54.4 tarfile: Working with .tar, .tar.gz, and .tar.bz2
The tarfile module in Python provides a comprehensive and Pythonic interface for handling tar archives, including those compressed with popular algorithms like gzip and bzip2. It abstracts the complexities of the underlying system’s tar command, offering a cross-platform solution for creating, extracting, and inspecting archive files. The module’s design elegantly handles the distinction between the archive format (ustar, pax, or gnu) and the compression filter (none, gzip, bzip2, or xz), which is crucial for understanding its operation.
Opening a Tarfile: Understanding Modes
The tarfile.open() function is the primary entry point, and its mode parameter dictates what operations can be performed. The mode is a string that combines the intended action with the compression type. Getting this right is critical to avoiding common errors like “ReadError” or “CompressionError”.
'r': Read mode (default). Opens an existing archive for reading transparently. It automatically detects the compression based on the file extension (e.g.,.tar.gzis recognized as gzip).'w': Write mode. Creates a new archive, overwriting any existing file. No compression is applied unless specified in the mode.'a': Append mode. Adds new files to the end of an existing archive. This is not supported for compressed archives.'x': Exclusive creation mode. Fails if the file already exists, preventing accidental overwrites.
To specify compression, you append to the mode character: ':gz' for gzip, ':bz2' for bzip2, and ':xz' for lzma. Therefore, 'w:gz' opens a file for writing with gzip compression. It’s a best practice to always explicitly state the mode, even when reading.
import tarfile
# Reading a compressed tar archive (autodetection)
with tarfile.open('backup.tar.gz', 'r') as tar:
tar.list() # Prints contents to console
# Explicitly opening a bzip2 compressed archive for reading
with tarfile.open('data.tar.bz2', 'r:bz2') as tar:
names = tar.getnames()
print(f"Archive contains: {names}")
# Creating a new gzipped tar archive
with tarfile.open('project_release.tar.gz', 'w:gz') as tar:
tar.add('my_project/', arcname='project') # Adds the entire directory
# Exclusive creation: fails safely if file exists
try:
with tarfile.open('new_archive.tar', 'x') as tar:
tar.add('important_file.txt')
except FileExistsError:
print("Archive already exists. Aborting to prevent overwrite.")
Extracting Files Safely
The extract() and extractall() methods are used to retrieve files from an archive. A paramount security best practice, often overlooked, is to never extract archives from untrusted sources without precautions. A maliciously crafted archive could contain absolute paths (e.g., /etc/passwd) or paths with .. that could overwrite critical system files outside the target directory.
To mitigate this, tarfile provides the filter parameter in Python 3.12+. For earlier versions, you must sanitize paths yourself. The 'data' filter is the safe default, which removes potentially harmful metadata and absolutes paths.
# SAFE: Using the filter parameter (Python 3.12+)
with tarfile.open('archive.tar.gz', 'r:gz') as tar:
tar.extractall(path='output_dir/', filter='data') # Security best practice
# UNSAFE: Extraction without a filter on an older Python version
# This is vulnerable to path traversal attacks if the archive is malicious.
# with tarfile.open('untrusted_archive.tar') as tar:
# tar.extractall('output_dir/')
# Alternative for older versions: Sanitize each member's path manually
def safe_extract(tar, path="."):
for member in tar.getmembers():
member_path = os.path.realpath(os.path.join(path, member.name))
if not member_path.startswith(os.path.realpath(path)):
raise ValueError(f"Blocked path traversal attempt: {member.name}")
tar.extractall(path)
with tarfile.open('archive.tar') as tar:
safe_extract(tar, 'output_dir')
Creating Archives and Controlling Paths
When adding files with tar.add(), the arcname parameter is essential for controlling the structure of the archive. Without it, the entire absolute or relative path of the file on your local system is stored inside the archive, which is often undesirable. Using arcname, you can create a clean, predictable archive structure.
import tarfile
import os
# Creates a messy archive containing the full path 'Users/me/project/file.txt'
with tarfile.open('messy.tar', 'w') as tar:
tar.add('/Users/me/project/file.txt')
# Creates a clean archive containing only 'file.txt' at the root
with tarfile.open('clean.tar', 'w') as tar:
tar.add('/Users/me/project/file.txt', arcname='file.txt')
# Best practice: Add a directory, renaming it for a clean root
with tarfile.open('project_clean.tar.gz', 'w:gz') as tar:
tar.add('my_source_code/', arcname='project_source') # Entire dir is now under 'project_source/'
Inspecting Archive Contents Without Extraction
The tarfile module allows you to inspect an archive’s contents as a list of TarInfo objects without extracting a single byte. These objects contain rich metadata about each member (file, link, or directory) in the archive, such as name, size, modification time, and permissions. The getmembers() method retrieves all of them, while getmember() finds a specific one by name.
with tarfile.open('database_dump.tar.bz2', 'r:bz2') as tar:
# Get a list of all members and their details
members = tar.getmembers()
for info in members:
print(f"{info.name}: {info.size} bytes, {info.mtime}")
# Get a specific file's metadata
try:
specific_info = tar.getmember('backups/full.sql')
print(f"\nSpecific file size: {specific_info.size} bytes")
except KeyError:
print("File not found in archive.")
# Use the list to extract only a specific file type
for member in members:
if member.name.endswith('.json'):
tar.extract(member, path='extracted_configs/')
print(f"Extracted {member.name}")