“Unable to locate the Microsoft .NET disassembler tool (ildasm)…” Errors
Question
How do I resolve issues reported by the Fortify scan of the form: “Unable to locate the Microsoft .NET disassembler tool (ildasm)…”
Answer
The error indicates that Fortify is unable to find the ildasm executable. This error generally occurs when ildasm is installed in a non-standard location or if integrating Fortify scanning with MSBuild on a machine where Visual Studio is not installed. To resolve this issue, please make sure you have Visual Studio .NET version 7.1 (also known as Visual Studio .NET 2003) or greater installed along with the SDK. Then set the com.fortify.sca.IldasmPath property to indicate where ildasm is installed. The property may be set in the fortify-sca.properties file (see the User Guide for location of this file) or it may be set on the command line using the -D option as shown below:
sourceanalyzer -b <buildid> -Dcom.fority.sca.IldasmPath=C:/path/to/ildasm/ildasm.e <solution>
If scanning from one of the graphical interfaces, please see the technical note on how to enter command-line arguments into Audit Workbench or Fortify IDE plugin.