code: correct strstr assignments to compile with glibc 2.43

closes #73; thanks @Saur2000

Signed-off-by: Hans Zandbelt <hans.zandbelt@openidc.com>

Author: zandbelt

ChangeLog

@@ -1,5 +1,6 @@
 03/25/2026
-- use strncasecmp on content type when obtaining a token from POST; closes #72; thanks @roubert
+- proto: use strncasecmp on content type when obtaining a token from POST; closes #72; thanks @roubert
+- code: correct strstr assignments to compile with glibc 2.43; closes #73; thanks @Saur2000
 
 02/03/2026
 - code: assign strstr to char instead of const char to compile with globc 2.43

src/jose.c

@@ -993,7 +993,7 @@ char *oauth2_jose_jwt_header_peek(oauth2_log_t *log,
 {
 	char *input = NULL, *result = NULL;
 	json_t *json = NULL;
-	char *p = NULL;
+	const char *p = NULL;
 	size_t result_len;
 	char *rv = NULL;
 

test/check_openidc.c

@@ -226,7 +226,7 @@ _oauth2_check_openidc_idtoken_create(oauth2_log_t *log, cjose_jwk_t *jwk,
 static char *oauth2_check_openidc_serve_post(const char *request)
 {
 	oauth2_nv_list_t *params = NULL;
-	char *data = NULL;
+	const char *data = NULL;
 	const char *code = NULL;
 	const char *sep = "****";
 	char *rv = NULL;
@@ -235,7 +235,7 @@ static char *oauth2_check_openidc_serve_post(const char *request)
 	if (strncmp(request, token_endpoint_path,
 		    strlen(token_endpoint_path)) == 0) {
 		request += strlen(token_endpoint_path) + 5;
-		data = strstr((char *)request, sep);
+		data = strstr(request, sep);
 		if (data == NULL)
 			goto error;
 		data += strlen(sep);
@@ -821,7 +821,7 @@ static void _openidc_verify_authentication_request_state(
 {
 	bool rc = false;
 	const char *location = NULL;
-	char *state = NULL;
+	const char *state = NULL;
 
 	ck_assert_ptr_ne(NULL, response);
 	ck_assert_uint_eq(oauth2_http_response_status_code_get(_log, response),