[HTTPCLIENT-641] Resource Leakage when loading keystore in AuthSSLProtocolSocketFactory - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 3.0.1
Fix Version/s: 3.1 RC1
Component/s: Contrib
Labels:
None
Environment:
All

Description

Opened stream not closed after keystore is loaded, resulting in resource leakage:

private static KeyStore createKeyStore(final URL url, final String password)
throws KeyStoreException, NoSuchAlgorithmException, CertificateException, IOException
{
if (url == null)

{ throw new IllegalArgumentException("Keystore url may not be null"); }
LOG.debug("Initializing key store");
KeyStore keystore = KeyStore.getInstance("jks");
keystore.load(url.openStream(), password != null ? password.toCharArray(): null);
return keystore;
}

Should be changed to something like:

private static KeyStore createKeyStore(final URL url, final String password)
throws KeyStoreException, NoSuchAlgorithmException, CertificateException, IOException
{
if (url == null) { throw new IllegalArgumentException("Keystore url may not be null"); }

LOG.debug("Initializing key store");
KeyStore keystore = KeyStore.getInstance("jks");
InputStream is = ulr.openStream();
try

{ keystore.load(is, password != null ? password.toCharArray(): null); }

finally

{ is.close(); }

return keystore;
}

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

patch.txt
04/Mar/07 11:50
5 kB
Ortwin Glueck

Activity

People

Assignee:: Ortwin Glueck

Reporter:: Hanson Char

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 04/Mar/07 04:48

Updated:: 11/Aug/07 12:39

Resolved:: 04/Mar/07 12:38