From dd0c0eb7a54aed1d0b8b71ad22253558dc26d646 Mon Sep 17 00:00:00 2001
From: x2018 <xkernel.wang@foxmail.com>
Date: Tue, 23 Nov 2021 21:33:17 +0800
Subject: [PATCH] check the return value of OPENSSL_strdup(CRYPTO_strdup) to
 prevent potential memory access error

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/17113)

(cherry picked from commit b9648f31a4917b8594caebda3e6d8d313514fe24)
---
 apps/lib/app_rand.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/apps/lib/app_rand.c b/apps/lib/app_rand.c
index e38d3a72fc7..08550d7bfc6 100644
--- a/apps/lib/app_rand.c
+++ b/apps/lib/app_rand.c
@@ -110,6 +110,8 @@ int opt_rand(int opt)
     case OPT_R_WRITERAND:
         OPENSSL_free(save_rand_file);
         save_rand_file = OPENSSL_strdup(opt_arg());
+        if (save_rand_file == NULL)
+            return 0;
         break;
     }
     return 1;
-- 
2.47.3