Microsoft.AspNet.WebApi.Core 5.2.8 has System.Web.Http.dll with file version lower than the one in 5.2.7 nuget release #322
Comments
Could you elaborate on this please❔ What errors occur exactly❔ |
|
when you perform a major upgrade, windows installer will remove the older version with the larger file version and won't install the supposedly newer file with an older file version. Just to simplify the ask here, the file version number needs to increment upwards to indicate this is a newer assembly. |
|
Hmm, it looks like the build version was close to |
|
@joeloff I introduced the @mkArtakMSFT what are your thoughts on perhaps moving straight to v5.3.0 ASAP❔ |
|
Another workaround would be to change |
|
@dougbu yes, file versions must be unsigned 16-bit numbers. This is true for the MSI version as well, though I don't think we're shipping those at this point, unless there was need to push out a security fix. For the MSIs, we have to 8-bits for major/minor and 16 bits for the build number. The 4th part of the version is ignored. I wonder, given the servicing model whether we shouldn't have reset the year on patch number. For file versions 5.2.8.x is bigger than 5.2.0.y and 5.2.7.z, NuGet only cares about the major.minor.patch part since semver doesn't support build/revision except if you have prerelease labels with build metadata. but for the file versions, I do see the issue. Recycling those would be bad when versioning rules were applied to the files and you could end up with an older version looking newer, unless you inspect other attributes of the DLLs. |
|
@samarunraj I remain unsure exactly what scenarios are broken due to the lower assembly file version in this release. You mentioned "windows installer" but the assembly file version is less important than other metadata such as the assembly version. Only one value has wrapped. [assembly: AssemblyFileVersion("5.2.34876.0")]
[assembly: AssemblyInformationalVersion("5.2.8-34876 (005f94e123afdf3111f23f0b982880f8db9b10a7)")]
[assembly: SatelliteContractVersion("5.2.8.0")]
[assembly: AssemblyVersion("5.2.8.0")]That said, we should do something different in our next release. |
|
@joeloff you're correct that we didn't ship any installers and don't have plans for new ones anytime soon. But wouldn't resetting the patch number also have wrapped the
Should have said "probably" in there because I thought we had options like using the fourth portion of the |
|
The file version is the one MSI is concerned about and that is the one that has wrapped, the other versions don't matter from the installer perspective. For better understand my use case, I have System.Web.Http.dll installed using our own installer MSI and when I update the nuget to 5.2.8 and do a major product upgrade using the new MSI, System.Web.Http.dll is missing after the upgrade since the version requirements to do the upgrade was not met (The version needs to be newer for this) |
|
I'm missing something still @samarunraj. An MSI shouldn't ignore the |
|
It doesn't and there are no installer error, just missing files after the install. The only way to get around it by setting https://docs.microsoft.com/en-us/windows/win32/msi/reinstallmode property to force reinstall of all files regardless of version. The default behavior is it won't install a file if you do (MajorUpgrade - wix snippet below) and the file version of the file in MSI being used to upgrade is lower than what was already installed on the machine.
|
|
@samarunraj you can also change the scheduling of |
|
@joeloff could you clarify what you said about the fourth part of the Separately, what do you feel is the urgency of a fix here❔ Other installers may be making similar assumptions… |
|
Oh, I was talking about MSI versions - they have restrictions around versioning. |
So, the assembly attribute has no similar restrictions❔ If that's the case, we could use my earlier idea and be done with it for 6.5 years or so. This issue is specific to going from [assembly: AssemblyFileVersion("5.2.61128.0")]to [assembly: AssemblyFileVersion("5.2.34876.0")]because our |
|
Right, so that makes file version lower, which is used by the MSI to determine whether a specific file is older/newer when performing an upgrade. So, let's say you have two MSIs. MSI v1.0.0 has a file Foo.dll that is versioned as 5.2.66128.0 and MSI v1.0.1 has a newer copy of Foo.dll, but the file version is lower, 5.2.34876.0 When you install v1.0.0 and then the v1.0.1 MSI it can decide to not patch the file, because a newer copy is on disk, then remove the old MSI (which removes the DLL), then installs the new MSI, but skips the file. This is what's happening in @samarunraj case. The reason for this is that the action to remove the old MSI (RemoveExistingProducts) happens early in the install process (typically after the InstallValidateAction). So the user has to perform a repair of the MSI to get the missing file back on disk. If you allow the new MSI to be installed first, the the reference count of the file will be 2 until the old MSI is removed. However, because the new DLL has an older version, you end up with the file on disk, but you will have the older copy of the file. |
|
@mkArtakMSFT @TanayParikh @MackinnonBuck @joeloff let's have a quick meeting about this issue soon -- like a special edition "Monthly AspNetWebStack Triage" |
|
@samarunraj thanks for reporting this issue. We agree this is a bug and have marked it as such. We're planning a near-term 3.2.9 release to address the problem. |
|
/fyi I've updated our build system to address this issue. We're not ready for another official build or release. Assembly attributes now look like [assembly: CompilationRelaxations(8)]
[assembly: RuntimeCompatibility(WrapNonExceptionThrows = true)]
[assembly: Debuggable(/*Could not decode attribute arguments.*/)]
[assembly: AssemblyConfiguration("")]
[assembly: AssemblyTrademark("")]
[assembly: ComVisible(false)]
[assembly: CLSCompliant(true)]
[assembly: NeutralResourcesLanguage("en-US")]
[assembly: AssemblyMetadata("Serviceable", "True")]
[assembly: AssemblyProduct("Microsoft ASP.NET MVC")]
[assembly: AssemblyTitle("System.Web.Cors")]
[assembly: AssemblyDescription("")]
[assembly: AssemblyCompany("Microsoft Corporation.")]
[assembly: AssemblyCopyright("© Microsoft Corporation. All rights reserved.")]
[assembly: AssemblyFileVersion("5.2.61129.7")]
[assembly: AssemblyInformationalVersion("5.2.9-preview1-61136 (2fa23f210cef96eed816b0f8c1361c745bd9450c)")]
[assembly: SatelliteContractVersion("5.2.9.0")]
[assembly: TargetFramework(".NETFramework,Version=v4.5", FrameworkDisplayName = ".NET Framework 4.5")]
[assembly: AssemblyVersion("5.2.9.0")]The important parts are the higher |
|
@dougbu, when are you planning to release the fix? It would be nice to have it soon so we do not have to rollback a branch of our code to work around this bug. |
|
Note that ALSO "Microsoft.AspNet.Cors" Version="5.2.8" has System.Web.Cors DLL with file version "5.2.34876.0". |
|
@henk-van-der-vaart the problem here is consistent across assemblies released in 5.2.8 and I'm fixing them all. |
|
Fixed in TFS changeset 1770739. Should be able to publish 3.2.9 / 5.2.9 containing this fix next week (Memorial Day may delay things). |
The file version of System.Web.Http.dll in https://www.nuget.org/packages/Microsoft.AspNet.WebApi.Core/ nuget has actually decrement with the 5.2.8 nuget release.
The 5.2.8 version of Microsoft.AspNet.WebApi.Core nuget package has System.Web.Http.dll
File Version: 5.2.34876.0
Product Version: 5.2.8-34876 (005f94e)
The 5.2.7 version of Microsoft.AspNet.WebApi.Core nuget package has System.Web.Http.dll
File Version: 5.2.61128.0
Product Version: 5.2.7-61128 (39d3064)
This causes installer issue when performing upgrades as the version decremented instead of incrementing.
The text was updated successfully, but these errors were encountered: