verification of v0.2 Sigstore bundles (#605)

* verification of v0.2 Sigstore bundles

Signed-off-by: Brian DeHamer <bdehamer@github.com>

* Update .changeset/good-penguins-brake.md

Co-authored-by: Philip Harrison <philip@mailharrison.com>
Signed-off-by: Brian DeHamer <bdehamer@github.com>

* add test for v0.3 bundle verification

Signed-off-by: Brian DeHamer <bdehamer@github.com>

---------

Signed-off-by: Brian DeHamer <bdehamer@github.com>
Co-authored-by: Philip Harrison <philip@mailharrison.com>

Author: bdehamer

.changeset/fast-carrots-tan.md

@@ -0,0 +1,5 @@
+---
+'@sigstore/bundle': minor
+---
+
+Export bundle media type constants, refine `SerializedTLogEntry` type

.changeset/good-penguins-brake.md

@@ -0,0 +1,5 @@
+---
+'sigstore': minor
+---
+
+Support for verifying v0.2 Sigstore bundles that contain inclusion proofs from Rekor

packages/bundle/src/__tests__/index.test.ts

@@ -15,6 +15,8 @@ limitations under the License.
 */
 import { fromPartial } from '@total-typescript/shoehorn';
 import {
+  BUNDLE_V01_MEDIA_TYPE,
+  BUNDLE_V02_MEDIA_TYPE,
   Bundle,
   BundleLatest,
   BundleV01,
@@ -144,6 +146,11 @@ describe('public interface', () => {
     expect(bundleToJSON).toBeDefined();
   });
 
+  it('exports constants', () => {
+    expect(BUNDLE_V01_MEDIA_TYPE).toBeDefined();
+    expect(BUNDLE_V02_MEDIA_TYPE).toBeDefined();
+  });
+
   it('exports errors', () => {
     expect(ValidationError).toBeInstanceOf(Object);
   });

packages/bundle/src/__tests__/serialized.test.ts

@@ -139,7 +139,7 @@ describe('bundleToJSON', () => {
         expectedTlogEntry.integratedTime
       );
       expect(tlogEntry?.inclusionPromise).toBeTruthy();
-      expect(tlogEntry?.inclusionPromise.signedEntryTimestamp).toEqual(
+      expect(tlogEntry?.inclusionPromise?.signedEntryTimestamp).toEqual(
         (
           expectedTlogEntry.inclusionPromise?.signedEntryTimestamp as Buffer
         ).toString('base64')
@@ -260,7 +260,7 @@ describe('bundleToJSON', () => {
         expectedTlogEntry.integratedTime
       );
       expect(tlogEntry?.inclusionPromise).toBeTruthy();
-      expect(tlogEntry?.inclusionPromise.signedEntryTimestamp).toEqual(
+      expect(tlogEntry?.inclusionPromise?.signedEntryTimestamp).toEqual(
         (
           expectedTlogEntry.inclusionPromise?.signedEntryTimestamp as Buffer
         ).toString('base64')

packages/bundle/src/bundle.ts

@@ -22,6 +22,12 @@ import type {
 } from '@sigstore/protobuf-specs';
 import type { WithRequired } from './utility';
 
+export const BUNDLE_V01_MEDIA_TYPE =
+  'application/vnd.dev.sigstore.bundle+json;version=0.1';
+
+export const BUNDLE_V02_MEDIA_TYPE =
+  'application/vnd.dev.sigstore.bundle+json;version=0.2';
+
 // Extract types that are not explicitly defined in the protobuf specs.
 type DsseEnvelopeContent = Extract<
   ProtoBundle['content'],

packages/bundle/src/index.ts

@@ -14,6 +14,8 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 export {
+  BUNDLE_V01_MEDIA_TYPE,
+  BUNDLE_V02_MEDIA_TYPE,
   isBundleWithCertificateChain,
   isBundleWithDsseEnvelope,
   isBundleWithMessageSignature,

packages/bundle/src/serialized.ts

@@ -43,9 +43,11 @@ type SerializedTLogEntry = {
       }
     | undefined;
   integratedTime: string;
-  inclusionPromise: {
-    signedEntryTimestamp: string;
-  };
+  inclusionPromise:
+    | {
+        signedEntryTimestamp: string;
+      }
+    | undefined;
   inclusionProof:
     | {
         logIndex: string;

packages/bundle/src/validate.ts

@@ -13,6 +13,7 @@ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 See the License for the specific language governing permissions and
 limitations under the License.
 */
+import { BUNDLE_V01_MEDIA_TYPE } from './bundle';
 import { ValidationError } from './error';
 
 import type { Bundle as ProtoBundle } from '@sigstore/protobuf-specs';
@@ -127,10 +128,7 @@ export function assertBundle(b: ProtoBundle): asserts b is Bundle {
 export function assertBundleV01(b: Bundle): asserts b is BundleV01 {
   const invalidValues: string[] = [];
 
-  if (
-    b.mediaType &&
-    b.mediaType !== 'application/vnd.dev.sigstore.bundle+json;version=0.1'
-  ) {
+  if (b.mediaType && b.mediaType !== BUNDLE_V01_MEDIA_TYPE) {
     invalidValues.push('mediaType');
   }
 

packages/client/src/__tests__/__fixtures__/bundles/dsse.ts packages/client/src/__tests__/__fixtures__/bundles/v01/dsse.ts

@@ -0,0 +1,32 @@
+/*
+Copyright 2023 The Sigstore Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+import crypto from 'crypto';
+import signature from './signature';
+
+export default { signature };
+
+const tlogKey = crypto.createPublicKey(`-----BEGIN PUBLIC KEY-----
+MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE2G2Y+2tabdTV5BcGiBIx0a9fAFwr
+kBbmLSGtks4L3qX6yYY0zufBnhC8Ur/iy55GhWP/9A/bY2LhC30M9+RYtw==
+-----END PUBLIC KEY-----`);
+
+const tlogKeyID = crypto
+  .createHash('sha256')
+  .update(tlogKey.export({ format: 'der', type: 'spki' }))
+  .digest()
+  .toString('hex');
+
+export const tlogKeys = { [tlogKeyID]: tlogKey };

packages/client/src/__tests__/__fixtures__/bundles/index.ts packages/client/src/__tests__/__fixtures__/bundles/v01/index.ts

@@ -0,0 +1,166 @@
+/*
+Copyright 2023 The Sigstore Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+///////////////////////////////////////////////////////////////////////////////
+// VALID BUNDLES
+///////////////////////////////////////////////////////////////////////////////
+
+// Valid messageSignature bundle signed with a Fulcio signing certificate
+const validBundleWithSigningCert = {
+  mediaType: 'application/vnd.dev.sigstore.bundle+json;version=0.2',
+  verificationMaterial: {
+    x509CertificateChain: {
+      certificates: [
+        {
+          rawBytes:
+            'MIICoDCCAiagAwIBAgIUevae+nLQ8mg6OyOB43MKJ10F2CEwCgYIKoZIzj0EAwMwNzEVMBMGA1UEChMMc2lnc3RvcmUuZGV2MR4wHAYDVQQDExVzaWdzdG9yZS1pbnRlcm1lZGlhdGUwHhcNMjIxMTA5MDEzMzA5WhcNMjIxMTA5MDE0MzA5WjAAMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE9DbYBIMQLtWb6J5gtL69jgRwwEfdtQtKvvG4+o3ZzlOroJplpXaVgF6wBDob++rNG9/AzSaBmApkEwI52XBjWqOCAUUwggFBMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAKBggrBgEFBQcDAzAdBgNVHQ4EFgQUVIIFc08z6uV9Y96S+v5oDbbmHEYwHwYDVR0jBBgwFoAU39Ppz1YkEZb5qNjpKFWixi4YZD8wHwYDVR0RAQH/BBUwE4ERYnJpYW5AZGVoYW1lci5jb20wLAYKKwYBBAGDvzABAQQeaHR0cHM6Ly9naXRodWIuY29tL2xvZ2luL29hdXRoMIGKBgorBgEEAdZ5AgQCBHwEegB4AHYA3T0wasbHETJjGR4cmWc3AqJKXrjePK3/h4pygC8p7o4AAAGEWgUGQwAABAMARzBFAiEAlKycMBC2q+QM+mct60RNENxpURHes6vgOBWdx71XcXgCIAtnMzw/cBw5h0hrYJ8b1PJjoxn3k1N2TdgofqvMhbSTMAoGCCqGSM49BAMDA2gAMGUCMQC2KLFYSiD/+S1WEsyf9czf52w+E577Hi77r8pGUM1rQ/Bzg1aGvQs0/kAg3S/JSDgCMEdN5dIS0tRm1SOMbOFcW+1yzR+OiCVJ7DVFwUdI3D/7ERxtN9e/LJ6uaRnR/Sanrw==',
+        },
+      ],
+    },
+    publicKey: undefined,
+    tlogEntries: [
+      {
+        logIndex: '6757503',
+        logId: { keyId: 'wNI9atQGlz+VWfO6LRygH4QUfY/8W4RFwiT5i5WRgB0=' },
+        kindVersion: { kind: 'hashedrekord', version: '0.0.1' },
+        integratedTime: '1667957590',
+        inclusionPromise: undefined,
+        inclusionProof: {
+          logIndex: '2594072',
+          rootHash: 'kAnoYYy8iB3NjC5tE2l6pGBqY3uw3CBJ6x2cBBQXu0U=',
+          treeSize: '22954907',
+          hashes: [
+            'qEpgYkIiW7jVzbHp54MraVJQ1AE72Zvr5XSohvcdBN4=',
+            'wtdXKmzwBO1Lr1bY5gOXpVUiP0OxYRRa9ZodfVYRKw8=',
+            'ikD2dl7XVH3EKAPc6k21SYog5TYdwp/8DayXZ8Eedtw=',
+            '3oHeiTXTqKZMOpundZhKh4c6dznt7SdFj88Gog5DCYY=',
+            '4By9NfYQqHZOn5CusfRqIGw9/NeQr5E1nG4ICulNnUo=',
+            'p3BgRy0uSg6SRAqcKt8qXUIDhhJhox1tCAIaHdT5tac=',
+            'lJvUc0jjih3wNA1S7cbtw1q5HYX3JxYY5fO9ytPIKLU=',
+            '5vWL6hRP9EBDNAuXS3E236YUwutNv6qvIWTfcdzywFA=',
+            '1ODC3wToc5Hqky2sJQ2w3mBFggDWdZROOAv4MXWWLw0=',
+            'QqwionvWKT5a3Kqsx1UWIYDsBIMK7H+pvKZNon1g4A4=',
+            '9Ckxujk8Sg094zTRpBWmwd4ZWNT7W72H/S2JPKbZiBY=',
+            '/gKT0/YRP2WbANUct+sWMGGQ2a9lQlNFBb/XYAhb/j8=',
+            'f+eeYNJFCZRAI6IKsab+xTmMUl9g6Km2h6KUztMHpxM=',
+            'P8eLjDLaNzX9cTdqiFIKYjyVJv4cNwxPBh1Ppg8eDvM=',
+            '7NR456rTv4HEGWxCwUOTYm7ze69yMkqG4f8MbhE43oU=',
+            'Ul2YswjUyBqbJ3eka2zE0MI0QxT4ez8sCJ1Z3+vvMw8=',
+            'ucRPSmGLhm/SyHL7chQ5vBEFull08HzsqtAC0TQ91tY=',
+            'EiS8ntcvGnB1xcGZg9Cf3fTkV1wBcJNVtSWKIYVZqAU=',
+            'Mx1LEx7szsPd62CGkL6HM+NWkOy9YwZTwukJEVgH7Cw=',
+            's2Z13KVYurVY6F1AUhr8Uby4RE3RXW1XEC2tWWdzCjI=',
+            'QRfYxLEHh/FwMZqWnxNNW+x3lY7o3LM86BW+z0MpMN4=',
+            'J0dGjQ7V5bETi7p7eWg2ephCQ32QBLMWY5HxFcuGfR4=',
+            'uFGzOQorMYmYZ2yumLpgr1tvXvZaL+tTTCqaXa7Hdds=',
+            'Lksw/hm/y+1p33SaEF8/60gPvFVNkueBpDWJ1tAVcAo=',
+            'o4Smg8NUiGzxKxvvvgjtH2NV82EZSBLcUDUo9IpzS0Y=',
+          ],
+          checkpoint: {
+            envelope:
+              'rekor.sigstore.dev - 2605736670972794746\n22954907\nkAnoYYy8iB3NjC5tE2l6pGBqY3uw3CBJ6x2cBBQXu0U=\nTimestamp: 1689107716054191855\n\n— rekor.sigstore.dev wNI9ajBFAiEA8OpuifHq4iqd6ZJSRiVQbe00eTdZllaQ51fgfAVxAPkCIDC64vV4bCtkn3S8CyMaTHHWgD2E/a+nm0eFBADK/LFP\n',
+          },
+        },
+        canonicalizedBody:
+          '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',
+      },
+    ],
+    timestampVerificationData: { rfc3161Timestamps: [] },
+  },
+  messageSignature: {
+    messageDigest: {
+      algorithm: 'SHA2_256',
+      digest: 'aOZWslHmfoNYvvhIOrDVHGYZ8+ehqfDnWDjUH/No9yg=',
+    },
+    signature:
+      'MEQCIHs5aUulq1HpR+fwmSKpLk/oAwq5O9CDNFHhZAKfG5GmAiBwcVnf2obzsCGVlf0AIvbvHr21NXt7tpLBl4+Brh6OKA==',
+  },
+  dsseEnvelope: undefined,
+};
+
+// Valid messageSignature bundle signed with a public key
+const validBundleWithPublicKey = {
+  mediaType: 'application/vnd.dev.sigstore.bundle+json;version=0.2',
+  verificationMaterial: {
+    publicKey: {
+      hint: '9a76331edc1cfd3933040996615b1c06adbe6f9b4f11df4106dcceb66e3bdb1b',
+    },
+    tlogEntries: [
+      {
+        logIndex: '6757503',
+        logId: { keyId: 'wNI9atQGlz+VWfO6LRygH4QUfY/8W4RFwiT5i5WRgB0=' },
+        kindVersion: { kind: 'hashedrekord', version: '0.0.1' },
+        integratedTime: '1667957590',
+        inclusionPromise: undefined,
+        inclusionProof: {
+          logIndex: '2594072',
+          rootHash: 'kAnoYYy8iB3NjC5tE2l6pGBqY3uw3CBJ6x2cBBQXu0U=',
+          treeSize: '22954907',
+          hashes: [
+            'qEpgYkIiW7jVzbHp54MraVJQ1AE72Zvr5XSohvcdBN4=',
+            'wtdXKmzwBO1Lr1bY5gOXpVUiP0OxYRRa9ZodfVYRKw8=',
+            'ikD2dl7XVH3EKAPc6k21SYog5TYdwp/8DayXZ8Eedtw=',
+            '3oHeiTXTqKZMOpundZhKh4c6dznt7SdFj88Gog5DCYY=',
+            '4By9NfYQqHZOn5CusfRqIGw9/NeQr5E1nG4ICulNnUo=',
+            'p3BgRy0uSg6SRAqcKt8qXUIDhhJhox1tCAIaHdT5tac=',
+            'lJvUc0jjih3wNA1S7cbtw1q5HYX3JxYY5fO9ytPIKLU=',
+            '5vWL6hRP9EBDNAuXS3E236YUwutNv6qvIWTfcdzywFA=',
+            '1ODC3wToc5Hqky2sJQ2w3mBFggDWdZROOAv4MXWWLw0=',
+            'QqwionvWKT5a3Kqsx1UWIYDsBIMK7H+pvKZNon1g4A4=',
+            '9Ckxujk8Sg094zTRpBWmwd4ZWNT7W72H/S2JPKbZiBY=',
+            '/gKT0/YRP2WbANUct+sWMGGQ2a9lQlNFBb/XYAhb/j8=',
+            'f+eeYNJFCZRAI6IKsab+xTmMUl9g6Km2h6KUztMHpxM=',
+            'P8eLjDLaNzX9cTdqiFIKYjyVJv4cNwxPBh1Ppg8eDvM=',
+            '7NR456rTv4HEGWxCwUOTYm7ze69yMkqG4f8MbhE43oU=',
+            'Ul2YswjUyBqbJ3eka2zE0MI0QxT4ez8sCJ1Z3+vvMw8=',
+            'ucRPSmGLhm/SyHL7chQ5vBEFull08HzsqtAC0TQ91tY=',
+            'EiS8ntcvGnB1xcGZg9Cf3fTkV1wBcJNVtSWKIYVZqAU=',
+            'Mx1LEx7szsPd62CGkL6HM+NWkOy9YwZTwukJEVgH7Cw=',
+            's2Z13KVYurVY6F1AUhr8Uby4RE3RXW1XEC2tWWdzCjI=',
+            'QRfYxLEHh/FwMZqWnxNNW+x3lY7o3LM86BW+z0MpMN4=',
+            'J0dGjQ7V5bETi7p7eWg2ephCQ32QBLMWY5HxFcuGfR4=',
+            'uFGzOQorMYmYZ2yumLpgr1tvXvZaL+tTTCqaXa7Hdds=',
+            'Lksw/hm/y+1p33SaEF8/60gPvFVNkueBpDWJ1tAVcAo=',
+            'o4Smg8NUiGzxKxvvvgjtH2NV82EZSBLcUDUo9IpzS0Y=',
+          ],
+          checkpoint: {
+            envelope:
+              'rekor.sigstore.dev - 2605736670972794746\n22954907\nkAnoYYy8iB3NjC5tE2l6pGBqY3uw3CBJ6x2cBBQXu0U=\nTimestamp: 1689107716054191855\n\n— rekor.sigstore.dev wNI9ajBFAiEA8OpuifHq4iqd6ZJSRiVQbe00eTdZllaQ51fgfAVxAPkCIDC64vV4bCtkn3S8CyMaTHHWgD2E/a+nm0eFBADK/LFP\n',
+          },
+        },
+        canonicalizedBody:
+          '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',
+      },
+    ],
+    timestampVerificationData: { rfc3161Timestamps: [] },
+  },
+  messageSignature: {
+    messageDigest: {
+      algorithm: 'SHA2_256',
+      digest: 'aOZWslHmfoNYvvhIOrDVHGYZ8+ehqfDnWDjUH/No9yg=',
+    },
+    signature:
+      'MEQCIHs5aUulq1HpR+fwmSKpLk/oAwq5O9CDNFHhZAKfG5GmAiBwcVnf2obzsCGVlf0AIvbvHr21NXt7tpLBl4+Brh6OKA==',
+  },
+};
+
+export default {
+  artifact: Buffer.from('hello, world!'),
+  valid: {
+    withSigningCert: validBundleWithSigningCert,
+    withPublicKey: validBundleWithPublicKey,
+  },
+  invalid: {},
+};

