Http3 Client times out for an untrusted certificate
Josiah Noel
josiahnoel at gmail.com
Thu Nov 6 15:15:44 UTC 2025
Heya,
I've been testing the Http3 support on windows 11 with build 26-ea+22-2263,
and my request was seemingly just timing out.
After like 3 hours of fiddling, I realized that I forgot to import the
mkcert rootCA I was using into the jdk cacerts.
Long story short, when I ran `keytool -import -trustcacerts -noprompt
-alias mkcert-root-ca -file "$(mkcert -CAROOT)/rootCA.pem" -keystore
"$JAVA_HOME/lib/security/cacerts" -storepass changeit` then it suddenly
began to work.
Perchance is it possible to get a clearer error message?
Feedback wise, I like the new feature, that using it only involves
providing the new enum value is great for me so I don't have to do much to
my internal libraries to make it work.
On an unrelated note, what do we think about adding a HttpServer Create
Convenience Method
<https://mail.openjdk.org/pipermail/net-dev/2025-October/028587.html>?
--
Cheers, Josiah.`
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/net-dev/attachments/20251106/8653cef7/attachment.htm>
More information about the net-dev
mailing list