| 123456789101112131415161718192021222324252627282930313233343536373839404142 |
- """Shared zip-bundle extraction for external parser engines.
- Engines like docling return their full output as a zip archive. This helper
- extracts it safely (refusing path traversal / absolute paths) into a target
- directory. Engine-specific post-extraction normalization (e.g. mineru's
- nested-subdir hoist) is *not* done here — each engine's client handles its
- own quirks.
- """
- from __future__ import annotations
- import io
- import os
- import zipfile
- from pathlib import Path
- def safe_extract_zip(payload: bytes, dest_dir: Path) -> list[str]:
- """Extract a zip archive into ``dest_dir``, refusing unsafe paths.
- Raises ``RuntimeError`` if any entry name is absolute or contains ``..``
- components after normalization. Returns the list of extracted member
- names (as stored in the zip, prior to OS-specific normalization), so
- callers can validate the bundle layout without re-walking the directory.
- """
- dest_dir.mkdir(parents=True, exist_ok=True)
- buf = io.BytesIO(payload)
- with zipfile.ZipFile(buf) as zf:
- names = zf.namelist()
- for name in names:
- norm = os.path.normpath(name)
- if (
- norm.startswith("..")
- or os.path.isabs(norm)
- or norm.startswith(("/", os.sep))
- ):
- raise RuntimeError(f"Refusing zip entry with unsafe path: {name!r}")
- zf.extractall(dest_dir)
- return names
- __all__ = ["safe_extract_zip"]
|
