-
Notifications
You must be signed in to change notification settings - Fork 4.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Build issue on Gentoo #51640
Comments
I couldn't figure out the best area label to add to this issue. If you have write-permissions please help me learn by adding exactly one area label. |
Tagging subscribers to this area: @dotnet/runtime-infrastructure Issue DetailsDescriptionI'm on Gentoo with
Error appears when I run When I build other projects, for example https://github.com/KirillOsenkov/MSBuildStructuredLog project builds ok. Configuration
|
Might not be a coincidence that the cert to sign that package expired about a week ago: @mmitche @markwilkie @tmat Should Arcade update the version referenced by default? |
Yea, somehow I thought we were floating the microbuild version. Adding FR @dotnet/dnceng |
Don't we? I don't see a specific version here: https://github.com/dotnet/arcade/blob/e7ede87875f41a9b3df898ae08da5ebc96e24f56/eng/common/templates/job/job.yml#L104-L115 |
@mmitche read above for the packages that are failing restore and where their version is specified. It's not clear to me why more people wouldn't be seeing this, is it just that their machines previously downloaded these packages before they expired? Is there something different about NuGet validation policy? Also, isn't it a problem that NuGet didn't put a timestamp (presumably) when signing those packages? Signatures aren't expected to expire when the cert expires, that should only happen if the signature was missing a timestamp to prove that it was signed before expiration. @nkolev92 @anangaur |
Interesting, if manually verify with the latest nuget.exe on Windows it does verify:
Note Perhaps something about NuGet on Gentoo isn't seeing that timestamp? |
Isn't this NuGet/Announcements#56 ? dotnet/runtime's global.json requires 6.0-preview2 right now, but preview3 fixes the issue. Line 8 in 1132baa
If only 5.0.202 is installed, IIRC https://github.com/KirillOsenkov/MSBuildStructuredLog doesn't have a global.json requiring a specific SDK version, so it wouldn't hit this because it can use the existing 5.0.202 install, which does have the fix per the announcement. (Nerd-sniped by the double-dnceng ping....) |
@ViktorHofer it seems like we might want to bump the required SDK to 6.0-preview3 for the next infra batch? |
That change just went in to arcade. |
Such a lively discussion. Thanks for prompt replies. Changes in global.json unblocks me. |
Unblocked by the SDK upgrade. We believe this is already or will be serviced for 5.0 and 3.x as well. Closing as not actionable by us. |
Description
I'm on Gentoo with
app-misc/ca-certificates-20210119.3.64
which appears include fix for certificates. Still I receiveError appears when I run
./build.sh
.When I build other projects, for example https://github.com/KirillOsenkov/MSBuildStructuredLog project builds ok.
So that gives impression that my local machine is ok, and issue probable related to AzureDevOps repository.
Configuration
The text was updated successfully, but these errors were encountered: