Blame - Lib/cgi.py - platform/external/python/cpython3

1996-03-06 07:20:06 +0000

[diff] [blame]

12

"""Support module for CGI (Common Gateway Interface) scripts.

Guido van Rossum

1c9daa8

1995-09-18 21:52:37 +0000

[diff] [blame]

13

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

14

This module defines a number of utilities for use by CGI scripts

15

written in Python.

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

16

"""

17

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

18

# History

19

# -------

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

20

#

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

21

# Michael McLay started this module. Steve Majewski changed the

22

# interface to SvFormContentDict and FormContentDict. The multipart

23

# parsing was inspired by code submitted by Andreas Paepcke. Guido van

24

# Rossum rewrote, reformatted and documented the module and is currently

25

# responsible for its maintenance.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

26

#

Guido van Rossum

98d9fd3

2000-02-28 15:12:25 +0000

[diff] [blame]

27

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

28

__version__ = "2.6"

Guido van Rossum

0147db0

1996-03-09 03:16:04 +0000

[diff] [blame]

29

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Imports

# =======

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

34

from io import StringIO, BytesIO, TextIOWrapper

Serhiy Storchaka

2e576f5

2017-04-24 09:05:00 +0300

[diff] [blame]

35

from collections.abc import Mapping

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

36

import sys

37

import os

Jeremy Hylton

1afc169

2008-06-18 20:49:58 +0000

[diff] [blame]

38

import urllib.parse

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

39

from email.parser import FeedParser

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

40

from email.message import Message

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

41

import html

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

42

import locale

43

import tempfile

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

44

INADA Naoki

698865d

2018-06-19 17:28:50 +0900

[diff] [blame]

45

__all__ = ["MiniFieldStorage", "FieldStorage", "parse", "parse_multipart",

Martin Panter

1cd2772

2016-06-06 01:53:28 +0000

[diff] [blame]

46

"parse_header", "test", "print_exception", "print_environ",

Guido van Rossum

a8423a9

2001-03-19 13:40:44 +0000

[diff] [blame]

47

"print_form", "print_directory", "print_arguments",

INADA Naoki

698865d

2018-06-19 17:28:50 +0900

[diff] [blame]

48

"print_environ_usage"]

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

# Logging support

# ===============

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

53

logfile = "" # Filename to log to, if not empty

54

logfp = None # File object to log to, if not None

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

55

56

def initlog(*allargs):

57

"""Write a log message, if there is a log file.

58

59

Even though this function is called initlog(), you should always

60

use log(); log is a variable that is set either to initlog

61

(initially), to dolog (once the log file has been opened), or to

62

nolog (when logging is disabled).

63

64

The first argument is a format string; the remaining arguments (if

65

any) are arguments to the % operator, so e.g.

66

log("%s: %s", "a", "b")

67

will write "a: b" to the log file, followed by a newline.

68

69

If the global logfp is not None, it should be a file object to

70

which log data is written.

71

72

If the global logfp is None, the global logfile may be a string

73

giving a filename to open, in append mode. This file should be

74

world writable!!! If the file can't be opened, logging is

75

silently disabled (since there is no safe place where we could

76

send an error message).

77

78

"""

Victor Stinner

d33344a

2011-07-14 22:28:36 +0200

[diff] [blame]

79

global log, logfile, logfp

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

80

if logfile and not logfp:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

81

try:

82

logfp = open(logfile, "a")

Andrew Svetlov

f7a17b4

2012-12-25 16:47:37 +0200

[diff] [blame]

83

except OSError:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

84

pass

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

85

if not logfp:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

86

log = nolog

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

87

else:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

88

log = dolog

Guido van Rossum

68468eb

2003-02-27 20:14:51 +0000

[diff] [blame]

89

log(*allargs)

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

90

91

def dolog(fmt, *args):

92

"""Write a log message to the log file. See initlog() for docs."""

93

logfp.write(fmt%args + "\n")

94

95

def nolog(*allargs):

96

"""Dummy function, assigned to log when logging is disabled."""

97

pass

98

Victor Stinner

d33344a

2011-07-14 22:28:36 +0200

[diff] [blame]

99

def closelog():

100

"""Close the log file."""

101

global log, logfile, logfp

logfile = ''

if logfp:

logfp.close()

logfp = None

log = initlog

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

108

log = initlog # The current logging function

Guido van Rossum

1996-09-05 19:07:11 +0000

[diff] [blame]

109

110

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Parsing functions

# =================

Guido van Rossum

1997-05-13 19:03:23 +0000

[diff] [blame]

114

# Maximum input we will accept when REQUEST_METHOD is POST

115

# 0 ==> unlimited input

116

maxlen = 0

117

Adam Goldschmidt

2021-02-15 00:41:57 +0200

[diff] [blame]

118

def parse(fp=None, environ=os.environ, keep_blank_values=0,

119

strict_parsing=0, separator='&'):

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

120

"""Parse a query in the environment or from a file (default stdin)

121

122

Arguments, all optional:

123

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

124

fp : file pointer; default: sys.stdin.buffer

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

125

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

126

environ : environment dictionary; default: os.environ

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

127

128

keep_blank_values: flag indicating whether blank values in

Senthil Kumaran

30e86a4

2010-08-09 20:01:35 +0000

[diff] [blame]

129

percent-encoded forms should be treated as blank strings.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

130

A true value indicates that blanks should be retained as

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

131

blank strings. The default false value indicates that

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

132

blank values are to be ignored and treated as if they were

133

not included.

Guido van Rossum

e08c04c

1996-11-11 19:29:11 +0000

[diff] [blame]

134

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

135

strict_parsing: flag indicating what to do with parsing errors.

