Add acceptance tests for SLSA v1 attestations

Extends acceptance test framework to create and verify SLSA v1
attestations, enabling end-to-end testing of v1 provenance support.

Co-authored-by: Claude Code <[email protected]>

Ref: https://issues.redhat.com/browse/EC-1581

Author: st3penta

acceptance/attestation/attestation.go

@@ -38,6 +38,7 @@ const (
 	PredicateBuilderID   = "https://tekton.dev/chains/v2"
 	PredicateBuilderType = "https://tekton.dev/attestations/chains/pipelinerun@v2"
 	PredicateType        = "slsaprovenance"
+	PredicateTypeV1      = "slsaprovenance1"
 )
 
 // CreateStatementFor creates an empty statement that can be further customized
@@ -70,9 +71,44 @@ func CreateStatementFor(imageName string, image v1.Image) (*in_toto.ProvenanceSt
 	return nil, fmt.Errorf("received statement of unsupported type: %v", obj)
 }
 
+// CreateV1StatementFor creates an empty SLSA v1.0 statement that can be further customized
+// and subsequently signed by SignStatement.
+func CreateV1StatementFor(imageName string, image v1.Image) (*in_toto.ProvenanceStatementSLSA1, error) {
+	digest, err := image.Digest()
+	if err != nil {
+		return nil, err
+	}
+
+	obj, err := attestation.GenerateStatement(attestation.GenerateOpts{
+		Predicate: bytes.NewReader([]byte(fmt.Sprintf(`{
+			"buildDefinition": {
+				"buildType": "%s",
+				"externalParameters": {}
+			},
+			"runDetails": {
+				"builder": {
+					"id": "%s"
+				}
+			}
+		}`, PredicateBuilderType, PredicateBuilderID))),
+		Type:   PredicateTypeV1,
+		Digest: digest.Hex,
+		Repo:   imageName,
+	})
+	if err != nil {
+		return nil, err
+	}
+
+	if statement, ok := obj.(in_toto.ProvenanceStatementSLSA1); ok {
+		return &statement, nil
+	}
+
+	return nil, fmt.Errorf("received statement of unsupported type: %v", obj)
+}
+
 // SignStatement signs the provided statement with the named key. The key needs
 // to be previously generated with the functionality from the crypto package.
-func SignStatement(ctx context.Context, keyName string, statement in_toto.ProvenanceStatementSLSA02) ([]byte, error) {
+func SignStatement(ctx context.Context, keyName string, statement any) ([]byte, error) {
 	payload, err := json.Marshal(statement)
 	if err != nil {
 		return nil, err

acceptance/examples/sigstore.rego

@@ -80,7 +80,8 @@ _errors contains error if {
 	info := ec.sigstore.verify_attestation(_image_ref, _sigstore_opts)
 	some att in info.attestations
 
-	att.statement.predicateType != "https://slsa.dev/provenance/v0.2"
+	# Support both SLSA v0.2 and v1 predicate types
+	not _is_supported_slsa_predicate(att.statement.predicateType)
 	error := sprintf("unexpected statement predicate: %s", [att.statement.predicateType])
 }
 
@@ -115,5 +116,18 @@ valid_signature(sig) if {
 }
 
 _builder_id(att) := value if {
+	# SLSA v0.2: predicate.builder.id
 	value := att.statement.predicate.builder.id
+} else := value if {
+	# SLSA v1: predicate.runDetails.builder.id
+	value := att.statement.predicate.runDetails.builder.id
 } else := "MISSING"
+
+# Helper to check if predicate type is a supported SLSA version
+_is_supported_slsa_predicate(predicate_type) if {
+	predicate_type == "https://slsa.dev/provenance/v0.2"
+}
+
+_is_supported_slsa_predicate(predicate_type) if {
+	predicate_type == "https://slsa.dev/provenance/v1"
+}

