Add support for Sigstore Bundles using sigstore-go verifier (#151)

* Remove dependabot for this fork (#159)

* Add Actions release and attest job (#147)

* update release workflow

Signed-off-by: Meredith Lancaster <malancas@github.com>

* Grab image digest for attestation step

Signed-off-by: Meredith Lancaster <malancas@github.com>

* comment

Signed-off-by: Meredith Lancaster <malancas@github.com>

* update workflow name

Signed-off-by: Meredith Lancaster <malancas@github.com>

* add release directions

Signed-off-by: Meredith Lancaster <malancas@github.com>

* undo ko config changes

Signed-off-by: Meredith Lancaster <malancas@github.com>

* add fork specific options to ko build call

Signed-off-by: Meredith Lancaster <malancas@github.com>

* Change version format

---------

Signed-off-by: Meredith Lancaster <malancas@github.com>
Co-authored-by: Cody Soyland <codysoyland@github.com>

* set release as target branch (#161)

Signed-off-by: Meredith Lancaster <malancas@github.com>

* Add support for Sigstore Bundles using sigstore-go verifier

Signed-off-by: Cody Soyland <codysoyland@github.com>

* Update docs

Signed-off-by: Cody Soyland <codysoyland@github.com>

* Rename func

Signed-off-by: Cody Soyland <codysoyland@github.com>

* Comment on observe timestamp setting

Signed-off-by: Cody Soyland <codysoyland@github.com>

* Refactor trusted material, add support for default TUF repo in bundle verifier

Signed-off-by: Cody Soyland <codysoyland@github.com>

* Remove accidental code

Signed-off-by: Cody Soyland <codysoyland@github.com>

* Fix tlog verification options

Signed-off-by: Cody Soyland <codysoyland@github.com>

---------

Signed-off-by: Meredith Lancaster <malancas@github.com>
Signed-off-by: Cody Soyland <codysoyland@github.com>
Co-authored-by: Meredith Lancaster <malancas@users.noreply.github.com>

Fix method name

Signed-off-by: Cody Soyland <codysoyland@github.com>

Author: codysoyland

config/300-clusterimagepolicy.yaml

@@ -209,6 +209,9 @@ spec:
                           trustRootRef:
                             description: Use the Certificate Chain from the referred TrustRoot.TimeStampAuthorities
                             type: string
+                      signatureFormat:
+                        description: SignatureFormat specifies the format the authority expects. Supported formats are "simplesigning" and "bundle". If not specified, the default is "simplesigning" (cosign's default).
+                        type: string
                       source:
                         description: Sources sets the configuration to specify the sources from where to consume the signatures.
                         type: array
@@ -545,6 +548,9 @@ spec:
                           trustRootRef:
                             description: Use the Certificate Chain from the referred TrustRoot.TimeStampAuthorities
                             type: string
+                      signatureFormat:
+                        description: SignatureFormat specifies the format the authority expects. Supported formats are "simplesigning" and "bundle". If not specified, the default is "simplesigning" (cosign's default).
+                        type: string
                       source:
                         description: Sources sets the configuration to specify the sources from where to consume the signatures.
                         type: array

docs/api-types/index-v1alpha1.md

@@ -172,6 +172,7 @@ Attestation defines the type of attestation to validate and optionally apply a p
 | ctlog | CTLog sets the configuration to verify the authority against a Rekor instance. | [TLog](#tlog) | false |
 | attestations | Attestations is a list of individual attestations for this authority, once the signature for this authority has been verified. | [][Attestation](#attestation) | false |
 | rfc3161timestamp | RFC3161Timestamp sets the configuration to verify the signature timestamp against a RFC3161 time-stamping instance. | [RFC3161Timestamp](#rfc3161timestamp) | false |
+| signatureFormat | SignatureFormat specifies the format the authority expects. Supported formats are \"simplesigning\" and \"bundle\". If not specified, the default is \"simplesigning\" (cosign's default). | string | false |
 
