Blame - Lib/cgi.py - platform/external/python/cpython3

1996-03-06 07:20:06 +0000

[diff] [blame]

12

"""Support module for CGI (Common Gateway Interface) scripts.

Guido van Rossum

1c9daa8

1995-09-18 21:52:37 +0000

[diff] [blame]

13

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

14

This module defines a number of utilities for use by CGI scripts

15

written in Python.

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

16

"""

17

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

18

# History

19

# -------

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

20

#

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

21

# Michael McLay started this module. Steve Majewski changed the

22

# interface to SvFormContentDict and FormContentDict. The multipart

23

# parsing was inspired by code submitted by Andreas Paepcke. Guido van

24

# Rossum rewrote, reformatted and documented the module and is currently

25

# responsible for its maintenance.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

26

#

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

27

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

28

__version__ = "2.6"

Guido van Rossum

0147db0

1996-03-09 03:16:04 +0000

[diff] [blame]

29

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Imports

# =======

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

34

from io import StringIO, BytesIO, TextIOWrapper

Serhiy Storchaka

2e576f5

2017-04-24 09:05:00 +0300

[diff] [blame]

35

from collections.abc import Mapping

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

36

import sys

37

import os

Jeremy Hylton

1afc169

2008-06-18 20:49:58 +0000

[diff] [blame]

38

import urllib.parse

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

39

from email.parser import FeedParser

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

40

from email.message import Message

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

41

from warnings import warn

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

42

import html

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

43

import locale

44

import tempfile

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

45

Georg Brandl

49d1b4f

2008-05-11 21:42:51 +0000

[diff] [blame]

46

__all__ = ["MiniFieldStorage", "FieldStorage",

Guido van Rossum

a8423a9

2001-03-19 13:40:44 +0000

[diff] [blame]

47

"parse", "parse_qs", "parse_qsl", "parse_multipart",

Martin Panter

1cd2772

2016-06-06 01:53:28 +0000

[diff] [blame]

48

"parse_header", "test", "print_exception", "print_environ",

Guido van Rossum

a8423a9

2001-03-19 13:40:44 +0000

[diff] [blame]

49

"print_form", "print_directory", "print_arguments",

50

"print_environ_usage", "escape"]

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

# Logging support

# ===============

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

55

logfile = "" # Filename to log to, if not empty

56

logfp = None # File object to log to, if not None

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

57

58

def initlog(*allargs):

59

"""Write a log message, if there is a log file.

60

61

Even though this function is called initlog(), you should always

62

use log(); log is a variable that is set either to initlog

63

(initially), to dolog (once the log file has been opened), or to

64

nolog (when logging is disabled).

65

66

The first argument is a format string; the remaining arguments (if

67

any) are arguments to the % operator, so e.g.

68

log("%s: %s", "a", "b")

69

will write "a: b" to the log file, followed by a newline.

70

71

If the global logfp is not None, it should be a file object to

72

which log data is written.

73

74

If the global logfp is None, the global logfile may be a string

75

giving a filename to open, in append mode. This file should be

76

world writable!!! If the file can't be opened, logging is

77

silently disabled (since there is no safe place where we could

78

send an error message).

79

80

"""

Victor Stinner

d33344a

2011-07-14 22:28:36 +0200

[diff] [blame]

81

global log, logfile, logfp

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

82

if logfile and not logfp:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

83

try:

84

logfp = open(logfile, "a")

Andrew Svetlov

f7a17b4

2012-12-25 16:47:37 +0200

[diff] [blame]

85

except OSError:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

86

pass

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

87

if not logfp:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

88

log = nolog

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

89

else:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

90

log = dolog

Guido van Rossum

68468eb

2003-02-27 20:14:51 +0000

[diff] [blame]

91

log(*allargs)

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

92

93

def dolog(fmt, *args):

94

"""Write a log message to the log file. See initlog() for docs."""

95

logfp.write(fmt%args + "\n")

96

97

def nolog(*allargs):

98

"""Dummy function, assigned to log when logging is disabled."""

99

pass

100

Victor Stinner

d33344a

2011-07-14 22:28:36 +0200

[diff] [blame]

101

def closelog():

102

"""Close the log file."""

103

global log, logfile, logfp

logfile = ''

if logfp:

logfp.close()

logfp = None

log = initlog

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

110

log = initlog # The current logging function

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

111

112

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Parsing functions

# =================

Guido van Rossum

1997-05-13 19:03:23 +0000

[diff] [blame]

116

# Maximum input we will accept when REQUEST_METHOD is POST

117

# 0 ==> unlimited input

118

maxlen = 0

119

Guido van Rossum

1996-11-11 19:29:11 +0000

[diff] [blame]

120

def parse(fp=None, environ=os.environ, keep_blank_values=0, strict_parsing=0):

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

121

"""Parse a query in the environment or from a file (default stdin)

122

123

Arguments, all optional:

124

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

125

fp : file pointer; default: sys.stdin.buffer

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

126

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

127

environ : environment dictionary; default: os.environ

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

128

129

keep_blank_values: flag indicating whether blank values in

Senthil Kumaran

30e86a4

2010-08-09 20:01:35 +0000

[diff] [blame]

130

percent-encoded forms should be treated as blank strings.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

131

A true value indicates that blanks should be retained as

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

132

blank strings. The default false value indicates that

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

133

blank values are to be ignored and treated as if they were

134

not included.

Guido van Rossum

1996-11-11 19:29:11 +0000

[diff] [blame]

135

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

136

strict_parsing: flag indicating what to do with parsing errors.

137

If false (the default), errors are silently ignored.

138

If true, errors raise a ValueError exception.

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

139

"""

Raymond Hettinger

a144900

2002-05-31 23:54:44 +0000

[diff] [blame]

140

if fp is None:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

141

fp = sys.stdin

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

142

143

# field keys and values (except for files) are returned as strings

144

# an encoding is required to decode the bytes read from self.fp

145

if hasattr(fp,'encoding'):

146

encoding = fp.encoding

else:

encoding = 'latin-1'

# fp.read() must return bytes

151

if isinstance(fp, TextIOWrapper):

152

fp = fp.buffer

153

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

154

if not 'REQUEST_METHOD' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

155

environ['REQUEST_METHOD'] = 'GET' # For testing stand-alone

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

156

if environ['REQUEST_METHOD'] == 'POST':

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

157

ctype, pdict = parse_header(environ['CONTENT_TYPE'])

158

if ctype == 'multipart/form-data':

159

return parse_multipart(fp, pdict)

160

elif ctype == 'application/x-www-form-urlencoded':

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

161

clength = int(environ['CONTENT_LENGTH'])

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

162

if maxlen and clength > maxlen:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

163

raise ValueError('Maximum content length exceeded')

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

164

qs = fp.read(clength).decode(encoding)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

165

else:

166

qs = '' # Unknown content-type

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

167

if 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

168

if qs: qs = qs + '&'

169

qs = qs + environ['QUERY_STRING']

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

170

elif sys.argv[1:]:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

171

if qs: qs = qs + '&'

172

qs = qs + sys.argv[1]

173

environ['QUERY_STRING'] = qs # XXX Shouldn't, really

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

174

elif 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

175

qs = environ['QUERY_STRING']

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

176

else:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

if sys.argv[1:]:

qs = sys.argv[1]

else:

qs = ""

environ['QUERY_STRING'] = qs # XXX Shouldn't, really

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

182

return urllib.parse.parse_qs(qs, keep_blank_values, strict_parsing,

183

encoding=encoding)

Guido van Rossum

e780877

1995-08-07 20:12:09 +0000

[diff] [blame]

184

185

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

186

# parse query string function called from urlparse,

Martin Panter

46f5072

2016-05-26 05:35:26 +0000

[diff] [blame]

187

# this is done in order to maintain backward compatibility.

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

188

Guido van Rossum

1996-11-11 19:29:11 +0000

[diff] [blame]

189

def parse_qs(qs, keep_blank_values=0, strict_parsing=0):

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

190

"""Parse a query given as a string argument."""

191

warn("cgi.parse_qs is deprecated, use urllib.parse.parse_qs instead",

Philip Jenvey

a394f2d

2009-05-08 03:57:12 +0000

[diff] [blame]

192

DeprecationWarning, 2)

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

193

return urllib.parse.parse_qs(qs, keep_blank_values, strict_parsing)

Guido van Rossum

1946f0d

1999-06-04 17:54:39 +0000

[diff] [blame]

194

195

def parse_qsl(qs, keep_blank_values=0, strict_parsing=0):

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

196

"""Parse a query given as a string argument."""

Facundo Batista

a27244b

2008-09-09 02:43:19 +0000

[diff] [blame]

197

warn("cgi.parse_qsl is deprecated, use urllib.parse.parse_qsl instead",

Philip Jenvey

a394f2d

2009-05-08 03:57:12 +0000

[diff] [blame]

198

DeprecationWarning, 2)

Facundo Batista

2008-09-03 22:49:01 +0000

[diff] [blame]

199

return urllib.parse.parse_qsl(qs, keep_blank_values, strict_parsing)

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

200

Pierre Quentel

2017-05-08 14:08:34 +0200

[diff] [blame]

201

def parse_multipart(fp, pdict, encoding="utf-8"):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

202

"""Parse multipart input.

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

203

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

204

Arguments:

205

fp : input file

Johannes Gijsbers

c7fc10a

2005-01-08 13:56:36 +0000

[diff] [blame]

206

pdict: dictionary containing other parameters of content-type header

Pierre Quentel

2017-05-08 14:08:34 +0200

[diff] [blame]

207

encoding: request encoding

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

208

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

209

Returns a dictionary just like parse_qs(): keys are the field names, each

Pierre Quentel

2017-05-08 14:08:34 +0200

[diff] [blame]

210

value is a list of values for that field. For non-file fields, the value

211

is a list of strings.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

212

"""

Pierre Quentel

2017-05-08 14:08:34 +0200

[diff] [blame]

213

# RFC 2026, Section 5.1 : The "multipart" boundary delimiters are always

214

# represented as 7bit US-ASCII.

215

boundary = pdict['boundary'].decode('ascii')

216

ctype = "multipart/form-data; boundary={}".format(boundary)

217

headers = Message()

218

headers.set_type(ctype)

219

headers['Content-Length'] = pdict['CONTENT-LENGTH']

220

fs = FieldStorage(fp, headers=headers, encoding=encoding,

221

environ={'REQUEST_METHOD': 'POST'})

222

return {k: fs.getlist(k) for k in fs}

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

223

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

def _parseparam(s):

while s[:1] == ';':

s = s[1:]

end = s.find(';')

Senthil Kumaran

1ef0c03

2011-10-20 01:05:44 +0800

[diff] [blame]

228

while end > 0 and (s.count('"', 0, end) - s.count('\\"', 0, end)) % 2:

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

229

end = s.find(';', end + 1)

if end < 0:

end = len(s)

f = s[:end]

yield f.strip()

s = s[end:]

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

236

def parse_header(line):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

237

"""Parse a Content-type like header.

238

239

Return the main content-type and a dictionary of options.

240

241

"""

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

242

parts = _parseparam(';' + line)

243

key = parts.__next__()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

244

pdict = {}

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

245

for p in parts:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

246

i = p.find('=')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

247

if i >= 0:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

248

name = p[:i].strip().lower()

249

value = p[i+1:].strip()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

250

if len(value) >= 2 and value[0] == value[-1] == '"':

251

value = value[1:-1]

Johannes Gijsbers

9e15dd6

2004-08-14 15:39:34 +0000

[diff] [blame]

252

value = value.replace('\\\\', '\\').replace('\\"', '"')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

253

pdict[name] = value

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

254

return key, pdict

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

255

256

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

257

# Classes for field storage

258

# =========================

259

260

class MiniFieldStorage:

261

Guido van Rossum

0147db0

1996-03-09 03:16:04 +0000

[diff] [blame]

262

"""Like FieldStorage, for use when no file uploads are possible."""

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

263

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

# Dummy attributes

filename = None

list = None

type = None

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

268

file = None

Guido van Rossum

4032c2c

1996-03-09 04:04:35 +0000

[diff] [blame]

269

type_options = {}

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

270

disposition = None

271

disposition_options = {}

272

headers = {}

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

273

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

274

def __init__(self, name, value):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

275

"""Constructor from field name and value."""

276

self.name = name

277

self.value = value

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

278

# self.file = StringIO(value)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

279

280

def __repr__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

281

"""Return printable representation."""

Walter Dörwald

70a6b49

2004-02-12 17:35:32 +0000

[diff] [blame]

282

return "MiniFieldStorage(%r, %r)" % (self.name, self.value)

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

class FieldStorage:

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

287

"""Store a sequence of fields, reading multipart/form-data.

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

288

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

289

This class provides naming, typing, files stored on disk, and

290

more. At the top level, it is accessible like a dictionary, whose

291

keys are the field names. (Note: None can occur as a field name.)

292

The items are either a Python list (if there's multiple values) or

293

another FieldStorage or MiniFieldStorage object. If it's a single

294

object, it has the following attributes:

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

295

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

296

name: the field name, if specified; otherwise None

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

297

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

298

filename: the filename, if specified; otherwise None; this is the

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

299

client side filename, *not* the file name on which it is

300

stored (that's a temporary file you don't deal with)

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

301

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

302

value: the value as a *string*; for file uploads, this

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

303

transparently reads the file every time you request the value

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

304

and returns *bytes*

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

305

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

306

file: the file(-like) object from which you can read the data *as

307

bytes* ; None if the data is stored a simple string

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

308

309

type: the content-type, or None if not specified

310

311

type_options: dictionary of options specified on the content-type

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

312

line

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

313

314

disposition: content-disposition, or None if not specified

315

316

disposition_options: dictionary of corresponding options

317

Barry Warsaw

596097e

2008-06-12 02:38:51 +0000

[diff] [blame]

318

headers: a dictionary(-like) object (sometimes email.message.Message or a

Armin Rigo

3a703b6

2005-09-19 09:11:04 +0000

[diff] [blame]

319

subclass thereof) containing *all* headers

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

320

321

The class is subclassable, mostly for the purpose of overriding

322

the make_file() method, which is called internally to come up with

323

a file open for reading and writing. This makes it possible to

324

override the default choice of storing all files in a temporary

325

directory and unlinking them as soon as they have been opened.

326

327

"""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

328

def __init__(self, fp=None, headers=None, outerboundary=b'',

329

environ=os.environ, keep_blank_values=0, strict_parsing=0,

330

limit=None, encoding='utf-8', errors='replace'):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

331

"""Constructor. Read multipart/* until last part.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

332

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

333

Arguments, all optional:

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

334

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

335

fp : file pointer; default: sys.stdin.buffer

Guido van Rossum

b1b4f94

1998-05-08 19:55:51 +0000

[diff] [blame]

336

(not used when the request method is GET)

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

337

Can be :

338

1. a TextIOWrapper object

339

2. an object whose read() and readline() methods return bytes

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

340

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

341

headers : header dictionary-like object; default:

342

taken from environ as per CGI spec

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

343

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

344

outerboundary : terminating multipart boundary

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

345

(for internal use only)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

346

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

347

environ : environment dictionary; default: os.environ

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

348

349

keep_blank_values: flag indicating whether blank values in

Senthil Kumaran

30e86a4

2010-08-09 20:01:35 +0000

[diff] [blame]

350

percent-encoded forms should be treated as blank strings.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

351

A true value indicates that blanks should be retained as

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

352

blank strings. The default false value indicates that

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

353

blank values are to be ignored and treated as if they were

354

not included.