packages/client/src/__tests__/__fixtures__/bundles/signature.ts packages/client/src/__tests__/__fixtures__/bundles/v01/signature.ts

@@ -16,7 +16,7 @@ limitations under the License.
 import { bundleFromJSON, BundleWithCertificateChain } from '@sigstore/bundle';
 import { verifySigningCertificate } from '../../../ca/verify';
 import * as sigstore from '../../../types/sigstore';
-import bundles from '../../__fixtures__/bundles/';
+import bundles from '../../__fixtures__/bundles/v01';
 import { trustedRoot } from '../../__fixtures__/trust';
 
 describe('verifySigningCertificate', () => {

packages/client/src/__tests__/__fixtures__/bundles/v02/index.ts

@@ -29,7 +29,8 @@ import mocktuf, { Target } from '@tufjs/repo-mock';
 import { PolicyError, VerificationError } from '../error';
 import { Signer } from '../sign';
 import { attest, createVerifier, sign, tuf, verify } from '../sigstore';
-import bundles from './__fixtures__/bundles';
+import bundles from './__fixtures__/bundles/v01';
+import bundlesV02 from './__fixtures__/bundles/v02';
 import { trustedRoot } from './__fixtures__/trust';
 
 import type { TUFOptions, VerifyOptions } from '../config';
@@ -318,6 +319,31 @@ describe('#verify', () => {
       );
     });
   });
+
+  describe('when the bundle is a v0.2 bundle', () => {
+    const bundle = bundlesV02.signature.valid.withSigningCert;
+    const artifact = bundlesV02.signature.artifact;
+
+    it('does not throw an error', async () => {
+      await expect(verify(bundle, artifact, tufOptions)).resolves.toBe(
+        undefined
+      );
+    });
+  });
+
+  describe('when the bundle is newer then v0.2', () => {
+    // Check a theoretical v0.3 bundle that is the same shape as a v0.2 bundle
+    const bundle = { ...bundlesV02.signature.valid.withSigningCert };
+    bundle.mediaType = 'application/vnd.dev.sigstore.bundle+json;version=0.3';
+
+    const artifact = bundlesV02.signature.artifact;
+
+    it('does not throw an error', async () => {
+      await expect(verify(bundle, artifact, tufOptions)).resolves.toBe(
+        undefined
+      );
+    });
+  });
 });
 
 describe('#createVerifier', () => {

packages/client/src/__tests__/__fixtures__/bundles/v02/signature.ts

@@ -15,7 +15,7 @@ limitations under the License.
 */
 import { bundleFromJSON, TransparencyLogEntry } from '@sigstore/bundle';
 import { verifyTLogBody } from '../../../tlog/verify/body';
-import bundles from '../../__fixtures__/bundles';
+import bundles from '../../__fixtures__/bundles/v01';
 
 describe('verifyTLogBody', () => {
   describe('when a message signature bundle is provided', () => {

packages/client/src/__tests__/ca/verify/index.test.ts

@@ -1,4 +1,4 @@
-import type { TransparencyLogEntry } from '@sigstore/bundle';
+import type { TLogEntryWithInclusionProof } from '@sigstore/bundle';
 import { fromPartial } from '@total-typescript/shoehorn';
 import { VerificationError } from '../../../error';
 import { verifyCheckpoint } from '../../../tlog/verify/checkpoint';
@@ -43,55 +43,34 @@ describe('verifyCheckpoint', () => {
   const checkpoint =
     'rekor.sigstore.dev - 2605736670972794746\n21428036\nrxnoKyFZlJ7/R6bMh/d3lcqwKqAy5CL1LcNBJP17kgQ=\nTimestamp: 1688058656037355364\n\n— rekor.sigstore.dev wNI9ajBFAiEAuDk7uu5Ae8Own/MjhSZNuVzbLuYH2jBMxbSA0WaNDNACIDV4reKpYiOpkwtvazCClnpUuduF2o/th2xR3gRZAUU4\n';
 
-  const inclusionProof: TransparencyLogEntry['inclusionProof'] = fromPartial({
-    checkpoint: { envelope: checkpoint },
-    rootHash: Buffer.from(
-      'rxnoKyFZlJ7/R6bMh/d3lcqwKqAy5CL1LcNBJP17kgQ=',
-      'base64'
-    ),
-  });
+  const inclusionProof: TLogEntryWithInclusionProof['inclusionProof'] =
+    fromPartial({
+      checkpoint: { envelope: checkpoint },
+      rootHash: Buffer.from(
+        'rxnoKyFZlJ7/R6bMh/d3lcqwKqAy5CL1LcNBJP17kgQ=',
+        'base64'
+      ),
+    });
 
-  const entry: TransparencyLogEntry = fromPartial({
+  const entry: TLogEntryWithInclusionProof = fromPartial({
     inclusionProof: inclusionProof,
     integratedTime: '1688058655',
   });
 
   describe('when the entry has a valid checkpoint', () => {
-    it('does NOT throw an error', () => {
-      expect(() => verifyCheckpoint(entry, tlogs)).not.toThrow();
-    });
-  });
-
-  describe('when the entry has no inclusion proof', () => {
-    const entryWithoutProof: TransparencyLogEntry = fromPartial({
-      logId: { keyId: keyID },
-    });
-
-    it('throws a VerificationError', () => {
-      expect(() => verifyCheckpoint(entryWithoutProof, tlogs)).toThrow(
-        VerificationError
-      );
-    });
-  });
-
-  describe('when the entry has no checkpoint', () => {
-    const entryWithoutCheckpoint: TransparencyLogEntry = fromPartial({
-      inclusionProof: {},
-    });
-
-    it('throws a VerificationError', () => {
-      expect(() => verifyCheckpoint(entryWithoutCheckpoint, tlogs)).toThrow(
-        VerificationError
-      );
+    it('returns true', () => {
+      expect(verifyCheckpoint(entry, tlogs)).toBe(true);
     });
   });
 
   describe('when the checkpoint has no separator', () => {
-    const entryWithInvalidCheckpoint: TransparencyLogEntry = fromPartial({
-      inclusionProof: {
-        checkpoint: { envelope: 'rekor.sigstore.dev - 2605736670972794746' },
-      },
-    });
+    const entryWithInvalidCheckpoint: TLogEntryWithInclusionProof = fromPartial(
+      {
+        inclusionProof: {
+          checkpoint: { envelope: 'rekor.sigstore.dev - 2605736670972794746' },
+        },
+      }
+    );
 
     it('throws a VerificationError', () => {
       expect(() => verifyCheckpoint(entryWithInvalidCheckpoint, tlogs)).toThrow(
@@ -101,14 +80,16 @@ describe('verifyCheckpoint', () => {
   });
 
   describe('when the checkpoint signature is malformed', () => {
-    const entryWithInvalidCheckpoint: TransparencyLogEntry = fromPartial({
-      inclusionProof: {
-        checkpoint: {
-          envelope:
-            'rekor.sigstore.dev - 2605736670972794746\n\n— rekor.sigstore.dev foo\n',
+    const entryWithInvalidCheckpoint: TLogEntryWithInclusionProof = fromPartial(
+      {
+        inclusionProof: {
+          checkpoint: {
+            envelope:
+              'rekor.sigstore.dev - 2605736670972794746\n\n— rekor.sigstore.dev foo\n',
+          },
         },
-      },
-    });
+      }
+    );
 
     it('throws a VerificationError', () => {
       expect(() => verifyCheckpoint(entryWithInvalidCheckpoint, tlogs)).toThrow(
@@ -118,7 +99,7 @@ describe('verifyCheckpoint', () => {
   });
 
   describe('when the checkpoint has no signature', () => {
-    const entryWitInvalidCheckpoint: TransparencyLogEntry = fromPartial({
+    const entryWitInvalidCheckpoint: TLogEntryWithInclusionProof = fromPartial({
       inclusionProof: {
         checkpoint: {
           envelope: 'rekor.sigstore.dev - 2605736670972794746\n\n',
@@ -134,14 +115,16 @@ describe('verifyCheckpoint', () => {
   });
 
   describe('when the checkpoint header is too short', () => {
-    const entryWithInvalidCheckpoint: TransparencyLogEntry = fromPartial({
-      inclusionProof: {
-        checkpoint: {
-          envelope:
-            'rekor.sigstore.dev\n\n— rekor.sigstore.dev wNI9ajBFAiEAu\n',
+    const entryWithInvalidCheckpoint: TLogEntryWithInclusionProof = fromPartial(
+      {
+        inclusionProof: {
+          checkpoint: {
+            envelope:
+              'rekor.sigstore.dev\n\n— rekor.sigstore.dev wNI9ajBFAiEAu\n',
+          },
         },
-      },
-    });
+      }
+    );
 
     it('throws a VerificationError', () => {
       expect(() => verifyCheckpoint(entryWithInvalidCheckpoint, tlogs)).toThrow(
@@ -151,13 +134,15 @@ describe('verifyCheckpoint', () => {
   });
 