 [Back to TOC](#table-of-contents)
 

docs/api-types/index.md

@@ -49,6 +49,7 @@ The authorities block defines the rules for discovering and validating signature
 | ctlog | CTLog sets the configuration to verify the authority against a Rekor instance. | [TLog](#tlog) | false |
 | attestations | Attestations is a list of individual attestations for this authority, once the signature for this authority has been verified. | [][Attestation](#attestation) | false |
 | rfc3161timestamp | RFC3161Timestamp sets the configuration to verify the signature timestamp against a RFC3161 time-stamping instance. | [RFC3161Timestamp](#rfc3161timestamp) | false |
+| signatureFormat | SignatureFormat specifies the format the authority expects. Supported formats are \"simplesigning\" and \"bundle\". If not specified, the default is \"simplesigning\" (cosign's default). | string | false |
 
 [Back to TOC](#table-of-contents)
 

go.mod

@@ -64,6 +64,7 @@ require (
 	github.com/go-jose/go-jose/v4 v4.0.5
 	github.com/sigstore/protobuf-specs v0.4.1
 	github.com/sigstore/scaffolding v0.7.22
+	github.com/sigstore/sigstore-go v0.7.1
 	github.com/sigstore/sigstore/pkg/signature/kms/aws v1.9.1
 	github.com/sigstore/sigstore/pkg/signature/kms/azure v1.9.1
 	github.com/sigstore/sigstore/pkg/signature/kms/gcp v1.9.1
@@ -228,7 +229,6 @@ require (
 	github.com/sassoftware/relic v7.2.1+incompatible // indirect
 	github.com/secure-systems-lab/go-securesystemslib v0.9.0 // indirect
 	github.com/shibumi/go-pathspec v1.3.0 // indirect
-	github.com/sigstore/sigstore-go v0.7.1 // indirect
 	github.com/sigstore/timestamp-authority v1.2.5 // indirect
 	github.com/sirupsen/logrus v1.9.3 // indirect
 	github.com/sourcegraph/conc v0.3.0 // indirect

pkg/apis/policy/v1alpha1/clusterimagepolicy_types.go

@@ -144,6 +144,10 @@ type Authority struct {
 	// RFC3161Timestamp sets the configuration to verify the signature timestamp against a RFC3161 time-stamping instance.
 	// +optional
 	RFC3161Timestamp *RFC3161Timestamp `json:"rfc3161timestamp,omitempty"`
+	// SignatureFormat specifies the format the authority expects. Supported
+	// formats are "simplesigning" and "bundle". If not specified, the default
+	// is "simplesigning" (cosign's default).
+	SignatureFormat string `json:"signatureFormat,omitempty"`
 }
 
 // This references a public verification key stored in

pkg/apis/policy/v1beta1/clusterimagepolicy_types.go

@@ -143,6 +143,10 @@ type Authority struct {
 	// RFC3161Timestamp sets the configuration to verify the signature timestamp against a RFC3161 time-stamping instance.
 	// +optional
 	RFC3161Timestamp *RFC3161Timestamp `json:"rfc3161timestamp,omitempty"`
+	// SignatureFormat specifies the format the authority expects. Supported
+	// formats are "simplesigning" and "bundle". If not specified, the default
+	// is "simplesigning" (cosign's default).
+	SignatureFormat string `json:"signatureFormat,omitempty"`
 }
 
 // This references a public verification key stored in

pkg/tuf/repo.go

@@ -28,9 +28,12 @@ import (
 	"path/filepath"
 	"runtime"
 	"strings"
+	"sync"
 	"testing/fstest"
 	"time"
 
+	"github.com/sigstore/sigstore-go/pkg/root"
+	"github.com/sigstore/sigstore/pkg/tuf"
 	"github.com/theupdateframework/go-tuf/client"
 	"sigs.k8s.io/release-utils/version"
 )
@@ -294,3 +297,31 @@ func ClientFromRemote(_ context.Context, mirror string, rootJSON []byte, targets
 	}
 	return tufClient, nil
 }
+
+var (
+	once               sync.Once
+	trustedRoot        *root.TrustedRoot
+	singletonRootError error
+)
+
+// GetTrustedRoot returns the trusted root for the TUF repository.
+func GetTrustedRoot() (*root.TrustedRoot, error) {
+	once.Do(func() {
+		tufClient, err := tuf.NewFromEnv(context.Background())
+		if err != nil {
+			singletonRootError = fmt.Errorf("initializing tuf: %w", err)
+			return
+		}
+		// TODO: add support for custom trusted root path
+		targetBytes, err := tufClient.GetTarget("trusted_root.json")
+		if err != nil {
+			singletonRootError = fmt.Errorf("error getting targets: %w", err)
+			return
+		}
+		trustedRoot, singletonRootError = root.NewTrustedRootFromJSON(targetBytes)
+	})
+	if singletonRootError != nil {
+		return nil, singletonRootError
+	}
+	return trustedRoot, nil
+}

