Coverage for qutebrowser/utils/urlutils.py : 100%

# vim: ft=python fileencoding=utf-8 sts=4 sw=4 et: 

# Copyright 2014-2018 Florian Bruhin (The Compiler) <mail@qutebrowser.org> 

# 

# This file is part of qutebrowser. 

# 

# qutebrowser is free software: you can redistribute it and/or modify 

# it under the terms of the GNU General Public License as published by 

# the Free Software Foundation, either version 3 of the License, or 

# (at your option) any later version. 

# 

# qutebrowser is distributed in the hope that it will be useful, 

# but WITHOUT ANY WARRANTY; without even the implied warranty of 

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 

# GNU General Public License for more details. 

# 

# You should have received a copy of the GNU General Public License 

# along with qutebrowser. If not, see <http://www.gnu.org/licenses/>. 

"""Utils regarding URL handling.""" 

import re 

import base64 

import os.path 

import ipaddress 

import posixpath 

import urllib.parse 

from PyQt5.QtCore import QUrl, QUrlQuery 

from PyQt5.QtNetwork import QHostInfo, QHostAddress, QNetworkProxy 

from qutebrowser.config import config 

from qutebrowser.utils import log, qtutils, message, utils 

from qutebrowser.commands import cmdexc 

from qutebrowser.browser.network import pac 

# FIXME: we probably could raise some exceptions on invalid URLs 

# https://github.com/qutebrowser/qutebrowser/issues/108 

class InvalidUrlError(ValueError): 

"""Error raised if a function got an invalid URL. 

Inherits ValueError because that was the exception originally used for 

that, so there still might be some code around which checks for that. 

""" 

def __init__(self, url): 

if url.isValid(): 

raise ValueError("Got valid URL {}!".format(url.toDisplayString())) 

self.url = url 

self.msg = get_errstring(url) 

super().__init__(self.msg) 

def _parse_search_term(s): 

"""Get a search engine name and search term from a string. 

Args: 

s: The string to get a search engine for. 

Return: 

A (engine, term) tuple, where engine is None for the default engine. 

""" 

s = s.strip() 

split = s.split(maxsplit=1) 

if len(split) == 2: 

engine = split[0] 

try: 

config.val.url.searchengines[engine] 

except KeyError: 

engine = None 

term = s 

else: 

term = split[1] 

elif not split: 

raise ValueError("Empty search term!") 

else: 

engine = None 

term = s 

log.url.debug("engine {}, term {!r}".format(engine, term)) 

return (engine, term) 

def _get_search_url(txt): 

"""Get a search engine URL for a text. 

Args: 

txt: Text to search for. 

Return: 

The search URL as a QUrl. 

""" 

log.url.debug("Finding search engine for {!r}".format(txt)) 

engine, term = _parse_search_term(txt) 

assert term 

if engine is None: 

engine = 'DEFAULT' 

template = config.val.url.searchengines[engine] 

url = qurl_from_user_input(template.format(urllib.parse.quote(term))) 

qtutils.ensure_valid(url) 

return url 

def _is_url_naive(urlstr): 

"""Naive check if given URL is really a URL. 

Args: 

urlstr: The URL to check for, as string. 

Return: 

True if the URL really is a URL, False otherwise. 

""" 

url = qurl_from_user_input(urlstr) 

assert url.isValid() 

if not utils.raises(ValueError, ipaddress.ip_address, urlstr): 

# Valid IPv4/IPv6 address 

return True 

# Qt treats things like "23.42" or "1337" or "0xDEAD" as valid URLs 

# which we don't want to. Note we already filtered *real* valid IPs 

# above. 

if not QHostAddress(urlstr).isNull(): 

return False 

host = url.host() 

return '.' in host and not host.endswith('.') 

def _is_url_dns(urlstr): 

"""Check if a URL is really a URL via DNS. 

Args: 

url: The URL to check for as a string. 

Return: 

True if the URL really is a URL, False otherwise. 

