Blame - Lib/cgi.py - platform/external/python/cpython3

1996-03-06 07:20:06 +0000

[diff] [blame]

12

"""Support module for CGI (Common Gateway Interface) scripts.

Guido van Rossum

1c9daa8

1995-09-18 21:52:37 +0000

[diff] [blame]

13

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

14

This module defines a number of utilities for use by CGI scripts

15

written in Python.

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

16

"""

17

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

18

# History

19

# -------

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

20

#

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

21

# Michael McLay started this module. Steve Majewski changed the

22

# interface to SvFormContentDict and FormContentDict. The multipart

23

# parsing was inspired by code submitted by Andreas Paepcke. Guido van

24

# Rossum rewrote, reformatted and documented the module and is currently

25

# responsible for its maintenance.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

26

#

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

27

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

28

__version__ = "2.6"

Guido van Rossum

0147db0

1996-03-09 03:16:04 +0000

[diff] [blame]

29

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Imports

# =======

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

34

from io import StringIO, BytesIO, TextIOWrapper

Serhiy Storchaka

2e576f5

2017-04-24 09:05:00 +0300

[diff] [blame]

35

from collections.abc import Mapping

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

36

import sys

37

import os

Jeremy Hylton

1afc169

2008-06-18 20:49:58 +0000

[diff] [blame]

38

import urllib.parse

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

39

from email.parser import FeedParser

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

40

from email.message import Message

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

41

import html

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

42

import locale

43

import tempfile

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

44

INADA Naoki

698865d

2018-06-19 17:28:50 +0900

[diff] [blame]

45

__all__ = ["MiniFieldStorage", "FieldStorage", "parse", "parse_multipart",

Martin Panter

1cd2772

2016-06-06 01:53:28 +0000

[diff] [blame]

46

"parse_header", "test", "print_exception", "print_environ",

Guido van Rossum

a8423a9

2001-03-19 13:40:44 +0000

[diff] [blame]

47

"print_form", "print_directory", "print_arguments",

INADA Naoki

698865d

2018-06-19 17:28:50 +0900

[diff] [blame]

48

"print_environ_usage"]

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

# Logging support

# ===============

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

53

logfile = "" # Filename to log to, if not empty

54

logfp = None # File object to log to, if not None

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

55

56

def initlog(*allargs):

57

"""Write a log message, if there is a log file.

58

59

Even though this function is called initlog(), you should always

60

use log(); log is a variable that is set either to initlog

61

(initially), to dolog (once the log file has been opened), or to

62

nolog (when logging is disabled).

63

64

The first argument is a format string; the remaining arguments (if

65

any) are arguments to the % operator, so e.g.

66

log("%s: %s", "a", "b")

67

will write "a: b" to the log file, followed by a newline.

68

69

If the global logfp is not None, it should be a file object to

70

which log data is written.

71

72

If the global logfp is None, the global logfile may be a string

73

giving a filename to open, in append mode. This file should be

74

world writable!!! If the file can't be opened, logging is

75

silently disabled (since there is no safe place where we could

76

send an error message).

77

78

"""

Victor Stinner

d33344a

2011-07-14 22:28:36 +0200

[diff] [blame]

79

global log, logfile, logfp

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

80

if logfile and not logfp:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

81

try:

82

logfp = open(logfile, "a")

Andrew Svetlov

f7a17b4

2012-12-25 16:47:37 +0200

[diff] [blame]

83

except OSError:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

84

pass

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

85

if not logfp:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

86

log = nolog

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

87

else:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

88

log = dolog

Guido van Rossum

68468eb

2003-02-27 20:14:51 +0000

[diff] [blame]

89

log(*allargs)

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

90

91

def dolog(fmt, *args):

92

"""Write a log message to the log file. See initlog() for docs."""

93

logfp.write(fmt%args + "\n")

94

95

def nolog(*allargs):

96

"""Dummy function, assigned to log when logging is disabled."""

97

pass

98

Victor Stinner

d33344a

2011-07-14 22:28:36 +0200

[diff] [blame]

99

def closelog():

100

"""Close the log file."""

101

global log, logfile, logfp

logfile = ''

if logfp:

logfp.close()

logfp = None

log = initlog

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

108

log = initlog # The current logging function

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

109

110

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Parsing functions

# =================

Guido van Rossum

1997-05-13 19:03:23 +0000

[diff] [blame]

114

# Maximum input we will accept when REQUEST_METHOD is POST

115

# 0 ==> unlimited input

116

maxlen = 0

117

Guido van Rossum

e08c04c

1996-11-11 19:29:11 +0000

[diff] [blame]

118

def parse(fp=None, environ=os.environ, keep_blank_values=0, strict_parsing=0):

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

119

"""Parse a query in the environment or from a file (default stdin)

120

121

Arguments, all optional:

122

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

123

fp : file pointer; default: sys.stdin.buffer

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

124

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

125

environ : environment dictionary; default: os.environ

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

126

127

keep_blank_values: flag indicating whether blank values in

Senthil Kumaran

30e86a4

2010-08-09 20:01:35 +0000

[diff] [blame]

128

percent-encoded forms should be treated as blank strings.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

129

A true value indicates that blanks should be retained as

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

130

blank strings. The default false value indicates that

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

131

blank values are to be ignored and treated as if they were

132

not included.

