RFR: 8371688: Unexpected behavior for jdk.tls.client.cipherSuites and jdk.tls.server.cipherSuites system properties [v3]
Sean Mullan
mullan at openjdk.org
Mon Dec 1 15:16:52 UTC 2025
On Wed, 26 Nov 2025 21:57:24 GMT, Artur Barashev <abarashev at openjdk.org> wrote:
>> The jdk.tls.client.cipherSuites and jdk.tls.server.cipherSuites system properties allow a custom set of cipher suites to be used for the default JDK SSLContext. If such properties specify cipher suites not supported by the JDK, then the JDK falls back to using the default cipher suite list (as if no property was specified). This seems like unexpected behavior.
>
> Artur Barashev has updated the pull request incrementally with one additional commit since the last revision:
>
> Correct test description
src/java.base/share/classes/sun/security/ssl/SSLContextImpl.java line 448:
> 446:
> 447: if (cipherSuites.isEmpty()) {
> 448: throw new IllegalArgumentException("System property "
How does this exception propagate to the caller? Can you show the stack trace?
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/28499#discussion_r2577500084
More information about the security-dev
mailing list