Merge pull request #273 from NuGet/dev

[ReleasePrep][2017.12.04] RI of dev into master

Author: loic-sharma

src/NuGet.Jobs.Common/JobRunner.cs

@@ -7,7 +7,6 @@
 using System.Diagnostics;
 using System.Linq;
 using System.Net;
-using System.Threading;
 using System.Threading.Tasks;
 using Microsoft.Extensions.Logging;
 using NuGet.Services.Logging;
@@ -163,7 +162,7 @@ private static async Task JobLoop(JobBase job, bool runContinuously, int sleepDu
                 // Wait for <sleepDuration> milliSeconds and run the job again
                 _logger.LogInformation("Will sleep for {SleepDuration} before the next Job run", PrettyPrintTime(sleepDuration));
 
-                Thread.Sleep(sleepDuration);
+                await Task.Delay(sleepDuration);
             }
         }
     }

src/NuGet.Services.Validation.Orchestrator/NuGet.Services.Validation.Orchestrator.csproj

@@ -125,22 +125,22 @@
       <Version>1.1.2</Version>
     </PackageReference>
     <PackageReference Include="NuGet.Services.Configuration">
-      <Version>2.4.3</Version>
+      <Version>2.5.0</Version>
     </PackageReference>
     <PackageReference Include="NuGet.Services.Contracts">
-      <Version>2.4.3</Version>
+      <Version>2.5.0</Version>
     </PackageReference>
     <PackageReference Include="NuGet.Services.KeyVault">
-      <Version>2.4.3</Version>
+      <Version>2.5.0</Version>
     </PackageReference>
     <PackageReference Include="NuGet.Services.Logging">
-      <Version>2.4.3</Version>
+      <Version>2.5.0</Version>
     </PackageReference>
     <PackageReference Include="NuGet.Services.ServiceBus">
-      <Version>2.4.3</Version>
+      <Version>2.5.0</Version>
     </PackageReference>
     <PackageReference Include="NuGet.Services.Validation">
-      <Version>2.4.3</Version>
+      <Version>2.5.0</Version>
     </PackageReference>
     <PackageReference Include="NuGet.Versioning">
       <Version>4.3.0</Version>

src/NuGet.Services.Validation.Orchestrator/PackageCertificates/CertificateVerificationEnqueuer.cs

@@ -18,7 +18,7 @@ public CertificateVerificationEnqueuer(ITopicClient topicClient)
             _topicClient = topicClient ?? throw new ArgumentNullException(nameof(topicClient));
         }
 
-        public async Task EnqueueVerificationAsync(IValidationRequest request, Certificate certificate)
+        public async Task EnqueueVerificationAsync(IValidationRequest request, EndCertificate certificate)
         {
             var message = new CertificateValidationMessage(certificate.Key, request.ValidationId);
             var brokeredMessage = _serializer.Serialize(message);

src/NuGet.Services.Validation.Orchestrator/PackageCertificates/ICertificateVerificationEnqueuer.cs

@@ -12,13 +12,13 @@ public interface ICertificateVerificationEnqueuer
     {
         /// <summary>
         /// Kicks off the certificate verification process for the given request. Verification will begin when the
-        /// <see cref="ValidationEntitiesContext"/> has a <see cref="CertificateValidation"/> that matches the
+        /// <see cref="ValidationEntitiesContext"/> has a <see cref="EndCertificateValidation"/> that matches the
         /// <see cref="IValidationRequest"/>'s validationId. Once verification completes, the <see cref="CertificateValidation"/>'s
         /// State will be updated to a non-NULL value.
         /// </summary>
         /// <param name="request">The request that details the package to be verified.</param>
         /// <param name="certificate">The certificate to verify.</param>
         /// <returns>A task that will complete when the verification process has been queued.</returns>
-        Task EnqueueVerificationAsync(IValidationRequest request, Certificate certificate);
+        Task EnqueueVerificationAsync(IValidationRequest request, EndCertificate certificate);
     }
 }

src/NuGet.Services.Validation.Orchestrator/PackageCertificates/PackageCertificatesValidator.cs

@@ -224,7 +224,7 @@ private Task<List<PackageSignature>> FindSignaturesAsync(IValidationRequest requ
                         .PackageSignatures
                         .Where(s => s.PackageKey == request.PackageKey)
                         .Include(s => s.TrustedTimestamps)
-                        .Include(s => s.Certificate)
+                        .Include(s => s.EndCertificate)
                         .ToListAsync();
         }
 
@@ -249,13 +249,13 @@ private void PromoteSignatures(IEnumerable<PackageSignature> signatures)
         /// <returns>True if the signature should be "Valid", false if it should be "InGracePeriod".</returns>
         private bool IsValidSignatureOutOfGracePeriod(PackageSignature signature)
         {
-            var certificate = signature.Certificate;
+            var certificate = signature.EndCertificate;
 
             // A signature can be valid even if its certificate is revoked as long as the certificate
             // revocation date begins after the signature was created. The validation pipeline does
             // not revalidate revoked certificates, thus, a valid package signature with a revoked
             // certificate should be "Valid" regardless of the certificate's status update time.
-            if (certificate.Status == CertificateStatus.Revoked)
+            if (certificate.Status == EndCertificateStatus.Revoked)
             {
                 return true;
             }
@@ -284,14 +284,14 @@ private IEnumerable<PackageSignature> FindSignaturesToInvalidate(IEnumerable<Pac
                     {
                         // Revalidation requests do NOT revalidate certificates that are known to be revoked. Thus,
                         // certificates that were revoked before the package was signed ALWAYS invalidate the signature.
-                        if (s.Certificate.Status == CertificateStatus.Revoked)
+                        if (s.EndCertificate.Status == EndCertificateStatus.Revoked)
                         {
-                            return s.TrustedTimestamps.Any(t => s.Certificate.RevocationTime.Value <= t.Value);
+                            return s.TrustedTimestamps.Any(t => s.EndCertificate.RevocationTime.Value <= t.Value);
                         }
 
                         // Revalidation requests will revalidate invalid certificates. Therefore, invalid certificates
                         // should invalidate the signature only if this is not a revalidation request.
-                        if (s.Certificate.Status == CertificateStatus.Invalid)
+                        if (s.EndCertificate.Status == EndCertificateStatus.Invalid)
                         {
                             return !isRevalidationRequest;
                         }
@@ -330,14 +330,14 @@ private void InvalidatePackageSignatures(IValidationRequest request, PackageSign
         /// <param name="signatures">The signatures used to sign the package requested by the validation request.</param>
         /// <param name="isRevalidationRequest">Whether this package has already been validated.</param>
         /// <returns>The certificates used to sign the package that should be validated.</returns>
-        private IEnumerable<Certificate> FindCertificatesToValidateAsync(IEnumerable<PackageSignature> signatures, bool isRevalidationRequest)
+        private IEnumerable<EndCertificate> FindCertificatesToValidateAsync(IEnumerable<PackageSignature> signatures, bool isRevalidationRequest)
         {
             // Get all the certificates used to sign the signatures. Note that revoked certificates
             // should NEVER be revalidated as Certificate Authorities may, under certain conditions,
             // drop a revoked certificate's revocation information. Revalidating such a revoked
             // certificate would cause the certificate to be marked as "Good" when in reality it
             // should remain revoked.
-            var certificates = signatures.Select(s => s.Certificate).Where(c => c.Status != CertificateStatus.Revoked);
+            var certificates = signatures.Select(s => s.EndCertificate).Where(c => c.Status != EndCertificateStatus.Revoked);
 
             // Skip certificates that have been validated recently unless this is a revalidation request.
             if (!isRevalidationRequest)
@@ -353,7 +353,7 @@ private IEnumerable<Certificate> FindCertificatesToValidateAsync(IEnumerable<Pac
         /// </summary>
         /// <param name="certificate">The certificate that may be revalidated.</param>
         /// <returns>Whether the certificate should be revalidated.</returns>
-        private bool ShouldValidateCertificate(Certificate certificate)
+        private bool ShouldValidateCertificate(EndCertificate certificate)
         {
             // Validate the certificate only if it has never been validated before, or, if
             // its last validation time is past the maximum revalidation threshold.
@@ -368,24 +368,24 @@ private bool ShouldValidateCertificate(Certificate certificate)
         }
 
         /// <summary>
-        /// Enqueue certificate verifications and add <see cref="CertificateValidation"/> entities
+        /// Enqueue certificate verifications and add <see cref="EndCertificateValidation"/> entities
         /// for each validation. Note that this does NOT save the entity context!
         /// </summary>
         /// <param name="request">The package validation request.</param>
         /// <param name="certificates">The certificates that should be verified.</param>
         /// <returns>A task that completes when all certificate verifications have been enqueued.</returns>
-        private Task StartCertificateValidationsAsync(IValidationRequest request, IEnumerable<Certificate> certificates)
+        private Task StartCertificateValidationsAsync(IValidationRequest request, IEnumerable<EndCertificate> certificates)
         {
             var startCertificateVerificationTasks = new List<Task>();
 
             foreach (var certificate in certificates)
             {
                 startCertificateVerificationTasks.Add(_certificateVerificationEnqueuer.EnqueueVerificationAsync(request, certificate));
 
