[3.0] libjwt: add new package v1.12.1 (slurmrestd JWT auth)#17691
Open
sindhu-karri wants to merge 3 commits into
Open
[3.0] libjwt: add new package v1.12.1 (slurmrestd JWT auth)#17691sindhu-karri wants to merge 3 commits into
sindhu-karri wants to merge 3 commits into
Conversation
Adds libjwt 1.12.1 (MPL-2.0) to SPECS-EXTENDED for Azure Linux 3.0. Required by slurmrestd (Slurm REST API daemon) for JWT-based authentication of REST callers. Build deps (jansson-devel, openssl-devel, autoconf, automake, libtool, gcc, make) are all already available in the AZL 3.0 base repo. Tracked via ADO #61504121 (UKMO Supercomputer engagement). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Verified with rpmbuild -ba: produces clean libjwt + libjwt-devel RPMs. libjwt-devel provides pkgconfig(libjwt) = 1.12.1, satisfying Slurm --with-jwt. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
microsoft-github-policy-service
Bot
added
Packaging
specs-extended
Use the validator-recognized 'Initial Azure Linux import from the source project (license: same as "License" tag)' wording in the changelog (import is from upstream GitHub, not Fedora), and regenerate the LICENSES-MAP / licenses.json so the Spec License Map Check sees libjwt under the 'Source project' bucket. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Adds libjwt 1.12.1 (MPL-2.0) to
SPECS-EXTENDED/for Azure Linux 3.0.Why
Required by slurmrestd (Slurm REST API daemon) so the Azure CycleCloud team can build Slurm with JWT-based REST authentication on AZL 3.0. Without
libjwt-develin PMC, Slurm'sconfigure --with-jwtsilently disables JWT, leavingslurmrestdunable to authenticate REST callers.Unblocks the UKMO Supercomputer engagement (contractual obligation to expose Scheduler via REST API).
Tracking
Package details
1.12.1(satisfies Slurm's required range>=1.10.0, <2.0)libjwt(runtime.so.1),libjwt-devel(headers +pkgconfig(libjwt) = 1.12.1)SPECS-EXTENDED/— not consumed by the base image, modeled on the existing JOSE-family neighborcjoseDependencies
All build/runtime deps already in AZL 3.0 base, no other new packages needed:
autoconf,automake,libtool,gcc,makejansson-devel(already in baseSPECS/jansson)openssl-devel(already in baseSPECS/openssl)CVE posture
NVD lists 3 CVEs in libjwt's history; none apply to 1.12.1:
1.15.3only.Same version Fedora / EPEL ships.
cgmanifest.jsonupdated for Component Governance.Validation
rpmbuild -baproduces cleanlibjwt+libjwt-develRPMs with correctpkgconfig(libjwt) = 1.12.1and no unpackaged files.libjwt.signatures.json.azurelinuxsrcstorage: Source Publish build 1136607%check): Build 1136609cc @trcooper for CycleCloud team awareness.