acceptance/go.mod

@@ -14,7 +14,7 @@ require (
 	github.com/go-git/go-git/v5 v5.13.0
 	github.com/go-openapi/strfmt v0.23.0
 	github.com/google/go-containerregistry v0.20.7
-	github.com/in-toto/in-toto-golang v0.9.1-0.20240317085821-8e2966059a09
+	github.com/in-toto/in-toto-golang v0.9.0
 	github.com/konflux-ci/application-api v0.0.0-20240812090716-e7eb2ecfb409
 	github.com/opencontainers/image-spec v1.1.1
 	github.com/otiai10/copy v1.14.0
@@ -26,7 +26,7 @@ require (
 	github.com/sigstore/rekor v1.3.6
 	github.com/sigstore/sigstore v1.8.9
 	github.com/stretchr/testify v1.11.1
-	github.com/tektoncd/cli v0.38.0
+	github.com/tektoncd/cli v0.37.1
 	github.com/tektoncd/pipeline v0.66.0
 	github.com/testcontainers/testcontainers-go v0.34.0
 	github.com/transparency-dev/merkle v0.0.2
@@ -140,7 +140,6 @@ require (
 	github.com/hashicorp/go-multierror v1.1.1 // indirect
 	github.com/hashicorp/go-retryablehttp v0.7.7 // indirect
 	github.com/hashicorp/golang-lru v1.0.2 // indirect
-	github.com/in-toto/attestation v1.1.0 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99 // indirect
 	github.com/jedisct1/go-minisign v0.0.0-20230811132847-661be99b8267 // indirect

