Hello all, this fixes an issue where for TLSv1.2 connections
specifically, clients will not authenticate using PSS certs even when
PSS signature algorithms are asserted in the CertificateRequest
message. This brings in a method for client certificate selection
similar to how we do it for TLS 1.3. TLS 1.3, 1.1 and 1.0 client
certificate selection is not affected by this fix.
JBS: https://bugs.openjdk.java.net/browse/JDK-8210989
Webrev: http://cr.openjdk.java.net/~jnimeh/reviews/8210989/webrev.01/
--Jamil