o "h(Y@sddlZddlmZddlmZddlmZmZmZz0ddl m Z ddl m Z m Z ddlmZddlmZdd lmZdd lmZmZmZmZd ZWneyddZ d \Z Z ZZZd \ZZZZdZYnwddlmZddlmZmZm Z ddl!m"Z"ddl#m$Z$ddl%m&Z&erddl'm(Z(eddZ)eddZ*GdddeZ+GdddeZ,GdddeZ-Gdd d eZ.Gd!d"d"eZ/Gd#d$d$e/Z0Gd%d&d&e/Z1dS)'N) b64decode)Sequence) TYPE_CHECKINGOptional no_type_check)default_backend)MGF1OAEP)Cipher)AES)CBC)SHA1SHA256SHA512HashT)NNNNN)NNNNF)TelegramObject)de_json_optionalde_list_optionalparse_sequence_arg) TextEncoding)JSONDict)PassportDecryptionError)Botc Cststdtttd}||||}|dd|dd}}tt|t |td}| }|||}tt td}|||} | |kr^t d| d|||ddS) a Decrypt per telegram docs at https://core.telegram.org/passport. Args: secret (:obj:`str` or :obj:`bytes`): The encryption secret, either as bytes or as a base64 encoded string. hash (:obj:`str` or :obj:`bytes`): The hash, either as bytes or as a base64 encoded string. data (:obj:`str` or :obj:`bytes`): The data to decrypt, either as bytes or as a base64 encoded string. file (:obj:`bool`): Force data to be treated as raw data, instead of trying to b64decode it. Raises: :class:`PassportDecryptionError`: Given hash does not match hash of decrypted data. Returns: :obj:`bytes`: The decrypted data as bytes. cTo use Telegram Passports, PTB must be installed via `pip install "python-telegram-bot[passport]"`.)backendN 0zHashes are not equal! z != r) CRYPTO_INSTALLED RuntimeErrorrrrupdatefinalizer r r decryptorrr) secrethashdatadigestsecret_hash_hashkey init_vectorcipherr! data_hashr+Q/var/www/html/venv/lib/python3.10/site-packages/telegram/_passport/credentials.pydecrypt3s" r-cCstt|||tjS)zPDecrypts data using secret and hash and then decodes utf-8 string and loads json)jsonloadsr-decoderUTF_8)r"r#r$r+r+r, decrypt_jsondsr2c s`eZdZdZdZdddedededeeffd d Ze d e fd d Z e dddZ Z S)EncryptedCredentialsaDContains data required for decrypting and authenticating EncryptedPassportElement. See the Telegram Passport Documentation for a complete description of the data decryption and authentication processes. Objects of this class are comparable in terms of equality. Two objects of this class are considered equal, if their :attr:`data`, :attr:`hash` and :attr:`secret` are equal. Note: This object is decrypted only when originating from :attr:`telegram.PassportData.decrypted_credentials`. Args: data (:class:`telegram.Credentials` | :obj:`str`): Decrypted data with unique user's nonce, data hashes and secrets used for EncryptedPassportElement decryption and authentication or base64 encrypted data. hash (:obj:`str`): Base64-encoded data hash for data authentication. secret (:obj:`str`): Decrypted or encrypted secret used for decryption. Attributes: data (:class:`telegram.Credentials` | :obj:`str`): Decrypted data with unique user's nonce, data hashes and secrets used for EncryptedPassportElement decryption and authentication or base64 encrypted data. hash (:obj:`str`): Base64-encoded data hash for data authentication. secret (:obj:`str`): Decrypted or encrypted secret used for decryption. )_decrypted_data_decrypted_secretr$r#r"N api_kwargsr$r#r"r7csJtj|d||_||_||_|j|j|jf|_d|_d|_|dSNr6) super__init__r$r#r" _id_attrsr5r4_freeze)selfr$r#r"r7 __class__r+r,r:s zEncryptedCredentials.__init__returnc Csv|jdur8ts tdz|jt|jtt t dt dd|_W|jSt y7}zt ||d}~ww|jS)z :obj:`bytes`: Lazily decrypt and return secret. Raises: telegram.error.PassportDecryptionError: Decryption failed. Usually due to bad private/public key but can also suggest malformed/tampered data. Nr) algorithm)mgfrAlabel) r5rrget_bot private_keyr-rr"r rr ValueErrorr)r= exceptionr+r+r,decrypted_secrets   z%EncryptedCredentials.decrypted_secret CredentialscCs8|jdurtt|jt|jt|j||_|jS)a~ :class:`telegram.Credentials`: Lazily decrypt and return credentials data. This object also contains the user specified nonce as `decrypted_data.nonce`. Raises: telegram.error.PassportDecryptionError: Decryption failed. Usually due to bad private/public key but can also suggest malformed/tampered data. N) r4rIde_jsonr2rHrr#r$rD)r=r+r+r,decrypted_datas z#EncryptedCredentials.decrypted_data)r@rI)__name__ __module__ __qualname____doc__ __slots__strrrr:propertybytesrHrK __classcell__r+r+r>r,r3js"r3cs`eZdZdZdZdddddedeeffd d Ze dd ed ed ddffdd Z Z S)rIz Attributes: secure_data (:class:`telegram.SecureData`): Credentials for encrypted data nonce (:obj:`str`): Bot-specified nonce )nonce secure_dataNr6rV SecureDatarUr7cs&tj|d||_||_|dSr8)r9r:rVrUr<)r=rVrUr7r>r+r,r:s zCredentials.