136

If false (the default), errors are silently ignored.

137

If true, errors raise a ValueError exception.

Adam Goldschmidt

2021-02-15 00:41:57 +0200

[diff] [blame]

138

139

separator: str. The symbol to use for separating the query arguments.

140

Defaults to &.

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

141

"""

Raymond Hettinger

a144900

2002-05-31 23:54:44 +0000

[diff] [blame]

142

if fp is None:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

143

fp = sys.stdin

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

144

145

# field keys and values (except for files) are returned as strings

146

# an encoding is required to decode the bytes read from self.fp

147

if hasattr(fp,'encoding'):

148

encoding = fp.encoding

else:

encoding = 'latin-1'

# fp.read() must return bytes

153

if isinstance(fp, TextIOWrapper):

154

fp = fp.buffer

155

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

156

if not 'REQUEST_METHOD' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

157

environ['REQUEST_METHOD'] = 'GET' # For testing stand-alone

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

158

if environ['REQUEST_METHOD'] == 'POST':

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

159

ctype, pdict = parse_header(environ['CONTENT_TYPE'])

160

if ctype == 'multipart/form-data':

Adam Goldschmidt

2021-02-15 00:41:57 +0200

[diff] [blame]

161

return parse_multipart(fp, pdict, separator=separator)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

162

elif ctype == 'application/x-www-form-urlencoded':

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

163

clength = int(environ['CONTENT_LENGTH'])

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

164

if maxlen and clength > maxlen:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

165

raise ValueError('Maximum content length exceeded')

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

166

qs = fp.read(clength).decode(encoding)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

167

else:

168

qs = '' # Unknown content-type

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

169

if 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

170

if qs: qs = qs + '&'

171

qs = qs + environ['QUERY_STRING']

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

172

elif sys.argv[1:]:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

173

if qs: qs = qs + '&'

174

qs = qs + sys.argv[1]

175

environ['QUERY_STRING'] = qs # XXX Shouldn't, really

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

176

elif 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

177

qs = environ['QUERY_STRING']

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

178

else:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

if sys.argv[1:]:

qs = sys.argv[1]

else:

qs = ""

environ['QUERY_STRING'] = qs # XXX Shouldn't, really

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

184

return urllib.parse.parse_qs(qs, keep_blank_values, strict_parsing,

Adam Goldschmidt

2021-02-15 00:41:57 +0200

[diff] [blame]

185

encoding=encoding, separator=separator)

Guido van Rossum

e780877

1995-08-07 20:12:09 +0000

[diff] [blame]

186

187

Adam Goldschmidt

2021-02-15 00:41:57 +0200

[diff] [blame]

188

def parse_multipart(fp, pdict, encoding="utf-8", errors="replace", separator='&'):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

189

"""Parse multipart input.

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

190

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

191

Arguments:

192

fp : input file

Johannes Gijsbers

c7fc10a

2005-01-08 13:56:36 +0000

[diff] [blame]

193

pdict: dictionary containing other parameters of content-type header

Amber Brown

545c955

2018-05-14 18:11:55 -0400

[diff] [blame]

194

encoding, errors: request encoding and error handler, passed to

195

FieldStorage

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

196

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

197

Returns a dictionary just like parse_qs(): keys are the field names, each

Pierre Quentel

cc3fa20

2017-05-08 14:08:34 +0200

[diff] [blame]

198

value is a list of values for that field. For non-file fields, the value

199

is a list of strings.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

200

"""

Mike Lei

c143cc3

2020-12-17 01:34:19 +0000

[diff] [blame]

201

# RFC 2046, Section 5.1 : The "multipart" boundary delimiters are always

Pierre Quentel

cc3fa20

2017-05-08 14:08:34 +0200

[diff] [blame]

202

# represented as 7bit US-ASCII.

203

boundary = pdict['boundary'].decode('ascii')

204

ctype = "multipart/form-data; boundary={}".format(boundary)

205

headers = Message()

206

headers.set_type(ctype)

roger

d8cf351

2020-06-15 16:58:54 +0200

[diff] [blame]

207

try:

208

headers['Content-Length'] = pdict['CONTENT-LENGTH']

209

except KeyError:

210

pass

Amber Brown

545c955

2018-05-14 18:11:55 -0400

[diff] [blame]

211

fs = FieldStorage(fp, headers=headers, encoding=encoding, errors=errors,

Adam Goldschmidt

2021-02-15 00:41:57 +0200

[diff] [blame]

212

environ={'REQUEST_METHOD': 'POST'}, separator=separator)

Pierre Quentel

cc3fa20

2017-05-08 14:08:34 +0200

[diff] [blame]

213

return {k: fs.getlist(k) for k in fs}

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

214

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

def _parseparam(s):

while s[:1] == ';':

s = s[1:]

end = s.find(';')

Senthil Kumaran

1ef0c03

2011-10-20 01:05:44 +0800

[diff] [blame]

219

while end > 0 and (s.count('"', 0, end) - s.count('\\"', 0, end)) % 2:

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

220

end = s.find(';', end + 1)

if end < 0:

end = len(s)

f = s[:end]

yield f.strip()

s = s[end:]

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

227

def parse_header(line):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

228

"""Parse a Content-type like header.

229

230

Return the main content-type and a dictionary of options.

231

232

"""

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

233

parts = _parseparam(';' + line)

234

key = parts.__next__()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

235

pdict = {}

Fred Drake

2008-12-04 19:24:50 +0000

[diff] [blame]

236

for p in parts:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

237

i = p.find('=')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

238

if i >= 0:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

239

name = p[:i].strip().lower()

240

value = p[i+1:].strip()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

241

if len(value) >= 2 and value[0] == value[-1] == '"':

242

value = value[1:-1]

Johannes Gijsbers

9e15dd6

2004-08-14 15:39:34 +0000

[diff] [blame]

243

value = value.replace('\\\\', '\\').replace('\\"', '"')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

244

pdict[name] = value

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

245

return key, pdict

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

246

247

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

248

# Classes for field storage

249

# =========================

250

251

class MiniFieldStorage:

252

Guido van Rossum

0147db0

1996-03-09 03:16:04 +0000

[diff] [blame]

253

"""Like FieldStorage, for use when no file uploads are possible."""

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

254

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

# Dummy attributes

filename = None

list = None

type = None

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

259

file = None

Guido van Rossum

4032c2c

1996-03-09 04:04:35 +0000

[diff] [blame]

260

type_options = {}

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

261

disposition = None

262

disposition_options = {}

263

headers = {}

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

264

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

265

def __init__(self, name, value):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

266

"""Constructor from field name and value."""

267

self.name = name

268

self.value = value

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

269

# self.file = StringIO(value)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

270

271

def __repr__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

272

"""Return printable representation."""

Walter Dörwald

70a6b49

2004-02-12 17:35:32 +0000

[diff] [blame]

273

return "MiniFieldStorage(%r, %r)" % (self.name, self.value)

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

class FieldStorage:

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

278

"""Store a sequence of fields, reading multipart/form-data.

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

279

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

280

This class provides naming, typing, files stored on disk, and

281

more. At the top level, it is accessible like a dictionary, whose

282

keys are the field names. (Note: None can occur as a field name.)

283

The items are either a Python list (if there's multiple values) or

284

another FieldStorage or MiniFieldStorage object. If it's a single

285

object, it has the following attributes:

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

286

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

287

name: the field name, if specified; otherwise None

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

288

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

289

filename: the filename, if specified; otherwise None; this is the

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

290

client side filename, *not* the file name on which it is

291

stored (that's a temporary file you don't deal with)

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

292

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

293

value: the value as a *string*; for file uploads, this

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

294

transparently reads the file every time you request the value

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

295

and returns *bytes*

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

296

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

297

file: the file(-like) object from which you can read the data *as

298

bytes* ; None if the data is stored a simple string

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

299

300

type: the content-type, or None if not specified

301

302

type_options: dictionary of options specified on the content-type

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

303

line

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

304

305

disposition: content-disposition, or None if not specified

306

307

disposition_options: dictionary of corresponding options

308

Barry Warsaw

596097e

2008-06-12 02:38:51 +0000

[diff] [blame]

309

headers: a dictionary(-like) object (sometimes email.message.Message or a

Armin Rigo

3a703b6

2005-09-19 09:11:04 +0000

[diff] [blame]

310

subclass thereof) containing *all* headers

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

311

312

The class is subclassable, mostly for the purpose of overriding

313

the make_file() method, which is called internally to come up with

314

a file open for reading and writing. This makes it possible to

315

override the default choice of storing all files in a temporary

316

directory and unlinking them as soon as they have been opened.

317

318

"""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

319

def __init__(self, fp=None, headers=None, outerboundary=b'',

320

environ=os.environ, keep_blank_values=0, strict_parsing=0,

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

321

limit=None, encoding='utf-8', errors='replace',

Adam Goldschmidt

2021-02-15 00:41:57 +0200

[diff] [blame]

322

max_num_fields=None, separator='&'):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

323

"""Constructor. Read multipart/* until last part.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

324

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

325

Arguments, all optional:

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

326

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

327

fp : file pointer; default: sys.stdin.buffer

Guido van Rossum

b1b4f94

1998-05-08 19:55:51 +0000

[diff] [blame]

328

(not used when the request method is GET)

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

329

Can be :

330

1. a TextIOWrapper object

331

2. an object whose read() and readline() methods return bytes

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

332

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

333

headers : header dictionary-like object; default:

334

taken from environ as per CGI spec

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

335

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

336

outerboundary : terminating multipart boundary

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

337

(for internal use only)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

338

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

339

environ : environment dictionary; default: os.environ

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

340

341

keep_blank_values: flag indicating whether blank values in

Senthil Kumaran

30e86a4

2010-08-09 20:01:35 +0000

[diff] [blame]

342

percent-encoded forms should be treated as blank strings.

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

343

A true value indicates that blanks should be retained as

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

344

blank strings. The default false value indicates that

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

345

blank values are to be ignored and treated as if they were

346

not included.

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

347

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

348

strict_parsing: flag indicating what to do with parsing errors.

349

If false (the default), errors are silently ignored.

350

If true, errors raise a ValueError exception.

Guido van Rossum

e08c04c

1996-11-11 19:29:11 +0000

[diff] [blame]

351

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

352

limit : used internally to read parts of multipart/form-data forms,

353

to exit from the reading loop when reached. It is the difference

354

between the form content-length and the number of bytes already

355

read

356

357

encoding, errors : the encoding and error handler used to decode the

358

binary stream to strings. Must be the same as the charset defined

359

for the page sending the form (content-type : meta http-equiv or

360

header)

361

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

362

max_num_fields: int. If set, then __init__ throws a ValueError

363

if there are more than n fields read by parse_qsl().

