crypto/rsa: refuse to generate and/or use keys smaller than 1024 bits

Fixes #68762 Change-Id: Id89c770571d7cc27c6cf7932139ec3424383a7ef Reviewed-on: https://go-review.googlesource.com/c/go/+/629938 Reviewed-by: Roland Shoemaker <roland@golang.org> Auto-Submit: Filippo Valsorda <filippo@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
author: Filippo Valsorda <filippo@golang.org> 2024-11-20 13:59:09 +0100
committer: Gopher Robot <gobot@golang.org> 2024-11-22 01:50:32 +0000
commit: 10fb001c7519f2a694e987ecb1e75da80f832b41 (patch)
tree: 60af0ba4d603aab5f56652cd166fb1f8fe3f752e /doc/godebug.md
parent: ca14eaf77c86bd5492329d2be6f1a82afe7802f5 (diff)
download: go-10fb001c7519f2a694e987ecb1e75da80f832b41.tar.xz
1 files changed, 4 insertions, 0 deletions
diff --git a/doc/godebug.md b/doc/godebug.md
index 0418482746..c088e7bccf 100644
--- a/doc/godebug.md
+++ b/doc/godebug.md
@@ -177,6 +177,10 @@ This behavior can be controlled with the `gotestjsonbuildtext` setting.
 Using `gotestjsonbuildtext=1` restores the 1.23 behavior.
 This setting will be removed in a future release, Go 1.28 at the earliest.
 
+Go 1.24 changed [`crypto/rsa`](/pkg/crypto/rsa) to require RSA keys to be at
+least 1024 bits. This behavior can be controlled with the `rsa1024min` setting.
+Using `rsa1024min=0` restores the Go 1.23 behavior.
+
 Go 1.24 introduced a mechanism for enabling platform specific Data Independent
 Timing (DIT) modes in the [`crypto/subtle`](/pkg/crypto/subtle) package. This
 mode can be enabled for an entire program with the `dataindependenttiming` setting.
author	Filippo Valsorda <filippo@golang.org>	2024-11-20 13:59:09 +0100
committer	Gopher Robot <gobot@golang.org>	2024-11-22 01:50:32 +0000
commit	10fb001c7519f2a694e987ecb1e75da80f832b41 (patch)
tree	60af0ba4d603aab5f56652cd166fb1f8fe3f752e /doc/godebug.md
parent	ca14eaf77c86bd5492329d2be6f1a82afe7802f5 (diff)
download	go-10fb001c7519f2a694e987ecb1e75da80f832b41.tar.xz