app-MAIL-temp/app/pgp_utils.py

import os
from io import BytesIO

import gnupg
from memory_profiler import memory_usage

from app.config import GNUPGHOME
from app.log import LOG
from app.models import Mailbox, Contact

gpg = gnupg.GPG(gnupghome=GNUPGHOME)
gpg.encoding = "utf-8"


class PGPException(Exception):
    pass


def load_public_key(public_key: str) -> str:
    """Load a public key into keyring and return the fingerprint. If error, raise Exception"""
    import_result = gpg.import_keys(public_key)
    try:
        return import_result.fingerprints[0]
    except Exception as e:
        raise PGPException("Cannot load key") from e


def hard_exit():
    pid = os.getpid()
    LOG.warning("kill pid %s", pid)
    os.kill(pid, 9)


def encrypt_file(data: BytesIO, fingerprint: str) -> str:
    LOG.d("encrypt for %s", fingerprint)
    mem_usage = memory_usage(-1, interval=1, timeout=1)[0]
    LOG.d("mem_usage %s", mem_usage)

    r = gpg.encrypt_file(data, fingerprint, always_trust=True)
    if not r.ok:
        # maybe the fingerprint is not loaded on this host, try to load it
        found = False
        # searching for the key in mailbox
        mailbox = Mailbox.get_by(pgp_finger_print=fingerprint)
        if mailbox:
            LOG.d("(re-)load public key for %s", mailbox)
            load_public_key(mailbox.pgp_public_key)
            found = True

        # searching for the key in contact
        contact = Contact.get_by(pgp_finger_print=fingerprint)
        if contact:
            LOG.d("(re-)load public key for %s", contact)
            load_public_key(contact.pgp_public_key)
            found = True

        if found:
            LOG.d("retry to encrypt")
            data.seek(0)
            r = gpg.encrypt_file(data, fingerprint, always_trust=True)

        if not r.ok:
            raise PGPException(f"Cannot encrypt, status: {r.status}")

    return str(r)
hard exit when memory is more than 300MB 2020-06-08 13:53:27 +02:00			`import os`
use BytesIO as input when encrypting 2020-04-02 21:29:16 +02:00			`from io import BytesIO`

add pgp_utils 2020-03-08 12:51:33 +01:00			`import gnupg`
log memory usage in encrypt_file() 2020-06-07 09:47:35 +02:00			`from memory_profiler import memory_usage`
add pgp_utils 2020-03-08 12:51:33 +01:00
			`from app.config import GNUPGHOME`
log the failed encrypted content to debug 2020-06-05 10:10:21 +02:00			`from app.log import LOG`
also search for PGP key in contact 2020-08-08 10:26:24 +02:00			`from app.models import Mailbox, Contact`
add pgp_utils 2020-03-08 12:51:33 +01:00
			`gpg = gnupg.GPG(gnupghome=GNUPGHOME)`
use utf-8 for PGP 2020-03-13 12:54:52 +01:00			`gpg.encoding = "utf-8"`
add pgp_utils 2020-03-08 12:51:33 +01:00
encrypt forwarded emails to gpg-enabled mailbox 2020-03-08 23:07:23 +01:00
add pgp_utils 2020-03-08 12:51:33 +01:00			`class PGPException(Exception):`
			`pass`

encrypt forwarded emails to gpg-enabled mailbox 2020-03-08 23:07:23 +01:00
add pgp_utils 2020-03-08 12:51:33 +01:00			`def load_public_key(public_key: str) -> str:`
			`"""Load a public key into keyring and return the fingerprint. If error, raise Exception"""`
			`import_result = gpg.import_keys(public_key)`
			`try:`
			`return import_result.fingerprints[0]`
			`except Exception as e:`
			`raise PGPException("Cannot load key") from e`


hard exit when memory is more than 300MB 2020-06-08 13:53:27 +02:00			`def hard_exit():`
			`pid = os.getpid()`
			`LOG.warning("kill pid %s", pid)`
			`os.kill(pid, 9)`


use BytesIO as input when encrypting 2020-04-02 21:29:16 +02:00			`def encrypt_file(data: BytesIO, fingerprint: str) -> str:`
log memory usage in encrypt_file() 2020-06-07 09:47:35 +02:00			`LOG.d("encrypt for %s", fingerprint)`
hard exit when memory is more than 300MB 2020-06-08 13:53:27 +02:00			`mem_usage = memory_usage(-1, interval=1, timeout=1)[0]`
log memory usage in encrypt_file() 2020-06-07 09:47:35 +02:00			`LOG.d("mem_usage %s", mem_usage)`

use BytesIO as input when encrypting 2020-04-02 21:29:16 +02:00			`r = gpg.encrypt_file(data, fingerprint, always_trust=True)`
add pgp_utils 2020-03-08 12:51:33 +01:00			`if not r.ok:`
try to load the public key if encrypt fails for 1st time 2020-06-10 22:28:15 +02:00			`# maybe the fingerprint is not loaded on this host, try to load it`
also search for PGP key in contact 2020-08-08 10:26:24 +02:00			`found = False`
			`# searching for the key in mailbox`
try to load the public key if encrypt fails for 1st time 2020-06-10 22:28:15 +02:00			`mailbox = Mailbox.get_by(pgp_finger_print=fingerprint)`
			`if mailbox:`
			`LOG.d("(re-)load public key for %s", mailbox)`
			`load_public_key(mailbox.pgp_public_key)`
also search for PGP key in contact 2020-08-08 10:26:24 +02:00			`found = True`
try to load the public key if encrypt fails for 1st time 2020-06-10 22:28:15 +02:00
also search for PGP key in contact 2020-08-08 10:26:24 +02:00			`# searching for the key in contact`
			`contact = Contact.get_by(pgp_finger_print=fingerprint)`
			`if contact:`
			`LOG.d("(re-)load public key for %s", contact)`
			`load_public_key(contact.pgp_public_key)`
			`found = True`

			`if found:`
try to load the public key if encrypt fails for 1st time 2020-06-10 22:28:15 +02:00			`LOG.d("retry to encrypt")`
fix retry pgp 2020-06-12 00:01:21 +02:00			`data.seek(0)`
try to load the public key if encrypt fails for 1st time 2020-06-10 22:28:15 +02:00			`r = gpg.encrypt_file(data, fingerprint, always_trust=True)`

			`if not r.ok:`
			`raise PGPException(f"Cannot encrypt, status: {r.status}")`
add pgp_utils 2020-03-08 12:51:33 +01:00
			`return str(r)`