Skip to content

libjwt: update to 3.3.2#29367

Open
dangowrt wants to merge 1 commit intoopenwrt:masterfrom
dangowrt:libjwt-3.3.2
Open

libjwt: update to 3.3.2#29367
dangowrt wants to merge 1 commit intoopenwrt:masterfrom
dangowrt:libjwt-3.3.2

Conversation

@dangowrt
Copy link
Copy Markdown
Member

@dangowrt dangowrt commented May 8, 2026

📦 Package Details

Maintainer: @dangowrt

Description:
Update libjwt to 3.3.2.

Major version jump from 1.17.1 to 3.3.2.

libjwt 3.x is a substantial rewrite:

  • New backend abstraction supporting OpenSSL, GnuTLS and MbedTLS
    crypto libraries (selected at build time).
  • New JWK and JWKS APIs for key handling with full RFC 7517 support.
  • Improved error handling and reporting.
  • EdDSA signature support (Ed25519, Ed448).
  • Optional libcurl integration for fetching JWKS from a URL.
  • Many API additions while keeping backwards-compatible semantics
    for the most common HMAC/RSA/ECDSA operations.

Force OpenSSL backend (-DWITH_GNUTLS=OFF -DWITH_MBEDTLS=OFF)
since libopenssl is already a dependency, avoiding pulling in
libgnutls. Disable -DWITH_TESTS=OFF since the testsuite is not
relevant for embedded targets.

Upstream:

🧪 Run Testing Details

  • OpenWrt Version: master
  • OpenWrt Target/Subtarget: mediatek/filogic
  • OpenWrt Device: (compile-only, no runtime testing)

✅ Formalities

  • I have reviewed the CONTRIBUTING.md file for detailed contributing guidelines.

@dangowrt
libjwt: update to 3.3.2
2c3835c 
Major version jump from 1.17.1 to 3.3.2.

libjwt 3.x is a substantial rewrite:
 * New backend abstraction supporting OpenSSL, GnuTLS and MbedTLS
   crypto libraries (selected at build time).
 * New JWK and JWKS APIs for key handling with full RFC 7517 support.
 * Improved error handling and reporting.
 * EdDSA signature support (Ed25519, Ed448).
 * Optional libcurl integration for fetching JWKS from a URL.
 * Many API additions while keeping backwards-compatible semantics
   for the most common HMAC/RSA/ECDSA operations.

Force OpenSSL backend (-DWITH_GNUTLS=OFF -DWITH_MBEDTLS=OFF) since
libopenssl is already a dependency, avoiding pulling in libgnutls.
Disable -DWITH_TESTS=OFF since the testsuite is not relevant for
embedded targets.

Link: https://github.com/benmcollins/libjwt/releases/tag/v3.3.2
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@dangowrt