upd: redesign of find cert result page

[gigi.git] / src / club / wpia / gigi / ocsp / OCSPIssuerManager.java

diff --git a/src/club/wpia/gigi/ocsp/OCSPIssuerManager.java b/src/club/wpia/gigi/ocsp/OCSPIssuerManager.java
index 852968641e69ff379cfad5bfbbed1d77c4086b73..36343371b7b43a006e90d246c81797955729c930 100644 (file)
--- a/src/club/wpia/gigi/ocsp/OCSPIssuerManager.java
+++ b/src/club/wpia/gigi/ocsp/OCSPIssuerManager.java
@@ -75,7 +75,7 @@ public class OCSPIssuerManager implements Runnable {
     }
 
     private void index(AlgorithmId aid, MessageDigest md, Map<String, OCSPIssuer> toServe, Map<AlgorithmId, Map<OCSPIssuerId, OCSPIssuer>> map) {
-        OCSPResponder.log.info("Indexing OCSP issuers for " + md);
+        OCSPResponder.log.fine("Indexing OCSP issuers for " + md);
         HashMap<OCSPIssuerId, OCSPIssuer> issuers = new HashMap<>();
         for (OCSPIssuer i : toServe.values()) {
             issuers.put(new OCSPIssuerId(aid, md, i.getTarget()), i);
@@ -97,9 +97,15 @@ public class OCSPIssuerManager implements Runnable {
      */
     private void scanAndUpdateCAs(File f, KeyStore keys, Map<String, OCSPIssuer> toServe) {
         if (f.isDirectory()) {
-            for (File f1 : f.listFiles()) {
-                scanAndUpdateCAs(f1, keys, toServe);
+            File[] list = f.listFiles();
+            if (list == null) {
+                return;
+            }
+
+            for (File file : list) {
+                scanAndUpdateCAs(file, keys, toServe);
             }
+
             return;
         }
         if ( !f.getName().equals("ca.crt")) {
@@ -107,7 +113,6 @@ public class OCSPIssuerManager implements Runnable {
         }
         try {
             String keyName = f.getParentFile().getName();
-            OCSPResponder.log.info("CA: " + keyName);
             updateCA(f, keyName, keys, toServe);
         } catch (GeneralSecurityException e) {
             e.printStackTrace();
@@ -169,7 +174,7 @@ public class OCSPIssuerManager implements Runnable {
                 long deltas = expiery.getTime() - now.getTime();
                 deltas /= 1000;
                 deltas /= 60 * 60 * 24;
-                OCSPResponder.log.info("Remaining days for OCSP certificate: " + deltas);
+                OCSPResponder.log.fine("Remaining days for OCSP certificate: " + deltas);
                 if (deltas > 30 * 3) {
                     return;
                 }
@@ -195,7 +200,7 @@ public class OCSPIssuerManager implements Runnable {
         ocspCsr.delete();
         ocspCrt.delete();
         String csr = PEM.encode("CERTIFICATE REQUEST", p10.getEncoded());
-        try (Writer w = new OutputStreamWriter(new FileOutputStream(ocspCsr), "UTF-8")) {
+        try (FileOutputStream fos = new FileOutputStream(ocspCsr); Writer w = new OutputStreamWriter(fos, "UTF-8")) {
             w.write(csr);
         }
     }
@@ -220,7 +225,9 @@ public class OCSPIssuerManager implements Runnable {
                         if (ks.length() == 0) {
                             keys.load(null);
                         } else {
-                            keys.load(new FileInputStream(ks), "pass".toCharArray());
+                            try (FileInputStream ks_file = new FileInputStream(ks)) {
+                                keys.load(ks_file, "pass".toCharArray());
+                            }
                         }
                     } else {
                         // assuming ocsp is disabled
@@ -234,8 +241,8 @@ public class OCSPIssuerManager implements Runnable {
                 Map<String, OCSPIssuer> toServe = new HashMap<>();
 
                 scanAndUpdateCAs(f, keys, toServe);
-                try {
-                    keys.store(new FileOutputStream(ks), "pass".toCharArray());
+                try (FileOutputStream ks_file = new FileOutputStream(ks)) {
+                    keys.store(ks_file, "pass".toCharArray());
                 } catch (GeneralSecurityException e) {
                     throw new Error(e);
                 } catch (IOException e) {