bpo-34226: fix cgi.parse_multipart without content_length

[Roger]

In Python 3.7 the behavior of parse_multipart changed requiring CONTENT-LENGTH
header, this fix remove this header as required and fix FieldStorage
read_lines_to_outerboundary, by not using limit when it's negative,
since by default it's -1 if not content-length and keeps substracting what
was read from the file object.

Also added a test case for this problem.

https://bugs.python.org/issue34226

Automerge-Triggered-By: @orsenthil

[pablogsal]

Please, simplify this to:

if 0 <= self.limit <= _read

[Roger]

done, thanks!

[yan12125]

Thanks a lot for this PR! Here are my two cents:

• Looks like a NEWS entry is necessary
• It would be great to backport this fix to the 3.7 branch. I think that can be done by adding a needs backport to 3.7 label by a core developer?

[zooba]

This looks good - we just need a NEWS entry. Click on "Details" next to the failed check for info on how to install and use blurb. (The title of this PR - properly captialised - will be a fine entry, and it can go in the "Library" category.)

[Roger]

Should I backport to python 3.7?

[yan12125]

Normally backporting will be carried out automatically by nice bots after the PR for master is merged :)

After the pull request has been merged, miss-islington (bot) will first try to do the backport automatically. In case that miss-islington is unable to do it, then the pull request author or the core developer who merged it should look into backporting it themselves, using the backport generated by cherry_picker.py as a starting point.

(From https://devguide.python.org/committing/#backporting-changes-to-an-older-version)

[pablogsal]

Use formatting for cgi.parse_multipart:

cgi.parse_multipart -> cgi.parse_multipart.

Also, add "Patch by Roger Duran" at the end.

[Roger]

Ok, fixed

[yan12125]

Hi, here's a typo => test_parse_multipart_without_content_legth should be test_parse_multipart_without_content_length (missing "n")

[Roger]

Good catch!, fixed

[yan12125]

@pablogsal @zooba Is there anything to do for this PR? As per PEP 537:

3.7.1: 2018-07-xx

I guess 3.7.1 is coming soon. I hope this PR can get merged before that.

[yan12125]

The updated PEP 537 states that 3.7.1rc1 is coming the next week

• 3.7.1 candidate 1: 2018-09-18

Can this patch be reviewed and merged before that?

[Roger]

Hi, just notice that this patch it's not yet merged, is there any change to be done?

[victorzhuk]

If you are waiting this PR as me, temporary solution CONTENT_LENGTH=0 python app.py or define CONTENT_LENGTH=0 env inside python script

[YtvwlD]

Hey, this patch is still not merged. What is missing? (This is preventing me from upgrading an app to 3.7.)

Also, the workaround CONTENT_LENGTH=0 doesn't really work for me as it creates now a different exception.

[srinivasreddy]

@Roger Could you please resolve conflicts?

[Roger]

@Roger Could you please resolve conflicts?

sure

[orsenthil]

I like this change. It looks like in #991 while concentrating on encoding, I missed to notice that the variable being looked for was CONTENT-LENGTH instead of CONTENT_LENGTH. Sad.

This change will address that regression introduced in 3.7. I will merge this and set the label to backport to 3.7

• I verified the logic of this change.
• Verified the test suite that we are good with this change.

[miss-islington]

Thanks @Roger for the PR 🌮🎉.. I'm working now to backport this PR to: 3.7, 3.8, 3.9.
🐍🍒⛏🤖

[bedevere-bot]

GH-20890 is a backport of this pull request to the 3.9 branch.

[bedevere-bot]

GH-20891 is a backport of this pull request to the 3.8 branch.

[bedevere-bot]

GH-20892 is a backport of this pull request to the 3.7 branch.