This article dives into the mock questions I would ask, along with responses that are my personal best guess to the answers. Could my answers not reflect actual opinions shared by the team at Microsoft? Sure, but I'm hoping folks from the .NET team can jump in to correct me if I am way off base.
This is a rather interesting time for .NET – what's being done shapes the future of .NET for the next decade. Let's ask the honest questions and hopefully all of us will understand the new .NET ecosystem a little better.
We’ve ported the open-source Windows Calculator to yet another platform: Linux! With all the rumors of a Microsoft browser – Edge – coming to Linux soon, we thought it would be good to show that the open source community can be effective in bringing a piece of Windows to Linux.
Today, we are releasing an update to .NET 8.0.400 SDK due to an issue with (MSBuild Crash when publishing containers)[dotnet/sdk#42731].
The .NET 8.0.401 release is available for download. This SDK includes the previously released .NET 8.0.8 Runtime and is in support of Visual Studio 17.11 release. The latest 8.0 release is always listed at .NET 8.0 Releases.
"We migrated Stack Overflow's ad server from .NET 4.6.2 to .NET 5.0 and we are testing it on a canary server in production. We are seeing big improvements in memory usage and in server response times. It wasn't the main goal of the migration, but definitely a nice to have" / Twitter
متود زیر برای تولید عبارت مبتنی بر الگو زمانی که الگو پیچیدهتر از این است که بشود با string.Format به راحتی پیاده سازی شود ولی چندان هم پیچیده نیست که ابزارهای حرفه ایتری مانند T4 یا Razor به کار بیایند، میتواند مورد استفاده قرار گیرد:
/// <summary>
/// Insert values from an object into a string pattern. To specify the object's property you have to use the '{propertyName}'.
/// </summary>
/// <remarks>
/// This method is a replacement to String.Format, but it has two differences:
/// <list type="simple">
/// <item>It reverese the order you call the functionality, instead of writing String.Format(pattern, args) you write pattern.FillByObject(args). This makes the code look cleaner.</item>
/// <item>You supply the pattern with an object and specify insertion points by property names.</item>
/// </list>
/// <example>
/// <![CDATA[
/// "First name:{firstName}, Sur name:{Surname}".FillByObject(new {firstName = "Sam", lastName="Naseri"});
/// ]]>
/// </example>
/// </remarks>
/// <seealso cref="Fill"/>
/// <typeparam name="T">Type of bindingValue.</typeparam>
/// <param name="bindingPattern">The pattern to fill.</param>
/// <param name="bindingValue">The object providing values to fill in the pattern.</param>
/// <returns>The pattern filled with values.</returns>
public static string FillByObject<T>(this string bindingPattern, T bindingValue)
{
var properties = GetProperties(typeof(T)).ToList();
var values = properties.Select(property => property.GetValue(bindingValue, new object[] { })).ToList();
var result = bindingPattern;
for (int index = 0; index < properties.Count; index++)
{
var property = properties[index];
var propPattern = "{" + property.Name + "}";
var old = result;
result = result.Replace(propPattern, values[index] != null ? values[index].ToString() : "");
}
return result;
}پیاده سازی فوق یک پیاده سازی بسیار خام و بسیار کند است و جای بهبود زیادی دارد. من فقط برای سناریوهای ساده که کارایی مطرح نیست استفاده از متود فوق را توصیه میکنم.
متودهای جانبی مورد نیاز:
private static IEnumerable<PropertyInfo> GetProperties(Type t)
{
return t.GetProperties(BindingFlags.Public | BindingFlags.Instance);
}همچنین متود زیر هم میتواند نوشتن string.Format را یک خرده سادهتر کند:
/// <summary>
/// A simple replacement for String.Format which only makes the codes look nicer.
/// </summary>
/// <param name="pattern">The source string that you want to replace insertion points on it.</param>
/// <param name="args">Values to be replaced in the pattern.</param>
/// <returns></returns>
public static string Fill(this string pattern, params object[] args)
{
return string.Format(pattern, args);
}
The purpose of these experiments is to show that everything has a cost
If you use C#/XAML the cost is performance but you gain a vast amount of capability out of the box
If you use C++/DirectX the cost is increased effort and development time but you gain the best performance and so forth
یک مورد دیگر ویندوز هشت هست که خبرهایی در مورد اون منتشر شده:
Windows 8: App Hub basing on Silverlight
http://windows8tm.com/win8news/windows-8-app-hub-basing-on-silverlight.html
Windows 8: App Hub basing on Silverlight
http://windows8tm.com/win8news/windows-8-app-hub-basing-on-silverlight.html
Security Advisory Notices
CVE-2019-1077 Visual Studio Extension Auto Update Vulnerability
An elevation of privilege vulnerability exists when the Visual Studio Extension auto-update process improperly performs certain file operations. An attacker who successfully exploited this vulnerability could delete files in arbitrary locations. To exploit this vulnerability, an attacker would require unprivileged access to a vulnerable system. The security update addresses the vulnerability by securing locations the Visual Studio Extension auto-update performs file operations in.
CVE-2019-1075 ASP.NET Core Spoofing Vulnerability
A spoofing vulnerability exists in ASP.NET Core that could lead to an open redirect. An attacker who successfully exploited the vulnerability could redirect a targeted user to a malicious website. To exploit the vulnerability, an attacker could send a link that has a specially crafted URL and convince the user to click the link.
The security update addresses the vulnerability by correcting how ASP.NET Core parses URLs. Details can be found in the .NET Core release notes.
CVE-2019-1113 WorkflowDesigner XOML deserialization allows code execution
A XOML file referencing certain types could cause random code to be executed when the XOML file is opened in Visual Studio. There is now a restriction on what types are allowed to be used in XOML files. If a XOML file containing one of the newly unauthorized types is opened, a message is displayed explaining that the type is unauthorized.
For further information, please refer to https://support.microsoft.com/en-us/help/4512190/remote-code-execution-vulnerability-if-types-are-specified-in-xoml.
تستی که من با تعداد رکوردها برای واکشی از دیتابیس انجام دادم به یه مشکل برخورد کردم:
زمانی که تعداد رکوردها زیر 100 تا باشه خب win app به راحتی اطلاعات رو بارگزاری میکنه
ولی وقتی بیش از این مقدار مثلا 288 رکورد در زمان اجرای پروژه به مشکل برخورد میکنم که فرم بارگزاری نمیشه و از حالت Start میپره بیرون
دلیلش چی میتونه باشه؟ محدودیتهای وب سرویس؟ چطور و چگونه این مشکل رو برطرف کنیم؟
پیام Catch :
از پیام معلومه که از حداکثر مقدار دریافتی یک واکشی بیش از حد درخواست کردیم ...
یک راه حل جامع چی میتونه باشه؟
زمانی که تعداد رکوردها زیر 100 تا باشه خب win app به راحتی اطلاعات رو بارگزاری میکنه
ولی وقتی بیش از این مقدار مثلا 288 رکورد در زمان اجرای پروژه به مشکل برخورد میکنم که فرم بارگزاری نمیشه و از حالت Start میپره بیرون
دلیلش چی میتونه باشه؟ محدودیتهای وب سرویس؟ چطور و چگونه این مشکل رو برطرف کنیم؟
پیام Catch :
The maximum message size quota for incoming messages (65536) has been exceeded. To increase the quota, use the MaxReceivedMessageSize property on the appropriate binding element.
یک راه حل جامع چی میتونه باشه؟