Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / python / cpython2 / 22d9ee7e177bb0fcb514e898daaec98907ebde0c / . / Lib / test / test_cgi.py
blob: 7fdd482b9424e48e2628c80f238d8cdec849ce72 [file] [log] [blame]
Ezio Melottief490962010-01-31 11:46:54 +0000[diff] [blame]1from test.test_support import run_unittest, check_warnings
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]2import cgi
3import os
4import sys
Guido van Rossum9568b732006-08-10 17:41:07 +0000[diff] [blame]5import tempfile
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]6import unittest
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]7
8class HackedSysModule:
9 # The regression test will have real values in sys.argv, which
Fred Drake004d5e62000-10-23 17:22:08 +0000[diff] [blame]10 # will completely confuse the test of the cgi module
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]11 argv = []
12 stdin = sys.stdin
13
14cgi.sys = HackedSysModule()
15
16try:
17 from cStringIO import StringIO
18except ImportError:
19 from StringIO import StringIO
20
21class ComparableException:
22 def __init__(self, err):
23 self.err = err
24
25 def __str__(self):
26 return str(self.err)
27
28 def __cmp__(self, anExc):
29 if not isinstance(anExc, Exception):
30 return -1
31 x = cmp(self.err.__class__, anExc.__class__)
32 if x != 0:
33 return x
34 return cmp(self.err.args, anExc.args)
35
36 def __getattr__(self, attr):
Guido van Rossum846d6db2001-01-17 15:08:37 +0000[diff] [blame]37 return getattr(self.err, attr)
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]38
39def do_test(buf, method):
40 env = {}
41 if method == "GET":
42 fp = None
43 env['REQUEST_METHOD'] = 'GET'
44 env['QUERY_STRING'] = buf
45 elif method == "POST":
46 fp = StringIO(buf)
47 env['REQUEST_METHOD'] = 'POST'
48 env['CONTENT_TYPE'] = 'application/x-www-form-urlencoded'
49 env['CONTENT_LENGTH'] = str(len(buf))
50 else:
51 raise ValueError, "unknown method: %s" % method
52 try:
53 return cgi.parse(fp, env, strict_parsing=1)
54 except StandardError, err:
55 return ComparableException(err)
56
Neil Schemenauer66edb622004-07-19 15:38:11 +0000[diff] [blame]57parse_strict_test_cases = [
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]58 ("", ValueError("bad query field: ''")),
59 ("&", ValueError("bad query field: ''")),
60 ("&&", ValueError("bad query field: ''")),
Jeremy Hyltonafde7e22000-09-15 20:06:57 +0000[diff] [blame]61 (";", ValueError("bad query field: ''")),
62 (";&;", ValueError("bad query field: ''")),
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]63 # Should the next few really be valid?
64 ("=", {}),
65 ("=&=", {}),
Jeremy Hyltonafde7e22000-09-15 20:06:57 +0000[diff] [blame]66 ("=;=", {}),
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]67 # This rest seem to make sense
68 ("=a", {'': ['a']}),
69 ("&=a", ValueError("bad query field: ''")),
70 ("=a&", ValueError("bad query field: ''")),
71 ("=&a", ValueError("bad query field: 'a'")),
72 ("b=a", {'b': ['a']}),
73 ("b+=a", {'b ': ['a']}),
74 ("a=b=a", {'a': ['b=a']}),
75 ("a=+b=a", {'a': [' b=a']}),
76 ("&b=a", ValueError("bad query field: ''")),
77 ("b&=a", ValueError("bad query field: 'b'")),
78 ("a=a+b&b=b+c", {'a': ['a b'], 'b': ['b c']}),
79 ("a=a+b&a=b+a", {'a': ['a b', 'b a']}),
80 ("x=1&y=2.0&z=2-3.%2b0", {'x': ['1'], 'y': ['2.0'], 'z': ['2-3.+0']}),
Jeremy Hyltonafde7e22000-09-15 20:06:57 +0000[diff] [blame]81 ("x=1;y=2.0&z=2-3.%2b0", {'x': ['1'], 'y': ['2.0'], 'z': ['2-3.+0']}),
82 ("x=1;y=2.0;z=2-3.%2b0", {'x': ['1'], 'y': ['2.0'], 'z': ['2-3.+0']}),
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]83 ("Hbc5161168c542333633315dee1182227:key_store_seqid=400006&cuyer=r&view=bustomer&order_id=0bb2e248638833d48cb7fed300000f1b&expire=964546263&lobale=en-US&kid=130003.300038&ss=env",
84 {'Hbc5161168c542333633315dee1182227:key_store_seqid': ['400006'],
85 'cuyer': ['r'],
86 'expire': ['964546263'],
87 'kid': ['130003.300038'],
88 'lobale': ['en-US'],
89 'order_id': ['0bb2e248638833d48cb7fed300000f1b'],
90 'ss': ['env'],
91 'view': ['bustomer'],
92 }),
Fred Drake004d5e62000-10-23 17:22:08 +0000[diff] [blame]93
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]94 ("group_id=5470&set=custom&_assigned_to=31392&_status=1&_category=100&SUBMIT=Browse",
95 {'SUBMIT': ['Browse'],
96 '_assigned_to': ['31392'],
97 '_category': ['100'],
98 '_status': ['1'],
99 'group_id': ['5470'],
100 'set': ['custom'],
101 })
102 ]
103
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]104def first_elts(list):
105 return map(lambda x:x[0], list)
106
107def first_second_elts(list):
108 return map(lambda p:(p[0], p[1][0]), list)
109
Facundo Batistaa6a4d502008-06-21 18:58:04 +0000[diff] [blame]110def gen_result(data, environ):
111 fake_stdin = StringIO(data)
112 fake_stdin.seek(0)
113 form = cgi.FieldStorage(fp=fake_stdin, environ=environ)
114
115 result = {}
116 for k, v in dict(form).items():
Florent Xicluna945a8ba2010-03-17 19:15:56 +0000[diff] [blame]117 result[k] = isinstance(v, list) and form.getlist(k) or v.value
Facundo Batistaa6a4d502008-06-21 18:58:04 +0000[diff] [blame]118
119 return result
120
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]121class CgiTests(unittest.TestCase):
Neil Schemenauer66edb622004-07-19 15:38:11 +0000[diff] [blame]122
Senthil Kumarand17a8982012-03-13 01:48:41 -0700[diff] [blame]123 def test_escape(self):
124 self.assertEqual("test & string", cgi.escape("test & string"))
125 self.assertEqual("&lt;test string&gt;", cgi.escape("<test string>"))
126 self.assertEqual("&quot;test string&quot;", cgi.escape('"test string"', True))
127
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]128 def test_strict(self):
129 for orig, expect in parse_strict_test_cases:
130 # Test basic parsing
131 d = do_test(orig, "GET")
132 self.assertEqual(d, expect, "Error parsing %s" % repr(orig))
133 d = do_test(orig, "POST")
134 self.assertEqual(d, expect, "Error parsing %s" % repr(orig))
135
136 env = {'QUERY_STRING': orig}
137 fcd = cgi.FormContentDict(env)
138 sd = cgi.SvFormContentDict(env)
139 fs = cgi.FieldStorage(environ=env)
Florent Xicluna945a8ba2010-03-17 19:15:56 +0000[diff] [blame]140 if isinstance(expect, dict):
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]141 # test dict interface
142 self.assertEqual(len(expect), len(fcd))
Michael Foord98e7b762010-03-20 03:00:34 +0000[diff] [blame]143 self.assertItemsEqual(expect.keys(), fcd.keys())
144 self.assertItemsEqual(expect.values(), fcd.values())
145 self.assertItemsEqual(expect.items(), fcd.items())
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]146 self.assertEqual(fcd.get("nonexistent field", "default"), "default")
147 self.assertEqual(len(sd), len(fs))
Michael Foord98e7b762010-03-20 03:00:34 +0000[diff] [blame]148 self.assertItemsEqual(sd.keys(), fs.keys())
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]149 self.assertEqual(fs.getvalue("nonexistent field", "default"), "default")
150 # test individual fields
151 for key in expect.keys():
152 expect_val = expect[key]
Benjamin Peterson5c8da862009-06-30 22:57:08 +0000[diff] [blame]153 self.assertTrue(fcd.has_key(key))
Michael Foord98e7b762010-03-20 03:00:34 +0000[diff] [blame]154 self.assertItemsEqual(fcd[key], expect[key])
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]155 self.assertEqual(fcd.get(key, "default"), fcd[key])