   describe('when the checkpoint origin is empty', () => {
-    const entryWithInvalidCheckpoint: TransparencyLogEntry = fromPartial({
-      inclusionProof: {
-        checkpoint: {
-          envelope: '\nA\nB\nC\n\n— rekor.sigstore.dev wNI9ajBFAiEAu\n',
+    const entryWithInvalidCheckpoint: TLogEntryWithInclusionProof = fromPartial(
+      {
+        inclusionProof: {
+          checkpoint: {
+            envelope: '\nA\nB\nC\n\n— rekor.sigstore.dev wNI9ajBFAiEAu\n',
+          },
         },
-      },
-    });
+      }
+    );
 
     it('throws a VerificationError', () => {
       expect(() => verifyCheckpoint(entryWithInvalidCheckpoint, tlogs)).toThrow(
@@ -167,46 +152,43 @@ describe('verifyCheckpoint', () => {
   });
 
   describe('when the entry checkpoint has the wrong root hash', () => {
-    const entry: TransparencyLogEntry = fromPartial({
+    const entry: TLogEntryWithInclusionProof = fromPartial({
       inclusionProof: { ...inclusionProof, rootHash: Buffer.from('foo') },
     });
-    it('does NOT throw an error', () => {
-      expect(() => verifyCheckpoint(entry, tlogs)).toThrow(VerificationError);
+
+    it('returns false', () => {
+      expect(verifyCheckpoint(entry, tlogs)).toBe(false);
     });
   });
 
   describe('when the entry checkpoint has a bad signature', () => {
     const badSignatureCheckpoint =
       'rekor.sigstore.dev - 2605736670972794746\n21428036\nrxnoKyFZlJ7/R6bMh/d3lcqwKqAy5CL1LcNBJP17kgQ=\nTimestamp: 1688058656037355364\n\n— rekor.sigstore.dev wNI9ajBFAiEAuDk7uu5Ae8Own\n';
 
-    const entryWithBadCheckpointSig: TransparencyLogEntry = fromPartial({
+    const entryWithBadCheckpointSig: TLogEntryWithInclusionProof = fromPartial({
       inclusionProof: {
         ...inclusionProof,
         checkpoint: { envelope: badSignatureCheckpoint },
       },
     });
 
-    it('throws a VerificationError', () => {
-      expect(() => verifyCheckpoint(entryWithBadCheckpointSig, tlogs)).toThrow(
-        VerificationError
-      );
+    it('returns false', () => {
+      expect(verifyCheckpoint(entryWithBadCheckpointSig, tlogs)).toBe(false);
     });
   });
 
   describe('when there is no transparency log with the given key ID', () => {
     const checkpointWithBadKeyHint =
       'rekor.sigstore.dev - 2605736670972794746\n21428036\nrxnoKyFZlJ7/R6bMh/d3lcqwKqAy5CL1LcNBJP17kgQ=\nTimestamp: 1688058656037355364\n\n— rekor.sigstore.dev xNI9ajBFAiEAuDk7uu5Ae8Own/MjhSZNuVzbLuYH2jBMxbSA0WaNDNACIDV4reKpYiOpkwtvazCClnpUuduF2o/th2xR3gRZAUU4\n';
-    const entryWithBadLogID: TransparencyLogEntry = fromPartial({
+    const entryWithBadLogID: TLogEntryWithInclusionProof = fromPartial({
       inclusionProof: {
         ...inclusionProof,
         checkpoint: { envelope: checkpointWithBadKeyHint },
       },
     });
 
-    it('throws a VerificationError', () => {
-      expect(() => verifyCheckpoint(entryWithBadLogID, tlogs)).toThrow(
-        VerificationError
-      );
+    it('returns false', () => {
+      expect(verifyCheckpoint(entryWithBadLogID, tlogs)).toBe(false);
     });
   });
 
@@ -221,10 +203,8 @@ describe('verifyCheckpoint', () => {
       },
     ];
 
-    it('throws a VerificationError', () => {
-      expect(() => verifyCheckpoint(entry, invalidTLogs)).toThrow(
-        VerificationError
-      );
+    it('returns false', () => {
+      expect(verifyCheckpoint(entry, invalidTLogs)).toBe(false);
     });
   });
 
@@ -238,10 +218,9 @@ describe('verifyCheckpoint', () => {
         },
       },
     ];
-    it('throws a VerificationError', () => {
-      expect(() => verifyCheckpoint(entry, invalidTLogs)).toThrow(
-        VerificationError
-      );
+
+    it('returns false', () => {
+      expect(verifyCheckpoint(entry, invalidTLogs)).toBe(false);
     });
   });
 
@@ -258,10 +237,9 @@ describe('verifyCheckpoint', () => {
         },
       },
     ];
-    it('throws a VerificationError', () => {
-      expect(() => verifyCheckpoint(entry, invalidTLogs)).toThrow(
-        VerificationError
-      );
+
+    it('returns false', () => {
+      expect(verifyCheckpoint(entry, invalidTLogs)).toBe(false);
     });
   });
 });

packages/client/src/__tests__/sigstore.test.ts

@@ -17,63 +17,121 @@ import { bundleFromJSON } from '@sigstore/bundle';
 import { VerificationError } from '../../../error';
 import { verifyTLogEntries } from '../../../tlog/verify/index';
 import * as sigstore from '../../../types/sigstore';
-import bundles from '../../__fixtures__/bundles';
+import bundles from '../../__fixtures__/bundles/v01';
+import bundlesV02 from '../../__fixtures__/bundles/v02';
 import { trustedRoot } from '../../__fixtures__/trust';
 
 describe('verifyTLogEntries', () => {
-  const bundle = bundleFromJSON(bundles.signature.valid.withSigningCert);
-
   const options: sigstore.ArtifactVerificationOptions_TlogOptions = {
     disable: false,
     performOnlineVerification: false,
     threshold: 1,
   };
 
-  describe('when everything is valid', () => {
-    describe('when the bundle has a signing certificate', () => {
-      it('does NOT throw an error', () => {
-        expect(() =>
-          verifyTLogEntries(bundle, trustedRoot, options)
-        ).not.toThrow();
+  describe('when the bundle is a v02 bundle', () => {
+    describe('when everything is valid', () => {
+      describe('when the bundle has a signing certificate', () => {
+        const bundle = bundleFromJSON(
+          bundlesV02.signature.valid.withSigningCert
+        );
+
+        it('does NOT throw an error', () => {
+          expect(() =>
+            verifyTLogEntries(bundle, trustedRoot, options)
+          ).not.toThrow();
+        });
+      });
+
+      describe('when the bundle does NOT have a signing certificate', () => {
+        const bundle = bundleFromJSON(bundlesV02.signature.valid.withPublicKey);
+
+        it('does NOT throw an error', () => {
+          expect(() =>
+            verifyTLogEntries(bundle, trustedRoot, options)
+          ).not.toThrow();
+        });
       });
     });
 
