upstream/mercurial-mirror Commit - r8590:59acb9c7

1

# url.py - HTTP handling for mercurial

1

# url.py - HTTP handling for mercurial

2

#

2

#

3

4

5

6

#

6

#

7

# This software may be used and distributed according to the terms of the

7

# This software may be used and distributed according to the terms of the

8

# GNU General Public License version 2, incorporated herein by reference.

8

# GNU General Public License version 2, incorporated herein by reference.

9

10

import urllib, urllib2, urlparse, httplib, os, re

10

import urllib, urllib2, urlparse, httplib, os, re, socket, cStringIO

11

from i18n import _

11

from i18n import _

12

import keepalive, util

12

import keepalive, util

13

14

def hidepassword(url):

14

def hidepassword(url):

15

'''hide user credential in a url string'''

15

'''hide user credential in a url string'''

16

scheme, netloc, path, params, query, fragment = urlparse.urlparse(url)

16

scheme, netloc, path, params, query, fragment = urlparse.urlparse(url)

17

netloc = re.sub('([^:]*):([^@]*)@(.*)', r'\1:***@\3', netloc)

17

netloc = re.sub('([^:]*):([^@]*)@(.*)', r'\1:***@\3', netloc)

18

return urlparse.urlunparse((scheme, netloc, path, params, query, fragment))

18

return urlparse.urlunparse((scheme, netloc, path, params, query, fragment))

19

20

def removeauth(url):

20

def removeauth(url):

21

'''remove all authentication information from a url string'''

21

'''remove all authentication information from a url string'''

22

scheme, netloc, path, params, query, fragment = urlparse.urlparse(url)

22

scheme, netloc, path, params, query, fragment = urlparse.urlparse(url)

23

netloc = netloc[netloc.find('@')+1:]

23

netloc = netloc[netloc.find('@')+1:]

24

return urlparse.urlunparse((scheme, netloc, path, params, query, fragment))

24

return urlparse.urlunparse((scheme, netloc, path, params, query, fragment))

25

26

def netlocsplit(netloc):

26

def netlocsplit(netloc):

27

'''split [user[:passwd]@]host[:port] into 4-tuple.'''

27

'''split [user[:passwd]@]host[:port] into 4-tuple.'''

28

29

a = netloc.find('@')

29

a = netloc.find('@')

30

if a == -1:

30

if a == -1:

31

user, passwd = None, None

31

user, passwd = None, None

32

else:

32

else:

33

userpass, netloc = netloc[:a], netloc[a+1:]

33

userpass, netloc = netloc[:a], netloc[a+1:]

34

c = userpass.find(':')

34

c = userpass.find(':')

35

if c == -1:

35

if c == -1:

36

user, passwd = urllib.unquote(userpass), None

36

user, passwd = urllib.unquote(userpass), None

37

else:

37

else:

38

user = urllib.unquote(userpass[:c])

38

user = urllib.unquote(userpass[:c])

39

passwd = urllib.unquote(userpass[c+1:])

39

passwd = urllib.unquote(userpass[c+1:])

40

c = netloc.find(':')

40

c = netloc.find(':')

41

if c == -1:

41

if c == -1:

42

host, port = netloc, None

42

host, port = netloc, None

43

else:

43

else:

44

host, port = netloc[:c], netloc[c+1:]

44

host, port = netloc[:c], netloc[c+1:]

45

return host, port, user, passwd

45

return host, port, user, passwd

46

47

def netlocunsplit(host, port, user=None, passwd=None):

47

def netlocunsplit(host, port, user=None, passwd=None):

48

'''turn host, port, user, passwd into [user[:passwd]@]host[:port].'''

48

'''turn host, port, user, passwd into [user[:passwd]@]host[:port].'''

49

if port:

49

if port:

50

hostport = host + ':' + port

50

hostport = host + ':' + port

51

else:

51

else:

52

hostport = host

52

hostport = host

53

if user:

53

if user:

54

if passwd:

54

if passwd:

55

userpass = urllib.quote(user) + ':' + urllib.quote(passwd)

55

userpass = urllib.quote(user) + ':' + urllib.quote(passwd)

56

else:

56

else:

57

userpass = urllib.quote(user)

57

userpass = urllib.quote(user)

58

return userpass + '@' + hostport

58

return userpass + '@' + hostport

59

return hostport

59

return hostport

60

61

_safe = ('abcdefghijklmnopqrstuvwxyz'

61

_safe = ('abcdefghijklmnopqrstuvwxyz'

62

'ABCDEFGHIJKLMNOPQRSTUVWXYZ'

62

'ABCDEFGHIJKLMNOPQRSTUVWXYZ'

63

'0123456789' '_.-/')

63

'0123456789' '_.-/')

64

_safeset = None

64

_safeset = None

65

_hex = None

65

_hex = None

66

def quotepath(path):

66

def quotepath(path):

67

'''quote the path part of a URL

67

'''quote the path part of a URL

68

69

This is similar to urllib.quote, but it also tries to avoid

69

This is similar to urllib.quote, but it also tries to avoid

70

quoting things twice (inspired by wget):

70

quoting things twice (inspired by wget):

71

72

>>> quotepath('abc def')

72

>>> quotepath('abc def')

73

'abc%20def'

73

'abc%20def'

74

>>> quotepath('abc%20def')

74

>>> quotepath('abc%20def')

75

'abc%20def'

75

'abc%20def'

76

>>> quotepath('abc%20 def')

76

>>> quotepath('abc%20 def')

77

'abc%20%20def'

77

'abc%20%20def'

78

>>> quotepath('abc def%20')

78

>>> quotepath('abc def%20')

79

'abc%20def%20'

79

'abc%20def%20'

80

>>> quotepath('abc def%2')

80

>>> quotepath('abc def%2')

81

'abc%20def%252'

81

'abc%20def%252'

82

>>> quotepath('abc def%')

82

>>> quotepath('abc def%')

83

'abc%20def%25'

83

'abc%20def%25'

84

'''

84

'''

85

global _safeset, _hex

85

global _safeset, _hex

86

if _safeset is None:

86

if _safeset is None:

87

_safeset = set(_safe)

