Remove serde_jcs dependency

[ernoc]

And make Rekor signature verification more robust.

#4616

WIP WIP WIP - feedback wanted:

For the purpose of verifying the Rekor LogEntry signedEntryTimestap field, we don't really care about the contests of the rest of the JSON. That is, we extract root[0].verification.signedEntryTimestamp, but the rest of root[0] (having removed verification, what we really want is its verbatim text.

At the moment we parse and re-render the entire thing: parse JSON bytes into Rust structs --> process --> render to JSON bytes. Parsing will break if Rekor changes the structure in any way, including changes to parts we don't care about .

We render RFC 8785 compliant text as suggested by Rekor here. If there were any differences (e.g. Rekor's payload didn't really comform to RFC 8785, or our output doesn't, or somehow there's a yet undiscovered ambiguity in the standard such that 2 different byte arrays are compliant), then this part breaks. The only solution tough would be doing complicated string manipulation which I'm not suggesting.

I'm proposing:

1. Don't fully parse the structure as we don't need most of it. Thus our code becomes robust to changes in the bits we don't care about.

2. Try rendering the rest of JSON using generic JSON structures and serde_json::to_string. Given the structure only contains integers and strings, the only bit that would be likely to cause problems is field ordering, which may be solvable with serde_json. So I'd write a bunch of tests and try to disprove this. If it fails, then I'd add serde_canonical_json as a dependency.

Thoughts?

[ernoc]

Just pretty printing so it's easier to refer to this while reading test code.

[ernoc]

On second thoughts, even if with the current structure, serde_json::to_vec produces an output that is canonical, if Rekor adds/changes fields in the future (e.g. to include a date), then our verifier will stop working. So I'll try using serde_canonical_json now.

[thmsbinder]

Just signed_data should be enough?

[ernoc]

Ok so I tried with serde_canonical_json and it seems to work. Also ryu-js dep is gone.

2 things I'd like your opinion on are:

• I believe it's good to keep structures like LogEntry for the cases where we use specific fields from it. But we only use body and verification. I'd remove all the others to avoid being fragile to changes in fields we don't care about, but leave a note that there exist more fields and a link to Rekor docs.

• How much testing around rekor.rs do you think we need, and how much variation of samples of log entry JSON payloads can we get? It seems to me that the one example we have is quite representative, although I'd add a couple of "bad" examples to test that we are resilient to them / get the expected error messages.

[tiziano88]

thanks, this seems much more resilient to future changes

[tiziano88]

(nit) remove blank line

[tiziano88]

This is interesting, I guess these fields were just here for the canonicalization but we didn't actually need them for anything? In that case, do we think we may need any of them in the future (I cannot think of a reason, apart from perhaps logging the decoded log entry somewhere as part of the verification, which may actually be nice)

[thmsbinder]

Agree that a little more convenience is better, be it only for logging. The trouble with the canonicalisation shouldn't lead to removing this fields.

[tiziano88]

Since you did the hard work of figuring out the actual logic upstream, it may be useful to document that more clearly here.

[tiziano88]

Since the method chain is quite long here, could you add a type annotation to help readers understand what type this is?

[tiziano88]

This is a good question -- if the fields are reordered, does this still work? Either way, it may be useful to add a few more test cases to show that (some valid , some not)

[tiziano88]

I think this will panic if it does not contain that field, which is probably undesirable

[thmsbinder]

Remove commented code (assuming it's just the original version kept around for reference).

[thmsbinder]

The type RekorSignatureBundle is dispensable, it is just a pair of two relatively unrelated things. Also not used outside this file. NB: This is just my personal taste, keep if you think differently.

[thmsbinder]

Agree that a little more convenience is better, be it only for logging. The trouble with the canonicalisation shouldn't lead to removing this fields.

[thmsbinder]

Better to use the pretty printed JSON I think (so that's good). Saving a few bytes of whitespace is of no importance.

[thmsbinder]

I stumbled over the naming signedEntryTimestamp just now. It is not a timestamp (as the name suggests), but a signature. Maybe at least reflect in the variable names/comments?

[ernoc]

Yes, SG! It's signed entry timestamp as in signed (entry timestamp), not (signed entry) timestamp 😂 . I'll add a comment.

[thmsbinder]

Make a private function which encapsulates Serializer and CanonicalFormatter?

[thmsbinder]

expect panics and does not return an error. Here the message should be returned as Result.