From cd3e81a656f2fd07ad2fa6d475a2cdf726e7bfa4 Mon Sep 17 00:00:00 2001
From: Daniel Pouzzner <douzzer@wolfssl.com>
Date: Tue, 16 Dec 2025 16:56:55 -0600
Subject: [PATCH] src/ssl_load.c: in ProcessBufferCert(), check ctx for
 nullness before accessing ctx->verifyNone (fixes -Wnull-dereference reported
 by multi-test dtls-no-rsa-no-dh after merge of 36e66eb763).

---
 src/ssl_load.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/ssl_load.c b/src/ssl_load.c
index 5b995f013..34f328d13 100644
--- a/src/ssl_load.c
+++ b/src/ssl_load.c
@@ -2064,7 +2064,7 @@ static int ProcessBufferCert(WOLFSSL_CTX* ctx, WOLFSSL* ssl, DerBuffer* der)
             }
             /* Don't check if no SSL object verification is disabled for SSL
              * context. */
-            else if ((ssl == NULL) && ctx->verifyNone) {
+            else if ((ssl == NULL) && (ctx != NULL) && ctx->verifyNone) {
                 checkKeySz = 0;
             }