What steps will reproduce the problem?
1. mod_tls_policy with eg FS-policy
2. Establish TLS 1.3 connection anywhere
3. Observe logs
What is the expected output?
None, should pass.
What do you see instead?
Server-to-server connection failed: policy-violation (TLS cipher 'TLS_AES_256_GCM_SHA384' not acceptable)
Please provide any additional information below.
All TLS 1.3 ciphers use a completely different form of the name, making pattern matching an unworkable strategy for policy enforcement.