| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394 |
- 'use strict';
- var node_stream = require('node:stream');
- const malformedMultipart = 1012;
- const FormidableError = class extends Error {
- constructor(message, internalCode, httpCode = 500) {
- super(message);
- this.code = internalCode;
- this.httpCode = httpCode;
- }
- };
- /* eslint-disable no-fallthrough */
- /* eslint-disable no-bitwise */
- /* eslint-disable no-plusplus */
- /* eslint-disable no-underscore-dangle */
- let s = 0;
- const STATE = {
- PARSER_UNINITIALIZED: s++,
- START: s++,
- START_BOUNDARY: s++,
- HEADER_FIELD_START: s++,
- HEADER_FIELD: s++,
- HEADER_VALUE_START: s++,
- HEADER_VALUE: s++,
- HEADER_VALUE_ALMOST_DONE: s++,
- HEADERS_ALMOST_DONE: s++,
- PART_DATA_START: s++,
- PART_DATA: s++,
- PART_END: s++,
- END: s++,
- };
- let f = 1;
- const FBOUNDARY = { PART_BOUNDARY: f, LAST_BOUNDARY: (f *= 2) };
- const LF = 10;
- const CR = 13;
- const SPACE = 32;
- const HYPHEN = 45;
- const COLON = 58;
- const A = 97;
- const Z = 122;
- function lower(c) {
- return c | 0x20;
- }
- const STATES = {};
- Object.keys(STATE).forEach((stateName) => {
- STATES[stateName] = STATE[stateName];
- });
- class MultipartParser extends node_stream.Transform {
- constructor(options = {}) {
- super({ readableObjectMode: true });
- this.boundary = null;
- this.boundaryChars = null;
- this.lookbehind = null;
- this.bufferLength = 0;
- this.state = STATE.PARSER_UNINITIALIZED;
- this.globalOptions = { ...options };
- this.index = null;
- this.flags = 0;
- }
- _endUnexpected() {
- return new FormidableError(
- `MultipartParser.end(): stream ended unexpectedly: ${this.explain()}`,
- malformedMultipart,
- 400,
- );
- }
- _flush(done) {
- if (
- (this.state === STATE.HEADER_FIELD_START && this.index === 0) ||
- (this.state === STATE.PART_DATA && this.index === this.boundary.length)
- ) {
- this._handleCallback('partEnd');
- this._handleCallback('end');
- done();
- } else if (this.state !== STATE.END) {
- done(this._endUnexpected());
- } else {
- done();
- }
- }
- initWithBoundary(str) {
- this.boundary = Buffer.from(`\r\n--${str}`);
- this.lookbehind = Buffer.alloc(this.boundary.length + 8);
- this.state = STATE.START;
- this.boundaryChars = {};
- for (let i = 0; i < this.boundary.length; i++) {
- this.boundaryChars[this.boundary[i]] = true;
- }
- }
- // eslint-disable-next-line max-params
- _handleCallback(name, buf, start, end) {
- if (start !== undefined && start === end) {
- return;
- }
- this.push({ name, buffer: buf, start, end });
- }
- // eslint-disable-next-line max-statements
- _transform(buffer, _, done) {
- let i = 0;
- let prevIndex = this.index;
- let { index, state, flags } = this;
- const { lookbehind, boundary, boundaryChars } = this;
- const boundaryLength = boundary.length;
- const boundaryEnd = boundaryLength - 1;
- this.bufferLength = buffer.length;
- let c = null;
- let cl = null;
- const setMark = (name, idx) => {
- this[`${name}Mark`] = typeof idx === 'number' ? idx : i;
- };
- const clearMarkSymbol = (name) => {
- delete this[`${name}Mark`];
- };
- const dataCallback = (name, shouldClear) => {
- const markSymbol = `${name}Mark`;
- if (!(markSymbol in this)) {
- return;
- }
- if (!shouldClear) {
- this._handleCallback(name, buffer, this[markSymbol], buffer.length);
- setMark(name, 0);
- } else {
- this._handleCallback(name, buffer, this[markSymbol], i);
- clearMarkSymbol(name);
- }
- };
- for (i = 0; i < this.bufferLength; i++) {
- c = buffer[i];
- switch (state) {
- case STATE.PARSER_UNINITIALIZED:
- done(this._endUnexpected());
- return;
- case STATE.START:
- index = 0;
- state = STATE.START_BOUNDARY;
- case STATE.START_BOUNDARY:
- if (index === boundary.length - 2) {
- if (c === HYPHEN) {
- flags |= FBOUNDARY.LAST_BOUNDARY;
- } else if (c !== CR) {
- done(this._endUnexpected());
- return;
- }
- index++;
- break;
- } else if (index - 1 === boundary.length - 2) {
- if (flags & FBOUNDARY.LAST_BOUNDARY && c === HYPHEN) {
- this._handleCallback('end');
- state = STATE.END;
- flags = 0;
- } else if (!(flags & FBOUNDARY.LAST_BOUNDARY) && c === LF) {
- index = 0;
- this._handleCallback('partBegin');
- state = STATE.HEADER_FIELD_START;
- } else {
- done(this._endUnexpected());
- return;
- }
- break;
- }
- if (c !== boundary[index + 2]) {
- index = -2;
- }
- if (c === boundary[index + 2]) {
- index++;
- }
- break;
- case STATE.HEADER_FIELD_START:
- state = STATE.HEADER_FIELD;
- setMark('headerField');
- index = 0;
- case STATE.HEADER_FIELD:
- if (c === CR) {
- clearMarkSymbol('headerField');
- state = STATE.HEADERS_ALMOST_DONE;
- break;
- }
- index++;
- if (c === HYPHEN) {
- break;
- }
- if (c === COLON) {
- if (index === 1) {
- // empty header field
- done(this._endUnexpected());
- return;
- }
- dataCallback('headerField', true);
- state = STATE.HEADER_VALUE_START;
- break;
- }
- cl = lower(c);
- if (cl < A || cl > Z) {
- done(this._endUnexpected());
- return;
- }
- break;
- case STATE.HEADER_VALUE_START:
- if (c === SPACE) {
- break;
- }
- setMark('headerValue');
- state = STATE.HEADER_VALUE;
- case STATE.HEADER_VALUE:
- if (c === CR) {
- dataCallback('headerValue', true);
- this._handleCallback('headerEnd');
- state = STATE.HEADER_VALUE_ALMOST_DONE;
- }
- break;
- case STATE.HEADER_VALUE_ALMOST_DONE:
- if (c !== LF) {
- done(this._endUnexpected());
- return;
- }
- state = STATE.HEADER_FIELD_START;
- break;
- case STATE.HEADERS_ALMOST_DONE:
- if (c !== LF) {
- done(this._endUnexpected());
- return;
- }
- this._handleCallback('headersEnd');
- state = STATE.PART_DATA_START;
- break;
- case STATE.PART_DATA_START:
- state = STATE.PART_DATA;
- setMark('partData');
- case STATE.PART_DATA:
- prevIndex = index;
- if (index === 0) {
- // boyer-moore derived algorithm to safely skip non-boundary data
- i += boundaryEnd;
- while (i < this.bufferLength && !(buffer[i] in boundaryChars)) {
- i += boundaryLength;
- }
- i -= boundaryEnd;
- c = buffer[i];
- }
- if (index < boundary.length) {
- if (boundary[index] === c) {
- if (index === 0) {
- dataCallback('partData', true);
- }
- index++;
- } else {
- index = 0;
- }
- } else if (index === boundary.length) {
- index++;
- if (c === CR) {
- // CR = part boundary
- flags |= FBOUNDARY.PART_BOUNDARY;
- } else if (c === HYPHEN) {
- // HYPHEN = end boundary
- flags |= FBOUNDARY.LAST_BOUNDARY;
- } else {
- index = 0;
- }
- } else if (index - 1 === boundary.length) {
- if (flags & FBOUNDARY.PART_BOUNDARY) {
- index = 0;
- if (c === LF) {
- // unset the PART_BOUNDARY flag
- flags &= ~FBOUNDARY.PART_BOUNDARY;
- this._handleCallback('partEnd');
- this._handleCallback('partBegin');
- state = STATE.HEADER_FIELD_START;
- break;
- }
- } else if (flags & FBOUNDARY.LAST_BOUNDARY) {
- if (c === HYPHEN) {
- this._handleCallback('partEnd');
- this._handleCallback('end');
- state = STATE.END;
- flags = 0;
- } else {
- index = 0;
- }
- } else {
- index = 0;
- }
- }
- if (index > 0) {
- // when matching a possible boundary, keep a lookbehind reference
- // in case it turns out to be a false lead
- lookbehind[index - 1] = c;
- } else if (prevIndex > 0) {
- // if our boundary turned out to be rubbish, the captured lookbehind
- // belongs to partData
- this._handleCallback('partData', lookbehind, 0, prevIndex);
- prevIndex = 0;
- setMark('partData');
- // reconsider the current character even so it interrupted the sequence
- // it could be the beginning of a new sequence
- i--;
- }
- break;
- case STATE.END:
- break;
- default:
- done(this._endUnexpected());
- return;
- }
- }
- dataCallback('headerField');
- dataCallback('headerValue');
- dataCallback('partData');
- this.index = index;
- this.state = state;
- this.flags = flags;
- done();
- return this.bufferLength;
- }
- explain() {
- return `state = ${MultipartParser.stateToString(this.state)}`;
- }
- }
- // eslint-disable-next-line consistent-return
- MultipartParser.stateToString = (stateNumber) => {
- // eslint-disable-next-line no-restricted-syntax, guard-for-in
- for (const stateName in STATE) {
- const number = STATE[stateName];
- if (number === stateNumber) return stateName;
- }
- };
- Object.assign(MultipartParser, { STATES });
- /* eslint-disable no-underscore-dangle */
- const multipartType = 'multipart';
- /* eslint-disable no-underscore-dangle */
- const querystringType = 'urlencoded';
- const firstValues = (form, fields, exceptions = []) => {
- if (form.type !== querystringType && form.type !== multipartType) {
- return fields;
- }
- return Object.fromEntries(
- Object.entries(fields).map(([key, value]) => {
- if (exceptions.includes(key)) {
- return [key, value];
- }
- return [key, value[0]];
- }),
- );
- };
- exports.firstValues = firstValues;
|
