Don't quote the multipart boundary header. #63

nex3 · 2017-03-06T20:48:49Z

This is be more broadly compatible than the quoted version, although the
quoted version is what's described by the spec. curl and browsers send
unquoted boundaries, so we can safely assume that any server will
support them.

Closes #61

This is be more broadly compatible than the quoted version, although the quoted version is what's described by the spec. curl and browsers send unquoted boundaries, so we can safely assume that any server will support them. Closes #61

yjbanov · 2017-03-06T20:58:16Z

lib/src/multipart_request.dart

@@ -83,7 +83,7 @@ class MultipartRequest extends BaseRequest {
  ByteStream finalize() {
    // TODO(nweiz): freeze fields and files
    var boundary = _boundaryString();
-    headers['content-type'] = 'multipart/form-data; boundary="$boundary"';
+    headers['content-type'] = 'multipart/form-data; boundary=$boundary';


I think we'll have to remove 39 (') and 61 (=) in _BOUNDARY_CHARACTERS for this to really work. I'd actually leave just alpha-numerics, 95 (underscore) and 45 (hyphen). I think all others play some special role in URL encoding, so I'd leave them out just in case.

Here are the suspicious ones:

39: ' 40: ( 41: ) 43: + 44: , 46: . 47: / 58: : 61: = 63: ?

I don't want to go alphanumeric-only unless we absolutely have to, but I've removed all the characters that aren't valid in MIME tokens.

yjbanov

LGTM

tvolkert · 2017-03-28T23:16:48Z

FYI, this change causes the following tests to fail:

https://github.com/dart-lang/http/blob/0.11.3%2B12/test/multipart_test.dart
https://github.com/dart-lang/http/blob/0.11.3%2B12/test/io/multipart_test.dart

FYI, I've disabled the tests internally when bumping the version of package:http within Google.

kevmoo · 2017-03-28T23:47:29Z

@yjbanov any chance you could look at the failing tests?

yjbanov · 2017-03-29T04:21:50Z

I'll take a look.

This is be more broadly compatible than the quoted version, although the quoted version is what's described by the spec. curl and browsers send unquoted boundaries, so we can safely assume that any server will support them. Closes dart-lang#61

Don't quote the multipart boundary header.

f0c6d86

This is be more broadly compatible than the quoted version, although the quoted version is what's described by the spec. curl and browsers send unquoted boundaries, so we can safely assume that any server will support them. Closes #61

googlebot added the cla: yes label Mar 6, 2017

nex3 assigned yjbanov Mar 6, 2017

yjbanov reviewed Mar 6, 2017

View reviewed changes

Only use valid token characters in the boundary.

95fa014

yjbanov approved these changes Mar 6, 2017

View reviewed changes

nex3 merged commit 9076857 into 0.11.x Mar 7, 2017

nex3 deleted the multipart-boundary branch March 7, 2017 20:58

yjbanov mentioned this pull request Mar 29, 2017

Investigate/fix test failures after boundary change #71

Closed

aliaafreen mentioned this pull request Nov 24, 2022

SocketException: Connection timed out (OS Error: Connection timed out, errno = 110) #831

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Don't quote the multipart boundary header. #63

Don't quote the multipart boundary header. #63

nex3 commented Mar 6, 2017

yjbanov Mar 6, 2017

yjbanov Mar 6, 2017

nex3 Mar 6, 2017

yjbanov left a comment

tvolkert commented Mar 28, 2017

kevmoo commented Mar 28, 2017

yjbanov commented Mar 29, 2017

Don't quote the multipart boundary header. #63

Don't quote the multipart boundary header. #63

Conversation

nex3 commented Mar 6, 2017

yjbanov Mar 6, 2017

Choose a reason for hiding this comment

yjbanov Mar 6, 2017

Choose a reason for hiding this comment

nex3 Mar 6, 2017

Choose a reason for hiding this comment

yjbanov left a comment

Choose a reason for hiding this comment

tvolkert commented Mar 28, 2017

kevmoo commented Mar 28, 2017

yjbanov commented Mar 29, 2017