secenv 0.0.0

Secure environments.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48

use {
    anyhow::{
        Context,
        Result,
    },
    std::{
        io::Write,
        process::{
            Command,
            Stdio,
        },
    },
};

pub struct PgpManager;

impl PgpManager {
    pub fn new() -> Result<Self> {
        Ok(Self)
    }

    pub fn decrypt(&self, _key_fingerprint: &str, encrypted_data: &str) -> Result<String> {
        let mut child = Command::new("gpg")
            .args(&["--decrypt", "--quiet"])
            .stdin(Stdio::piped())
            .stdout(Stdio::piped())
            .stderr(Stdio::piped())
            .spawn()
            .context("Failed to spawn gpg process")?;

        if let Some(stdin) = child.stdin.as_mut() {
            stdin
                .write_all(encrypted_data.as_bytes())
                .context("Failed to write encrypted data to gpg stdin")?;
        }

        let output = child.wait_with_output().context("Failed to read gpg output")?;

        if !output.status.success() {
            let stderr = String::from_utf8_lossy(&output.stderr);
            return Err(anyhow::anyhow!("GPG decryption failed: {}", stderr));
        }

        let decrypted_data = String::from_utf8(output.stdout).context("Decrypted data is not valid UTF-8")?;

        Ok(decrypted_data)
    }
}