[BinFmt] Custom Build Event Args will lead to build warning/error by default #9300

JanKrivanek · 2023-10-03T09:03:26Z

Existing uses of BinaryFormatter must be removed or disabled by Jan 1, 2024.

Behavior of .NET and .NET Framework version of MSBuild is unified - the the BinFmt is disallowed by default
While BinFmt is still workable on Framework - assume it is not for the purpose of this change (as it may be soon removed from Framework and only be pluggable via optional nuget) - so it is fine to drop violating events (providing build error is emitted)

UPDATE (Oct/19):

For more gradual introduction of this breaking change, let's implement this for .NET Framework as a warning and without discarding the event.
.NET Core behavior will stay the same.
Per offline discussion with @rokonec - this can be achieved by skipping the sender side check for Framework, as receiving side check already has a warning.
In the future we'll change the warning to error (not part of this item)

Does AppContext.TryGetSwitch("System.Runtime.Serialization.EnableUnsafeBinaryFormatterSerialization", out bool enabled) make sense on .NET Framework as well. ~~I'll provide answer to this later on.~~ - the switch can be used on Full Framework as well. There is currently no usage of that in Framework runtime. But we can keep the code for boh versions to avoid special casing

The text was updated successfully, but these errors were encountered:

JanKrivanek added the Iteration:2023October label Oct 3, 2023

JanKrivanek assigned rokonec Oct 3, 2023

JanKrivanek mentioned this issue Oct 3, 2023

BinaryFormatter Deprecation #6215

Closed

27 tasks

rokonec mentioned this issue Oct 10, 2023

[BinFmt] Error on serialization custom events in by default in .NET framework #9318

Merged

JanKrivanek closed this as completed in #9318 Nov 21, 2023

AR-May added the triaged label Feb 21, 2024

Provide feedback