acceptance/go.sum

@@ -261,8 +261,8 @@ github.com/cpuguy83/dockercfg v0.3.2/go.mod h1:sugsbF4//dDlL/i+S+rtpIWp+5h0BHJHf
 github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/cpuguy83/go-md2man/v2 v2.0.6/go.mod h1:oOW0eioCTA6cOiMLiUPZOpcVxMig6NIQQ7OS05n1F4g=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
-github.com/creack/pty v1.1.23 h1:4M6+isWdcStXEf15G/RbrMPOQj1dZ7HPZCGwE4kOeP0=
-github.com/creack/pty v1.1.23/go.mod h1:08sCNb52WyoAwi2QDyzUCTgcvVFhUzewun7wtTfvcwE=
+github.com/creack/pty v1.1.21 h1:1/QdRyBaHHJP61QkWMXlOIBfsgdDeeKfK8SYVUWJKf0=
+github.com/creack/pty v1.1.21/go.mod h1:MOBLtS5ELjhRRrroQr9kyvTxUAFNvYEK993ew/Vr4O4=
 github.com/cucumber/gherkin/go/v26 v26.2.0 h1:EgIjePLWiPeslwIWmNQ3XHcypPsWAHoMCz/YEBKP4GI=
 github.com/cucumber/gherkin/go/v26 v26.2.0/go.mod h1:t2GAPnB8maCT4lkHL99BDCVNzCh1d7dBhCLt150Nr/0=
 github.com/cucumber/godog v0.15.0 h1:51AL8lBXF3f0cyA5CV4TnJFCTHpgiy+1x1Hb3TtZUmo=
@@ -529,6 +529,8 @@ github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/googleapis/gax-go/v2 v2.14.1 h1:hb0FFeiPaQskmvakKu5EbCbpntQn48jyHuvrkurSS/Q=
 github.com/googleapis/gax-go/v2 v2.14.1/go.mod h1:Hb/NubMaVM88SrNkvl8X/o8XWwDJEPqouaLeN2IUxoA=
+github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 h1:+ngKgrYPPJrOjhax5N+uePQ0Fh1Z7PheYoUI/0nzkPA=
+github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
 github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0 h1:Ovs26xHkKqVztRpIrF/92BcuyuQ/YW4NSIpoGtfXNho=
 github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
 github.com/grpc-ecosystem/grpc-gateway v1.14.6/go.mod h1:zdiPV4Yse/1gnckTHtghG4GkDEdKCRJduHpTxT3/jcw=
@@ -580,8 +582,8 @@ github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/in-toto/attestation v1.1.0 h1:oRWzfmZPDSctChD0VaQV7MJrywKOzyNrtpENQFq//2Q=
 github.com/in-toto/attestation v1.1.0/go.mod h1:DB59ytd3z7cIHgXxwpSX2SABrU6WJUKg/grpdgHVgVs=
-github.com/in-toto/in-toto-golang v0.9.1-0.20240317085821-8e2966059a09 h1:cwCITdi9pF50CF8uh40qDbkJ/VrEVzx5AoaHP7OPdEo=
-github.com/in-toto/in-toto-golang v0.9.1-0.20240317085821-8e2966059a09/go.mod h1:yGCBn2JKF1m26FX8GmkcLSOFVjB6khWRxFsHwWIg7hw=
+github.com/in-toto/in-toto-golang v0.9.0 h1:tHny7ac4KgtsfrG6ybU8gVOZux2H8jN05AXJ9EBM1XU=
+github.com/in-toto/in-toto-golang v0.9.0/go.mod h1:xsBVrVsHNsB61++S6Dy2vWosKhuA3lUTQd+eF9HdeMo=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
 github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99 h1:BQSFePA1RWJOlocH6Fxy8MmwDt+yVQYULKfN0RoTN8A=
@@ -737,6 +739,8 @@ github.com/pelletier/go-toml v1.9.5 h1:4yBQzkHv+7BHq2PQUZF3Mx0IYxG7LsP222s7Agd3v
 github.com/pelletier/go-toml v1.9.5/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c=
 github.com/pelletier/go-toml/v2 v2.2.4 h1:mye9XuhQ6gvn5h28+VilKrrPoQVanw5PMw/TB0t5Ec4=
 github.com/pelletier/go-toml/v2 v2.2.4/go.mod h1:2gIqNv+qfxSVS7cM2xJQKtLSTLUE9V8t9Stt+h56mCY=
+github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
+github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
 github.com/phayes/freeport v0.0.0-20220201140144-74d24b5ae9f5 h1:Ii+DKncOVM8Cu1Hc+ETb5K+23HdAMvESYE3ZJ5b5cMI=
 github.com/phayes/freeport v0.0.0-20220201140144-74d24b5ae9f5/go.mod h1:iIss55rKnNBTvrwdmkUpLnDpZoAHvWaiq5+iMmen4AE=
 github.com/pjbgf/sha1cd v0.3.0 h1:4D5XXmUUBUl/xQ6IjCkEAbqXskkq/4O7LmGn0AqMDs4=
@@ -896,12 +900,12 @@ github.com/syndtr/goleveldb v1.0.1-0.20220721030215-126854af5e6d h1:vfofYNRScrDd
 github.com/syndtr/goleveldb v1.0.1-0.20220721030215-126854af5e6d/go.mod h1:RRCYJbIwD5jmqPI9XoAFR0OcDxqUctll6zUj/+B4S48=
 github.com/tchap/go-patricia/v2 v2.3.3 h1:xfNEsODumaEcCcY3gI0hYPZ/PcpVv5ju6RMAhgwZDDc=
 github.com/tchap/go-patricia/v2 v2.3.3/go.mod h1:VZRHKAb53DLaG+nA9EaYYiaEx6YztwDlLElMsnSHD4k=
-github.com/tektoncd/cli v0.38.0 h1:mH4xMxehfPOD2Ar0KZgWtb9Wh3r3S6wSAAZo8pTcruI=
-github.com/tektoncd/cli v0.38.0/go.mod h1:MLcBL6RH70XgKeaKV3l3YcvHjASyTELZACG9ZfVA5yg=
+github.com/tektoncd/cli v0.37.1 h1:bAf8sISiI7WGsS7Ov2pFeQ86+M8AQB/CjFbEfJOn+w0=
+github.com/tektoncd/cli v0.37.1/go.mod h1:voq7pZzbA/dohTDE4l3iby3Wnnqt0XtkYUBbj1h3u5o=
 github.com/tektoncd/pipeline v0.66.0 h1:WLL98YEgWzblSAD2mPbpZN97tkOC50wiftaW+8+6zTY=
 github.com/tektoncd/pipeline v0.66.0/go.mod h1:V3cyfxxc7b3GLT2a13GX2mWA86qmxWhh4mOp4gfFQwQ=
-github.com/tektoncd/triggers v0.29.0 h1:piRTJT1Sjq3xmGnR50V54oG0NlsszKETLxdCGhgSNQQ=
-github.com/tektoncd/triggers v0.29.0/go.mod h1:CHE2QhjYkECFCpvPLpiANhI/hIlJUxL03ulTNEgbT10=
+github.com/tektoncd/triggers v0.27.0 h1:c55e/YJF6Vs5BEarqDYksFYuR4sFbmAVEqrLNPZvXUk=
+github.com/tektoncd/triggers v0.27.0/go.mod h1:DkkAkdSd9aAW9RklUVyFRKQ8kONmZQw4Ur2G1r3wFQo=
 github.com/testcontainers/testcontainers-go v0.34.0 h1:5fbgF0vIN5u+nD3IWabQwRybuB4GY8G2HHgCkbMzMHo=
 github.com/testcontainers/testcontainers-go v0.34.0/go.mod h1:6P/kMkQe8yqPHfPWNulFGdFHTD8HB2vLq/231xY2iPQ=
 github.com/thales-e-security/pool v0.0.2 h1:RAPs4q2EbWsTit6tpzuvTFlgFRJ3S8Evf5gtvVDbmPg=

