app-MAIL-temp/app/pgp_utils.py

from io import BytesIO

import gnupg
from memory_profiler import memory_usage

from app.config import GNUPGHOME
from app.log import LOG
from app.utils import random_string

gpg = gnupg.GPG(gnupghome=GNUPGHOME)
gpg.encoding = "utf-8"


class PGPException(Exception):
    pass


def load_public_key(public_key: str) -> str:
    """Load a public key into keyring and return the fingerprint. If error, raise Exception"""
    import_result = gpg.import_keys(public_key)
    try:
        return import_result.fingerprints[0]
    except Exception as e:
        raise PGPException("Cannot load key") from e


def encrypt_file(data: BytesIO, fingerprint: str) -> str:
    LOG.d("encrypt for %s", fingerprint)
    mem_usage = memory_usage(-1, interval=1, timeout=1)
    LOG.d("mem_usage %s", mem_usage)

    r = gpg.encrypt_file(data, fingerprint, always_trust=True)
    if not r.ok:
        LOG.error("Try encrypt again %s", fingerprint)
        r = gpg.encrypt_file(data, fingerprint, always_trust=True)
        if not r.ok:
            # save the content for debugging
            random_file_name = random_string(20) + ".eml"
            full_path = f"/tmp/{random_file_name}"
            with open(full_path, "wb") as f:
                f.write(data.getbuffer())
            LOG.error("PGP fail - log to %s", full_path)
            raise PGPException("Cannot encrypt")

    return str(r)
use BytesIO as input when encrypting 2020-04-02 21:29:16 +02:00			`from io import BytesIO`

add pgp_utils 2020-03-08 12:51:33 +01:00			`import gnupg`
log memory usage in encrypt_file() 2020-06-07 09:47:35 +02:00			`from memory_profiler import memory_usage`
add pgp_utils 2020-03-08 12:51:33 +01:00
			`from app.config import GNUPGHOME`
log the failed encrypted content to debug 2020-06-05 10:10:21 +02:00			`from app.log import LOG`
			`from app.utils import random_string`
add pgp_utils 2020-03-08 12:51:33 +01:00
			`gpg = gnupg.GPG(gnupghome=GNUPGHOME)`
use utf-8 for PGP 2020-03-13 12:54:52 +01:00			`gpg.encoding = "utf-8"`
add pgp_utils 2020-03-08 12:51:33 +01:00
encrypt forwarded emails to gpg-enabled mailbox 2020-03-08 23:07:23 +01:00
add pgp_utils 2020-03-08 12:51:33 +01:00			`class PGPException(Exception):`
			`pass`

encrypt forwarded emails to gpg-enabled mailbox 2020-03-08 23:07:23 +01:00
add pgp_utils 2020-03-08 12:51:33 +01:00			`def load_public_key(public_key: str) -> str:`
			`"""Load a public key into keyring and return the fingerprint. If error, raise Exception"""`
			`import_result = gpg.import_keys(public_key)`
			`try:`
			`return import_result.fingerprints[0]`
			`except Exception as e:`
			`raise PGPException("Cannot load key") from e`


use BytesIO as input when encrypting 2020-04-02 21:29:16 +02:00			`def encrypt_file(data: BytesIO, fingerprint: str) -> str:`
log memory usage in encrypt_file() 2020-06-07 09:47:35 +02:00			`LOG.d("encrypt for %s", fingerprint)`
			`mem_usage = memory_usage(-1, interval=1, timeout=1)`
			`LOG.d("mem_usage %s", mem_usage)`

use BytesIO as input when encrypting 2020-04-02 21:29:16 +02:00			`r = gpg.encrypt_file(data, fingerprint, always_trust=True)`
add pgp_utils 2020-03-08 12:51:33 +01:00			`if not r.ok:`
try encrypt again if fail 2020-06-06 23:06:34 +02:00			`LOG.error("Try encrypt again %s", fingerprint)`
			`r = gpg.encrypt_file(data, fingerprint, always_trust=True)`
			`if not r.ok:`
			`# save the content for debugging`
			`random_file_name = random_string(20) + ".eml"`
			`full_path = f"/tmp/{random_file_name}"`
			`with open(full_path, "wb") as f:`
			`f.write(data.getbuffer())`
stop the email handler process when PGP error 2020-06-07 11:41:35 +02:00			`LOG.error("PGP fail - log to %s", full_path)`
try encrypt again if fail 2020-06-06 23:06:34 +02:00			`raise PGPException("Cannot encrypt")`
add pgp_utils 2020-03-08 12:51:33 +01:00
			`return str(r)`