Merge branch 'ia/ssl/ets-next-problem/OTP-9703'

* ia/ssl/ets-next-problem/OTP-9703: Replaced ets:next traversal with ets:foldl and throw
author: Ingela Anderton Andin <[email protected]> 2011-11-16 09:47:44 +0100
committer: Ingela Anderton Andin <[email protected]> 2011-11-16 09:47:44 +0100
commit: 0d3fa967fda3a3d4b302f7b89887cf034d245a47 (patch)
tree: 511cea215cea89a02bfee9a02e58885a42cfc633 /lib/ssl/src/ssl_certificate.erl
parent: e21d0a8c944762cc31e03bf097491d446c55a6af (diff)
parent: a7b8bf5b8162e9c0473213c77d17c739bdffdc35 (diff)
download: otp-0d3fa967fda3a3d4b302f7b89887cf034d245a47.tar.gz
otp-0d3fa967fda3a3d4b302f7b89887cf034d245a47.tar.bz2
otp-0d3fa967fda3a3d4b302f7b89887cf034d245a47.zip
1 files changed, 20 insertions, 13 deletions
diff --git a/lib/ssl/src/ssl_certificate.erl b/lib/ssl/src/ssl_certificate.erl
index 422ea6404b..61876e1158 100644
--- a/lib/ssl/src/ssl_certificate.erl
+++ b/lib/ssl/src/ssl_certificate.erl
@@ -66,7 +66,7 @@ trusted_cert_and_path(CertChain, CertDbHandle, CertDbRef) ->
 		    {ok, IssuerId} ->
 			{other, IssuerId};
 		    {error, issuer_not_found} ->
-			case find_issuer(OtpCert, no_candidate, CertDbHandle) of
+			case find_issuer(OtpCert, CertDbHandle) of
 			    {ok, IssuerId} ->
 				{other, IssuerId};
 			    Other ->
@@ -193,7 +193,7 @@ certificate_chain(OtpCert, _Cert, CertDbHandle, CertsDbRef, Chain) ->
 	{_, true = SelfSigned} ->
 	    certificate_chain(CertDbHandle, CertsDbRef, Chain, ignore, ignore, SelfSigned);
 	{{error, issuer_not_found}, SelfSigned} ->
-	    case find_issuer(OtpCert, no_candidate, CertDbHandle) of
+	    case find_issuer(OtpCert, CertDbHandle) of
 		{ok, {SerialNr, Issuer}} ->
 		    certificate_chain(CertDbHandle, CertsDbRef, Chain,
 				      SerialNr, Issuer, SelfSigned);
@@ -227,17 +227,24 @@ certificate_chain(CertDbHandle, CertsDbRef, Chain, SerialNr, Issuer, _SelfSigned
 	    {ok, lists:reverse(Chain)}		      
     end.
 
-find_issuer(OtpCert, PrevCandidateKey, CertDbHandle) ->
-    case ssl_manager:issuer_candidate(PrevCandidateKey, CertDbHandle) of
- 	no_more_candidates ->
- 	    {error, issuer_not_found};
- 	{Key, {_Cert, ErlCertCandidate}} ->
-	    case public_key:pkix_is_issuer(OtpCert, ErlCertCandidate) of
-		true ->
-		    public_key:pkix_issuer_id(ErlCertCandidate, self);
-		false ->
-		    find_issuer(OtpCert, Key, CertDbHandle)
-	    end
+find_issuer(OtpCert, CertDbHandle) ->
+    IsIssuerFun = fun({_Key, {_Der, #'OTPCertificate'{} = ErlCertCandidate}}, Acc) ->
+			  case public_key:pkix_is_issuer(OtpCert, ErlCertCandidate) of
+			      true ->
+				  throw(public_key:pkix_issuer_id(ErlCertCandidate, self));
+			      false ->
+				  Acc
+			  end;
+		     (_, Acc) ->
+			  Acc
+		  end,
+
+    try ssl_certificate_db:foldl(IsIssuerFun, issuer_not_found, CertDbHandle) of
+	issuer_not_found ->
+	    {error, issuer_not_found}
+    catch 
+	{ok, _IssuerId} = Return ->
+	    Return
     end.
 
 is_valid_extkey_usage(KeyUse, client) ->
author	Ingela Anderton Andin <[email protected]>	2011-11-16 09:47:44 +0100
committer	Ingela Anderton Andin <[email protected]>	2011-11-16 09:47:44 +0100
commit	0d3fa967fda3a3d4b302f7b89887cf034d245a47 (patch)
tree	511cea215cea89a02bfee9a02e58885a42cfc633 /lib/ssl/src/ssl_certificate.erl
parent	e21d0a8c944762cc31e03bf097491d446c55a6af (diff)
parent	a7b8bf5b8162e9c0473213c77d17c739bdffdc35 (diff)
download	otp-0d3fa967fda3a3d4b302f7b89887cf034d245a47.tar.gz otp-0d3fa967fda3a3d4b302f7b89887cf034d245a47.tar.bz2 otp-0d3fa967fda3a3d4b302f7b89887cf034d245a47.zip