87

_safeset = set(_safe)

88

_hex = set('abcdefABCDEF0123456789')

88

_hex = set('abcdefABCDEF0123456789')

89

l = list(path)

89

l = list(path)

90

for i in xrange(len(l)):

90

for i in xrange(len(l)):

91

c = l[i]

91

c = l[i]

92

if c == '%' and i + 2 < len(l) and (l[i+1] in _hex and l[i+2] in _hex):

92

if c == '%' and i + 2 < len(l) and (l[i+1] in _hex and l[i+2] in _hex):

93

pass

93

pass

94

elif c not in _safeset:

94

elif c not in _safeset:

95

l[i] = '%%%02X' % ord(c)

95

l[i] = '%%%02X' % ord(c)

96

return ''.join(l)

96

return ''.join(l)

97

98

class passwordmgr(urllib2.HTTPPasswordMgrWithDefaultRealm):

98

class passwordmgr(urllib2.HTTPPasswordMgrWithDefaultRealm):

99

def __init__(self, ui):

99

def __init__(self, ui):

100

urllib2.HTTPPasswordMgrWithDefaultRealm.__init__(self)

100

urllib2.HTTPPasswordMgrWithDefaultRealm.__init__(self)

101

self.ui = ui

101

self.ui = ui

102

103

def find_user_password(self, realm, authuri):

103

def find_user_password(self, realm, authuri):

104

authinfo = urllib2.HTTPPasswordMgrWithDefaultRealm.find_user_password(

104

authinfo = urllib2.HTTPPasswordMgrWithDefaultRealm.find_user_password(

105

self, realm, authuri)

105

self, realm, authuri)

106

user, passwd = authinfo

106

user, passwd = authinfo

107

if user and passwd:

107

if user and passwd:

108

self._writedebug(user, passwd)

108

self._writedebug(user, passwd)

109

return (user, passwd)

109

return (user, passwd)

110

111

if not user:

111

if not user:

112

user, passwd = self._readauthtoken(authuri)

112

user, passwd = self._readauthtoken(authuri)

113

if not user or not passwd:

113

if not user or not passwd:

114

if not self.ui.interactive():

114

if not self.ui.interactive():

115

raise util.Abort(_('http authorization required'))

115

raise util.Abort(_('http authorization required'))

116

117

self.ui.write(_("http authorization required\n"))

117

self.ui.write(_("http authorization required\n"))

118

self.ui.status(_("realm: %s\n") % realm)

118

self.ui.status(_("realm: %s\n") % realm)

119

if user:

119

if user:

120

self.ui.status(_("user: %s\n") % user)

120

self.ui.status(_("user: %s\n") % user)

121

else:

121

else:

122

user = self.ui.prompt(_("user:"), default=None)

122

user = self.ui.prompt(_("user:"), default=None)

123

124

if not passwd:

124

if not passwd:

125

passwd = self.ui.getpass()

125

passwd = self.ui.getpass()

126

127

self.add_password(realm, authuri, user, passwd)

127

self.add_password(realm, authuri, user, passwd)

128

self._writedebug(user, passwd)

128

self._writedebug(user, passwd)

129

return (user, passwd)

129

return (user, passwd)

130

131

def _writedebug(self, user, passwd):

131

def _writedebug(self, user, passwd):

132

msg = _('http auth: user %s, password %s\n')

132

msg = _('http auth: user %s, password %s\n')

133

self.ui.debug(msg % (user, passwd and '*' * len(passwd) or 'not set'))

133

self.ui.debug(msg % (user, passwd and '*' * len(passwd) or 'not set'))

134

135

def _readauthtoken(self, uri):

135

def _readauthtoken(self, uri):

136

# Read configuration

136

# Read configuration

137

config = dict()

137

config = dict()

138

for key, val in self.ui.configitems('auth'):

138

for key, val in self.ui.configitems('auth'):

139

group, setting = key.split('.', 1)

139

group, setting = key.split('.', 1)

140

gdict = config.setdefault(group, dict())

140

gdict = config.setdefault(group, dict())

141

gdict[setting] = val

141

gdict[setting] = val

142

143

# Find the best match

143

# Find the best match

144

scheme, hostpath = uri.split('://', 1)

144

scheme, hostpath = uri.split('://', 1)

145

bestlen = 0

145

bestlen = 0

146

bestauth = None, None

146

bestauth = None, None

147

for auth in config.itervalues():

147

for auth in config.itervalues():

148

prefix = auth.get('prefix')

148

prefix = auth.get('prefix')

149

if not prefix: continue

149

if not prefix: continue

150

p = prefix.split('://', 1)

150

p = prefix.split('://', 1)

151

if len(p) > 1:

151

if len(p) > 1:

152

schemes, prefix = [p[0]], p[1]

152

schemes, prefix = [p[0]], p[1]

153

else:

153

else:

154

schemes = (auth.get('schemes') or 'https').split()

154

schemes = (auth.get('schemes') or 'https').split()

155

if (prefix == '*' or hostpath.startswith(prefix)) and \

155

if (prefix == '*' or hostpath.startswith(prefix)) and \

156

len(prefix) > bestlen and scheme in schemes:

156

len(prefix) > bestlen and scheme in schemes:

157

bestlen = len(prefix)

157

bestlen = len(prefix)

158

bestauth = auth.get('username'), auth.get('password')

158

bestauth = auth.get('username'), auth.get('password')

159

return bestauth

159

return bestauth

160

161

class proxyhandler(urllib2.ProxyHandler):

161

class proxyhandler(urllib2.ProxyHandler):

162

def __init__(self, ui):

162

def __init__(self, ui):

163

proxyurl = ui.config("http_proxy", "host") or os.getenv('http_proxy')

163

proxyurl = ui.config("http_proxy", "host") or os.getenv('http_proxy')

164

# XXX proxyauthinfo = None

164

# XXX proxyauthinfo = None

165

166

if proxyurl:

166

if proxyurl:

167

# proxy can be proper url or host[:port]

167

# proxy can be proper url or host[:port]

168

if not (proxyurl.startswith('http:') or

168

if not (proxyurl.startswith('http:') or

169

proxyurl.startswith('https:')):

