[9.0] Build duplicates of all installer packages for new signing keys#16050
Merged
hoyosjs merged 1 commit intodotnet:release/9.0from Sep 15, 2025
Merged
[9.0] Build duplicates of all installer packages for new signing keys#16050hoyosjs merged 1 commit intodotnet:release/9.0from
hoyosjs merged 1 commit intodotnet:release/9.0from
Conversation
jkoritzinsky
added
servicing-consider
rbhanda
added
servicing-approved
rbhanda
approved these changes
Sep 15, 2025
rbhanda
approved these changes
Sep 15, 2025
Member
|
Doesn't this also need the signing props changes to override the signing key? |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Port of #16049 to 9.0
Contributes to #16047
Make duplicate deb/rpm packages so we can sign them with the new PMC key
Description
PMC has added a new signing key for packages published to repositories for new Linux distributions they will add support for, such as Debian 13 and SLES vNext. Packages pushed to these feeds must be signed with the new key. Existing feeds will maintain the same keys. The .NET signing infrastructure requires us to have separate copies of the package files to have them signed with different keys. This PR introduces separate copies of the DEB and RPM installers to be signed with the new signing keys.
Contributes to #16047
Customer Impact
Without this change, we can't ship
.debinstallers for Debian 13. With this change, we can.Regression?
Risk
[Justify the selection above]
Verification
Packaging changes reviewed?