-    describe('when the bundle does NOT have a signing certificate', () => {
-      const bundle = bundleFromJSON(bundles.signature.valid.withPublicKey);
+    describe('when the verification threshold is not met', () => {
+      const bundle = bundleFromJSON(bundlesV02.signature.valid.withSigningCert);
+      const options: sigstore.ArtifactVerificationOptions_TlogOptions = {
+        disable: false,
+        performOnlineVerification: false,
+        threshold: Number.MAX_SAFE_INTEGER,
+      };
 
-      it('does NOT throw an error', () => {
-        expect(() =>
-          verifyTLogEntries(bundle, trustedRoot, options)
-        ).not.toThrow();
+      it('throws an error', () => {
+        expect(() => verifyTLogEntries(bundle, trustedRoot, options)).toThrow(
+          VerificationError
+        );
       });
     });
-  });
 
-  describe('when the verification threshold is not met', () => {
-    const options: sigstore.ArtifactVerificationOptions_TlogOptions = {
-      disable: false,
-      performOnlineVerification: false,
-      threshold: Number.MAX_SAFE_INTEGER,
-    };
-
-    it('throws an error', () => {
-      expect(() => verifyTLogEntries(bundle, trustedRoot, options)).toThrow(
-        VerificationError
-      );
+    describe('when online verification is requested', () => {
+      const bundle = bundleFromJSON(bundlesV02.signature.valid.withSigningCert);
+      const options: sigstore.ArtifactVerificationOptions_TlogOptions = {
+        disable: false,
+        performOnlineVerification: true,
+        threshold: 1,
+      };
+
+      it('throws an error', () => {
+        expect(() => verifyTLogEntries(bundle, trustedRoot, options)).toThrow(
+          VerificationError
+        );
+      });
     });
   });
 
-  describe('when online verification is requested', () => {
-    const options: sigstore.ArtifactVerificationOptions_TlogOptions = {
-      disable: false,
-      performOnlineVerification: true,
-      threshold: 1,
-    };
-
-    it('throws an error', () => {
-      expect(() => verifyTLogEntries(bundle, trustedRoot, options)).toThrow(
-        VerificationError
-      );
+  describe('when the bundle is a v01 bundle', () => {
+    const bundle = bundleFromJSON(bundles.signature.valid.withSigningCert);
+    describe('when everything is valid', () => {
+      describe('when the bundle has a signing certificate', () => {
+        it('does NOT throw an error', () => {
+          expect(() =>
+            verifyTLogEntries(bundle, trustedRoot, options)
+          ).not.toThrow();
+        });
+      });
+
+      describe('when the bundle does NOT have a signing certificate', () => {
+        const bundle = bundleFromJSON(bundles.signature.valid.withPublicKey);
+
+        it('does NOT throw an error', () => {
+          expect(() =>
+            verifyTLogEntries(bundle, trustedRoot, options)
+          ).not.toThrow();
+        });
+      });
+    });
+
+    describe('when the verification threshold is not met', () => {
+      const options: sigstore.ArtifactVerificationOptions_TlogOptions = {
+        disable: false,
+        performOnlineVerification: false,
+        threshold: Number.MAX_SAFE_INTEGER,
+      };
+
+      it('throws an error', () => {
+        expect(() => verifyTLogEntries(bundle, trustedRoot, options)).toThrow(
+          VerificationError
+        );
+      });
+    });
+
+    describe('when online verification is requested', () => {
+      const options: sigstore.ArtifactVerificationOptions_TlogOptions = {
+        disable: false,
+        performOnlineVerification: true,
+        threshold: 1,
+      };
+
+      it('throws an error', () => {
+        expect(() => verifyTLogEntries(bundle, trustedRoot, options)).toThrow(
+          VerificationError
+        );
+      });
     });
   });
 });

packages/client/src/__tests__/tlog/verify/body.test.ts

@@ -13,7 +13,7 @@ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-import type { TransparencyLogEntry } from '@sigstore/bundle';
+import type { TLogEntryWithInclusionProof } from '@sigstore/bundle';
 import { VerificationError } from '../../../error';
 import { verifyMerkleInclusion } from '../../../tlog/verify/merkle';
 
@@ -122,7 +122,7 @@ describe('verifyMerkleInclusion', () => {
     const entry = {
       canonicalizedBody,
       inclusionProof,
-    } as TransparencyLogEntry;
+    } as TLogEntryWithInclusionProof;
 
     it('returns true', () => {
       expect(verifyMerkleInclusion(entry)).toBe(true);
@@ -133,7 +133,7 @@ describe('verifyMerkleInclusion', () => {
     const invalidEntry = {
       canonicalizedBody: Buffer.from('invalid'),
       inclusionProof,
-    } as TransparencyLogEntry;
+    } as TLogEntryWithInclusionProof;
 
     it('returns false', () => {
       expect(verifyMerkleInclusion(invalidEntry)).toBe(false);
@@ -144,20 +144,7 @@ describe('verifyMerkleInclusion', () => {
     const invalidEntry = {
       canonicalizedBody,
       inclusionProof: { ...inclusionProof, logIndex: '-1' },
-    } as TransparencyLogEntry;
-
-    it('throws an error', () => {
-      expect(() => verifyMerkleInclusion(invalidEntry)).toThrow(
-        VerificationError
-      );
-    });
-  });
-
-  describe('when the entry does NOT contain an inclusion proof', () => {
-    const invalidEntry = {
-      canonicalizedBody,
-      inclusionProof: undefined,
-    } as TransparencyLogEntry;
+    } as TLogEntryWithInclusionProof;
 
     it('throws an error', () => {
       expect(() => verifyMerkleInclusion(invalidEntry)).toThrow(
@@ -170,9 +157,9 @@ describe('verifyMerkleInclusion', () => {
     const invalidEntry = {
       canonicalizedBody,
       inclusionProof: { ...inclusionProof, treeSize: '99', logIndex: '100' },
-    } as TransparencyLogEntry;
+    } as TLogEntryWithInclusionProof;
 
-    it('throws an error true', () => {
+    it('throws an error', () => {
       expect(() => verifyMerkleInclusion(invalidEntry)).toThrow(
         VerificationError
       );
@@ -186,9 +173,9 @@ describe('verifyMerkleInclusion', () => {
         ...inclusionProof,
         hashes: inclusionProof.hashes.slice(0, 1),
       },
-    } as TransparencyLogEntry;
+    } as TLogEntryWithInclusionProof;
 
-    it('throws an error true', () => {
+    it('throws an error', () => {
       expect(() => verifyMerkleInclusion(invalidEntry)).toThrow(
         VerificationError
       );

packages/client/src/__tests__/tlog/verify/checkpoint.test.ts

@@ -20,7 +20,7 @@ import {
 import { verifyTLogSET } from '../../../tlog/verify/set';
 import * as sigstore from '../../../types/sigstore';
 import { crypto } from '../../../util';
-import bundles from '../../__fixtures__/bundles';
+import bundles from '../../__fixtures__/bundles/v01';
 
 describe('verifyTLogSET', () => {
   const keyBytes = Buffer.from(

packages/client/src/__tests__/tlog/verify/index.test.ts

@@ -13,10 +13,10 @@ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-import type { Entry } from '../../../external/rekor';
-import { SignatureMaterial } from '../../../types/signature';
-import * as sigstore from '../../../types/sigstore';
-import { encoding as enc, pem } from '../../../util';
+import type { Entry } from '../../external/rekor';
+import { SignatureMaterial } from '../../types/signature';
+import * as sigstore from '../../types/sigstore';
+import { encoding as enc, pem } from '../../util';
 
 describe('isCAVerificationOptions', () => {
   describe('when the verification options are for a CA', () => {
@@ -92,13 +92,12 @@ describe('bundle', () => {
   const signature = Buffer.from('signature');
   const certificate = `-----BEGIN CERTIFICATE-----\nabc\n-----END CERTIFICATE-----`;
 