Guido van Rossum

e08c04c

1996-11-11 19:29:11 +0000

[diff] [blame]

133

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

134

strict_parsing: flag indicating what to do with parsing errors.

135

If false (the default), errors are silently ignored.

136

If true, errors raise a ValueError exception.

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

137

"""

Raymond Hettinger

a144900

2002-05-31 23:54:44 +0000

[diff] [blame]

138

if fp is None:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

139

fp = sys.stdin

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

140

141

# field keys and values (except for files) are returned as strings

142

# an encoding is required to decode the bytes read from self.fp

143

if hasattr(fp,'encoding'):

144

encoding = fp.encoding

else:

encoding = 'latin-1'

# fp.read() must return bytes

149

if isinstance(fp, TextIOWrapper):

150

fp = fp.buffer

151

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

152

if not 'REQUEST_METHOD' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

153

environ['REQUEST_METHOD'] = 'GET' # For testing stand-alone

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

154

if environ['REQUEST_METHOD'] == 'POST':

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

155

ctype, pdict = parse_header(environ['CONTENT_TYPE'])

156

if ctype == 'multipart/form-data':

157

return parse_multipart(fp, pdict)

158

elif ctype == 'application/x-www-form-urlencoded':

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

159

clength = int(environ['CONTENT_LENGTH'])

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

160

if maxlen and clength > maxlen:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

161

raise ValueError('Maximum content length exceeded')

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

162

qs = fp.read(clength).decode(encoding)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

163

else:

164

qs = '' # Unknown content-type

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

165

if 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

166

if qs: qs = qs + '&'

167

qs = qs + environ['QUERY_STRING']

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

168

elif sys.argv[1:]:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

169

if qs: qs = qs + '&'

170

qs = qs + sys.argv[1]

171

environ['QUERY_STRING'] = qs # XXX Shouldn't, really

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

172

elif 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

173

qs = environ['QUERY_STRING']

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

174

else:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

if sys.argv[1:]:

qs = sys.argv[1]

else:

qs = ""

environ['QUERY_STRING'] = qs # XXX Shouldn't, really

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

180

return urllib.parse.parse_qs(qs, keep_blank_values, strict_parsing,

181

encoding=encoding)

Guido van Rossum

e780877

1995-08-07 20:12:09 +0000

[diff] [blame]

182

183

Amber Brown

2018-05-14 18:11:55 -0400

[diff] [blame]

184

def parse_multipart(fp, pdict, encoding="utf-8", errors="replace"):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

185

"""Parse multipart input.

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

186

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

187

Arguments:

188

fp : input file

Johannes Gijsbers

c7fc10a

2005-01-08 13:56:36 +0000

[diff] [blame]

189

pdict: dictionary containing other parameters of content-type header

Amber Brown

2018-05-14 18:11:55 -0400

[diff] [blame]

190

encoding, errors: request encoding and error handler, passed to

191

FieldStorage

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

192

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

193

Returns a dictionary just like parse_qs(): keys are the field names, each

Pierre Quentel

cc3fa20

2017-05-08 14:08:34 +0200

[diff] [blame]

194

value is a list of values for that field. For non-file fields, the value

195

is a list of strings.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

196

"""

Mike Lei

c143cc3

2020-12-17 01:34:19 +0000

[diff] [blame]

197

# RFC 2046, Section 5.1 : The "multipart" boundary delimiters are always

Pierre Quentel

cc3fa20

2017-05-08 14:08:34 +0200

[diff] [blame]

198

# represented as 7bit US-ASCII.

199

boundary = pdict['boundary'].decode('ascii')

200

ctype = "multipart/form-data; boundary={}".format(boundary)

201

headers = Message()

202

headers.set_type(ctype)

roger

d8cf351

2020-06-15 16:58:54 +0200

[diff] [blame]

203

try:

204

headers['Content-Length'] = pdict['CONTENT-LENGTH']

205

except KeyError:

206

pass

Amber Brown

2018-05-14 18:11:55 -0400

[diff] [blame]

207

fs = FieldStorage(fp, headers=headers, encoding=encoding, errors=errors,

Pierre Quentel

cc3fa20

2017-05-08 14:08:34 +0200

[diff] [blame]

208

environ={'REQUEST_METHOD': 'POST'})

209

return {k: fs.getlist(k) for k in fs}

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

210

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

def _parseparam(s):

while s[:1] == ';':

s = s[1:]

end = s.find(';')

Senthil Kumaran

1ef0c03

2011-10-20 01:05:44 +0800

[diff] [blame]

215

while end > 0 and (s.count('"', 0, end) - s.count('\\"', 0, end)) % 2:

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

216

end = s.find(';', end + 1)

if end < 0:

end = len(s)

f = s[:end]

yield f.strip()

s = s[end:]

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

223

def parse_header(line):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

224

"""Parse a Content-type like header.

225

226

Return the main content-type and a dictionary of options.

