~bzr-pqm/bzr/bzr.dev

# Copyright (C) 2006 Canonical Ltd

#

# This program is free software; you can redistribute it and/or modify

# it under the terms of the GNU General Public License as published by

# the Free Software Foundation; either version 2 of the License, or

# (at your option) any later version.

#

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

#

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA

"""Implementaion of urllib2 tailored to bzr needs

This file complements the urllib2 class hierarchy with custom classes.

For instance, we create a new HTTPConnection and HTTPSConnection that inherit

from the original urllib2.HTTP(s)Connection objects, but also have a new base

which implements a custom getresponse and fake_close handlers.

And then we implement custom HTTPHandler and HTTPSHandler classes, that use

the custom HTTPConnection classes.

We have a custom Response class, which lets us maintain a keep-alive

connection even for requests that urllib2 doesn't expect to contain body data.

And a custom Request class that lets us track redirections, and

handle authentication schemes.

"""

DEBUG = 0

# TODO: It may be possible to share the password_manager across

# all transports by prefixing the realm by the protocol used

# (especially if other protocols do not use realms). See

# PasswordManager below.

# FIXME: Oversimplifying, two kind of exceptions should be

# raised, once a request is issued: URLError before we have been

# able to process the response, HTTPError after that. Process the

# response means we are able to leave the socket clean, so if we

# are not able to do that, we should close the connection. The

# actual code more or less do that, tests should be written to

# ensure that.

import httplib

import md5

import sha

import socket

import urllib

import urllib2

import urlparse

import re

import sys

import time

from bzrlib import __version__ as bzrlib_version

from bzrlib import (

    errors,

    ui,

    )

# We define our own Response class to keep our httplib pipe clean

class Response(httplib.HTTPResponse):

    """Custom HTTPResponse, to avoid the need to decorate.

    httplib prefers to decorate the returned objects, rather

    than using a custom object.

    """

    # Some responses have bodies in which we have no interest

    _body_ignored_responses = [301,302, 303, 307, 401, 403, 404]

    def __init__(self, *args, **kwargs):

        httplib.HTTPResponse.__init__(self, *args, **kwargs)

    def begin(self):

        """Begin to read the response from the server.

        httplib assumes that some responses get no content and do

        not even attempt to read the body in that case, leaving

        the body in the socket, blocking the next request. Let's

        try to workaround that.

        """

        httplib.HTTPResponse.begin(self)

        if self.status in self._body_ignored_responses:

            if self.debuglevel > 0:

                print "For status: [%s]," % self.status,

                print "will ready body, length: ",

                if  self.length is not None:

                    print "[%d]" % self.length

                else:

                    print "None"

            if not (self.length is None or self.will_close):

                # In some cases, we just can't read the body not

                # even try or we may encounter a 104, 'Connection

                # reset by peer' error if there is indeed no body

                # and the server closed the connection just after

                # having issued the response headers (even if the

                # headers indicate a Content-Type...)

                body = self.fp.read(self.length)

                if self.debuglevel > 0:

                    print "Consumed body: [%s]" % body

            self.close()

# Not inheriting from 'object' because httplib.HTTPConnection doesn't.

class AbstractHTTPConnection:

    """A custom HTTP(S) Connection, which can reset itself on a bad response"""

    response_class = Response

    strict = 1 # We don't support HTTP/0.9

    def fake_close(self):

        """Make the connection believes the response have been fully handled.

        That makes the httplib.HTTPConnection happy

        """

        # Preserve our preciousss

        sock = self.sock

        self.sock = None

        self.close()

        self.sock = sock

class HTTPConnection(AbstractHTTPConnection, httplib.HTTPConnection):

    pass

class HTTPSConnection(AbstractHTTPConnection, httplib.HTTPSConnection):

    pass

class Request(urllib2.Request):

    """A custom Request object.

    urllib2 determines the request method heuristically (based on

    the presence or absence of data). We set the method

    statically.

    The Request object tracks:

    - the connection the request will be made on.

    - the authentication parameters needed to preventively set

      the authentication header once a first authentication have

       been made.