__init__r$botrr@cs0||}t|dt||d<tj||dS),See :meth:`telegram.TelegramObject.de_json`.rVr$rX) _parse_datargetrWr9rJclsr$rXr>r+r,rJs zCredentials.de_jsonN) rLrMrNrOrPrQrrr: classmethodrJrTr+r+r>r,rIs*rIcseZdZdZdZ           ddddeddeddedd edd edd edd edd eddeddeddeddeeffddZeddededddffdd Z Z S)rWa This object represents the credentials that were used to decrypt the encrypted data. All fields are optional and depend on fields that were requested. Args: personal_details (:class:`telegram.SecureValue`, optional): Credentials for encrypted personal details. passport (:class:`telegram.SecureValue`, optional): Credentials for encrypted passport. internal_passport (:class:`telegram.SecureValue`, optional): Credentials for encrypted internal passport. driver_license (:class:`telegram.SecureValue`, optional): Credentials for encrypted driver license. identity_card (:class:`telegram.SecureValue`, optional): Credentials for encrypted ID card address (:class:`telegram.SecureValue`, optional): Credentials for encrypted residential address. utility_bill (:class:`telegram.SecureValue`, optional): Credentials for encrypted utility bill. bank_statement (:class:`telegram.SecureValue`, optional): Credentials for encrypted bank statement. rental_agreement (:class:`telegram.SecureValue`, optional): Credentials for encrypted rental agreement. passport_registration (:class:`telegram.SecureValue`, optional): Credentials for encrypted registration from internal passport. temporary_registration (:class:`telegram.SecureValue`, optional): Credentials for encrypted temporary registration. Attributes: personal_details (:class:`telegram.SecureValue`): Optional. Credentials for encrypted personal details. passport (:class:`telegram.SecureValue`): Optional. Credentials for encrypted passport. internal_passport (:class:`telegram.SecureValue`): Optional. Credentials for encrypted internal passport. driver_license (:class:`telegram.SecureValue`): Optional. Credentials for encrypted driver license. identity_card (:class:`telegram.SecureValue`): Optional. Credentials for encrypted ID card address (:class:`telegram.SecureValue`): Optional. Credentials for encrypted residential address. utility_bill (:class:`telegram.SecureValue`): Optional. Credentials for encrypted utility bill. bank_statement (:class:`telegram.SecureValue`): Optional. Credentials for encrypted bank statement. rental_agreement (:class:`telegram.SecureValue`): Optional. Credentials for encrypted rental agreement. passport_registration (:class:`telegram.SecureValue`): Optional. Credentials for encrypted registration from internal passport. temporary_registration (:class:`telegram.SecureValue`): Optional. Credentials for encrypted temporary registration. ) addressbank_statementdriver_license identity_cardinternal_passportpassportpassport_registrationpersonal_detailsrental_agreementtemporary_registration utility_billNr6rh SecureValuerfrercrdrarkrbrirgrjr7c  s\tj| d| |_| |_| |_||_||_||_||_||_ ||_ ||_ ||_ | dSr8)r9r:rjrgrirbrkrardrcrerfrhr<) r=rhrfrercrdrarkrbrirgrjr7r>r+r,r:6s zSecureData.__init__r$rXrr@cs ||}t|dt||d<t|dt||d<t|dt||d<t|dt||d<t|dt||d<t|dt||d<t|dt||d<t|dt||d<t|d t||d <t|d t||d <t|d t||d <tj||d S) rYrjrgrirbrkrardrcrerfrhrZ)r[rr\rlr9rJr]r>r+r,rJWs&    zSecureData.de_json) NNNNNNNNNNNr_) rLrMrNrOrPrrr:r`rJrTr+r+r>r,rWsV1    !