Skip to content

Check symlink target in tar extraction fallback for Pythons without data_filter #13538

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Check symlink target in tar extraction fallback for Pythons without data_filter #13538

wants to merge 2 commits into from

Conversation

sethmlarson
Copy link
Contributor

Closes #13537

@notatallshaw
Copy link
Member

@sethmlarson thanks for the PR, do you know why Python 3.9 is failing (at least for MacOS)?

@notatallshaw
Copy link
Member

Here's the relevant issue & PR that added the logic you are removing #288 / #293.

Old pip workarounds are usually in there for a reason, and I don't see much documentation from Python on how extractfile should handle symlinks, so it is a bit concerning to remove this.

That said, given it's calling a non-public function it's probably for the best.

@sethmlarson sethmlarson changed the title Let tarfile.extractfile() handle symlinks, even without data_filter [DNM] Let tarfile.extractfile() handle symlinks, even without data_filter Aug 12, 2025
@sethmlarson
Copy link
Contributor Author

@notatallshaw I'll figure out CI, I should have opened this one as a draft but unfortunately there's no going back once it's opened. Will ping again once we get it figured out.

@notatallshaw
Copy link
Member

@sethmlarson don't worry about draft / not draft status, we typically will only merge with an independent maintainer approval and all tests passing.

@sethmlarson sethmlarson changed the title [DNM] Let tarfile.extractfile() handle symlinks, even without data_filter Check symlink target in tar extraction fallback for Pythons without data_filter Aug 13, 2025
@sethmlarson
Copy link
Contributor Author

@notatallshaw Okay, now this PR should be ready for review!

@ichard26
Copy link
Member

@sethmlarson I'm sure if I dug into the unit tests I'd figure it out, but I would appreciate an explanation of why this is necessary or what benefits doing this check brings. I'm not a huge fan of using private functions (especially with how well that worked out with Black).

@notatallshaw
Copy link
Member

As @ichard26 says, I'm a bit confused, this PR started off by removing code, and the news entry still seems to reflect that, but now it just adds an extra private function call.

notatallshaw
notatallshaw requested changes Aug 18, 2025
View reviewed changes
tests/unit/test_utils_unpacking.py
reason="tarfile filters (PEP-721) must be absent",
)
def test_unpack_tar_data_filter_bad_links_parent_dir(self) -> None:
evil_link = "../../../evil"
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

When these test fails it leaves a file at /tmp/evil which is not cleaned up. Which causes subsequent runs to fail even if they are good.

Can you do something to handle this? Maybe extract to a sub directory of this temporary directory?

tests/unit/test_utils_unpacking.py
reason="tarfile filters (PEP-721) not available",
)
def test_unpack_tar_no_data_filter_bad_links_parent_dir(self) -> None:
evil_link = "../../../evil"
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This one too I think.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@notatallshaw notatallshaw notatallshaw requested changes

Assignees
No one assigned
Labels
bot:chronographer:provided
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Allow tarfile.extractfile() to handle symlinks, even without data_filter support
3 participants
@sethmlarson @notatallshaw @ichard26