    """

    def __init__(self, method, url, data=None, headers={},

                 origin_req_host=None, unverifiable=False,

                 connection=None, parent=None,):

        urllib2.Request.__init__(self, url, data, headers,

                                 origin_req_host, unverifiable)

        self.method = method

        self.connection = connection

        # To handle redirections

        self.parent = parent

        self.redirected_to = None

        # Unless told otherwise, redirections are not followed

        self.follow_redirections = False

        # auth and proxy_auth are dicts containing, at least

        # (scheme, url, realm, user, password).

        # The dict entries are mostly handled by the AuthHandler.

        # Some authentication schemes may add more entries.

        self.auth = {}

        self.proxy_auth = {}

    def get_method(self):

        return self.method

def extract_credentials(url):

    """Extracts credentials information from url.

    Get user and password from url of the form: http://user:pass@host/path

    :returns: (clean_url, user, password)

    """

    scheme, netloc, path, query, fragment = urlparse.urlsplit(url)

    if '@' in netloc:

        auth, netloc = netloc.split('@', 1)

        if ':' in auth:

            user, password = auth.split(':', 1)

        else:

            user, password = auth, None

        user = urllib.unquote(user)

        if password is not None:

            password = urllib.unquote(password)

    else:

        user = None

        password = None

    # Build the clean url

    clean_url = urlparse.urlunsplit((scheme, netloc, path, query, fragment))

    return clean_url, user, password

def extract_authentication_uri(url):

    """Extract the authentication uri from any url.

    In the context of bzr, we simplified the authentication uri

    to the host only. For the transport lifetime, we allow only

    one user by realm on a given host. I.e. handling several

    users for different paths for the same realm should be done

    at a higher level.

    """

    scheme, host, path, query, fragment = urlparse.urlsplit(url)

    return '%s://%s' % (scheme, host)

# The urlib2.xxxAuthHandler handle the authentication of the

# requests, to do that, they need an urllib2 PasswordManager *at

# build time*. We also need one to reuse the passwords entered by

# the user.

class PasswordManager(urllib2.HTTPPasswordMgrWithDefaultRealm):

    def __init__(self):

        urllib2.HTTPPasswordMgrWithDefaultRealm.__init__(self)

class ConnectionHandler(urllib2.BaseHandler):

    """Provides connection-sharing by pre-processing requests.

    urllib2 provides no way to access the HTTPConnection object

    internally used. But we need it in order to achieve

    connection sharing. So, we add it to the request just before

    it is processed, and then we override the do_open method for

    http[s] requests in AbstractHTTPHandler.

    """

    handler_order = 1000 # after all pre-processings

    def create_connection(self, request, http_connection_class):

        host = request.get_host()

        if not host:

            # Just a bit of paranoia here, this should have been

            # handled in the higher levels

            raise errors.InvalidURL(request.get_full_url(), 'no host given.')

        # We create a connection (but it will not connect yet)

        try:

            connection = http_connection_class(host)

        except httplib.InvalidURL, exception:

            # There is only one occurrence of InvalidURL in httplib

            raise errors.InvalidURL(request.get_full_url(),

                                    extra='nonnumeric port')

        return connection

    def capture_connection(self, request, http_connection_class):

        """Capture or inject the request connection.

        Two cases:

        - the request have no connection: create a new one,

        - the request have a connection: this one have been used

          already, let's capture it, so that we can give it to

          another transport to be reused. We don't do that

          ourselves: the Transport object get the connection from

          a first request and then propagate it, from request to

          request or to cloned transports.

        """

        connection = request.connection

        if connection is None:

            # Create a new one

            connection = self.create_connection(request, http_connection_class)

            request.connection = connection

        # All connections will pass here, propagate debug level

        connection.set_debuglevel(DEBUG)

        return request

    def http_request(self, request):

        return self.capture_connection(request, HTTPConnection)

    def https_request(self, request):

        return self.capture_connection(request, HTTPSConnection)

class AbstractHTTPHandler(urllib2.AbstractHTTPHandler):

    """A custom handler for HTTP(S) requests.

    We overrive urllib2.AbstractHTTPHandler to get a better

    control of the connection, the ability to implement new

    request types and return a response able to cope with

    persistent connections.

    """

    # We change our order to be before urllib2 HTTP[S]Handlers

    # and be chosen instead of them (the first http_open called

    # wins).

    handler_order = 400

    _default_headers = {'Pragma': 'no-cache',

                        'Cache-control': 'max-age=0',

                        'Connection': 'Keep-Alive',

                        # FIXME: Spell it User-*A*gent once we

                        # know how to properly avoid bogus

                        # urllib2 using capitalize() for headers

                        # instead of title(sp?).

                        'User-agent': 'bzr/%s (urllib)' % bzrlib_version,

                        'Accept': '*/*',

                        }

    def __init__(self):

        urllib2.AbstractHTTPHandler.__init__(self, debuglevel=DEBUG)

    def http_request(self, request):

        """Common headers setting"""

        request.headers.update(self._default_headers.copy())

        # FIXME: We may have to add the Content-Length header if

        # we have data to send.

        return request

    def retry_or_raise(self, http_class, request, first_try):

        """Retry the request (once) or raise the exception.

        urllib2 raises exception of application level kind, we

        just have to translate them.

        httplib can raise exceptions of transport level (badly

        formatted dialog, loss of connexion or socket level

        problems). In that case we should issue the request again

        (httplib will close and reopen a new connection if

        needed).

        """

        # When an exception occurs, we give back the original

        # Traceback or the bugs are hard to diagnose.

        exc_type, exc_val, exc_tb = sys.exc_info()

        if exc_type == socket.gaierror:

            # No need to retry, that will not help

            raise errors.ConnectionError("Couldn't resolve host '%s'"

                                         % request.get_origin_req_host(),

                                         orig_error=exc_val)

        else:

            if first_try:

                if self._debuglevel > 0:

                    print 'Received exception: [%r]' % exc_val

                    print '  On connection: [%r]' % request.connection

                    method = request.get_method()

                    url = request.get_full_url()

                    print '  Will retry, %s %r' % (method, url)

                request.connection.close()

                response = self.do_open(http_class, request, False)

                convert_to_addinfourl = False

            else:

                if self._debuglevel > 0:

                    print 'Received second exception: [%r]' % exc_val

                    print '  On connection: [%r]' % request.connection

                if exc_type in (httplib.BadStatusLine, httplib.UnknownProtocol):

                    # httplib.BadStatusLine and

                    # httplib.UnknownProtocol indicates that a

                    # bogus server was encountered or a bad

                    # connection (i.e. transient errors) is

                    # experimented, we have already retried once

                    # for that request so we raise the exception.

                    my_exception = errors.InvalidHttpResponse(

                        request.get_full_url(),

                        'Bad status line received',

                        orig_error=exc_val)

                else:

                    # All other exception are considered connection related.

                    # httplib.HTTPException should indicate a bug

                    # in the urllib implementation, somewhow the

                    # httplib pipeline is in an incorrect state,

                    # we retry in hope that this will correct the

                    # problem but that may need investigation

                    # (note that no such bug is known as of

                    # 20061005 --vila).

                    # socket errors generally occurs for reasons

                    # far outside our scope, so closing the

                    # connection and retrying is the best we can

                    # do.

                    # FIXME: and then there is HTTPError raised by:

                    # - HTTPDefaultErrorHandler (we define our own)

                    # - HTTPRedirectHandler.redirect_request 

                    # - AbstractDigestAuthHandler.http_error_auth_reqed

                    my_exception = errors.ConnectionError(

                        msg= 'while sending %s %s:' % (request.get_method(),

                                                       request.get_selector()),

                        orig_error=exc_val)

                if self._debuglevel > 0:

                    print 'On connection: [%r]' % request.connection

                    method = request.get_method()

                    url = request.get_full_url()

                    print '  Failed again, %s %r' % (method, url)

                    print '  Will raise: [%r]' % my_exception

                raise my_exception, None, exc_tb

        return response, convert_to_addinfourl

    def do_open(self, http_class, request, first_try=True):

        """See urllib2.AbstractHTTPHandler.do_open for the general idea.

        The request will be retried once if it fails.

