From 8760f39476c0099c91a4ccf9c394a8c24e57b421 Mon Sep 17 00:00:00 2001
From: Kosmas Valianos <kosmas.valianos@appgate.com>
Date: Fri, 8 Oct 2021 11:52:29 +0200
Subject: [PATCH] Skip CRL verification in case no CDP in peer cert

---
 src/crl.c | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/src/crl.c b/src/crl.c
index 9b1fb74d0..bfc743015 100644
--- a/src/crl.c
+++ b/src/crl.c
@@ -345,6 +345,13 @@ int CheckCertCRL(WOLFSSL_CRL* crl, DecodedCert* cert)
 
     WOLFSSL_ENTER("CheckCertCRL");
 
+#ifdef WOLFSSL_CRL_ALLOW_MISSING_CDP
+    /* Skip CRL verification in case no CDP in peer cert */
+    if (!cert->extCrlInfo) {
+        return ret;
+    }
+#endif
+
     ret = CheckCertCRLList(crl, cert, &foundEntry);
 
 #ifdef HAVE_CRL_IO