Merge pull request #979 from sigstore/timestamp-keyless

aaronlew02 · web-flow · commit af40879f579d · 2025-06-05T13:52:27.000-04:00
Add RFC3161 timestamps to keyless signer and verifier
diff --git a/sigstore-java/src/main/java/dev/sigstore/KeylessSigner.java b/sigstore-java/src/main/java/dev/sigstore/KeylessSigner.java
@@ -26,6 +26,7 @@
 import dev.sigstore.bundle.Bundle.HashAlgorithm;
 import dev.sigstore.bundle.Bundle.MessageSignature;
 import dev.sigstore.bundle.ImmutableBundle;
+import dev.sigstore.bundle.ImmutableTimestamp;
 import dev.sigstore.encryption.certificates.Certificates;
 import dev.sigstore.encryption.signers.Signer;
 import dev.sigstore.encryption.signers.Signers;
@@ -46,6 +47,13 @@
 import dev.sigstore.rekor.client.RekorResponse;
 import dev.sigstore.rekor.client.RekorVerificationException;
 import dev.sigstore.rekor.client.RekorVerifier;
+import dev.sigstore.timestamp.client.ImmutableTimestampRequest;
+import dev.sigstore.timestamp.client.TimestampClient;
+import dev.sigstore.timestamp.client.TimestampClientHttp;
+import dev.sigstore.timestamp.client.TimestampException;
+import dev.sigstore.timestamp.client.TimestampResponse;
+import dev.sigstore.timestamp.client.TimestampVerificationException;
+import dev.sigstore.timestamp.client.TimestampVerifier;
 import dev.sigstore.trustroot.SigstoreConfigurationException;
 import dev.sigstore.tuf.SigstoreTufClient;
 import java.io.IOException;
@@ -89,6 +97,8 @@ public class KeylessSigner implements AutoCloseable {
   private final FulcioVerifier fulcioVerifier;
   private final RekorClient rekorClient;
   private final RekorVerifier rekorVerifier;
+  private final TimestampClient timestampClient;
+  private final TimestampVerifier timestampVerifier;
   private final OidcClients oidcClients;
   private final List<OidcTokenMatcher> oidcIdentities;
   private final Signer signer;
@@ -114,6 +124,8 @@ private KeylessSigner(
       FulcioVerifier fulcioVerifier,
       RekorClient rekorClient,
       RekorVerifier rekorVerifier,
+      TimestampClient timestampClient,
+      TimestampVerifier timestampVerifier,
       OidcClients oidcClients,
       List<OidcTokenMatcher> oidcIdentities,
       Signer signer,
@@ -122,6 +134,8 @@ private KeylessSigner(
     this.fulcioVerifier = fulcioVerifier;
     this.rekorClient = rekorClient;
     this.rekorVerifier = rekorVerifier;
+    this.timestampClient = timestampClient;
+    this.timestampVerifier = timestampVerifier;
     this.oidcClients = oidcClients;
     this.oidcIdentities = oidcIdentities;
     this.signer = signer;
@@ -152,6 +166,7 @@ public static class Builder {
     private Duration minSigningCertificateLifetime = DEFAULT_MIN_SIGNING_CERTIFICATE_LIFETIME;
     private URI fulcioUri;
     private URI rekorUri;
+    private URI timestampUri;
 
     @CanIgnoreReturnValue
     public Builder fulcioUrl(URI uri) {
@@ -165,6 +180,12 @@ public Builder rekorUrl(URI uri) {
       return this;
     }
 
