RFR: 8375684: Avoid leak in KeystoreImpl.m when using CFArrayCreateMutable
Matthias Baesken
mbaesken at openjdk.org
Mon Jan 26 15:15:06 UTC 2026
On Mon, 26 Jan 2026 14:58:58 GMT, Weijun Wang <weijun at openjdk.org> wrote:
> I only find one automatic test related to macOS keystores: java/security/KeyStore/CheckMacOSKeyChainTrust.java. The other one -- sun/security/tools/keytool/ListKeyChainStore.java -- is manual.
Thanks !
Looks like we have some CFRelease calls as well coming from the Java layer, from Java_apple_security_KeychainStore__1releaseKeychainItemRef .
https://github.com/openjdk/jdk/blob/61b722d59a799ba943476a03be3a1c7649aa0c27/src/java.base/macosx/native/libosxsecurity/KeystoreImpl.m#L877-L882
So those need to be considered too .
-------------
PR Comment: https://git.openjdk.org/jdk/pull/29326#issuecomment-3800091243
More information about the security-dev
mailing list