When creating a public.toml, sign every public key with itself, so that we can prove that the node knows the corresponding private key.
@jeffallen @LefKok - is this enough to avoid an attack where somebody creates an invalid key to remove somebody from the roster, like described in #652 ?
When creating a public.toml, sign every public key with itself, so that we can prove that the node knows the corresponding private key.
@jeffallen @LefKok - is this enough to avoid an attack where somebody creates an invalid key to remove somebody from the roster, like described in #652 ?