In the default implementation of the HttpClient, we create a copy of the user specified javax.net.ssl.SSLParameters. We do that in jdk.internal.net.http.common.Utils.copySSLParameters() method.
In Java 19 and Java 20 some new methods have been added to the javax.net.ssl.SSLParameters which allows users to set the signatureSchemes and namedGroups that will be used by the TLS protocol.
The Utils.copySSLParameters() currently doesn't copy over these values to the newly created copy. We should consider copying them over so that they get used by TLS protocol, when the HttpClient is used.
In Java 19 and Java 20 some new methods have been added to the javax.net.ssl.SSLParameters which allows users to set the signatureSchemes and namedGroups that will be used by the TLS protocol.
The Utils.copySSLParameters() currently doesn't copy over these values to the newly created copy. We should consider copying them over so that they get used by TLS protocol, when the HttpClient is used.
- relates to
-
JDK-8280494 (D)TLS signature schemes
-
- Resolved
-
-
-
- Resolved
-
-
-
- Open
-