227

228

"""

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

229

parts = _parseparam(';' + line)

230

key = parts.__next__()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

231

pdict = {}

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

232

for p in parts:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

233

i = p.find('=')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

234

if i >= 0:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

235

name = p[:i].strip().lower()

236

value = p[i+1:].strip()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

237

if len(value) >= 2 and value[0] == value[-1] == '"':

238

value = value[1:-1]

Johannes Gijsbers

9e15dd6

2004-08-14 15:39:34 +0000

[diff] [blame]

239

value = value.replace('\\\\', '\\').replace('\\"', '"')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

240

pdict[name] = value

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

241

return key, pdict

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

242

243

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

244

# Classes for field storage

245

# =========================

246

247

class MiniFieldStorage:

248

Guido van Rossum

0147db0

1996-03-09 03:16:04 +0000

[diff] [blame]

249

"""Like FieldStorage, for use when no file uploads are possible."""

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

250

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

# Dummy attributes

filename = None

list = None

type = None

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

255

file = None

Guido van Rossum

4032c2c

1996-03-09 04:04:35 +0000

[diff] [blame]

256

type_options = {}

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

257

disposition = None

258

disposition_options = {}

259

headers = {}

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

260

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

261

def __init__(self, name, value):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

262

"""Constructor from field name and value."""

263

self.name = name

264

self.value = value

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

265

# self.file = StringIO(value)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

266

267

def __repr__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

268

"""Return printable representation."""

Walter Dörwald

70a6b49

2004-02-12 17:35:32 +0000

[diff] [blame]

269

return "MiniFieldStorage(%r, %r)" % (self.name, self.value)

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

class FieldStorage:

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

274

"""Store a sequence of fields, reading multipart/form-data.

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

275

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

276

This class provides naming, typing, files stored on disk, and

277

more. At the top level, it is accessible like a dictionary, whose

278

keys are the field names. (Note: None can occur as a field name.)

279

The items are either a Python list (if there's multiple values) or

280

another FieldStorage or MiniFieldStorage object. If it's a single

281

object, it has the following attributes:

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

282

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

283

name: the field name, if specified; otherwise None

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

284

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

285

filename: the filename, if specified; otherwise None; this is the

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

286

client side filename, *not* the file name on which it is

287

stored (that's a temporary file you don't deal with)

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

288

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

289

value: the value as a *string*; for file uploads, this

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

290

transparently reads the file every time you request the value

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

291

and returns *bytes*

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

292

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

293

file: the file(-like) object from which you can read the data *as

294

bytes* ; None if the data is stored a simple string

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

295

296

type: the content-type, or None if not specified

297

298

type_options: dictionary of options specified on the content-type

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

299

line

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

300

301

disposition: content-disposition, or None if not specified

302

303

disposition_options: dictionary of corresponding options

304

Barry Warsaw

596097e

2008-06-12 02:38:51 +0000

[diff] [blame]

305

headers: a dictionary(-like) object (sometimes email.message.Message or a

Armin Rigo

3a703b6

2005-09-19 09:11:04 +0000

[diff] [blame]

306

subclass thereof) containing *all* headers

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

307

308

The class is subclassable, mostly for the purpose of overriding

309

the make_file() method, which is called internally to come up with

310

a file open for reading and writing. This makes it possible to

311

override the default choice of storing all files in a temporary

312

directory and unlinking them as soon as they have been opened.

313

314

"""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

315

def __init__(self, fp=None, headers=None, outerboundary=b'',

316

environ=os.environ, keep_blank_values=0, strict_parsing=0,

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

317

limit=None, encoding='utf-8', errors='replace',

318

max_num_fields=None):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

319

"""Constructor. Read multipart/* until last part.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

320

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

321

Arguments, all optional:

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

322

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

323

fp : file pointer; default: sys.stdin.buffer

Guido van Rossum

b1b4f94

1998-05-08 19:55:51 +0000

[diff] [blame]

324

(not used when the request method is GET)

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

325

Can be :

326

1. a TextIOWrapper object

327

2. an object whose read() and readline() methods return bytes

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

328

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

329

headers : header dictionary-like object; default:

330

taken from environ as per CGI spec

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

331

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

332

outerboundary : terminating multipart boundary

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

333

(for internal use only)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

334

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

335

environ : environment dictionary; default: os.environ

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

336

337

keep_blank_values: flag indicating whether blank values in

Senthil Kumaran

30e86a4

2010-08-09 20:01:35 +0000

[diff] [blame]

338

percent-encoded forms should be treated as blank strings.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

339

A true value indicates that blanks should be retained as

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

340

blank strings. The default false value indicates that

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

341

blank values are to be ignored and treated as if they were

342

not included.

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

343

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

344

strict_parsing: flag indicating what to do with parsing errors.

345

If false (the default), errors are silently ignored.

346

If true, errors raise a ValueError exception.

Guido van Rossum

e08c04c

1996-11-11 19:29:11 +0000

[diff] [blame]

347

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

348

limit : used internally to read parts of multipart/form-data forms,

349

to exit from the reading loop when reached. It is the difference

350

between the form content-length and the number of bytes already

351

read

352

353

encoding, errors : the encoding and error handler used to decode the

354

binary stream to strings. Must be the same as the charset defined

355

for the page sending the form (content-type : meta http-equiv or

356

header)

357

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

358

max_num_fields: int. If set, then __init__ throws a ValueError

359

if there are more than n fields read by parse_qsl().

