o GChY@sddlZddlmZddlmZddlmZmZmZz0ddl m Z ddl m Z m Z ddlmZddlmZdd lmZdd lmZmZmZmZd ZWneyddZ d \Z Z ZZZd \ZZZZdZYnwddlmZddlmZddlm Z ddl!m"Z"ddl#m$Z$erddl%m&Z&eddZ'eddZ(GdddeZ)GdddeZ*GdddeZ+Gdd d eZ,Gd!d"d"eZ-Gd#d$d$e-Z.Gd%d&d&e-Z/dS)'N) b64decode)Sequence) TYPE_CHECKINGOptional no_type_check)default_backend)MGF1OAEP)Cipher)AES)CBC)SHA1SHA256SHA512HashT)NNNNN)NNNNF)TelegramObject)parse_sequence_arg) TextEncoding)JSONDict)PassportDecryptionError)Botc Cststdtttd}||||}|dd|dd}}tt|t |td}| }|||}tt td}|||} | |kr^t d| d|||ddS) a Decrypt per telegram docs at https://core.telegram.org/passport. Args: secret (:obj:`str` or :obj:`bytes`): The encryption secret, either as bytes or as a base64 encoded string. hash (:obj:`str` or :obj:`bytes`): The hash, either as bytes or as a base64 encoded string. data (:obj:`str` or :obj:`bytes`): The data to decrypt, either as bytes or as a base64 encoded string. file (:obj:`bool`): Force data to be treated as raw data, instead of trying to b64decode it. Raises: :class:`PassportDecryptionError`: Given hash does not match hash of decrypted data. Returns: :obj:`bytes`: The decrypted data as bytes. cTo use Telegram Passports, PTB must be installed via `pip install "python-telegram-bot[passport]"`.)backendN 0zHashes are not equal! z != r) CRYPTO_INSTALLED RuntimeErrorrrrupdatefinalizer r r decryptorrr) secrethashdatadigestsecret_hash_hashkey init_vectorcipherr data_hashr)W/var/www/html/govbot/env/lib/python3.10/site-packages/telegram/_passport/credentials.pydecrypt3s" r+cCstt|||tjS)zPDecrypts data using secret and hash and then decodes utf-8 string and loads json)jsonloadsr+decoderUTF_8)r r!r"r)r)r* decrypt_jsondsr0c s`eZdZdZdZdddedededeeffd d Ze d e fd d Z e dddZ Z S)EncryptedCredentialsaDContains data required for decrypting and authenticating EncryptedPassportElement. See the Telegram Passport Documentation for a complete description of the data decryption and authentication processes. Objects of this class are comparable in terms of equality. Two objects of this class are considered equal, if their :attr:`data`, :attr:`hash` and :attr:`secret` are equal. Note: This object is decrypted only when originating from :attr:`telegram.PassportData.decrypted_credentials`. Args: data (:class:`telegram.Credentials` | :obj:`str`): Decrypted data with unique user's nonce, data hashes and secrets used for EncryptedPassportElement decryption and authentication or base64 encrypted data. hash (:obj:`str`): Base64-encoded data hash for data authentication. secret (:obj:`str`): Decrypted or encrypted secret used for decryption. Attributes: data (:class:`telegram.Credentials` | :obj:`str`): Decrypted data with unique user's nonce, data hashes and secrets used for EncryptedPassportElement decryption and authentication or base64 encrypted data. hash (:obj:`str`): Base64-encoded data hash for data authentication. secret (:obj:`str`): Decrypted or encrypted secret used for decryption. )_decrypted_data_decrypted_secretr"r!r N api_kwargsr"r!r r5csJtj|d||_||_||_|j|j|jf|_d|_d|_|dSNr4) super__init__r"r!r _id_attrsr3r2_freeze)selfr"r!r r5 __class__r)r*r8s zEncryptedCredentials.__init__returnc Csv|jdur8ts tdz|jt|jtt t dt dd|_W|jSt y7}zt ||d}~ww|jS)z :obj:`bytes`: Lazily decrypt and return secret. Raises: telegram.error.PassportDecryptionError: Decryption failed. Usually due to bad private/public key but can also suggest malformed/tampered data. Nr) algorithm)mgfr?label) r3rrget_bot private_keyr+rr r rr ValueErrorr)r; exceptionr)r)r*decrypted_secrets   z%EncryptedCredentials.decrypted_secret CredentialscCs8|jdurtt|jt|jt|j||_|jS)a~ :class:`telegram.Credentials`: Lazily decrypt and return credentials data. This object also contains the user specified nonce as `decrypted_data.nonce`. Raises: telegram.error.PassportDecryptionError: Decryption failed. Usually due to bad private/public key but can also suggest malformed/tampered data. N) r2rGde_jsonr0rFrr!r"rB)r;r)r)r*decrypted_datas z#EncryptedCredentials.decrypted_data)r>rG)__name__ __module__ __qualname____doc__ __slots__strrrr8propertybytesrFrI __classcell__r)r)r<r*r1js"r1c sjeZdZdZdZdddddedeeffd d Ze dd eed ed dedffdd Z Z S)rGz Attributes: secure_data (:class:`telegram.SecureData`): Credentials for encrypted data nonce (:obj:`str`): Bot-specified nonce )nonce secure_dataNr4rT SecureDatarSr5cs&tj|d||_||_|dSr6)r7r8rTrSr:)r;rTrSr5r<r)r*r8s zCredentials.