Code:
/ 4.0 / 4.0 / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / fx / src / WinForms / Managed / System / WinForms / OpenFileDialog.cs / 1305376 / OpenFileDialog.cs
//------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- namespace System.Windows.Forms { using System.Diagnostics; using System; using System.Diagnostics.CodeAnalysis; using System.Drawing; using CodeAccessPermission = System.Security.CodeAccessPermission; using System.Security.Permissions; using System.IO; using System.ComponentModel; using Microsoft.Win32; using System.Runtime.Versioning; ////// /// [SRDescription(SR.DescriptionOpenFileDialog)] public sealed class OpenFileDialog : FileDialog { ////// Represents a common dialog box /// that displays the control that allows the user to open a file. This class /// cannot be inherited. /// ////// /// [ DefaultValue(true), SRDescription(SR.OFDcheckFileExistsDescr) ] public override bool CheckFileExists { get { return base.CheckFileExists; } set { base.CheckFileExists = value; } } ////// Gets or sets a value indicating whether the dialog box displays a /// warning if the user specifies a file name that does not exist. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDmultiSelectDescr) ] public bool Multiselect { get { return GetOption(NativeMethods.OFN_ALLOWMULTISELECT); } set { SetOption(NativeMethods.OFN_ALLOWMULTISELECT, value); } } ////// Gets or sets a value /// indicating whether the dialog box allows multiple files to be selected. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDreadOnlyCheckedDescr) ] public bool ReadOnlyChecked { get { return GetOption(NativeMethods.OFN_READONLY); } set { SetOption(NativeMethods.OFN_READONLY, value); } } ////// Gets or sets a value indicating whether /// the read-only check box is selected. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDshowReadOnlyDescr) ] public bool ShowReadOnly { get { return !GetOption(NativeMethods.OFN_HIDEREADONLY); } set { SetOption(NativeMethods.OFN_HIDEREADONLY, !value); } } ////// Gets or sets a value indicating whether the dialog contains a read-only check box. /// ////// /// [SuppressMessage("Microsoft.Usage", "CA2208:InstantiateArgumentExceptionsCorrectly")] /// SECREVIEW: ReviewImperativeSecurity /// vulnerability to watch out for: A method uses imperative security and might be constructing the permission using state information or return values that can change while the demand is active. /// reason for exclude: filename is snapped directly at the beginning of the function. [SuppressMessage("Microsoft.Security", "CA2103:ReviewImperativeSecurity")] [ResourceExposure(ResourceScope.Machine)] [ResourceConsumption(ResourceScope.Machine)] public Stream OpenFile() { Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded"); IntSecurity.FileDialogOpenFile.Demand(); string filename = FileNamesInternal[0]; if (filename == null || (filename.Length == 0)) throw new ArgumentNullException("FileName"); Stream s = null; // SECREVIEW : We demanded the FileDialog permission above, so it is safe // : to assert this here. Since the user picked the file, it // : is OK to give them readonly access to the stream. // new FileIOPermission(FileIOPermissionAccess.Read, IntSecurity.UnsafeGetFullPath(filename)).Assert(); try { s = new FileStream(filename, FileMode.Open, FileAccess.Read, FileShare.Read); } finally { CodeAccessPermission.RevertAssert(); } return s; } ////// Opens the file selected by the user with read-only permission. The file /// attempted is specified by the ///property. /// /// /// public override void Reset() { base.Reset(); SetOption(NativeMethods.OFN_FILEMUSTEXIST, true); } internal override void EnsureFileDialogPermission() { Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded in OpenFileDialog.RunFileDialog"); IntSecurity.FileDialogOpenFile.Demand(); } ////// Resets all properties to their default values. /// ////// /// Displays a file open dialog. /// ///internal override bool RunFileDialog(NativeMethods.OPENFILENAME_I ofn) { //We have already done the demand in EnsureFileDialogPermission but