From 8f240a6f2167ea9000c42ea402b291919ba9c3bf Mon Sep 17 00:00:00 2001
From: Onur Evren <onur.evren.1999@gmail.com>
Date: Fri, 3 Jan 2025 12:33:25 +0300
Subject: [PATCH] ext/snmp: Add null check for uninitialized SNMP session in
 security level setter

This change introduces a validation step in the `netsnmp_session_set_sec_level` function to ensure that the SNMP session is properly initialized before attempting to set the security level. If the session is not initialized, a zend_value_error is triggered, improving error handling and preventing potential crashes.
---
 ext/snmp/snmp.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/ext/snmp/snmp.c b/ext/snmp/snmp.c
index ec62dd91c72fb..8ff9d43d4d926 100644
--- a/ext/snmp/snmp.c
+++ b/ext/snmp/snmp.c
@@ -944,6 +944,11 @@ static bool netsnmp_session_init(php_snmp_session **session_p, int version, zend
 /* {{{ Set the security level in the snmpv3 session */
 static bool netsnmp_session_set_sec_level(struct snmp_session *s, zend_string *level)
 {
+	if (!s) {
+		zend_value_error("SNMP session is not initialized or has been closed");
+		return false;
+	}
+
 	if (zend_string_equals_literal_ci(level, "noAuthNoPriv") || zend_string_equals_literal_ci(level, "nanp")) {
 		s->securityLevel = SNMP_SEC_LEVEL_NOAUTH;
 	} else if (zend_string_equals_literal_ci(level, "authNoPriv") || zend_string_equals_literal_ci(level, "anp")) {