Use default Verifier for the public key contained in a certificate (closes #74) (#424)

* pkg/verify: load default Verifier given a public key

Signed-off-by: Riccardo Schirone <[email protected]>

* REMOVE ME: update protobuf-specs/sigstore to trails

Signed-off-by: Riccardo Schirone <[email protected]>

* pkg/verify: try to verify some key types with multiple algos

Signed-off-by: Riccardo Schirone <[email protected]>

* REMOVE ME: update to trail repos

Signed-off-by: Riccardo Schirone <[email protected]>

* REMOVE ME: update to trail repos 2

Signed-off-by: Riccardo Schirone <[email protected]>

* REMOVE ME: update to trail repos 3

Signed-off-by: Riccardo Schirone <[email protected]>

* pkg/verify: fix lint

Signed-off-by: Riccardo Schirone <[email protected]>

* allow to enable/disable fallback verifications

Signed-off-by: Riccardo Schirone <[email protected]>

* fix lint

Signed-off-by: Riccardo Schirone <[email protected]>

* perform the version check in sigstore-go

Signed-off-by: Riccardo Schirone <[email protected]>

* fix lint

Signed-off-by: Riccardo Schirone <[email protected]>

* pkg/verify: make sure to support 0.1/0.2/0.3

Signed-off-by: Riccardo Schirone <[email protected]>

* update deps

Signed-off-by: Riccardo Schirone <[email protected]>

* rename NewVirtualSigstoreCustom

Signed-off-by: Riccardo Schirone <[email protected]>

* pkg/bundle: fix linting

Signed-off-by: Riccardo Schirone <[email protected]>

* Use ed25519ph when hashedrekord, ed25519 for dsse

Signed-off-by: Riccardo Schirone <[email protected]>

---------

Signed-off-by: Riccardo Schirone <[email protected]>

Author: ret2libc

pkg/bundle/bundle.go

@@ -80,7 +80,7 @@ func NewProtobufBundle(b *protobundle.Bundle) (*ProtobufBundle, error) {
 }
 
 func (b *Bundle) validate() error {
-	bundleVersion, err := getBundleVersion(b.MediaType)
+	bundleVersion, err := b.Version()
 	if err != nil {
 		return fmt.Errorf("error getting bundle version: %w", err)
 	}
@@ -152,6 +152,10 @@ func MediaTypeString(version string) (string, error) {
 	return mtString, nil
 }
 
+func (b *Bundle) Version() (string, error) {
+	return getBundleVersion(b.MediaType)
+}
+
 func getBundleVersion(mediaType string) (string, error) {
 	switch mediaType {
 	case mediaTypeBase + "+json;version=0.1":
@@ -369,7 +373,7 @@ func (b *Bundle) Timestamps() ([][]byte, error) {
 
 // MinVersion returns true if the bundle version is greater than or equal to the expected version.
 func (b *Bundle) MinVersion(expectVersion string) bool {
-	version, err := getBundleVersion(b.MediaType)
+	version, err := b.Version()
 	if err != nil {
 		return false
 	}

pkg/sign/transparency_test.go

@@ -47,7 +47,7 @@ func (m *mockRekor) CreateLogEntry(_ *entries.CreateLogEntryParams, _ ...entries
 		return nil, err
 	}
 
-	signer, err := signature.LoadECDSASignerVerifier(leafPrivKey, crypto.SHA256)
+	signer, err := signature.LoadSignerVerifier(leafPrivKey, crypto.SHA256)
 	if err != nil {
 		return nil, err
 	}

pkg/testing/ca/ca.go

@@ -21,6 +21,7 @@ import (
 	"crypto/ecdsa"
 	"crypto/elliptic"
 	"crypto/rand"
+	"crypto/rsa"
 	"crypto/sha256"
 	"crypto/x509"
 	"crypto/x509/pkix"
@@ -38,6 +39,7 @@ import (
 	"github.com/go-openapi/runtime"
 	"github.com/go-openapi/swag"
 	"github.com/secure-systems-lab/go-securesystemslib/dsse"
+	v1 "github.com/sigstore/protobuf-specs/gen/pb-go/common/v1"
 	"github.com/sigstore/rekor/pkg/generated/models"
 	"github.com/sigstore/rekor/pkg/pki"
 	"github.com/sigstore/rekor/pkg/types"
@@ -56,16 +58,17 @@ import (
 )
 
