Code:
/ 4.0 / 4.0 / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / fx / src / WinForms / Managed / System / WinForms / OpenFileDialog.cs / 1305376 / OpenFileDialog.cs
//------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- namespace System.Windows.Forms { using System.Diagnostics; using System; using System.Diagnostics.CodeAnalysis; using System.Drawing; using CodeAccessPermission = System.Security.CodeAccessPermission; using System.Security.Permissions; using System.IO; using System.ComponentModel; using Microsoft.Win32; using System.Runtime.Versioning; ////// /// [SRDescription(SR.DescriptionOpenFileDialog)] public sealed class OpenFileDialog : FileDialog { ////// Represents a common dialog box /// that displays the control that allows the user to open a file. This class /// cannot be inherited. /// ////// /// [ DefaultValue(true), SRDescription(SR.OFDcheckFileExistsDescr) ] public override bool CheckFileExists { get { return base.CheckFileExists; } set { base.CheckFileExists = value; } } ////// Gets or sets a value indicating whether the dialog box displays a /// warning if the user specifies a file name that does not exist. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDmultiSelectDescr) ] public bool Multiselect { get { return GetOption(NativeMethods.OFN_ALLOWMULTISELECT); } set { SetOption(NativeMethods.OFN_ALLOWMULTISELECT, value); } } ////// Gets or sets a value /// indicating whether the dialog box allows multiple files to be selected. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDreadOnlyCheckedDescr) ] public bool ReadOnlyChecked { get { return GetOption(NativeMethods.OFN_READONLY); } set { SetOption(NativeMethods.OFN_READONLY, value); } } ////// Gets or sets a value indicating whether /// the read-only check box is selected. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDshowReadOnlyDescr) ] public bool ShowReadOnly { get { return !GetOption(NativeMethods.OFN_HIDEREADONLY); } set { SetOption(NativeMethods.OFN_HIDEREADONLY, !value); } } ////// Gets or sets a value indicating whether the dialog contains a read-only check box. /// ////// /// [SuppressMessage("Microsoft.Usage", "CA2208:InstantiateArgumentExceptionsCorrectly")] /// SECREVIEW: ReviewImperativeSecurity /// vulnerability to watch out for: A method uses imperative security and might be constructing the permission using state information or return values that can change while the demand is active. /// reason for exclude: filename is snapped directly at the beginning of the function. [SuppressMessage("Microsoft.Security", "CA2103:ReviewImperativeSecurity")] [ResourceExposure(ResourceScope.Machine)] [ResourceConsumption(ResourceScope.Machine)] public Stream OpenFile() { Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded"); IntSecurity.FileDialogOpenFile.Demand(); string filename = FileNamesInternal[0]; if (filename == null || (filename.Length == 0)) throw new ArgumentNullException("FileName"); Stream s = null; // SECREVIEW : We demanded the FileDialog permission above, so it is safe // : to assert this here. Since the user picked the file, it // : is OK to give them readonly access to the stream. // new FileIOPermission(FileIOPermissionAccess.Read, IntSecurity.UnsafeGetFullPath(filename)).Assert(); try { s = new FileStream(filename, FileMode.Open, FileAccess.Read, FileShare.Read); } finally { CodeAccessPermission.RevertAssert(); } return s; } ////// Opens the file selected by the user with read-only permission. The file /// attempted is specified by the ///property. /// /// /// public override void Reset() { base.Reset(); SetOption(NativeMethods.OFN_FILEMUSTEXIST, true); } internal override void EnsureFileDialogPermission() { Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded in OpenFileDialog.RunFileDialog"); IntSecurity.FileDialogOpenFile.Demand(); } ////// Resets all properties to their default values. /// ////// /// Displays a file open dialog. /// ///internal override bool RunFileDialog(NativeMethods.OPENFILENAME_I ofn) { //We have already done the demand in EnsureFileDialogPermission but it doesn't hurt