Cardano Updates

On aarch64-darwin (Apple Silicon), all executables must have valid code
signatures. The set-git-rev tool binary-patches executables to embed the
git revision, invalidating the linker's ad-hoc code signature.

Add darwin.signingUtils to nativeBuildInputs and call signIfRequired on
each executable after patching, matching cardano-node's
nix/set-git-rev.nix pattern.

Apply these to Redeemers.

Verify that the decoder rejects big integers (CBOR tags 2/3) outside
the valid CBOR int range of -2^64 .. 2^64-1, and accepts values at
the boundaries. Also fix an off-by-one in the comment documenting
the supported range.

Co-authored-by: teodanciu <[email protected]>

Co-authored-by: sg-doc-holiday[bot] <219201796+sg-doc-holiday[bot]@users.noreply.github.com>

Generate valid invalid_transactions indices that are within the tx
count range. Uses AntiGen to produce out-of-range indices when zapping
for anti-CBOR tests.

Derive DecCBOR (Annotator (DijkstraBlockBody era)) via
Mem (DijkstraBlockBodyRaw era) to preserve original bytes in
MemoBytes, matching the pattern used by AlonzoTxWits and other
memoized types. This fixes the hash mismatch between the Annotator
and non-Annotator decoders.

Empty bootstrap witnesses list is accepted by the decoder but
rejected by CDDL validation (nonempty_set).

- Fix PerasCert to encode/decode as bytes (matching CDDL nil / VBytes)
- Use encodeNullStrictMaybe/decodeNullStrictMaybe for optional peras_certificate
- Handle both definite and indefinite length lists in BlockBody decoder
- Add index range validation in BlockBody decoder (matching Alonzo)
- Add DecCBOR instances for DijkstraBlockBodyRaw and DijkstraBlockBody in testlib
- Add NFData and EncCBOR deriving for DijkstraBlockBody newtype
- Export DijkstraBlockBodyRaw and MkDijkstraBlockBody from Internal module
- xdescribe block_body CDDL round-trip tests (invalid_transactions indices)