JDK-8235874 : The ordering of Cipher Suites is not maintained provided through ���jdk.tls.client.cipherSuites��� and ���jdk.tls.server.cipherSuites��� system property.
  • Type: Bug
  • Component: security-libs
  • Sub-Component: javax.net.ssl
  • Affected Version: 11,14
  • Priority: P3
  • Status: Resolved
  • Resolution: Fixed
  • Submitted: 2019-12-13
  • Updated: 2021-07-16
  • Resolved: 2019-12-16
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 11 JDK 13 JDK 14 JDK 15 JDK 7 JDK 8 Other
11.0.8-oracleFixed 13.0.4Fixed 14 b28Fixed 15Fixed 7u301Fixed 8u261Fixed openjdk8u292Fixed
Related Reports
Relates :  
Relates :  
The order of Cipher Suites, if mentioned through the system properties ���jdk.tls.client.cipherSuites��� and ���jdk.tls.server.cipherSuites��� need to be maintained by provided order.

Fix request (8u) I'd like to have this fix in 8u, as this release is currently affected by this bug. Having this fix will also contribute to parity between JDKs. Risk is low. A backport proposal has been review-approved here: https://mail.openjdk.java.net/pipermail/jdk8u-dev/2021-January/013361.html

8u RFR: https://mail.openjdk.java.net/pipermail/jdk8u-dev/2021-January/013360.html

Fix request (13u) Requesting backport to 13u for parity with 11u, applies cleanly after 8234728

Fix request (11u) -- will label after testing completed. I would like to downport this for parity with 11.0.8-oracle. I had to resolve this: http://mail.openjdk.java.net/pipermail/jdk-updates-dev/2020-April/002950.html

URL: https://hg.openjdk.java.net/jdk/jdk14/rev/d821eb811ca8 User: ssahoo Date: 2019-12-16 08:24:46 +0000