Signer ignores PSS

[avivklas]

On both windows and darwin, using the Signer of an Identity object as a private key of a TLS certificate doesn't work against a server that requires TLS v1.3.
In this case, a GO TLS server, for example, returns an "error decrypting message" error due to missing 0xbc at the end of the signature during the handshake. The reason for this is not using the padding scheme when signing the digest.

[avivklas]

I already have a working fix and I'm about to issue a PR soon

[tg123]

link github/certstore#20, I fixed PSS when remove cgo as well

[StevenACoffman]

This issue was originally fixed in github/certstore#18 and lingered unreviewed, but much desired for years.

Fixed by #93 and if you are looking for someone who appears to be maintaining this, try the https://github.com/tailscale/certstore fork.