169

proxyurl.startswith('https:')):

170

proxyurl = 'http://' + proxyurl + '/'

170

proxyurl = 'http://' + proxyurl + '/'

171

snpqf = urlparse.urlsplit(proxyurl)

171

snpqf = urlparse.urlsplit(proxyurl)

172

proxyscheme, proxynetloc, proxypath, proxyquery, proxyfrag = snpqf

172

proxyscheme, proxynetloc, proxypath, proxyquery, proxyfrag = snpqf

173

hpup = netlocsplit(proxynetloc)

173

hpup = netlocsplit(proxynetloc)

174

175

proxyhost, proxyport, proxyuser, proxypasswd = hpup

175

proxyhost, proxyport, proxyuser, proxypasswd = hpup

176

if not proxyuser:

176

if not proxyuser:

177

proxyuser = ui.config("http_proxy", "user")

177

proxyuser = ui.config("http_proxy", "user")

178

proxypasswd = ui.config("http_proxy", "passwd")

178

proxypasswd = ui.config("http_proxy", "passwd")

179

180

# see if we should use a proxy for this url

180

# see if we should use a proxy for this url

181

no_list = [ "localhost", "127.0.0.1" ]

181

no_list = [ "localhost", "127.0.0.1" ]

182

no_list.extend([p.lower() for

182

no_list.extend([p.lower() for

183

p in ui.configlist("http_proxy", "no")])

183

p in ui.configlist("http_proxy", "no")])

184

no_list.extend([p.strip().lower() for

184

no_list.extend([p.strip().lower() for

185

p in os.getenv("no_proxy", '').split(',')

185

p in os.getenv("no_proxy", '').split(',')

186

if p.strip()])

186

if p.strip()])

187

# "http_proxy.always" config is for running tests on localhost

187

# "http_proxy.always" config is for running tests on localhost

188

if ui.configbool("http_proxy", "always"):

188

if ui.configbool("http_proxy", "always"):

189

self.no_list = []

189

self.no_list = []

190

else:

190

else:

191

self.no_list = no_list

191

self.no_list = no_list

192

193

proxyurl = urlparse.urlunsplit((

193

proxyurl = urlparse.urlunsplit((

194

proxyscheme, netlocunsplit(proxyhost, proxyport,

194

proxyscheme, netlocunsplit(proxyhost, proxyport,

195

proxyuser, proxypasswd or ''),

195

proxyuser, proxypasswd or ''),

196

proxypath, proxyquery, proxyfrag))

196

proxypath, proxyquery, proxyfrag))

197

proxies = {'http': proxyurl, 'https': proxyurl}

197

proxies = {'http': proxyurl, 'https': proxyurl}

198

ui.debug(_('proxying through http://%s:%s\n') %

198

ui.debug(_('proxying through http://%s:%s\n') %

199

(proxyhost, proxyport))

199

(proxyhost, proxyport))

200

else:

200

else:

201

proxies = {}

201

proxies = {}

202

203

# urllib2 takes proxy values from the environment and those

203

# urllib2 takes proxy values from the environment and those

204

# will take precedence if found, so drop them

204

# will take precedence if found, so drop them

205

for env in ["HTTP_PROXY", "http_proxy", "no_proxy"]:

205

for env in ["HTTP_PROXY", "http_proxy", "no_proxy"]:

206

try:

206

try:

207

if env in os.environ:

207

if env in os.environ:

208

del os.environ[env]

208

del os.environ[env]

209

except OSError:

209

except OSError:

210

pass

210

pass

211

212

urllib2.ProxyHandler.__init__(self, proxies)

212

urllib2.ProxyHandler.__init__(self, proxies)

213

self.ui = ui

213

self.ui = ui

214

215

def proxy_open(self, req, proxy, type_):

215

def proxy_open(self, req, proxy, type_):

216

host = req.get_host().split(':')[0]

216

host = req.get_host().split(':')[0]

217

if host in self.no_list:

217

if host in self.no_list:

218

return None

218

return None

219

220

# work around a bug in Python < 2.4.2

220

# work around a bug in Python < 2.4.2

221

# (it leaves a "\n" at the end of Proxy-authorization headers)

221

# (it leaves a "\n" at the end of Proxy-authorization headers)

222

baseclass = req.__class__

222

baseclass = req.__class__

223

class _request(baseclass):

223

class _request(baseclass):

224

def add_header(self, key, val):

224

def add_header(self, key, val):

225

if key.lower() == 'proxy-authorization':

225

if key.lower() == 'proxy-authorization':

226

val = val.strip()

226

val = val.strip()

227

return baseclass.add_header(self, key, val)

227

return baseclass.add_header(self, key, val)

228

req.__class__ = _request

228

req.__class__ = _request

229

230

return urllib2.ProxyHandler.proxy_open(self, req, proxy, type_)

230

return urllib2.ProxyHandler.proxy_open(self, req, proxy, type_)

231

232

class httpsendfile(file):

232

class httpsendfile(file):

233

def __len__(self):

233

def __len__(self):

234

return os.fstat(self.fileno()).st_size

234

return os.fstat(self.fileno()).st_size

235

236

def _gen_sendfile(connection):

236

def _gen_sendfile(connection):

237

def _sendfile(self, data):

237

def _sendfile(self, data):

238

# send a file

238

# send a file

239

if isinstance(data, httpsendfile):

239

if isinstance(data, httpsendfile):

240

# if auth required, some data sent twice, so rewind here

240

# if auth required, some data sent twice, so rewind here

241

data.seek(0)

241

data.seek(0)

242

for chunk in util.filechunkiter(data):

242

for chunk in util.filechunkiter(data):

243

connection.send(self, chunk)

243

connection.send(self, chunk)

244

else:

244

else:

245

connection.send(self, data)

245

connection.send(self, data)

246

return _sendfile

246

return _sendfile

247

248

has_https = hasattr(urllib2, 'HTTPSHandler')

249

if has_https:

250

try:

251

# avoid using deprecated/broken FakeSocket in python 2.6

252

import ssl

253

_ssl_wrap_socket = ssl.wrap_socket

254

except ImportError:

255

def _ssl_wrap_socket(sock, key_file, cert_file):

