RFR: 8349910: Implement JEP 517: HTTP/3 for the HTTP Client API [v8]
Daniel Fuchs
dfuchs at openjdk.org
Thu Jun 26 14:17:45 UTC 2025
On Thu, 26 Jun 2025 13:22:28 GMT, Jaikiran Pai <jpai at openjdk.org> wrote:
>> src/java.base/share/classes/sun/security/ssl/X509Authentication.java line 226:
>>
>>> 224: chc.peerSupportedAuthorities == null ? null :
>>> 225: chc.peerSupportedAuthorities.clone(),
>>> 226: chc.algorithmConstraints);
>>
>> These `algorithmConstraints` won't include `peerSupportedSignAlgs`.
>
> @dfuch this too can be marked as resolved. The updated code in this PR now calls `X509KeyManagerImpl.chooseClientAlias(String[] keyTypes, Principal[] issuers, QuicTLSEngineImpl quicTLSEngine)` which internally picks up the `peerSupportedSignAlgs` from the handshake session.
Thanks. done.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/24751#discussion_r2169182330
More information about the net-dev
mailing list