# Copyright 2013 by Rackspace Hosting, Inc. # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. """URI utilities. This module provides utility functions to parse, encode, decode, and otherwise manipulate a URI. These functions are not available directly in the `falcon` module, and so must be explicitly imported:: from falcon import uri name, port = uri.parse_host('example.org:8080') """ from __future__ import annotations from typing import Callable, Dict, List, Optional, overload, Tuple, Union from falcon.constants import PYPY try: from falcon.cyutil import uri as _cy_uri # type: ignore except ImportError: _cy_uri = None __all__ = ( 'decode', 'encode', 'encode_value', 'encode_check_escaped', 'encode_value_check_escaped', 'parse_host', 'parse_query_string', 'unquote_string', ) # NOTE(kgriffs): See also RFC 3986 _UNRESERVED = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-._~' # NOTE(kgriffs): See also RFC 3986 _DELIMITERS = ":/?#[]@!$&'()*+,;=" _ALL_ALLOWED = _UNRESERVED + _DELIMITERS _HEX_DIGITS = '0123456789ABCDEFabcdef' # This map construction is based on urllib's implementation _HEX_TO_BYTE = { (a + b).encode(): bytes([int(a + b, 16)]) for a in _HEX_DIGITS for b in _HEX_DIGITS } def _create_char_encoder(allowed_chars: str) -> Callable[[int], str]: lookup = {} for code_point in range(256): if chr(code_point) in allowed_chars: encoded_char = chr(code_point) else: encoded_char = '%{0:02X}'.format(code_point) lookup[code_point] = encoded_char return lookup.__getitem__ def _create_str_encoder( is_value: bool, check_is_escaped: bool = False ) -> Callable[[str], str]: allowed_chars = _UNRESERVED if is_value else _ALL_ALLOWED allowed_chars_plus_percent = allowed_chars + '%' encode_char = _create_char_encoder(allowed_chars) def encoder(uri: str) -> str: # PERF(kgriffs): Very fast way to check, learned from urlib.quote if not uri.rstrip(allowed_chars): return uri if check_is_escaped and not uri.rstrip(allowed_chars_plus_percent): # NOTE(kgriffs): There's a good chance the string has already # been escaped. Do one more check to increase our certainty. # NOTE(minesja): Per issue #1872, there's only certain situations # in which we should check again (ex. location, content_location, # append_link). In all other cases we should allow characters that # could appear escaped to still be encoded (ex. '%' would be encoded # as '%25'). tokens = uri.split('%') for token in tokens[1:]: hex_octet = token[:2] if not len(hex_octet) == 2: break if not (hex_octet[0] in _HEX_DIGITS and hex_octet[1] in _HEX_DIGITS): break else: # NOTE(kgriffs): All percent-encoded sequences were # valid, so assume that the string has already been # encoded. return uri # NOTE(kgriffs): At this point we know there is at least # one unallowed percent character. We are going to assume # that everything should be encoded. If the string is # partially encoded, the caller will need to normalize it # before passing it in here. encoded_uri = uri.encode() # Use our map to encode each char and join the result into a new uri # # PERF(kgriffs): map() is faster than list comp or generator comp on # CPython 3 (tested on CPython 3.5 and 3.7). A list comprehension # can be faster on PyPy3, but the difference is on the order of # nanoseconds in that case, so we aren't going to worry about it. return ''.join(map(encode_char, encoded_uri)) return encoder encode = _create_str_encoder(False) encode.__name__ = 'encode' encode.__doc__ = """Encodes a full or relative URI according to RFC 3986. RFC 3986 defines a set of "unreserved" characters as well as a set of "reserved" characters used as delimiters. This function escapes all other "disallowed" characters by percent-encoding them. Note: This utility is faster in the average case than the similar `quote` function found in ``urlib``. It also strives to be easier to use by assuming a sensible default of allowed characters. Args: uri (str): URI or part of a URI to encode. Returns: str: An escaped version of `uri`, where all disallowed characters have been percent-encoded. """ encode_value = _create_str_encoder(True) encode_value.__name__ = 'encode_value' encode_value.