""" 

url = qurl_from_user_input(urlstr) 

assert url.isValid() 

if (utils.raises(ValueError, ipaddress.ip_address, urlstr) and 

not QHostAddress(urlstr).isNull()): 

log.url.debug("Bogus IP URL -> False") 

# Qt treats things like "23.42" or "1337" or "0xDEAD" as valid URLs 

# which we don't want to. 

return False 

host = url.host() 

if not host: 

log.url.debug("URL has no host -> False") 

return False 

log.url.debug("Doing DNS request for {}".format(host)) 

info = QHostInfo.fromName(host) 

return not info.error() 

def fuzzy_url(urlstr, cwd=None, relative=False, do_search=True, 

force_search=False): 

"""Get a QUrl based on a user input which is URL or search term. 

Args: 

urlstr: URL to load as a string. 

cwd: The current working directory, or None. 

relative: Whether to resolve relative files. 

do_search: Whether to perform a search on non-URLs. 

force_search: Whether to force a search even if the content can be 

interpreted as a URL or a path. 

Return: 

A target QUrl to a search page or the original URL. 

""" 

urlstr = urlstr.strip() 

path = get_path_if_valid(urlstr, cwd=cwd, relative=relative, 

check_exists=True) 

if not force_search and path is not None: 

url = QUrl.fromLocalFile(path) 

elif force_search or (do_search and not is_url(urlstr)): 

# probably a search term 

log.url.debug("URL is a fuzzy search term") 

try: 

url = _get_search_url(urlstr) 

except ValueError: # invalid search engine 

url = qurl_from_user_input(urlstr) 

else: # probably an address 

log.url.debug("URL is a fuzzy address") 

url = qurl_from_user_input(urlstr) 

log.url.debug("Converting fuzzy term {!r} to URL -> {}".format( 

urlstr, url.toDisplayString())) 

if do_search and config.val.url.auto_search != 'never' and urlstr: 

qtutils.ensure_valid(url) 

else: 

if not url.isValid(): 

raise InvalidUrlError(url) 

return url 

def _has_explicit_scheme(url): 

"""Check if a url has an explicit scheme given. 

Args: 

url: The URL as QUrl. 

""" 

# Note that generic URI syntax actually would allow a second colon 

# after the scheme delimiter. Since we don't know of any URIs 

# using this and want to support e.g. searching for scoped C++ 

# symbols, we treat this as not a URI anyways. 

return (url.isValid() and url.scheme() and 

(url.host() or url.path()) and 

' ' not in url.path() and 

not url.path().startswith(':')) 

def is_special_url(url): 

"""Return True if url is an about:... or other special URL. 

Args: 

url: The URL as QUrl. 

""" 

if not url.isValid(): 

return False 

special_schemes = ('about', 'qute', 'file') 

return url.scheme() in special_schemes 

def is_url(urlstr): 

"""Check if url seems to be a valid URL. 

Args: 

urlstr: The URL as string. 

Return: 

True if it is a valid URL, False otherwise. 

""" 

autosearch = config.val.url.auto_search 

log.url.debug("Checking if {!r} is a URL (autosearch={}).".format( 

urlstr, autosearch)) 

urlstr = urlstr.strip() 

qurl = QUrl(urlstr) 

qurl_userinput = qurl_from_user_input(urlstr) 

if autosearch == 'never': 

# no autosearch, so everything is a URL unless it has an explicit 

# search engine. 

try: 

engine, _term = _parse_search_term(urlstr) 

except ValueError: 

return False 

else: 

return engine is None 

if not qurl_userinput.isValid(): 

# This will also catch URLs containing spaces. 

return False 

if _has_explicit_scheme(qurl): 

# URLs with explicit schemes are always URLs 

log.url.debug("Contains explicit scheme") 

url = True 

elif qurl_userinput.host() in ['localhost', '127.0.0.1', '::1']: 

log.url.debug("Is localhost.") 

url = True 

elif is_special_url(qurl): 

# Special URLs are always URLs, even with autosearch=never 

log.url.debug("Is a special URL.") 

url = True 

elif autosearch == 'dns': 

log.url.debug("Checking via DNS check") 

# We want to use qurl_from_user_input here, as the user might enter 

# "foo.de" and that should be treated as URL here. 

url = _is_url_dns(urlstr) 

elif autosearch == 'naive': 

log.url.debug("Checking via naive check") 

url = _is_url_naive(urlstr) 

else: # pragma: no cover 

raise ValueError("Invalid autosearch value") 

log.url.debug("url = {}".format(url)) 

return url 

def qurl_from_user_input(urlstr): 

"""Get a QUrl based on a user input. Additionally handles IPv6 addresses. 

QUrl.fromUserInput handles something like '::1' as a file URL instead of an 

IPv6, so we first try to handle it as a valid IPv6, and if that fails we 

use QUrl.fromUserInput. 

WORKAROUND - https://bugreports.qt.io/browse/QTBUG-41089 

FIXME - Maybe https://codereview.qt-project.org/#/c/93851/ has a better way 

to solve this? 

https://github.com/qutebrowser/qutebrowser/issues/109 

Args: 

urlstr: The URL as string. 

Return: 

The converted QUrl. 

""" 

# First we try very liberally to separate something like an IPv6 from the 

# rest (e.g. path info or parameters) 

match = re.fullmatch(r'\[?([0-9a-fA-F:.]+)\]?(.*)', urlstr.strip()) 

if match: 

ipstr, rest = match.groups() 

else: 

ipstr = urlstr.strip() 

rest = '' 

# Then we try to parse it as an IPv6, and if we fail use 

# QUrl.fromUserInput. 

try: 

ipaddress.IPv6Address(ipstr) 

except ipaddress.AddressValueError: 

return QUrl.fromUserInput(urlstr) 

else: 

return QUrl('http://[{}]{}'.format(ipstr, rest)) 

def invalid_url_error(url, action): 

"""Display an error message for a URL. 

Args: 

action: The action which was interrupted by the error. 

""" 

if url.isValid(): 

raise ValueError("Calling invalid_url_error with valid URL {}".format( 

url.toDisplayString())) 

errstring = get_errstring( 

url, "Trying to {} with invalid URL".format(action)) 

message.error(errstring) 

def raise_cmdexc_if_invalid(url): 

"""Check if the given QUrl is invalid, and if so, raise a CommandError.""" 

if not url.isValid(): 

raise cmdexc.CommandError(get_errstring(url)) 

def get_path_if_valid(pathstr, cwd=None, relative=False, check_exists=False): 

"""Check if path is a valid path. 

Args: 

pathstr: The path as string. 

cwd: The current working directory, or None. 

relative: Whether to resolve relative files. 

check_exists: Whether to check if the file 

actually exists of filesystem. 

Return: 

The path if it is a valid path, None otherwise. 

""" 

pathstr = pathstr.strip() 

log.url.debug("Checking if {!r} is a path".format(pathstr)) 

expanded = os.path.expanduser(pathstr) 

if os.path.isabs(expanded): 

path = expanded 

elif relative and cwd: 

path = os.path.join(cwd, expanded) 

elif relative: 

try: 

path = os.path.abspath(expanded) 

except OSError: 

path = None 

else: 

path = None 

if check_exists: 

if path is not None: 

try: 

if os.path.exists(path): 

log.url.debug("URL is a local file") 

else: 

path = None 

except UnicodeEncodeError: 

log.url.debug( 

"URL contains characters which are not present in the " 

"current locale") 

path = None 

return path 

def filename_from_url(url): 

"""Get a suitable filename from a URL. 

Args: 

url: The URL to parse, as a QUrl. 

Return: 

The suggested filename as a string, or None. 

""" 

if not url.isValid(): 

return None 

pathname = posixpath.basename(url.path()) 

if pathname: 

return pathname 

elif url.host(): 

return url.host() + '.html' 

else: 

return None 

def host_tuple(url): 

"""Get a (scheme, host, port) tuple from a QUrl. 