364

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

365

"""

366

method = 'GET'

367

self.keep_blank_values = keep_blank_values

368

self.strict_parsing = strict_parsing

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

369

self.max_num_fields = max_num_fields

Adam Goldschmidt

2021-02-15 00:41:57 +0200

[diff] [blame]

370

self.separator = separator

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

371

if 'REQUEST_METHOD' in environ:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

372

method = environ['REQUEST_METHOD'].upper()

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

373

self.qs_on_post = None

Guido van Rossum

0185283

1998-06-25 02:40:17 +0000

[diff] [blame]

374

if method == 'GET' or method == 'HEAD':

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

375

if 'QUERY_STRING' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

376

qs = environ['QUERY_STRING']

elif sys.argv[1:]:

qs = sys.argv[1]

else:

qs = ""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

381

qs = qs.encode(locale.getpreferredencoding(), 'surrogateescape')

382

fp = BytesIO(qs)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

383

if headers is None:

384

headers = {'content-type':

385

"application/x-www-form-urlencoded"}

386

if headers is None:

Guido van Rossum

cff311a

1998-06-11 14:06:59 +0000

[diff] [blame]

387

headers = {}

388

if method == 'POST':

389

# Set default content-type for POST to what's traditional

390

headers['content-type'] = "application/x-www-form-urlencoded"

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

391

if 'CONTENT_TYPE' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

392

headers['content-type'] = environ['CONTENT_TYPE']

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

393

if 'QUERY_STRING' in environ:

394

self.qs_on_post = environ['QUERY_STRING']

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

395

if 'CONTENT_LENGTH' in environ:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

396

headers['content-length'] = environ['CONTENT_LENGTH']

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

397

else:

398

if not (isinstance(headers, (Mapping, Message))):

399

raise TypeError("headers must be mapping or an instance of "

400

"email.message.Message")

401

self.headers = headers

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

402

if fp is None:

403

self.fp = sys.stdin.buffer

404

# self.fp.read() must return bytes

405

elif isinstance(fp, TextIOWrapper):

406

self.fp = fp.buffer

407

else:

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

408

if not (hasattr(fp, 'read') and hasattr(fp, 'readline')):

409

raise TypeError("fp must be file pointer")

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

410

self.fp = fp

411

412

self.encoding = encoding

413

self.errors = errors

414

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

415

if not isinstance(outerboundary, bytes):

416

raise TypeError('outerboundary must be bytes, not %s'

417

% type(outerboundary).__name__)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

418

self.outerboundary = outerboundary

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

419

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

self.bytes_read = 0

self.limit = limit

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

423

# Process content-disposition header

424

cdisp, pdict = "", {}

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

425

if 'content-disposition' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

426

cdisp, pdict = parse_header(self.headers['content-disposition'])

427

self.disposition = cdisp

428

self.disposition_options = pdict

429

self.name = None

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

430

if 'name' in pdict:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

431

self.name = pdict['name']

432

self.filename = None

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

433

if 'filename' in pdict:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

434

self.filename = pdict['filename']

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

435

self._binary_file = self.filename is not None

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

436

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

437

# Process content-type header

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

438

#

439

# Honor any existing content-type header. But if there is no

440

# content-type header, use some sensible defaults. Assume

441

# outerboundary is "" at the outer level, but something non-false

442

# inside a multi-part. The default for an inner part is text/plain,

443

# but for an outer part it should be urlencoded. This should catch

444

# bogus clients which erroneously forget to include a content-type

445

# header.

446

#

447

# See below for what we do if there does exist a content-type header,

448

# but it happens to be something we don't understand.

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

449

if 'content-type' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

450

ctype, pdict = parse_header(self.headers['content-type'])

Guido van Rossum

ce900de

1999-06-02 18:44:22 +0000

[diff] [blame]

451

elif self.outerboundary or method != 'POST':

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

452

ctype, pdict = "text/plain", {}

453

else:

454

ctype, pdict = 'application/x-www-form-urlencoded', {}

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

455

self.type = ctype

456

self.type_options = pdict

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

457

if 'boundary' in pdict:

Amber Brown

545c955

2018-05-14 18:11:55 -0400

[diff] [blame]

458

self.innerboundary = pdict['boundary'].encode(self.encoding,

459

self.errors)

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

460

else:

461

self.innerboundary = b""

462

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

463

clen = -1

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

464

if 'content-length' in self.headers:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

465

try:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

466

clen = int(self.headers['content-length'])

Skip Montanaro

db5d144

2002-03-23 05:50:17 +0000

[diff] [blame]

467

except ValueError:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

468

pass

469

if maxlen and clen > maxlen:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

470

raise ValueError('Maximum content length exceeded')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

471

self.length = clen

Pierre Quentel

2d7caca

2019-09-11 13:05:53 +0200

[diff] [blame]

472

if self.limit is None and clen >= 0:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

473

self.limit = clen

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

474

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

475

self.list = self.file = None

476

self.done = 0

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

477

if ctype == 'application/x-www-form-urlencoded':

478

self.read_urlencoded()

479

elif ctype[:10] == 'multipart/':

Guido van Rossum

f574500

1998-10-20 14:43:02 +0000

[diff] [blame]

480

self.read_multi(environ, keep_blank_values, strict_parsing)

Barry Warsaw

302331a

1999-01-08 17:42:03 +0000

[diff] [blame]

481

else:

Guido van Rossum

60a3bd8

1999-06-11 18:26:09 +0000

[diff] [blame]

482

self.read_single()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

483

Brett Cannon

f79126f

2013-08-23 15:15:48 -0400

[diff] [blame]

def __del__(self):

try:

self.file.close()

except AttributeError:

488

pass

489

Berker Peksag

bf5e960

2015-02-06 10:21:37 +0200

[diff] [blame]

def __enter__(self):

return self

def __exit__(self, *args):

494

self.file.close()

495

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

496

def __repr__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

497

"""Return a printable representation."""

