Franziskus Kiefer

Document the validation steps required by an application using OpenMLS in order to implement MLS safely.

This issue collects missing test cases - [ ] `self_update` (with and without key pair) but don't merge the commit - [ ] test for unsupported extensions and proposal (see...

OpenMLS currently only supports * MLS_128_DHKEMX25519_AES128GCM_SHA256_Ed25519 * MLS_128_DHKEMP256_AES128GCM_SHA256_P256 * MLS_128_DHKEMX25519_CHACHA20POLY1305_SHA256_Ed25519 Support for the other specified ciphersuites should be added at least in one provider * MLS_256_DHKEMX448_AES256GCM_SHA512_Ed448 * MLS_256_DHKEMP521_AES256GCM_SHA512_P521 * MLS_256_DHKEMX448_CHACHA20POLY1305_SHA512_Ed448...

Implement Sec [12.2 Reinitialization](https://messaginglayersecurity.rocks/mls-protocol/draft-ietf-mls-protocol.html#name-reinitialization). - [ ] #944 - [x] #753 - [x] #921 - [ ] #151

Would it make sense to elevate `HpkePublicKey` into a struct and make this part of the implementation? The same goes for the decryption function below. _Originally posted by @kkohbrok in...

This might be a bit overkill, but can't wouldn't it be nicer to introduce an enum (e.g. `LeafOrEncryptionKey` here that is either a leaf node or an encryption key and...

Followup to #422 Mechanisms similar to #422 that enforce signature and MAC verification through the type system should be used for (at least) the following - [ ] membership tags...

A lot of tests check for errors that are returned from functions. But with adding more and more asserts in the code (which is good), this doesn't work anymore. Tests...

implement contract

1

The `contract` speclib ins't actually checking the contract yet.