Shortened EdDSA Ed25519 signatures handled wrongly #4554
Description
In sign_verify/eddsa.js, the test "shortens" a signature by slicing off its first byte. Our implementation handles this differently than specified.
What is expected:
subtle.importKeyshould succeed- verification should not throw error
subtle.verifyshould return false