Changes to support selection of appropriate alias from a keystore with multiple alias entries

rahulnirgude · rahulnirgude · commit 9c0efd491a86 · 2024-10-21T10:12:41.000+05:30
diff --git a/clients/src/main/java/org/apache/kafka/common/security/ssl/DefaultSslEngineFactory.java b/clients/src/main/java/org/apache/kafka/common/security/ssl/DefaultSslEngineFactory.java
@@ -454,14 +454,14 @@ public char[] keyPassword() {
          */
         protected KeyStore load(boolean isKeyStore) {
             try (InputStream in = Files.newInputStream(Paths.get(path))) {
-                    KeyStore ks = KeyStore.getInstance(type);
-                    // If a password is not set access to the truststore is still available, but integrity checking is disabled.
-                    char[] passwordChars = password != null ? password.value().toCharArray() : null;
-                    ks.load(in, passwordChars);
-                    return ks;
-                } catch (GeneralSecurityException | IOException e) {
-                    throw new KafkaException("Failed to load SSL keystore " + path + " of type " + type, e);
-                }
+                KeyStore ks = KeyStore.getInstance(type);
+                // If a password is not set access to the truststore is still available, but integrity checking is disabled.
+                char[] passwordChars = password != null ? password.value().toCharArray() : null;
+                ks.load(in, passwordChars);
+                return ks;
+            } catch (GeneralSecurityException | IOException e) {
+                throw new KafkaException("Failed to load SSL keystore " + path + " of type " + type, e);
+            }
         }
 
         private Long lastModifiedMs(String path) {
