RFR: 8349910: Implement JEP 517: HTTP/3 for the HTTP Client API [v8]

Daniel Fuchs dfuchs at openjdk.org
Thu Jun 26 14:17:45 UTC 2025


On Thu, 26 Jun 2025 13:22:28 GMT, Jaikiran Pai <jpai at openjdk.org> wrote:

>> src/java.base/share/classes/sun/security/ssl/X509Authentication.java line 226:
>> 
>>> 224:                     chc.peerSupportedAuthorities == null ? null :
>>> 225:                             chc.peerSupportedAuthorities.clone(),
>>> 226:                     chc.algorithmConstraints);
>> 
>> These `algorithmConstraints` won't include `peerSupportedSignAlgs`.
>
> @dfuch this too can be marked as resolved. The updated code in this PR now calls `X509KeyManagerImpl.chooseClientAlias(String[] keyTypes, Principal[] issuers, QuicTLSEngineImpl quicTLSEngine)` which internally picks up the `peerSupportedSignAlgs` from the handshake session.

Thanks. done.

-------------

PR Review Comment: https://git.openjdk.org/jdk/pull/24751#discussion_r2169182330


More information about the net-dev mailing list