        """

        connection = request.connection

        assert connection is not None, \

            'Cannot process a request without a connection'

        # Get all the headers

        headers = {}

        headers.update(request.header_items())

        headers.update(request.unredirected_hdrs)

        try:

            connection._send_request(request.get_method(),

                                     request.get_selector(),

                                     # FIXME: implements 100-continue

                                     #None, # We don't send the body yet

                                     request.get_data(),

                                     headers)

            if self._debuglevel > 0:

                print 'Request sent: [%r]' % request

            response = connection.getresponse()

            convert_to_addinfourl = True

        except (socket.gaierror, httplib.BadStatusLine, httplib.UnknownProtocol,

                socket.error, httplib.HTTPException):

            response, convert_to_addinfourl = self.retry_or_raise(http_class,

                                                                  request,

                                                                  first_try)

# FIXME: HTTPConnection does not fully support 100-continue (the

# server responses are just ignored)

#        if code == 100:

#            mutter('Will send the body')

#            # We can send the body now

#            body = request.get_data()

#            if body is None:

#                raise URLError("No data given")

#            connection.send(body)

#            response = connection.getresponse()

        if self._debuglevel > 0:

            print 'Receives response: %r' % response

            print '  For: %r(%r)' % (request.get_method(),

                                     request.get_full_url())

        if convert_to_addinfourl:

            # Shamelessly copied from urllib2

            req = request

            r = response

            r.recv = r.read

            fp = socket._fileobject(r)

            resp = urllib2.addinfourl(fp, r.msg, req.get_full_url())

            resp.code = r.status

            resp.msg = r.reason

            if self._debuglevel > 0:

                print 'Create addinfourl: %r' % resp

                print '  For: %r(%r)' % (request.get_method(),

                                         request.get_full_url())

        else:

            resp = response

        return resp

#       # we need titled headers in a dict but

#       # response.getheaders returns a list of (lower(header).

#       # Let's title that because most of bzr handle titled

#       # headers, but maybe we should switch to lowercased

#       # headers...

#        # jam 20060908: I think we actually expect the headers to

#        #       be similar to mimetools.Message object, which uses

#        #       case insensitive keys. It lowers() all requests.

#        #       My concern is that the code may not do perfect title case.

#        #       For example, it may use Content-type rather than Content-Type

#

#        # When we get rid of addinfourl, we must ensure that bzr

#        # always use titled headers and that any header received

#        # from server is also titled.

#

#        headers = {}

#        for header, value in (response.getheaders()):

#            headers[header.title()] = value

#        # FIXME: Implements a secured .read method

#        response.code = response.status

#        response.headers = headers

#        return response

class HTTPHandler(AbstractHTTPHandler):

    """A custom handler that just thunks into HTTPConnection"""

    def http_open(self, request):

        return self.do_open(HTTPConnection, request)

class HTTPSHandler(AbstractHTTPHandler):

    """A custom handler that just thunks into HTTPSConnection"""

    def https_open(self, request):

        return self.do_open(HTTPSConnection, request)

class HTTPRedirectHandler(urllib2.HTTPRedirectHandler):

    """Handles redirect requests.

    We have to implement our own scheme because we use a specific

    Request object and because we want to implement a specific

    policy.

    """

    _debuglevel = DEBUG

    # RFC2616 says that only read requests should be redirected

    # without interacting with the user. But bzr use some

    # shortcuts to optimize against roundtrips which can leads to

    # write requests being issued before read requests of

    # containing dirs can be redirected. So we redirect write

    # requests in the same way which seems to respect the spirit

    # of the RFC if not its letter.

    def redirect_request(self, req, fp, code, msg, headers, newurl):

        """See urllib2.HTTPRedirectHandler.redirect_request"""

