On Tue, 23 Jun 2026 12:44:57 GMT, Andreas Chmielewski <[email protected]> wrote:
> These mappings were previously missing, causing > jdk.tls.disabledAlgorithms constraints using component names (e.g. > "AES_128_GCM", "AES_256_GCM", "CHACHA20_POLY1305") to not > consistently match the corresponding TLS cipher suites. > > > > > --------- > - [ x] I confirm that I make this contribution in accordance with the > [OpenJDK Interim AI Policy](https://openjdk.org/legal/ai). > > --------- > - [x] I confirm that I make this contribution in accordance with the [OpenJDK > Interim AI Policy](https://openjdk.org/legal/ai). test/jdk/sun/security/ssl/CipherSuite/TLS13DisableCipherSuite.java line 38: > 36: import java.util.List; > 37: > 38: public class TLS13DisableCipherSuite extends AbstractDisableCipherSuites { This test actually runs on TLSv1.2 by default. Please override `getProtocol()` method of the base class to make it run on TLSv1.3 so we test disabling TLSv1.3-specific cipher suites correctly. test/jdk/sun/security/ssl/CipherSuite/TLS13DisabledAlgorithm.java line 33: > 31: > 32: import java.net.InetAddress; > 33: import java.security.Security; Unused import ------------- PR Review Comment: https://git.openjdk.org/jdk/pull/31633#discussion_r3474853986 PR Review Comment: https://git.openjdk.org/jdk/pull/31633#discussion_r3474871181
