In 2835ba227d5be98d6d7118883c77e7fe9fdd8299 the default server_ssl_protocols was expanded to include TLS 1.3. This had no affect for users not overriding server_cipher_suites though as no TLS 1.3 cipher suites were included by default.
This commit adds TLS_AES_128_GCM_SHA256 and TLS_AES_256_GCM_SHA384 which are both NIST approved.
In 2835ba227d5be98d6d7118883c77e7fe9fdd8299 the default
server_ssl_protocolswas expanded to include TLS 1.3. This had no affect for users not overridingserver_cipher_suitesthough as no TLS 1.3 cipher suites were included by default.This commit adds
TLS_AES_128_GCM_SHA256andTLS_AES_256_GCM_SHA384which are both NIST approved.