Skip to content
This repository has been archived by the owner on Oct 11, 2024. It is now read-only.

Implement fetching and verifying SEHs from CT #199

Merged
merged 2 commits into from
Jun 16, 2016
Merged

Implement fetching and verifying SEHs from CT #199

merged 2 commits into from
Jun 16, 2016

Conversation

gdbelvin
Copy link
Contributor

Full inclusion proof verification depends on
google/certificate-transparency#1159

- Update appender to save SignedCertificateTimestamps to facilitate hash
  computation
- Create CT helper utility for testing
- Update client to fetch inclusion proof via GetProofByHash
  Depends on google/certificate-transparency#1249

Full inclusion proof verification depends on
google/certificate-transparency#1159
@gdbelvin gdbelvin added this to the Version 1 milestone Jun 15, 2016
@@ -24,8 +24,10 @@ type Appender interface {
Append(ctx context.Context, epoch int64, data []byte) error

// Epoch retrieves a specific object.
Epoch(ctx context.Context, epoch int64) ([]byte, error)
// Returns data and a serialized ct.SignedCertificateTimestamp
Epoch(ctx context.Context, epoch int64) ([]byte, []byte, error)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's your choice but returning multiple byte arrays is going to be a confusing API when you read it again in 3 months.

@Martin2112
Copy link
Contributor

I've done a pass over it. Looks basically OK, with some suggestions.

@gdbelvin gdbelvin merged commit 2805faf into google:master Jun 16, 2016
@gdbelvin gdbelvin deleted the fetch-by-hash branch June 16, 2016 16:44
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants