Even though we can't e2e encrypt state events, should we sign them?

[ara4n]

To prevent server admins spoofing them in e2e rooms

[Lapin0t]

The idea could be extended so that the e2e spec has a "sign-only" mode in which a every event just has a signature field which is simply a detached signature of the event using plain ed25519. Note that to keep forward-secrecy and other olm features, one could use the same double-ratchet as olm/megolm but it would be a bit more complicated. Also notice that this is something that the first solution is something that application can easily do on top of matrix on their own but the second (olm-based) solution would more likely be at the right place if it's included in the e2e spec.