When creating a socket from HopsSSLSocketFactory, it goes through a number of checks to determine where it should read the crypto material from. When the user who's created the client is a "superuser", then it will use the host keystores. The form of host certificates' filename is FQDN_kstore.jks and FQDN_tstore.jks. To avoid unneccessary IO operation we check if the configuration already contains these values.
In some use cases, ex when we bind everything to 127.0.0.1 this is problematic. We should remove this check and if we observe a lot of IO wait, we tackle it.