This is suitable to identify a connection, e.g. for SSL errors. 

""" 

if not url.isValid(): 

raise InvalidUrlError(url) 

scheme, host, port = url.scheme(), url.host(), url.port() 

assert scheme 

if not host: 

raise ValueError("Got URL {} without host.".format( 

url.toDisplayString())) 

if port == -1: 

port_mapping = { 

'http': 80, 

'https': 443, 

'ftp': 21, 

} 

try: 

port = port_mapping[scheme] 

except KeyError: 

raise ValueError("Got URL {} with unknown port.".format( 

url.toDisplayString())) 

return scheme, host, port 

def get_errstring(url, base="Invalid URL"): 

"""Get an error string for a URL. 

Args: 

url: The URL as a QUrl. 

base: The base error string. 

Return: 

A new string with url.errorString() is appended if available. 

""" 

url_error = url.errorString() 

if url_error: 

return base + " - {}".format(url_error) 

else: 

return base 

def same_domain(url1, url2): 

"""Check if url1 and url2 belong to the same website. 

This will use a "public suffix list" to determine what a "top level domain" 

is. All further domains are ignored. 

For example example.com and www.example.com are considered the same. but 

example.co.uk and test.co.uk are not. 

Return: 

True if the domains are the same, False otherwise. 

""" 

if not url1.isValid(): 

raise InvalidUrlError(url1) 

if not url2.isValid(): 

raise InvalidUrlError(url2) 

suffix1 = url1.topLevelDomain() 

suffix2 = url2.topLevelDomain() 

if suffix1 == '': 

return url1.host() == url2.host() 

if suffix1 != suffix2: 

return False 

domain1 = url1.host()[:-len(suffix1)].split('.')[-1] 

domain2 = url2.host()[:-len(suffix2)].split('.')[-1] 

return domain1 == domain2 

def encoded_url(url): 

"""Return the fully encoded url as string. 

Args: 

url: The url to encode as QUrl. 

""" 

return bytes(url.toEncoded()).decode('ascii') 

class IncDecError(Exception): 

"""Exception raised by incdec_number on problems. 

Attributes: 

msg: The error message. 

url: The QUrl which caused the error. 

""" 

def __init__(self, msg, url): 

super().__init__(msg) 

self.url = url 

self.msg = msg 

def __str__(self): 

return '{}: {}'.format(self.msg, self.url.toString()) 

def _get_incdec_value(match, incdec, url, count): 

"""Get an incremented/decremented URL based on a URL match.""" 

pre, zeroes, number, post = match.groups() 

# This should always succeed because we match \d+ 

val = int(number) 

if incdec == 'decrement': 

if val <= 0: 

raise IncDecError("Can't decrement {}!".format(val), url) 

val -= count 

elif incdec == 'increment': 

val += count 

else: 

raise ValueError("Invalid value {} for indec!".format(incdec)) 

if zeroes: 

if len(number) < len(str(val)): 

zeroes = zeroes[1:] 

elif len(number) > len(str(val)): 

zeroes += '0' 

return ''.join([pre, zeroes, str(val), post]) 

def incdec_number(url, incdec, count=1, segments=None): 

"""Find a number in the url and increment or decrement it. 

Args: 

url: The current url 

incdec: Either 'increment' or 'decrement' 

count: The number to increment or decrement by 

segments: A set of URL segments to search. Valid segments are: 

'host', 'port', 'path', 'query', 'anchor'. 

Default: {'path', 'query'} 

Return: 

The new url with the number incremented/decremented. 

Raises IncDecError if the url contains no number. 

