835 - Keyless Support for SBOM Attestations

[spiffcs]

Summary:

Update the syft attest command to use the cosign keyless workflow.

Users should be able to run syft attest -o syft-json alpine:latest and generate an In-Toto Attestation serialized as a DSSE envelope defined here, which is signed by github, google, or microsoft OIDC providers. They should only be able to UPLOAD attestation for images they own.

Users in this case will not have to bring their own key. Instead, ephemeral keys and certificates will be generated and signed automatically by the fulcio root CA. These signatures are then stored in the rekor transparency log which provides an attestation as to when the signature was created. The new feature supports Oauth flows through the browser. Device flows have not been tested and will be updated in follow up PR.

To test the new functionality on this branch you can run:
go run cmd/syft/main.go attest -o syft-json <IMAGE YOU HAVE WRITE ACCESS TO>
COSIGN_EXPERIMENTAL=1 cosign verify-attestation <IMAGE YOU HAVE WRITE ACCESS TO>

Documentation

• Update README
• Update ETUI to show progress for attestation flows

Signed-off-by: Christopher Phillips christopher.phillips@anchore.com

[github-actions]

Benchmark Test Results

Benchmark results from the latest changes vs base branch

name                                                       old time/op    new time/op    delta
ImagePackageCatalogers/ruby-gemspec-cataloger-2              1.14ms ± 0%    1.33ms ± 5%  +16.51%  (p=0.016 n=4+5)
ImagePackageCatalogers/python-package-cataloger-2            3.01ms ± 0%    3.13ms ± 8%   +4.18%  (p=0.016 n=5+5)
ImagePackageCatalogers/php-composer-installed-cataloger-2     940µs ± 1%    1063µs ± 6%  +13.04%  (p=0.008 n=5+5)
ImagePackageCatalogers/javascript-package-cataloger-2         631µs ± 1%     706µs ± 7%  +11.95%  (p=0.008 n=5+5)
ImagePackageCatalogers/dpkgdb-cataloger-2                     737µs ± 0%     912µs ± 5%  +23.68%  (p=0.008 n=5+5)
ImagePackageCatalogers/rpmdb-cataloger-2                      641µs ± 1%     780µs ± 7%  +21.74%  (p=0.008 n=5+5)
ImagePackageCatalogers/java-cataloger-2                      13.5ms ± 0%    15.3ms ±11%  +13.68%  (p=0.016 n=4+5)
ImagePackageCatalogers/apkdb-cataloger-2                     1.17ms ± 1%    1.29ms ± 4%  +10.21%  (p=0.008 n=5+5)
ImagePackageCatalogers/go-module-binary-cataloger-2          2.08µs ± 1%    2.31µs ± 6%  +10.96%  (p=0.008 n=5+5)
ImagePackageCatalogers/dotnet-deps-cataloger-2               1.26ms ± 1%    1.36ms ± 6%   +8.00%  (p=0.008 n=5+5)

name                                                       old alloc/op   new alloc/op   delta
ImagePackageCatalogers/ruby-gemspec-cataloger-2               185kB ± 0%     185kB ± 0%     ~     (p=0.548 n=5+5)
ImagePackageCatalogers/python-package-cataloger-2             900kB ± 0%     898kB ± 0%   -0.19%  (p=0.008 n=5+5)
ImagePackageCatalogers/php-composer-installed-cataloger-2     197kB ± 0%     197kB ± 0%   -0.18%  (p=0.008 n=5+5)
ImagePackageCatalogers/javascript-package-cataloger-2         141kB ± 0%     141kB ± 0%     ~     (p=0.421 n=5+5)
ImagePackageCatalogers/dpkgdb-cataloger-2                     177kB ± 0%     176kB ± 0%     ~     (p=0.056 n=5+5)
ImagePackageCatalogers/rpmdb-cataloger-2                      165kB ± 0%     164kB ± 0%   -0.07%  (p=0.008 n=5+5)
ImagePackageCatalogers/java-cataloger-2                      3.30MB ± 0%    3.30MB ± 0%     ~     (p=0.222 n=5+5)
ImagePackageCatalogers/apkdb-cataloger-2                     1.24MB ± 0%    1.24MB ± 0%     ~     (p=0.056 n=5+5)
ImagePackageCatalogers/go-module-binary-cataloger-2            672B ± 0%      672B ± 0%     ~     (all equal)
ImagePackageCatalogers/dotnet-deps-cataloger-2                351kB ± 0%     352kB ± 0%   +0.13%  (p=0.008 n=5+5)