acceptance/image/image.go

@@ -296,7 +296,7 @@ func CreateAndPushImageSignature(ctx context.Context, imageName string, keyName
 // image, same as `cosign attest` or Tekton Chains would, and pushes it to the stub
 // registry as a new tag for that image akin to how cosign and Tekton Chains do it
 func CreateAndPushAttestation(ctx context.Context, imageName, keyName string) (context.Context, error) {
-	return createAndPushAttestationWithPatches(ctx, imageName, keyName, nil)
+	return createAndPushAttestationInternal(ctx, imageName, keyName, nil, false)
 }
 
 // createAndPushAttestation for a named image in the Context creates an attestation
@@ -306,6 +306,11 @@ func CreateAndPushAttestation(ctx context.Context, imageName, keyName string) (c
 // statement as required by the tests. This implementation now includes transparency
 // log upload to generate bundle information like Tekton Chains does for attestations.
 func createAndPushAttestationWithPatches(ctx context.Context, imageName, keyName string, patches *godog.Table) (context.Context, error) {
+	return createAndPushAttestationInternal(ctx, imageName, keyName, patches, false)
+}
+
+// createAndPushAttestationInternal is the internal implementation that supports both SLSA v0.2 and v1
+func createAndPushAttestationInternal(ctx context.Context, imageName, keyName string, patches *godog.Table, useV1 bool) (context.Context, error) {
 	var state *imageState
 	ctx, err := testenv.SetupState(ctx, &state)
 	if err != nil {
@@ -322,22 +327,28 @@ func createAndPushAttestationWithPatches(ctx context.Context, imageName, keyName
 		return ctx, err
 	}
 
-	// generates a mostly-empty statement, but with the required fields already filled in
-	// at this point we could add more data to the statement but the minimum works, we'll
-	// need to add more data to the attestation in more elaborate tests so:
-	// TODO: create a hook to add more data to the attestation
-	statement, err := attestation.CreateStatementFor(imageName, image)
-	if err != nil {
-		return ctx, err
-	}
+	var statement any
 
-	statement, err = applyPatches(statement, patches)
-	if err != nil {
-		return ctx, err
+	if useV1 {
+		// SLSA v1.0
+		statement, err = attestation.CreateV1StatementFor(imageName, image)
+		if err != nil {
+			return ctx, err
+		}
+	} else {
+		// SLSA v0.2
+		v02Statement, err := attestation.CreateStatementFor(imageName, image)
+		if err != nil {
+			return ctx, err
+		}
+
+		statement, err = applyPatches(v02Statement, patches)
+		if err != nil {
+			return ctx, err
+		}
 	}
 
-	// signs the attestation with the named key
-	signedAttestation, err := attestation.SignStatement(ctx, keyName, *statement)
+	signedAttestation, err := attestation.SignStatement(ctx, keyName, statement)
 	if err != nil {
 		return ctx, err
 	}
@@ -484,6 +495,12 @@ func createAndPushAttestationWithPatches(ctx context.Context, imageName, keyName
 	return ctx, nil
 }
 
+// CreateAndPushV1Attestation for a named image creates a SLSA v1.0 attestation
+// and pushes it to the stub registry
+func CreateAndPushV1Attestation(ctx context.Context, imageName, keyName string) (context.Context, error) {
+	return createAndPushAttestationInternal(ctx, imageName, keyName, nil, true)
+}
+
 // CreateAndPushImageWithParent creates a parent image and a test image for the given imageName.
 func CreateAndPushImageWithParent(ctx context.Context, imageName string) (context.Context, error) {
 	var err error
@@ -1164,6 +1181,7 @@ func AddStepsTo(sc *godog.ScenarioContext) {
 	sc.Step(`^a valid image signature of "([^"]*)" image signed by the "([^"]*)" key$`, CreateAndPushImageSignature)
 	sc.Step(`^a valid attestation of "([^"]*)" signed by the "([^"]*)" key$`, CreateAndPushAttestation)
 	sc.Step(`^a valid attestation of "([^"]*)" signed by the "([^"]*)" key, patched with$`, createAndPushAttestationWithPatches)
+	sc.Step(`^a valid slsa v1 attestation of "([^"]*)" signed by the "([^"]*)" key$`, CreateAndPushV1Attestation)
 	sc.Step(`^a signed and attested keyless image named "([^"]*)"$`, createAndPushKeylessImage)
 	sc.Step(`^a OCI policy bundle named "([^"]*)" with$`, createAndPushPolicyBundle)
 	sc.Step(`^an image named "([^"]*)" with signature from "([^"]*)"$`, steal("sig"))

