Message-ID: From: "harinath001 (@harinath001)" To: "pgjdbc/pgjdbc" Date: Wed, 02 Jul 2025 20:05:42 +0000 Subject: Re: [pgjdbc/pgjdbc] PR #3700: Add PEMKeyManager to handle PEM based certs and keys. In-Reply-To: References: List-Id: X-GitHub-Author-Login: harinath001 X-GitHub-Comment-Id: 3029166172 X-GitHub-Comment-Type: issue_comment X-GitHub-Issue: 3700 X-GitHub-Repo: pgjdbc/pgjdbc X-GitHub-Type: comment X-GitHub-Url: https://github.com/pgjdbc/pgjdbc/pull/3700#issuecomment-3029166172 Content-Type: text/plain; charset=utf-8 @cfredri4 as the `getPrivateKey` method is called during the SSL Handshake, I believe the read happens during the connection establishment , and there might NOT be any reads further in the entire lifetime of connection. Subsequent new connections anyways should create new objects of `LibPQFactory` and `KeyManagers` which will trigger reads again. In case if a cert expires during the lifetime of a connection, probably the connection terminates and that will lead to creation of new one. So, do you think reading the material from file every time (or caching the content) cause any issues ?