aboutsummaryrefslogtreecommitdiffhomepage
path: root/checker/safe_typing.ml
diff options
context:
space:
mode:
Diffstat (limited to 'checker/safe_typing.ml')
-rw-r--r--checker/safe_typing.ml16
1 files changed, 12 insertions, 4 deletions
diff --git a/checker/safe_typing.ml b/checker/safe_typing.ml
index c6388499a..4bed9796a 100644
--- a/checker/safe_typing.ml
+++ b/checker/safe_typing.ml
@@ -225,21 +225,29 @@ type compiled_library =
(dir_path * Digest.t) list *
engagement option
+(* This function should append a certificate to the .vo file.
+ The digest must be part of the certicate to rule out attackers
+ that could change the .vo file between the time it was read and
+ the time the stamp is written.
+ For the moment, .vo are not signed. *)
+let stamp_library file digest = ()
+
(* When the module is checked, digests do not need to match, but a
warning is issued in case of mismatch *)
-let import (dp,mb,depends,engmt as vo) digest =
-Validate.val_vo (Obj.repr vo);
-prerr_endline "*** vo validated ***";
+let import file (dp,mb,depends,engmt as vo) digest =
+ Validate.val_vo (Obj.repr vo);
+ Flags.if_verbose msgnl (str "*** vo structure validated ***");
let env = !genv in
check_imports msg_warning dp env depends;
check_engagement env engmt;
check_module env mb;
+ stamp_library file digest;
(* We drop proofs once checked *)
(* let mb = lighten_module mb in*)
full_add_module dp mb digest
(* When the module is admitted, digests *must* match *)
-let unsafe_import (dp,mb,depends,engmt) digest =
+let unsafe_import file (dp,mb,depends,engmt) digest =
let env = !genv in
check_imports (errorlabstrm"unsafe_import") dp env depends;
check_engagement env engmt;
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-11 06:33:20 +0000