Strong Name hash verification and linkresource
From: Michel Gallant \(MVP\) (neutron@istar.ca)
Date: 02/28/03
- Next message: Michel Gallant \(MVP\): "csc options keyname, keyfile"
- Previous message: Michael Giagnocavo: "Re: data traffic, managed - unmanaged code"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Michel Gallant \(MVP\)" <neutron@istar.ca> Date: Fri, 28 Feb 2003 10:37:32 -0500
A strong named assembly performs hash verification of each component
of the assembly.
However, if I link a resource at compile time, not containing metadata (like an
image file) and strong name sign the assembly:
csc /linkresource:myimage.gif ......
The assembly loader does NOT appear to verify the hash of that linked resource image.
Looking at the assembly with ildasm.exe shows that the image is part of the
manifest and its hash value is there.
However, if I change the image file, or hide it, the assembly loads and does
not cause an error.
(1) So, if a resource is linked into an assembly usine /linkres, is that resource
considered to be part of the assembly?
(2) Does the security part of the assembly loader/resolver ever verify hash of
these types of nonmetadata linked files?
(3) Does an assembly on verify hashes of components when those components
are used, or does it verify ALL components at initial load time?
- Mitch
- Next message: Michel Gallant \(MVP\): "csc options keyname, keyfile"
- Previous message: Michael Giagnocavo: "Re: data traffic, managed - unmanaged code"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
