The newly added stunnel might not work as intended.
I'm not sure the outputs reflect chosen configuration. For the default render (intermediate, latestVersion) I seem to be getting modern no matter what config I select — unless I manually downgrade the server version below tls13 when TLSv1.2-related output starts appearing reflecting parts of the chosen configuration level.
Is that as intended? It seems to hard-code the most restrictive flags based on the serverVersion and opensslVersion available, not taking the flexibility of the configs into account.
The newly added stunnel might not work as intended.
Not sure if bug or feature TBH.