o sZhD@sddlZddlZddlZddlmZmZmZmZddlm Z m Z m Z m Z m Z mZmZmZmZmZddlmZmZddlmZddlmZmZdZdZdZd Zed eeZed Z ed Z!ed Z"GdddZ#Gddde#Z$dS)N) ChunkedReader LengthReader EOFReaderBody) InvalidHeaderInvalidHeaderName NoMoreDataInvalidRequestLineInvalidRequestMethodInvalidHTTPVersionLimitRequestLineLimitRequestHeadersUnsupportedTransferCodingObsoleteFolding)InvalidProxyLineForbiddenProxyRequest)InvalidSchemeHeaders) bytes_to_strsplit_request_uriiiz!#$%&'*+-.^_`|~z[%s0-9a-zA-Z]+z[a-z#]zHTTP/(\d)\.(\d)z[\0\r\n]c@s>eZdZddZddZddZddd Zd d Zd d ZdS)MessagecCs||_||_||_||_d|_g|_g|_d|_|jrdnd|_ d|_ |j |_ |j dks1|j t kr4t |_ |j |_ |j dkr@t|_ |j pDt}|j |dd|_||j}|j||dS)NhttpshttpFr)cfgunreader peer_addr remote_addrversionheadersZtrailersbodyZis_sslscheme must_closelimit_request_fields MAX_HEADERSlimit_request_field_sizeDEFAULT_MAX_HEADERFIELD_SIZEmax_buffer_headersparseunreadset_body_reader)selfrrrZmax_header_field_sizeZunusedr,D/var/www/auris/lib/python3.10/site-packages/gunicorn/http/message.py__init__"s4       zMessage.__init__cCs d|_dS)NT)r"r+r,r,r- force_close@s zMessage.force_closecCstN)NotImplementedError)r+rr,r,r-r(Csz Message.parseFcCsN|j}g}dd|dD}d}i}g}|rnd|jvs+t|jtr+|jd|jvr1|j}|j}|r%t||j kr?t d| d} t| td} | d dkrWt | | d d \} } |jjrh| d } t| sqt| | } | d g} |r|dd r|jjst| | d} | t| td7} | |jkrdkrt d | | d|r|dd sd| } t| rt | | |jkrdkrt d | |vr| || k} | rdnd}|r||jkrtnd}||_d| vr| |vsd|vrn|jjdkrn |jjdkrq1t| || | f|s4|S)NcSg|]}t|qSr,r).0liner,r,r- Kz)Message.parse_headers.. F*rzlimit request headers fieldsz : )  z!limit request headers fields sizez r>rrT_Z dangerousZdrop) rsplitZforwarded_allow_ips isinstancertuplesecure_scheme_headersforwarder_headerslenr#r popfindrZstrip_header_spacesrstripTOKEN_RE fullmatchrupperstrip startswithZpermit_obsolete_foldingrr%appendjoin!RFC9110_5_5_INVALID_AND_DANGEROUSsearchr!rZ header_map)r+data from_trailerrrlinesZ scheme_headerrDrEcurr header_lengthnamevaluesecurer!r,r,r- parse_headersFs            JzMessage.parse_headerscCsd}d}|jD]^\}}|dkr|durtd|d|}q|dkredd|dD}|D]8}|dkr?|r.,chunkedTidentity)compressdeflategzip)r<r<r)rrrAlowerr0rrrrrr str isnumericint ValueErrorrr)r+r_content_lengthrXrYvalsvalr,r,r-r*sV                 zMessage.set_body_readercCsZ|jrdS|jD]\}}|dkr'|d}|dkrdS|dkr%dSnq|jdkS)NTZ CONNECTIONr=closez keep-aliveFr<r)r"rrdrMr)r+hr]r,r,r- should_closes zMessage.should_closeNF) __name__ __module__ __qualname__r.r0r(r[r*ror,r,r,r-r!s c         z Request.parsercCs|} |d}|dkr ||krdkrnnt||n"t|d|kr.dkr7nntt||||||}q|d|||ddfS)NTr9rr)rrHr rFr)r+rrlimitrSrr,r,r-r:s     zRequest.read_linecCs>|jjsdS|jdkr dS|dsdS|||dS)z Detect, check and parse proxy protocol. :raises: ForbiddenProxyRequest, InvalidProxyLine. :return: True for proxy protocol line else False Fr<ZPROXYT)rrr}rNproxy_protocol_access_checkparse_proxy_protocol)r+r6r,r,r-rLs   zRequest.proxy_protocolcCsDd|jjvrt|jtr|jd|jjvr t|jddSdSdS)Nr:r)rZproxy_allow_ipsrBrrCrr/r,r,r-ras  z#Request.proxy_protocol_access_checkcCsR|d}t|dkrt||d}|d}|d}|dvr%td||dkrEzttj|ttj|Wn+tyDt|w|d krezttj|ttj|Wn tydt|wzt|d }t|d }Wn t ytd |wd |krdkrnn d |krdksntd ||||||d|_ dS)Nr>r<r)TCP4TCP6zprotocol '%s' not supportedrrrzinvalid port %sri)r client_addrZ client_portZ proxy_addrZ proxy_port) rArFrsocket inet_ptonAF_INETOSErrorAF_INET6rgrhr~)r+r6bitsprotoZs_addrZd_addrZs_portZd_portr,r,r-rhsH        .  zRequest.parse_proxy_protocolcCsdd|ddD}t|dkrtt||d|_|jjs?t|jr+t |jdt|dkr9dks?nt |jt |jsJt |j|jj rT|j |_|d|_t|jdkrftt|zt|j}Wn tyztt|w|jpd |_|jpd |_|jpd |_t |d}|durt|dt|dt|df|_d |jkrd ksn|jjst|jdSdS) NcSr3r,r4)r5bitr,r,r-r7r8z.Request.parse_request_line.. rrrr<rm)rr)rArFr rrvrZ!permit_unconventional_http_methodMETHOD_BADCHAR_RErRr rJrKZcasefold_http_methodrLrwrrhrxryrz VERSION_REr rggrouprZ"permit_unconventional_http_version)r+Z line_bytesrpartsmatchr,r,r-rsB                  zRequest.parse_request_linecs2tt|jjtrtt|jd|_dSdSru) rr*rBr readerrrrrr/rr,r-r*s zRequest.set_body_reader)r<rp)r) rqrrrsr.rr(rrrrrr* __classcell__r,r,rr-rts  --7rt)%rrerZgunicorn.http.bodyrrrrZgunicorn.http.errorsrrrr r r r r rrrrrZ gunicorn.utilrrr|r$r&ZRFC9110_5_6_2_TOKEN_SPECIALScompileescaperJrrrQrrtr,r,r,r-s&0    S