to do it again Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded in OpenFileDialog.RunFileDialog"); IntSecurity.FileDialogOpenFile.Demand(); bool result = UnsafeNativeMethods.GetOpenFileName(ofn); if (!result) { // Something may have gone wrong - check for error condition // int errorCode = SafeNativeMethods.CommDlgExtendedError(); switch (errorCode) { case NativeMethods.FNERR_INVALIDFILENAME: throw new InvalidOperationException(SR.GetString(SR.FileDialogInvalidFileName, FileName)); case NativeMethods.FNERR_SUBCLASSFAILURE: throw new InvalidOperationException(SR.GetString(SR.FileDialogSubLassFailure)); case NativeMethods.FNERR_BUFFERTOOSMALL: throw new InvalidOperationException(SR.GetString(SR.FileDialogBufferTooSmall)); } } return result; } internal override string[] ProcessVistaFiles(FileDialogNative.IFileDialog dialog) { FileDialogNative.IFileOpenDialog openDialog = (FileDialogNative.IFileOpenDialog)dialog; if (Multiselect) { FileDialogNative.IShellItemArray results; openDialog.GetResults(out results); uint count; results.GetCount(out count); string[] files = new string[count]; for (uint i = 0; i < count; ++i) { FileDialogNative.IShellItem item; results.GetItemAt(i, out item); files[unchecked((int)i)] = GetFilePathFromShellItem(item); } return files; } else { FileDialogNative.IShellItem item; openDialog.GetResult(out item); return new string[] { GetFilePathFromShellItem(item) }; } } internal override FileDialogNative.IFileDialog CreateVistaDialog() { return new FileDialogNative.NativeFileOpenDialog(); } [ Browsable(false), DesignerSerializationVisibility(DesignerSerializationVisibility.Hidden), SuppressMessage("Microsoft.Security", "CA2106:SecureAsserts") ] public string SafeFileName { get { new FileIOPermission(PermissionState.Unrestricted).Assert(); string fullPath = FileName; CodeAccessPermission.RevertAssert(); if (string.IsNullOrEmpty(fullPath)) { return ""; } string safePath = RemoveSensitivePathInformation(fullPath); return safePath; } } private static string RemoveSensitivePathInformation(string fullPath) { return System.IO.Path.GetFileName(fullPath); } [ Browsable(false), DesignerSerializationVisibility(DesignerSerializationVisibility.Hidden), SuppressMessage("Microsoft.Performance", "CA1819:PropertiesShouldNotReturnArrays"), SuppressMessage("Microsoft.Security", "CA2106:SecureAsserts") ] public string[] SafeFileNames { get { new FileIOPermission(PermissionState.Unrestricted).Assert(); string[] fullPaths = FileNames; CodeAccessPermission.RevertAssert(); if (null == fullPaths || 0 == fullPaths.Length) { return new string[0]; } string[] safePaths = new string[fullPaths.Length]; for (int i = 0; i < safePaths.Length; ++i) { safePaths[i] = RemoveSensitivePathInformation(fullPaths[i]); } return safePaths; } } internal override bool SettingsSupportVistaDialog { get { return base.SettingsSupportVistaDialog && !this.ShowReadOnly; } } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. //------------------------------------------------------------------------------ // // Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- namespace System.Windows.Forms { using System.Diagnostics; using System; using System.Diagnostics.CodeAnalysis; using System.Drawing; using CodeAccessPermission = System.Security.CodeAccessPermission; using System.Security.Permissions; using System.IO; using System.ComponentModel; using Microsoft.Win32; using System.Runtime.Versioning; ////// /// [SRDescription(SR.DescriptionOpenFileDialog)] public sealed class OpenFileDialog : FileDialog { ////// Represents a common dialog box /// that displays the control that allows the user to open a file. This class /// cannot be inherited. /// ////// /// [ DefaultValue(true), SRDescription(SR.OFDcheckFileExistsDescr) ] public override bool CheckFileExists { get { return base.CheckFileExists; } set { base.CheckFileExists = value; } } ////// Gets or sets a value indicating whether the dialog box displays a /// warning if the user specifies a file name that does not exist. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDmultiSelectDescr) ] public bool Multiselect { get { return GetOption(NativeMethods.OFN_ALLOWMULTISELECT); } set { SetOption(NativeMethods.OFN_ALLOWMULTISELECT, value); } } ////// Gets or sets a value /// indicating whether the dialog box allows multiple files to be selected. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDreadOnlyCheckedDescr) ] public bool ReadOnlyChecked { get { return GetOption(NativeMethods.OFN_READONLY); } set { SetOption(NativeMethods.OFN_READONLY, value); } } ////// Gets or sets a value indicating whether /// the read-only check box is selected. /// ////// /// [ SRCategory(SR.CatBehavior), DefaultValue(false), SRDescription(SR.OFDshowReadOnlyDescr) ] public bool ShowReadOnly { get { return !GetOption(NativeMethods.OFN_HIDEREADONLY); } set { SetOption(NativeMethods.OFN_HIDEREADONLY, !value); } } ////// Gets or sets a value indicating whether the dialog contains a read-only check box. /// ////// /// [SuppressMessage("Microsoft.Usage", "CA2208:InstantiateArgumentExceptionsCorrectly")] /// SECREVIEW: ReviewImperativeSecurity /// vulnerability to watch out for: A method uses imperative security and might be constructing the permission using state information or return values that can change while the demand is active. /// reason for exclude: filename is snapped directly at the beginning of the function. [SuppressMessage("Microsoft.Security", "CA2103:ReviewImperativeSecurity")] [ResourceExposure(ResourceScope.Machine)] [ResourceConsumption(ResourceScope.Machine)] public Stream OpenFile() { Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded"); IntSecurity.FileDialogOpenFile.Demand(); string filename = FileNamesInternal[0]; if (filename == null || (filename.Length == 0)) throw new ArgumentNullException("FileName"); Stream s = null; // SECREVIEW : We demanded the FileDialog permission above, so it is safe // : to assert this here. Since the user picked the file, it // : is OK to give them readonly access to the stream. // new FileIOPermission(FileIOPermissionAccess.Read, IntSecurity.UnsafeGetFullPath(filename)).Assert(); try { s = new FileStream(filename, FileMode.Open, FileAccess.Read, FileShare.Read); } finally { CodeAccessPermission.RevertAssert(); } return s; } ////// Opens the file selected by the user with read-only permission. The file /// attempted is specified by the ///property. /// /// /// public override void Reset() { base.Reset(); SetOption(NativeMethods.OFN_FILEMUSTEXIST, true); } internal override void EnsureFileDialogPermission() { Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded in OpenFileDialog.RunFileDialog"); IntSecurity.FileDialogOpenFile.Demand(); } ////// Resets all properties to their default values. /// ////// /// Displays a file open dialog. /// ///internal override bool RunFileDialog(NativeMethods.OPENFILENAME_I ofn) { //We have already done the demand in EnsureFileDialogPermission but it doesn't hurt to do it again Debug.WriteLineIf(IntSecurity.SecurityDemand.TraceVerbose, "FileDialogOpenFile Demanded in OpenFileDialog.RunFileDialog"); IntSecurity.FileDialogOpenFile.Demand(); bool result = UnsafeNativeMethods.GetOpenFileName(ofn); if (!result) { // Something may have gone wrong - check for error condition // int errorCode = SafeNativeMethods.CommDlgExtendedError(); switch (errorCode) { case NativeMethods.FNERR_INVALIDFILENAME: throw new InvalidOperationException(SR.GetString(SR.FileDialogInvalidFileName, FileName)); case NativeMethods.FNERR_SUBCLASSFAILURE: throw new InvalidOperationException(SR.GetString(SR.FileDialogSubLassFailure)); case NativeMethods.FNERR_BUFFERTOOSMALL: throw new InvalidOperationException(SR.GetString(SR.FileDialogBufferTooSmall)); } } return result; } internal override string[] ProcessVistaFiles(FileDialogNative.IFileDialog dialog) { FileDialogNative.IFileOpenDialog openDialog = (FileDialogNative.IFileOpenDialog)dialog; if (Multiselect) { FileDialogNative.IShellItemArray results; openDialog.GetResults(out results); uint count; results.GetCount(out count); string[] files = new string[count]; for (uint i = 0; i < count; ++i) { FileDialogNative.IShellItem