Benjamin Peterson5c8da862009-06-30 22:57:08 +0000[diff] [blame]156 self.assertTrue(fs.has_key(key))
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]157 if len(expect_val) > 1:
158 single_value = 0
159 else:
160 single_value = 1
161 try:
162 val = sd[key]
163 except IndexError:
Benjamin Peterson5c8da862009-06-30 22:57:08 +0000[diff] [blame]164 self.assertFalse(single_value)
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]165 self.assertEqual(fs.getvalue(key), expect_val)
166 else:
Benjamin Peterson5c8da862009-06-30 22:57:08 +0000[diff] [blame]167 self.assertTrue(single_value)
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]168 self.assertEqual(val, expect_val[0])
169 self.assertEqual(fs.getvalue(key), expect_val[0])
Michael Foord98e7b762010-03-20 03:00:34 +0000[diff] [blame]170 self.assertItemsEqual(sd.getlist(key), expect_val)
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]171 if single_value:
Michael Foord98e7b762010-03-20 03:00:34 +0000[diff] [blame]172 self.assertItemsEqual(sd.values(),
Ezio Melottief490962010-01-31 11:46:54 +0000[diff] [blame]173 first_elts(expect.values()))
Michael Foord98e7b762010-03-20 03:00:34 +0000[diff] [blame]174 self.assertItemsEqual(sd.items(),
Ezio Melottief490962010-01-31 11:46:54 +0000[diff] [blame]175 first_second_elts(expect.items()))
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]176
177 def test_weird_formcontentdict(self):
178 # Test the weird FormContentDict classes
179 env = {'QUERY_STRING': "x=1&y=2.0&z=2-3.%2b0&1=1abc"}
180 expect = {'x': 1, 'y': 2.0, 'z': '2-3.+0', '1': '1abc'}
181 d = cgi.InterpFormContentDict(env)
182 for k, v in expect.items():
183 self.assertEqual(d[k], v)
184 for k, v in d.items():
185 self.assertEqual(expect[k], v)
Michael Foord98e7b762010-03-20 03:00:34 +0000[diff] [blame]186 self.assertItemsEqual(expect.values(), d.values())
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]187
188 def test_log(self):
189 cgi.log("Testing")
190
191 cgi.logfp = StringIO()
192 cgi.initlog("%s", "Testing initlog 1")
193 cgi.log("%s", "Testing log 2")
194 self.assertEqual(cgi.logfp.getvalue(), "Testing initlog 1\nTesting log 2\n")
195 if os.path.exists("/dev/null"):
196 cgi.logfp = None
197 cgi.logfile = "/dev/null"
198 cgi.initlog("%s", "Testing log 3")
199 cgi.log("Testing log 4")
200
201 def test_fieldstorage_readline(self):
202 # FieldStorage uses readline, which has the capacity to read all
203 # contents of the input file into memory; we use readline's size argument
204 # to prevent that for files that do not contain any newlines in
205 # non-GET/HEAD requests
206 class TestReadlineFile:
207 def __init__(self, file):
208 self.file = file
209 self.numcalls = 0
210
211 def readline(self, size=None):
212 self.numcalls += 1
213 if size:
214 return self.file.readline(size)
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]215 else:
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]216 return self.file.readline()
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]217
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]218 def __getattr__(self, name):
219 file = self.__dict__['file']
220 a = getattr(file, name)
221 if not isinstance(a, int):
222 setattr(self, name, a)
223 return a
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]224
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]225 f = TestReadlineFile(tempfile.TemporaryFile())
226 f.write('x' * 256 * 1024)
227 f.seek(0)
228 env = {'REQUEST_METHOD':'PUT'}
229 fs = cgi.FieldStorage(fp=f, environ=env)
230 # if we're not chunking properly, readline is only called twice
231 # (by read_binary); if we are chunking properly, it will be called 5 times
232 # as long as the chunksize is 1 << 16.
