TLS 1.3 requires the use of RSA PSS for client authentication. Firefox uses CKM_RSA_PKCS_PSS, while the module provides for CKM_SHA1_RSA_PKCS_PSS and CKM_SHA256_RSA_PKCS_PSS as well as two proprietary modes CKM_SC_HSM_PSS_SHA1 and CKM_SC_HSM_PSS_SHA256.
The missing CKM_RSA_PKCS_PSS maps to CKM_SC_HSM_PSS_SHA1 and CKM_SC_HSM_PSS_SHA256 depending on the hash length passed in as parameter to the function.
TLS 1.3 requires the use of RSA PSS for client authentication. Firefox uses CKM_RSA_PKCS_PSS, while the module provides for CKM_SHA1_RSA_PKCS_PSS and CKM_SHA256_RSA_PKCS_PSS as well as two proprietary modes CKM_SC_HSM_PSS_SHA1 and CKM_SC_HSM_PSS_SHA256.
The missing CKM_RSA_PKCS_PSS maps to CKM_SC_HSM_PSS_SHA1 and CKM_SC_HSM_PSS_SHA256 depending on the hash length passed in as parameter to the function.