leak.c

#include "config.h"
#include <jansson.h>
#include <string.h>
#include <stdlib.h>
#include <argp.h>
#include <assert.h>
#include "../libjosec.h"
#include "../src/soft_crypto.h"
#include "jwt.h"
#include <mcheck.h>

#if defined(__GNUC__) && (__GNUC__ > 4 || (__GNUC__ == 4 && __GNUC_MINOR__ >= 6))
#pragma GCC diagnostic push
#endif
#pragma GCC diagnostic ignored "-Wunknown-pragmas"
#pragma GCC diagnostic ignored "-Wpragmas"
#pragma GCC diagnostic ignored "-Winitializer-overrides"
#pragma GCC diagnostic ignored "-Woverride-init"
#pragma GCC diagnostic ignored "-Wcast-qual"


int
main (void)
{
    jose_context_t ctx;
    char *hmac_key = "secret";
    char *jwt = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9";

    json_t *header, *claims;
    int rc;

    mtrace();

    rc = jwt_split (jwt, &header, &claims);

    assert (0 == jose_create_context (&ctx, NULL, NULL, NULL));

    assert (ctx.cookie == NULL);
    assert ((void *)ctx.verify_func == (void *)jose_soft_verify);
    assert ((void *)ctx.sign_func == (void *)jose_soft_sign);

    assert (ctx.key_container[HS256].key == NULL);

    jose_key_t key;
    key.alg_type = HS256;
    key.key = (uint8_t *)hmac_key;
    key.k_len = strlen (hmac_key);

    assert (0 == jose_add_key (&ctx, key));

    char *result = jwt_encode(&ctx, claims, HS256);

    assert(NULL != result);



    printf ("jwt: %s\n", result);

    assert (0 == jwt_verify_sig (&ctx, result, HS256));
    printf ("verified\n");

    free (result);
    json_decref (header);
    json_decref (claims);

    muntrace();
}


#if defined(__GNUC__) && (__GNUC__ > 4 || (__GNUC__ == 4 && __GNUC_MINOR__ >= 6))
#pragma GCC diagnostic pop
#endif