MetamorphicLog.Checkpoint (metamorphic_log v0.1.0)

Copy Markdown View Source

Transparency-log checkpoints (signed tree heads), in the C2SP tlog-checkpoint format carried inside a MetamorphicLog.Note.

A checkpoint commits to a log's origin, size, and Merkle root. Verifying one against trusted keys, then checking inclusion/consistency proofs against that verified checkpoint, is the core monitor/auditor workflow.

Summary

Types

t()

A parsed/verified checkpoint. root is base64-encoded.

Functions

parse(body_text)

Parse an unverified checkpoint body (no signature check).

verify(note_text, trusted_vkeys)

Verify a signed-note note_text against trusted_vkeys and return the enclosed checkpoint.

verify_consistency(older_note, newer_note, trusted_vkeys, proof_b64)

Verify both older_note and newer_note against trusted_vkeys, then verify that the newer checkpoint is a consistent extension of the older one.

verify_inclusion(note_text, trusted_vkeys, leaf_index, leaf_hash_b64, proof_b64)

Verify note_text against trusted_vkeys, then verify that leaf_hash is included at leaf_index under that checkpoint's root.

Types

t()

@type t() :: %MetamorphicLog.Checkpoint{
  extensions: [String.t()],
  origin: String.t(),
  root: String.t(),
  size: non_neg_integer()
}

A parsed/verified checkpoint. root is base64-encoded.

Functions

parse(body_text)

@spec parse(body_text :: String.t()) :: {:ok, t()} | {:error, String.t()}

Parse an unverified checkpoint body (no signature check).

Use this only when the signature has already been established out of band; otherwise prefer verify/2. Returns {:ok, %Checkpoint{}} or {:error, reason}.

verify(note_text, trusted_vkeys)

@spec verify(note_text :: String.t(), trusted_vkeys :: [String.t()]) ::
  {:ok, t()} | {:error, String.t()}

Verify a signed-note note_text against trusted_vkeys and return the enclosed checkpoint.

Returns {:ok, %Checkpoint{}} or {:error, reason}.

Example

{:ok, %MetamorphicLog.Checkpoint{size: size, root: root}} =
  MetamorphicLog.Checkpoint.verify(note_text, [vkey])

verify_consistency(older_note, newer_note, trusted_vkeys, proof_b64)

@spec verify_consistency(
  older_note :: String.t(),
  newer_note :: String.t(),
  trusted_vkeys :: [String.t()],
  proof_b64 :: [String.t()]
) :: :ok | {:error, String.t()}

Verify both older_note and newer_note against trusted_vkeys, then verify that the newer checkpoint is a consistent extension of the older one.

proof is a list of base64-encoded hashes. Returns :ok or {:error, reason}.

verify_inclusion(note_text, trusted_vkeys, leaf_index, leaf_hash_b64, proof_b64)

@spec verify_inclusion(
  note_text :: String.t(),
  trusted_vkeys :: [String.t()],
  leaf_index :: non_neg_integer(),
  leaf_hash_b64 :: String.t(),
  proof_b64 :: [String.t()]
) :: :ok | {:error, String.t()}

Verify note_text against trusted_vkeys, then verify that leaf_hash is included at leaf_index under that checkpoint's root.

proof is a list of base64-encoded sibling hashes. Returns :ok or {:error, reason}.