FS#70095 - [ca-certificates-mozilla] Certificate poblem makes it impossible to restore packages from MS
Attached to Project:
Arch Linux
Opened by Sergio Tridente (TioDuke) - Saturday, 20 March 2021, 18:25 GMT
Last edited by Toolybird (Toolybird) - Tuesday, 29 November 2022, 07:32 GMT
Opened by Sergio Tridente (TioDuke) - Saturday, 20 March 2021, 18:25 GMT
Last edited by Toolybird (Toolybird) - Tuesday, 29 November 2022, 07:32 GMT
|
Details
Description:
It is impossible to do a dotnet restore due to a known problem with Microsoft certificates not being trusted. The explanation for this problem can be found in the following link : https://github.com/NuGet/Announcements/issues/49 . Debian and Ubuntu have already issued a fix. Additional info: * package version(s) 3.63 * config and/or log files etc. * link to upstream bug report, if any Steps to reproduce: do a dotnet restore |
This task depends upon
Closed by Toolybird (Toolybird)
Tuesday, 29 November 2022, 07:32 GMT
Reason for closing: Fixed
Additional comments about closing: dotnet-core 5.0.5.sdk202-1
Tuesday, 29 November 2022, 07:32 GMT
Reason for closing: Fixed
Additional comments about closing: dotnet-core 5.0.5.sdk202-1
Edit:
If you follow [2] and [3] does that resolve the issue?
[1] https://github.com/nss-dev/nss/commit/955c8b357c25b39be233d93efdacc99f6b5796e1
[2] https://devblogs.microsoft.com/nuget/microsoft-author-signing-certificate-update/
[3] https://devblogs.microsoft.com/nuget/the-nuget-org-repository-signing-certificate-will-be-updated-as-soon-as-march-15th-2021/
You could also try locally installing the "VeriSign Universal Root Certification Authority" certificate.
Can you point me to any ressource that explains how to locally install a certificate, please?
Copy that into the /etc/ca-certificates/trust-source/anchors/ directory then update to ca-certificates-mozilla 3.63-1 which will run update-ca-trust extract.
For more details see https://man.archlinux.org/man/update-ca-trust.8
Could you test that? I can supply built packages if it helps.
I assume the nuget package is also affected?