What steps will reproduce the problem?
1. mod_tls_policy with eg FS-policy
2. Establish TLS 1.3 connection anywhere
3. Observe logs
What is the expected output?
None, should pass.
What do you see instead?
Server-to-server connection failed: policy-violation (TLS cipher 'TLS_AES_256_GCM_SHA384' not acceptable)
Please provide any additional information below.
All TLS 1.3 ciphers use a completely different form of the name, making pattern matching an unworkable strategy for policy enforcement.
What steps will reproduce the problem? 1. mod_tls_policy with eg FS-policy 2. Establish TLS 1.3 connection anywhere 3. Observe logs What is the expected output? None, should pass. What do you see instead? Server-to-server connection failed: policy-violation (TLS cipher 'TLS_AES_256_GCM_SHA384' not acceptable) Please provide any additional information below. All TLS 1.3 ciphers use a completely different form of the name, making pattern matching an unworkable strategy for policy enforcement.