stackoom
  简体   繁体   中英

Error - Install-Package : Authenticode issuer 'System.Object[]' when running Update-Module on local package repository

 原文  2018-11-12 19:41:04       powershell/ nuget-package

Question

We've set up a Nuget style package repository for our locally produced tools at work. This is done via a file share. However, the module that I am attempting to update is throwing an error about the authenticode signature of the old version not matching the publisher of the new version.

  1. The signing certificate is from our AD PKI system and is trusted and it does not change/has not changed in any way.

  2. Obviously using -SkipPublisherCheck is a viable workaround but that is not a long-term solution.

  3. I receive no errors or warnings on the initial installation of the package. Only when performing the update.

  4. On the signing machine there are only 3 certificates and all three are in the LocalMachine store. They do not have the same subject (this is mentioned as a possible cause on some sites I found via Google)

Code 

$cert = get-ChildItem Cert:\LocalMachine\My\5B3B66061B02EBF0986CF7969F36C6FB58060046
Set-AuthenticodeSignature "C:\Jenkins\workspace\Scripts - Master\MyModule_Src\dist\MyModule\MyModule.psm1" -Certificate $cert
#... Pester tests
Publish-Module -Name MyModule -Repository ORGPSGet -Verbose -force

Error Message 

PackageManagement\Install-Package : Authenticode issuer 'System.Object[]' of the new module 'MyModule' with version
'4.0.4' is not matching with the authenticode issuer 'System.Object[]' of the previously-installed module 'MyModule'
with version '4.0.3'. If you still want to install or update, use -SkipPublisherCheck parameter.
At C:\Program Files\WindowsPowerShell\Modules\PowerShellGet\1.0.0.1\PSModule.psm1:2089 char:20
+ ...           $sid = PackageManagement\Install-Package @PSBoundParameters
+                      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : InvalidOperation: (Microsoft.Power....InstallPackage:InstallPackage) [Install-Package], Exc
   eption
    + FullyQualifiedErrorId : AuthenticodeIssuerMismatch,Validate-ModuleAuthenticodeSignature,Microsoft.PowerShell.Packag
   eManagement.Cmdlets.InstallPackage

1 answers

solution1
 0 ACCPTED  2018-11-13 15:09:19

Based on the error message I assumed that there was something about the signature that PowerShell was either expecting multiple certificates and not finding it or that there were multiple certificates in the signature and PowerShell did not like that. I added -IncludeChain signer to the signing command and then after rerunning the build, I was able to use the Update-Module command as expected. 

Set-AuthenticodeSignature "C:\Jenkins\workspace\Scripts - Master\MyModule_Src\dist\MyModule\MyModule.psm1" -Certificate $cert -IncludeChain signer

See the docs for more details.

https://docs.microsoft.com/en-us/powershell/module/microsoft.powershell.security/set-authenticodesignature?view=powershell-6

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Error: Install-Package Authenticode issuer in PowerShell module Unable to find repository on Update-Module (Install-Module/Install-Package) cmdlets fail to install a module/package that is not "catalog signed" by the publisher adding custom parameter to install-package Find-Package works but Install-Package shows only nuget error using chocolatey in powershell Skip confirmation while using Install-Package? Powershell Install-Package from Nuget Install-Package & NuGet Package install location - where installed to? What is the difference betwee “nuget install” , “Install-Package” and “choco install”? How can I create executable package for OneGet Install-Package?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM