tags:

views:

324

answers:

2
+3  Q: 

Generating multipart boundary

I'm writing a script that uploads a file to a cgi script that expects a multipart request, such as a form on a HTML page. The boundary is a unique token that annotates the file contents in the request body. Here's an example body:

--BOUNDARY
Content-Disposition: form-data; name="paramname"; filename="foo.txt"
Content-Type: text/plain

... file contents here ...
--BOUNDARY--

The boundary cannot be present in the file contents, for obvious reasons.

What should I do in order to create an unique boundary? Should I generate a random string, check to see if it is in the file contents, and if it is, generate a new, rinse and repeat, until I have a unique string? Or would a "pretty random token" (say, combination of timestamp, process id, etc) be enough?

A: 

If you are feeling paranoid, you can generate a random boundary and search for it in the string to be sent, append random char on find. But my experience is any arbitrary non-dictionary string of 10 or so characters is about impossible to occur, so picking something like ---BOUNDARY---BOUNDARY---BOUNDARY--- is perfectly sufficient.

SF.  2010-01-15 12:31:59
No, it is not sufficient. Because you won't be able to send your program source code (or this comment) using your program.
stepancheg  2010-07-03 17:36:34
@stepancheg: It seems you are feeling paranoid, in this case use the solution from the first paragraph of my answer. If you are mentally healthy though, use `Content-Encoding: gzip` and stop worrying about users out there trying to get you.
SF.  2010-07-05 08:42:56
+2  A: 

If you use something random enough like a GUID there shouldn't be any need to hunt through the payload to check for an alias of the boundary. Something like:-

----=NextPart_3676416B-9AD6-440C-B3C8-FC66DDC7DB45
Header:....

Payload
----=NextPart_3676416B-9AD6-440C-B3C8-FC66DDC7DB45--

AnthonyWJones  2010-01-15 12:34:29
Thanks! Your answer is just as good as the tagged answer, but he needed the rep more than you did ;)
August Lilleaas  2010-01-15 18:45:53

related questions

SQL-Query with a multi-part identifier problem within a subquery
Browser support of multipart responses
Separate text and html part from incoming email
JavaMail BaseEncode64 Error
Multipart email message
Problem in displaying " inline attachment "
Python App Engine uploaded image content-type
How to write a MultiPart download C++ program
How can I make a multipart/form-data POST request using Java?
Enumeration hasMoreElements()
Python standard library to POST multipart/form-data encoded data
Mail problem with Hungarian characters
Multi-part gzip file random access (in Java)
How to download multiple files with one HTTP request?
A custom ActionResult for a multi-part http response?
Send Multi-Part Email from iPhone App
Multipart File Upload in Ruby
Python: Sending Multipart html emails which contain embedded images
What should a Multipart HTTP request with multiple files look like?
What do the numbers in a multi-part email mean?
Can a long file upload be handled by a cluster of (Tomcat) servers where in if one server fails/crashes during the upload, another one picks it up
How should I serve ZIPped webpages?
Java: Receive a multipart HTTP response
Multipart response in Ruby/Rack
Receiving multipart POST data requests in PHP