Use a diffrent Signer when interacting with Fulcio

ret2libc · ret2libc · commit 1046eea436db · 2024-02-29T10:28:19.000+01:00
ED25519-ph is not widely supported and it is not an accepted option in
x509 Certificates/CSR, so Fulcio does not accept them. Instead, clients
are supposed to use PureED25519 when interacting with Fulcio.

This commit provides to the Fulcio code a separate SignerVerifier
created from the one loaded from the private key. This SignerVerifier is
usually of the same type, except when dealing with ED25519ph.

Signed-off-by: Riccardo Schirone &lt;riccardo.schirone@trailofbits.com&gt;
diff --git a/cmd/cosign/cli/fulcio/fulcio.go b/cmd/cosign/cli/fulcio/fulcio.go
@@ -109,7 +109,7 @@ type Signer struct {
 	signature.SignerVerifier
 }
 
-func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier) (*Signer, error) {
+func NewSignerWithAdapter(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier, fulcioSigner signature.SignerVerifier) (*Signer, error) {
 	fClient, err := NewClient(ko.FulcioURL)
 	if err != nil {
 		return nil, fmt.Errorf("creating Fulcio client: %w", err)
@@ -164,7 +164,7 @@ func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerV
 		}
 		flow = flowNormal
 	}
-	Resp, err := GetCert(ctx, signer, idToken, flow, ko.OIDCIssuer, ko.OIDCClientID, ko.OIDCClientSecret, ko.OIDCRedirectURL, fClient) // TODO, use the chain.
+	Resp, err := GetCert(ctx, fulcioSigner, idToken, flow, ko.OIDCIssuer, ko.OIDCClientID, ko.OIDCClientSecret, ko.OIDCRedirectURL, fClient) // TODO, use the chain.
 	if err != nil {
 		return nil, fmt.Errorf("retrieving cert: %w", err)
 	}
@@ -179,6 +179,10 @@ func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerV
 	return f, nil
 }
 
+func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier) (*Signer, error) {
+	return NewSignerWithAdapter(ctx, ko, signer, signer)
+}
+
 func (f *Signer) PublicKey(opts ...signature.PublicKeyOption) (crypto.PublicKey, error) { //nolint: revive
 	return f.SignerVerifier.PublicKey()
 }
diff --git a/cmd/cosign/cli/fulcio/fulcioverifier/fulcioverifier.go b/cmd/cosign/cli/fulcio/fulcioverifier/fulcioverifier.go
@@ -26,8 +26,8 @@ import (
 	"github.com/sigstore/sigstore/pkg/signature"
 )
 
-func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier) (*fulcio.Signer, error) {
-	fs, err := fulcio.NewSigner(ctx, ko, signer)
+func NewSignerWithAdapter(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier, fulcioSigner signature.SignerVerifier) (*fulcio.Signer, error) {
+	fs, err := fulcio.NewSignerWithAdapter(ctx, ko, signer, fulcioSigner)
 	if err != nil {
 		return nil, err
 	}
@@ -46,3 +46,7 @@ func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerV
 
 	return fs, nil
 }
+
+func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier) (*fulcio.Signer, error) {
+	return NewSignerWithAdapter(ctx, ko, signer, signer)
+}
diff --git a/cmd/cosign/cli/sign/sign.go b/cmd/cosign/cli/sign/sign.go
@@ -552,12 +552,17 @@ func keylessSigner(ctx context.Context, ko options.KeyOpts, sv *SignerVerifier)
 		err error
 	)
 
+	fulcioSV, err := adaptSignerVerifierToFulcio(sv)
+	if err != nil {
+		return nil, fmt.Errorf("adapting signer verifier to Fulcio: %w", err)
+	}
+
 	if ko.InsecureSkipFulcioVerify {
-		if k, err = fulcio.NewSigner(ctx, ko, sv); err != nil {
+		if k, err = fulcio.NewSignerWithAdapter(ctx, ko, sv, fulcioSV); err != nil {
 			return nil, fmt.Errorf("getting key from Fulcio: %w", err)
 		}
 	} else {
-		if k, err = fulcioverifier.NewSigner(ctx, ko, sv); err != nil {
+		if k, err = fulcioverifier.NewSignerWithAdapter(ctx, ko, sv, fulcioSV); err != nil {
 			return nil, fmt.Errorf("getting key from Fulcio: %w", err)
 		}
 	}
@@ -624,6 +629,27 @@ func (c *SignerVerifier) Bytes(ctx context.Context) ([]byte, error) {
 	return pemBytes, nil
 }
 
