[3.0] libjwt: add new package v1.12.1 (Fedora import) [DRAFT]#17721
Draft
sindhu-karri wants to merge 1 commit into
Draft
[3.0] libjwt: add new package v1.12.1 (Fedora import) [DRAFT]#17721sindhu-karri wants to merge 1 commit into
sindhu-karri wants to merge 1 commit into
Conversation
Imports libjwt 1.12.1 spec from Fedora rawhide (Fedora 44), with the
following AZL-specific adaptations:
- Add Vendor / Distribution tags.
- Restamp Release to 1, replace Fedora changelog with single AZL
initial-import entry.
- Use %ldconfig_scriptlets (AZL convention).
- Pin devel Requires to jansson-devel / openssl-devel.
- Tighten %files (libjwt.so.* instead of *.so.1*).
- Source0 renamed to %{name}-%{version}.tar.gz via #/ fragment for
blob-store conventions.
- Drop Fedora-only changelog history.
The without_examples.patch (sourced verbatim from Fedora) wires up the
--without-examples configure flag that upstream ships but doesn't honor,
so the example binaries (jwtgen, jwtauth) are not built or installed.
Required by slurmrestd (Slurm REST API daemon) for JWT-based REST
authentication. Tracked via ADO #61504121.
cgmanifest.json updated for Component Governance.
LICENSES-MAP / licenses.json regenerated (libjwt classified under
Fedora bucket).
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
microsoft-github-policy-service
Bot
added
Packaging
specs-extended
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Adds libjwt 1.12.1 (MPL-2.0) to
SPECS-EXTENDED/for Azure Linux 3.0, imported from Fedora 44 (src.fedoraproject.org/rpms/libjwt, Release 22 at the time of import).Why a Fedora-import variant?
PR #17691 ships the same package as a hand-authored spec. That works, but a verbatim Fedora import gives us:
without_examples.patchthat properly disables buildingjwtgen/jwtauth(wires up the broken--without-examplesflag inconfigure.ac+Makefile.am) instead of ourrmworkaround in%installLICENSES-MAP.md(the more common case)AZL-specific deltas vs upstream Fedora spec
Vendor: Microsoft Corporation+Distribution: Azure LinuxtagsRelease: 1reset; single AZL changelog entry replacing 22 Fedora entriesSource0renamed via#/%{name}-%{version}.tar.gzfragment to match blob-store convention%ldconfig_scriptletsmacro (AZL/RHEL convention; Fedora omits it because it's implicit)Requires: jansson-devel/openssl-develadded to the devel subpackage (Fedora omits — relies on transitive)%filestightened from*.so.1*tolibjwt.so.*%doc README.mdinstead of%doc *.md(more explicit)Tracking
Package details
1.12.1libjwt(runtime.so.1),libjwt-devel(headers +pkgconfig(libjwt) = 1.12.1)SPECS-EXTENDED/Dependencies
All build/runtime deps already in AZL 3.0 base, no other new packages needed:
autoconf,automake,libtool,gcc,makejansson-devel,openssl-develCVE posture
NVD lists 3 CVEs in libjwt's history; none apply to 1.12.1:
1.15.3only.Validation
rpmbuild -ba(WSL): clean build,without_examples.patchapplies cleanly, no example binaries leak into%{buildroot}%{_bindir}.libjwt.signatures.json(same tarball as [3.0] libjwt: add new package v1.12.1 (slurmrestd JWT auth) #17691, already in blob store via build 1136607).Buddy build will be triggered next.
cc @trcooper for CycleCloud team awareness.