+    @CanIgnoreReturnValue
+    public Builder timestampUrl(URI uri) {
+      this.timestampUri = uri;
+      return this;
+    }
+
     @CanIgnoreReturnValue
     public Builder trustedRootProvider(TrustedRootProvider trustedRootProvider) {
       this.trustedRootProvider = trustedRootProvider;
@@ -233,11 +254,19 @@ public KeylessSigner build()
       var fulcioVerifier = FulcioVerifier.newFulcioVerifier(trustedRoot);
       var rekorClient = RekorClientHttp.builder().setUri(rekorUri).build();
       var rekorVerifier = RekorVerifier.newRekorVerifier(trustedRoot);
+      TimestampClient timestampClient = null;
+      TimestampVerifier timestampVerifier = null;
+      if (timestampUri != null) { // Building with staging defaults
+        timestampClient = TimestampClientHttp.builder().setUri(timestampUri).build();
+        timestampVerifier = TimestampVerifier.newTimestampVerifier(trustedRoot);
+      }
       return new KeylessSigner(
           fulcioClient,
           fulcioVerifier,
           rekorClient,
           rekorVerifier,
+          timestampClient,
+          timestampVerifier,
           oidcClients,
           oidcIdentities,
           signer,
@@ -270,6 +299,7 @@ public Builder sigstoreStagingDefaults() {
       trustedRootProvider = TrustedRootProvider.from(sigstoreTufClientBuilder);
       fulcioUri = FulcioClient.STAGING_URI;
       rekorUri = RekorClient.STAGING_URI;
+      timestampUri = TimestampClient.STAGING_URI;
       oidcClients(OidcClients.STAGING);
       signer(Signers.newEcdsaSigner());
       minSigningCertificateLifetime(DEFAULT_MIN_SIGNING_CERTIFICATE_LIFETIME);
@@ -355,13 +385,43 @@ public List<Bundle> sign(List<byte[]> artifactDigests) throws KeylessSignerExcep
         throw new KeylessSignerException("Failed to validate rekor response after signing", ex);
       }
 
-      result.add(
+      var bundleBuilder =
           ImmutableBundle.builder()
               .certPath(signingCert)
               .addEntries(rekorResponse.getEntry())
               .messageSignature(
-                  MessageSignature.of(HashAlgorithm.SHA2_256, artifactDigest, signature))
-              .build());
+                  MessageSignature.of(HashAlgorithm.SHA2_256, artifactDigest, signature));
+
+      // Timestamp functionality only enabled if timestampUri is provided
+      if (timestampClient != null && timestampVerifier != null) {
+        var signatureDigest = Hashing.sha256().hashBytes(signature).asBytes();
+
+        var tsReq =
+            ImmutableTimestampRequest.builder()
+                .hashAlgorithm(dev.sigstore.timestamp.client.HashAlgorithm.SHA256)
+                .hash(signatureDigest)
+                .build();
+
+        TimestampResponse tsResp;
+        try {
+          tsResp = timestampClient.timestamp(tsReq);
+        } catch (TimestampException ex) {
+          throw new KeylessSignerException("Failed to generate timestamp", ex);
+        }
+
+        try {
+          timestampVerifier.verify(tsResp, signature);
+        } catch (TimestampVerificationException ex) {
+          throw new KeylessSignerException("Returned timestamp was invalid", ex);
+        }
+
+        Bundle.Timestamp timestamp =
+            ImmutableTimestamp.builder().rfc3161Timestamp(tsResp.getEncoded()).build();
+
+        bundleBuilder.addTimestamps(timestamp);
+      }
+
+      result.add(bundleBuilder.build());
     }
     return result.build();
   }
diff --git a/sigstore-java/src/main/java/dev/sigstore/KeylessVerifier.java b/sigstore-java/src/main/java/dev/sigstore/KeylessVerifier.java
@@ -37,6 +37,10 @@
 import dev.sigstore.rekor.client.RekorVerifier;
 import dev.sigstore.rekor.dsse.v0_0_1.Dsse;
 import dev.sigstore.rekor.dsse.v0_0_1.PayloadHash;
+import dev.sigstore.timestamp.client.ImmutableTimestampResponse;
+import dev.sigstore.timestamp.client.TimestampException;
+import dev.sigstore.timestamp.client.TimestampVerificationException;
+import dev.sigstore.timestamp.client.TimestampVerifier;
 import dev.sigstore.trustroot.SigstoreConfigurationException;
 import dev.sigstore.tuf.SigstoreTufClient;
 import java.io.IOException;
@@ -51,9 +55,9 @@
 import java.security.cert.CertificateNotYetValidException;
 import java.security.cert.X509Certificate;
 import java.security.spec.InvalidKeySpecException;
-import java.sql.Date;
 import java.util.Arrays;
 import java.util.Base64;
+import java.util.Date;
 import java.util.List;
 import java.util.Objects;
 import java.util.stream.Collectors;
@@ -65,10 +69,15 @@ public class KeylessVerifier {
 
   private final FulcioVerifier fulcioVerifier;
   private final RekorVerifier rekorVerifier;
+  private final TimestampVerifier timestampVerifier;
 
-  private KeylessVerifier(FulcioVerifier fulcioVerifier, RekorVerifier rekorVerifier) {
+  private KeylessVerifier(
+      FulcioVerifier fulcioVerifier,
+      RekorVerifier rekorVerifier,
+      TimestampVerifier timestampVerifier) {
     this.fulcioVerifier = fulcioVerifier;
     this.rekorVerifier = rekorVerifier;
+    this.timestampVerifier = timestampVerifier;
   }
 
   public static KeylessVerifier.Builder builder() {
@@ -89,7 +98,8 @@ public KeylessVerifier build()
       var trustedRoot = trustedRootProvider.get();
       var fulcioVerifier = FulcioVerifier.newFulcioVerifier(trustedRoot);
       var rekorVerifier = RekorVerifier.newRekorVerifier(trustedRoot);
-      return new KeylessVerifier(fulcioVerifier, rekorVerifier);
+      var timestampVerifier = TimestampVerifier.newTimestampVerifier(trustedRoot);
+      return new KeylessVerifier(fulcioVerifier, rekorVerifier, timestampVerifier);
     }
 
     public Builder sigstorePublicDefaults() {
@@ -148,11 +158,6 @@ public void verify(byte[] artifactDigest, Bundle bundle, VerificationOptions opt
           "Bundle verification expects 1 entry, but found " + bundle.getEntries().size());
     }
 
-    if (!bundle.getTimestamps().isEmpty()) {
-      throw new KeylessVerificationException(
-          "Cannot verify bundles with timestamp verification material");
-    }
-
     var signingCert = bundle.getCertPath();
     var leafCert = Certificates.getLeaf(signingCert);
 
@@ -188,11 +193,43 @@ public void verify(byte[] artifactDigest, Bundle bundle, VerificationOptions opt
       throw new KeylessVerificationException("Signing time was after certificate expiry", e);
     }
 
+    byte[] signature;
     if (bundle.getMessageSignature().isPresent()) { // hashedrekord
-      checkMessageSignature(
-          bundle.getMessageSignature().get(), rekorEntry, artifactDigest, leafCert);
+      var messageSignature = bundle.getMessageSignature().get();
+      checkMessageSignature(messageSignature, rekorEntry, artifactDigest, leafCert);
+      signature = messageSignature.getSignature();
     } else { // dsse
-      checkDsseEnvelope(rekorEntry, bundle.getDsseEnvelope().get(), artifactDigest, leafCert);
+      var dsseEnvelope = bundle.getDsseEnvelope().get();
+      checkDsseEnvelope(rekorEntry, dsseEnvelope, artifactDigest, leafCert);
+      signature = dsseEnvelope.getSignature();
+    }
+
+    verifyTimestamps(leafCert, bundle.getTimestamps(), signature);
+  }
+
+  private void verifyTimestamps(
+      X509Certificate leafCert, List<Bundle.Timestamp> timestamps, byte[] signature)
+      throws KeylessVerificationException {
+    if (timestamps == null || timestamps.isEmpty()) {
+      return;
+    }
+    for (Bundle.Timestamp timestamp : timestamps) {
+      byte[] tsBytes = timestamp.getRfc3161Timestamp();
+      if (tsBytes == null || tsBytes.length == 0) {
+        throw new KeylessVerificationException(
+            "Found an empty or null RFC3161 timestamp in bundle");
+      }
+      try {
+        var tsResp = ImmutableTimestampResponse.builder().encoded(tsBytes).build();
+        timestampVerifier.verify(tsResp, signature);
+        leafCert.checkValidity(tsResp.getGenTime());
+      } catch (TimestampException
+          | CertificateNotYetValidException
+          | CertificateExpiredException
+          | TimestampVerificationException e) {
+        throw new KeylessVerificationException(
+            "RFC3161 timestamp verification failed: " + e.getMessage(), e);
+      }
     }
   }
 
diff --git a/sigstore-java/src/main/java/dev/sigstore/timestamp/client/TimestampClient.java b/sigstore-java/src/main/java/dev/sigstore/timestamp/client/TimestampClient.java
@@ -15,8 +15,12 @@
  */
 package dev.sigstore.timestamp.client;
 
+import java.net.URI;
+
 /** A client to communicate with a timestamp service instance. */
 public interface TimestampClient {
+  URI STAGING_URI = URI.create("https://timestamp.sigstage.dev/api/v1/timestamp");
+
   /**
    * Request a timestanp for a timestamp authority.
    *
diff --git a/sigstore-java/src/main/java/dev/sigstore/timestamp/client/TimestampClientHttp.java b/sigstore-java/src/main/java/dev/sigstore/timestamp/client/TimestampClientHttp.java
@@ -34,8 +34,6 @@
 
 /** A client to communicate with a timestamp service instance. */
 public class TimestampClientHttp implements TimestampClient {
-  private static final URI SIGSTORE_TSA_URI =
-      URI.create("https://timestamp.sigstage.dev/api/v1/timestamp");
   private static final String CONTENT_TYPE_TIMESTAMP_QUERY = "application/timestamp-query";
   private static final String ACCEPT_TYPE_TIMESTAMP_REPLY = "application/timestamp-reply";
 
@@ -54,7 +52,7 @@ public static TimestampClientHttp.Builder builder() {
 
   public static class Builder {
     private HttpParams httpParams = ImmutableHttpParams.builder().build();
-    private URI uri = SIGSTORE_TSA_URI;
+    private URI uri = TimestampClient.STAGING_URI;
 
     private Builder() {}
 
diff --git a/sigstore-java/src/main/java/dev/sigstore/timestamp/client/TimestampResponse.java b/sigstore-java/src/main/java/dev/sigstore/timestamp/client/TimestampResponse.java
@@ -15,10 +15,25 @@
  */
 package dev.sigstore.timestamp.client;
 
+import java.io.IOException;
+import java.util.Date;
+import org.bouncycastle.tsp.TSPException;
+import org.bouncycastle.tsp.TimeStampResponse;
 import org.immutables.value.Value.Immutable;
+import org.immutables.value.Value.Lazy;
 
 @Immutable
 public interface TimestampResponse {
   /** The ASN.1 encoded representation of the timestamp response. */
   byte[] getEncoded();
+
+  @Lazy
+  default Date getGenTime() throws TimestampException {
+    try {
+      var bcTsResp = new TimeStampResponse(getEncoded());
+      return bcTsResp.getTimeStampToken().getTimeStampInfo().getGenTime();
+    } catch (TSPException | IOException e) {
+      throw new TimestampException("Failed to retrieve timestamp generation time", e);
+    }
+  }
 }
diff --git a/sigstore-java/src/test/java/dev/sigstore/KeylessVerifierTest.java b/sigstore-java/src/test/java/dev/sigstore/KeylessVerifierTest.java
