[
https://issues.apache.org/jira/browse/DIRSERVER-2242?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16572963#comment-16572963
]
Emmanuel Lecharny commented on DIRSERVER-2242:
----------------------------------------------
One of the problem we will have to deal with if we decide to add a
configuration parameter is that the {{ReplicationTrustManager}} class is static
and its configuration is hard coded. Not sure why it was coded this way, but it
will have to be changed...
> Keystore change from JKS to PKCS12
> ----------------------------------
>
> Key: DIRSERVER-2242
> URL: https://issues.apache.org/jira/browse/DIRSERVER-2242
> Project: Directory ApacheDS
> Issue Type: Improvement
> Reporter: Stefan Seelmann
> Priority: Major
>
> Until Java 8 the default key store was JKS, since Java 9 the default is
> PKCS12.
> In the server code when we use key stores there is a mix of
> * KeyStore.getInstance( KeyStore.getDefaultType() );
> * KeyStore.getInstance( "JKS" );
> This needs to be cleaned up.
> There is also the question if an automatic migration from existing JKS stores
> in existing installations .to PKCS12 is possible
> Workaround is to change default keystore to JKS (property keystore.type in
> $JAVA_HOME/conf/security/java.security)
> Reference: http://openjdk.java.net/jeps/229
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
