X-Git-Url: https://code.wpia.club/?a=blobdiff_plain;ds=sidebyside;f=src%2Fclub%2Fwpia%2Fgigi%2Focsp%2FOCSPIssuerManager.java;h=36343371b7b43a006e90d246c81797955729c930;hb=305cf1415218d3d55a7e4106d39f35d70f09b117;hp=852968641e69ff379cfad5bfbbed1d77c4086b73;hpb=1d4b38bd5da9636f4ba80244d92c89b4b5cbdf88;p=gigi.git diff --git a/src/club/wpia/gigi/ocsp/OCSPIssuerManager.java b/src/club/wpia/gigi/ocsp/OCSPIssuerManager.java index 85296864..36343371 100644 --- a/src/club/wpia/gigi/ocsp/OCSPIssuerManager.java +++ b/src/club/wpia/gigi/ocsp/OCSPIssuerManager.java @@ -75,7 +75,7 @@ public class OCSPIssuerManager implements Runnable { } private void index(AlgorithmId aid, MessageDigest md, Map toServe, Map> map) { - OCSPResponder.log.info("Indexing OCSP issuers for " + md); + OCSPResponder.log.fine("Indexing OCSP issuers for " + md); HashMap issuers = new HashMap<>(); for (OCSPIssuer i : toServe.values()) { issuers.put(new OCSPIssuerId(aid, md, i.getTarget()), i); @@ -97,9 +97,15 @@ public class OCSPIssuerManager implements Runnable { */ private void scanAndUpdateCAs(File f, KeyStore keys, Map toServe) { if (f.isDirectory()) { - for (File f1 : f.listFiles()) { - scanAndUpdateCAs(f1, keys, toServe); + File[] list = f.listFiles(); + if (list == null) { + return; + } + + for (File file : list) { + scanAndUpdateCAs(file, keys, toServe); } + return; } if ( !f.getName().equals("ca.crt")) { @@ -107,7 +113,6 @@ public class OCSPIssuerManager implements Runnable { } try { String keyName = f.getParentFile().getName(); - OCSPResponder.log.info("CA: " + keyName); updateCA(f, keyName, keys, toServe); } catch (GeneralSecurityException e) { e.printStackTrace(); @@ -169,7 +174,7 @@ public class OCSPIssuerManager implements Runnable { long deltas = expiery.getTime() - now.getTime(); deltas /= 1000; deltas /= 60 * 60 * 24; - OCSPResponder.log.info("Remaining days for OCSP certificate: " + deltas); + OCSPResponder.log.fine("Remaining days for OCSP certificate: " + deltas); if (deltas > 30 * 3) { return; } @@ -195,7 +200,7 @@ public class OCSPIssuerManager implements Runnable { ocspCsr.delete(); ocspCrt.delete(); String csr = PEM.encode("CERTIFICATE REQUEST", p10.getEncoded()); - try (Writer w = new OutputStreamWriter(new FileOutputStream(ocspCsr), "UTF-8")) { + try (FileOutputStream fos = new FileOutputStream(ocspCsr); Writer w = new OutputStreamWriter(fos, "UTF-8")) { w.write(csr); } } @@ -220,7 +225,9 @@ public class OCSPIssuerManager implements Runnable { if (ks.length() == 0) { keys.load(null); } else { - keys.load(new FileInputStream(ks), "pass".toCharArray()); + try (FileInputStream ks_file = new FileInputStream(ks)) { + keys.load(ks_file, "pass".toCharArray()); + } } } else { // assuming ocsp is disabled @@ -234,8 +241,8 @@ public class OCSPIssuerManager implements Runnable { Map toServe = new HashMap<>(); scanAndUpdateCAs(f, keys, toServe); - try { - keys.store(new FileOutputStream(ks), "pass".toCharArray()); + try (FileOutputStream ks_file = new FileOutputStream(ks)) { + keys.store(ks_file, "pass".toCharArray()); } catch (GeneralSecurityException e) { throw new Error(e); } catch (IOException e) {