Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Fixed
-
2.0.0.AM25
-
None
-
None
Description
When initializing the server, we call the loadkeyStore method to load the KeyStore. If there is none configured, we create a internal one that will be used to manage SSL/TLS communication.
The thing is that before initializing the KeyManagerFactory, we check the KeyStore, which generates a private key and a certificate. the following methods are called :
o CoreKeyStoreSpi.engineLoad()
o CoreKeyStoreSpi.engineAliases()
o CoreKeyStoreSpi.engineIsKeyEntry()
o CoreKeyStoreSpi.engineGetCertificateChain()
o CoreKeyStoreSpi.engineGetKey()
then :
o CoreKeyStoreSpi.engineAliases()
o CoreKeyStoreSpi.engineIsKeyEntry()
o CoreKeyStoreSpi.engineGetKey()
o CoreKeyStoreSpi.engineGetCertificateChain()
o CoreKeyStoreSpi.getCertificate()
We also fetch the admin user 4 times in the process...
That could be simplified.