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

355

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

356

strict_parsing: flag indicating what to do with parsing errors.

357

If false (the default), errors are silently ignored.

358

If true, errors raise a ValueError exception.

Guido van Rossum

1996-11-11 19:29:11 +0000

[diff] [blame]

359

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

360

limit : used internally to read parts of multipart/form-data forms,

361

to exit from the reading loop when reached. It is the difference

362

between the form content-length and the number of bytes already

363

read

364

365

encoding, errors : the encoding and error handler used to decode the

366

binary stream to strings. Must be the same as the charset defined

367

for the page sending the form (content-type : meta http-equiv or

368

header)

369

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

370

"""

371

method = 'GET'

372

self.keep_blank_values = keep_blank_values

373

self.strict_parsing = strict_parsing

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

374

if 'REQUEST_METHOD' in environ:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

375

method = environ['REQUEST_METHOD'].upper()

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

376

self.qs_on_post = None

Guido van Rossum

0185283

1998-06-25 02:40:17 +0000

[diff] [blame]

377

if method == 'GET' or method == 'HEAD':

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

378

if 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

379

qs = environ['QUERY_STRING']

elif sys.argv[1:]:

qs = sys.argv[1]

else:

qs = ""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

384

qs = qs.encode(locale.getpreferredencoding(), 'surrogateescape')

385

fp = BytesIO(qs)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

386

if headers is None:

387

headers = {'content-type':

388

"application/x-www-form-urlencoded"}

389

if headers is None:

Guido van Rossum

cff311a

1998-06-11 14:06:59 +0000

[diff] [blame]

390

headers = {}

391

if method == 'POST':

392

# Set default content-type for POST to what's traditional

393

headers['content-type'] = "application/x-www-form-urlencoded"

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

394

if 'CONTENT_TYPE' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

395

headers['content-type'] = environ['CONTENT_TYPE']

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

396

if 'QUERY_STRING' in environ:

397

self.qs_on_post = environ['QUERY_STRING']

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

398

if 'CONTENT_LENGTH' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

399

headers['content-length'] = environ['CONTENT_LENGTH']

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

400

else:

401

if not (isinstance(headers, (Mapping, Message))):

402

raise TypeError("headers must be mapping or an instance of "

403

"email.message.Message")

404

self.headers = headers

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

405

if fp is None:

406

self.fp = sys.stdin.buffer

407

# self.fp.read() must return bytes

408

elif isinstance(fp, TextIOWrapper):

409

self.fp = fp.buffer

410

else:

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

411

if not (hasattr(fp, 'read') and hasattr(fp, 'readline')):

412

raise TypeError("fp must be file pointer")

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

413

self.fp = fp

414

415

self.encoding = encoding

416

self.errors = errors

417

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

418

if not isinstance(outerboundary, bytes):

419

raise TypeError('outerboundary must be bytes, not %s'

420

% type(outerboundary).__name__)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

421

self.outerboundary = outerboundary

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

422

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

self.bytes_read = 0

self.limit = limit

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

426

# Process content-disposition header

427

cdisp, pdict = "", {}

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

428

if 'content-disposition' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

429

cdisp, pdict = parse_header(self.headers['content-disposition'])

430

self.disposition = cdisp

431

self.disposition_options = pdict

432

self.name = None

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

433

if 'name' in pdict:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

434

self.name = pdict['name']

435

self.filename = None

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

436

if 'filename' in pdict:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

437

self.filename = pdict['filename']

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

438

self._binary_file = self.filename is not None

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

439

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

440

# Process content-type header

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

441

#

442

# Honor any existing content-type header. But if there is no

443

# content-type header, use some sensible defaults. Assume

444

# outerboundary is "" at the outer level, but something non-false

445

# inside a multi-part. The default for an inner part is text/plain,

446

# but for an outer part it should be urlencoded. This should catch

447

# bogus clients which erroneously forget to include a content-type

448

# header.

449

#

450

# See below for what we do if there does exist a content-type header,

451

# but it happens to be something we don't understand.

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

452

if 'content-type' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

453

ctype, pdict = parse_header(self.headers['content-type'])

Guido van Rossum

ce900de

1999-06-02 18:44:22 +0000

[diff] [blame]

454

elif self.outerboundary or method != 'POST':

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

455

ctype, pdict = "text/plain", {}

456

else:

457

ctype, pdict = 'application/x-www-form-urlencoded', {}

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

458

self.type = ctype

459

self.type_options = pdict

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

460

if 'boundary' in pdict:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

461

self.innerboundary = pdict['boundary'].encode(self.encoding)

462

else:

463

self.innerboundary = b""

464

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

465

clen = -1

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

466

if 'content-length' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

467

try:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

468

clen = int(self.headers['content-length'])

Skip Montanaro

db5d144

2002-03-23 05:50:17 +0000

[diff] [blame]

