From 25f378ed3cc301cd712148d68a9e1ccc09273d3f Mon Sep 17 00:00:00 2001
From: Ashish Agrawal <ashisagr@amazon.com>
Date: Tue, 1 Nov 2022 09:30:21 -0700
Subject: [PATCH] Force version policy on secure client to fix invalid protocal
 version

Signed-off-by: Ashish Agrawal <ashisagr@amazon.com>
---
 .../org/opensearch/commons/rest/SecureRestClientBuilder.java    | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/main/java/org/opensearch/commons/rest/SecureRestClientBuilder.java b/src/main/java/org/opensearch/commons/rest/SecureRestClientBuilder.java
index c6ef0fc5..1c1ef498 100644
--- a/src/main/java/org/opensearch/commons/rest/SecureRestClientBuilder.java
+++ b/src/main/java/org/opensearch/commons/rest/SecureRestClientBuilder.java
@@ -30,6 +30,7 @@
 import org.apache.hc.client5.http.ssl.TrustSelfSignedStrategy;
 import org.apache.hc.core5.http.HttpHost;
 import org.apache.hc.core5.http.nio.ssl.TlsStrategy;
+import org.apache.hc.core5.http2.HttpVersionPolicy;
 import org.apache.hc.core5.ssl.SSLContextBuilder;
 import org.apache.hc.core5.util.Timeout;
 import org.apache.logging.log4j.LogManager;
@@ -204,6 +205,7 @@ public HttpAsyncClientBuilder customizeHttpClient(HttpAsyncClientBuilder httpCli
                 if (credentialsProvider != null) {
                     httpClientBuilder.setDefaultCredentialsProvider(credentialsProvider);
                 }
+                httpClientBuilder.setVersionPolicy(HttpVersionPolicy.FORCE_HTTP_1);
                 return httpClientBuilder;
             }
         });