name                                                       old allocs/op  new allocs/op  delta
ImagePackageCatalogers/ruby-gemspec-cataloger-2               3.70k ± 0%     3.70k ± 0%     ~     (all equal)
ImagePackageCatalogers/python-package-cataloger-2             14.9k ± 0%     14.9k ± 0%     ~     (p=0.286 n=4+5)
ImagePackageCatalogers/php-composer-installed-cataloger-2     4.99k ± 0%     4.98k ± 0%     ~     (p=0.206 n=5+5)
ImagePackageCatalogers/javascript-package-cataloger-2         2.76k ± 0%     2.76k ± 0%     ~     (all equal)
ImagePackageCatalogers/dpkgdb-cataloger-2                     3.99k ± 0%     3.99k ± 0%     ~     (all equal)
ImagePackageCatalogers/rpmdb-cataloger-2                      4.06k ± 0%     4.06k ± 0%     ~     (all equal)
ImagePackageCatalogers/java-cataloger-2                       52.6k ± 0%     52.6k ± 0%     ~     (p=0.548 n=5+5)
ImagePackageCatalogers/apkdb-cataloger-2                      4.87k ± 0%     4.87k ± 0%     ~     (p=1.000 n=5+5)
ImagePackageCatalogers/go-module-binary-cataloger-2            15.0 ± 0%      15.0 ± 0%     ~     (all equal)
ImagePackageCatalogers/dotnet-deps-cataloger-2                6.72k ± 0%     6.72k ± 0%     ~     (all equal)

[wagoodman]

nit: should this be debug? or if it's worthy information, should this information be elevated to the ETUI with upload progress (even if infinite spinner)?

[spiffcs]

cc @luhring on this one. I'm on the fence about including this in the default output. I'll demote it to debug for now, but if we come up with a good reason in this thread to why it should stick around I can elevate it into the ETUI

[luhring]

Does cosign show this? I don't remember for sure but I thought it does — since it's a convenient way to find the Rekor entry that was just created (i.e. after you run this, you can use a Rekor client to just to a lookup by index)

[wagoodman]

if we're uploading should we be outputting the signed payload to the screen? or suppress this?

[spiffcs]

I think we should still be publishing the payload to the screen on upload so the user is able to inspect what was uploaded, but I can also see how suppressing is gives a cleaner execution and we don't pollute the screen since payloads are large and noticeably indecipherable on first glance

[spiffcs]

cc @luhring for input

[luhring]

Yeah no strong opinion, but I think I'd lean toward not outputting it for now for the "clean feel" reason

[spiffcs]

removed output on upload

[wagoodman]

nit: this can be unexported

[wagoodman]

What's the SCT? The docs should probably reflect the full name.

[spiffcs]

Also I used SCT incorrectly here so double good call out.

SCT is “Signed Certificate Timestamp”. We need this flag so that we don't have to setup a root CA for fulcio during testing. Fulcio returns a “Signed Certificate Timestamp”.

See here if you want the deep dive:
https://blog.chainguard.dev/a-fulcio-deep-dive/

[wagoodman]

should nil check ko first

[spiffcs]

It's small so I updated it to pass by value instead of pointer here.

[developer-guy]

This PR will also fix #990, by default, it'll attach attestation to an image requested to generate an attestation.
cc: @Dentrax @luhring