Segfault with multiple jwt_decode using RSA #23

jchook · 2019-01-10T19:18:38Z

Getting segmentation fault error on latest master:

segfault at 10 ip 00007f0f7535ba94 sp 00007ffcb6cd3d80 error 4 in jwt.so[7f0f75357000+6000]

Code to reproduce:

<?php

function generateKeyPair()
{
  $key = openssl_pkey_new([
    'digest_alg' => 'sha512',
    'private_key_bits' => 1024,
    'private_key_type' => OPENSSL_KEYTYPE_RSA,
  ]);
  openssl_pkey_export($key, $private);
  $public = openssl_pkey_get_details($key)['key'];
  openssl_pkey_free($key);
  return [$public, $private];
}

list($apub, $apriv) = generateKeyPair();
list($bpub, $bpriv) = generateKeyPair();

$payload = ['message' => 'hello world'];
$token = jwt_encode($payload, $apriv, 'RS512');
$decoded = jwt_decode($token, $apub, ['algorithm' => 'RS512']);

$payload = ['message' => 'hello world 2'];
$token = jwt_encode($payload, $bpriv, 'RS512');
$decoded = jwt_decode($token, $bpub, ['algorithm' => 'RS512']); // segfault

The text was updated successfully, but these errors were encountered:

cdoco · 2019-01-11T09:01:06Z

Thanks. I fixed this bug in the develop branch.

Fix #23 -> Segfault with multiple jwt_decode using RSA

cdoco added the bug Something isn't working label Jan 11, 2019

cdoco closed this as completed in 1a4155b Jan 14, 2019

cdoco added a commit that referenced this issue Jan 14, 2019

Merge pull request #25 from cdoco/develop

bb99293

Fix #23 -> Segfault with multiple jwt_decode using RSA

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Segfault with multiple jwt_decode using RSA #23

Segfault with multiple jwt_decode using RSA #23

jchook commented Jan 10, 2019 •

edited

Loading

cdoco commented Jan 11, 2019

Segfault with multiple jwt_decode using RSA #23

Segfault with multiple jwt_decode using RSA #23

Comments

jchook commented Jan 10, 2019 • edited Loading

cdoco commented Jan 11, 2019

jchook commented Jan 10, 2019 •

edited

Loading