Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8284694

Avoid evaluating SSLAlgorithmConstraints twice

    XMLWordPrintable

Details

    Backports

      Description

        Algorithm constraints from HandshakeContext#algorithmConstraints are heavily used during TLS handshake.
        The field contains an instance of SSLAlgorithmConstraints that wraps sslconfig.userAlgorithmConstraints, which by default is another instance of SSLAlgorithmConstraints.

        Both instances perform the same checks, namely, they verify if algorithms meet the constraints listed in jdk.tls.disabledAlgorithms and jdk.certpath.disabledAlgorithms. In effect every check is performed twice.

        Removing the duplicate checks should improve handshake performance.

        Attachments

          Issue Links

            backported by

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8286741 Avoid evaluating SSLAlgorithmConstraints twice

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8287238 Avoid evaluating SSLAlgorithmConstraints twice

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8287863 Avoid evaluating SSLAlgorithmConstraints twice

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8288202 Avoid evaluating SSLAlgorithmConstraints twice

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8289458 Avoid evaluating SSLAlgorithmConstraints twice

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8289593 Avoid evaluating SSLAlgorithmConstraints twice

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8288842 Avoid evaluating SSLAlgorithmConstraints twice

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Closed

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8289589 Avoid evaluating SSLAlgorithmConstraints twice

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Closed
            relates to

            Bug - A problem which impairs or prevents the functions of the product. JDK-8275257 Performance degradation observed during ssl handshake

            • P3 - Major loss of function.
            • Closed
            links to

            Commit Commit openjdk/jdk11u-dev/eb8789b5

            Commit Commit openjdk/jdk17u-dev/66cdd6eb

            Commit Commit openjdk/jdk/d8446b4f

            Review Review openjdk/jdk11u-dev/1180

            Review Review openjdk/jdk17u-dev/446

            Review Review openjdk/jdk/8199

            Activity

              People

                djelinski Daniel Jelinski
                djelinski Daniel Jelinski
                Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved: