Make extension signature verification mandatory on Linux Armhf platform

[sandy081]

Steps to reproduce

• Install any extension (eg: eslint) on linux armhf machine and it fails with Untrusted error

Extension signature verification output for dbaeumer.vscode-eslint:
Package file size:  257977
Signature archive file size:  11477
Manifest file size:  2068
Signature file size:  19240
Manifest file hash:  uZwHdB2J9WSU/l08qQl3X0XoN7TeFgaikrLBL+i916E=
Signature file hash:  vbolmOMkoJvWiPOtgpnvh7WhaUFFr6gI6mY/v//pg+g=
Package file hash:  l5VvhQPxPaQsPhXUbFW2yGJjaqnNvijn4QkXPjf1WXo=
ManifestPackageIntegrityPolicy succeeded.
SignatureIntegrityPolicy for primary signature succeeded.
SignatureValidityPolicy for primary signature succeeded.
SignatureIntegrityPolicy for primary timestamp signature succeeded.
SignatureValidityPolicy for primary timestamp signature succeeded.
X.509 certificate chain validation will use the fallback certificate bundle for timestamping.
SignatureTrustPolicy for publisher primary signature timestamp signature succeeded.
X.509 certificate chain validation will use the fallback certificate bundle for code signing.
SignatureTrustPolicy for publisher signature failed with Expired.
SignatureTrustPolicy for publisher signature: continuing evaluation of inner policy.
SignatureIntegrityPolicy for repository countersignature succeeded.
SignatureValidityPolicy for repository countersignature succeeded.
SignatureIntegrityPolicy for repository countersignature timestamp signature succeeded.
SignatureValidityPolicy for repository countersignature timestamp signature succeeded.
SignatureTrustPolicy for repository countersignature timestamp signature succeeded.
RepositoryCountersignaturePolicy for repository countersignature failed with Untrusted.
Primary signature type:  publisher primary signature
Primary signature status:  Expired
Timestamp signature status:  OK
Primary signature chain status:
  NotTimeValid:  certificate is not yet valid
Primary signature certificate statuses:
  0) 566A31882BE208BE4422F7CFD66ED09F5D4524A5994F50CCC8B05EC0528C1353
    NotTimeValid:  certificate is not yet valid
  1) 46011EDE1C147EB2BC731A539B7C047B7EE93E48B9D3C3BA710CE132BBDFAC6B
    NotTimeValid:  certificate is not yet valid
  2) 552F7BDCF1A7AF9E6CE672017F4F12ABF77240C78E761AC203D1D9D20AC89988
    NotTimeValid:  certificate is not yet valid
Repository countersignature status:  Untrusted
Repository countersignature timestamp status:  OK
Repository countersignature chain status:
  NotTimeValid:  certificate is not yet valid
Repository countersignature certificate statuses:
  0) EA9FA3F79D5F14BB1F442D447CC3C237B773B608BEBCB3B4FD08A4599D682848
    NotTimeValid:  certificate is not yet valid
  1) 46011EDE1C147EB2BC731A539B7C047B7EE93E48B9D3C3BA710CE132BBDFAC6B
    NotTimeValid:  certificate is not yet valid
  2) 552F7BDCF1A7AF9E6CE672017F4F12ABF77240C78E761AC203D1D9D20AC89988
    NotTimeValid:  certificate is not yet valid
Exit code:  Untrusted

[RanaUniverse]

for Ubuntu 24.04, will it cause any problems, as till now i am using old vs code, i am worried if i Should update new vs cod3 1.100 version or not 🤔
any suggestions, i am am using vs code in linux offline

[sandy081]

I assume it should not. Please try it out and let us know. Thanks