Source code for websockets.headers

"""
The :mod:`websockets.headers` module provides parsers and serializers for HTTP
headers used in WebSocket handshake messages.

Its functions cannot be imported from :mod:`websockets`. They must be imported
from :mod:`websockets.headers`.

"""

import base64
import re

from .exceptions import InvalidHeaderFormat


__all__ = [
    'parse_connection', 'parse_upgrade',
    'parse_extension_list', 'build_extension_list',
    'parse_subprotocol_list', 'build_subprotocol_list',
]


# To avoid a dependency on a parsing library, we implement manually the ABNF
# described in https://tools.ietf.org/html/rfc6455#section-9.1 with the
# definitions from https://tools.ietf.org/html/rfc7230#appendix-B.

def peek_ahead(string, pos):
    """
    Return the next character from ``string`` at the given position.

    Return ``None`` at the end of ``string``.

    We never need to peek more than one character ahead.

    """
    return None if pos == len(string) else string[pos]


_OWS_re = re.compile(r'[\t ]*')


def parse_OWS(string, pos):
    """
    Parse optional whitespace from ``string`` at the given position.

    Return the new position.

    The whitespace itself isn't returned because it isn't significant.

    """
    # There's always a match, possibly empty, whose content doesn't matter.
    match = _OWS_re.match(string, pos)
    return match.end()


_token_re = re.compile(r'[-!#$%&\'*+.^_`|~0-9a-zA-Z]+')


def parse_token(string, pos, header_name):
    """
    Parse a token from ``string`` at the given position.

    Return the token value and the new position.

    Raise :exc:`~websockets.exceptions.InvalidHeaderFormat` on invalid inputs.

    """
    match = _token_re.match(string, pos)
    if match is None:
        raise InvalidHeaderFormat(
            header_name, "expected token", string=string, pos=pos)
    return match.group(), match.end()


_quoted_string_re = re.compile(
    r'"(?:[\x09\x20-\x21\x23-\x5b\x5d-\x7e]|\\[\x09\x20-\x7e\x80-\xff])*"')


_unquote_re = re.compile(r'\\([\x09\x20-\x7e\x80-\xff])')


def parse_quoted_string(string, pos, header_name):
    """
    Parse a quoted string from ``string`` at the given position.

    Return the unquoted value and the new position.

    Raise :exc:`~websockets.exceptions.InvalidHeaderFormat` on invalid inputs.

    """
    match = _quoted_string_re.match(string, pos)
    if match is None:
        raise InvalidHeaderFormat(
            header_name, "expected quoted string", string=string, pos=pos)
    return _unquote_re.sub(r'\1', match.group()[1:-1]), match.end()


def parse_list(parse_item, string, pos, header_name):
    """
    Parse a comma-separated list from ``string`` at the given position.

    This is appropriate for parsing values with the following grammar:

        1#item

    ``parse_item`` parses one item.

    ``string`` is assumed not to start or end with whitespace.

    (This function is designed for parsing an entire header value and
    :func:`~websockets.http.read_headers` strips whitespace from values.)

    Return a list of items.

    Raise :exc:`~websockets.exceptions.InvalidHeaderFormat` on invalid inputs.

    """
    # Per https://tools.ietf.org/html/rfc7230#section-7, "a recipient MUST
    # parse and ignore a reasonable number of empty list elements"; hence
    # while loops that remove extra delimiters.

    # Remove extra delimiters before the first item.
    while peek_ahead(string, pos) == ',':
        pos = parse_OWS(string, pos + 1)

    items = []
    while True:
        # Loop invariant: a item starts at pos in string.
        item, pos = parse_item(string, pos, header_name)
        items.append(item)
        pos = parse_OWS(string, pos)

        # We may have reached the end of the string.
        if pos == len(string):
            break

        # There must be a delimiter after each element except the last one.
        if peek_ahead(string, pos) == ',':
            pos = parse_OWS(string, pos + 1)
        else:
            raise InvalidHeaderFormat(
                header_name, "expected comma", string=string, pos=pos)

        # Remove extra delimiters before the next item.
        while peek_ahead(string, pos) == ',':
            pos = parse_OWS(string, pos + 1)

