Uploaded image for project: 'Directory ApacheDS'
  1. Directory ApacheDS
  2. DIRSERVER-2262

The LdapServer.loadkeyStore() method do the work twice if there is no KeyStore defined

Watch issueLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.0.0.AM25
    • Fix Version/s: 2.0.0.AM26
    • Component/s: None
    • Labels:
      None

      Description

      When initializing the server, we call the loadkeyStore method to load the KeyStore. If there is none configured, we create a internal one that will be used to manage SSL/TLS communication.

      The thing is that before initializing the KeyManagerFactory, we check the KeyStore, which generates a private key and a certificate. the following methods are called :

      o CoreKeyStoreSpi.engineLoad()
      o CoreKeyStoreSpi.engineAliases()
      o CoreKeyStoreSpi.engineIsKeyEntry()
      o CoreKeyStoreSpi.engineGetCertificateChain()
      o CoreKeyStoreSpi.engineGetKey()

      then :

      o CoreKeyStoreSpi.engineAliases()
      o CoreKeyStoreSpi.engineIsKeyEntry()
      o CoreKeyStoreSpi.engineGetKey()
      o CoreKeyStoreSpi.engineGetCertificateChain()
      o CoreKeyStoreSpi.getCertificate()

      We also fetch the admin user 4 times in the process...

      That could be simplified.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              elecharny Emmanuel L├ęcharny

              Dates

              • Created:
                Updated:
                Resolved:

                Issue deployment