Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Witness API makes it hard to comply with C2SP spec #321

Open
AlCutter opened this issue Jan 24, 2025 · 0 comments
Open

Witness API makes it hard to comply with C2SP spec #321

AlCutter opened this issue Jan 24, 2025 · 0 comments
Labels
bug Something isn't working

Comments

@AlCutter
Copy link
Contributor

Description

Since the internal witness API predates the C2SP tlog-tiles spec, there are some slight "impedance mismatches" between them which makes it hard to have the bastion feeder operate within spec in certain situations.

The main case I'm aware of is related to logs sending and oldCP value which does not match the witness' latest cosigned checkpoint for that log, but we also return an incorrect HTTP status code for mismatched roots. The upshot is that logs which are confused cannot use the mechanism described by the spec to recover.

The use of status codes in errors to hint at what the problem is makes it hard to distinguish cases which require different handling according to the spec.
@AlCutter AlCutter added the bug Something isn't working label Jan 24, 2025
@AlCutter AlCutter mentioned this issue Jan 24, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@AlCutter