Fix CRYPTO_strdup

The function CRYPTO_strdup (aka OPENSSL_strdup) fails to check the return value from CRYPTO_malloc to see if it is NULL before attempting to use it. This patch adds a NULL check. RT3786 Signed-off-by: N Matt Caswell <matt@openssl.org> (cherry picked from commit 37b0cf936744d9edb99b5dd82cae78a7eac6ad60) Reviewed-by: N Rich Salz <rsalz@openssl.org> (cherry picked from commit 20d21389c8b6f5b754573ffb6a4dc4f3986f2ca4)

Fix CRYPTO_strdup
The function CRYPTO_strdup (aka OPENSSL_strdup) fails to check the return value from CRYPTO_malloc to see if it is NULL before attempting to use it. This patch adds a NULL check. RT3786 Signed-off-by: N Matt Caswell <matt@openssl.org> (cherry picked from commit 37b0cf936744d9edb99b5dd82cae78a7eac6ad60) Reviewed-by: N Rich Salz <rsalz@openssl.org> (cherry picked from commit 20d21389c8b6f5b754573ffb6a4dc4f3986f2ca4)
8031d26b · Loganaden Velvindron · Matt Caswell · 98c9ce2f · 8031d26b
隐藏空白更改
内联并排

Showing with 3 addition and 0 deletion

crypto/mem.c crypto/mem.c +3 -0

未找到文件。
--- a/crypto/mem.c
+++ b/crypto/mem.c
@@ -364,6 +364,9 @@ char *CRYPTO_strdup(const char *str, const char *file, int line)
 {
    char *ret = CRYPTO_malloc(strlen(str) + 1, file, line);

+    if (ret == NULL)
+        return NULL;
+
    strcpy(ret, str);
    return ret;
 }