Uploaded image for project: 'Directory ApacheDS'
  1. Directory ApacheDS
  2. DIRSERVER-2262

The LdapServer.loadkeyStore() method do the work twice if there is no KeyStore defined

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 2.0.0.AM25
    • 2.0.0.AM26
    • None
    • None

    Description

      When initializing the server, we call the loadkeyStore method to load the KeyStore. If there is none configured, we create a internal one that will be used to manage SSL/TLS communication.

      The thing is that before initializing the KeyManagerFactory, we check the KeyStore, which generates a private key and a certificate. the following methods are called :

      o CoreKeyStoreSpi.engineLoad()
      o CoreKeyStoreSpi.engineAliases()
      o CoreKeyStoreSpi.engineIsKeyEntry()
      o CoreKeyStoreSpi.engineGetCertificateChain()
      o CoreKeyStoreSpi.engineGetKey()

      then :

      o CoreKeyStoreSpi.engineAliases()
      o CoreKeyStoreSpi.engineIsKeyEntry()
      o CoreKeyStoreSpi.engineGetKey()
      o CoreKeyStoreSpi.engineGetCertificateChain()
      o CoreKeyStoreSpi.getCertificate()

      We also fetch the admin user 4 times in the process...

      That could be simplified.

      Attachments

        Activity

          People

            Unassigned Unassigned
            elecharny Emmanuel Lécharny
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: