You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@pdfbox.apache.org by ti...@apache.org on 2020/03/31 12:36:07 UTC
svn commit: r1875930 -
/pdfbox/branches/2.0/examples/src/main/java/org/apache/pdfbox/examples/signature/cert/CertificateVerifier.java
Author: tilman
Date: Tue Mar 31 12:36:07 2020
New Revision: 1875930
URL: http://svn.apache.org/viewvc?rev=1875930&view=rev
Log:
PDFBOX-3017, PDFBOX-3888: recover from OCSP exception and improve output
Modified:
pdfbox/branches/2.0/examples/src/main/java/org/apache/pdfbox/examples/signature/cert/CertificateVerifier.java
Modified: pdfbox/branches/2.0/examples/src/main/java/org/apache/pdfbox/examples/signature/cert/CertificateVerifier.java
URL: http://svn.apache.org/viewvc/pdfbox/branches/2.0/examples/src/main/java/org/apache/pdfbox/examples/signature/cert/CertificateVerifier.java?rev=1875930&r1=1875929&r2=1875930&view=diff
==============================================================================
--- pdfbox/branches/2.0/examples/src/main/java/org/apache/pdfbox/examples/signature/cert/CertificateVerifier.java (original)
+++ pdfbox/branches/2.0/examples/src/main/java/org/apache/pdfbox/examples/signature/cert/CertificateVerifier.java Tue Mar 31 12:36:07 2020
@@ -206,6 +206,14 @@ public final class CertificateVerifier
{
// happens with 021496.pdf because OCSP responder no longer exists
LOG.warn("IOException trying OCSP, will try CRL", ex);
+ LOG.warn("Certificate# to check: " + cert.getSerialNumber().toString(16));
+ CRLVerifier.verifyCertificateCRLs(cert, signDate, additionalCerts);
+ }
+ catch (OCSPException ex)
+ {
+ // happens with QV_RCA1_RCA3_CPCPS_V4_11.pdf
+ LOG.warn("OCSPException trying OCSP, will try CRL", ex);
+ LOG.warn("Certificate# to check: " + cert.getSerialNumber().toString(16));
CRLVerifier.verifyCertificateCRLs(cert, signDate, additionalCerts);
}
}