5a79e02684
Replace stubbed signed_prekey_signature = [0] ** 64 with real Ed25519 cryptographic signatures. This fixes the security-critical signature validation that was previously bypassed in tests. Changes: - Add signEd25519() helper for deterministic Ed25519 signing - Add verifyEd25519() helper for signature verification - Generate real identity keypair for Bob (Ed25519) - Sign Bob's X25519 signed_prekey with his Ed25519 identity key - Verify signature before using prekey in handshake - Add dedicated test for Ed25519 signature roundtrip Security: Prekey bundles now carry cryptographic proof of authenticity. The signature binds the medium-term signed prekey to the long-term identity key, preventing MITM attacks during key exchange. Fixes P0 security audit issue: Stubbed Signature Validation (closes issue at test_pqxdh.zig:113) |
||
|---|---|---|
| .. | ||
| l0-transport | ||
| l1-identity | ||
| l1-membrane | ||
| l2-federation | ||
| l2-membrane | ||
| l2_session | ||
| LICENSE | ||