diff options
Diffstat (limited to 'doc/todo/verify_hash_chain_in_loadLog.mdwna')
| -rw-r--r-- | doc/todo/verify_hash_chain_in_loadLog.mdwna | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/doc/todo/verify_hash_chain_in_loadLog.mdwna b/doc/todo/verify_hash_chain_in_loadLog.mdwna new file mode 100644 index 0000000..92f9741 --- /dev/null +++ b/doc/todo/verify_hash_chain_in_loadLog.mdwna @@ -0,0 +1,8 @@ +loadLog should verify the hashes (and signatures) in the log, and +refuse to use logs that are not valid proofs of a session. + +(--replay and --graphvis need this; server's use of loadLog does not) + +Everything else in debug-me checks a session's proof as it goes. +And, everything that saves a log file checks the proof as it goes, +so perhaps this is not actually necessary? |