*rWcseZdZdZdZ      ddddeddedd edd edd eedd eedd eeffddZe ddededddffdd Z Z S)rla? This object represents the credentials that were used to decrypt the encrypted value. All fields are optional and depend on the type of field. Args: data (:class:`telegram.DataCredentials`, optional): Credentials for encrypted Telegram Passport data. Available for "personal_details", "passport", "driver_license", "identity_card", "identity_passport" and "address" types. front_side (:class:`telegram.FileCredentials`, optional): Credentials for encrypted document's front side. Available for "passport", "driver_license", "identity_card" and "internal_passport". reverse_side (:class:`telegram.FileCredentials`, optional): Credentials for encrypted document's reverse side. Available for "driver_license" and "identity_card". selfie (:class:`telegram.FileCredentials`, optional): Credentials for encrypted selfie of the user with a document. Can be available for "passport", "driver_license", "identity_card" and "internal_passport". translation (list[:class:`telegram.FileCredentials`], optional): Credentials for an encrypted translation of the document. Available for "passport", "driver_license", "identity_card", "internal_passport", "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration". files (list[:class:`telegram.FileCredentials`], optional): Credentials for encrypted files. Available for "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration" types. Attributes: data (:class:`telegram.DataCredentials`): Optional. Credentials for encrypted Telegram Passport data. Available for "personal_details", "passport", "driver_license", "identity_card", "identity_passport" and "address" types. front_side (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted document's front side. Available for "passport", "driver_license", "identity_card" and "internal_passport". reverse_side (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted document's reverse side. Available for "driver_license" and "identity_card". selfie (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted selfie of the user with a document. Can be available for "passport", "driver_license", "identity_card" and "internal_passport". translation (tuple[:class:`telegram.FileCredentials`]): Optional. Credentials for an encrypted translation of the document. Available for "passport", "driver_license", "identity_card", "internal_passport", "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration". .. versionchanged:: 20.0 |tupleclassattrs| files (tuple[:class:`telegram.FileCredentials`]): Optional. Credentials for encrypted files. Available for "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration" types. .. versionchanged:: 20.0 * |tupleclassattrs| * |alwaystuple| )r$files front_side reverse_sideselfie translationNr6r$DataCredentialsrnFileCredentialsrorprmrqr7csFtj|d||_||_||_||_t||_t||_| dSr8) r9r:r$rnrorprrmrqr<)r=r$rnrorprmrqr7r>r+r,r:s    zSecureValue.__init__rXrr@cs||}t|dt||d<t|dt||d<t|dt||d<t|dt||d<t|dt||d<t|dt||d<tj||dS)rYr$rnrorprmrqrZ)r[rr\rrrsrr9rJr]r>r+r,rJs zSecureValue.de_json)NNNNNNr_) rLrMrNrOrPrrrr:r`rJrTr+r+r>r,rlqs87    *rlc<eZdZdZdZdddededeeffdd ZZ S) _CredentialsBasez3Base class for DataCredentials and FileCredentials.)r* file_hashr#r"Nr6r#r"r7csXtj|d|||_||_|j|_|j|_WddS1s%wYdSr8)r9r: _unfrozenr#r"rvr*)r=r#r"r7r>r+r,r:s  "z_CredentialsBase.__init__ rLrMrNrOrPrQrrr:rTr+r+r>r,rusrucrt) rral These credentials can be used to decrypt encrypted data from the data field in EncryptedPassportData. Args: data_hash (:obj:`str`): Checksum of encrypted data secret (:obj:`str`): Secret of encrypted data Attributes: hash (:obj:`str`): Checksum of encrypted data secret (:obj:`str`): Secret of encrypted data r+Nr6r*r"r7ctj|||d|dSN)r#r"r7r9r:r<)r=r*r"r7r>r+r,r: zDataCredentials.__init__rxr+r+r>r,rr ,rrcrt) rsa These credentials can be used to decrypt encrypted files from the front_side, reverse_side, selfie and files fields in EncryptedPassportData. Args: file_hash (:obj:`str`): Checksum of encrypted file secret (:obj:`str`): Secret of encrypted file Attributes: hash (:obj:`str`): Checksum of encrypted file secret (:obj:`str`): Secret of encrypted file r+Nr6rvr"r7cryrzr{)r=rvr"r7r>r+r,r: r|zFileCredentials.__init__rxr+r+r>r,rsr}rs)2r.base64rcollections.abcrtypingrrrcryptography.hazmat.backendsr1cryptography.hazmat.primitives.asymmetric.paddingrr &cryptography.hazmat.primitives.ciphersr 1cryptography.hazmat.primitives.ciphers.algorithmsr ,cryptography.hazmat.primitives.ciphers.modesr %cryptography.hazmat.primitives.hashesr rrrr ImportErrortelegram._telegramobjectrtelegram._utils.argumentparsingrrrtelegram._utils.stringsrtelegram._utils.typesrtelegram.errorrtelegramrr-r2r3rIrWrlrurrrsr+r+r+r,sH              0 k!{^