-  const sigMaterial: SignatureMaterial = {
-    signature,
-    certificates: [certificate],
-    key: undefined,
-  };
-
   describe('toDSSEBundle', () => {
+    const sigMaterial: SignatureMaterial = {
+      signature,
+      certificates: [certificate],
+      key: undefined,
+    };
     const envelope: sigstore.Envelope = {
       payloadType: 'application/vnd.in-toto+json',
       payload: Buffer.from('payload'),
@@ -211,6 +210,12 @@ describe('bundle', () => {
   });
 
   describe('toMessageSignatureBundle', () => {
+    const sigMaterial: SignatureMaterial = {
+      signature,
+      certificates: undefined,
+      key: { value: 'key', id: 'hint' },
+    };
+
     const digest = Buffer.from('digest');
 
     it('returns a valid message signature bundle', () => {
@@ -236,13 +241,12 @@ describe('bundle', () => {
       }
 
       // Verification material
-      if (b.verificationMaterial?.content?.$case === 'x509CertificateChain') {
-        const chain = b.verificationMaterial.content.x509CertificateChain;
-        expect(chain).toBeTruthy();
-        expect(chain.certificates).toHaveLength(1);
-        expect(chain.certificates[0].rawBytes).toEqual(pem.toDER(certificate));
+      if (b.verificationMaterial?.content?.$case === 'publicKey') {
+        const publicKey = b.verificationMaterial.content.publicKey;
+        expect(publicKey).toBeTruthy();
+        expect(publicKey.hint).toEqual('hint');
       } else {
-        fail('Expected x509CertificateChain');
+        fail('Expected publicKey');
       }
 
       expect(b.verificationMaterial?.timestampVerificationData).toBeUndefined();

packages/client/src/__tests__/tlog/verify/merkle.test.ts

@@ -17,7 +17,7 @@ import { bundleFromJSON } from '@sigstore/bundle';
 import { VerificationError } from '../error';
 import * as sigstore from '../types/sigstore';
 import { Verifier } from '../verify';
-import bundles from './__fixtures__/bundles';
+import bundles from './__fixtures__/bundles/v01';
 import { trustedRoot } from './__fixtures__/trust';
 
 describe('Verifier', () => {

packages/client/src/__tests__/tlog/verify/set.test.ts

@@ -1,4 +1,4 @@
-import type { TransparencyLogEntry } from '@sigstore/bundle';
+import type { TLogEntryWithInclusionProof } from '@sigstore/bundle';
 import { VerificationError } from '../../error';
 import * as sigstore from '../../types/sigstore';
 import { crypto } from '../../util';
@@ -29,40 +29,24 @@ interface TLogSignature {
 //    inclusion proof
 // See: https://github.com/transparency-dev/formats/blob/main/log/README.md
 export function verifyCheckpoint(
-  entry: TransparencyLogEntry,
+  entry: TLogEntryWithInclusionProof,
   tlogs: sigstore.TransparencyLogInstance[]
-) {
-  const inclusionProof = entry.inclusionProof;
-  if (!inclusionProof) {
-    throw new VerificationError('tlog entry has no inclusion proof');
-  }
-
-  const envelope = inclusionProof?.checkpoint?.envelope;
-  if (!envelope) {
-    throw new VerificationError('tlog entry has no checkpoint');
-  }
-
+): boolean {
   // Filter tlog instances to just those which were valid at the time of the
   // entry
   const validTLogs = filterTLogInstances(tlogs, entry.integratedTime);
 
-  const signedNote = SignedNote.fromString(envelope);
+  const inclusionProof = entry.inclusionProof;
+  const signedNote = SignedNote.fromString(inclusionProof.checkpoint.envelope);
   const checkpoint = LogCheckpoint.fromString(signedNote.note);
 
-  // Verify that the signatures in the checkpoint are all valid
-  if (!signedNote.verify(validTLogs)) {
-    throw new VerificationError(
-      'inclusion proof contains invalid checkpoint signature'
-    );
-  }
-
-  // Verify that the root hash from the checkpoint matches the root hash in the
+  // Verify that the signatures in the checkpoint are all valid, also check
+  // that the root hash from the checkpoint matches the root hash in the
   // inclusion proof
-  if (!crypto.bufferEqual(checkpoint.logHash, inclusionProof.rootHash)) {
-    throw new VerificationError(
-      'inclusion proof contains invalid root hash signature'
-    );
-  }
+  return (
+    signedNote.verify(validTLogs) &&
+    crypto.bufferEqual(checkpoint.logHash, inclusionProof.rootHash)
+  );
 }
 
 // SignedNote represents a signed note from a transparency log checkpoint. Consists

packages/client/src/__tests__/types/sigstore/index.test.ts packages/client/src/__tests__/types/sigstore.test.ts

@@ -14,15 +14,22 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 import {
+  BUNDLE_V01_MEDIA_TYPE,
   Bundle,
+  BundleLatest,
+  BundleV01,
   TLogEntryWithInclusionPromise,
-  TransparencyLogEntry,
+  TLogEntryWithInclusionProof,
+  assertBundleLatest,
+  assertBundleV01,
   isBundleWithCertificateChain,
 } from '@sigstore/bundle';
 import { VerificationError } from '../../error';
 import * as sigstore from '../../types/sigstore';
 import { x509Certificate } from '../../x509/cert';
 import { verifyTLogBody } from './body';
+import { verifyCheckpoint } from './checkpoint';
+import { verifyMerkleInclusion } from './merkle';
 import { verifyTLogSET } from './set';
 
 // Verifies that the number of tlog entries that pass offline verification
@@ -31,6 +38,20 @@ export function verifyTLogEntries(
   bundle: Bundle,
   trustedRoot: sigstore.TrustedRoot,
   options: sigstore.ArtifactVerificationOptions_TlogOptions
+): void {
+  if (bundle.mediaType === BUNDLE_V01_MEDIA_TYPE) {
+    assertBundleV01(bundle);
+    verifyTLogEntriesForBundleV01(bundle, trustedRoot, options);
+  } else {
+    assertBundleLatest(bundle);
+    verifyTLogEntriesForBundleLatest(bundle, trustedRoot, options);
+  }
+}
+
+function verifyTLogEntriesForBundleV01(
+  bundle: BundleV01,
+  trustedRoot: sigstore.TrustedRoot,
+  options: sigstore.ArtifactVerificationOptions_TlogOptions
 ): void {
   if (options.performOnlineVerification) {
     throw new VerificationError('Online verification not implemented');
@@ -41,8 +62,8 @@ export function verifyTLogEntries(
 