469

except ValueError:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

470

pass

471

if maxlen and clen > maxlen:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

472

raise ValueError('Maximum content length exceeded')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

473

self.length = clen

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

474

if self.limit is None and clen:

475

self.limit = clen

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

476

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

477

self.list = self.file = None

478

self.done = 0

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

479

if ctype == 'application/x-www-form-urlencoded':

480

self.read_urlencoded()

481

elif ctype[:10] == 'multipart/':

Guido van Rossum

f574500

1998-10-20 14:43:02 +0000

[diff] [blame]

482

self.read_multi(environ, keep_blank_values, strict_parsing)

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

483

else:

Guido van Rossum

60a3bd8

1999-06-11 18:26:09 +0000

[diff] [blame]

484

self.read_single()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

485

Brett Cannon

f79126f

2013-08-23 15:15:48 -0400

[diff] [blame]

def __del__(self):

try:

self.file.close()

except AttributeError:

490

pass

491

Berker Peksag

bf5e960

2015-02-06 10:21:37 +0200

[diff] [blame]

def __enter__(self):

return self

def __exit__(self, *args):

496

self.file.close()

497

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

498

def __repr__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

499

"""Return a printable representation."""

Walter Dörwald

70a6b49

2004-02-12 17:35:32 +0000

[diff] [blame]

500

return "FieldStorage(%r, %r, %r)" % (

501

self.name, self.filename, self.value)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

502

Guido van Rossum

4061cbe

2002-09-11 18:20:34 +0000

[diff] [blame]

503

def __iter__(self):

504

return iter(self.keys())

505

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

506

def __getattr__(self, name):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

507

if name != 'value':

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

508

raise AttributeError(name)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

509

if self.file:

510

self.file.seek(0)

511

value = self.file.read()

512

self.file.seek(0)

513

elif self.list is not None:

value = self.list

else:

value = None

return value

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

518

519

def __getitem__(self, key):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

520

"""Dictionary style indexing."""

521

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

522

raise TypeError("not indexable")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

523

found = []

524

for item in self.list:

525

if item.name == key: found.append(item)

526

if not found:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

527

raise KeyError(key)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

if len(found) == 1:

return found[0]

else:

return found

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

532

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

533

def getvalue(self, key, default=None):

534

"""Dictionary style get() method, including 'value' lookup."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

535

if key in self:

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

536

value = self[key]

Victor Stinner

f1c7ca9

2011-01-14 13:08:27 +0000

[diff] [blame]

537

if isinstance(value, list):

Guido van Rossum

c1f779c

2007-07-03 08:25:58 +0000

[diff] [blame]

538

return [x.value for x in value]

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

else:

return value.value

else:

return default

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

544

def getfirst(self, key, default=None):

545

""" Return the first value received."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

546

if key in self:

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

547

value = self[key]

Victor Stinner

f1c7ca9

2011-01-14 13:08:27 +0000

[diff] [blame]

548

if isinstance(value, list):

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

549

return value[0].value

else:

return value.value

else:

return default

def getlist(self, key):

556

""" Return list of received values."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

557

if key in self:

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

558

value = self[key]

Victor Stinner

f1c7ca9

2011-01-14 13:08:27 +0000

[diff] [blame]

559

if isinstance(value, list):

Guido van Rossum

c1f779c

2007-07-03 08:25:58 +0000

[diff] [blame]

560

return [x.value for x in value]

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

else:

return [value.value]

else:

return []

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

566

def keys(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

567

"""Dictionary style keys() method."""

568

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

569

raise TypeError("not indexable")

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

570

return list(set(item.name for item in self.list))

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

571

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

572

def __contains__(self, key):

573

"""Dictionary style __contains__ method."""

574

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

575

raise TypeError("not indexable")

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

576

return any(item.name == key for item in self.list)

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

577

Guido van Rossum

88b85d4

1997-01-11 19:21:33 +0000

[diff] [blame]

578

def __len__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

579

"""Dictionary style len(x) support."""

580

return len(self.keys())

Guido van Rossum

88b85d4

1997-01-11 19:21:33 +0000

[diff] [blame]

581

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

582

def __bool__(self):

583

if self.list is None:

584

raise TypeError("Cannot be converted to bool.")

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

585

return bool(self.list)

586

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

587

def read_urlencoded(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

588

"""Internal: read data in query string format."""

589

qs = self.fp.read(self.length)

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

590

if not isinstance(qs, bytes):

591

raise ValueError("%s should return bytes, got %s" \

592

% (self.fp, type(qs).__name__))

593

qs = qs.decode(self.encoding, self.errors)

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

594

if self.qs_on_post:

595

qs += '&' + self.qs_on_post

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

596

self.list = []

597

query = urllib.parse.parse_qsl(

598

qs, self.keep_blank_values, self.strict_parsing,

599

encoding=self.encoding, errors=self.errors)

600

for key, value in query:

601

self.list.append(MiniFieldStorage(key, value))

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

602

self.skip_lines()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

603

Guido van Rossum

030d2ec

1998-12-09 22:16:46 +0000

[diff] [blame]

604

FieldStorageClass = None

605

Guido van Rossum

f574500

1998-10-20 14:43:02 +0000

[diff] [blame]

606

def read_multi(self, environ, keep_blank_values, strict_parsing):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

607

"""Internal: read a part that is itself multipart."""

