Are you using RSA-PSS or RSASSA-PSS?

[danvangeest]

RSA-PSS and RSASSA-PSS are different things, and since RFC8017 specifies RSASSA-PSS that is probably what you mean. But you use "RSA-PSS" throughout so that should probably be changed.

Also you use "RSASA-PSS" throughout, which should be "RSASSA-PSS"

Probably related to #82

[PiotrPopis]

In my opinion, it is not true that "RSA-PSS and RSASSA-PSS are different things".
The Probabilistic Signature Scheme (PSS) was introduced by RFC 3447, which was later replaced by RFC 8017. In both of these documents, one can find information that the wording "RSASSA-PSS" and "RSA-PSS" is used to indicate the same scheme - see section 9.1 and the last sentence in point 4: "See also (...), which adapts the security proofs in (...) to address the differences between the original and the present version of RSA-PSS as listed in Note 1 above.".
In other PKI standards, one can also find equivalence between "RSASSA-PSS" and "RSA-PSS" - e.g. the ETSI TS 119 312 technical specification (last version December 2024), commonly known as the "ALGO paper" in section 6.2.1 in Table 2 indicates that the short name of the signature scheme "RSA-PSS" refers to RFC 8017.

I am not aware of any OID that would indicate the "original version of the RSA-PSS scheme", which is probably the document "PSS: Provably Secure Encoding Method for Digital Signatures"; Mihir Bellare, Phillip Rogaway. The global OID repository only registers identifiers for the RSASSA-PSS schemes, which confirms the thesis that the "RSA-PSS" scheme, other than "RSASSA-PSS", is not implemented at all.

However, I agree with the second comment that instead of "RSASA-PSS" it should be "RSASSA-PSS".