RFR: 8387124: Incomplete algorithm decomposition for TLS 1.3 cipher suites in SSLAlgorithmDecomposer

Andreas Chmielewski Thu, 25 Jun 2026 03:53:04 -0700

These mappings were previously missing, causing
jdk.tls.disabledAlgorithms constraints using component names (e.g.
        "AES_128_GCM", "AES_256_GCM", "CHACHA20_POLY1305") to not
consistently match the corresponding TLS cipher suites.





---------
- [ x] I confirm that I make this contribution in accordance with the [OpenJDK 
Interim AI Policy](https://openjdk.org/legal/ai).

---------
- [x] I confirm that I make this contribution in accordance with the [OpenJDK 
Interim AI Policy](https://openjdk.org/legal/ai).

-------------

Commit messages:
 - 8387124: Fixed algorithm decomposition for TLS 1.3 cipher suites

Changes: https://git.openjdk.org/jdk/pull/31633/files
  Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=31633&range=00
  Issue: https://bugs.openjdk.org/browse/JDK-8387124
  Stats: 357 lines in 3 files changed: 357 ins; 0 del; 0 mod
  Patch: https://git.openjdk.org/jdk/pull/31633.diff
  Fetch: git fetch https://git.openjdk.org/jdk.git pull/31633/head:pull/31633

PR: https://git.openjdk.org/jdk/pull/31633

RFR: 8387124: Incomplete algorithm decomposition for TLS 1.3 cipher suites in SSLAlgorithmDecomposer

Reply via email to