Bugs item #1475378, was opened at 2006-04-24 02:00 Message generated for change (Settings changed) made by derekc You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=642714&aid=1475378&group_id=105970
Please note that this message will contain a full copy of the comment thread, including the initial issue submission, for this request, not just the latest update. >Category: tallow >Group: v2.0 >Status: Closed >Resolution: Invalid Priority: 5 Submitted By: Jacek (performer24) >Assigned to: Derek (derekc) Summary: Lack of GUID genration prevents using tallow in automated .. Initial Comment: build environments. Main advantage of having command line tools is to use them in automated build environments. After first encounters with tallow and MSBuild it became obvious that it is impossible to do that now due to very simple shortcomings in tallow itself. I do consider it to be BUG due to the very nature of majority of command line tools used currently by developers - they are assumed to automate build process. Unfortunately lack of guid generation for extracted components prevents it. Please consider adding -genguid command line option and the following lines of code to tallow: byte[] buffer = new byte[16]; RNGCryptoServiceProvider rng = new RNGCryptoServiceProvider(); rng.GetBytes(buffer); Guid componentGuid = new Guid(buffer); This will obviously ensure cryptographically strong random number generation and thus unique guids - unless somone does not believe in uniqueness of 128 bit keys ;). Cheers ---------------------------------------------------------------------- >Comment By: Derek (derekc) Date: 2006-04-24 08:46 Message: Logged In: YES user_id=518766 Tallow has not been designed to be run during a build process. This is why the guid generation feature was specifically left out for a very long time. However, tallow does have an undocumented ability to generate guids - just use the -gg option. This feature was intentionally left undocumented due to the danger of using this feature to auto-generate setups which may result in component rule violations which will in turn make a product un-patchable and thus a security risk. If you decide to use the -gg option, please note that you should only use it if tallow is run to grab setup information a single time and then authoring is manually maintained afterwards. This ensures that component rule violoations can be avoided. ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=642714&aid=1475378&group_id=105970 ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ WiX-devs mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/wix-devs