Walter Dörwald

70a6b49

2004-02-12 17:35:32 +0000

[diff] [blame]

498

return "FieldStorage(%r, %r, %r)" % (

499

self.name, self.filename, self.value)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

500

Guido van Rossum

4061cbe

2002-09-11 18:20:34 +0000

[diff] [blame]

501

def __iter__(self):

502

return iter(self.keys())

503

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

504

def __getattr__(self, name):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

505

if name != 'value':

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

506

raise AttributeError(name)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

507

if self.file:

508

self.file.seek(0)

509

value = self.file.read()

510

self.file.seek(0)

511

elif self.list is not None:

value = self.list

else:

value = None

return value

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

516

517

def __getitem__(self, key):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

518

"""Dictionary style indexing."""

519

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

520

raise TypeError("not indexable")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

521

found = []

522

for item in self.list:

523

if item.name == key: found.append(item)

524

if not found:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

525

raise KeyError(key)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

if len(found) == 1:

return found[0]

else:

return found

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

530

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

531

def getvalue(self, key, default=None):

532

"""Dictionary style get() method, including 'value' lookup."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

533

if key in self:

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

534

value = self[key]

Victor Stinner

f1c7ca9

2011-01-14 13:08:27 +0000

[diff] [blame]

535

if isinstance(value, list):

Guido van Rossum

c1f779c

2007-07-03 08:25:58 +0000

[diff] [blame]

536

return [x.value for x in value]

Moshe Zadka

a1a4b59

2000-08-25 21:47:56 +0000

[diff] [blame]

else:

return value.value

else:

return default

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

542

def getfirst(self, key, default=None):

543

""" Return the first value received."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

544

if key in self:

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

545

value = self[key]

Victor Stinner

f1c7ca9

2011-01-14 13:08:27 +0000

[diff] [blame]

546

if isinstance(value, list):

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

547

return value[0].value

else:

return value.value

else:

return default

def getlist(self, key):

554

""" Return list of received values."""

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

555

if key in self:

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

556

value = self[key]

Victor Stinner

f1c7ca9

2011-01-14 13:08:27 +0000

[diff] [blame]

557

if isinstance(value, list):

Guido van Rossum

c1f779c

2007-07-03 08:25:58 +0000

[diff] [blame]

558

return [x.value for x in value]

Guido van Rossum

2001-09-05 19:45:34 +0000

[diff] [blame]

else:

return [value.value]

else:

return []

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

564

def keys(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

565

"""Dictionary style keys() method."""

566

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

567

raise TypeError("not indexable")

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

568

return list(set(item.name for item in self.list))

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

569

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

570

def __contains__(self, key):

571

"""Dictionary style __contains__ method."""

572

if self.list is None:

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

573

raise TypeError("not indexable")

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

574

return any(item.name == key for item in self.list)

Raymond Hettinger

2002-06-01 14:18:47 +0000

[diff] [blame]

575

Guido van Rossum

88b85d4

1997-01-11 19:21:33 +0000

[diff] [blame]

576

def __len__(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

577

"""Dictionary style len(x) support."""

578

return len(self.keys())

Guido van Rossum

88b85d4

1997-01-11 19:21:33 +0000

[diff] [blame]

579

Senthil Kumaran

2014-01-11 22:20:16 -0800

[diff] [blame]

580

def __bool__(self):

581

if self.list is None:

582

raise TypeError("Cannot be converted to bool.")

Thomas Wouters

8ce81f7

2007-09-20 18:22:40 +0000

[diff] [blame]

583

return bool(self.list)

584

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

585

def read_urlencoded(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

586

"""Internal: read data in query string format."""

587

qs = self.fp.read(self.length)

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

588

if not isinstance(qs, bytes):

589

raise ValueError("%s should return bytes, got %s" \

590

% (self.fp, type(qs).__name__))

591

qs = qs.decode(self.encoding, self.errors)

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

592

if self.qs_on_post:

593

qs += '&' + self.qs_on_post

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

594

query = urllib.parse.parse_qsl(

595

qs, self.keep_blank_values, self.strict_parsing,

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

596

encoding=self.encoding, errors=self.errors,

Adam Goldschmidt

2021-02-15 00:41:57 +0200

[diff] [blame]

597

max_num_fields=self.max_num_fields, separator=self.separator)

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

598

self.list = [MiniFieldStorage(key, value) for key, value in query]

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

599

self.skip_lines()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

600

Guido van Rossum

030d2ec

1998-12-09 22:16:46 +0000

[diff] [blame]

601

FieldStorageClass = None

602

Guido van Rossum

f574500

1998-10-20 14:43:02 +0000

[diff] [blame]

603

def read_multi(self, environ, keep_blank_values, strict_parsing):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

604

"""Internal: read a part that is itself multipart."""