   // Iterate over the tlog entries and verify each one
   const verifiedEntries = bundle.verificationMaterial.tlogEntries.filter(
-    (entry: TransparencyLogEntry) =>
-      verifyTLogEntryOffline(
+    (entry: TLogEntryWithInclusionPromise) =>
+      verifyTLogEntryWithInclusionPromise(
         entry,
         bundle.content,
         trustedRoot.tlogs,
@@ -55,8 +76,36 @@ export function verifyTLogEntries(
   }
 }
 
-function verifyTLogEntryOffline(
-  entry: TransparencyLogEntry,
+function verifyTLogEntriesForBundleLatest(
+  bundle: BundleLatest,
+  trustedRoot: sigstore.TrustedRoot,
+  options: sigstore.ArtifactVerificationOptions_TlogOptions
+): void {
+  if (options.performOnlineVerification) {
+    throw new VerificationError('Online verification not implemented');
+  }
+
+  // Extract the signing cert, if available
+  const signingCert = signingCertificate(bundle);
+
+  // Iterate over the tlog entries and verify each one
+  const verifiedEntries = bundle.verificationMaterial.tlogEntries.filter(
+    (entry: TLogEntryWithInclusionProof) =>
+      verifyTLogEntryWithInclusionProof(
+        entry,
+        bundle.content,
+        trustedRoot.tlogs,
+        signingCert
+      )
+  );
+
+  if (verifiedEntries.length < options.threshold) {
+    throw new VerificationError('tlog verification failed');
+  }
+}
+
+function verifyTLogEntryWithInclusionPromise(
+  entry: TLogEntryWithInclusionPromise,
   bundleContent: Bundle['content'],
   tlogs: sigstore.TransparencyLogInstance[],
   signingCert?: x509Certificate
@@ -69,16 +118,31 @@ function verifyTLogEntryOffline(
         signingCert.validForDate(new Date(Number(entry.integratedTime) * 1000))
     : () => true;
 
-  // For 0.1 Bundle, the SET is required. If it is missing, the entry is invalid.
-  // Will revisit this when we have a 0.2 Bundle.
-  const verifyTLogSignedEntryTimestamp =
-    isTransparencyLogEntryWithInclusionPromise(entry)
-      ? () => verifyTLogSET(entry, tlogs)
-      : () => false;
+  return (
+    verifyTLogBody(entry, bundleContent) &&
+    verifyTLogSET(entry, tlogs) &&
+    verifyTLogIntegrationTime()
+  );
+}
+
+function verifyTLogEntryWithInclusionProof(
+  entry: TLogEntryWithInclusionProof,
+  bundleContent: Bundle['content'],
+  tlogs: sigstore.TransparencyLogInstance[],
+  signingCert?: x509Certificate
+): boolean {
+  // If there is a signing certificate availble, check that the tlog integrated
+  // time is within the certificate's validity period; otherwise, skip this
+  // check.
+  const verifyTLogIntegrationTime = signingCert
+    ? () =>
+        signingCert.validForDate(new Date(Number(entry.integratedTime) * 1000))
+    : () => true;
 
   return (
     verifyTLogBody(entry, bundleContent) &&
-    verifyTLogSignedEntryTimestamp() &&
+    verifyMerkleInclusion(entry) &&
+    verifyCheckpoint(entry, tlogs) &&
     verifyTLogIntegrationTime()
   );
 }
@@ -92,9 +156,3 @@ function signingCertificate(bundle: Bundle): x509Certificate | undefined {
     bundle.verificationMaterial.content.x509CertificateChain.certificates[0];
   return x509Certificate.parse(signingCert.rawBytes);
 }
-
-function isTransparencyLogEntryWithInclusionPromise(
-  entry: TransparencyLogEntry
-): entry is TLogEntryWithInclusionPromise {
-  return entry.inclusionPromise !== undefined;
-}

packages/client/src/__tests__/verify.test.ts

@@ -16,18 +16,15 @@ limitations under the License.
 import crypto from 'crypto';
 import { VerificationError } from '../../error';
 
-import type { TransparencyLogEntry } from '@sigstore/bundle';
+import type { TLogEntryWithInclusionProof } from '@sigstore/bundle';
 
 const RFC6962_LEAF_HASH_PREFIX = Buffer.from([0x00]);
 const RFC6962_NODE_HASH_PREFIX = Buffer.from([0x01]);
 
-export function verifyMerkleInclusion(entry: TransparencyLogEntry): boolean {
+export function verifyMerkleInclusion(
+  entry: TLogEntryWithInclusionProof
+): boolean {
   const inclusionProof = entry.inclusionProof;
-
-  if (!inclusionProof) {
-    throw new VerificationError('tlog entry has no inclusion proof');
-  }
-
   const logIndex = BigInt(inclusionProof.logIndex);
   const treeSize = BigInt(inclusionProof.treeSize);
 

packages/client/src/tlog/verify/checkpoint.ts

@@ -13,6 +13,7 @@ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 See the License for the specific language governing permissions and
 limitations under the License.
 */
+import { BUNDLE_V01_MEDIA_TYPE } from '@sigstore/bundle';
 import { HashAlgorithm } from '@sigstore/protobuf-specs';
 import { encoding as enc, pem } from '../util';
 import { SignatureMaterial } from './signature';
@@ -56,9 +57,6 @@ export type {
   TrustedRoot,
 } from '@sigstore/protobuf-specs';
 
-const BUNDLE_MEDIA_TYPE =
-  'application/vnd.dev.sigstore.bundle+json;version=0.1';
-
 export type RequiredArtifactVerificationOptions = WithRequired<
   ArtifactVerificationOptions,
   'ctlogOptions' | 'tlogOptions'
@@ -106,7 +104,7 @@ export function toDSSEBundle({
   timestamp?: Buffer;
 }): Bundle {
   return {
-    mediaType: BUNDLE_MEDIA_TYPE,
+    mediaType: BUNDLE_V01_MEDIA_TYPE,
     content: { $case: 'dsseEnvelope', dsseEnvelope: envelope },
     verificationMaterial: toVerificationMaterial({
       signature,
@@ -128,7 +126,7 @@ export function toMessageSignatureBundle({
   timestamp?: Buffer;
 }): Bundle {
   return {
-    mediaType: BUNDLE_MEDIA_TYPE,
+    mediaType: BUNDLE_V01_MEDIA_TYPE,
     content: {
       $case: 'messageSignature',
       messageSignature: {
@@ -148,6 +146,7 @@ export function toMessageSignatureBundle({
 }
 
 function toTransparencyLogEntry(entry: Entry): TransparencyLogEntry {
+  /* istanbul ignore next */
   const b64SET = entry.verification?.signedEntryTimestamp || '';
   const set = Buffer.from(b64SET, 'base64');
   const logID = Buffer.from(entry.logID, 'hex');