it doesn't hurt to do it again Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded in OpenFileDialog.RunFileDialog"); IntSecurity.FileDialogOpenFile.Demand(); bool result = UnsafeNativeMethods.GetOpenFileName(ofn); if (!result) { // Something may have gone wrong - check for error condition // int errorCode = SafeNativeMethods.CommDlgExtendedError(); switch (errorCode) { case NativeMethods.FNERR_INVALIDFILENAME: throw new InvalidOperationException(SR.GetString(SR.FileDialogInvalidFileName, FileName)); case NativeMethods.FNERR_SUBCLASSFAILURE: throw new InvalidOperationException(SR.GetString(SR.FileDialogSubLassFailure)); case NativeMethods.FNERR_BUFFERTOOSMALL: throw new InvalidOperationException(SR.GetString(SR.FileDialogBufferTooSmall)); } } return result; } internal override string[] ProcessVistaFiles(FileDialogNative.IFileDialog dialog) { FileDialogNative.IFileOpenDialog openDialog = (FileDialogNative.IFileOpenDialog)dialog; if (Multiselect) { FileDialogNative.IShellItemArray results; openDialog.GetResults(out results); uint count; results.GetCount(out count); string[] files = new string[count]; for (uint i = 0; i < count; ++i) { FileDialogNative.IShellItem item; results.GetItemAt(i, out item); files[unchecked((int)i)] = GetFilePathFromShellItem(item); } return files; } else { FileDialogNative.IShellItem item; openDialog.GetResult(out item); return new string[] { GetFilePathFromShellItem(item) }; } } internal override FileDialogNative.IFileDialog CreateVistaDialog() { return new FileDialogNative.NativeFileOpenDialog(); } [ Browsable(false), DesignerSerializationVisibility(DesignerSerializationVisibility.Hidden), SuppressMessage("Microsoft.Security", "CA2106:SecureAsserts") ] public string SafeFileName { get { new FileIOPermission(PermissionState.Unrestricted).Assert(); string fullPath = FileName; CodeAccessPermission.RevertAssert(); if (string.IsNullOrEmpty(fullPath)) { return ""; } string safePath = RemoveSensitivePathInformation(fullPath); return safePath; } } private static string RemoveSensitivePathInformation(string fullPath) { return System.IO.Path.GetFileName(fullPath); } [ Browsable(false), DesignerSerializationVisibility(DesignerSerializationVisibility.Hidden), SuppressMessage("Microsoft.Performance", "CA1819:PropertiesShouldNotReturnArrays"), SuppressMessage("Microsoft.Security", "CA2106:SecureAsserts") ] public string[] SafeFileNames { get { new FileIOPermission(PermissionState.Unrestricted).Assert(); string[] fullPaths = FileNames; CodeAccessPermission.RevertAssert(); if (null == fullPaths || 0 == fullPaths.Length) { return new string[0]; } string[] safePaths = new string[fullPaths.Length]; for (int i = 0; i < safePaths.Length; ++i) { safePaths[i] = RemoveSensitivePathInformation(fullPaths[i]); } return safePaths; } } internal override bool SettingsSupportVistaDialog { get { return base.SettingsSupportVistaDialog && !this.ShowReadOnly; } } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. //------------------------------------------------------------------------------ // // Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- namespace System.Windows.Forms { using System.Diagnostics; using System; using System.Diagnostics.CodeAnalysis; using System.Drawing; using CodeAccessPermission = System.Security.CodeAccessPermission; using System.Security.Permissions; using System.IO; using System.ComponentModel; using Microsoft.Win32; using System.Runtime.Versioning; ////// /// [SRDescription(SR.DescriptionOpenFileDialog)] public sealed class OpenFileDialog : FileDialog { ////// Represents a common dialog box /// that displays the control that allows the user to open a file. This class /// cannot be inherited. /// ////// /// [ DefaultValue(true), SRDescription(SR.OFDcheckFileExistsDescr) ] public override bool CheckFileExists { get { return base.CheckFileExists; } set { base.CheckFileExists = value; } } ////// Gets or sets a value indicating whether the dialog box displays a /// warning if the user specifies a file name that does not exist. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDmultiSelectDescr) ] public bool Multiselect { get { return GetOption(NativeMethods.OFN_ALLOWMULTISELECT); } set { SetOption(NativeMethods.OFN_ALLOWMULTISELECT, value); } } ////// Gets or sets a value /// indicating whether the dialog box allows multiple files to be selected. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDreadOnlyCheckedDescr) ] public bool ReadOnlyChecked { get { return GetOption(NativeMethods.OFN_READONLY); } set { SetOption(NativeMethods.OFN_READONLY, value); } } ////// Gets or sets a value indicating whether /// the read-only check box is selected. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDshowReadOnlyDescr) ] public bool ShowReadOnly { get { return !GetOption(NativeMethods.OFN_HIDEREADONLY); } set { SetOption(NativeMethods.OFN_HIDEREADONLY, !value); } } ////// Gets or sets a value indicating whether the dialog contains a read-only check box. /// ////// /// [SuppressMessage("Microsoft.Usage", "CA2208:InstantiateArgumentExceptionsCorrectly")] /// SECREVIEW: ReviewImperativeSecurity /// vulnerability to watch out for: A method uses imperative security and might be constructing the permission using state information or return values that can change while the demand is active. /// reason for exclude: filename is snapped directly at the beginning of the function. [SuppressMessage("Microsoft.Security", "CA2103:ReviewImperativeSecurity")] [ResourceExposure(ResourceScope.Machine)] [ResourceConsumption(ResourceScope.Machine)] public Stream OpenFile() { Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded"); IntSecurity.FileDialogOpenFile.Demand(); string filename = FileNamesInternal[0]; if (filename == null || (filename.Length == 0)) throw new ArgumentNullException("FileName"); Stream s = null; // SECREVIEW : We demanded the FileDialog permission above, so it is safe // : to assert this here. Since the user picked the file, it // : is OK to give them readonly access to the stream. // new FileIOPermission(FileIOPermissionAccess.Read, IntSecurity.UnsafeGetFullPath(filename)).Assert(); try { s = new FileStream(filename, FileMode.Open, FileAccess.Read, FileShare.Read); } finally { CodeAccessPermission.RevertAssert(); } return s; } ////// Opens the file selected by the user with read-only permission. The file /// attempted is specified by the ///property. /// /// /// public override void Reset() { base.Reset(); SetOption(NativeMethods.OFN_FILEMUSTEXIST, true); } internal override void EnsureFileDialogPermission() { Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded in OpenFileDialog.RunFileDialog"); IntSecurity.FileDialogOpenFile.Demand(); } ////// Resets all properties to their default values. /// ////// /// Displays a file open dialog. /// ///internal override bool RunFileDialog(NativeMethods.OPENFILENAME_I ofn) { //We have already done the demand in EnsureFileDialogPermission but it doesn't hurt to do it again Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded in OpenFileDialog.RunFileDialog"); IntSecurity.FileDialogOpenFile.Demand(); bool result = UnsafeNativeMethods.GetOpenFileName(ofn); if (!result) { // Something may have gone wrong - check for error condition // int errorCode = SafeNativeMethods.CommDlgExtendedError(); switch (errorCode) { case NativeMethods.FNERR_INVALIDFILENAME: throw new InvalidOperationException(SR.GetString(SR.FileDialogInvalidFileName, FileName)); case NativeMethods.FNERR_SUBCLASSFAILURE: throw new InvalidOperationException(SR.GetString(SR.FileDialogSubLassFailure)); case NativeMethods.FNERR_BUFFERTOOSMALL: throw new InvalidOperationException(SR.GetString(SR.FileDialogBufferTooSmall)); } } return result; } internal override string[] ProcessVistaFiles(FileDialogNative.IFileDialog dialog) { FileDialogNative.IFileOpenDialog openDialog = (FileDialogNative.IFileOpenDialog)dialog; if (Multiselect) { FileDialogNative.IShellItemArray results; openDialog.GetResults(out results); uint count; results.GetCount(out count); string[] files = new string[count]; for (uint i = 0; i < count; ++i) { FileDialogNative.IShellItem item; results.GetItemAt(i, out item); files[unchecked((int)i)] = GetFilePathFromShellItem(item); } return files; } else { FileDialogNative.IShellItem item; openDialog.GetResult(out item); return new string[] { GetFilePathFromShellItem(item) }; } } internal override FileDialogNative.IFileDialog CreateVistaDialog() { return new FileDialogNative.NativeFileOpenDialog(); } [ Browsable(false), DesignerSerializationVisibility(DesignerSerializationVisibility.Hidden), SuppressMessage("Microsoft.Security", "CA2106:SecureAsserts") ] public string SafeFileName { get { new FileIOPermission(PermissionState.Unrestricted).Assert(); string fullPath = FileName; CodeAccessPermission.RevertAssert(); if (string.IsNullOrEmpty(fullPath)) { return ""; } string safePath = RemoveSensitivePathInformation(fullPath); return safePath; } } private static string RemoveSensitivePathInformation(string fullPath) { return System.IO.Path.GetFileName(fullPath); } [ Browsable(false), DesignerSerializationVisibility(DesignerSerializationVisibility.Hidden), SuppressMessage("Microsoft.Performance", "CA1819:PropertiesShouldNotReturnArrays"), SuppressMessage("Microsoft.Security", "CA2106:SecureAsserts") ] public string[] SafeFileNames { get { new FileIOPermission(PermissionState.Unrestricted).Assert(); string[] fullPaths = FileNames; CodeAccessPermission.RevertAssert(); if (null == fullPaths || 0 == fullPaths.Length) { return new string[0]; } string[] safePaths = new string[fullPaths.Length]; for (int i = 0; i < safePaths.Length; ++i) { safePaths[i] = RemoveSensitivePathInformation(fullPaths[i]); } return safePaths; } } internal override bool SettingsSupportVistaDialog { get { return base.SettingsSupportVistaDialog && !this.ShowReadOnly; } } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- Module.cs
- TextServicesCompartmentContext.cs
- NameTable.cs
- UpDownBase.cs
- UTF32Encoding.cs
- OutputCacheProfile.cs
- Focus.cs
- RbTree.cs
- NetCodeGroup.cs
- CodeAttributeDeclaration.cs
- TimeSpanMinutesConverter.cs
- PrintDialogException.cs
- URLIdentityPermission.cs
- BaseDataListDesigner.cs
- GrammarBuilder.cs
- ISCIIEncoding.cs
- InvalidDataException.cs
- baseshape.cs
- CalendarDateChangedEventArgs.cs
- HttpWebResponse.cs
- NavigationProperty.cs
- Variant.cs
- DataListAutoFormat.cs
- WebEventCodes.cs
- SmiRecordBuffer.cs
- DataList.cs
- EditorZoneBase.cs
- EntitySetDataBindingList.cs
- Timer.cs
- CustomAttributeBuilder.cs
- AlternateViewCollection.cs
- HtmlEncodedRawTextWriter.cs
- SerializationObjectManager.cs
- DoubleAnimationBase.cs
- ReaderContextStackData.cs
- COM2Enum.cs
- RegexGroup.cs
- SiteMapNodeItemEventArgs.cs
- DocumentPage.cs
- BatchParser.cs
- Int64.cs
- OletxDependentTransaction.cs
- util.cs
- ObjectParameterCollection.cs
- StorageSetMapping.cs
- EntityKey.cs
- InfoCardKeyedHashAlgorithm.cs
- RowBinding.cs
- UpDownEvent.cs
- KeyMatchBuilder.cs
- BitmapEffectDrawingContextWalker.cs
- GeneralTransform3DGroup.cs
- DuplexChannelBinder.cs
- LayoutTableCell.cs
- FixedBufferAttribute.cs
- SkewTransform.cs
- OAVariantLib.cs
- BulletedList.cs
- LineGeometry.cs
- CodeDelegateInvokeExpression.cs
- StylusButtonCollection.cs
- SoapProcessingBehavior.cs
- OdbcConnectionFactory.cs
- HandledEventArgs.cs
- BuildProviderCollection.cs
- SafeProcessHandle.cs
- Root.cs
- ProcessInputEventArgs.cs
- DescendentsWalkerBase.cs
- WebConfigurationFileMap.cs
- SafeRightsManagementSessionHandle.cs
- GiveFeedbackEvent.cs
- StrongNameUtility.cs
- DrawingDrawingContext.cs
- JournalEntry.cs
- AssemblyHash.cs
- SecurityPermission.cs
- Empty.cs
- Fonts.cs
- DataPagerFieldCommandEventArgs.cs
- FormsAuthenticationTicket.cs
- Wizard.cs
- DocumentApplicationDocumentViewer.cs
- BlurBitmapEffect.cs
- PositiveTimeSpanValidatorAttribute.cs
- ProtocolImporter.cs
- LabelDesigner.cs
- EncryptedType.cs
- DbSourceParameterCollection.cs
- HtmlHead.cs
- DesignerActionVerbList.cs
- File.cs
- GridViewCommandEventArgs.cs
- CodeTypeParameterCollection.cs
- PolyQuadraticBezierSegment.cs
- DataContractSerializerFaultFormatter.cs
- diagnosticsswitches.cs
- WindowsAltTab.cs
- DesignerProperties.cs
- Double.cs