Guido van Rossum

2e441f7

2001-07-25 21:00:19 +0000

[diff] [blame]

605

ib = self.innerboundary

606

if not valid_boundary(ib):

Collin Winter

2007-08-30 01:19:48 +0000

[diff] [blame]

607

raise ValueError('Invalid boundary in multipart form: %r' % (ib,))

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

608

self.list = []

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

609

if self.qs_on_post:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

610

query = urllib.parse.parse_qsl(

611

self.qs_on_post, self.keep_blank_values, self.strict_parsing,

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

612

encoding=self.encoding, errors=self.errors,

Adam Goldschmidt

2021-02-15 00:41:57 +0200

[diff] [blame]

613

max_num_fields=self.max_num_fields, separator=self.separator)

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

614

self.list.extend(MiniFieldStorage(key, value) for key, value in query)

Benjamin Peterson

2008-07-02 17:30:14 +0000

[diff] [blame]

615

Guido van Rossum

030d2ec

1998-12-09 22:16:46 +0000

[diff] [blame]

616

klass = self.FieldStorageClass or self.__class__

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

617

first_line = self.fp.readline() # bytes

618

if not isinstance(first_line, bytes):

619

raise ValueError("%s should return bytes, got %s" \

620

% (self.fp, type(first_line).__name__))

621

self.bytes_read += len(first_line)

Donald Stufft

d90f8d1

2015-03-29 16:43:23 -0400

[diff] [blame]

622

623

# Ensure that we consume the file until we've hit our inner boundary

624

while (first_line.strip() != (b"--" + self.innerboundary) and

625

first_line):

626

first_line = self.fp.readline()

627

self.bytes_read += len(first_line)

628

matthewbelisle-wf

b79b5c0

2018-10-23 03:14:35 -0500

[diff] [blame]

629

# Propagate max_num_fields into the sub class appropriately

630

max_num_fields = self.max_num_fields

631

if max_num_fields is not None:

632

max_num_fields -= len(self.list)

633

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

634

while True:

635

parser = FeedParser()

636

hdr_text = b""

637

while True:

638

data = self.fp.readline()

hdr_text += data

if not data.strip():

break

if not hdr_text:

break

# parser takes strings, not bytes

645

self.bytes_read += len(hdr_text)

646

parser.feed(hdr_text.decode(self.encoding, self.errors))

647

headers = parser.close()

Victor Stinner

6579459

2015-08-18 10:21:10 -0700

[diff] [blame]

648

649

# Some clients add Content-Length for part headers, ignore them

650

if 'content-length' in headers:

651

del headers['content-length']

652

Pierre Quentel

2d7caca

2019-09-11 13:05:53 +0200

[diff] [blame]

653

limit = None if self.limit is None \

654

else self.limit - self.bytes_read

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

655

part = klass(self.fp, headers, ib, environ, keep_blank_values,

Pierre Quentel

2d7caca

2019-09-11 13:05:53 +0200

[diff] [blame]

656

strict_parsing, limit,

Adam Goldschmidt

2021-02-15 00:41:57 +0200

[diff] [blame]

657

self.encoding, self.errors, max_num_fields, self.separator)

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

658

matthewbelisle-wf

b79b5c0

2018-10-23 03:14:35 -0500

[diff] [blame]

659

if max_num_fields is not None:

660

max_num_fields -= 1

661

if part.list:

662

max_num_fields -= len(part.list)

663

if max_num_fields < 0:

664

raise ValueError('Max number of fields exceeded')

matthewbelisle-wf

2018-10-19 05:52:59 -0500

[diff] [blame]

665

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

666

self.bytes_read += part.bytes_read

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

667

self.list.append(part)

Florent Xicluna

331c3fd

2013-07-07 12:44:28 +0200

[diff] [blame]

668

if part.done or self.bytes_read >= self.length > 0:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

669

break

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

670

self.skip_lines()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

671

672

def read_single(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

673

"""Internal: read an atomic part."""

if self.length >= 0:

self.read_binary()

self.skip_lines()

else:

self.read_lines()

self.file.seek(0)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

680

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

681

bufsize = 8*1024 # I/O buffering size for copy to file

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

682

683

def read_binary(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

684

"""Internal: read binary data."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

685

self.file = self.make_file()

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

686

todo = self.length

687

if todo >= 0:

688

while todo > 0:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

689

data = self.fp.read(min(todo, self.bufsize)) # bytes

690

if not isinstance(data, bytes):

691

raise ValueError("%s should return bytes, got %s"

692

% (self.fp, type(data).__name__))

693

self.bytes_read += len(data)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

if not data:

self.done = -1

break

self.file.write(data)

698

todo = todo - len(data)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

699

700

def read_lines(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

701

"""Internal: read lines until EOF or outerboundary."""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

702

if self._binary_file:

703

self.file = self.__file = BytesIO() # store data as bytes for files

704

else:

705

self.file = self.__file = StringIO() # as strings for other fields

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

706

if self.outerboundary:

707

self.read_lines_to_outerboundary()

708

else:

709

self.read_lines_to_eof()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

710

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

711

def __write(self, line):

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

712

"""line is always bytes, not string"""

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

713

if self.__file is not None:

714

if self.__file.tell() + len(line) > 1000:

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

715

self.file = self.make_file()

716

data = self.__file.getvalue()

717

self.file.write(data)

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

718

self.__file = None

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

719

if self._binary_file:

720

# keep bytes

721

self.file.write(line)

722

else:

723

# decode to string

724

self.file.write(line.decode(self.encoding, self.errors))

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

725

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

726

def read_lines_to_eof(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

727

"""Internal: read lines until EOF."""

728

while 1:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

729

line = self.fp.readline(1<<16) # bytes

730

self.bytes_read += len(line)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

731

if not line:

732

self.done = -1

733

break

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

734

self.__write(line)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

735

736

def read_lines_to_outerboundary(self):

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

737

"""Internal: read lines until outerboundary.

738

Data is read as bytes: boundaries and line ends must be converted

739

to bytes for comparisons.

