F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

rnavarro's avatar
rnavarro
Icon for Nimbostratus rankNimbostratus
Jun 18, 2025

irule that presents certificate doesn´ t run in TLSv1.3

  Hi, since last update google chrome and MD edge (chromium based), clients start tunel https with TLSv1.3, and I have a irule that presents and accepts a certificate, with TLSv1.2 runs Ok, but with...
handshake failed
irule
VishnuGatla's avatar
VishnuGatla
Icon for Cumulonimbus rankCumulonimbus
Jun 18, 2025

Hi rnavarro​ 

TLS 1.3 has removed support for renegotiation. The SSL::renegotiate iRule command, which is used to request a client certificate after the initial handshake (for example, based on a specific URI), is not supported in TLS 1.3. When a client connects using TLS 1.3 and your iRule tries to invoke SSL::renegotiate, the connection will fail—typically with a handshake error or silent failure. This is exactly what you are seeing with recent versions of Chrome and Edge, which now default to TLS 1.3 and support post-quantum key exchange (ML-KEM/Kyber) ciphers.

References:

If you require on-demand client certificate authentication (i.e., requesting a certificate after the handshake based on URI or other conditions), you must disable TLS 1.3 in your Client SSL profile. This will force clients to use TLS 1.2, where renegotiation is still supported.

Rewrite the iRule to Avoid Renegotiation for TLS 1.3 Connections

when HTTP_REQUEST {

  if { [SSL::cipher version] == "TLSv1.2" } {

    # Safe to use SSL::renegotiate

    SSL::cert mode request

    SSL::renegotiate

  } else {

    # TLS 1.3 or higher: do not attempt renegotiation

    # Optionally, log or handle differently

  }

}