The SRU team discussed this last week and we agreed that enabling TLS 1.3 is appropriate.
> [Test Case]
> * run "haproxy -vv" and check the reported TLS versions to include 1.3
I think we should additionally check during SRU verification that TLS functionality is working correctly, both with an existing protocol and also with 1.3, as we know we're perturbing it.
The SRU team discussed this last week and we agreed that enabling TLS 1.3 is appropriate.
> [Test Case]
> * run "haproxy -vv" and check the reported TLS versions to include 1.3
I think we should additionally check during SRU verification that TLS functionality is working correctly, both with an existing protocol and also with 1.3, as we know we're perturbing it.