o /h|Y@sddlZddlmZddlmZmZmZmZmZz0ddl m Z ddl m Z m Z ddlmZddlmZddlmZdd lmZmZmZmZd ZWneybdZ d \Z Z ZZZd \ZZZZd ZYnwddlmZddlmZddlm Z ddl!m"Z"ddl#m$Z$erddl%m&Z&eddZ'eddZ(GdddeZ)GdddeZ*GdddeZ+GdddeZ,Gd d!d!eZ-Gd"d#d#e-Z.Gd$d%d%e-Z/dS)&N) b64decode) TYPE_CHECKINGOptionalSequenceTuple no_type_check)default_backend)MGF1OAEP)Cipher)AES)CBC)SHA1SHA256SHA512HashT)NNNNN)NNNNF)TelegramObject)parse_sequence_arg) TextEncoding)JSONDict)PassportDecryptionError)Botc Cststdtttd}||||}|dd|dd}}tt|t |td}| }|||}tt td}|||} | |kr^t d| d|||ddS) a Decrypt per telegram docs at https://core.telegram.org/passport. Args: secret (:obj:`str` or :obj:`bytes`): The encryption secret, either as bytes or as a base64 encoded string. hash (:obj:`str` or :obj:`bytes`): The hash, either as bytes or as a base64 encoded string. data (:obj:`str` or :obj:`bytes`): The data to decrypt, either as bytes or as a base64 encoded string. file (:obj:`bool`): Force data to be treated as raw data, instead of trying to b64decode it. Raises: :class:`PassportDecryptionError`: Given hash does not match hash of decrypted data. Returns: :obj:`bytes`: The decrypted data as bytes. cTo use Telegram Passports, PTB must be installed via `pip install "python-telegram-bot[passport]"`.)backendN 0zHashes are not equal! z != r) CRYPTO_INSTALLED RuntimeErrorrrrupdatefinalizer r r decryptorrr) secrethashdatadigestsecret_hash_hashkey init_vectorcipherr data_hashr*W/var/www/html/govbot/env/lib/python3.10/site-packages/telegram/_passport/credentials.pydecrypt2s" r,cCstt|||tjS)zPDecrypts data using secret and hash and then decodes utf-8 string and loads json)jsonloadsr,decoderUTF_8)r!r"r#r*r*r+ decrypt_jsoncsr1c s`eZdZdZdZdddedededeeffd d Ze d e fd d Z e dddZ Z S)EncryptedCredentialsaDContains data required for decrypting and authenticating EncryptedPassportElement. See the Telegram Passport Documentation for a complete description of the data decryption and authentication processes. Objects of this class are comparable in terms of equality. Two objects of this class are considered equal, if their :attr:`data`, :attr:`hash` and :attr:`secret` are equal. Note: This object is decrypted only when originating from :attr:`telegram.PassportData.decrypted_credentials`. Args: data (:class:`telegram.Credentials` | :obj:`str`): Decrypted data with unique user's nonce, data hashes and secrets used for EncryptedPassportElement decryption and authentication or base64 encrypted data. hash (:obj:`str`): Base64-encoded data hash for data authentication. secret (:obj:`str`): Decrypted or encrypted secret used for decryption. Attributes: data (:class:`telegram.Credentials` | :obj:`str`): Decrypted data with unique user's nonce, data hashes and secrets used for EncryptedPassportElement decryption and authentication or base64 encrypted data. hash (:obj:`str`): Base64-encoded data hash for data authentication. secret (:obj:`str`): Decrypted or encrypted secret used for decryption. )_decrypted_data_decrypted_secretr#r"r!N api_kwargsr#r"r!r6csJtj|d||_||_||_|j|j|jf|_d|_d|_|dSNr5) super__init__r#r"r! _id_attrsr4r3_freeze)selfr#r"r!r6 __class__r*r+r9s zEncryptedCredentials.__init__returnc Csv|jdur8ts tdz|jt|jtt t dt dd|_W|jSt y7}zt ||d}~ww|jS)z :obj:`bytes`: Lazily decrypt and return secret. Raises: telegram.error.PassportDecryptionError: Decryption failed. Usually due to bad private/public key but can also suggest malformed/tampered data. Nr) algorithm)mgfr@label) r4rrget_bot private_keyr,rr!r r r ValueErrorr)r< exceptionr*r*r+decrypted_secrets   z%EncryptedCredentials.decrypted_secret CredentialscCs8|jdurtt|jt|jt|j||_|jS)a~ :class:`telegram.Credentials`: Lazily decrypt and return credentials data. This object also contains the user specified nonce as `decrypted_data.nonce`. Raises: telegram.error.PassportDecryptionError: Decryption failed. Usually due to bad private/public key but can also suggest malformed/tampered data. N) r3rHde_jsonr1rGrr"r#rC)r<r*r*r+decrypted_datas z#EncryptedCredentials.decrypted_data)r?rH)__name__ __module__ __qualname____doc__ __slots__strrrr9propertybytesrGrJ __classcell__r*r*r=r+r2is"r2c sjeZdZdZdZdddddedeeffd d Ze dd eed ed dedffdd Z Z S)rHz Attributes: secure_data (:class:`telegram.SecureData`): Credentials for encrypted data nonce (:obj:`str`): Bot-specified nonce )nonce secure_dataNr5rU SecureDatarTr6cs&tj|d||_||_|dSr7)r8r9rUrTr;)r<rUrTr6r=r*r+r9s zCredentials.