        # We would have preferred to update the request instead

        # of creating a new one, but the urllib2.Request object

        # has a too complicated creation process to provide a

        # simple enough equivalent update process. Instead, when

        # redirecting, we only update the following request in

        # the redirect chain with a reference to the parent

        # request .

        # Some codes make no sense in our context and are treated

        # as errors:

        # 300: Multiple choices for different representations of

        #      the URI. Using that mechanisn with bzr will violate the

        #      protocol neutrality of Transport.

        # 304: Not modified (SHOULD only occurs with conditional

        #      GETs which are not used by our implementation)

        # 305: Use proxy. I can't imagine this one occurring in

        #      our context-- vila/20060909

        # 306: Unused (if the RFC says so...)

        # If the code is 302 and the request is HEAD, some may

        # think that it is a sufficent hint that the file exists

        # and that we MAY avoid following the redirections. But

        # if we want to be sure, we MUST follow them.

        if code in (301, 302, 303, 307):

            return Request(req.get_method(),newurl,

                           headers = req.headers,

                           origin_req_host = req.get_origin_req_host(),

                           unverifiable = True,

                           # TODO: It will be nice to be able to

                           # detect virtual hosts sharing the same

                           # IP address, that will allow us to

                           # share the same connection...

                           connection = None,

                           parent = req,

                           )

        else:

            raise urllib2.HTTPError(req.get_full_url(), code, msg, headers, fp)

    def http_error_302(self, req, fp, code, msg, headers):

        """Requests the redirected to URI.

        Copied from urllib2 to be able to fake_close the

        associated connection, *before* issuing the redirected

        request but *after* having eventually raised an error.

        """

        # Some servers (incorrectly) return multiple Location headers

        # (so probably same goes for URI).  Use first header.

        # TODO: Once we get rid of addinfourl objects, the

        # following will need to be updated to use correct case

        # for headers.

        if 'location' in headers:

            newurl = headers.getheaders('location')[0]

        elif 'uri' in headers:

            newurl = headers.getheaders('uri')[0]

        else:

            return

        if self._debuglevel > 0:

            print 'Redirected to: %s (followed: %r)' % (newurl,

                                                        req.follow_redirections)

        if req.follow_redirections is False:

            req.redirected_to = newurl

            return fp

        newurl = urlparse.urljoin(req.get_full_url(), newurl)

        # This call succeeds or raise an error. urllib2 returns

        # if redirect_request returns None, but our

        # redirect_request never returns None.

        redirected_req = self.redirect_request(req, fp, code, msg, headers,

                                               newurl)

        # loop detection

        # .redirect_dict has a key url if url was previously visited.

        if hasattr(req, 'redirect_dict'):

            visited = redirected_req.redirect_dict = req.redirect_dict

            if (visited.get(newurl, 0) >= self.max_repeats or

                len(visited) >= self.max_redirections):

                raise urllib2.HTTPError(req.get_full_url(), code,

                                        self.inf_msg + msg, headers, fp)

        else:

            visited = redirected_req.redirect_dict = req.redirect_dict = {}

        visited[newurl] = visited.get(newurl, 0) + 1

        # We can close the fp now that we are sure that we won't

        # use it with HTTPError.

        fp.close()

        # We have all we need already in the response

        req.connection.fake_close()

        return self.parent.open(redirected_req)

    http_error_301 = http_error_303 = http_error_307 = http_error_302

class ProxyHandler(urllib2.ProxyHandler):

    """Handles proxy setting.

    Copied and modified from urllib2 to be able to modify the

    request during the request pre-processing instead of

    modifying it at _open time. As we capture (or create) the

    connection object during request processing, _open time was

    too late.

    Note that the proxy handling *may* modify the protocol used;

    the request may be against an https server proxied through an

    http proxy. So, https_request will be called, but later it's

    really http_open that will be called. This explain why we

    don't have to call self.parent.open as the urllib2 did.

    """

    # Proxies must be in front

    handler_order = 100

    _debuglevel = DEBUG

    def __init__(self, password_manager, proxies=None):

        urllib2.ProxyHandler.__init__(self, proxies)

        self.password_manager = password_manager

        # First, let's get rid of urllib2 implementation

        for type, proxy in self.proxies.items():

            if self._debuglevel > 0:

                print 'Will unbind %s_open for %r' % (type, proxy)

            delattr(self, '%s_open' % type)

        # We are interested only by the http[s] proxies

        http_proxy = self.get_proxy_env_var('http')

        https_proxy = self.get_proxy_env_var('https')

        if http_proxy is not None:

            if self._debuglevel > 0:

                print 'Will bind http_request for %r' % http_proxy

            setattr(self, 'http_request',

                    lambda request: self.set_proxy(request, 'http'))

        if https_proxy is not None:

            if self._debuglevel > 0:

                print 'Will bind http_request for %r' % https_proxy

            setattr(self, 'https_request',

                    lambda request: self.set_proxy(request, 'https'))

    def get_proxy_env_var(self, name, default_to='all'):

        """Get a proxy env var.