256

ssl = socket.ssl(sock, key_file, cert_file)

257

return httplib.FakeSocket(sock, ssl)

258

248

class httpconnection(keepalive.HTTPConnection):

259

class httpconnection(keepalive.HTTPConnection):

249

# must be able to send big bundle as stream.

260

# must be able to send big bundle as stream.

250

send = _gen_sendfile(keepalive.HTTPConnection)

261

send = _gen_sendfile(keepalive.HTTPConnection)

251

262

263

def _proxytunnel(self):

264

proxyheaders = dict(

265

[(x, self.headers[x]) for x in self.headers

266

if x.lower().startswith('proxy-')])

267

self._set_hostport(self.host, self.port)

268

self.send('CONNECT %s:%d HTTP/1.0\r\n' % (self.realhost, self.realport))

269

for header in proxyheaders.iteritems():

270

self.send('%s: %s\r\n' % header)

271

self.send('\r\n')

272

273

# majority of the following code is duplicated from

274

# httplib.HTTPConnection as there are no adequate places to

275

# override functions to provide the needed functionality

276

res = self.response_class(self.sock,

277

strict=self.strict,

278

method=self._method)

279

280

while True:

281

version, status, reason = res._read_status()

282

if status != httplib.CONTINUE:

283

break

284

while True:

285

skip = res.fp.readline().strip()

286

if not skip:

287

break

288

res.status = status

289

res.reason = reason.strip()

290

291

if res.status == 200:

292

while True:

293

line = res.fp.readline()

294

if line == '\r\n':

295

break

296

return True

297

298

if version == 'HTTP/1.0':

299

res.version = 10

300

elif version.startswith('HTTP/1.'):

301

res.version = 11

302

elif version == 'HTTP/0.9':

303

res.version = 9

304

else:

305

raise httplib.UnknownProtocol(version)

306

307

if res.version == 9:

308

res.length = None

309

res.chunked = 0

310

res.will_close = 1

311

res.msg = httplib.HTTPMessage(cStringIO.StringIO())

312

return False

313

314

res.msg = httplib.HTTPMessage(res.fp)

315

res.msg.fp = None

316

317

# are we using the chunked-style of transfer encoding?

318

trenc = res.msg.getheader('transfer-encoding')

319

if trenc and trenc.lower() == "chunked":

320

res.chunked = 1

321

res.chunk_left = None

322

else:

323

res.chunked = 0

324

325

# will the connection close at the end of the response?

326

res.will_close = res._check_close()

327

328

# do we have a Content-Length?

329

# NOTE: RFC 2616, S4.4, #3 says we ignore this if tr_enc is "chunked"

330

length = res.msg.getheader('content-length')

331

if length and not res.chunked:

332

try:

333

res.length = int(length)

334

except ValueError:

335

res.length = None

336

else:

337

if res.length < 0: # ignore nonsensical negative lengths

338

res.length = None

339

else:

340

res.length = None

341

342

# does the body have a fixed length? (of zero)

343

if (status == httplib.NO_CONTENT or status == httplib.NOT_MODIFIED or

344

100 <= status < 200 or # 1xx codes

345

res._method == 'HEAD'):

346

res.length = 0

347

348

# if the connection remains open, and we aren't using chunked, and

349

# a content-length was not provided, then assume that the connection

350

# WILL close.

351

if (not res.will_close and

352

not res.chunked and

353

res.length is None):

354

res.will_close = 1

355

356

self.proxyres = res

357

358

return False

359

360

def connect(self):

361

if has_https and self.realhost: # use CONNECT proxy

362

self.sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)

363

self.sock.connect((self.host, self.port))

364

if self._proxytunnel():

365

# we do not support client x509 certificates

366

self.sock = _ssl_wrap_socket(self.sock, None, None)

367

else:

368

keepalive.HTTPConnection.connect(self)

369

370

def getresponse(self):

371

proxyres = getattr(self, 'proxyres', None)

372

if proxyres:

373

if proxyres.will_close:

374

self.close()

375

self.proxyres = None

376

return proxyres

377

return keepalive.HTTPConnection.getresponse(self)

378

252

class httphandler(keepalive.HTTPHandler):

379

class httphandler(keepalive.HTTPHandler):

253

def http_open(self, req):

380

def http_open(self, req):

254

return self.do_open(httpconnection, req)

381

return self.do_open(httpconnection, req)

255

382

383

def _start_transaction(self, h, req):

384

if req.get_selector() == req.get_full_url(): # has proxy

385

urlparts = urlparse.urlparse(req.get_selector())

386

if urlparts[0] == 'https': # only use CONNECT for HTTPS

387

if ':' in urlparts[1]:

388

realhost, realport = urlparts[1].split(':')

389

else:

390

realhost = urlparts[1]

391

realport = 443

392

393

h.realhost = realhost

394

h.realport = realport

395

h.headers = req.headers.copy()

396

h.headers.update(self.parent.addheaders)

397

return keepalive.HTTPHandler._start_transaction(self, h, req)

398

399

h.realhost = None

400

h.realport = None

401

h.headers = None

402

return keepalive.HTTPHandler._start_transaction(self, h, req)

403

256

def __del__(self):

404

def __del__(self):

257

self.close_all()

405

self.close_all()

258

406

259

has_https = hasattr(urllib2, 'HTTPSHandler')

260

if has_https:

407

if has_https:

261

class httpsconnection(httplib.HTTPSConnection):

408

class httpsconnection(httplib.HTTPSConnection):

262

response_class = keepalive.HTTPResponse

409

response_class = keepalive.HTTPResponse

263

# must be able to send big bundle as stream.

410

# must be able to send big bundle as stream.

264

send = _gen_sendfile(httplib.HTTPSConnection)

411

send = _gen_sendfile(httplib.HTTPSConnection)

265

412

266

class httpshandler(keepalive.KeepAliveHandler, urllib2.HTTPSHandler):

413

class httpshandler(keepalive.KeepAliveHandler, urllib2.HTTPSHandler):

267

def https_open(self, req):

414

def https_open(self, req):

268

return self.do_open(httpsconnection, req)

415

return self.do_open(httpsconnection, req)