features/__snapshots__/validate_image.snap

@@ -5274,3 +5274,80 @@ Error: success criteria not met
 [signatures with embedded bundles verify without external rekor queries:stderr - 1]
 
 ---
+
+[SLSA v1 attestation support:stdout - 1]
+{
+  "success": true,
+  "components": [
+    {
+      "name": "Unnamed",
+      "containerImage": "${REGISTRY}/acceptance/slsa-v1-test@sha256:${REGISTRY_acceptance/slsa-v1-test:latest_DIGEST}",
+      "source": {},
+      "successes": [
+        {
+          "msg": "Pass",
+          "metadata": {
+            "code": "builtin.attestation.signature_check"
+          }
+        },
+        {
+          "msg": "Pass",
+          "metadata": {
+            "code": "builtin.attestation.syntax_check"
+          }
+        },
+        {
+          "msg": "Pass",
+          "metadata": {
+            "code": "builtin.image.signature_check"
+          }
+        },
+        {
+          "msg": "Pass",
+          "metadata": {
+            "code": "sigstore.valid"
+          }
+        }
+      ],
+      "success": true,
+      "signatures": [
+        {
+          "keyid": "",
+          "sig": "${IMAGE_SIGNATURE_acceptance/slsa-v1-test}"
+        }
+      ],
+      "attestations": [
+        {
+          "type": "https://in-toto.io/Statement/v0.1",
+          "predicateType": "https://slsa.dev/provenance/v1",
+          "predicateBuildType": "https://tekton.dev/attestations/chains/pipelinerun@v2",
+          "signatures": [
+            {
+              "keyid": "",
+              "sig": "${ATTESTATION_SIGNATURE_acceptance/slsa-v1-test}"
+            }
+          ]
+        }
+      ]
+    }
+  ],
+  "key": "${known_PUBLIC_KEY_JSON}",
+  "policy": {
+    "sources": [
+      {
+        "policy": [
+          "git::${GITHOST}/git/sigstore-v1-policy.git?ref=${LATEST_COMMIT}"
+        ]
+      }
+    ],
+    "rekorUrl": "${REKOR}",
+    "publicKey": "${known_PUBLIC_KEY}"
+  },
+  "ec-version": "${EC_VERSION}",
+  "effective-time": "${TIMESTAMP}"
+}
+---
+
+[SLSA v1 attestation support:stderr - 1]
+
+---

features/validate_image.feature

@@ -1175,3 +1175,26 @@ Feature: evaluate enterprise contract
     Then the exit status should be 1
      And the output should match the snapshot
      And the "${TMPDIR}/output.json" file should match the snapshot
+
+  Scenario: SLSA v1 attestation support
+    Given a key pair named "known"
+      And an image named "acceptance/slsa-v1-test"
+      And a valid image signature of "acceptance/slsa-v1-test" image signed by the "known" key
+      And a valid slsa v1 attestation of "acceptance/slsa-v1-test" signed by the "known" key
+      And a git repository named "sigstore-v1-policy" with
+      | main.rego | examples/sigstore.rego |
+      And policy configuration named "ec-policy" with specification
+    """
+    {
+      "sources": [
+        {
+          "policy": [
+            "git::https://${GITHOST}/git/sigstore-v1-policy.git"
+          ]
+        }
+      ]
+    }
+    """
+    When ec command is run with "validate image --image ${REGISTRY}/acceptance/slsa-v1-test --policy acceptance/ec-policy --public-key ${known_PUBLIC_KEY} --rekor-url ${REKOR} --show-successes --output json"
+    Then the exit status should be 0
+    And the output should match the snapshot