From 35e3fdcee8d3660998cb8a7a6959e0a56255f425 Mon Sep 17 00:00:00 2001 From: Rasmus Dahlberg Date: Tue, 28 Sep 2021 22:47:28 +0200 Subject: removed unused Trunnel structure --- doc/api.md | 18 +++++------------- 1 file changed, 5 insertions(+), 13 deletions(-) (limited to 'doc/api.md') diff --git a/doc/api.md b/doc/api.md index 3f3db55..9d41d2c 100644 --- a/doc/api.md +++ b/doc/api.md @@ -93,21 +93,13 @@ an [attack](https://git.sigsum.org/sigsum/tree/archive/2021-08-10-witnessing-bro in multi-log ecosystems. #### 2.3.2 - (Co)signed tree head -A signed tree head contains a tree head and a signature. -``` -struct signed_tree_head { - struct tree_head tree_head; - u8 signature[64]; -}; -``` - -`tree_head` describes a log's state, see Section 2.3.1. +A signed tree head is composed of a tree head and a signature. This structure +does not have a Trunnel definition because it is neither signed nor logged. -`signature` is a log's signature over `tree_head`. +Logs and witnesses sign the same `tree_head` structure, see Section 2.3.1. -A witness cosigns the same serialized _tree head_. Note that tree heads are -scoped to a specific log to ensure that a witness signature for log X cannot be -confused with a witness signature for log Y. +Note that tree heads are scoped to a specific log to ensure that a witness +signature for log X cannot be confused with a witness signature for log Y. A witness must not cosign a tree head if it is inconsistent with prior history or if the timestamp is backdated more than 5 minutes. A witness can be viewed -- cgit v1.2.3