Skip to content

Commit e0e14d8

Browse files
mmitchemmitche
committed
Use dotnet certificate
1 parent 1755ed9 commit e0e14d8

File tree

1 file changed

+20
-15
lines changed

1 file changed

+20
-15
lines changed

eng/Signing.props

Lines changed: 20 additions & 15 deletions
Original file line numberDiff line numberDiff line change
@@ -9,6 +9,11 @@
99
<FileExtensionSignInfo Remove="@(FileExtensionSignInfo)" />
1010
</ItemGroup>
1111

12+
<PropertyGroup>
13+
<!-- Use the dotnet certificate for any remaining defaults (e.g. StrongNameSignInfo) -->
14+
<UseDotNetCertificate>true</UseDotNetCertificate>
15+
</PropertyGroup>
16+
1217
<!-- Files that should be always be signed between in-build and post-build signing -->
1318
<ItemGroup Label="Common Files to Sign">
1419
<CommonFilesToSign Include="$(ArtifactsPackagesDir)**\*.nupkg" />
@@ -52,30 +57,30 @@
5257
"None" means don't sign the file itself, but still scan the contents for signable files.
5358
-->
5459
<FileExtensionSignInfo Include=".jar" CertificateName="MicrosoftJARSHA2" />
55-
<FileExtensionSignInfo Include=".ps1;.psd1;.psm1;.psc1" CertificateName="Microsoft400" />
56-
<FileExtensionSignInfo Include=".dll;.exe" CertificateName="Microsoft400" />
60+
<FileExtensionSignInfo Include=".ps1;.psd1;.psm1;.psc1" CertificateName="MicrosoftDotNet500" />
61+
<FileExtensionSignInfo Include=".dll;.exe" CertificateName="MicrosoftDotNet500" />
5762
<FileExtensionSignInfo Include=".nupkg" CertificateName="NuGet" />
5863
<FileExtensionSignInfo Include=".vsix" CertificateName="VsixSHA2" />
5964
<FileExtensionSignInfo Include=".zip" CertificateName="None" />
6065
<FileExtensionSignInfo Include=".cab" CertificateName="None" />
6166
<!-- If doing post build sign, explicitly give MSIs a cert. If doing in build signing,
6267
this is handled by the wix targets, and .msi should be "None" -->
63-
<FileExtensionSignInfo Include=".msi" CertificateName="Microsoft400" Condition="'$(PostBuildSign)' == 'true'" />
68+
<FileExtensionSignInfo Include=".msi" CertificateName="MicrosoftDotNet500" Condition="'$(PostBuildSign)' == 'true'" />
6469
<FileExtensionSignInfo Include=".msi" CertificateName="None" Condition="'$(PostBuildSign)' != 'true'" />
6570

6671
<!-- Native .dll's. These don't have a public key token, but are from Microsoft and should be signed. -->
67-
<FileSignInfo Include="aspnetcore.dll" CertificateName="Microsoft400" />
68-
<FileSignInfo Include="aspnetcorev2_inprocess.dll" CertificateName="Microsoft400" />
69-
<FileSignInfo Include="aspnetcorev2_outofprocess.dll" CertificateName="Microsoft400" />
70-
<FileSignInfo Include="aspnetcorev2.dll" CertificateName="Microsoft400" />
71-
<FileSignInfo Include="blazor-devserver.exe" CertificateName="Microsoft400" />
72-
<FileSignInfo Include="dotnet-dev-certs.exe" CertificateName="Microsoft400" />
73-
<FileSignInfo Include="dotnet-sql-cache.exe" CertificateName="Microsoft400" />
74-
<FileSignInfo Include="dotnet-user-secrets.exe" CertificateName="Microsoft400" />
75-
<FileSignInfo Include="dotnet-watch.exe" CertificateName="Microsoft400" />
76-
<FileSignInfo Include="dotnet-openapi.exe" CertificateName="Microsoft400" />
77-
<FileSignInfo Include="Microsoft.AspNetCore.Blazor.Build.exe" CertificateName="Microsoft400" />
78-
<FileSignInfo Include="sni.dll" CertificateName="Microsoft400" />
72+
<FileSignInfo Include="aspnetcore.dll" CertificateName="MicrosoftDotNet500" />
73+
<FileSignInfo Include="aspnetcorev2_inprocess.dll" CertificateName="MicrosoftDotNet500" />
74+
<FileSignInfo Include="aspnetcorev2_outofprocess.dll" CertificateName="MicrosoftDotNet500" />
75+
<FileSignInfo Include="aspnetcorev2.dll" CertificateName="MicrosoftDotNet500" />
76+
<FileSignInfo Include="blazor-devserver.exe" CertificateName="MicrosoftDotNet500" />
77+
<FileSignInfo Include="dotnet-dev-certs.exe" CertificateName="MicrosoftDotNet500" />
78+
<FileSignInfo Include="dotnet-sql-cache.exe" CertificateName="MicrosoftDotNet500" />
79+
<FileSignInfo Include="dotnet-user-secrets.exe" CertificateName="MicrosoftDotNet500" />
80+
<FileSignInfo Include="dotnet-watch.exe" CertificateName="MicrosoftDotNet500" />
81+
<FileSignInfo Include="dotnet-openapi.exe" CertificateName="MicrosoftDotNet500" />
82+
<FileSignInfo Include="Microsoft.AspNetCore.Blazor.Build.exe" CertificateName="MicrosoftDotNet500" />
83+
<FileSignInfo Include="sni.dll" CertificateName="MicrosoftDotNet500" />
7984

8085
<!-- Third-party components which should be signed. -->
8186
<FileSignInfo Include="Newtonsoft.Json.dll" CertificateName="3PartySHA2" />

0 commit comments

Comments
 (0)