Support verifying Sigstore bundles

[tetsuo-cpp]

No description provided.

[tetsuo-cpp]

This isn't great, but we'll be able to remove it soon when we get rid of --rekor-bundle so I'm not too worried about it.

The only problem I see is that even though this field is marked as internal, you still need to provide a value for it if you construct one yourself. But I don't think users of the API have a good reason to be doing that anyway.

[di]

This also outputs a RuntimeWarning from Pydantic at runtime:

RuntimeWarning: fields may not start with an underscore, ignoring "_from_rekor_bundle"

[woodruffw]

Yeah, I think we can do a little better than this API (both the private field and the manual initialization). I'll look into it.

[woodruffw]

Hmm, maybe we can just remove --rekor-bundle outright? We never "actually" stabilized it (we've always emitted a warning said that it's temporary and will be removed in an upcoming release), and we never integrated it into other tooling (like the GH Action) or other expectations (e.g. CPython doesn't list it).

Thoughts @di?

[di]

Fine with me!

[woodruffw]

Cool! I'll just yank all of that out, then, and save us from even having to think about this 🙂

[di]

LGTM aside from the RuntimeWarning, we should find a workaround for that.

[woodruffw]

Flagging: I'm not super happy with this setting being here, since it's conceptually a verification option rather than a material.

The other possibility I can think of is a separate VerificationOptions model, but that might be overkill given that this is currently the only option we support. But maybe there will be more in the future?

[tetsuo-cpp]

Personally, I think it's ok.

If we go for a separate VerificationOptions model, we're never going to collapse that back into VerificationMaterials even if it remains as one option for a very long time because there's always going to be the possibility of more.

[woodruffw]

Yeah, that's a good point. I think what I'll do is make it "private" like _rekor_entry so that it isn't part of our public API commitment. It'll still end up being stabilized as part of the methods on VerificationMaterials, but that'll at least avoid the need to change this model's public fields if we ever do decide to refactor it.

[woodruffw]

@tetsuo-cpp I'll kick this back over to you, but to summarize the changes I've made:

• I removed Rekor bundle support entirely, both in the internal APIs and in the CLI
• I added VerificationMaterials.offline and VerificationMaterials.from_bundle(...), the latter being the expected API for converting a Sigstore bundle into its equivalent materials.
• I fixed up the unit tests for my changes and added some new assets/updated the fixtures to reflect them.

I think this is in a pretty good state overall, but IMO we should bring the test coverage up a bit -- it'd be good to get some coverage for the new InvalidMaterials exception and its raise-sites.

[tetsuo-cpp]

I think this is in a pretty good state overall, but IMO we should bring the test coverage up a bit -- it'd be good to get some coverage for the new InvalidMaterials exception and its raise-sites.

Done in dc1cb3b.

[woodruffw]

I'm now realizing that this is slightly misleading, since --offline implies "fully" offline, whereas we still do some network requests for TUF. I think we should keep this flag, though, and work on removing/suppressing those requests when the user requests offline verification.

[woodruffw]

LGTM!