Benjamin Peterson5c8da862009-06-30 22:57:08 +0000[diff] [blame]233 self.assertTrue(f.numcalls > 2)
Jeremy Hyltond9827c42000-08-03 22:11:43 +0000[diff] [blame]234
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]235 def test_fieldstorage_multipart(self):
236 #Test basic FieldStorage multipart parsing
237 env = {'REQUEST_METHOD':'POST', 'CONTENT_TYPE':'multipart/form-data; boundary=---------------------------721837373350705526688164684', 'CONTENT_LENGTH':'558'}
238 postdata = """-----------------------------721837373350705526688164684
Guido van Rossum9568b732006-08-10 17:41:07 +0000[diff] [blame]239Content-Disposition: form-data; name="id"
240
2411234
242-----------------------------721837373350705526688164684
243Content-Disposition: form-data; name="title"
244
245
246-----------------------------721837373350705526688164684
247Content-Disposition: form-data; name="file"; filename="test.txt"
248Content-Type: text/plain
249
250Testing 123.
251
252-----------------------------721837373350705526688164684
253Content-Disposition: form-data; name="submit"
254
Tim Petersb7ad1eb2006-08-10 23:22:13 +0000[diff] [blame]255 Add\x20
Guido van Rossum9568b732006-08-10 17:41:07 +0000[diff] [blame]256-----------------------------721837373350705526688164684--
257"""
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]258 fs = cgi.FieldStorage(fp=StringIO(postdata), environ=env)
Ezio Melotti2623a372010-11-21 13:34:58 +0000[diff] [blame]259 self.assertEqual(len(fs.list), 4)
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]260 expect = [{'name':'id', 'filename':None, 'value':'1234'},
261 {'name':'title', 'filename':None, 'value':''},
262 {'name':'file', 'filename':'test.txt','value':'Testing 123.\n'},
263 {'name':'submit', 'filename':None, 'value':' Add '}]
264 for x in range(len(fs.list)):
265 for k, exp in expect[x].items():
266 got = getattr(fs.list[x], k)
Ezio Melotti2623a372010-11-21 13:34:58 +0000[diff] [blame]267 self.assertEqual(got, exp)
Guido van Rossum9568b732006-08-10 17:41:07 +0000[diff] [blame]268
Serhiy Storchakae2cc3412013-06-17 16:33:48 +0300[diff] [blame]269 def test_fieldstorage_multipart_maxline(self):
270 # Issue #18167
271 maxline = 1 << 16
272 self.maxDiff = None
273 def check(content):
274 data = """
275---123
276Content-Disposition: form-data; name="upload"; filename="fake.txt"
277Content-Type: text/plain
278
279%s
280---123--
281""".replace('\n', '\r\n') % content
282 environ = {
283 'CONTENT_LENGTH': str(len(data)),
284 'CONTENT_TYPE': 'multipart/form-data; boundary=-123',
285 'REQUEST_METHOD': 'POST',
286 }
287 self.assertEqual(gen_result(data, environ), {'upload': content})
288 check('x' * (maxline - 1))
289 check('x' * (maxline - 1) + '\r')
290 check('x' * (maxline - 1) + '\r' + 'y' * (maxline - 1))
291
Facundo Batistaa6a4d502008-06-21 18:58:04 +0000[diff] [blame]292 _qs_result = {
293 'key1': 'value1',
294 'key2': ['value2x', 'value2y'],
295 'key3': 'value3',
296 'key4': 'value4'
297 }
298 def testQSAndUrlEncode(self):
299 data = "key2=value2x&key3=value3&key4=value4"
300 environ = {
301 'CONTENT_LENGTH': str(len(data)),
302 'CONTENT_TYPE': 'application/x-www-form-urlencoded',
303 'QUERY_STRING': 'key1=value1&key2=value2y',
304 'REQUEST_METHOD': 'POST',
305 }
306 v = gen_result(data, environ)
307 self.assertEqual(self._qs_result, v)
308
309 def testQSAndFormData(self):
310 data = """
311---123
312Content-Disposition: form-data; name="key2"
313
314value2y
315---123
316Content-Disposition: form-data; name="key3"
317
318value3
319---123
320Content-Disposition: form-data; name="key4"
321
322value4
323---123--
324"""
325 environ = {
326 'CONTENT_LENGTH': str(len(data)),
327 'CONTENT_TYPE': 'multipart/form-data; boundary=-123',
328 'QUERY_STRING': 'key1=value1&key2=value2x',
329 'REQUEST_METHOD': 'POST',
330 }
331 v = gen_result(data, environ)
332 self.assertEqual(self._qs_result, v)
333
334 def testQSAndFormDataFile(self):
335 data = """
336---123
337Content-Disposition: form-data; name="key2"
338
339value2y
340---123
341Content-Disposition: form-data; name="key3"
342
343value3
344---123
345Content-Disposition: form-data; name="key4"
346
347value4
348---123
349Content-Disposition: form-data; name="upload"; filename="fake.txt"
350Content-Type: text/plain
351
352this is the content of the fake file
353
354---123--
355"""
356 environ = {
357 'CONTENT_LENGTH': str(len(data)),
358 'CONTENT_TYPE': 'multipart/form-data; boundary=-123',
359 'QUERY_STRING': 'key1=value1&key2=value2x',
360 'REQUEST_METHOD': 'POST',
361 }
362 result = self._qs_result.copy()
363 result.update({
364 'upload': 'this is the content of the fake file\n'
365 })
366 v = gen_result(data, environ)
367 self.assertEqual(result, v)
368
Facundo Batistaace0bcf2008-09-08 00:20:28 +0000[diff] [blame]369 def test_deprecated_parse_qs(self):
Florent Xicluna78c18712010-03-17 20:05:11 +0000[diff] [blame]370 # this func is moved to urlparse, this is just a sanity check
371 with check_warnings(('cgi.parse_qs is deprecated, use urlparse.'