269

416

270

# In python < 2.5 AbstractDigestAuthHandler raises a ValueError if

417

# In python < 2.5 AbstractDigestAuthHandler raises a ValueError if

271

# it doesn't know about the auth type requested. This can happen if

418

# it doesn't know about the auth type requested. This can happen if

272

# somebody is using BasicAuth and types a bad password.

419

# somebody is using BasicAuth and types a bad password.

273

class httpdigestauthhandler(urllib2.HTTPDigestAuthHandler):

420

class httpdigestauthhandler(urllib2.HTTPDigestAuthHandler):

274

def http_error_auth_reqed(self, auth_header, host, req, headers):

421

def http_error_auth_reqed(self, auth_header, host, req, headers):

275

try:

422

try:

276

return urllib2.HTTPDigestAuthHandler.http_error_auth_reqed(

423

return urllib2.HTTPDigestAuthHandler.http_error_auth_reqed(

277

self, auth_header, host, req, headers)

424

self, auth_header, host, req, headers)

278

except ValueError, inst:

425

except ValueError, inst:

279

arg = inst.args[0]

426

arg = inst.args[0]

280

if arg.startswith("AbstractDigestAuthHandler doesn't know "):

427

if arg.startswith("AbstractDigestAuthHandler doesn't know "):

281

return

428

return

282

raise

429

raise

283

430

284

def getauthinfo(path):

431

def getauthinfo(path):

285

scheme, netloc, urlpath, query, frag = urlparse.urlsplit(path)

432

scheme, netloc, urlpath, query, frag = urlparse.urlsplit(path)

286

if not urlpath:

433

if not urlpath:

287

urlpath = '/'

434

urlpath = '/'

288

if scheme != 'file':

435

if scheme != 'file':

289

# XXX: why are we quoting the path again with some smart

436

# XXX: why are we quoting the path again with some smart

290

# heuristic here? Anyway, it cannot be done with file://

437

# heuristic here? Anyway, it cannot be done with file://

291

# urls since path encoding is os/fs dependent (see

438

# urls since path encoding is os/fs dependent (see

292

# urllib.pathname2url() for details).

439

# urllib.pathname2url() for details).

293

urlpath = quotepath(urlpath)

440

urlpath = quotepath(urlpath)

294

host, port, user, passwd = netlocsplit(netloc)

441

host, port, user, passwd = netlocsplit(netloc)

295

442

296

# urllib cannot handle URLs with embedded user or passwd

443

# urllib cannot handle URLs with embedded user or passwd

297

url = urlparse.urlunsplit((scheme, netlocunsplit(host, port),

444

url = urlparse.urlunsplit((scheme, netlocunsplit(host, port),

298

urlpath, query, frag))

445

urlpath, query, frag))

299

if user:

446

if user:

300

netloc = host

447

netloc = host

301

if port:

448

if port:

302

netloc += ':' + port

449

netloc += ':' + port

303

# Python < 2.4.3 uses only the netloc to search for a password

450

# Python < 2.4.3 uses only the netloc to search for a password

304

authinfo = (None, (url, netloc), user, passwd or '')

451

authinfo = (None, (url, netloc), user, passwd or '')

305

else:

452

else:

306

authinfo = None

453

authinfo = None

307

return url, authinfo

454

return url, authinfo

308

455

309

def opener(ui, authinfo=None):

456

def opener(ui, authinfo=None):

310

'''

457

'''

311

construct an opener suitable for urllib2

458

construct an opener suitable for urllib2

312

authinfo will be added to the password manager

459

authinfo will be added to the password manager

313

'''

460

'''

314

handlers = [httphandler()]

461

handlers = [httphandler()]

315

if has_https:

462

if has_https:

316

handlers.append(httpshandler())

463

handlers.append(httpshandler())

317

464

318

handlers.append(proxyhandler(ui))

465

handlers.append(proxyhandler(ui))

319

466

320

passmgr = passwordmgr(ui)

467

passmgr = passwordmgr(ui)

321

if authinfo is not None:

468

if authinfo is not None:

322

passmgr.add_password(*authinfo)

469

passmgr.add_password(*authinfo)

323

user, passwd = authinfo[2:4]

470

user, passwd = authinfo[2:4]

324

ui.debug(_('http auth: user %s, password %s\n') %

471

ui.debug(_('http auth: user %s, password %s\n') %

325

(user, passwd and '*' * len(passwd) or 'not set'))

472

(user, passwd and '*' * len(passwd) or 'not set'))

326

473

327

handlers.extend((urllib2.HTTPBasicAuthHandler(passmgr),

474

handlers.extend((urllib2.HTTPBasicAuthHandler(passmgr),

328

httpdigestauthhandler(passmgr)))

475

httpdigestauthhandler(passmgr)))

329

opener = urllib2.build_opener(*handlers)

476

opener = urllib2.build_opener(*handlers)

330

477

331

# 1.0 here is the _protocol_ version

478

# 1.0 here is the _protocol_ version

332

opener.addheaders = [('User-agent', 'mercurial/proto-1.0')]

479

opener.addheaders = [('User-agent', 'mercurial/proto-1.0')]

333

opener.addheaders.append(('Accept', 'application/mercurial-0.1'))

480

opener.addheaders.append(('Accept', 'application/mercurial-0.1'))

334

return opener

481

return opener

335

482

336

scheme_re = re.compile(r'^([a-zA-Z0-9+-.]+)://')

483

scheme_re = re.compile(r'^([a-zA-Z0-9+-.]+)://')

337

484

338

def open(ui, url, data=None):

485

def open(ui, url, data=None):

339

scheme = None

486

scheme = None

340

m = scheme_re.search(url)

487

m = scheme_re.search(url)

341

if m:

488

if m:

342

scheme = m.group(1).lower()

489

scheme = m.group(1).lower()

343

if not scheme:

490

if not scheme:

344

path = util.normpath(os.path.abspath(url))

491

path = util.normpath(os.path.abspath(url))

345

url = 'file://' + urllib.pathname2url(path)

492

url = 'file://' + urllib.pathname2url(path)

346

authinfo = None

493

authinfo = None

347

else:

494

else:

348

url, authinfo = getauthinfo(url)

495

url, authinfo = getauthinfo(url)

349

return opener(ui, authinfo).open(url, data)

496

return opener(ui, authinfo).open(url, data)

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

             # url.py - HTTP handling for mercurial
             #
             # Copyright 2005, 2006, 2007, 2008 Matt Mackall <mpm@selenic.com>
             # Copyright 2006, 2007 Alexis S. L. Carvalho <alexis@cecm.usp.br>
             # Copyright 2006 Vadim Gelfer <vadim.gelfer@gmail.com>
             #
             # This software may be used and distributed according to the terms of the
             # GNU General Public License version 2, incorporated herein by reference.
-            import urllib, urllib2, urlparse, httplib, os, re
+            import urllib, urllib2, urlparse, httplib, os, re, socket, cStringIO
             from i18n import _
             import keepalive, util
             def hidepassword(url):
                 '''hide user credential in a url string'''
                 scheme, netloc, path, params, query, fragment = urlparse.urlparse(url)
                 netloc = re.sub('([^:]*):([^@]*)@(.*)', r'\1:***@\3', netloc)
                 return urlparse.urlunparse((scheme, netloc, path, params, query, fragment))
             def removeauth(url):
                 '''remove all authentication information from a url string'''
                 scheme, netloc, path, params, query, fragment = urlparse.urlparse(url)
                 netloc = netloc[netloc.find('@')+1:]
                 return urlparse.urlunparse((scheme, netloc, path, params, query, fragment))
             def netlocsplit(netloc):
                 '''split [user[:passwd]@]host[:port] into 4-tuple.'''
                 a = netloc.find('@')
                 if a == -1:
                     user, passwd = None, None
                 else:
                     userpass, netloc = netloc[:a], netloc[a+1:]
                     c = userpass.find(':')
                     if c == -1:
                         user, passwd = urllib.unquote(userpass), None
                     else:
                         user = urllib.unquote(userpass[:c])
                         passwd = urllib.unquote(userpass[c+1:])
                 c = netloc.find(':')
                 if c == -1:
                     host, port = netloc, None
                 else:
                     host, port = netloc[:c], netloc[c+1:]
                 return host, port, user, passwd
             def netlocunsplit(host, port, user=None, passwd=None):
                 '''turn host, port, user, passwd into [user[:passwd]@]host[:port].'''
                 if port:
                     hostport = host + ':' + port
                 else:
                     hostport = host
                 if user:
                     if passwd:
                         userpass = urllib.quote(user) + ':' + urllib.quote(passwd)
                     else:
                         userpass = urllib.quote(user)
                     return userpass + '@' + hostport
                 return hostport
             _safe = ('abcdefghijklmnopqrstuvwxyz'
                      'ABCDEFGHIJKLMNOPQRSTUVWXYZ'
                      '0123456789' '_.-/')
             _safeset = None
             _hex = None
             def quotepath(path):
                 '''quote the path part of a URL
                 This is similar to urllib.quote, but it also tries to avoid
                 quoting things twice (inspired by wget):
                 >>> quotepath('abc def')
                 'abc%20def'
                 >>> quotepath('abc%20def')
                 'abc%20def'
                 >>> quotepath('abc%20 def')
                 'abc%20%20def'
                 >>> quotepath('abc def%20')
                 'abc%20def%20'
                 >>> quotepath('abc def%2')
                 'abc%20def%252'
                 >>> quotepath('abc def%')
                 'abc%20def%25'
                 '''
                 global _safeset, _hex
                 if _safeset is None:
                     _safeset = set(_safe)
                     _hex = set('abcdefABCDEF0123456789')
                 l = list(path)
                 for i in xrange(len(l)):
                     c = l[i]
                     if c == '%' and i + 2 < len(l) and (l[i+1] in _hex and l[i+2] in _hex):
                         pass
                     elif c not in _safeset:
                         l[i] = '%%%02X' % ord(c)
                 return ''.join(l)
             class passwordmgr(urllib2.HTTPPasswordMgrWithDefaultRealm):
                 def __init__(self, ui):
                     urllib2.HTTPPasswordMgrWithDefaultRealm.__init__(self)
                     self.ui = ui
                 def find_user_password(self, realm, authuri):
                     authinfo = urllib2.HTTPPasswordMgrWithDefaultRealm.find_user_password(
                         self, realm, authuri)
                     user, passwd = authinfo
                     if user and passwd:
                         self._writedebug(user, passwd)
                         return (user, passwd)
                     if not user:
                         user, passwd = self._readauthtoken(authuri)
                     if not user or not passwd:
                         if not self.ui.interactive():
                             raise util.Abort(_('http authorization required'))
                         self.ui.write(_("http authorization required\n"))
                         self.ui.status(_("realm: %s\n") % realm)
                         if user:
                             self.ui.status(_("user: %s\n") % user)
                         else:
                             user = self.ui.prompt(_("user:"), default=None)
                         if not passwd:
                             passwd = self.ui.getpass()
                     self.add_password(realm, authuri, user, passwd)
                     self._writedebug(user, passwd)
                     return (user, passwd)
                 def _writedebug(self, user, passwd):
                     msg = _('http auth: user %s, password %s\n')
                     self.ui.debug(msg % (user, passwd and '*' * len(passwd) or 'not set'))
                 def _readauthtoken(self, uri):
                     # Read configuration
                     config = dict()
                     for key, val in self.ui.configitems('auth'):
                         group, setting = key.split('.', 1)
                         gdict = config.setdefault(group, dict())
                         gdict[setting] = val
                     # Find the best match
                     scheme, hostpath = uri.split('://', 1)
                     bestlen = 0
                     bestauth = None, None
                     for auth in config.itervalues():
                         prefix = auth.get('prefix')
                         if not prefix: continue
                         p = prefix.split('://', 1)
                         if len(p) > 1:
                             schemes, prefix = [p[0]], p[1]
                         else:
                             schemes = (auth.get('schemes') or 'https').split()
                         if (prefix == '*' or hostpath.startswith(prefix)) and \
                             len(prefix) > bestlen and scheme in schemes:
                             bestlen = len(prefix)
                             bestauth = auth.get('username'), auth.get('password')
                     return bestauth
             class proxyhandler(urllib2.ProxyHandler):
                 def __init__(self, ui):
                     proxyurl = ui.config("http_proxy", "host") or os.getenv('http_proxy')
                     # XXX proxyauthinfo = None
                     if proxyurl:
                         # proxy can be proper url or host[:port]