740

"""

741

next_boundary = b"--" + self.outerboundary

742

last_boundary = next_boundary + b"--"

743

delim = b""

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

744

last_line_lfend = True

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

745

_read = 0

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

746

while 1:

roger

d8cf351

2020-06-15 16:58:54 +0200

[diff] [blame]

747

748

if self.limit is not None and 0 <= self.limit <= _read:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

749

break

750

line = self.fp.readline(1<<16) # bytes

751

self.bytes_read += len(line)

752

_read += len(line)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

753

if not line:

754

self.done = -1

755

break

Serhiy Storchaka

c7bfe0e

2013-06-17 16:34:41 +0300

[diff] [blame]

756

if delim == b"\r":

757

line = delim + line

758

delim = b""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

759

if line.startswith(b"--") and last_line_lfend:

760

strippedline = line.rstrip()

761

if strippedline == next_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

762

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

763

if strippedline == last_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

764

self.done = 1

765

break

766

odelim = delim

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

767

if line.endswith(b"\r\n"):

768

delim = b"\r\n"

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

769

line = line[:-2]

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

770

last_line_lfend = True

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

771

elif line.endswith(b"\n"):

772

delim = b"\n"

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

773

line = line[:-1]

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

774

last_line_lfend = True

Serhiy Storchaka

c7bfe0e

2013-06-17 16:34:41 +0300

[diff] [blame]

775

elif line.endswith(b"\r"):

776

# We may interrupt \r\n sequences if they span the 2**16

# byte boundary

delim = b"\r"

line = line[:-1]

last_line_lfend = False

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

781

else:

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

782

delim = b""

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

783

last_line_lfend = False

Guido van Rossum

2001-06-29 13:06:06 +0000

[diff] [blame]

784

self.__write(odelim + line)

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

785

786

def skip_lines(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

787

"""Internal: skip lines until outer boundary if defined."""

788

if not self.outerboundary or self.done:

789

return

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

790

next_boundary = b"--" + self.outerboundary

791

last_boundary = next_boundary + b"--"

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

792

last_line_lfend = True

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

793

while True:

Thomas Wouters

2006-08-21 19:07:27 +0000

[diff] [blame]

794

line = self.fp.readline(1<<16)

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

795

self.bytes_read += len(line)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

796

if not line:

797

self.done = -1

798

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

799

if line.endswith(b"--") and last_line_lfend:

Eric S. Raymond

2001-02-09 09:59:10 +0000

[diff] [blame]

800

strippedline = line.strip()

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

801

if strippedline == next_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

802

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

803

if strippedline == last_boundary:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

804

self.done = 1

805

break

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

806

last_line_lfend = line.endswith(b'\n')

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

807

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

808

def make_file(self):

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

809

"""Overridable: return a readable & writable file.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

810

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

811

The file will be used as follows:

812

- data is written to it

813

- seek(0)

814

- data is read from it

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

815

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

816

The file is opened in binary mode for files, in text mode

817

for other fields

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

818

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

819

This version opens a temporary file for reading and writing,

820

and immediately deletes (unlinks) it. The trick (on Unix!) is

821

that the file can still be used, but it can't be opened by

822

another process, and it will automatically be deleted when it

823

is closed or when the current process terminates.

Guido van Rossum

4032c2c

1996-03-09 04:04:35 +0000

[diff] [blame]

824

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

825

If you want a more permanent file, you derive a class which

826

overrides this method. If you want a visible temporary file

827

that is nevertheless automatically deleted when the script

828

terminates, try defining a __del__ method in a derived class

829

which unlinks the temporary files you have created.

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

830

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

831

"""

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

832

if self._binary_file:

833

return tempfile.TemporaryFile("wb+")

834

else:

835

return tempfile.TemporaryFile("w+",

836

encoding=self.encoding, newline = '\n')

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

837

Guido van Rossum

1996-03-07 06:33:07 +0000

[diff] [blame]

838

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

839

# Test/debug code

840

# ===============

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

841

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

842

def test(environ=os.environ):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

843

"""Robust test CGI script, usable as main program.

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

844

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

845

Write minimal HTTP headers and dump all information provided to

846

the script in HTML form.

847

848

"""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

849

print("Content-type: text/html")

850

print()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

851

sys.stderr = sys.stdout

852

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

853

form = FieldStorage() # Replace with other classes to test those

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

854

print_directory()

855

print_arguments()

Guido van Rossum

a3c6a8a

2000-09-19 04:11:46 +0000

[diff] [blame]

856

print_form(form)

857

print_environ(environ)

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

858

print_environ_usage()

859

def f():

Georg Brandl

7cae87c

2006-09-06 06:51:57 +0000

[diff] [blame]

860

exec("testing print_exception() -- <I>italics?</I>")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

861

def g(f=f):

862

f()

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

863

print("<H3>What follows is a test, not an actual exception:</H3>")

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

864

g()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

865

except:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

866

print_exception()

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

867

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

868

print("<H1>Second try with a small maxlen...</H1>")

Guido van Rossum

57d51f2

2000-09-16 21:16:01 +0000

[diff] [blame]

869

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

870

global maxlen

871

maxlen = 50

872

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

873

form = FieldStorage() # Replace with other classes to test those

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

874

print_directory()

875

print_arguments()

Guido van Rossum

a3c6a8a

2000-09-19 04:11:46 +0000

[diff] [blame]

876

print_form(form)

877

print_environ(environ)

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

878

except:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

879

print_exception()

Guido van Rossum

ad16471

1997-05-13 19:03:23 +0000

[diff] [blame]

880

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

881

def print_exception(type=None, value=None, tb=None, limit=None):

882

if type is None:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

883

type, value, tb = sys.exc_info()

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

884

import traceback

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

885

print()

886

print("<H3>Traceback (most recent call last):</H3>")

Guido van Rossum

1996-08-20 20:22:39 +0000

[diff] [blame]