__init__r#botrr?cs:||}|s dStj|d|d|d<tj||dS),See :meth:`telegram.TelegramObject.de_json`.NrUrWr#rW) _parse_datarVrIgetr8clsr#rWr=r*r+rIs zCredentials.de_jsonN) rKrLrMrNrOrPrrr9 classmethodrIrSr*r*r=r+rHs(rHcseZdZdZdZ           ddddeddeddedd edd edd edd edd eddeddeddeddeeffddZe ddeededdedffdd Z Z S)rVa This object represents the credentials that were used to decrypt the encrypted data. All fields are optional and depend on fields that were requested. Args: personal_details (:class:`telegram.SecureValue`, optional): Credentials for encrypted personal details. passport (:class:`telegram.SecureValue`, optional): Credentials for encrypted passport. internal_passport (:class:`telegram.SecureValue`, optional): Credentials for encrypted internal passport. driver_license (:class:`telegram.SecureValue`, optional): Credentials for encrypted driver license. identity_card (:class:`telegram.SecureValue`, optional): Credentials for encrypted ID card address (:class:`telegram.SecureValue`, optional): Credentials for encrypted residential address. utility_bill (:class:`telegram.SecureValue`, optional): Credentials for encrypted utility bill. bank_statement (:class:`telegram.SecureValue`, optional): Credentials for encrypted bank statement. rental_agreement (:class:`telegram.SecureValue`, optional): Credentials for encrypted rental agreement. passport_registration (:class:`telegram.SecureValue`, optional): Credentials for encrypted registration from internal passport. temporary_registration (:class:`telegram.SecureValue`, optional): Credentials for encrypted temporary registration. Attributes: personal_details (:class:`telegram.SecureValue`): Optional. Credentials for encrypted personal details. passport (:class:`telegram.SecureValue`): Optional. Credentials for encrypted passport. internal_passport (:class:`telegram.SecureValue`): Optional. Credentials for encrypted internal passport. driver_license (:class:`telegram.SecureValue`): Optional. Credentials for encrypted driver license. identity_card (:class:`telegram.SecureValue`): Optional. Credentials for encrypted ID card address (:class:`telegram.SecureValue`): Optional. Credentials for encrypted residential address. utility_bill (:class:`telegram.SecureValue`): Optional. Credentials for encrypted utility bill. bank_statement (:class:`telegram.SecureValue`): Optional. Credentials for encrypted bank statement. rental_agreement (:class:`telegram.SecureValue`): Optional. Credentials for encrypted rental agreement. passport_registration (:class:`telegram.SecureValue`): Optional. Credentials for encrypted registration from internal passport. temporary_registration (:class:`telegram.SecureValue`): Optional. Credentials for encrypted temporary registration. ) addressbank_statementdriver_license identity_cardinternal_passportpassportpassport_registrationpersonal_detailsrental_agreementtemporary_registration utility_billNr5rh SecureValuerfrercrdrarkrbrirgrjr6c  s\tj| d| |_| |_| |_||_||_||_||_||_ ||_ ||_ ||_ | dSr7)r8r9rjrgrirbrkrardrcrerfrhr;) r<rhrfrercrdrarkrbrirgrjr6r=r*r+r9:s zSecureData.__init__r#rWrr?cs*||}|s dStj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d |d|d <tj|d |d|d <tj|d |d|d <tj|d |d|d <tj|d |d|d <tj||dS)rXNrjrYrgrirbrkrardrcrerfrhrZ)r[rlrIr\r8r]r=r*r+rI[s&     zSecureData.de_json) NNNNNNNNNNNr_) rKrLrMrNrOrrr9r`rIrSr*r*r=r+rVsd1    !rVcseZdZdZdZ      ddddeddedd edd edd eedd eedd eeffddZe ddeededdedffdd Z Z S)rla? This object represents the credentials that were used to decrypt the encrypted value. All fields are optional and depend on the type of field. Args: data (:class:`telegram.DataCredentials`, optional): Credentials for encrypted Telegram Passport data. Available for "personal_details", "passport", "driver_license", "identity_card", "identity_passport" and "address" types. front_side (:class:`telegram.FileCredentials`, optional): Credentials for encrypted document's front side. Available for "passport", "driver_license", "identity_card" and "internal_passport". reverse_side (:class:`telegram.FileCredentials`, optional): Credentials for encrypted document's reverse side. Available for "driver_license" and "identity_card". selfie (:class:`telegram.FileCredentials`, optional): Credentials for encrypted selfie of the user with a document. Can be available for "passport", "driver_license", "identity_card" and "internal_passport". translation (List[:class:`telegram.FileCredentials`], optional): Credentials for an encrypted translation of the document. Available for "passport", "driver_license", "identity_card", "internal_passport", "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration". files (List[:class:`telegram.FileCredentials`], optional): Credentials for encrypted files. Available for "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration" types. Attributes: data (:class:`telegram.DataCredentials`): Optional. Credentials for encrypted Telegram Passport data. Available for "personal_details", "passport", "driver_license", "identity_card", "identity_passport" and "address" types. front_side (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted document's front side. Available for "passport", "driver_license", "identity_card" and "internal_passport". reverse_side (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted document's reverse side. Available for "driver_license" and "identity_card". selfie (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted selfie of the user with a document. Can be available for "passport", "driver_license", "identity_card" and "internal_passport". translation (Tuple[:class:`telegram.FileCredentials`]): Optional. Credentials for an encrypted translation of the document. Available for "passport", "driver_license", "identity_card", "internal_passport", "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration". .. versionchanged:: 20.0 |tupleclassattrs| files (Tuple[:class:`telegram.FileCredentials`]): Optional. Credentials for encrypted files. Available for "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration" types. .. versionchanged:: 20.0 * |tupleclassattrs| * |alwaystuple| )r#files front_side reverse_sideselfie translationNr5r#DataCredentialsrnFileCredentialsrorprmrqr6csFtj|d||_||_||_||_t||_t||_| dSr7) r8r9r#rnrorprrmrqr;)r<r#rnrorprmrqr6r=r*r+r9s    zSecureValue.__init__rWrr?cs||}|s dStj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj||d S) rXNr#rYrnrorprmrqrZ)r[rrrIr\rsde_listr8r]r=r*r+rIs zSecureValue.de_json)NNNNNNr_) rKrLrMrNrOrrrr9r`rIrSr*r*r=r+rlxsF7    rlc<eZdZdZdZdddededeeffdd ZZ S) _CredentialsBasez3Base class for DataCredentials and FileCredentials.)r) file_hashr"r!Nr5r"r!r6csXtj|d|||_||_|j|_|j|_WddS1s%wYdSr7)r8r9 _unfrozenr"r!rwr))r<r"r!r6r=r*r+r9s  "z_CredentialsBase.__init__ rKrLrMrNrOrPrrr9rSr*r*r=r+rvsrvcru) rral These credentials can be used to decrypt encrypted data from the data field in EncryptedPassportData. Args: data_hash (:obj:`str`): Checksum of encrypted data secret (:obj:`str`): Secret of encrypted data Attributes: hash (:obj:`str`): Checksum of encrypted data secret (:obj:`str`): Secret of encrypted data r*Nr5r)r!r6ctj|||d|dSN)r"r!r6r8r9r;)r<r)r!r6r=r*r+r9 zDataCredentials.__init__ryr*r*r=r+rr ,rrcru) rsa These credentials can be used to decrypt encrypted files from the front_side, reverse_side, selfie and files fields in EncryptedPassportData. Args: file_hash (:obj:`str`): Checksum of encrypted file secret (:obj:`str`): Secret of encrypted file Attributes: hash (:obj:`str`): Checksum of encrypted file secret (:obj:`str`): Secret of encrypted file r*Nr5rwr!r6crzr{r|)r<rwr!r6r=r*r+r9r}zFileCredentials.__init__ryr*r*r=r+rsr~rs)0r-base64rtypingrrrrrcryptography.hazmat.backendsr1cryptography.hazmat.primitives.asymmetric.paddingr r &cryptography.hazmat.primitives.ciphersr 1cryptography.hazmat.primitives.ciphers.algorithmsr ,cryptography.hazmat.primitives.ciphers.modesr %cryptography.hazmat.primitives.hashesrrrrr ImportErrortelegram._telegramobjectrtelegram._utils.argumentparsingrtelegram._utils.stringsrtelegram._utils.typesrtelegram.errorrtelegramrr,r1r2rHrVrlrvrrrsr*r*r*r+sF              0 k&~c