Improved DANE error message

2026-03-27 19:35:10 +01:00 · 2024-06-17 07:48:01 +02:00
parent 4245956835
commit 19542bf267
1 changed files with 5 additions and 1 deletions
--- a/app/src/main/java/eu/faircode/email/DnsHelper.java
+++ b/app/src/main/java/eu/faircode/email/DnsHelper.java
@@ -368,9 +368,12 @@ public class DnsHelper {
        if (!hasDnsSec())
            return;

+        List<String> log = new ArrayList<>();
+
        Handler handler = new Handler() {
            @Override
            public void publish(LogRecord record) {
+                log.add(record.getMessage());
                Log.w("DANE " + record.getMessage());
            }

@@ -390,7 +393,8 @@ public class DnsHelper {
            boolean verified = new DaneVerifier().verifyCertificateChain(chain, server, port);
            Log.w("DANE verified=" + verified + " " + server + ":" + port);
            if (!verified)
-                throw new CertificateException("DANE missing or invalid");
+                throw new CertificateException("DANE missing or invalid",
+                        new CertificateException(TextUtils.join("\n", log)));
        } catch (CertificateException ex) {
            throw ex;
        } catch (Throwable ex) {