From 07872189eb36a0cc1d82562bc06e314408cc3b9e Mon Sep 17 00:00:00 2001
From: Hideki Miyazaki <hide@wolfssl.com>
Date: Sat, 8 May 2021 13:15:50 +0900
Subject: [PATCH] add sanity check

---
 src/ssl.c | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/src/ssl.c b/src/ssl.c
index 8e536ad33..2736bbb8e 100644
--- a/src/ssl.c
+++ b/src/ssl.c
@@ -49998,7 +49998,10 @@ static int x509GetIssuerFromCM(WOLFSSL_X509 **issuer, WOLFSSL_CERT_MANAGER* cm,
 #else
     DecodedCert  cert[1];
 #endif
-
+    /* sanity check */
+    if (cm == NULL || x == NULL || x->derCert == NULL)
+        return WOLFSSL_FAILURE;
+        
 #ifdef WOLFSSL_SMALL_STACK
     cert = (DecodedCert*)XMALLOC(sizeof(DecodedCert), NULL, DYNAMIC_TYPE_DCERT);
     if (cert == NULL)
@@ -50178,7 +50181,7 @@ WOLFSSL_X509* wolfSSL_X509_dup(WOLFSSL_X509 *x)
 {
     WOLFSSL_ENTER("wolfSSL_X509_dup");
 
-    if (x == NULL) {
+    if (x == NULL || x->derCert == NULL) {
         WOLFSSL_MSG("Error: NULL certificate passed in");
         return NULL;
     }