3 uQh@sdZddlZddlZddlmZddlmZmZmZm Z m Z m Z m Z m Z mZddlmZddlmZmZmZmZddlmZdd lmZdd lmZmZmZd d ZdddZdS)z This module contains several functions that authenticate the client machine with Telegram's servers, effectively creating an authorization key. N)sha1) ResPQ PQInnerDataServerDHParamsFailServerDHParamsOkServerDHInnerDataClientDHInnerDataDhGenOk DhGenRetry DhGenFail)helpers)AESAuthKey Factorizationrsa) SecurityError) BinaryReader)ReqPqMultiRequestReqDHParamsRequestSetClientDHParamsRequestc$s tjtjdddd}|jt|IdH}t|ts@td||j |krRt dt |j }t j|\}}tj|tj|}}tjtjdd dd}tttj||||j |j|d }d/\}} x(|jD]} tj| |}|dk r| } PqW|dkr&x0|jD]&} tj| |dd }|dk r| } PqW|dkrPt d jd jdd|jD|jt|j |j||| |dIdH} t| ttfstd| | j |j krt d| j|jkrt dt| trtjt|jdd ddjddd dd} | j| krt dt| ts td| tj |j|\} }t!| j"ddkrNt dt#j$| j"| |}t%|0}|j&d|j'}t|t(std|WdQRX|j |j krt d|j|jkrt dt |j)dd}|j*}t |j+dd}|j,tt-j-}t tjddd}t.|||}t.|||}d|ko>|dknsNt d d|kof|dknsvt d d|ko|dknst d!d"d0}||ko||knst d%||ko||knst d&tt/|j |jdtj|d'}t|j|}t#j0|| |}|jt1|j |j|d(IdH}t2t3t4f}t||srtd)||j5j6}|j |j krt d*j||j|jkrt d+j|t7tj|} d|j8t9|}!| j:||!}"t;|d,j|!}#|#|"krt d-t|t2std.|| |fS)1z Executes the authentication process with the Telegram servers. :param sender: a connected `MTProtoPlainSender`. :return: returns a (authorization key, time offset) tuple. bigT)signedNzStep 1 answer was %sz Step 1 invalid nonce from server little)pqpqnonce server_nonce new_nonce)Zuse_oldz6Step 2 could not find a valid key for fingerprints: {}z, cSsg|] }t|qS)str).0fr"r"B/tmp/pip-build-2nz6shyl/telethon/telethon/network/authenticator.py Gsz%do_authentication..)rr rrZpublic_key_fingerprintencrypted_datazStep 2.1 answer was %sz Step 2 invalid nonce from serverz'Step 2 invalid server nonce from serverz(Step 2 invalid DH fail nonce from serverzStep 2.2 answer was %srzStep 3 AES block size mismatchzStep 3 answer was %sz(Step 3 Invalid nonce in encrypted answerz/Step 3 Invalid server nonce in encrypted answerFz#g_a is not within (1, dh_prime - 1)z#g_b is not within (1, dh_prime - 1)ri@z7g_a is not within (2^{2048-64}, dh_prime - 2^{2048-64})z7g_b is not within (2^{2048-64}, dh_prime - 2^{2048-64}))rr Zretry_idg_b)rr r(zStep 3.1 answer was %sz#Step 3 invalid {} nonce from serverz*Step 3 invalid {} server nonce from serverznew_nonce_hash{}zStep 3 invalid new nonce hashzStep 3.2 answer was %s)NNi)<int from_bytesosurandomsendr isinstancerAssertionErrorrrget_intrrZ factorizerZget_byte_arraybytesrr Zserver_public_key_fingerprintsZencryptformatjoinrrrrto_bytesdigestnew_nonce_hashr Zgenerate_key_data_from_noncelenZencrypted_answerrZ decrypt_igerreadZ tgread_objectrdh_primegg_aZ server_timetimepowr Z encrypt_igerr r r __class____name__rindextypeZcalc_new_nonce_hashgetattr)$ZsenderrZres_pqrrrr!Z pq_inner_dataZ cipher_textZtarget_fingerprint fingerprintZserver_dh_paramsZnnhkeyZivZplain_text_answerreaderZserver_dh_innerr?r@rAZ time_offsetbr.ZgabZ safety_rangeZclient_dh_innerZclient_dh_inner_hashedZclient_dh_encryptedZdh_genZ nonce_typesnameZauth_keyZ nonce_numberr<Zdh_hashr"r"r&do_authentications                               rNTcCstj|d|dS)a8 Gets the specified integer from its byte array. This should be used by this module alone, as it works with big endian. :param byte_array: the byte array representing th integer. :param signed: whether the number is signed or not. :return: the integer representing the given byte array. r) byteorderr)r/r0)Z byte_arrayrr"r"r&r6s r6)T) __doc__r1rBhashlibrZtl.typesrrrrrr r r r r Zcryptorrrrerrorsr extensionsrZ tl.functionsrrrrNr6r"r"r"r&s ,   6