__doc__ = """Encodes a value string according to RFC 3986. Disallowed characters are percent-encoded in a way that models ``urllib.parse.quote(safe="~")``. However, the Falcon function is faster in the average case than the similar `quote` function found in urlib. It also strives to be easier to use by assuming a sensible default of allowed characters. All reserved characters are lumped together into a single set of "delimiters", and everything in that set is escaped. Note: RFC 3986 defines a set of "unreserved" characters as well as a set of "reserved" characters used as delimiters. Args: uri (str): URI fragment to encode. It is assumed not to cross delimiter boundaries, and so any reserved URI delimiter characters included in it will be percent-encoded. Returns: str: An escaped version of `uri`, where all disallowed characters have been percent-encoded. """ encode_check_escaped = _create_str_encoder(False, True) encode_check_escaped.__name__ = 'encode_check_escaped' encode_check_escaped.__doc__ = """Encodes a full or relative URI according to RFC 3986. RFC 3986 defines a set of "unreserved" characters as well as a set of "reserved" characters used as delimiters. This function escapes all other "disallowed" characters by percent-encoding them unless they appear to have been previously encoded. For example, ``'%26'`` will not be encoded again as it follows the format of an encoded value. Note: This utility is faster in the average case than the similar `quote` function found in ``urlib``. It also strives to be easier to use by assuming a sensible default of allowed characters. Args: uri (str): URI or part of a URI to encode. Returns: str: An escaped version of `uri`, where all disallowed characters have been percent-encoded. """ encode_value_check_escaped = _create_str_encoder(True, True) encode_value_check_escaped.__name__ = 'encode_value_check_escaped' encode_value_check_escaped.__doc__ = """Encodes a value string according to RFC 3986. RFC 3986 defines a set of "unreserved" characters as well as a set of "reserved" characters used as delimiters. Disallowed characters are percent-encoded in a way that models ``urllib.parse.quote(safe="~")`` unless they appear to have been previously encoded. For example, ``'%26'`` will not be encoded again as it follows the format of an encoded value. All reserved characters are lumped together into a single set of "delimiters", and everything in that set is escaped. Note: This utility is faster in the average case than the similar `quote` function found in ``urlib``. It also strives to be easier to use by assuming a sensible default of allowed characters. Args: uri (str): URI fragment to encode. It is assumed not to cross delimiter boundaries, and so any reserved URI delimiter characters included in it will be percent-encoded. Returns: str: An escaped version of `uri`, where all disallowed characters have been percent-encoded. """ def _join_tokens_bytearray(tokens: List[bytes]) -> str: decoded_uri = bytearray(tokens[0]) for token in tokens[1:]: token_partial = token[:2] try: decoded_uri += _HEX_TO_BYTE[token_partial] + token[2:] except KeyError: # malformed percentage like "x=%" or "y=%+" decoded_uri += b'%' + token # Convert back to str return decoded_uri.decode('utf-8', 'replace') def _join_tokens_list(tokens: List[bytes]) -> str: decoded = tokens[:1] # PERF(vytas): Do not copy list: a simple bool flag is fastest on PyPy JIT. skip = True for token in tokens: if skip: skip = False continue token_partial = token[:2] try: decoded.append(_HEX_TO_BYTE[token_partial] + token[2:]) except KeyError: # malformed percentage like "x=%" or "y=%+" decoded.append(b'%' + token) # Convert back to str return b''.join(decoded).decode('utf-8', 'replace') # PERF(vytas): The best method to join many byte strings depends on the Python # implementation and many other factors such as the total string length, # and the number of items to join. # Considering that CPython users are likely to choose the Cython implementation # of decode anyway, we pick one best allrounder per platform: # * On pure CPython, bytearray += often comes on top, also with the added # benefit of being able to decode() off it directly. # * On PyPy, b''.join(list) is the recommended approach, although it may # narrowly lose to BytesIO on the extreme end. _join_tokens = _join_tokens_list if PYPY else _join_tokens_bytearray def decode(encoded_uri: str, unquote_plus: bool = True) -> str: """Decode percent-encoded characters in a URI or query string. This function models the behavior of `urllib.parse.unquote_plus`, albeit in a faster, more straightforward manner. Args: encoded_uri (str): An encoded URI (full or partial). Keyword Arguments: unquote_plus (bool): Set to ``False`` to retain any plus ('+') characters in the given string, rather than converting them to spaces (default ``True``). Typically you should set this to ``False`` when decoding any part of a URI other than the query string. Returns: str: A decoded URL. If the URL contains escaped non-ASCII characters, UTF-8 is assumed per RFC 3986. """ decoded_uri = encoded_uri # PERF(kgriffs): Don't take the time to instantiate a new # string unless we have to. if '+' in decoded_uri and unquote_plus: decoded_uri = decoded_uri.replace('+', ' ') # Short-circuit if we can if '%' not in decoded_uri: return decoded_uri # NOTE(kgriffs): Clients should never submit a URI that has # unescaped non-ASCII chars in them, but just in case they # do, let's encode into a non-lossy format. reencoded_uri = decoded_uri.encode() # PERF(kgriffs): This was found to be faster than using # a regex sub call or list comprehension with a join. tokens = reencoded_uri.split(b'%') # PERF(vytas): Just use in-place add for a low number of items: if len(tokens) < 8: reencoded_uri = tokens[0] for token in tokens[1:]: token_partial = token[:2] try: reencoded_uri += _HEX_TO_BYTE[token_partial] + token[2:] except KeyError: # malformed percentage like "x=%" or "y=%+" reencoded_uri += b'%' + token # Convert back to str return reencoded_uri.decode('utf-8', 'replace') # NOTE(vytas): Decode percent-encoded bytestring fragments and join them # back to a string using the platform-dependent method. return _join_tokens(tokens) def parse_query_string( query_string: str, keep_blank: bool = False, csv: bool = False ) -> Dict[str, Union[str, List[str]]]: """Parse a query string into a dict. Query string parameters are assumed to use standard form-encoding. Only parameters with values are returned. For example, given 'foo=bar&flag', this function would ignore 'flag' unless the `keep_blank` option is set. Note: In addition to the standard HTML form-based method for specifying lists by repeating a given param multiple times, Falcon supports a more compact form in which the param may be given a single time but set to a ``list`` of comma-separated elements (e.g., 'foo=a,b,c'). This comma-separated format can be enabled by setting the `csv` option (see below) to ``True``. When using this format, all commas uri-encoded will not be treated by Falcon as a delimiter. If the client wants to send a value as a list, it must not encode the commas with the values. The two different ways of specifying lists may not be mixed in a single query string for the same parameter. Args: query_string (str): The query string to parse. keep_blank (bool): Set to ``True`` to return fields even if they do not have a value (default ``False``). For comma-separated values, this option also determines whether or not empty elements in the parsed list are retained. csv: Set to ``True`` in order to enable splitting query parameters on ``,`` (default ``False``). Depending on the user agent, encoding lists as multiple occurrences of the same parameter might be preferable. In this case, keeping `parse_qs_csv` at its default value (``False``) will cause the framework to treat commas as literal characters in each occurring parameter value. Returns: dict: A dictionary of (*name*, *value*) pairs, one per query parameter. Note that *value* may be a single ``str``, or a ``list`` of ``str``. Raises: TypeError: `query_string` was not a ``str``. """ params: dict = {} is_encoded = '+' in query_string or '%' in query_string # PERF(kgriffs): This was found to be faster than using a regex, for # both short and long query strings. Tested on CPython 3.4. for field in query_string.split('&'): k, _, v = field.partition('=') if not v and (not keep_blank or not k): continue # Note(steffgrez): Falcon first decode name parameter for handle # utf8 character. if is_encoded: k = decode(k) # NOTE(steffgrez): Falcon decode value at the last moment. So query # parser won't mix up between percent-encoded comma (as value) and # comma-separated list (as reserved character for sub-delimiter) if k in params: # The key was present more than once in the POST data. Convert to # a list, or append the next