__init__r"botrr>cs:||}|s dStj|d|d|d<tj||dS),See :meth:`telegram.TelegramObject.de_json`.NrTrVr"rV) _parse_datarUrHgetr7clsr"rVr<r)r*rHs zCredentials.de_jsonN) rJrKrLrMrNrOrrr8 classmethodrHrRr)r)r<r*rGs(rGcseZdZdZdZ           ddddeddeddedd edd edd edd edd eddeddeddeddeeffddZe ddeededdedffdd Z Z S)rUa This object represents the credentials that were used to decrypt the encrypted data. All fields are optional and depend on fields that were requested. Args: personal_details (:class:`telegram.SecureValue`, optional): Credentials for encrypted personal details. passport (:class:`telegram.SecureValue`, optional): Credentials for encrypted passport. internal_passport (:class:`telegram.SecureValue`, optional): Credentials for encrypted internal passport. driver_license (:class:`telegram.SecureValue`, optional): Credentials for encrypted driver license. identity_card (:class:`telegram.SecureValue`, optional): Credentials for encrypted ID card address (:class:`telegram.SecureValue`, optional): Credentials for encrypted residential address. utility_bill (:class:`telegram.SecureValue`, optional): Credentials for encrypted utility bill. bank_statement (:class:`telegram.SecureValue`, optional): Credentials for encrypted bank statement. rental_agreement (:class:`telegram.SecureValue`, optional): Credentials for encrypted rental agreement. passport_registration (:class:`telegram.SecureValue`, optional): Credentials for encrypted registration from internal passport. temporary_registration (:class:`telegram.SecureValue`, optional): Credentials for encrypted temporary registration. Attributes: personal_details (:class:`telegram.SecureValue`): Optional. Credentials for encrypted personal details. passport (:class:`telegram.SecureValue`): Optional. Credentials for encrypted passport. internal_passport (:class:`telegram.SecureValue`): Optional. Credentials for encrypted internal passport. driver_license (:class:`telegram.SecureValue`): Optional. Credentials for encrypted driver license. identity_card (:class:`telegram.SecureValue`): Optional. Credentials for encrypted ID card address (:class:`telegram.SecureValue`): Optional. Credentials for encrypted residential address. utility_bill (:class:`telegram.SecureValue`): Optional. Credentials for encrypted utility bill. bank_statement (:class:`telegram.SecureValue`): Optional. Credentials for encrypted bank statement. rental_agreement (:class:`telegram.SecureValue`): Optional. Credentials for encrypted rental agreement. passport_registration (:class:`telegram.SecureValue`): Optional. Credentials for encrypted registration from internal passport. temporary_registration (:class:`telegram.SecureValue`): Optional. Credentials for encrypted temporary registration. ) addressbank_statementdriver_license identity_cardinternal_passportpassportpassport_registrationpersonal_detailsrental_agreementtemporary_registration utility_billNr4rg SecureValuererdrbrcr`rjrarhrfrir5c  s\tj| d| |_| |_| |_||_||_||_||_||_ ||_ ||_ ||_ | dSr6)r7r8rirfrhrarjr`rcrbrdrergr:) r;rgrerdrbrcr`rjrarhrfrir5r<r)r*r8;s zSecureData.__init__r"rVrr>cs*||}|s dStj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d |d|d <tj|d |d|d <tj|d |d|d <tj|d |d|d <tj|d |d|d <tj||dS)rWNrirXrfrhrarjr`rcrbrdrergrY)rZrkrHr[r7r\r<r)r*rH\s&     zSecureData.de_json) NNNNNNNNNNNr^) rJrKrLrMrNrrr8r_rHrRr)r)r<r*rUsd1    !rUcseZdZdZdZ      ddddeddedd edd edd eedd eedd eeffddZe ddeededdedffdd Z Z S)rka? This object represents the credentials that were used to decrypt the encrypted value. All fields are optional and depend on the type of field. Args: data (:class:`telegram.DataCredentials`, optional): Credentials for encrypted Telegram Passport data. Available for "personal_details", "passport", "driver_license", "identity_card", "identity_passport" and "address" types. front_side (:class:`telegram.FileCredentials`, optional): Credentials for encrypted document's front side. Available for "passport", "driver_license", "identity_card" and "internal_passport". reverse_side (:class:`telegram.FileCredentials`, optional): Credentials for encrypted document's reverse side. Available for "driver_license" and "identity_card". selfie (:class:`telegram.FileCredentials`, optional): Credentials for encrypted selfie of the user with a document. Can be available for "passport", "driver_license", "identity_card" and "internal_passport". translation (list[:class:`telegram.FileCredentials`], optional): Credentials for an encrypted translation of the document. Available for "passport", "driver_license", "identity_card", "internal_passport", "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration". files (list[:class:`telegram.FileCredentials`], optional): Credentials for encrypted files. Available for "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration" types. Attributes: data (:class:`telegram.DataCredentials`): Optional. Credentials for encrypted Telegram Passport data. Available for "personal_details", "passport", "driver_license", "identity_card", "identity_passport" and "address" types. front_side (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted document's front side. Available for "passport", "driver_license", "identity_card" and "internal_passport". reverse_side (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted document's reverse side. Available for "driver_license" and "identity_card". selfie (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted selfie of the user with a document. Can be available for "passport", "driver_license", "identity_card" and "internal_passport". translation (tuple[:class:`telegram.FileCredentials`]): Optional. Credentials for an encrypted translation of the document. Available for "passport", "driver_license", "identity_card", "internal_passport", "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration". .. versionchanged:: 20.0 |tupleclassattrs| files (tuple[:class:`telegram.FileCredentials`]): Optional. Credentials for encrypted files. Available for "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration" types. .. versionchanged:: 20.0 * |tupleclassattrs| * |alwaystuple| )r"files front_side reverse_sideselfie translationNr4r"DataCredentialsrmFileCredentialsrnrorlrpr5csFtj|d||_||_||_||_t||_t||_| dSr6) r7r8r"rmrnrorrlrpr:)r;r"rmrnrorlrpr5r<r)r*r8s    zSecureValue.__init__rVrr>cs||}|s dStj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj|d|d|d<tj||d S) rWNr"rXrmrnrorlrprY)rZrqrHr[rrde_listr7r\r<r)r*rHs zSecureValue.de_json)NNNNNNr^) rJrKrLrMrNrrrr8r_rHrRr)r)r<r*rkysF7    rkc<eZdZdZdZdddededeeffdd ZZ S) _CredentialsBasez3Base class for DataCredentials and FileCredentials.)r( file_hashr!r Nr4r!r r5csXtj|d|||_||_|j|_|j|_WddS1s%wYdSr6)r7r8 _unfrozenr!r rvr()r;r!r r5r<r)r*r8s  "z_CredentialsBase.__init__ rJrKrLrMrNrOrrr8rRr)r)r<r*rusrucrt) rqal These credentials can be used to decrypt encrypted data from the data field in EncryptedPassportData. Args: data_hash (:obj:`str`): Checksum of encrypted data secret (:obj:`str`): Secret of encrypted data Attributes: hash (:obj:`str`): Checksum of encrypted data secret (:obj:`str`): Secret of encrypted data r)Nr4r(r r5ctj|||d|dSN)r!r r5r7r8r:)r;r(r r5r<r)r*r8 zDataCredentials.__init__rxr)r)r<r*rq ,rqcrt) rra These credentials can be used to decrypt encrypted files from the front_side, reverse_side, selfie and files fields in EncryptedPassportData. Args: file_hash (:obj:`str`): Checksum of encrypted file secret (:obj:`str`): Secret of encrypted file Attributes: hash (:obj:`str`): Checksum of encrypted file secret (:obj:`str`): Secret of encrypted file r)Nr4rvr r5cryrzr{)r;rvr r5r<r)r*r8r|zFileCredentials.__init__rxr)r)r<r*rrr}rr)0r,base64rcollections.abcrtypingrrrcryptography.hazmat.backendsr1cryptography.hazmat.primitives.asymmetric.paddingrr &cryptography.hazmat.primitives.ciphersr 1cryptography.hazmat.primitives.ciphers.algorithmsr ,cryptography.hazmat.primitives.ciphers.modesr %cryptography.hazmat.primitives.hashesr rrrr ImportErrortelegram._telegramobjectrtelegram._utils.argumentparsingrtelegram._utils.stringsrtelegram._utils.typesrtelegram.errorrtelegramrr+r0r1rGrUrkrurqrrr)r)r)r*sH               0 k&~c