360

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

361

"""

362

method = 'GET'

363

self.keep_blank_values = keep_blank_values

364

self.strict_parsing = strict_parsing

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

365

self.max_num_fields = max_num_fields

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

366

if 'REQUEST_METHOD' in environ:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

367

method = environ['REQUEST_METHOD'].upper()

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

368

self.qs_on_post = None

Guido van Rossum

0185283

1998-06-25 02:40:17 +0000

[diff] [blame]

369

if method == 'GET' or method == 'HEAD':

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

370

if 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

371

qs = environ['QUERY_STRING']

elif sys.argv[1:]:

qs = sys.argv[1]

else:

qs = ""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

376

qs = qs.encode(locale.getpreferredencoding(), 'surrogateescape')

377

fp = BytesIO(qs)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

378

if headers is None:

379

headers = {'content-type':

380

"application/x-www-form-urlencoded"}

381

if headers is None:

Guido van Rossum

cff311a

1998-06-11 14:06:59 +0000

[diff] [blame]

382

headers = {}

383

if method == 'POST':

384

# Set default content-type for POST to what's traditional

385

headers['content-type'] = "application/x-www-form-urlencoded"

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

386

if 'CONTENT_TYPE' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

387

headers['content-type'] = environ['CONTENT_TYPE']

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

388

if 'QUERY_STRING' in environ:

389

self.qs_on_post = environ['QUERY_STRING']

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

390

if 'CONTENT_LENGTH' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

391

headers['content-length'] = environ['CONTENT_LENGTH']

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

392

else:

393

if not (isinstance(headers, (Mapping, Message))):

394

raise TypeError("headers must be mapping or an instance of "

395

"email.message.Message")

396

self.headers = headers

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

397

if fp is None:

398

self.fp = sys.stdin.buffer

399

# self.fp.read() must return bytes

400

elif isinstance(fp, TextIOWrapper):

401

self.fp = fp.buffer

402

else:

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

403

if not (hasattr(fp, 'read') and hasattr(fp, 'readline')):

404

raise TypeError("fp must be file pointer")

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

405

self.fp = fp

406

407

self.encoding = encoding

408

self.errors = errors

409

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

410

if not isinstance(outerboundary, bytes):

411

raise TypeError('outerboundary must be bytes, not %s'

412

% type(outerboundary).__name__)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

413

self.outerboundary = outerboundary

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

414

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

self.bytes_read = 0

self.limit = limit

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

418

# Process content-disposition header

419

cdisp, pdict = "", {}

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

420

if 'content-disposition' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

421

cdisp, pdict = parse_header(self.headers['content-disposition'])

422

self.disposition = cdisp

423

self.disposition_options = pdict

424

self.name = None

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

425

if 'name' in pdict:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

426

self.name = pdict['name']

427

self.filename = None

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

428

if 'filename' in pdict:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

429

self.filename = pdict['filename']

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

430

self._binary_file = self.filename is not None

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

431

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

432

# Process content-type header

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

433

#

434

# Honor any existing content-type header. But if there is no

435

# content-type header, use some sensible defaults. Assume

436

# outerboundary is "" at the outer level, but something non-false

437

# inside a multi-part. The default for an inner part is text/plain,

438

# but for an outer part it should be urlencoded. This should catch

439

# bogus clients which erroneously forget to include a content-type

440

# header.

441

#

442

# See below for what we do if there does exist a content-type header,

443

# but it happens to be something we don't understand.

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

444

if 'content-type' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

445

ctype, pdict = parse_header(self.headers['content-type'])

Guido van Rossum

ce900de

1999-06-02 18:44:22 +0000

[diff] [blame]

446

elif self.outerboundary or method != 'POST':

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

447

ctype, pdict = "text/plain", {}

448

else:

449

ctype, pdict = 'application/x-www-form-urlencoded', {}

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

450

self.type = ctype

451

self.type_options = pdict

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

452

if 'boundary' in pdict:

Amber Brown

2018-05-14 18:11:55 -0400

[diff] [blame]

453

self.innerboundary = pdict['boundary'].encode(self.encoding,

454

self.errors)

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

455

else:

456

self.innerboundary = b""

457

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

458

clen = -1

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

459

if 'content-length' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

460

try:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

461

clen = int(self.headers['content-length'])

Skip Montanaro

db5d144

2002-03-23 05:50:17 +0000

[diff] [blame]

462

except ValueError:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

463

pass

464

if maxlen and clen > maxlen:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

465

raise ValueError('Maximum content length exceeded')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

466

self.length = clen

Pierre Quentel

2d7caca

2019-09-11 13:05:53 +0200

[diff] [blame]

467

if self.limit is None and clen >= 0:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

468

self.limit = clen

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

469

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

470

self.list = self.file = None

471

self.done = 0

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

472

if ctype == 'application/x-www-form-urlencoded':

473

self.read_urlencoded()

474

elif ctype[:10] == 'multipart/':

Guido van Rossum

f574500

1998-10-20 14:43:02 +0000

[diff] [blame]

475

self.read_multi(environ, keep_blank_values, strict_parsing)

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

476

else:

Guido van Rossum

60a3bd8

1999-06-11 18:26:09 +0000

[diff] [blame]

477

self.read_single()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

478

Brett Cannon

f79126f

2013-08-23 15:15:48 -0400

[diff] [blame]

def __del__(self):

try:

self.file.close()

except AttributeError:

483

pass

484

Berker Peksag

bf5e960

2015-02-06 10:21:37 +0200

[diff] [blame]

def __enter__(self):

return self

def __exit__(self, *args):

489

self.file.close()

490

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

491

def __repr__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

492

"""Return a printable representation."""

