On Tue, 22 Apr 2025 16:49:10 GMT, Artur Barashev <abaras...@openjdk.org> wrote:
>> Daniel Fuchs has updated the pull request with a new target base due to a >> merge or a rebase. The pull request now contains 525 commits: >> >> - merge latest changes from master branch >> - http3: run H3StreamLimitReachedTest.java with >> -Djdk.httpclient.http3.maxStreamLimitTimeout=0 too >> - retry the ResetControlStream test as needed >> - http3: fix pending connection and reconnection on stream limit reached >> logic >> - http3: pending acknowledgement should be registered before actually >> sending the packet >> - http3: fix race with ping requests in PacketSpaceManager.java causing >> intermittent failures in H3ErrorHandlingTest.java >> - http3: improve exceptions in Http3ServerExchange.java >> - http3: fix exception handling in CancelRequestTest.java >> - http3: review feedback - revert HPACK.java >> - Implement X509TrustManagerImpl#checkClientTrusted for QUIC >> - ... and 515 more: https://git.openjdk.org/jdk/compare/5a1301df...0229c215 > > src/java.base/share/classes/sun/security/ssl/X509TrustManagerImpl.java line > 286: > >> 284: X509Certificate[] trustedChain = v.validate(chain, null, >> 285: Collections.emptyList(), >> 286: sslParameters.getAlgorithmConstraints(), authType); > > SSLParameter's algorithm constraints don't include constraints specified in > `java.security` config file. Addressed in 633375f342b6dbf1fc608f9b9abc9bf15c15ada4 ------------- PR Review Comment: https://git.openjdk.org/jdk/pull/24751#discussion_r2169586259
