From a08ae8fee9539ed1432f4169cea46f6e27990dd5 Mon Sep 17 00:00:00 2001
From: Davide Galassi <davide.galassi@gmail.com>
Date: Fri, 2 Dec 2016 17:10:37 +0100
Subject: [PATCH] Avoid the call to OPENSSL_malloc with a negative value (then
 casted to unsigned)

CLA: trivial
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2021)
(cherry picked from commit 210fe4edee6514e4c1f0677adc9112c4459da02b)
---
 crypto/dso/dso_lib.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/crypto/dso/dso_lib.c b/crypto/dso/dso_lib.c
index 52816dfb9d..f58237d64b 100644
--- a/crypto/dso/dso_lib.c
+++ b/crypto/dso/dso_lib.c
@@ -324,6 +324,9 @@ DSO *DSO_dsobyaddr(void *addr, int flags)
     char *filename = NULL;
     int len = DSO_pathbyaddr(addr, NULL, 0);
 
+    if (len < 0)
+        return NULL;
+
     filename = OPENSSL_malloc(len);
     if (filename != NULL
             && DSO_pathbyaddr(addr, filename, len) == len)
-- 
2.25.1