| 12345678910111213141516171819202122232425262728293031323334353637383940 |
- from io import BytesIO
- import gnupg
- from app.config import GNUPGHOME
- from app.log import LOG
- from app.utils import random_string
- gpg = gnupg.GPG(gnupghome=GNUPGHOME)
- gpg.encoding = "utf-8"
- class PGPException(Exception):
- pass
- def load_public_key(public_key: str) -> str:
- """Load a public key into keyring and return the fingerprint. If error, raise Exception"""
- import_result = gpg.import_keys(public_key)
- try:
- return import_result.fingerprints[0]
- except Exception as e:
- raise PGPException("Cannot load key") from e
- def encrypt_file(data: BytesIO, fingerprint: str) -> str:
- r = gpg.encrypt_file(data, fingerprint, always_trust=True)
- if not r.ok:
- LOG.error("Try encrypt again %s", fingerprint)
- r = gpg.encrypt_file(data, fingerprint, always_trust=True)
- if not r.ok:
- # save the content for debugging
- random_file_name = random_string(20) + ".eml"
- full_path = f"/tmp/{random_file_name}"
- with open(full_path, "wb") as f:
- f.write(data.getbuffer())
- LOG.error("Log to %s", full_path)
- raise PGPException("Cannot encrypt")
- return str(r)
|