Walter Dörwald

70a6b49

2004-02-12 17:35:32 +0000

[diff] [blame]

493

return "FieldStorage(%r, %r, %r)" % (

494

self.name, self.filename, self.value)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

495

Guido van Rossum

4061cbe

2002-09-11 18:20:34 +0000

[diff] [blame]

496

def __iter__(self):

497

return iter(self.keys())

498

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

499

def __getattr__(self, name):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

500

if name != 'value':

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

501

raise AttributeError(name)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

502

if self.file:

503

self.file.seek(0)

504

value = self.file.read()

505

self.file.seek(0)

506

elif self.list is not None:

value = self.list

else:

value = None

return value

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

511

512

def __getitem__(self, key):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

513

"""Dictionary style indexing."""

514

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

515

raise TypeError("not indexable")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

516

found = []

517

for item in self.list:

518

if item.name == key: found.append(item)

519

if not found:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

520

raise KeyError(key)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

if len(found) == 1:

return found[0]

else:

return found

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

525

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

526

def getvalue(self, key, default=None):

527

"""Dictionary style get() method, including 'value' lookup."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

528

if key in self:

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

529

value = self[key]

Victor Stinner

f1c7ca9

2011-01-14 13:08:27 +0000

[diff] [blame]

530

if isinstance(value, list):

Guido van Rossum

c1f779c

2007-07-03 08:25:58 +0000

[diff] [blame]

531

return [x.value for x in value]

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

else:

return value.value

else:

return default

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

537

def getfirst(self, key, default=None):

538

""" Return the first value received."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

539

if key in self:

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

540

value = self[key]

Victor Stinner

f1c7ca9

2011-01-14 13:08:27 +0000

[diff] [blame]

541

if isinstance(value, list):

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

542

return value[0].value

else:

return value.value

else:

return default

def getlist(self, key):

549

""" Return list of received values."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

550

if key in self:

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

551

value = self[key]

Victor Stinner

f1c7ca9

2011-01-14 13:08:27 +0000

[diff] [blame]

552

if isinstance(value, list):

Guido van Rossum

c1f779c

2007-07-03 08:25:58 +0000

[diff] [blame]

553

return [x.value for x in value]

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

else:

return [value.value]

else:

return []

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

559

def keys(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

560

"""Dictionary style keys() method."""

561

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

562

raise TypeError("not indexable")

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

563

return list(set(item.name for item in self.list))

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

564

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

565

def __contains__(self, key):

566

"""Dictionary style __contains__ method."""

567

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

568

raise TypeError("not indexable")

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

569

return any(item.name == key for item in self.list)

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

570

Guido van Rossum

88b85d4

1997-01-11 19:21:33 +0000

[diff] [blame]

571

def __len__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

572

"""Dictionary style len(x) support."""

573

return len(self.keys())

Guido van Rossum

88b85d4

1997-01-11 19:21:33 +0000

[diff] [blame]

574

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

575

def __bool__(self):

576

if self.list is None:

577

raise TypeError("Cannot be converted to bool.")

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

578

return bool(self.list)

579

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

580

def read_urlencoded(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

581

"""Internal: read data in query string format."""

582

qs = self.fp.read(self.length)

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

583

if not isinstance(qs, bytes):

584

raise ValueError("%s should return bytes, got %s" \

585

% (self.fp, type(qs).__name__))

586

qs = qs.decode(self.encoding, self.errors)

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

587

if self.qs_on_post:

588

qs += '&' + self.qs_on_post

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

589

query = urllib.parse.parse_qsl(

590

qs, self.keep_blank_values, self.strict_parsing,

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

591

encoding=self.encoding, errors=self.errors,

592

max_num_fields=self.max_num_fields)

593

self.list = [MiniFieldStorage(key, value) for key, value in query]

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

594

self.skip_lines()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

595

Guido van Rossum

030d2ec

1998-12-09 22:16:46 +0000

[diff] [blame]

596

FieldStorageClass = None

597

Guido van Rossum

f574500

1998-10-20 14:43:02 +0000

[diff] [blame]

598

def read_multi(self, environ, keep_blank_values, strict_parsing):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

599

"""Internal: read a part that is itself multipart."""

Guido van Rossum

2e441f7

2001-07-25 21:00:19 +0000

[diff] [blame]

600

ib = self.innerboundary

601

if not valid_boundary(ib):

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

602

raise ValueError('Invalid boundary in multipart form: %r' % (ib,))

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

603

self.list = []

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

604

if self.qs_on_post:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

605

query = urllib.parse.parse_qsl(

606

self.qs_on_post, self.keep_blank_values, self.strict_parsing,

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

607

encoding=self.encoding, errors=self.errors,

608

max_num_fields=self.max_num_fields)

609

self.list.extend(MiniFieldStorage(key, value) for key, value in query)

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

610

Guido van Rossum

030d2ec

1998-12-09 22:16:46 +0000

[diff] [blame]

611

klass = self.FieldStorageClass or self.__class__

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

612

first_line = self.fp.readline() # bytes

613

if not isinstance(first_line, bytes):

614

raise ValueError("%s should return bytes, got %s" \

615

% (self.fp, type(first_line).__name__))

616

self.bytes_read += len(first_line)

Donald Stufft

d90f8d1

2015-03-29 16:43:23 -0400

[diff] [blame]

617

618

# Ensure that we consume the file until we've hit our inner boundary

619

while (first_line.strip() != (b"--" + self.innerboundary) and

620

first_line):

621

first_line = self.fp.readline()

622

self.bytes_read += len(first_line)

623

matthewbelisle-wf

b79b5c0

2018-10-23 03:14:35 -0500

[diff] [blame]

624

# Propagate max_num_fields into the sub class appropriately

625

max_num_fields = self.max_num_fields

626

if max_num_fields is not None:

627

max_num_fields -= len(self.list)

628

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

629

while True:

630

parser = FeedParser()

631

hdr_text = b""

632

while True:

633

data = self.fp.readline()

hdr_text += data

if not data.strip():

break

if not hdr_text:

break

# parser takes strings, not bytes

640

self.bytes_read += len(hdr_text)

641

parser.feed(hdr_text.decode(self.encoding, self.errors))

642

headers = parser.close()

Victor Stinner

6579459

2015-08-18 10:21:10 -0700

[diff] [blame]

643

644

# Some clients add Content-Length for part headers, ignore them

645

if 'content-length' in headers:

646

del headers['content-length']

647

Pierre Quentel

2d7caca

2019-09-11 13:05:53 +0200

[diff] [blame]

648

limit = None if self.limit is None \

649

else self.limit - self.bytes_read

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

650

part = klass(self.fp, headers, ib, environ, keep_blank_values,

Pierre Quentel

2d7caca

2019-09-11 13:05:53 +0200

[diff] [blame]

651

strict_parsing, limit,

matthewbelisle-wf

b79b5c0

2018-10-23 03:14:35 -0500

[diff] [blame]

652

self.encoding, self.errors, max_num_fields)

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

653

matthewbelisle-wf

b79b5c0

2018-10-23 03:14:35 -0500

[diff] [blame]

654

if max_num_fields is not None:

655

max_num_fields -= 1

656

if part.list:

657

max_num_fields -= len(part.list)

658

if max_num_fields < 0:

659

raise ValueError('Max number of fields exceeded')

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

660

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

661

self.bytes_read += part.bytes_read

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

662

self.list.append(part)

Florent Xicluna

331c3fd

2013-07-07 12:44:28 +0200

[diff] [blame]

663

if part.done or self.bytes_read >= self.length > 0:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

664

break

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

665

self.skip_lines()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

666

667

def read_single(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

668

"""Internal: read an atomic part."""

if self.length >= 0:

self.read_binary()

self.skip_lines()

else:

self.read_lines()

self.file.seek(0)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

675

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

676

bufsize = 8*1024 # I/O buffering size for copy to file

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

677

678

def read_binary(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

679

"""Internal: read binary data."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

680

self.file = self.make_file()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

681

todo = self.length

682

if todo >= 0:

683

while todo > 0:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

684

data = self.fp.read(min(todo, self.bufsize)) # bytes

685

if not isinstance(data, bytes):

686

raise ValueError("%s should return bytes, got %s"

687

% (self.fp, type(data).__name__))

688

self.bytes_read += len(data)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

if not data:

self.done = -1

break

self.file.write(data)

693

todo = todo - len(data)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

694

695

def read_lines(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

696

"""Internal: read lines until EOF or outerboundary."""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

697

if self._binary_file:

698

self.file = self.__file = BytesIO() # store data as bytes for files

699

else:

700

self.file = self.__file = StringIO() # as strings for other fields

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

701

if self.outerboundary:

702

self.read_lines_to_outerboundary()

703

else:

704

self.read_lines_to_eof()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

705

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

706

def __write(self, line):

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

707

"""line is always bytes, not string"""

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

708

if self.__file is not None:

709

if self.__file.tell() + len(line) > 1000:

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

710

self.file = self.make_file()

711

data = self.__file.getvalue()

712

self.file.write(data)

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

713

self.__file = None

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

714

if self._binary_file:

715

# keep bytes

716

self.file.write(line)

717

else:

718

# decode to string

719

self.file.write(line.decode(self.encoding, self.errors))

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

720

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

721

def read_lines_to_eof(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

722

"""Internal: read lines until EOF."""

723

while 1:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

724

line = self.fp.readline(1<<16) # bytes

725

self.bytes_read += len(line)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

726

if not line:

727

self.done = -1

728

break

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

729

self.__write(line)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

730

731

def read_lines_to_outerboundary(self):

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

732

"""Internal: read lines until outerboundary.

733

Data is read as bytes: boundaries and line ends must be converted

734

to bytes for comparisons.

735

"""

736

next_boundary = b"--" + self.outerboundary

737

last_boundary = next_boundary + b"--"

738

delim = b""

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

739

last_line_lfend = True

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

740

_read = 0

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

741

while 1:

roger

d8cf351

2020-06-15 16:58:54 +0200

[diff] [blame]

742

743

if self.limit is not None and 0 <= self.limit <= _read:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

744

break

745

line = self.fp.readline(1<<16) # bytes

746

self.bytes_read += len(line)

747

_read += len(line)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

748

if not line:

749

self.done = -1

750

break

Serhiy Storchaka

c7bfe0e

2013-06-17 16:34:41 +0300

[diff] [blame]

751

if delim == b"\r":

752

line = delim + line

753

delim = b""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

754

if line.startswith(b"--") and last_line_lfend:

755

strippedline = line.rstrip()

756

if strippedline == next_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

757

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

758

if strippedline == last_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

759

self.done = 1

760

break

761

odelim = delim

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

762

if line.endswith(b"\r\n"):

763

delim = b"\r\n"

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

764

line = line[:-2]

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

765

last_line_lfend = True

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

766

elif line.endswith(b"\n"):

767

delim = b"\n"

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

768

line = line[:-1]

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

769

last_line_lfend = True

Serhiy Storchaka

c7bfe0e

2013-06-17 16:34:41 +0300

[diff] [blame]

770

elif line.endswith(b"\r"):

771

# We may interrupt \r\n sequences if they span the 2**16

# byte boundary

delim = b"\r"

line = line[:-1]

last_line_lfend = False

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

776

else:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

777

delim = b""

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

778

last_line_lfend = False

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

779

self.__write(odelim + line)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

780

781

def skip_lines(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

782

"""Internal: skip lines until outer boundary if defined."""

783

if not self.outerboundary or self.done:

784

return

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

785

next_boundary = b"--" + self.outerboundary

786

last_boundary = next_boundary + b"--"

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

787

last_line_lfend = True

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

788

while True:

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

789

line = self.fp.readline(1<<16)

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

790

self.bytes_read += len(line)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

791

if not line:

792

self.done = -1

793

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

794

if line.endswith(b"--") and last_line_lfend:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

795

strippedline = line.strip()

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

796

if strippedline == next_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

797

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

798

if strippedline == last_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

799

self.done = 1

800

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

801

last_line_lfend = line.endswith(b'\n')

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

802

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

803

def make_file(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

804

"""Overridable: return a readable & writable file.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

805

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

806

The file will be used as follows:

807

- data is written to it

808

- seek(0)

809

- data is read from it

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

810

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

811

The file is opened in binary mode for files, in text mode

812

for other fields

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

813

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

814

This version opens a temporary file for reading and writing,

815

and immediately deletes (unlinks) it. The trick (on Unix!) is

816

that the file can still be used, but it can't be opened by

817

another process, and it will automatically be deleted when it

818

is closed or when the current process terminates.

Guido van Rossum

4032c2c

1996-03-09 04:04:35 +0000

[diff] [blame]

819

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

820

If you want a more permanent file, you derive a class which

821

overrides this method. If you want a visible temporary file

822

that is nevertheless automatically deleted when the script

823

terminates, try defining a __del__ method in a derived class

824

which unlinks the temporary files you have created.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

825

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

826

"""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

827

if self._binary_file:

828

return tempfile.TemporaryFile("wb+")

829

else:

830

return tempfile.TemporaryFile("w+",

831

encoding=self.encoding, newline = '\n')

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

832

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

833

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

834

# Test/debug code

835

# ===============

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

836

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

837

def test(environ=os.environ):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

838

"""Robust test CGI script, usable as main program.

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

839

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

840

Write minimal HTTP headers and dump all information provided to

841

the script in HTML form.

842

843

"""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

844

print("Content-type: text/html")

845

print()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

846

sys.stderr = sys.stdout

847

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

848

form = FieldStorage() # Replace with other classes to test those

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

849

print_directory()

850

print_arguments()

Guido van Rossum

a3c6a8a

2000-09-19 04:11:46 +0000

[diff] [blame]

851

print_form(form)

852

print_environ(environ)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

853

print_environ_usage()

854

def f():

Georg Brandl

7cae87c

2006-09-06 06:51:57 +0000

[diff] [blame]

855

exec("testing print_exception() -- <I>italics?</I>")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

856

def g(f=f):

857

f()

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

858

print("<H3>What follows is a test, not an actual exception:</H3>")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

859

g()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

860

except:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

861

print_exception()

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

862

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

863

print("<H1>Second try with a small maxlen...</H1>")

Guido van Rossum

57d51f2

2000-09-16 21:16:01 +0000

[diff] [blame]

864

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

865

global maxlen

866

maxlen = 50

867

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

868

form = FieldStorage() # Replace with other classes to test those

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

869

print_directory()

870

print_arguments()

Guido van Rossum

a3c6a8a

2000-09-19 04:11:46 +0000

[diff] [blame]

871

print_form(form)

872

print_environ(environ)

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

873

except:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

874

print_exception()

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

875

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

876

def print_exception(type=None, value=None, tb=None, limit=None):

877

if type is None:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

878

type, value, tb = sys.exc_info()

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

879

import traceback

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

880

print()

881

print("<H3>Traceback (most recent call last):</H3>")

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

882

list = traceback.format_tb(tb, limit) + \

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

883

traceback.format_exception_only(type, value)

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

884

print("<PRE>%s<B>%s</B></PRE>" % (

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

885

html.escape("".join(list[:-1])),

886

html.escape(list[-1]),

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

887

))

Guido van Rossum

f15d159

1997-09-29 23:22:12 +0000

[diff] [blame]

888

del tb

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

889

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

890

def print_environ(environ=os.environ):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

891

"""Dump the shell environment as HTML."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

892

keys = sorted(environ.keys())

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

893

print()

894

print("<H3>Shell Environment:</H3>")

895

print("<DL>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

896

for key in keys:

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

897

print("<DT>", html.escape(key), "<DD>", html.escape(environ[key]))

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

898

print("</DL>")

899

print()

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

900

901

def print_form(form):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

902

"""Dump the contents of a form as HTML."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

903

keys = sorted(form.keys())

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

904

print()

905

print("<H3>Form Contents:</H3>")

Guido van Rossum

57d51f2

2000-09-16 21:16:01 +0000

[diff] [blame]

906

if not keys:

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

907

print("<P>No form fields.")

908

print("<DL>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

909

for key in keys:

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

910

print("<DT>" + html.escape(key) + ":", end=' ')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

911

value = form[key]

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

912

print("<i>" + html.escape(repr(type(value))) + "</i>")

913

print("<DD>" + html.escape(repr(value)))

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

914

print("</DL>")

915

print()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

916

917

def print_directory():

918

"""Dump the current directory as HTML."""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

919

print()

920

print("<H3>Current Working Directory:</H3>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

921

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

922

pwd = os.getcwd()

Andrew Svetlov

ad28c7f

2012-12-18 22:02:39 +0200

[diff] [blame]

923

except OSError as msg:

Andrew Svetlov

8b33dd8

2012-12-24 19:58:48 +0200

[diff] [blame]

924

print("OSError:", html.escape(str(msg)))

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

925

else:

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

926

print(html.escape(pwd))

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

927

print()

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

928

Guido van Rossum

a8738a5

1996-03-14 21:30:28 +0000

[diff] [blame]

929

def print_arguments():

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

930

print()

931

print("<H3>Command Line Arguments:</H3>")

932

print()

933

print(sys.argv)

934

print()

Guido van Rossum

a8738a5

1996-03-14 21:30:28 +0000

[diff] [blame]

935

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

936

def print_environ_usage():

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

937

"""Dump a list of environment variables used by CGI as HTML."""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

938

print("""

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

939

<H3>These environment variables could have been set:</H3>

940

<UL>

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

<LI>AUTH_TYPE

<LI>CONTENT_LENGTH

<LI>CONTENT_TYPE

<LI>DATE_GMT

<LI>DATE_LOCAL

<LI>DOCUMENT_NAME

<LI>DOCUMENT_ROOT

<LI>DOCUMENT_URI

<LI>GATEWAY_INTERFACE

<LI>LAST_MODIFIED

<LI>PATH

<LI>PATH_INFO

<LI>PATH_TRANSLATED

<LI>QUERY_STRING

<LI>REMOTE_ADDR

<LI>REMOTE_HOST

<LI>REMOTE_IDENT

<LI>REMOTE_USER

<LI>REQUEST_METHOD

<LI>SCRIPT_NAME

<LI>SERVER_NAME

<LI>SERVER_PORT

<LI>SERVER_PROTOCOL

<LI>SERVER_ROOT

<LI>SERVER_SOFTWARE

</UL>

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

967

In addition, HTTP headers sent by the server may be passed in the

968

environment as well. Here are some common variable names:

<UL>

<LI>HTTP_ACCEPT

<LI>HTTP_CONNECTION

<LI>HTTP_HOST

<LI>HTTP_PRAGMA

<LI>HTTP_REFERER

<LI>HTTP_USER_AGENT

</UL>

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

977

""")

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

978

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

979

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

980

# Utilities

981

# =========

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

982

Benjamin Peterson

4d59a78

2014-04-03 10:22:10 -0400

[diff] [blame]

983

def valid_boundary(s):

Guido van Rossum

2e441f7

2001-07-25 21:00:19 +0000

[diff] [blame]

984

import re

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

985

if isinstance(s, bytes):

986

_vb_pattern = b"^[ -~]{0,200}[!-~]$"

987

else:

988

_vb_pattern = "^[ -~]{0,200}[!-~]$"

Guido van Rossum

2e441f7

2001-07-25 21:00:19 +0000

[diff] [blame]

989

return re.match(_vb_pattern, s)

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

990

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Invoke mainline

# ===============

# Call test() when this file is run as a script (not imported as a module)

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

995

if __name__ == '__main__':

Guido van Rossum