coapp-developers team mailing list archive

Thread
Date

Re: Let's talk about libraries

To: "nico.rieck@xxxxxxxxx" <nico.rieck@xxxxxxxxx>, Adam Baxter <voltagex@xxxxxxxxxxxx>
From: Garrett Serack <garretts@xxxxxxxxxxxxx>
Date: Tue, 13 Apr 2010 14:55:17 +0000
Accept-language: en-US
Cc: "coapp-developers@xxxxxxxxxxxxxxxxxxx" <coapp-developers@xxxxxxxxxxxxxxxxxxx>
In-reply-to: <4BC46F57.5080603@gmail.com>
Thread-index: AQHK2uEuVv81n85r+kuu8vU3D/vZ/ZIg12+A//+lXQA=
Thread-topic: [Coapp-developers] Let's talk about libraries

Local usage doesn't require signing.

But distribution will.

Garrett Serack | Open Source Software Developer | Microsoft Corporation 
I don't make the software you use; I make the software you use better on Windows.

-----Original Message-----
From: Nico Rieck [mailto:nico.rieck@xxxxxxxxxxxxxx] 
Sent: Tuesday, April 13, 2010 6:19 AM
To: Adam Baxter
Cc: Garrett Serack; coapp-developers@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Coapp-developers] Let's talk about libraries

On 13.04.2010 10:12, Adam Baxter wrote:
>> In order to use WinSXS however, all binaries must be signed with an
> Authenticode code-signing certificate, from a reputable CA (certifying 
> authority).
> 
> This is automatically a major roadblock for many open source projects.

It's possible to install assemblies into WinSXS with a self-created certificate. At least that's what I did when I played with putting some libraries (I believe it was OpenSSL) into WinSXS some time ago.
Maybe this could be used when building from source locally.

References

Let's talk about libraries
From: Garrett Serack, 2010-04-12
Re: Let's talk about libraries
From: Adam Baxter, 2010-04-13