Greetings, I noticed in Tomcat 11.0.18 that the order of ciphers passed to SSLHostconfig#setCiphers is no longer preserved. I'm pretty sure that this was introduced with 11.0.16, where the code in SSLHostConfig#getJsseCipherNames was modified to handle TLS1.2 and 1.3 ciphers. The ciphers of both lists are added to a HashSet, which does not preserve the order.
Best regards, Benny
