ansaurus

Question

Signing my assembly with a strong name stops it from working

Answer 1

A:

Andy, not sure if this is relevant. The solution there says:

I forgot to update the adxloader.dll (from the new one in \Add-in Express .NET\Redistributables) in the path - I guess it's been updated...

Peter K. 2010-09-19 12:05:14

Hi Peter. Thanks for the link, but I'm not using Add-in Express. I have a feeling the problem might be related because I think Add-in Express works in a similar way to our own assembly (heavily relying on System.Reflection).

Andy E 2010-09-20 06:57:44

@Andy: No worries! I thought it sounded similar. Sorry it wasn't more help.

Peter K. 2010-09-21 00:32:10

Answer 2

A:

hi,

your number looks very much like the beginning of the integer range!

Signed: −2,147,483,648 to +2,147,483,647, -(2^31)~(2^31-1)

maybe you have a casting error, or a really huge number you're trying to increment and if it reaches the maximum (+2,147,483,647) it starts counting backwards from −2,147,483,648

Just a guess!

sled 2010-09-19 12:34:59

Answer 3

+4 A:

Do you recreated the COM Interop after the signing of the assembly? How you register the new version of the assembly? Do you cleared the cache of Internet Explorer?

In general the error -2146234304 (0x80131040) means FUSION_E_REF_DEF_MISMATCH: "The located assembly's manifest definition with name [yourAssembly] does not match the assembly reference". So you have to update the manifest of assembly which use your signed assembly. What it means exactly in your situation you should find out. The refence to the assembly are saved also under Assembly value of HKEY_CLASSES_ROOT\CLSID\{YOUR_GUID}\InprocServer32 and not only in the real manifest.

You can try to investigate the problem with respect of Fuslogvw.exe (Assembly Binding Log Viewer) (or http://msdn.microsoft.com/en-US/library/ms229864(v=VS.80).aspx). Some changes in registry under HKLM\Software\Microsoft\Fusion could be needed before (like EnableLog, LogFailures,

If you will not solve the problem in the way you could post a link to a project which could be used to reproduce your problem.

Oleg 2010-09-19 21:44:24

*regasm.exe* was how I was registering it. In the final version, the script needs to register the control by writing the registry keys, so it mimics the output from *regasm.exe*. I can do this on Win 7 with no problems but I can't instantiate the signed assembly on Vista. Thanks for your advice, I'll check it out and let you know how it goes.

Andy E 2010-09-20 06:55:53

@Andy E: One more remark. If you not yet made your Assembly "Safe For Scripting" I recommend you to do it. It's very easy. You have to implement `IObjectSafety` interface (see http://blog.devstone.com/aaron/archive/2007/06/12/2409.aspx and http://www.atalasoft.com/cs/blogs/rickm/archive/2009/06/03/net-2-0-activex-control-gotchas-safe-for-scripting-and-hooking-into-events.aspx for example)

Oleg 2010-09-21 00:05:37

@Andy E: Do you have any progress in your investigations? Do you tried to reset Zone security settings and IE cache inclusive "C:\Windows\Downloaded Program Files" of all IE settings on the Vista computer which has problem? Could you describe more how you sign the assembly? Including Key in the Visual Studio project, including in AssemblyInfo.cs, or you use Delay Signing with respect of sn.exe of SignTool.exe? Do you use pvk file of a code signing certificate? If you use certificate, is it from well-known authority or self-signed? How you deploy the assembly to the destination computer?

Oleg 2010-09-22 08:55:04

@Oleg: thanks, it looks like it might be more or less sorted. Your answer helped, but it seemed like the solution was to generate a new public key token. I've tested it and it's working on one machine, I just need to test the others now.

Andy E 2010-09-25 19:25:22

@Andy E: It would be nice if the solution is so simple. :-) It you do will have some problem let me know. I find all question concerned code signing interesting. I will try to help you independent on any bounty.

Oleg 2010-09-25 19:35:23

Marking as accepted, since this answer led me to the problem. Bounty awarded :-)

Andy E 2010-09-25 23:40:39

Answer 4

+1 A:

Use dependency walker to open your signed dll on the problematic machine. It should tell you why the dll can't be loaded. It could be dependent on a dll which is different between windows versions, which is more a problem after signing.

jdv 2010-09-19 21:51:29

Thanks, I'll check it out.

Andy E 2010-09-20 06:58:27

Answer 5

A:

Are you using the Microsoft Enterprise Library code blocks at all? I have seen this issue pop up with folks not adding a reference to the correct signed libraries when they compile their code.

Here's some more background if you are using EnterpriseLibrary.

GalacticJello 2010-09-20 19:50:32

Answer 6

+5 A:

The error code ix 0x80131040. That's a code that matches a .NET exception, a very common one.

The located assembly's manifest definition does not match the assembly reference.

I'm surprised you don't get a message for it, you might want to review your error handling code. Anyhoo, you've got a bit of DLL Hell going on, the CLR is finding an assembly whose [AssemblyVersion] or PublicKeyToken doesn't match the reference assembly that was used to build the code. Given that this is associated with a strong named assembly, you might have signed the assembly after building the code. In which case simply removing the assembly reference from your project and adding it back, now selecting the strong named assembly, will fix the problem.

But no need to guess at this, the Fuslogvw.exe utility will tell you exactly what is going wrong. Run it first to get a trace of the binding attempt and the reason it failed.

Hans Passant 2010-09-22 05:42:54

Thanks, Hans. Generating a new public token looks like it may have solved the problem, I just need to perform more testing.

Andy E 2010-09-25 19:26:31

Answer 7

A:

Go to the .Net Framework Configuration console and play with the Runtime Security Policy settings on your machine.

Denis Valeev 2010-09-24 12:26:31

Answer 8

A:

Try signing your assembly from a working XP configuration (or from the Vista box). CAPICOM is not supported in Windows 7 so whatever the sign tool may be doing to sign your assembly may not be backwards compatible with Vista. Now I have seen CAPICOM work just fine, but I have also seen it fail for no reason, and "unsupported" means that's what you get from Microsoft support if you try to call.

Les 2010-09-25 04:29:17

ansaurus

tags:

views:

answers:

Signing my assembly with a strong name stops it from working

related questions