Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

.NET 8 SDK: enable signed package verification by default on Linux #5006

Merged
merged 1 commit into from
Jan 18, 2023
Merged

.NET 8 SDK: enable signed package verification by default on Linux #5006

merged 1 commit into from
Jan 18, 2023

Conversation

dtivel
Copy link
Contributor

@dtivel dtivel commented Jan 12, 2023
edited
Loading

Bug

Fixes: NuGet/Home#11262

Regression? Last working version:

Description

This change re-enables signed package verification by default on Linux for .NET 8 SDK Preview 1. Verification remains disabled by default on macOS.

With this .NET 7 SDK-era change, there are no known major blockers to enabling verification by default on Linux. As always, the DOTNET_NUGET_SIGNATURE_VERIFICATION environment variable provides an escape hatch, if necessary.

CC @aortiz-msft, @skofman1, @richlander

PR Checklist

@dtivel dtivel requested a review from a team as a code owner January 12, 2023 17:40
erdembayar
erdembayar previously approved these changes Jan 12, 2023
View reviewed changes
@dtivel dtivel force-pushed the dev-dtivel-enable-by-default branch from 86af347 to 6054803 Compare January 13, 2023 12:45
@richlander
Copy link

Does the .NET 8 overall plan include the split of the CTL into two files? As I recall, the lack of that approach was the problem we ran into earlier.

@dtivel
Copy link
Contributor Author

dtivel commented Jan 18, 2023

@richlander, yes, .NET 8 SDK already has the 2 separate CTL files, as described here.

@dtivel dtivel merged commit 9836b44 into dev Jan 18, 2023
@dtivel dtivel deleted the dev-dtivel-enable-by-default branch January 18, 2023 12:12
dtivel added a commit that referenced this pull request Jan 26, 2023
@dtivel
Revert "Signing: enable signature verification by default on Linux in…
a304e70 
… .NET 8 SDK (#5006)"

This reverts commit 9836b44.
aortiz-msft pushed a commit that referenced this pull request Jan 26, 2023
@dtivel
Revert "Signing: enable signature verification by default on Linux in…
098dab6 
… .NET 8 SDK (#5006)" (#5036)

This reverts commit 9836b44.
dtivel added a commit that referenced this pull request Jan 27, 2023
@dtivel
Signing: enable signature verification by default on Linux in .NET 8 …
0f6ecf7 
…SDK (#5006)

Resolve NuGet/Home#11262.
dtivel added a commit that referenced this pull request Jan 30, 2023
@dtivel
Signing: enable signature verification by default on Linux in .NET 8 …
4135711 
…SDK (#5006)

Resolve NuGet/Home#11262.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@erdembayar erdembayar erdembayar approved these changes

@jeffkl jeffkl jeffkl approved these changes

@donnie-msft donnie-msft donnie-msft approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Signing: re-enable signed package verification on Linux and macOS
5 participants
@dtivel @richlander @erdembayar @jeffkl @donnie-msft