pkg/webhook/bundle.go

@@ -0,0 +1,140 @@
+package webhook
+
+import (
+	"crypto/x509"
+	"encoding/hex"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"io"
+	"strings"
+
+	"github.com/google/go-containerregistry/pkg/name"
+	v1 "github.com/google/go-containerregistry/pkg/v1"
+	"github.com/google/go-containerregistry/pkg/v1/remote"
+
+	"github.com/sigstore/sigstore-go/pkg/bundle"
+	"github.com/sigstore/sigstore-go/pkg/root"
+	"github.com/sigstore/sigstore-go/pkg/verify"
+)
+
+type VerifiedBundle struct {
+	SGBundle *bundle.Bundle
+	Result   *verify.VerificationResult
+	Hash     v1.Hash
+}
+
+// VerifiedBundle implements Signature
+var _ Signature = &VerifiedBundle{}
+
+func (vb *VerifiedBundle) Digest() (v1.Hash, error) {
+	return vb.Hash, nil
+}
+
+func (vb *VerifiedBundle) Payload() ([]byte, error) {
+	// todo: this should return the json-serialized dsse envelope
+	envelope := vb.SGBundle.GetDsseEnvelope()
+	if envelope == nil {
+		return nil, fmt.Errorf("no dsse envelope found")
+	}
+	return json.Marshal(envelope)
+}
+
+func (vb *VerifiedBundle) Signature() ([]byte, error) {
+	// TODO: implement this
+	return []byte{}, nil
+}
+
+func (vb *VerifiedBundle) Cert() (*x509.Certificate, error) {
+	vc, err := vb.SGBundle.VerificationContent()
+	if err != nil {
+		return nil, err
+	}
+	cert := vc.Certificate()
+	if cert != nil {
+		return cert, nil
+	}
+	return nil, errors.New("bundle does not contain a certificate")
+}
+
+func VerifiedBundles(ref name.Reference, trustedMaterial root.TrustedMaterial, remoteOpts []remote.Option, policyOptions []verify.PolicyOption, verifierOptions []verify.VerifierOption) ([]Signature, error) {
+	sev, err := verify.NewSignedEntityVerifier(trustedMaterial, verifierOptions...)
+	if err != nil {
+		return nil, err
+	}
+
+	bundles, hash, err := getBundles(ref, remoteOpts)
+	if err != nil {
+		return nil, err
+	}
+
+	digestBytes, err := hex.DecodeString(hash.Hex)
+	if err != nil {
+		return nil, err
+	}
+	artifactPolicy := verify.WithArtifactDigest(hash.Algorithm, digestBytes)
+	policy := verify.NewPolicy(artifactPolicy, policyOptions...)
+
+	verifiedBundles := make([]Signature, 0)
+	for _, b := range bundles {
+		// TODO: should these be done in parallel? (as is done in cosign?)
+		result, err := sev.Verify(b, policy)
+		if err == nil {
+			verifiedBundles = append(verifiedBundles, &VerifiedBundle{SGBundle: b, Result: result, Hash: *hash})
+		}
+	}
+	return verifiedBundles, nil
+}
+
+func getBundles(ref name.Reference, remoteOpts []remote.Option) ([]*bundle.Bundle, *v1.Hash, error) {
+	desc, err := remote.Get(ref, remoteOpts...)
+	if err != nil {
+		return nil, nil, fmt.Errorf("error getting image descriptor: %w", err)
+	}
+
+	digest := ref.Context().Digest(desc.Digest.String())
+
+	referrers, err := remote.Referrers(digest, remoteOpts...)
+	if err != nil {
+		return nil, nil, fmt.Errorf("error getting referrers: %w", err)
+	}
+	refManifest, err := referrers.IndexManifest()
+	if err != nil {
+		return nil, nil, fmt.Errorf("error getting referrers manifest: %w", err)
+	}
+
+	bundles := make([]*bundle.Bundle, 0)
+
+	for _, refDesc := range refManifest.Manifests {
+		if !strings.HasPrefix(refDesc.ArtifactType, "application/vnd.dev.sigstore.bundle") {
+			continue
+		}
+
+		refImg, err := remote.Image(ref.Context().Digest(refDesc.Digest.String()), remoteOpts...)
+		if err != nil {
+			return nil, nil, fmt.Errorf("error getting referrer image: %w", err)
+		}
+		layers, err := refImg.Layers()
+		if err != nil {
+			return nil, nil, fmt.Errorf("error getting referrer image: %w", err)
+		}
+		layer0, err := layers[0].Uncompressed()
+		if err != nil {
+			return nil, nil, fmt.Errorf("error getting referrer image: %w", err)
+		}
+		bundleBytes, err := io.ReadAll(layer0)
+		if err != nil {
+			return nil, nil, fmt.Errorf("error getting referrer image: %w", err)
+		}
+		b := &bundle.Bundle{}
+		err = b.UnmarshalJSON(bundleBytes)
+		if err != nil {
+			return nil, nil, fmt.Errorf("error unmarshalling bundle: %w", err)
+		}
+		bundles = append(bundles, b)
+	}
+	if len(bundles) == 0 {
+		return nil, nil, fmt.Errorf("no bundle found in referrers")
+	}
+	return bundles, &desc.Digest, nil
+}

pkg/webhook/clusterimagepolicy/clusterimagepolicy_types.go

@@ -86,6 +86,8 @@ type Authority struct {
 	Attestations []AttestationPolicy `json:"attestations,omitempty"`
 	// +optional
 	RFC3161Timestamp *RFC3161Timestamp `json:"rfc3161timestamp,omitempty"`
+	// +optional
+	SignatureFormat string `json:"signatureFormat,omitempty"`
 }
 
 // This references a public verification key stored in
@@ -325,6 +327,7 @@ func convertAuthorityV1Alpha1ToWebhook(in v1alpha1.Authority) *Authority {
 		CTLog:            in.CTLog,
 		RFC3161Timestamp: rfc3161Timestamp,
 		Attestations:     attestations,
+		SignatureFormat:  in.SignatureFormat,
 	}
 }
 

pkg/webhook/validation.go

@@ -24,11 +24,10 @@ import (
 	"knative.dev/pkg/logging"
 
 	"github.com/sigstore/cosign/v2/pkg/cosign"
-	"github.com/sigstore/cosign/v2/pkg/oci"
 	"github.com/sigstore/sigstore/pkg/signature"
 )
 
-func valid(ctx context.Context, ref name.Reference, keys []crypto.PublicKey, hashAlgo crypto.Hash, checkOpts *cosign.CheckOpts) ([]oci.Signature, error) {
+func valid(ctx context.Context, ref name.Reference, keys []crypto.PublicKey, hashAlgo crypto.Hash, checkOpts *cosign.CheckOpts) ([]Signature, error) {
 	if len(keys) == 0 {
 		return validSignatures(ctx, ref, checkOpts)
 	}
@@ -58,16 +57,24 @@ func valid(ctx context.Context, ref name.Reference, keys []crypto.PublicKey, has
 var cosignVerifySignatures = cosign.VerifyImageSignatures
 var cosignVerifyAttestations = cosign.VerifyImageAttestations
 
-func validSignatures(ctx context.Context, ref name.Reference, checkOpts *cosign.CheckOpts) ([]oci.Signature, error) {
+func validSignatures(ctx context.Context, ref name.Reference, checkOpts *cosign.CheckOpts) ([]Signature, error) {
 	checkOpts.ClaimVerifier = cosign.SimpleClaimVerifier
 	sigs, _, err := cosignVerifySignatures(ctx, ref, checkOpts)
-	return sigs, err
+	sigList := make([]Signature, len(sigs))
+	for i, s := range sigs {
+		sigList[i] = s
+	}
+	return sigList, err
 }
 
-func validAttestations(ctx context.Context, ref name.Reference, checkOpts *cosign.CheckOpts) ([]oci.Signature, error) {
+func validAttestations(ctx context.Context, ref name.Reference, checkOpts *cosign.CheckOpts) ([]Signature, error) {
 	checkOpts.ClaimVerifier = cosign.IntotoSubjectClaimVerifier
 	attestations, _, err := cosignVerifyAttestations(ctx, ref, checkOpts)
-	return attestations, err
+	sigList := make([]Signature, len(attestations))
+	for i, s := range attestations {
+		sigList[i] = s
+	}
+	return sigList, err
 }
 
 func parsePems(b []byte) []*pem.Block {