Guido van Rossum

2e441f7

2001-07-25 21:00:19 +0000

[diff] [blame]

608

ib = self.innerboundary

609

if not valid_boundary(ib):

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

610

raise ValueError('Invalid boundary in multipart form: %r' % (ib,))

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

611

self.list = []

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

612

if self.qs_on_post:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

613

query = urllib.parse.parse_qsl(

614

self.qs_on_post, self.keep_blank_values, self.strict_parsing,

615

encoding=self.encoding, errors=self.errors)

616

for key, value in query:

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

617

self.list.append(MiniFieldStorage(key, value))

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

618

Guido van Rossum

030d2ec

1998-12-09 22:16:46 +0000

[diff] [blame]

619

klass = self.FieldStorageClass or self.__class__

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

620

first_line = self.fp.readline() # bytes

621

if not isinstance(first_line, bytes):

622

raise ValueError("%s should return bytes, got %s" \

623

% (self.fp, type(first_line).__name__))

624

self.bytes_read += len(first_line)

Donald Stufft

d90f8d1

2015-03-29 16:43:23 -0400

[diff] [blame]

625

626

# Ensure that we consume the file until we've hit our inner boundary

627

while (first_line.strip() != (b"--" + self.innerboundary) and

628

first_line):

629

first_line = self.fp.readline()

630

self.bytes_read += len(first_line)

631

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

632

while True:

633

parser = FeedParser()

634

hdr_text = b""

635

while True:

636

data = self.fp.readline()

hdr_text += data

if not data.strip():

break

if not hdr_text:

break

# parser takes strings, not bytes

643

self.bytes_read += len(hdr_text)

644

parser.feed(hdr_text.decode(self.encoding, self.errors))

645

headers = parser.close()

Victor Stinner

6579459

2015-08-18 10:21:10 -0700

[diff] [blame]

646

647

# Some clients add Content-Length for part headers, ignore them

648

if 'content-length' in headers:

649

del headers['content-length']

650

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

651

part = klass(self.fp, headers, ib, environ, keep_blank_values,

652

strict_parsing,self.limit-self.bytes_read,

653

self.encoding, self.errors)

654

self.bytes_read += part.bytes_read

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

655

self.list.append(part)

Florent Xicluna

331c3fd

2013-07-07 12:44:28 +0200

[diff] [blame]

656

if part.done or self.bytes_read >= self.length > 0:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

657

break

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

658

self.skip_lines()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

659

660

def read_single(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

661

"""Internal: read an atomic part."""

if self.length >= 0:

self.read_binary()

self.skip_lines()

else:

self.read_lines()

self.file.seek(0)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

668

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

669

bufsize = 8*1024 # I/O buffering size for copy to file

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

670

671

def read_binary(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

672

"""Internal: read binary data."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

673

self.file = self.make_file()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

674

todo = self.length

675

if todo >= 0:

676

while todo > 0:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

677

data = self.fp.read(min(todo, self.bufsize)) # bytes

678

if not isinstance(data, bytes):

679

raise ValueError("%s should return bytes, got %s"

680

% (self.fp, type(data).__name__))

681

self.bytes_read += len(data)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

if not data:

self.done = -1

break

self.file.write(data)

686

todo = todo - len(data)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

687

688

def read_lines(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

689

"""Internal: read lines until EOF or outerboundary."""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

690

if self._binary_file:

691

self.file = self.__file = BytesIO() # store data as bytes for files

692

else:

693

self.file = self.__file = StringIO() # as strings for other fields

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

694

if self.outerboundary:

695

self.read_lines_to_outerboundary()

696

else:

697

self.read_lines_to_eof()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

698

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

699

def __write(self, line):

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

700

"""line is always bytes, not string"""

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

701

if self.__file is not None:

702

if self.__file.tell() + len(line) > 1000:

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

703

self.file = self.make_file()

704

data = self.__file.getvalue()

705

self.file.write(data)

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

706

self.__file = None

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

707

if self._binary_file:

708

# keep bytes

709

self.file.write(line)

710

else:

711

# decode to string

712

self.file.write(line.decode(self.encoding, self.errors))

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

713

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

714

def read_lines_to_eof(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

715

"""Internal: read lines until EOF."""

716

while 1:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

717

line = self.fp.readline(1<<16) # bytes

718

self.bytes_read += len(line)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

719

if not line:

720

self.done = -1

721

break

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

722

self.__write(line)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

723

724

def read_lines_to_outerboundary(self):

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

725

"""Internal: read lines until outerboundary.

726

Data is read as bytes: boundaries and line ends must be converted

727

to bytes for comparisons.

