You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I'm validating a package signed with a self-signed-certificate that is trusted in nuget.config with allowUntrustedRoot=true
I can add/restore with dotnet on Windows, but in Linux it fails with
The author primary signature found a chain building issue: PartialChain: unable to get local issuer certificate
```
dotnet add package System.Rido -v 1.0.8-pre
Determining projects to restore...
Writing /tmp/tmpn6Jdws.tmp
info : Adding PackageReference for package 'System.Rido' into project '/home/rido/code/secure-packages-demo/MyConsoleApp/MyConsoleApp.csproj'.
info : Restoring packages for /home/rido/code/secure-packages-demo/MyConsoleApp/MyConsoleApp.csproj...
info : CACHE https://api.nuget.org/v3-flatcontainer/microsoft.aspnetcore.app.ref/index.json
info : CACHE https://api.nuget.org/v3-flatcontainer/microsoft.netcore.app.ref/index.json
info : Installing Microsoft.NETCore.App.Ref 3.0.0.
info : CACHE https://api.nuget.org/v3-flatcontainer/microsoft.netcore.app.ref/3.0.0/microsoft.netcore.app.ref.3.0.0.nupkg
info : Installing Microsoft.AspNetCore.App.Ref 3.0.1.
info : CACHE https://api.nuget.org/v3-flatcontainer/microsoft.aspnetcore.app.ref/3.0.1/microsoft.aspnetcore.app.ref.3.0.1.nupkg
info : Installing System.Rido 1.0.8-pre.
info : Package 'System.Rido 1.0.8-pre' from source '/home/rido/code/secure-packages-demo/_pkgs': Signature Hash Algorithm: SHA256
info : Package 'System.Rido 1.0.8-pre' from source '/home/rido/code/secure-packages-demo/_pkgs': Timestamp: 03/10/2019 23:25:34
info : Package 'System.Rido 1.0.8-pre' from source '/home/rido/code/secure-packages-demo/_pkgs': Verifying author primary signature's timestamp with timestamping service certificate:
info : Subject Name: CN=DigiCert SHA2 Timestamp Responder, O=DigiCert, C=US
info : SHA1 hash: 400191475C98891DEBA104AF47091B5EB6D4CBCB
info : SHA256 hash: FC834D5BFFDE31DBA5B79BF95F573F7953BCBF9156E8525163E828EB92EA8A93
info : Issued by: CN=DigiCert SHA2 Assured ID Timestamping CA, OU=www.digicert.com, O=DigiCert Inc, C=US
info : Valid from: 01/03/2017 16:00:00 to 01/17/2028 16:00:00
info : Package 'System.Rido 1.0.8-pre' from source '/home/rido/code/secure-packages-demo/_pkgs': Signature type: Author
info : Package 'System.Rido 1.0.8-pre' from source '/home/rido/code/secure-packages-demo/_pkgs': Verifying the author primary signature with certificate:
info : Subject Name: CN=Ringo, OU=Beatles
info : SHA1 hash: F275ADE1D47A0419AC8B5F93D41932E8C3FE8B97
info : SHA256 hash: F6B6EF6F6A9C60BC4B0A181A140C8CF1BA849B30C500FDD44F77A4C1672904B3
info : Issued by: CN=Ringo, OU=Beatles
info : Valid from: 02/13/2019 14:55:24 to 02/13/2020 15:15:24
error: Package 'System.Rido 1.0.8-pre' from source '/home/rido/code/secure-packages-demo/_pkgs': The author primary signature found a chain building issue: PartialChain: unable to get local issuer certificate
info : Package 'System.Rido' is compatible with all the specified frameworks in project '/home/rido/code/secure-packages-demo/MyConsoleApp/MyConsoleApp.csproj'.
error: Value cannot be null. (Parameter 'path1')
```
This is not an issue.
The self-signed certificate will not be trusted unless the X509KeyUsageFlags.CrlSign and X509KeyUsageFlags.KeyCertSign are set, for Linux only.
Pls refer to #8841
I'm validating a package signed with a self-signed-certificate that is trusted in nuget.config with
allowUntrustedRoot=true
I can add/restore with dotnet on Windows, but in Linux it fails with
Repro Steps
dotnet new console -o myConsole
dotnet add package System.Rido -v 1.0.8-pre
Expected. The package is installed (same behavior as in Windows)
Observed. The error above
Sample NuGet.Config
The text was updated successfully, but these errors were encountered: