base64.getDecoder().decode(key)), StandardCharsets.UTF_8));
+            } catch (IllegalArgumentException | IllegalBlockSizeException | BadPaddingException e) {
                 throw new ConfigException("Error while decrypting " + key, e);
             }
         });
@@ -85,20 +91,18 @@ public void close() {
      */
     private Cipher getCipher() {
         try {
-            byte[] iv = {0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0};
-            final IvParameterSpec ivspec = new IvParameterSpec(iv);
+            final var ivspec = new IvParameterSpec(new byte[]{0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0});
 
-            final SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA256");
-            final KeySpec spec = new PBEKeySpec(this.aesKey.value().toCharArray(), this.salt.getBytes(), 65536, 256);
-            final SecretKey tmp = factory.generateSecret(spec);
-            final SecretKeySpec secretKey = new SecretKeySpec(tmp.getEncoded(), "AES");
+            final var factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA256");
+            final var spec = new PBEKeySpec(this.aesKey.value().toCharArray(), this.salt.getBytes(StandardCharsets.UTF_8), 65536, 256);
+            final var tmp = factory.generateSecret(spec);
+            final var secretKey = new SecretKeySpec(tmp.getEncoded(), "AES");
 
-            final Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5PADDING");
+            final var cipher = Cipher.getInstance("AES/CBC/PKCS5PADDING");
             cipher.init(Cipher.DECRYPT_MODE, secretKey, ivspec);
             return cipher;
-        } catch (Exception e) {
+        } catch (final Exception e) {
             throw new ConfigException("Error during Cipher initialization", e);
         }
     }
-
 }
-Original file line number
+Diff line change
@@ Expand Up / @@ -13,7 +13,7 @@ buildscript { @@
             }
         }
         dependencies {
-            classpath 'io.alcide:gradle-semantic-build-versioning:4.2.1'
+            classpath 'io.alcide:gradle-semantic-build-versioning:4.2.2'
         }
     }
@@ Expand Down @@