crypto/tls: re-enable RSA-PSS in TLS 1.2 again

TLS 1.3, which requires RSA-PSS, is now enabled without a GODEBUG opt-out, and with the introduction of Certificate.SupportedSignatureAlgorithms (#28660) there is a programmatic way to avoid RSA-PSS (disable TLS 1.3 with MaxVersion and use that field to specify only PKCS#1 v1.5 SignatureSchemes). This effectively reverts 0b3a57b5374bba3fdf88258e2be4c8be65e6a5de, although following CL 205061 all of the signing-side logic is conveniently centralized in signatureSchemesForCertificate. Fixes #32425 Change-Id: I7c9a8893bb5d518d86eae7db82612b9b2cd257d7 Reviewed-on: https://go-review.googlesource.com/c/go/+/205063 Run-TryBot: Filippo Valsorda <filippo@golang.org> TryBot-Result: Gobot Gobot <gobot@golang.org> Reviewed-by: Katie Hockman <katie@golang.org> Reviewed-by: Adam Langley <agl@golang.org>
2025-04-03 20:17:36 +03:00 · 2019-11-03 21:28:47 -05:00 · 2019-11-03 21:28:47 -05:00 · 6bb85fe4e7
commit 6bb85fe4e7
parent 555e9b864b
28 changed files with 1264 additions and 1244 deletions
--- a/tls_test.go
+++ b/tls_test.go
@ -1236,8 +1236,7 @@ func TestPKCS1OnlyCert(t *testing.T) {

 	// If RSA-PSS is selected, the handshake should fail.
 	if _, _, err := testHandshake(t, clientConfig, serverConfig); err == nil {
-		// RSA-PSS is temporarily disabled in TLS 1.2. See Issue 32425.
-		// t.Fatal("expected broken certificate to cause connection to fail")
+		t.Fatal("expected broken certificate to cause connection to fail")
 	}

 	clientConfig.Certificates[0].SupportedSignatureAlgorithms =