value to the list. old_value = params[k] if csv and ',' in v: # NOTE(kgriffs): Falcon supports a more compact form of # lists, in which the elements are comma-separated and # assigned to a single param instance. If it turns out that # very few people use this, it can be deprecated at some # point. values = v.split(',') if not keep_blank: # NOTE(kgriffs): Normalize the result in the case that # some elements are empty strings, such that the result # will be the same for 'foo=1,,3' as 'foo=1&foo=&foo=3'. additional_values = [ decode(element) for element in values if element ] else: additional_values = [decode(element) for element in values] if isinstance(old_value, list): old_value.extend(additional_values) else: additional_values.insert(0, old_value) params[k] = additional_values else: if is_encoded: v = decode(v) if isinstance(old_value, list): old_value.append(v) else: params[k] = [old_value, v] else: if csv and ',' in v: # NOTE(kgriffs): Falcon supports a more compact form of # lists, in which the elements are comma-separated and # assigned to a single param instance. If it turns out that # very few people use this, it can be deprecated at some # point. values = v.split(',') if not keep_blank: # NOTE(kgriffs): Normalize the result in the case that # some elements are empty strings, such that the result # will be the same for 'foo=1,,3' as 'foo=1&foo=&foo=3'. params[k] = [decode(element) for element in values if element] else: params[k] = [decode(element) for element in values] elif is_encoded: params[k] = decode(v) else: params[k] = v return params @overload def parse_host(host: str, default_port: int) -> Tuple[str, int]: ... @overload def parse_host( host: str, default_port: Optional[int] = None ) -> Tuple[str, Optional[int]]: ... def parse_host( host: str, default_port: Optional[int] = None ) -> Tuple[str, Optional[int]]: """Parse a canonical 'host:port' string into parts. Parse a host string (which may or may not contain a port) into parts, taking into account that the string may contain either a domain name or an IP address. In the latter case, both IPv4 and IPv6 addresses are supported. Args: host (str): Host string to parse, optionally containing a port number. Keyword Arguments: default_port (int): Port number to return when the host string does not contain one (default ``None``). Returns: tuple: A parsed (*host*, *port*) tuple from the given host string, with the port converted to an ``int``. If the host string does not specify a port, `default_port` is used instead. """ # NOTE(kgriff): The value from the Host header may # contain a port, so check that and strip it if # necessary. This is complicated by the fact that # a hostname may be specified either as an IP address # or as a domain name, and in the case of IPv6 there # may be multiple colons in the string. if host.startswith('['): # IPv6 address with a port pos = host.rfind(']:') if pos != -1: return (host[1:pos], int(host[pos + 2 :])) else: return (host[1:-1], default_port) pos = host.rfind(':') if (pos == -1) or (pos != host.find(':')): # Bare domain name or IP address return (host, default_port) # NOTE(kgriffs): At this point we know that there was # only a single colon, so we should have an IPv4 address # or a domain name plus a port name, _, port = host.partition(':') return (name, int(port)) def unquote_string(quoted: str) -> str: """Unquote an RFC 7320 "quoted-string". Args: quoted (str): Original quoted string Returns: str: unquoted string Raises: TypeError: `quoted` was not a ``str``. """ if len(quoted) < 2: return quoted elif quoted[0] != '"' or quoted[-1] != '"': # return original one, prevent side-effect return quoted tmp_quoted = quoted[1:-1] # PERF(philiptzou): Most header strings don't contain "quoted-pair" which # defined by RFC 7320. We use this little trick (quick string search) to # speed up string parsing by preventing unnecessary processes if possible. if '\\' not in tmp_quoted: return tmp_quoted elif r'\\' not in tmp_quoted: return tmp_quoted.replace('\\', '') else: return '\\'.join([q.replace('\\', '') for q in tmp_quoted.split(r'\\')]) # TODO(vytas): Restructure this in favour of a cleaner way to hoist the pure # Cython functions into this module. if _cy_uri is not None: # pragma: nocover decode = _cy_uri.decode # NOQA parse_query_string = _cy_uri.parse_query_string # NOQA