Patch 2 fixes checkstyle warnings (except the >80 chars ones, which in this test I think is better to read).
Fixed the flaky testAggregationUnauth:
KMSAudit utilizes a removal listener to aggregate the same logs (OK ones in the test), and an UNAUTHORIZED log will invalidate the aggregation cache. Whether the UNAUTHORIZED entry or the aggregated OK log appear first solely depend on the run time - after cache.invalidate(cacheKey), whether the AUDIT_LOG.info executes first, or the removal listener's log executes first.
Fixed the unit test by verifying either scenario happened. The goal of the test is to check aggregation stops after UNAUTHORIZED, which is checked via the last OK message.