Reputation: 381
How can I verify a .NET self-contained single file executable?
I am releasing a C# application for a client written for the .NET runtime, published as a single file, i.e. I am using
--self-contained true -p:PublishSingleFile=true -p:IncludeNativeLibrariesForSelfExtract=true
for the dotnet publish command
No trimming, runtime not included.
The application has multiple managed and non-managed dependencies.
The application is extensively unit-tested using NUnit (in release mode). However, the client is asking how I am certain that the deployed executable is 'the same as' the compiled product under test. (Put aside for now the differences between the unit test environment and the production environment.)
I can verify that the native libraries extracted to the filesystem ($HOME/.net) are the same as the libraries prior to bundling. But what about the managed code? Is it possible to inspect the single-file executable and verify that the bundled application is composed of the same unit-tested products (DLLs)?
Upvotes: 2
Views: 1128
Answers (1)
Reputation: 2142
SingleFileExtractor is a useful tool for working with single-file .NET applications. You could use it to extract the DLLs from the exe and then compare them to the DLLs compiled when testing in release mode.
Upvotes: 2
Related Questions
- Detect if running from published self-contained executable
- how to test an executable in .NET
- How to determine if a file is executable?
- How to determine if a .NET dll is legitimately from Microsoft?
- How do I test an executable without actually running it?
- Determine whether .NET assemblies were built from the same source
- How do I test in C# if an exe is running correctly?
- Check whether a given executable is digitally signed and valid?
- Testing the functionality of already compiled binaries
- How can I check the validity of a code file?