-                _validationContext.CertificateValidations.Add(new CertificateValidation
+                _validationContext.CertificateValidations.Add(new EndCertificateValidation
                 {
                     ValidationId = request.ValidationId,
-                    Certificate = certificate,
+                    EndCertificate = certificate,
                     Status = null,
                 });
             }

src/NuGet.Services.Validation.Orchestrator/Vcs/VcsValidator.cs

@@ -77,6 +77,7 @@ public async Task<ValidationStatus> GetStatusAsync(IValidationRequest request)
                 case ValidationEvent.ValidatorException:
                 case ValidationEvent.BeforeVirusScanRequest:
                 case ValidationEvent.VirusScanRequestSent:
+                case ValidationEvent.VirusScanRequestFailed:
                     return ValidationStatus.Incomplete;
                 case ValidationEvent.PackageClean:
                     return ValidationStatus.Succeeded;

src/Validation.Common/Validation.Common.csproj

@@ -105,11 +105,11 @@
     <Reference Include="NuGet.ApplicationInsights.Owin, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\..\packages\NuGet.ApplicationInsights.Owin.4.1.0\lib\net452\NuGet.ApplicationInsights.Owin.dll</HintPath>
     </Reference>
-    <Reference Include="NuGet.Services.KeyVault, Version=2.4.3.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\..\packages\NuGet.Services.KeyVault.2.4.3\lib\net45\NuGet.Services.KeyVault.dll</HintPath>
+    <Reference Include="NuGet.Services.KeyVault, Version=2.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\..\packages\NuGet.Services.KeyVault.2.5.0\lib\net45\NuGet.Services.KeyVault.dll</HintPath>
     </Reference>
-    <Reference Include="NuGet.Services.Logging, Version=2.4.3.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\..\packages\NuGet.Services.Logging.2.4.3\lib\net452\NuGet.Services.Logging.dll</HintPath>
+    <Reference Include="NuGet.Services.Logging, Version=2.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\..\packages\NuGet.Services.Logging.2.5.0\lib\net452\NuGet.Services.Logging.dll</HintPath>
     </Reference>
     <Reference Include="NuGet.Services.VirusScanning.Core, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\..\packages\NuGet.Services.VirusScanning.Vcs.3.2.0\lib\net452\NuGet.Services.VirusScanning.Core.dll</HintPath>

src/Validation.Common/packages.config

@@ -22,8 +22,8 @@
   <package id="Microsoft.WindowsAzure.ConfigurationManager" version="3.2.1" targetFramework="net452" />
   <package id="Newtonsoft.Json" version="9.0.1" targetFramework="net452" />
   <package id="NuGet.ApplicationInsights.Owin" version="4.1.0" targetFramework="net452" />
-  <package id="NuGet.Services.KeyVault" version="2.4.3" targetFramework="net452" />
-  <package id="NuGet.Services.Logging" version="2.4.3" targetFramework="net452" />
+  <package id="NuGet.Services.KeyVault" version="2.5.0" targetFramework="net452" />
+  <package id="NuGet.Services.Logging" version="2.5.0" targetFramework="net452" />
   <package id="NuGet.Services.VirusScanning.Vcs" version="3.2.0" targetFramework="net452" />
   <package id="Owin" version="1.0" targetFramework="net452" />
   <package id="Serilog" version="2.0.0" targetFramework="net452" />

src/Validation.PackageSigning.Core/Error.cs

@@ -9,5 +9,7 @@ public static class Error
     {
         public static EventId ValidatorStateServiceFailedToAddStatus = new EventId(1000, "Failed to add validator's status");
         public static EventId ValidatorStateServiceFailedToUpdateStatus = new EventId(1001, "Failed to update validator's status");
+
+        public static EventId ValidateSignatureFailedToDownloadPackageStatus = new EventId(1100, "Failed to download package");
     }
 }

src/Validation.PackageSigning.Core/Validation.PackageSigning.Core.csproj

@@ -38,10 +38,10 @@
   </ItemGroup>
   <ItemGroup>
     <PackageReference Include="NuGet.Services.ServiceBus">
-      <Version>2.4.3</Version>
+      <Version>2.5.0</Version>
     </PackageReference>
     <PackageReference Include="NuGet.Services.Validation">
-      <Version>2.4.3</Version>
+      <Version>2.5.0</Version>
     </PackageReference>
   </ItemGroup>
   <ItemGroup>