item; results.GetItemAt(i, out item); files[unchecked((int)i)] = GetFilePathFromShellItem(item); } return files; } else { FileDialogNative.IShellItem item; openDialog.GetResult(out item); return new string[] { GetFilePathFromShellItem(item) }; } } internal override FileDialogNative.IFileDialog CreateVistaDialog() { return new FileDialogNative.NativeFileOpenDialog(); } [ Browsable(false), DesignerSerializationVisibility(DesignerSerializationVisibility.Hidden), SuppressMessage("Microsoft.Security", "CA2106:SecureAsserts") ] public string SafeFileName { get { new FileIOPermission(PermissionState.Unrestricted).Assert(); string fullPath = FileName; CodeAccessPermission.RevertAssert(); if (string.IsNullOrEmpty(fullPath)) { return ""; } string safePath = RemoveSensitivePathInformation(fullPath); return safePath; } } private static string RemoveSensitivePathInformation(string fullPath) { return System.IO.Path.GetFileName(fullPath); } [ Browsable(false), DesignerSerializationVisibility(DesignerSerializationVisibility.Hidden), SuppressMessage("Microsoft.Performance", "CA1819:PropertiesShouldNotReturnArrays"), SuppressMessage("Microsoft.Security", "CA2106:SecureAsserts") ] public string[] SafeFileNames { get { new FileIOPermission(PermissionState.Unrestricted).Assert(); string[] fullPaths = FileNames; CodeAccessPermission.RevertAssert(); if (null == fullPaths || 0 == fullPaths.Length) { return new string[0]; } string[] safePaths = new string[fullPaths.Length]; for (int i = 0; i < safePaths.Length; ++i) { safePaths[i] = RemoveSensitivePathInformation(fullPaths[i]); } return safePaths; } } internal override bool SettingsSupportVistaDialog { get { return base.SettingsSupportVistaDialog && !this.ShowReadOnly; } } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- MetadataCache.cs
- ToolStripDropDownClosingEventArgs.cs
- TextTreeTextBlock.cs
- webclient.cs
- TableLayoutRowStyleCollection.cs
- Win32Native.cs
- DeviceSpecific.cs
- ConnectionString.cs
- ValueTypeFieldReference.cs
- ListViewItemMouseHoverEvent.cs
- TimelineGroup.cs
- PathParser.cs
- LabelExpression.cs
- TimelineGroup.cs
- ToolStripItemEventArgs.cs
- HtmlInputText.cs
- ProjectionCamera.cs
- XmlQueryContext.cs
- CategoryList.cs
- UIElementAutomationPeer.cs
- NameValueSectionHandler.cs
- SafeReadContext.cs
- DocumentPaginator.cs
- SkipStoryboardToFill.cs
- httpserverutility.cs
- VisualStyleTypesAndProperties.cs
- GiveFeedbackEvent.cs
- TextPatternIdentifiers.cs
- Size3DConverter.cs
- SchemaCollectionPreprocessor.cs
- PersistNameAttribute.cs
- TaskCanceledException.cs
- DesignerForm.cs
- CriticalFinalizerObject.cs
- CatalogZone.cs
- Models.cs
- TypeSystem.cs
- BitmapEffectDrawingContent.cs
- WebPartManagerInternals.cs
- DataControlField.cs
- FreezableCollection.cs
- RowToParametersTransformer.cs
- MediaTimeline.cs
- TypeDelegator.cs
- InheritanceRules.cs
- XmlElementAttributes.cs
- Matrix.cs
- _SafeNetHandles.cs
- RedirectionProxy.cs
- EnumUnknown.cs
- CornerRadius.cs
- SoapProtocolReflector.cs
- LogLogRecordHeader.cs
- ActivationWorker.cs
- URLString.cs
- FragmentQueryKB.cs
- NotificationContext.cs
- Header.cs
- TextDataBindingHandler.cs
- DBCommand.cs
- NegationPusher.cs
- XmlIncludeAttribute.cs
- WorkflowMarkupSerializer.cs
- SystemDiagnosticsSection.cs
- ProcessProtocolHandler.cs
- OdbcUtils.cs
- ConfigViewGenerator.cs
- PermissionAttributes.cs
- EventProviderWriter.cs
- SettingsPropertyValueCollection.cs
- IdentityManager.cs
- ThreadStaticAttribute.cs
- XmlHierarchyData.cs
- CompositeTypefaceMetrics.cs
- SoapHeader.cs
- WinInetCache.cs
- Item.cs
- NegotiateStream.cs
- TreeNodeSelectionProcessor.cs
- ColorTransformHelper.cs
- SimpleApplicationHost.cs
- WebPartsSection.cs
- BindingCompleteEventArgs.cs
- Point3DValueSerializer.cs
- input.cs
- BuildDependencySet.cs
- MatchSingleFxEngineOpcode.cs
- Attributes.cs
- MessageBox.cs
- ManualResetEventSlim.cs
- EqualityComparer.cs
- DateTimeOffsetConverter.cs
- ExternalException.cs
- WarningException.cs
- Number.cs
- HtmlImage.cs
- NewItemsContextMenuStrip.cs
- GetReadStreamResult.cs
- SByteConverter.cs
- WorkflowRuntimeSection.cs