Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Nuget.exe Bug]: Package signing using USB eToken Certificate not supported #11930

Open
Willy-Kimura opened this issue Jun 30, 2022 · 3 comments
Open

[Nuget.exe Bug]: Package signing using USB eToken Certificate not supported #11930

Willy-Kimura opened this issue Jun 30, 2022 · 3 comments
Labels
Functionality:Signing Priority:3 Issues under consideration. With enough upvotes, will be reconsidered to be added to the backlog. Product:NuGet.exe NuGet.exe Type:Feature

Comments

@Willy-Kimura
Copy link

Impact

I'm unable to use NuGet.org

Describe the bug

NuGet package signing using nuegt.exe does not support or recognize cryptographic USB eTokens, only file-based key signing using p12/pfx files. Currently due to this it's literally impossible to upload any of my NuGet packages. The error raised is Key does not exist.

Repro Steps

Simply try using the nuget sign command to sign a package while your USB eToken is connected to your device.

Expected Behavior

The error raised upon trying to sign is Key does not exist.
This is even when the cryptographic USB eToken is connected.

Screenshots

No response

Additional Context and logs

No response
@Willy-Kimura Willy-Kimura changed the title [NuGet.org Bug]: Package signing using USB eTokens not supported [NuGet.org Bug]: Package signing using USB eToken Certificate not supported Jun 30, 2022
@joelverhagen
Copy link
Member

Hey @Willy-Kimura, this sounds like a problem related to nuget sign, a part of our client software, since it is about using a certificate for signing that isn't installed to the local machine store. I am going to move this issue to the NuGet/Home repo where we track client issues. NuGet/NuGetGallery is more for nuget.org specifically.

When you get a signed package, you should be able to extract your public .cer (certificate) file from the sign package and upload it to your NuGet.org account page to allow the upload of the signed package.

@joelverhagen joelverhagen transferred this issue from NuGet/NuGetGallery Jun 30, 2022
@Willy-Kimura Willy-Kimura changed the title [NuGet.org Bug]: Package signing using USB eToken Certificate not supported [nuget.exe Bug]: Package signing using USB eToken Certificate not supported Jul 1, 2022
@Willy-Kimura Willy-Kimura changed the title [nuget.exe Bug]: Package signing using USB eToken Certificate not supported [Nuget.exe Bug]: Package signing using USB eToken Certificate not supported Jul 1, 2022
@Willy-Kimura
Copy link
Author

Sure @joelverhagen

@erdembayar
Copy link
Contributor

It sounds feature request to me, but it's dependent on hardware/driver of usb device.
Probably best way of solving this is talk to vendor created the hardware/driver for usb device. Did you check their forum/website?

@erdembayar erdembayar added WaitingForCustomer Applied when a NuGet triage person needs more info from the OP Type:Feature and removed Type:DCR Design Change Request labels Jul 5, 2022
@erdembayar erdembayar mentioned this issue Jul 7, 2022
Open
@nkolev92 nkolev92 added Priority:3 Issues under consideration. With enough upvotes, will be reconsidered to be added to the backlog. Pipeline:Icebox and removed WaitingForCustomer Applied when a NuGet triage person needs more info from the OP labels Jul 7, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Functionality:Signing Priority:3 Issues under consideration. With enough upvotes, will be reconsidered to be added to the backlog. Product:NuGet.exe NuGet.exe Type:Feature
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@joelverhagen @nkolev92 @zivkan @erdembayar @Willy-Kimura @jeffkl