887

list = traceback.format_tb(tb, limit) + \

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

888

traceback.format_exception_only(type, value)

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

889

print("<PRE>%s<B>%s</B></PRE>" % (

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

890

html.escape("".join(list[:-1])),

891

html.escape(list[-1]),

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

892

))

Guido van Rossum

f15d159

1997-09-29 23:22:12 +0000

[diff] [blame]

893

del tb

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

894

Guido van Rossum

1996-07-23 03:46:24 +0000

[diff] [blame]

895

def print_environ(environ=os.environ):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

896

"""Dump the shell environment as HTML."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

897

keys = sorted(environ.keys())

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

898

print()

899

print("<H3>Shell Environment:</H3>")

900

print("<DL>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

901

for key in keys:

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

902

print("<DT>", html.escape(key), "<DD>", html.escape(environ[key]))

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

903

print("</DL>")

904

print()

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

905

906

def print_form(form):

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

907

"""Dump the contents of a form as HTML."""

Guido van Rossum

2007-08-28 03:11:34 +0000

[diff] [blame]

908

keys = sorted(form.keys())

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

909

print()

910

print("<H3>Form Contents:</H3>")

Guido van Rossum

57d51f2

2000-09-16 21:16:01 +0000

[diff] [blame]

911

if not keys:

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

912

print("<P>No form fields.")

913

print("<DL>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

914

for key in keys:

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

915

print("<DT>" + html.escape(key) + ":", end=' ')

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

916

value = form[key]

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

917

print("<i>" + html.escape(repr(type(value))) + "</i>")

918

print("<DD>" + html.escape(repr(value)))

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

919

print("</DL>")

920

print()

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

921

922

def print_directory():

923

"""Dump the current directory as HTML."""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

924

print()

925

print("<H3>Current Working Directory:</H3>")

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

926

try:

Guido van Rossum

1998-03-26 21:13:24 +0000

[diff] [blame]

927

pwd = os.getcwd()

Andrew Svetlov

ad28c7f

2012-12-18 22:02:39 +0200

[diff] [blame]

928

except OSError as msg:

Andrew Svetlov

8b33dd8

2012-12-24 19:58:48 +0200

[diff] [blame]

929

print("OSError:", html.escape(str(msg)))

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

930

else:

Georg Brandl

2010-10-15 15:57:45 +0000

[diff] [blame]

931

print(html.escape(pwd))

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

932

print()

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

933

Guido van Rossum

a8738a5

1996-03-14 21:30:28 +0000

[diff] [blame]

934

def print_arguments():

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

935

print()

936

print("<H3>Command Line Arguments:</H3>")

937

print()

938

print(sys.argv)

939

print()

Guido van Rossum

a8738a5

1996-03-14 21:30:28 +0000

[diff] [blame]

940

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

941

def print_environ_usage():

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

942

"""Dump a list of environment variables used by CGI as HTML."""

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

943

print("""

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

944

<H3>These environment variables could have been set:</H3>

945

<UL>

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

<LI>AUTH_TYPE

<LI>CONTENT_LENGTH

<LI>CONTENT_TYPE

<LI>DATE_GMT

<LI>DATE_LOCAL

<LI>DOCUMENT_NAME

<LI>DOCUMENT_ROOT

<LI>DOCUMENT_URI

<LI>GATEWAY_INTERFACE

<LI>LAST_MODIFIED

<LI>PATH

<LI>PATH_INFO

<LI>PATH_TRANSLATED

<LI>QUERY_STRING

<LI>REMOTE_ADDR

<LI>REMOTE_HOST

<LI>REMOTE_IDENT

<LI>REMOTE_USER

<LI>REQUEST_METHOD

<LI>SCRIPT_NAME

<LI>SERVER_NAME

<LI>SERVER_PORT

<LI>SERVER_PROTOCOL

<LI>SERVER_ROOT

<LI>SERVER_SOFTWARE

</UL>

Guido van Rossum

1996-03-07 18:00:44 +0000

[diff] [blame]

972

In addition, HTTP headers sent by the server may be passed in the

973

environment as well. Here are some common variable names:

<UL>

<LI>HTTP_ACCEPT

<LI>HTTP_CONNECTION

<LI>HTTP_HOST

<LI>HTTP_PRAGMA

<LI>HTTP_REFERER

<LI>HTTP_USER_AGENT

</UL>

Guido van Rossum

2007-02-09 05:37:30 +0000

[diff] [blame]

982

""")

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

983

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

984

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

985

# Utilities

986

# =========

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

987

Benjamin Peterson

4d59a78

2014-04-03 10:22:10 -0400

[diff] [blame]

988

def valid_boundary(s):

Guido van Rossum

2e441f7

2001-07-25 21:00:19 +0000

[diff] [blame]

989

import re

Victor Stinner

2011-01-14 13:05:21 +0000

[diff] [blame]

990

if isinstance(s, bytes):

991

_vb_pattern = b"^[ -~]{0,200}[!-~]$"

992

else:

993

_vb_pattern = "^[ -~]{0,200}[!-~]$"

Guido van Rossum

2e441f7

2001-07-25 21:00:19 +0000

[diff] [blame]

994

return re.match(_vb_pattern, s)

Guido van Rossum

1995-01-12 12:29:47 +0000

[diff] [blame]

995

Guido van Rossum

1996-03-06 07:20:06 +0000

[diff] [blame]

# Invoke mainline

# ===============

# Call test() when this file is run as a script (not imported as a module)

Tim Peters

2001-01-14 23:36:06 +0000

[diff] [blame]

1000

if __name__ == '__main__':

Guido van Rossum