RFR: 8372526: Add support for ZLIB TLS Certificate Compression [v20]
Artur Barashev
abarashev at openjdk.org
Thu Feb 12 18:25:37 UTC 2026
> Implement certificate compression in TLS 1.3 using internally supported ZLIB compression algorithm. See RFC 8879 for more details:
> https://datatracker.ietf.org/doc/html/rfc8879
Artur Barashev has updated the pull request with a new target base due to a merge or a rebase. The pull request now contains 45 commits:
- Incorporate latest logging changes
- Merge branch 'master' into JDK-8372526
- Remove Google-specific manual test because google.com seem to support only brotli compression
- Update javadoc per review comments
- Correct message name in javadoc
- Don not use cache if certificate_request_context is present
- Attach cache to SSLContext instance
- Increase cache size to be on the safe side
- Update javadoc: specify default value for enableCertificateCompression
- Use newSoftMemoryCache for LRU mechanism and EqualByteArray to avoid any chance of collision
- ... and 35 more: https://git.openjdk.org/jdk/compare/c73f05be...378d91bb
-------------
Changes: https://git.openjdk.org/jdk/pull/28682/files
Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=28682&range=19
Stats: 1511 lines in 21 files changed: 1469 ins; 19 del; 23 mod
Patch: https://git.openjdk.org/jdk/pull/28682.diff
Fetch: git fetch https://git.openjdk.org/jdk.git pull/28682/head:pull/28682
PR: https://git.openjdk.org/jdk/pull/28682
More information about the net-dev
mailing list