API Misuse (Apple): Trying to free data which has not been allocated
An app I'm working on works with simple password items in the Login Keychain. I noticed there is a SecKeychainItemRef that is never freed. The official documentation on SecKeychainFindGenericPassword() reads:
On return, a pointer to the item object of the generic password. You are responsible for releasing your reference to this object.
After some quick changes, the static code analyzer claims:
- Assuming 'result' is equal to noErr
- Assuming 'item' is non-null
- Trying to free data which has not been allocated
I'm at a loss at how I'm assuming result is equal to noErr as there is an else clause. Not quite sure where I am assuming item is non-null nor how I am freeing data that is not allocated since it's checked (if (item)).
Screenshot of the warnings and code listing
Code Listings
This is a part of the Hermes project on GitHub.
Old
BOOL KeychainSetItem(NSString* username, NSString* password) {
SecKeychainItemRef item;
OSStatus result = SecKeychainFindGenericPassword(
NULL,
strlen(KEYCHAIN_SERVICE_NAME),
KEYCHAIN_SERVICE_NAME,
[username length],
[username UTF8String],
NULL,
NULL,
&item);
if (result == noErr) {
result = SecKeychainItemModifyContent(item, NULL, [password length],
[password UTF8String]);
return result == noErr;
} else {
result = SecKeychainAddGenericPassword(
NULL,
strlen(KEYCHAIN_SERVICE_NAME),
KEYCHAIN_SERVICE_NAME,
[username length],
[username UTF8String],
[password length],
[password UTF8String],
NULL);
return result == noErr;
}
}
New
BOOL KeychainSetItem(NSString* username, NSString* password) {
SecKeychainItemRef item = nil;
OSStatus result = SecKeychainFindGenericPassword(
NULL,
strlen(KEYCHAIN_SERVICE_NAME),
KEYCHAIN_SERVICE_NAME,
[username length],
[username UTF8String],
NULL,
NULL,
&item);
if (result == noErr) {
result = SecKeychainItemModifyContent(item, NULL, [password length],
[password UTF8String]);
} else {
result = SecKeychainAddGenericPassword(
NULL,
strlen(KEYCHAIN_SERVICE_NAME),
KEYCHAIN_SERVICE_NAME,
[username length],
[username UTF8String],
[password length],
[password UTF8String],
NULL);
}
if (item) {
SecKeychainItemFreeContent(NULL, item);
}
return result == noErr;
}
SecKeychainItemRef variables are CoreFoundation reference counted. From the static code analyzer's point of view, calling SecKeychainItemFreeContent() on a SecKeychainItemRef amounts to freeing unallocated data since it was not allocated by the SecKeychain functions.
All the errors went away by calling CFRelease() on the SecKeychainItemRef variable (instead of SecKeychainItemFreeContent()).
- How can I have my app launch the iMessage app?
- How to compress and scale down an NSImage?
- Format UILabel with bullet points?
- Download font .ttf file from web and store on iPhone
- UICollectionView current visible cell index
- Update Visible Range UITextView Method
- Add subview to UIButton
- UIProgressView and Custom Track and Progress Images (iOS 5 properties)
- Get Application Icon Image From Springboard (Jailbreak)
- XCode no valid compiled storyboard at path
- Remove all constraints affecting a UIView
- height of progress view in UIKit
- Objective-C equivalent of Swift "\(variable)"
- Is there a way to print an clickable link to the console?
- Key Value pair Objective-C
- Mark a method as deprecated
- Turn off audio playback of AVPlayer?
- How to remove a directory and its contents using NSFileManager
- how to delete all files in a folder, but not the folder itself?
- Duplicate symbols for architecture x86_64 under Xcode
- Less Blur with `Visual Effect View with Blur`?
- One way Audio issues in iOS 18.2 on call apps
- How can I get the Face ID system icon programatically?
- iOS (objective-c) compression_decode_buffer() returns zero
- Is it possible to change behavior and attributes of the window of an NSPopover?
- How to get data from OMDb API web service
- Temp data is adding while calling an API
- Is it possible to perform API calls from Share extension
- New to JSON API how to access the values in objective-c?
- What are the pros and cons of reusing an AFHTTPRequestOperationManager?