        Note that we indirectly rely on

        urllib.getproxies_environment taking into account the

        uppercased values for proxy variables.

        """

        try:

            return self.proxies[name.lower()]

        except KeyError:

            if default_to is not None:

                # Try to get the alternate environment variable

                try:

                    return self.proxies[default_to]

                except KeyError:

                    pass

        return None

    def proxy_bypass(self, host):

        """Check if host should be proxied or not"""

        no_proxy = self.get_proxy_env_var('no', None)

        if no_proxy is None:

            return False

        hhost, hport = urllib.splitport(host)

        # Does host match any of the domains mentioned in

        # no_proxy ? The rules about what is authorized in no_proxy

        # are fuzzy (to say the least). We try to allow most

        # commonly seen values.

        for domain in no_proxy.split(','):

            dhost, dport = urllib.splitport(domain)

            if hport == dport or dport is None:

                # Protect glob chars

                dhost = dhost.replace(".", r"\.")

                dhost = dhost.replace("*", r".*")

                dhost = dhost.replace("?", r".")

                if re.match(dhost, hhost, re.IGNORECASE):

                    return True

        # Nevertheless, there are platform-specific ways to

        # ignore proxies...

        return urllib.proxy_bypass(host)

    def set_proxy(self, request, type):

        if self.proxy_bypass(request.get_host()):

            return request

        proxy = self.get_proxy_env_var(type)

        if self._debuglevel > 0:

            print 'set_proxy %s_request for %r' % (type, proxy)

        # Extract credentials from the url and store them in the

        # password manager so that the proxy AuthHandler can use

        # them later.

        proxy, user, password = extract_credentials(proxy)

        if request.proxy_auth == {}:

            # No proxy auth parameter are available, we are

            # handling the first proxied request, intialize.

            # scheme and realm will be set by the AuthHandler

            authuri = extract_authentication_uri(proxy)

            request.proxy_auth = {'user': user, 'password': password,

                                  'authuri': authuri}

            if user and password is not None: # '' is a valid password

                # We default to a realm of None to catch them all.

                self.password_manager.add_password(None, authuri,

                                                   user, password)

        orig_type = request.get_type()

        scheme, r_scheme = urllib.splittype(proxy)

        if self._debuglevel > 0:

            print 'scheme: %s, r_scheme: %s' % (scheme, r_scheme)

        host, XXX = urllib.splithost(r_scheme)

        if host is None:

            raise errors.InvalidURL(proxy,

                                    'Invalid syntax in proxy env variable')

        host = urllib.unquote(host)

        request.set_proxy(host, type)

        if self._debuglevel > 0:

            print 'set_proxy: proxy set to %s://%s' % (type, host)

        return request

class AbstractAuthHandler(urllib2.BaseHandler):

    """A custom abstract authentication handler for all http authentications.

    Provides the meat to handle authentication errors and

    preventively set authentication headers after the first

    successful authentication.

    This can be used for http and proxy, as well as for basic and

    digest authentications.

    This provides an unified interface for all authentication handlers

    (urllib2 provides far too many with different policies).

    The interaction between this handler and the urllib2

    framework is not obvious, it works as follow:

    opener.open(request) is called:

    - that may trigger http_request which will add an authentication header

      (self.build_header) if enough info is available.

    - the request is sent to the server,

    - if an authentication error is received self.auth_required is called,

      we acquire the authentication info in the error headers and call

      self.auth_match to check that we are able to try the

      authentication and complete the authentication parameters,

    - we call parent.open(request), that may trigger http_request

      and will add a header (self.build_header), but here we have

      all the required info (keep in mind that the request and

      authentication used in the recursive calls are really (and must be)

      the *same* objects).

    - if the call returns a response, the authentication have been

      successful and the request authentication parameters have been updated.