728

"""

729

next_boundary = b"--" + self.outerboundary

730

last_boundary = next_boundary + b"--"

731

delim = b""

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

732

last_line_lfend = True

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

733

_read = 0

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

734

while 1:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

735

if _read >= self.limit:

736

break

737

line = self.fp.readline(1<<16) # bytes

738

self.bytes_read += len(line)

739

_read += len(line)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

740

if not line:

741

self.done = -1

742

break

Serhiy Storchaka

c7bfe0e

2013-06-17 16:34:41 +0300

[diff] [blame]

743

if delim == b"\r":

744

line = delim + line

745

delim = b""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

746

if line.startswith(b"--") and last_line_lfend:

747

strippedline = line.rstrip()

748

if strippedline == next_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

749

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

750

if strippedline == last_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

751

self.done = 1

752

break

753

odelim = delim

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

754

if line.endswith(b"\r\n"):

755

delim = b"\r\n"

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

756

line = line[:-2]

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

757

last_line_lfend = True

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

758

elif line.endswith(b"\n"):

759

delim = b"\n"

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

760

line = line[:-1]

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

761

last_line_lfend = True

Serhiy Storchaka

c7bfe0e

2013-06-17 16:34:41 +0300

[diff] [blame]

762

elif line.endswith(b"\r"):

763

# We may interrupt \r\n sequences if they span the 2**16

# byte boundary

delim = b"\r"

line = line[:-1]

last_line_lfend = False

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

768

else:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

769

delim = b""

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

770

last_line_lfend = False

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

771

self.__write(odelim + line)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

772

773

def skip_lines(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

774

"""Internal: skip lines until outer boundary if defined."""

775

if not self.outerboundary or self.done:

776

return

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

777

next_boundary = b"--" + self.outerboundary

778

last_boundary = next_boundary + b"--"

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

779

last_line_lfend = True

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

780

while True:

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

781

line = self.fp.readline(1<<16)

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

782

self.bytes_read += len(line)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

783

if not line:

784

self.done = -1

785

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

786

if line.endswith(b"--") and last_line_lfend:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

787

strippedline = line.strip()

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

788

if strippedline == next_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

789

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

790

if strippedline == last_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

791

self.done = 1

792

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

793

last_line_lfend = line.endswith(b'\n')

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

794

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

795

def make_file(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

796

"""Overridable: return a readable & writable file.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

797

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

798

The file will be used as follows:

799

- data is written to it

800

- seek(0)

801

- data is read from it

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

802

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

803

The file is opened in binary mode for files, in text mode

804

for other fields

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

805

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

806

This version opens a temporary file for reading and writing,

807

and immediately deletes (unlinks) it. The trick (on Unix!) is

808

that the file can still be used, but it can't be opened by

809

another process, and it will automatically be deleted when it

810

is closed or when the current process terminates.

Guido van Rossum

4032c2c

1996-03-09 04:04:35 +0000

[diff] [blame]

811

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

812

If you want a more permanent file, you derive a class which

813

overrides this method. If you want a visible temporary file

814

that is nevertheless automatically deleted when the script

815

terminates, try defining a __del__ method in a derived class

816

which unlinks the temporary files you have created.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

817

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

818

"""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

819

if self._binary_file:

820

return tempfile.TemporaryFile("wb+")

821

else:

822

return tempfile.TemporaryFile("w+",

823

encoding=self.encoding, newline = '\n')

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

824

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

825

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

826

# Test/debug code

827

# ===============

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

828

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

829

def test(environ=os.environ):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

830

"""Robust test CGI script, usable as main program.

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

831

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

832

Write minimal HTTP headers and dump all information provided to

833

the script in HTML form.

834

835

"""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

836

print("Content-type: text/html")

837

print()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

838

sys.stderr = sys.stdout

839

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

840

form = FieldStorage() # Replace with other classes to test those

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

841

print_directory()

842

print_arguments()

Guido van Rossum

a3c6a8a

2000-09-19 04:11:46 +0000

[diff] [blame]

843

print_form(form)

844

print_environ(environ)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

845

print_environ_usage()

846

def f():

Georg Brandl

7cae87c

2006-09-06 06:51:57 +0000

[diff] [blame]

847

exec("testing print_exception() -- <I>italics?</I>")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

848

def g(f=f):

849

f()

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

850

print("<H3>What follows is a test, not an actual exception:</H3>")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

851

g()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

852

except:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

853

print_exception()

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

854

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

855

print("<H1>Second try with a small maxlen...</H1>")

Guido van Rossum

57d51f2

2000-09-16 21:16:01 +0000

[diff] [blame]

856

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

857

global maxlen

858

maxlen = 50

859

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

860

form = FieldStorage() # Replace with other classes to test those

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

861

print_directory()

862

print_arguments()

Guido van Rossum

a3c6a8a

2000-09-19 04:11:46 +0000

[diff] [blame]

863

print_form(form)

864

print_environ(environ)

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

865

except:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

866

print_exception()

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

867

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

868

def print_exception(type=None, value=None, tb=None, limit=None):

869

if type is None:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

870

type, value, tb = sys.exc_info()

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

871

import traceback

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

872

print()

873

print("<H3>Traceback (most recent call last):</H3>")

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

874

list = traceback.format_tb(tb, limit) + \

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

875

traceback.format_exception_only(type, value)

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

876

print("<PRE>%s<B>%s</B></PRE>" % (

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

877

html.escape("".join(list[:-1])),

878

html.escape(list[-1]),

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

879

))