""" 

if not url.isValid(): 

raise InvalidUrlError(url) 

if segments is None: 

segments = {'path', 'query'} 

valid_segments = {'host', 'port', 'path', 'query', 'anchor'} 

if segments - valid_segments: 

extra_elements = segments - valid_segments 

raise IncDecError("Invalid segments: {}".format( 

', '.join(extra_elements)), url) 

# Make a copy of the QUrl so we don't modify the original 

url = QUrl(url) 

# Order as they appear in a URL 

segment_modifiers = [ 

('host', url.host, url.setHost), 

('port', lambda: str(url.port()) if url.port() > 0 else '', 

lambda x: url.setPort(int(x))), 

('path', url.path, url.setPath), 

('query', url.query, url.setQuery), 

('anchor', url.fragment, url.setFragment), 

] 

# We're searching the last number so we walk the url segments backwards 

for segment, getter, setter in reversed(segment_modifiers): 

if segment not in segments: 

continue 

# Get the last number in a string 

match = re.fullmatch(r'(.*\D|^)(0*)(\d+)(.*)', getter()) 

if not match: 

continue 

setter(_get_incdec_value(match, incdec, url, count)) 

return url 

raise IncDecError("No number found in URL!", url) 

def file_url(path): 

"""Return a file:// url (as string) to the given local path. 

Arguments: 

path: The absolute path to the local file 

""" 

return QUrl.fromLocalFile(path).toString(QUrl.FullyEncoded) 

def data_url(mimetype, data): 

"""Get a data: QUrl for the given data.""" 

b64 = base64.b64encode(data).decode('ascii') 

url = QUrl('data:{};base64,{}'.format(mimetype, b64)) 

qtutils.ensure_valid(url) 

return url 

def safe_display_string(qurl): 

"""Get a IDN-homograph phishing safe form of the given QUrl. 

If we're dealing with a Punycode-encoded URL, this prepends the hostname in 

its encoded form, to make sure those URLs are distinguishable. 

See https://github.com/qutebrowser/qutebrowser/issues/2547 

and https://bugreports.qt.io/browse/QTBUG-60365 

""" 

if not qurl.isValid(): 

raise InvalidUrlError(qurl) 

host = qurl.host(QUrl.FullyEncoded) 

if '..' in host: # pragma: no cover 

# WORKAROUND for https://bugreports.qt.io/browse/QTBUG-60364 

return '(unparseable URL!) {}'.format(qurl.toDisplayString()) 

for part in host.split('.'): 

if part.startswith('xn--') and host != qurl.host(QUrl.FullyDecoded): 

return '({}) {}'.format(host, qurl.toDisplayString()) 

return qurl.toDisplayString() 

def query_string(qurl): 

"""Get a query string for the given URL. 

This is a WORKAROUND for: 

https://www.riverbankcomputing.com/pipermail/pyqt/2017-November/039702.html 

""" 

try: 

return qurl.query() 

except AttributeError: # pragma: no cover 

return QUrlQuery(qurl).query() 

class InvalidProxyTypeError(Exception): 

"""Error raised when proxy_from_url gets an unknown proxy type.""" 

def __init__(self, typ): 

super().__init__("Invalid proxy type {}!".format(typ)) 

def proxy_from_url(url): 

"""Create a QNetworkProxy from QUrl and a proxy type. 

Args: 

url: URL of a proxy (possibly with credentials). 

Return: 

New QNetworkProxy. 

""" 

if not url.isValid(): 

raise InvalidUrlError(url) 

scheme = url.scheme() 

if scheme in ['pac+http', 'pac+https', 'pac+file']: 

fetcher = pac.PACFetcher(url) 

fetcher.fetch() 

return fetcher 

types = { 

'http': QNetworkProxy.HttpProxy, 

'socks': QNetworkProxy.Socks5Proxy, 

'socks5': QNetworkProxy.Socks5Proxy, 

'direct': QNetworkProxy.NoProxy, 

} 

if scheme not in types: 

raise InvalidProxyTypeError(scheme) 

proxy = QNetworkProxy(types[scheme], url.host()) 

if url.port() != -1: 

proxy.setPort(url.port()) 

if url.userName(): 

proxy.setUser(url.userName()) 

if url.password(): 

proxy.setPassword(url.password()) 

return proxy