Creating of SslContext in paranoid mode takes too long

I have ~400 integration tests. Every test creates SslContext and destroys it at the end. Recently I switched my tests from JDK provider to OpenSSL provider and now my tests are executed forever 😃.

I found that the reason is in SslContext creation with Paranoid mode.

Expected behavior

OpenSsl context creation performance should be close to JDK ssl context creation.

Minimal yet complete reproducer code (or URL to code)

This minimal unit test reproduces situation:

    @Test
    public void testCreateContext() throws Exception {
        ResourceLeakDetector.setLevel(ResourceLeakDetector.Level.PARANOID);
        while(true) {
            SelfSignedCertificate ssc = new SelfSignedCertificate();
            SslContextBuilder builder = SslContextBuilder.forServer(ssc.certificate(), ssc.privateKey())
                    .sslProvider(SslProvider.OPENSSL);
            long now = System.currentTimeMillis();
            SslContext sslContext = builder.build();
            System.out.print(System.currentTimeMillis() - now);
            assertNotNull(sslContext);
        }
    }

In my case builder.build() takes 4 seconds. JDK Ssl cotext creation takes few millis.

Profiling shows that issue in ResourceLeakDetector.newRecord() method. It takes all the time and allocates hundreds of megabytes of objects.

Netty version

4.1.13.Final

JVM version (e.g. java -version)

1.8.0_131

OS version (e.g. uname -a)

Ubuntu 16.04