Json Web Keys again

Angus Robertson - Magenta Systems Ltd angus at magsys.co.uk
Tue Dec 3 16:30:00 UTC 2019

Google has started using RSA-PSS private keys for Json Web Keys.  

I create an RSA JWK using EVP_PKEY_get1_RSA and RSA_get0_key, but this
does not work for RSA-PSS.  EVP_PKEY_print_private does work OK, but
parsing data from the output is messy. 

EVP_PKEY_set_alias_type seemed worth a try, but does not set the

Are there any other workarounds?  Is RSA-PSS fully supported in 3.0?


More information about the openssl-users mailing list