                         if not (proxyurl.startswith('http:') or
                                 proxyurl.startswith('https:')):
                             proxyurl = 'http://' + proxyurl + '/'
                         snpqf = urlparse.urlsplit(proxyurl)
                         proxyscheme, proxynetloc, proxypath, proxyquery, proxyfrag = snpqf
                         hpup = netlocsplit(proxynetloc)
                         proxyhost, proxyport, proxyuser, proxypasswd = hpup
                         if not proxyuser:
                             proxyuser = ui.config("http_proxy", "user")
                             proxypasswd = ui.config("http_proxy", "passwd")
                         # see if we should use a proxy for this url
                         no_list = [ "localhost", "127.0.0.1" ]
                         no_list.extend([p.lower() for
                                         p in ui.configlist("http_proxy", "no")])
                         no_list.extend([p.strip().lower() for
                                         p in os.getenv("no_proxy", '').split(',')
                                         if p.strip()])
                         # "http_proxy.always" config is for running tests on localhost
                         if ui.configbool("http_proxy", "always"):
                             self.no_list = []
                         else:
                             self.no_list = no_list
                         proxyurl = urlparse.urlunsplit((
                             proxyscheme, netlocunsplit(proxyhost, proxyport,
                                                             proxyuser, proxypasswd or ''),
                             proxypath, proxyquery, proxyfrag))
                         proxies = {'http': proxyurl, 'https': proxyurl}
                         ui.debug(_('proxying through http://%s:%s\n') %
                                   (proxyhost, proxyport))
                     else:
                         proxies = {}
                     # urllib2 takes proxy values from the environment and those
                     # will take precedence if found, so drop them
                     for env in ["HTTP_PROXY", "http_proxy", "no_proxy"]:
                         try:
                             if env in os.environ:
                                 del os.environ[env]
                         except OSError:
                             pass
                     urllib2.ProxyHandler.__init__(self, proxies)
                     self.ui = ui
                 def proxy_open(self, req, proxy, type_):
                     host = req.get_host().split(':')[0]
                     if host in self.no_list:
                         return None
                     # work around a bug in Python < 2.4.2
                     # (it leaves a "\n" at the end of Proxy-authorization headers)
                     baseclass = req.__class__
                     class _request(baseclass):
                         def add_header(self, key, val):
                             if key.lower() == 'proxy-authorization':
                                 val = val.strip()
                             return baseclass.add_header(self, key, val)
                     req.__class__ = _request
                     return urllib2.ProxyHandler.proxy_open(self, req, proxy, type_)
             class httpsendfile(file):
                 def __len__(self):
                     return os.fstat(self.fileno()).st_size
             def _gen_sendfile(connection):
                 def _sendfile(self, data):
                     # send a file
                     if isinstance(data, httpsendfile):
                         # if auth required, some data sent twice, so rewind here
                         data.seek(0)
                         for chunk in util.filechunkiter(data):
                             connection.send(self, chunk)
                     else:
                         connection.send(self, data)
                 return _sendfile
+            has_https = hasattr(urllib2, 'HTTPSHandler')
+            if has_https:
+                try:
+                    # avoid using deprecated/broken FakeSocket in python 2.6
+                    import ssl
+                    _ssl_wrap_socket = ssl.wrap_socket
+                except ImportError:
+                    def _ssl_wrap_socket(sock, key_file, cert_file):
+                        ssl = socket.ssl(sock, key_file, cert_file)
+                        return httplib.FakeSocket(sock, ssl)
             class httpconnection(keepalive.HTTPConnection):
                 # must be able to send big bundle as stream.
                 send = _gen_sendfile(keepalive.HTTPConnection)
+                def _proxytunnel(self):
+                    proxyheaders = dict(
+                            [(x, self.headers[x]) for x in self.headers
+                             if x.lower().startswith('proxy-')])
+                    self._set_hostport(self.host, self.port)
+                    self.send('CONNECT %s:%d HTTP/1.0\r\n' % (self.realhost, self.realport))
+                    for header in proxyheaders.iteritems():
+                        self.send('%s: %s\r\n' % header)
+                    self.send('\r\n')
+                    # majority of the following code is duplicated from
+                    # httplib.HTTPConnection as there are no adequate places to
+                    # override functions to provide the needed functionality
+                    res = self.response_class(self.sock,
+                                              strict=self.strict,
+                                              method=self._method)
+                    while True:
+                        version, status, reason = res._read_status()
+                        if status != httplib.CONTINUE:
+                            break
+                        while True:
+                            skip = res.fp.readline().strip()
+                            if not skip:
+                                break
+                    res.status = status
+                    res.reason = reason.strip()
+                    if res.status == 200:
+                        while True:
+                            line = res.fp.readline()
+                            if line == '\r\n':
+                                break
+                        return True
+                    if version == 'HTTP/1.0':
+                        res.version = 10
+                    elif version.startswith('HTTP/1.'):
+                        res.version = 11
+                    elif version == 'HTTP/0.9':
+                        res.version = 9
+                    else:
+                        raise httplib.UnknownProtocol(version)
+                    if res.version == 9:
+                        res.length = None
+                        res.chunked = 0
+                        res.will_close = 1
+                        res.msg = httplib.HTTPMessage(cStringIO.StringIO())
+                        return False
+                    res.msg = httplib.HTTPMessage(res.fp)
+                    res.msg.fp = None
+                    # are we using the chunked-style of transfer encoding?
+                    trenc = res.msg.getheader('transfer-encoding')
+                    if trenc and trenc.lower() == "chunked":
+                        res.chunked = 1
+                        res.chunk_left = None
+                    else:
+                        res.chunked = 0
+                    # will the connection close at the end of the response?
+                    res.will_close = res._check_close()
+                    # do we have a Content-Length?
+                    # NOTE: RFC 2616, S4.4, #3 says we ignore this if tr_enc is "chunked"
+                    length = res.msg.getheader('content-length')