Guido van Rossum

f15d159

1997-09-29 23:22:12 +0000

[diff] [blame]

880

del tb

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

881

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

882

def print_environ(environ=os.environ):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

883

"""Dump the shell environment as HTML."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

884

keys = sorted(environ.keys())

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

885

print()

886

print("<H3>Shell Environment:</H3>")

887

print("<DL>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

888

for key in keys:

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

889

print("<DT>", html.escape(key), "<DD>", html.escape(environ[key]))

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

890

print("</DL>")

891

print()

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

892

893

def print_form(form):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

894

"""Dump the contents of a form as HTML."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

895

keys = sorted(form.keys())

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

896

print()

897

print("<H3>Form Contents:</H3>")

Guido van Rossum

57d51f2

2000-09-16 21:16:01 +0000

[diff] [blame]

898

if not keys:

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

899

print("<P>No form fields.")

900

print("<DL>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

901

for key in keys:

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

902

print("<DT>" + html.escape(key) + ":", end=' ')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

903

value = form[key]

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

904

print("<i>" + html.escape(repr(type(value))) + "</i>")

905

print("<DD>" + html.escape(repr(value)))

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

906

print("</DL>")

907

print()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

908

909

def print_directory():

910

"""Dump the current directory as HTML."""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

911

print()

912

print("<H3>Current Working Directory:</H3>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

913

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

914

pwd = os.getcwd()

Andrew Svetlov

ad28c7f

2012-12-18 22:02:39 +0200

[diff] [blame]

915

except OSError as msg:

Andrew Svetlov

8b33dd8

2012-12-24 19:58:48 +0200

[diff] [blame]

916

print("OSError:", html.escape(str(msg)))

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

917

else:

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

918

print(html.escape(pwd))

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

919

print()

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

920

Guido van Rossum

a8738a5

1996-03-14 21:30:28 +0000

[diff] [blame]

921

def print_arguments():

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

922

print()

923

print("<H3>Command Line Arguments:</H3>")

924

print()

925

print(sys.argv)

926

print()

Guido van Rossum

a8738a5

1996-03-14 21:30:28 +0000

[diff] [blame]

927

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

928

def print_environ_usage():

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

929

"""Dump a list of environment variables used by CGI as HTML."""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

930

print("""

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

931

<H3>These environment variables could have been set:</H3>

932

<UL>

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

<LI>AUTH_TYPE

<LI>CONTENT_LENGTH

<LI>CONTENT_TYPE

<LI>DATE_GMT

<LI>DATE_LOCAL

<LI>DOCUMENT_NAME

<LI>DOCUMENT_ROOT

<LI>DOCUMENT_URI

<LI>GATEWAY_INTERFACE

<LI>LAST_MODIFIED

<LI>PATH

<LI>PATH_INFO

<LI>PATH_TRANSLATED

<LI>QUERY_STRING

<LI>REMOTE_ADDR

<LI>REMOTE_HOST

<LI>REMOTE_IDENT

<LI>REMOTE_USER

<LI>REQUEST_METHOD

<LI>SCRIPT_NAME

<LI>SERVER_NAME

<LI>SERVER_PORT

<LI>SERVER_PROTOCOL

<LI>SERVER_ROOT

<LI>SERVER_SOFTWARE

</UL>

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

959

In addition, HTTP headers sent by the server may be passed in the

960

environment as well. Here are some common variable names:

<UL>

<LI>HTTP_ACCEPT

<LI>HTTP_CONNECTION

<LI>HTTP_HOST

<LI>HTTP_PRAGMA

<LI>HTTP_REFERER

<LI>HTTP_USER_AGENT

</UL>

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

969

""")

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

970

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

971

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

972

# Utilities

973

# =========

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

974

Guido van Rossum

64c6620

1997-07-19 20:11:53 +0000

[diff] [blame]

975

def escape(s, quote=None):

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

976

"""Deprecated API."""

977

warn("cgi.escape is deprecated, use html.escape instead",

Florent Xicluna

6731775

2011-12-10 11:07:42 +0100

[diff] [blame]

978

DeprecationWarning, stacklevel=2)

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

979

s = s.replace("&", "&") # Must be done first!

980

s = s.replace("<", "<")

981

s = s.replace(">", ">")

Guido van Rossum

64c6620

1997-07-19 20:11:53 +0000

[diff] [blame]

982

if quote:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

983

s = s.replace('"', """)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

984

return s

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

985

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

986

Benjamin Peterson

4d59a78

2014-04-03 10:22:10 -0400

[diff] [blame]

987

def valid_boundary(s):

Guido van Rossum

2e441f7

2001-07-25 21:00:19 +0000

[diff] [blame]

988

import re

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

989

if isinstance(s, bytes):

990

_vb_pattern = b"^[ -~]{0,200}[!-~]$"

991

else:

992

_vb_pattern = "^[ -~]{0,200}[!-~]$"

Guido van Rossum

2e441f7

2001-07-25 21:00:19 +0000

[diff] [blame]

993

return re.match(_vb_pattern, s)

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

994

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Invoke mainline

# ===============

# Call test() when this file is run as a script (not imported as a module)

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

999

if __name__ == '__main__':

Guido van Rossum