 type VirtualSigstore struct {
-	fulcioCA              *root.FulcioCertificateAuthority
-	fulcioIntermediateKey *ecdsa.PrivateKey
-	tsaCA                 *root.SigstoreTimestampingAuthority
-	tsaLeafKey            *ecdsa.PrivateKey
-	rekorKey              *ecdsa.PrivateKey
-	ctlogKey              *ecdsa.PrivateKey
-	publicKeyVerifier     map[string]root.TimeConstrainedVerifier
+	fulcioCA                *root.FulcioCertificateAuthority
+	fulcioIntermediateKey   *ecdsa.PrivateKey
+	tsaCA                   *root.SigstoreTimestampingAuthority
+	tsaLeafKey              *ecdsa.PrivateKey
+	rekorKey                *ecdsa.PrivateKey
+	ctlogKey                *ecdsa.PrivateKey
+	publicKeyVerifier       map[string]root.TimeConstrainedVerifier
+	signingAlgorithmDetails signature.AlgorithmDetails
 }
 
-func NewVirtualSigstore() (*VirtualSigstore, error) {
+func NewVirtualSigstoreWithSigningAlg(signingKeyDetails v1.PublicKeyDetails) (*VirtualSigstore, error) {
 	ss := &VirtualSigstore{fulcioCA: &root.FulcioCertificateAuthority{}, tsaCA: &root.SigstoreTimestampingAuthority{}}
 
 	rootCert, rootKey, err := GenerateRootCa()
@@ -109,10 +112,18 @@ func NewVirtualSigstore() (*VirtualSigstore, error) {
 	if err != nil {
 		return nil, err
 	}
+	ss.signingAlgorithmDetails, err = signature.GetAlgorithmDetails(signingKeyDetails)
+	if err != nil {
+		return nil, err
+	}
 
 	return ss, nil
 }
 
+func NewVirtualSigstore() (*VirtualSigstore, error) {
+	return NewVirtualSigstoreWithSigningAlg(v1.PublicKeyDetails_PKIX_ECDSA_P256_SHA_256)
+}
+
 // getLogID calculates the digest of a PKIX-encoded public key
 func getLogID(pub crypto.PublicKey) (string, error) {
 	pubBytes, err := x509.MarshalPKIXPublicKey(pub)
@@ -147,8 +158,25 @@ func (ca *VirtualSigstore) RekorSignPayload(payload tlog.RekorPayload) ([]byte,
 	return bundleSig, nil
 }
 
-func (ca *VirtualSigstore) GenerateLeafCert(identity, issuer string) (*x509.Certificate, *ecdsa.PrivateKey, error) {
-	privKey, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
+func (ca *VirtualSigstore) GenerateLeafCert(identity, issuer string) (*x509.Certificate, crypto.PrivateKey, error) {
+	var privKey crypto.PrivateKey
+	var err error
+	switch ca.signingAlgorithmDetails.GetKeyType() {
+	case signature.ECDSA:
+		var curve *elliptic.Curve
+		curve, err = ca.signingAlgorithmDetails.GetECDSACurve()
+		if err != nil {
+			return nil, nil, err
+		}
+		privKey, err = ecdsa.GenerateKey(*curve, rand.Reader)
+	case signature.RSA:
+		var keySize signature.RSAKeySize
+		keySize, err = ca.signingAlgorithmDetails.GetRSAKeySize()
+		if err != nil {
+			return nil, nil, err
+		}
+		privKey, err = rsa.GenerateKey(rand.Reader, int(keySize))
+	}
 	if err != nil {
 		return nil, nil, err
 	}
@@ -171,7 +199,7 @@ func (ca *VirtualSigstore) AttestAtTime(identity, issuer string, envelopeBody []
 		return nil, err
 	}
 
-	signer, err := signature.LoadECDSASignerVerifier(leafPrivKey, crypto.SHA256)
+	signer, err := signature.LoadSignerFromAlgorithmDetails(leafPrivKey, ca.signingAlgorithmDetails)
 	if err != nil {
 		return nil, err
 	}
@@ -213,21 +241,42 @@ func (ca *VirtualSigstore) AttestAtTime(identity, issuer string, envelopeBody []
 }
 
 func (ca *VirtualSigstore) Sign(identity, issuer string, artifact []byte) (*TestEntity, error) {
-	return ca.SignAtTime(identity, issuer, artifact, time.Now().Add(5*time.Minute))
+	return ca.SignAtTimeWithVersion(identity, issuer, artifact, time.Now().Add(5*time.Minute), "v0.3")
+}
+
+func (ca *VirtualSigstore) SignWithVersion(identity, issuer string, artifact []byte, version string) (*TestEntity, error) {
+	return ca.SignAtTimeWithVersion(identity, issuer, artifact, time.Now().Add(5*time.Minute), version)
 }
 
 func (ca *VirtualSigstore) SignAtTime(identity, issuer string, artifact []byte, integratedTime time.Time) (*TestEntity, error) {
+	return ca.SignAtTimeWithVersion(identity, issuer, artifact, integratedTime, "v0.3")
+}
+
+func (ca *VirtualSigstore) SignAtTimeWithVersion(identity, issuer string, artifact []byte, integratedTime time.Time, version string) (*TestEntity, error) {
 	leafCert, leafPrivKey, err := ca.GenerateLeafCert(identity, issuer)
 	if err != nil {
 		return nil, err
 	}
 
-	signer, err := signature.LoadECDSASignerVerifier(leafPrivKey, crypto.SHA256)
+	signer, err := signature.LoadSignerFromAlgorithmDetails(leafPrivKey, ca.signingAlgorithmDetails)
 	if err != nil {
 		return nil, err
 	}
 
-	digest := sha256.Sum256(artifact)
+	hashType := ca.signingAlgorithmDetails.GetHashType()
+	hasher := hashType.New()
+	hasher.Write(artifact)
+	digest := hasher.Sum(nil)
+
+	var digestString string
+	switch hashType {
+	case crypto.SHA256:
+		digestString = "SHA2_256"
+	case crypto.SHA384:
+		digestString = "SHA2_384"
+	case crypto.SHA512:
+		digestString = "SHA2_512"
+	}
 	sig, err := signer.SignMessage(bytes.NewReader(artifact))
 	if err != nil {
 		return nil, err
@@ -246,8 +295,9 @@ func (ca *VirtualSigstore) SignAtTime(identity, issuer string, artifact []byte,
 	return &TestEntity{
 		certChain:        []*x509.Certificate{leafCert, ca.fulcioCA.Intermediates[0], ca.fulcioCA.Root},
 		timestamps:       [][]byte{tsr},
-		messageSignature: bundle.NewMessageSignature(digest[:], "SHA2_256", sig),
+		messageSignature: bundle.NewMessageSignature(digest, digestString, sig),
 		tlogEntries:      []*tlog.Entry{entry},
+		version:          version,
 	}, nil
 }
 
@@ -262,7 +312,7 @@ func (ca *VirtualSigstore) GenerateTlogEntry(leafCert *x509.Certificate, envelop
 		return nil, err
 	}
 
-	rekorBody, err := generateRekorEntry(intoto.KIND, intoto.New().DefaultVersion(), envelopeBytes, leafCertPem, sig)
+	rekorBody, err := generateRekorEntry(intoto.KIND, intoto.New().DefaultVersion(), envelopeBytes, leafCertPem, sig, ca.signingAlgorithmDetails)
 	if err != nil {
 		return nil, err
 	}
@@ -327,7 +377,7 @@ func (ca *VirtualSigstore) generateTlogEntryHashedRekord(leafCert *x509.Certific
 		return nil, err
 	}
 
-	rekorBody, err := generateRekorEntry(hashedrekord.KIND, hashedrekord.New().DefaultVersion(), artifact, leafCertPem, sig)
+	rekorBody, err := generateRekorEntry(hashedrekord.KIND, hashedrekord.New().DefaultVersion(), artifact, leafCertPem, sig, ca.signingAlgorithmDetails)
 	if err != nil {
 		return nil, err
 	}
@@ -366,9 +416,9 @@ func (ca *VirtualSigstore) PublicKeyVerifier(keyID string) (root.TimeConstrained
 	return v, nil
 }
 
-func generateRekorEntry(kind, version string, artifact []byte, cert []byte, sig []byte) (string, error) {
+func generateRekorEntry(kind, version string, artifact []byte, cert []byte, sig []byte, algorithmDetails signature.AlgorithmDetails) (string, error) {
 	// Generate the Rekor Entry
-	entryImpl, err := createEntry(context.Background(), kind, version, artifact, cert, sig)
+	entryImpl, err := createEntry(context.Background(), kind, version, artifact, cert, sig, algorithmDetails)
 	if err != nil {
 		return "", err
 	}
@@ -379,7 +429,7 @@ func generateRekorEntry(kind, version string, artifact []byte, cert []byte, sig
 	return base64.StdEncoding.EncodeToString(entryBytes), nil
 }
 
-func createEntry(ctx context.Context, kind, apiVersion string, blobBytes, certBytes, sigBytes []byte) (types.EntryImpl, error) {
+func createEntry(ctx context.Context, kind, apiVersion string, blobBytes, certBytes, sigBytes []byte, algorithmDetails signature.AlgorithmDetails) (types.EntryImpl, error) {
 	props := types.ArtifactProperties{
 		PublicKeyBytes: [][]byte{certBytes},
 		PKIFormat:      string(pki.X509),
@@ -389,8 +439,12 @@ func createEntry(ctx context.Context, kind, apiVersion string, blobBytes, certBy
 		props.ArtifactBytes = blobBytes
 		props.SignatureBytes = sigBytes
 	case hashedrekord.KIND:
-		blobHash := sha256.Sum256(blobBytes)
-		props.ArtifactHash = strings.ToLower(hex.EncodeToString(blobHash[:]))
+		hashType := algorithmDetails.GetHashType()
+		hasher := hashType.New()
+		hasher.Write(blobBytes)
+		blobHash := hasher.Sum(nil)
+
+		props.ArtifactHash = strings.ToLower(hex.EncodeToString(blobHash))
 		props.SignatureBytes = sigBytes
 	default:
 		return nil, fmt.Errorf("unexpected entry kind: %s", kind)
@@ -513,6 +567,7 @@ type TestEntity struct {
 	messageSignature *bundle.MessageSignature
 	timestamps       [][]byte
 	tlogEntries      []*tlog.Entry
+	version          string
 }
 
 func (e *TestEntity) VerificationContent() (verify.VerificationContent, error) {
@@ -523,6 +578,10 @@ func (e *TestEntity) HasInclusionPromise() bool {
 	return true
 }
 
+func (e *TestEntity) Version() (string, error) {
+	return e.version, nil
+}
+
 func (e *TestEntity) HasInclusionProof() bool {
 	for _, tlog := range e.tlogEntries {
 		if tlog.HasInclusionProof() {
@@ -645,7 +704,7 @@ func GenerateTSAIntermediate(rootTemplate *x509.Certificate, rootPriv crypto.Sig
 	return cert, priv, nil
 }
 
-func GenerateLeafCert(subject string, oidcIssuer string, expiration time.Time, priv *ecdsa.PrivateKey,
+func GenerateLeafCert(subject string, oidcIssuer string, expiration time.Time, priv crypto.PrivateKey,
 	parentTemplate *x509.Certificate, parentPriv crypto.Signer) (*x509.Certificate, error) {
 	certTemplate := &x509.Certificate{
 		SerialNumber:   big.NewInt(1),
@@ -664,7 +723,12 @@ func GenerateLeafCert(subject string, oidcIssuer string, expiration time.Time, p
 		},
 	}
 
-	cert, err := createCertificate(certTemplate, parentTemplate, &priv.PublicKey, parentPriv)
+	signer, ok := priv.(crypto.Signer)
+	if !ok {
+		return nil, fmt.Errorf("private key does not implement crypto.Signer")
+	}
+
+	cert, err := createCertificate(certTemplate, parentTemplate, signer.Public(), parentPriv)
 	if err != nil {
 		return nil, err
 	}

pkg/verify/interface.go

@@ -51,13 +51,18 @@ type VerificationProvider interface {
 	VerificationContent() (VerificationContent, error)
 }
 
+type VersionProvider interface {
+	Version() (string, error)
+}
+
 type SignedEntity interface {
 	HasInclusionPromise
 	HasInclusionProof
 	SignatureProvider
 	SignedTimestampProvider
 	TlogEntryProvider
 	VerificationProvider
+	VersionProvider
 }
 
 type VerificationContent interface {
@@ -119,3 +124,7 @@ func (b *BaseSignedEntity) Timestamps() ([][]byte, error) {
 func (b *BaseSignedEntity) TlogEntries() ([]*tlog.Entry, error) {
 	return nil, errNotImplemented
 }
+
+func (b *BaseSignedEntity) Version() (string, error) {
+	return "", errNotImplemented
+}