+// adaptSignerVerifierToFulcio adapts, if necessary, the SignerVerifier to be used to interact with Fulcio.
+//
+// This is needed in particular for ED25519 keys with the pre-hashed version of
+// the algorithm, which is not supported by Fulcio. This function creates a
+// ED25519 SignerVerifier based on that instead.
+func adaptSignerVerifierToFulcio(sv *SignerVerifier) (*SignerVerifier, error) {
+	if ed25519phSV, ok := sv.SignerVerifier.(*signature.ED25519phSignerVerifier); ok {
+		signerVerifier, err := ed25519phSV.ToED25519SignerVerifier()
+		if err != nil {
+			return nil, err
+		}
+
+		return &SignerVerifier{
+			SignerVerifier: signerVerifier,
+			Cert:           sv.Cert,
+			Chain:          sv.Chain,
+		}, nil
+	}
+	return sv, nil
+}
+
 func fetchLocalSignedPayload(sig oci.Signature) (*cosign.LocalSignedPayload, error) {
 	signedPayload := &cosign.LocalSignedPayload{}
 	var err error

Original file line number	Diff line number	Diff line change
`@@ -109,7 +109,7 @@ type Signer struct {`
`109`	`109`	`signature.SignerVerifier`
`110`	`110`	`}`
`111`	`111`
`112`		`-func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier) (*Signer, error) {`
	`112`	`+func NewSignerWithAdapter(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier, fulcioSigner signature.SignerVerifier) (*Signer, error) {`
`113`	`113`	`fClient, err := NewClient(ko.FulcioURL)`
`114`	`114`	`if err != nil {`
`115`	`115`	`return nil, fmt.Errorf("creating Fulcio client: %w", err)`
`@@ -164,7 +164,7 @@ func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerV`
`164`	`164`	`}`
`165`	`165`	`flow = flowNormal`
`166`	`166`	`}`
`167`		`- Resp, err := GetCert(ctx, signer, idToken, flow, ko.OIDCIssuer, ko.OIDCClientID, ko.OIDCClientSecret, ko.OIDCRedirectURL, fClient) // TODO, use the chain.`
	`167`	`+ Resp, err := GetCert(ctx, fulcioSigner, idToken, flow, ko.OIDCIssuer, ko.OIDCClientID, ko.OIDCClientSecret, ko.OIDCRedirectURL, fClient) // TODO, use the chain.`
`168`	`168`	`if err != nil {`
`169`	`169`	`return nil, fmt.Errorf("retrieving cert: %w", err)`
`170`	`170`	`}`
`@@ -179,6 +179,10 @@ func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerV`
`179`	`179`	`return f, nil`
`180`	`180`	`}`
`181`	`181`
	`182`	`+func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier) (*Signer, error) {`
	`183`	`+ return NewSignerWithAdapter(ctx, ko, signer, signer)`
	`184`	`+}`
	`185`	`+`
`182`	`186`	`func (f *Signer) PublicKey(opts ...signature.PublicKeyOption) (crypto.PublicKey, error) { //nolint: revive`
`183`	`187`	`return f.SignerVerifier.PublicKey()`
`184`	`188`	`}`
Original file line number	Diff line number	Diff line change
`@@ -26,8 +26,8 @@ import (`
`26`	`26`	`"github.com/sigstore/sigstore/pkg/signature"`
`27`	`27`	`)`
`28`	`28`
`29`		`-func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier) (*fulcio.Signer, error) {`
`30`		`- fs, err := fulcio.NewSigner(ctx, ko, signer)`
	`29`	`+func NewSignerWithAdapter(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier, fulcioSigner signature.SignerVerifier) (*fulcio.Signer, error) {`
	`30`	`+ fs, err := fulcio.NewSignerWithAdapter(ctx, ko, signer, fulcioSigner)`
`31`	`31`	`if err != nil {`
`32`	`32`	`return nil, err`
`33`	`33`	`}`
`@@ -46,3 +46,7 @@ func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerV`
`46`	`46`
`47`	`47`	`return fs, nil`
`48`	`48`	`}`
	`49`	`+`
	`50`	`+func NewSigner(ctx context.Context, ko options.KeyOpts, signer signature.SignerVerifier) (*fulcio.Signer, error) {`
	`51`	`+ return NewSignerWithAdapter(ctx, ko, signer, signer)`
	`52`	`+}`