Skip to content

Disable tests that require RSA+SHA-1 on platforms where RSA+SHA-1 is not available #15802

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
mmitche merged 1 commit into from
May 2, 2025
Merged

Disable tests that require RSA+SHA-1 on platforms where RSA+SHA-1 is not available #15802

mmitche merged 1 commit into from
May 2, 2025

Conversation

@vcsjones
Copy link
Member

@vcsjones vcsjones commented May 1, 2025
edited
Loading

This pull request disables a handful of tests that exercise strong name signing for platforms that no longer support the cryptographic algorithm used in strong name signing.

Strong name signing depends on the use of RSA+SHA-1 digital signatures, as required by ECMA 335. However, some Linux distributions are starting to block the use of RSA+SHA-1 in their distribution's OpenSSL. Implementations of strong name signing that use .NET's RSA functionality will be unable to sign or verify RSA+SHA-1 signatures on platforms that have explicitly chosen to disable it.

Following a similar pattern that was done for dotnet/runtime, this disables strong name tests on platforms that are unable to produce or verify RSA+SHA-1 signatures.

Alma Linux 9 was identified as one of the impacted platforms at #15790.

/cc @richlander @mmitche

@vcsjones
Copy link
Member Author

vcsjones commented May 1, 2025

Green build on Alma Linux 9.5:
Screenshot 2025-05-01 at 4 20 20 PM

@vcsjones vcsjones mentioned this pull request May 1, 2025
Merged
1 task
@bartonjs
Copy link
Member

bartonjs commented May 1, 2025

LGTM, but I'll let someone involved in SignTool have the checkmark authority.

mmitche
mmitche approved these changes May 2, 2025
View reviewed changes
Copy link
Member

@mmitche mmitche left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Love this solution. Awesome.

@mmitche mmitche merged commit 79d75fd into dotnet:main May 2, 2025
11 checks passed
@vcsjones vcsjones deleted the disable-sn-tests-on-unsupported-platforms branch May 2, 2025 15:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mmitche mmitche mmitche approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@vcsjones @bartonjs @mmitche