372 'parse_qs instead', PendingDeprecationWarning)):
Ezio Melottief490962010-01-31 11:46:54 +0000[diff] [blame]373 self.assertEqual({'a': ['A1'], 'B': ['B3'], 'b': ['B2']},
374 cgi.parse_qs('a=A1&b=B2&B=B3'))
Facundo Batistaace0bcf2008-09-08 00:20:28 +0000[diff] [blame]375
376 def test_deprecated_parse_qsl(self):
Florent Xicluna78c18712010-03-17 20:05:11 +0000[diff] [blame]377 # this func is moved to urlparse, this is just a sanity check
378 with check_warnings(('cgi.parse_qsl is deprecated, use urlparse.'
379 'parse_qsl instead', PendingDeprecationWarning)):
Ezio Melottief490962010-01-31 11:46:54 +0000[diff] [blame]380 self.assertEqual([('a', 'A1'), ('b', 'B2'), ('B', 'B3')],
381 cgi.parse_qsl('a=A1&b=B2&B=B3'))
Facundo Batistaace0bcf2008-09-08 00:20:28 +0000[diff] [blame]382
Fred Drake52481032008-12-04 18:25:17 +0000[diff] [blame]383 def test_parse_header(self):
384 self.assertEqual(
385 cgi.parse_header("text/plain"),
386 ("text/plain", {}))
387 self.assertEqual(
388 cgi.parse_header("text/vnd.just.made.this.up ; "),
389 ("text/vnd.just.made.this.up", {}))
390 self.assertEqual(
391 cgi.parse_header("text/plain;charset=us-ascii"),
392 ("text/plain", {"charset": "us-ascii"}))
393 self.assertEqual(
394 cgi.parse_header('text/plain ; charset="us-ascii"'),
395 ("text/plain", {"charset": "us-ascii"}))
396 self.assertEqual(
397 cgi.parse_header('text/plain ; charset="us-ascii"; another=opt'),
398 ("text/plain", {"charset": "us-ascii", "another": "opt"}))
399 self.assertEqual(
400 cgi.parse_header('attachment; filename="silly.txt"'),
401 ("attachment", {"filename": "silly.txt"}))
402 self.assertEqual(
403 cgi.parse_header('attachment; filename="strange;name"'),
404 ("attachment", {"filename": "strange;name"}))
405 self.assertEqual(
406 cgi.parse_header('attachment; filename="strange;name";size=123;'),
407 ("attachment", {"filename": "strange;name", "size": "123"}))
Senthil Kumaran59a06d42011-10-20 00:52:24 +0800[diff] [blame]408 self.assertEqual(
409 cgi.parse_header('form-data; name="files"; filename="fo\\"o;bar"'),
410 ("form-data", {"name": "files", "filename": 'fo"o;bar'}))
Fred Drake52481032008-12-04 18:25:17 +0000[diff] [blame]411
Facundo Batistaace0bcf2008-09-08 00:20:28 +0000[diff] [blame]412
Georg Brandle1844332006-10-29 20:09:12 +0000[diff] [blame]413def test_main():
414 run_unittest(CgiTests)
415
416if __name__ == '__main__':
417 test_main()