Onionr/src/safedb/securestring/__init__.py

import os
from typing import Union

import subprocess

from filepaths import secure_erase_key_file, app_root
import logger

_rinseoff = f"{app_root}/src/rinseoff/rinseoffcli"


def generate_secure_string_key_file():
    if os.path.exists(secure_erase_key_file):
        raise FileExistsError

    process = subprocess.Popen(
                           ["dotnet", "run",
                            "--project", _rinseoff,
                            "keygen", f"{secure_erase_key_file}"],
                           stdout=subprocess.PIPE,
                           stderr=subprocess.PIPE)
    res = process.communicate()

    if res[0]:
        for line in res[0].decode('utf-8').split('\n'):
            logger.info(line, terminal=True)
    if res[1]:
        logger.warn("Error when generating database encryption keyfile")
        for line in res[1].decode('utf-8').split('\n'):
            logger.error(line, terminal=True)
        raise subprocess.CalledProcessError


def secure_string_create(plaintext: Union[bytes, bytearray, str]) -> bytes:
    """Create a "secure" string. Dont really rely on this, and dont use for comms

    This is just to make forensics a little harder"""
    try:
        plaintext = plaintext.encode('utf-8')
    except AttributeError:
        pass


    process = subprocess.Popen(
                           ["dotnet", "run",
                            "--project", _rinseoff,
                            "store", "stdout", f"{secure_erase_key_file}"],
                           stdout=subprocess.PIPE,
                           stderr=subprocess.PIPE,
                           stdin=subprocess.PIPE)
    res = process.communicate(plaintext)

    if res[0] and not res[1]:
        return res[0]
    else:
        logger.warn("Error when encrypting plaintext", terminal=True)
        for line in res[1].decode('utf-8').split('\n'):
            logger.error(line, terminal=True)
        raise subprocess.CalledProcessError
added work on faster and safer database for blocks and general KV 2020-12-30 06:48:59 +00:00			`import os`
			`from typing import Union`

			`import subprocess`

			`from filepaths import secure_erase_key_file, app_root`
			`import logger`

			`_rinseoff = f"{app_root}/src/rinseoff/rinseoffcli"`




			`def generate_secure_string_key_file():`
			`if os.path.exists(secure_erase_key_file):`
			`raise FileExistsError`

			`process = subprocess.Popen(`
			`["dotnet", "run",`
			`"--project", _rinseoff,`
			`"keygen", f"{secure_erase_key_file}"],`
			`stdout=subprocess.PIPE,`
			`stderr=subprocess.PIPE)`
			`res = process.communicate()`

			`if res[0]:`
			`for line in res[0].decode('utf-8').split('\n'):`
			`logger.info(line, terminal=True)`
			`if res[1]:`
			`logger.warn("Error when generating database encryption keyfile")`
			`for line in res[1].decode('utf-8').split('\n'):`
			`logger.error(line, terminal=True)`
			`raise subprocess.CalledProcessError`



			`def secure_string_create(plaintext: Union[bytes, bytearray, str]) -> bytes:`
			`"""Create a "secure" string. Dont really rely on this, and dont use for comms`

			`This is just to make forensics a little harder"""`
			`try:`
			`plaintext = plaintext.encode('utf-8')`
			`except AttributeError:`
			`pass`


			`process = subprocess.Popen(`
			`["dotnet", "run",`
			`"--project", _rinseoff,`
			`"store", "stdout", f"{secure_erase_key_file}"],`
			`stdout=subprocess.PIPE,`
			`stderr=subprocess.PIPE,`
			`stdin=subprocess.PIPE)`
			`res = process.communicate(plaintext)`

			`if res[0] and not res[1]:`
			`return res[0]`
			`else:`
			`logger.warn("Error when encrypting plaintext", terminal=True)`
			`for line in res[1].decode('utf-8').split('\n'):`
			`logger.error(line, terminal=True)`
			`raise subprocess.CalledProcessError`