Skip to main content

Jarsigner very very slow...

1 reply [Last post]
Maurice_S
Offline
Joined: 2012-04-16
Points: 0

I am working at implementing an official code signing cert from Verisign, and the performance to sign from the self signed cert has increased dramatically.

Self signed cert: ~3-4min (which was a 1K cert)
Code Signing Cert: ~90(!) minutes. (which has to be a 2K cert)

The build platform is a linux box, vmware with quad cpu support. I use the TSA option to sign the cert (timestamp.geotrust.com). I can understand some increase in time, but not 30(!) times. I had verisign verify the java key store, and the neccesary CA's are in the keystore.

However, i still suspect there is a LOT of traffic going to the verisign servers...
- ANT content:
[signjar alias="${env.KEYALIAS}" storepass="${env.KEYSTORE_PWD}" keypass="${env.KEYALIAS_PWD}" keystore="${env.KEYSTORE}" reservelastmodified="true" tsaurl="https://timestamp.geotrust.com/tsa" tsacert="TimestampCA" ]

Again, the 1k Self signed cert is VERY fast. I'd say even only like 1-2 min. The runtime of the whole ant script is 3-4 mins - including compilation...

Where can I look to make this faster?

Reply viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
Maurice_S
Offline
Joined: 2012-04-16
Points: 0

- ANT content:
[signjar alias="${env.KEYALIAS}" storepass="${env.KEYSTORE_PWD}" keypass="${env.KEYALIAS_PWD}" keystore="${env.KEYSTORE}" reservelastmodified="true" tsaurl="https://timestamp.geotrust.com/tsa" tsacert="TimestampCA" ]