On Mon, 29 Jun 2026 13:50:29 GMT, Andreas Chmielewski 
<[email protected]> wrote:

>> These mappings were previously missing, causing
>> jdk.tls.disabledAlgorithms constraints using component names (e.g.
>>         "AES_128_GCM", "AES_256_GCM", "CHACHA20_POLY1305") to not
>> consistently match the corresponding TLS cipher suites.
>> 
>> 
>> 
>> 
>> ---------
>> - [ x] I confirm that I make this contribution in accordance with the 
>> [OpenJDK Interim AI Policy](https://openjdk.org/legal/ai).
>> 
>> ---------
>> - [x] I confirm that I make this contribution in accordance with the 
>> [OpenJDK Interim AI Policy](https://openjdk.org/legal/ai).
>
> Andreas Chmielewski has updated the pull request incrementally with one 
> additional commit since the last revision:
> 
>   Review Comments

test/jdk/javax/net/ssl/ciphersuites/BulkCipherDisabledAlgorithms.java line 77:

> 75:     private static List<String[]> buildTests() throws 
> NoSuchAlgorithmException {
> 76:         List<String[]> tests = new ArrayList<>();
> 77:         CipherSuite[] suites = getCipherSuites(false);

We are getting cipher suites here with the default `jdk.tls.disabledAlgorithms` 
security property set. We need to clear it (first line in `main`) to cover all 
possible cipher suites.

-------------

PR Review Comment: https://git.openjdk.org/jdk/pull/31633#discussion_r3492787171

Reply via email to