        # We may have reached the end of the string.
        if pos == len(string):
            break

    # Since we only advance in the string by one character with peek_ahead()
    # or with the end position of a regex match, we can't overshoot the end.
    assert pos == len(string)

    return items


[docs]def parse_connection(string): """ Parse a ``Connection`` header. Return a list of connection options. Raise :exc:`~websockets.exceptions.InvalidHeaderFormat` on invalid inputs. """ return parse_list(parse_token, string, 0, 'Connection')
_protocol_re = re.compile( r'[-!#$%&\'*+.^_`|~0-9a-zA-Z]+(?:/[-!#$%&\'*+.^_`|~0-9a-zA-Z]+)?') def parse_protocol(string, pos, header_name): """ Parse a protocol from ``string`` at the given position. Return the protocol value and the new position. Raise :exc:`~websockets.exceptions.InvalidHeaderFormat` on invalid inputs. """ match = _protocol_re.match(string, pos) if match is None: raise InvalidHeaderFormat( header_name, "expected protocol", string=string, pos=pos) return match.group(), match.end()
[docs]def parse_upgrade(string): """ Parse an ``Upgrade`` header. Return a list of connection options. Raise :exc:`~websockets.exceptions.InvalidHeaderFormat` on invalid inputs. """ return parse_list(parse_protocol, string, 0, 'Upgrade')
def parse_extension_param(string, pos, header_name): """ Parse a single extension parameter from ``string`` at the given position. Return a ``(name, value)`` pair and the new position. Raise :exc:`~websockets.exceptions.InvalidHeaderFormat` on invalid inputs. """ # Extract parameter name. name, pos = parse_token(string, pos, header_name) pos = parse_OWS(string, pos) # Extract parameter string, if there is one. if peek_ahead(string, pos) == '=': pos = parse_OWS(string, pos + 1) if peek_ahead(string, pos) == '"': pos_before = pos # for proper error reporting below value, pos = parse_quoted_string(string, pos, header_name) # https://tools.ietf.org/html/rfc6455#section-9.1 says: the value # after quoted-string unescaping MUST conform to the 'token' ABNF. if _token_re.fullmatch(value) is None: raise InvalidHeaderFormat( header_name, "invalid quoted string content", string=string, pos=pos_before) else: value, pos = parse_token(string, pos, header_name) pos = parse_OWS(string, pos) else: value = None return (name, value), pos def parse_extension(string, pos, header_name): """ Parse an extension definition from ``string`` at the given position. Return an ``(extension name, parameters)`` pair, where ``parameters`` is a list of ``(name, value)`` pairs, and the new position. Raise :exc:`~websockets.exceptions.InvalidHeaderFormat` on invalid inputs. """ # Extract extension name. name, pos = parse_token(string, pos, header_name) pos = parse_OWS(string, pos) # Extract all parameters. parameters = [] while peek_ahead(string, pos) == ';': pos = parse_OWS(string, pos + 1) parameter, pos = parse_extension_param(string, pos, header_name) parameters.append(parameter) return (name, parameters), pos
[docs]def parse_extension_list(string): """ Parse a ``Sec-WebSocket-Extensions`` header. Return a value with the following format:: [ ( 'extension name', [ ('parameter name', 'parameter value'), .... ] ), ... ] Parameter values are ``None`` when no value is provided. Raise :exc:`~websockets.exceptions.InvalidHeaderFormat` on invalid inputs. """ return parse_list(parse_extension, string, 0, 'Sec-WebSocket-Extensions')
def build_extension(name, parameters): """ Build an extension definition. This is the reverse of :func:`parse_extension`. """ return '; '.join([name] + [ # Quoted strings aren't necessary because values are always tokens. name if value is None else '{}={}'.format(name, value) for name, value in parameters ])
[docs]def build_extension_list(extensions): """ Unparse a ``Sec-WebSocket-Extensions`` header. This is the reverse of :func:`parse_extension_list`. """ return ', '.join( build_extension(name, parameters) for name, parameters in extensions )
[docs]def parse_subprotocol_list(string): """ Parse a ``Sec-WebSocket-Protocol`` header. Raise :exc:`~websockets.exceptions.InvalidHeaderFormat` on invalid inputs. """ return parse_list(parse_token, string, 0, 'Sec-WebSocket-Protocol')
[docs]def build_subprotocol_list(protocols): """ Unparse a ``Sec-WebSocket-Protocol`` header. This is the reverse of :func:`parse_subprotocol_list`. """ return ', '.join(protocols)
def build_basic_auth(username, password): """ Build an Authorization header for HTTP Basic Auth. """ # https://tools.ietf.org/html/rfc7617#section-2 assert ':' not in username user_pass = '{}:{}'.format(username, password) basic_credentials = base64.b64encode(user_pass.encode()).decode() return 'Basic ' + basic_credentials