+                    if length and not res.chunked:
+                        try:
+                            res.length = int(length)
+                        except ValueError:
+                            res.length = None
+                        else:
+                            if res.length < 0:  # ignore nonsensical negative lengths
+                                res.length = None
+                    else:
+                        res.length = None
+                    # does the body have a fixed length? (of zero)
+                    if (status == httplib.NO_CONTENT or status == httplib.NOT_MODIFIED or
+<= status < 200 or # 1xx codes
+                        res._method == 'HEAD'):
+                        res.length = 0
+                    # if the connection remains open, and we aren't using chunked, and
+                    # a content-length was not provided, then assume that the connection
+                    # WILL close.
+                    if (not res.will_close and
+                       not res.chunked and
+                       res.length is None):
+                        res.will_close = 1
+                    self.proxyres = res
+                    return False
+                def connect(self):
+                    if has_https and self.realhost: # use CONNECT proxy
+                        self.sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+                        self.sock.connect((self.host, self.port))
+                        if self._proxytunnel():
+                            # we do not support client x509 certificates
+                            self.sock = _ssl_wrap_socket(self.sock, None, None)
+                    else:
+                        keepalive.HTTPConnection.connect(self)
+                def getresponse(self):
+                    proxyres = getattr(self, 'proxyres', None)
+                    if proxyres:
+                        if proxyres.will_close:
+                            self.close()
+                        self.proxyres = None
+                        return proxyres
+                    return keepalive.HTTPConnection.getresponse(self)
             class httphandler(keepalive.HTTPHandler):
                 def http_open(self, req):
                     return self.do_open(httpconnection, req)
+                def _start_transaction(self, h, req):
+                    if req.get_selector() == req.get_full_url(): # has proxy
+                        urlparts = urlparse.urlparse(req.get_selector())
+                        if urlparts[0] == 'https': # only use CONNECT for HTTPS
+                            if ':' in urlparts[1]:
+                                realhost, realport = urlparts[1].split(':')
+                            else:
+                                realhost = urlparts[1]
+                                realport = 443
+                            h.realhost = realhost
+                            h.realport = realport
+                            h.headers = req.headers.copy()
+                            h.headers.update(self.parent.addheaders)
+                            return keepalive.HTTPHandler._start_transaction(self, h, req)
+                    h.realhost = None
+                    h.realport = None
+                    h.headers = None
+                    return keepalive.HTTPHandler._start_transaction(self, h, req)
                 def __del__(self):
                     self.close_all()
-            has_https = hasattr(urllib2, 'HTTPSHandler')
             if has_https:
                 class httpsconnection(httplib.HTTPSConnection):
                     response_class = keepalive.HTTPResponse
                     # must be able to send big bundle as stream.
                     send = _gen_sendfile(httplib.HTTPSConnection)
                 class httpshandler(keepalive.KeepAliveHandler, urllib2.HTTPSHandler):
                     def https_open(self, req):
                         return self.do_open(httpsconnection, req)
             # In python < 2.5 AbstractDigestAuthHandler raises a ValueError if
             # it doesn't know about the auth type requested.  This can happen if
             # somebody is using BasicAuth and types a bad password.
             class httpdigestauthhandler(urllib2.HTTPDigestAuthHandler):
                 def http_error_auth_reqed(self, auth_header, host, req, headers):
                     try:
                         return urllib2.HTTPDigestAuthHandler.http_error_auth_reqed(
                                     self, auth_header, host, req, headers)
                     except ValueError, inst:
                         arg = inst.args[0]
                         if arg.startswith("AbstractDigestAuthHandler doesn't know "):
                             return
                         raise
             def getauthinfo(path):
                 scheme, netloc, urlpath, query, frag = urlparse.urlsplit(path)
                 if not urlpath:
                     urlpath = '/'
                 if scheme != 'file':
                     # XXX: why are we quoting the path again with some smart
                     # heuristic here? Anyway, it cannot be done with file://
                     # urls since path encoding is os/fs dependent (see
                     # urllib.pathname2url() for details).
                     urlpath = quotepath(urlpath)
                 host, port, user, passwd = netlocsplit(netloc)
                 # urllib cannot handle URLs with embedded user or passwd
                 url = urlparse.urlunsplit((scheme, netlocunsplit(host, port),
                                           urlpath, query, frag))
                 if user:
                     netloc = host
                     if port:
                         netloc += ':' + port
                     # Python < 2.4.3 uses only the netloc to search for a password
                     authinfo = (None, (url, netloc), user, passwd or '')
                 else:
                     authinfo = None
                 return url, authinfo
             def opener(ui, authinfo=None):
                 '''
                 construct an opener suitable for urllib2
                 authinfo will be added to the password manager
                 '''
                 handlers = [httphandler()]
                 if has_https:
                     handlers.append(httpshandler())
                 handlers.append(proxyhandler(ui))
                 passmgr = passwordmgr(ui)
                 if authinfo is not None:
                     passmgr.add_password(*authinfo)
                     user, passwd = authinfo[2:4]
                     ui.debug(_('http auth: user %s, password %s\n') %
                              (user, passwd and '*' * len(passwd) or 'not set'))
                 handlers.extend((urllib2.HTTPBasicAuthHandler(passmgr),
                                  httpdigestauthhandler(passmgr)))
                 opener = urllib2.build_opener(*handlers)
                 # 1.0 here is the _protocol_ version
                 opener.addheaders = [('User-agent', 'mercurial/proto-1.0')]
                 opener.addheaders.append(('Accept', 'application/mercurial-0.1'))
                 return opener
             scheme_re = re.compile(r'^([a-zA-Z0-9+-.]+)://')
             def open(ui, url, data=None):
                 scheme = None
                 m = scheme_re.search(url)
                 if m:
                     scheme = m.group(1).lower()
                 if not scheme:
                     path = util.normpath(os.path.abspath(url))
                     url = 'file://' + urllib.pathname2url(path)
                     authinfo = None
                 else:
                     url, authinfo = getauthinfo(url)
                 return opener(ui, authinfo).open(url, data)