Expand description
Local exochain manager for kernel event logging.
Provides an append-only event chain with SHAKE-256 hash linking
(via weftos_rvf_crypto). Each event references the hash of the
previous event and a content hash of its payload, forming
an immutable, tamper-evident audit trail suitable for cross-service
and cross-node verification.
§Hash scheme
Every event carries three hashes:
prev_hash— SHAKE-256 of the preceding event (chain link)payload_hash— SHAKE-256 of the canonical JSON payload bytes (content commitment; zeroed when payload isNone)hash— SHAKE-256 of(sequence ‖ chain_id ‖ prev_hash ‖ source ‖ 0x00 ‖ kind ‖ 0x00 ‖ timestamp ‖ payload_hash)
Together these enable two-way verification: given an event you can verify the chain link backward and the payload content independently.
§K0 Scope
Local chain only: genesis, append, checkpoint.
§K1+ Scope (not implemented)
Global root chain, BridgeEvent anchoring, ruvector-raft consensus.
Structs§
- Anchor
Receipt - Receipt returned by a successful
ChainAnchor::anchorcall. - Chain
Checkpoint - A checkpoint snapshot of the chain state.
- Chain
Event - A chain event – one entry in the append-only log.
- Chain
Manager - Thread-safe chain manager.
- Chain
Status - Chain status summary.
- Chain
Verify Result - Result of chain integrity verification.
- Dual
Signature - A dual signature (Ed25519 + optional ML-DSA-65).
- Dual
Signing Config - Configuration for dual Ed25519 + ML-DSA-65 signing.
- Governance
Decision Event - A governance decision event suitable for chain logging.
- IpcDead
Letter Event - An IPC dead-letter event suitable for chain logging.
- Mock
Anchor - A mock anchor that always succeeds (for testing).
- Restart
Event - A restart event suitable for chain logging.
Constants§
- EVENT_
KIND_ API_ CONTRACT_ REGISTERED - API contract registration event (k2:D8).
- EVENT_
KIND_ CAPABILITY_ REVOKED - Capability revocation event (k3:D8 — informational revocation).
- EVENT_
KIND_ SANDBOX_ SUDO_ OVERRIDE - Sandbox sudo override event (k3:D12).
- EVENT_
KIND_ SHELL_ EXEC - Shell command execution event (k3:D10).
- EVENT_
KIND_ TOOL_ DEPLOYED - Tool version deployment event.
- EVENT_
KIND_ TOOL_ SIGNED - Tool signed event (k3:D9).
- EVENT_
KIND_ TOOL_ VERSION_ REVOKED - Tool version revocation event.
Traits§
- Chain
Anchor - Trait for anchoring chain state to an external ledger or store.
- Chain
Loggable - Trait for types that can be logged to the ExoChain audit trail.