՟f|YddlZddlmZddlmZmZmZmZmZ ddl m Z ddl m Z m Z ddlmZddlmZddlmZdd lmZmZmZmZd ZddlmZddlmZddlm Z ddl!m"Z"ddl#m$Z$erddl%m&Z&edZ'edZ(GddeZ)GddeZ*GddeZ+GddeZ,GddeZ-Gd d!e-Z.Gd"d#e-Z/y#e$rdZ d \Z Z ZZZd \ZZZZd ZYwxYw)$N) b64decode) TYPE_CHECKINGOptionalSequenceTuple no_type_check)default_backend)MGF1OAEP)Cipher)AES)CBC)SHA1SHA256SHA512HashT)NNNNN)NNNNF)TelegramObject)parse_sequence_arg) TextEncoding)JSONDict)PassportDecryptionError)Botc&ts tdttt }|j ||z|j }|dd|dd}}tt|t|t }|j}|j ||j z}ttt }|j ||j } | |k7rtd| d|||ddS) a Decrypt per telegram docs at https://core.telegram.org/passport. Args: secret (:obj:`str` or :obj:`bytes`): The encryption secret, either as bytes or as a base64 encoded string. hash (:obj:`str` or :obj:`bytes`): The hash, either as bytes or as a base64 encoded string. data (:obj:`str` or :obj:`bytes`): The data to decrypt, either as bytes or as a base64 encoded string. file (:obj:`bool`): Force data to be treated as raw data, instead of trying to b64decode it. Raises: :class:`PassportDecryptionError`: Given hash does not match hash of decrypted data. Returns: :obj:`bytes`: The decrypted data as bytes. cTo use Telegram Passports, PTB must be installed via `pip install "python-telegram-bot[passport]"`.)backendN 0zHashes are not equal! z != r) CRYPTO_INSTALLED RuntimeErrorrrr updatefinalizer r r decryptorrr) secrethashdatadigestsecret_hash_hashkey init_vectorcipherr" data_hashs Y/var/www/cvtools/html/venv/lib/python3.12/site-packages/telegram/_passport/credentials.pydecryptr-2s,  0  &(O$5 6F MM&4- (',.>rG.LC CHc+.8I JF  "I   D !I$6$6$8 8D &(O$5 6F MM$!ID%(>ykdV&TUU Q ?c|tjt|||jtj S)zPDecrypts data using secret and hash and then decodes utf-8 string and loads json)jsonloadsr-decoderUTF_8)r#r$r%s r, decrypt_jsonr4cs- ::gfdD1889K9KL MMr.c leZdZdZdZdddedededeeffd Ze d e fd Z e d d Z xZ S)EncryptedCredentialsaDContains data required for decrypting and authenticating EncryptedPassportElement. See the Telegram Passport Documentation for a complete description of the data decryption and authentication processes. Objects of this class are comparable in terms of equality. Two objects of this class are considered equal, if their :attr:`data`, :attr:`hash` and :attr:`secret` are equal. Note: This object is decrypted only when originating from :attr:`telegram.PassportData.decrypted_credentials`. Args: data (:class:`telegram.Credentials` | :obj:`str`): Decrypted data with unique user's nonce, data hashes and secrets used for EncryptedPassportElement decryption and authentication or base64 encrypted data. hash (:obj:`str`): Base64-encoded data hash for data authentication. secret (:obj:`str`): Decrypted or encrypted secret used for decryption. Attributes: data (:class:`telegram.Credentials` | :obj:`str`): Decrypted data with unique user's nonce, data hashes and secrets used for EncryptedPassportElement decryption and authentication or base64 encrypted data. hash (:obj:`str`): Base64-encoded data hash for data authentication. secret (:obj:`str`): Decrypted or encrypted secret used for decryption. )_decrypted_data_decrypted_secretr%r$r#N api_kwargsr%r$r#r:ct||||_||_||_|j|j|jf|_d|_d|_|jyNr9) super__init__r%r$r# _id_attrsr8r7_freeze)selfr%r$r#r: __class__s r,r>zEncryptedCredentials.__init__s] J/  ! ))TYY <266: r.returnc x|jts td |jjj t |jttttd|_|jS|jS#t$r}t||d}~wwxYw)z :obj:`bytes`: Lazily decrypt and return secret. Raises: telegram.error.PassportDecryptionError: Decryption failed. Usually due to bad private/public key but can also suggest malformed/tampered data. Nr) algorithm)mgfrElabel) r8rrget_bot private_keyr-rr#r r r ValueErrorr)rA exceptions r,decrypted_secretz%EncryptedCredentials.decrypted_secrets  ! ! )#"8 H)-)C)C)K)Kdkk*TDF3tvTR*&%%%t%%% H-i8iG HsA(B B9( B44B9c |jdtjt|jt |j t |j|j|_|jS)a~ :class:`telegram.Credentials`: Lazily decrypt and return credentials data. This object also contains the user specified nonce as `decrypted_data.nonce`. Raises: telegram.error.PassportDecryptionError: Decryption failed. Usually due to bad private/public key but can also suggest malformed/tampered data. ) r7 Credentialsde_jsonr4rLrr$r%rH)rAs r,decrypted_dataz#EncryptedCredentials.decrypted_datasa    '#.#6#6T22Idii4H)TXT]T]J^_ $D ###r.)rCrN)__name__ __module__ __qualname____doc__ __slots__strrrr>propertybytesrLrP __classcell__rBs@r,r6r6iss6I*.   X& *&%&&<$$r.r6c xeZdZdZdZdddddedeeffd Ze dd eed ed d edffd Z xZ S)rNz Attributes: secure_data (:class:`telegram.SecureData`): Credentials for encrypted data nonce (:obj:`str`): Bot-specified nonce )nonce secure_dataNr9r] SecureDatar\r:cbt||||_||_|j yr<)r=r>r]r\r@)rAr]r\r:rBs r,r>zCredentials.__init__s- J/'2  r.r%botrrCc|j|}|sytj|jd||d<t| ||S),See :meth:`telegram.TelegramObject.de_json`.Nr]r`r%r`) _parse_datar^rOgetr=clsr%r`rBs r,rOzCredentials.de_jsonsO t$(00-1Hc0R]wDc22r.N) rQrRrSrTrUrVrrr> classmethodrOrYrZs@r,rNrNsw )I*. !   X& >B 3H% 3,4UO 3 -  3 3r.rNceZdZdZdZ ddddeddeddedd edd edd edd edd eddeddeddeddeeffdZe ddeededdedffd Z xZ S)r^a This object represents the credentials that were used to decrypt the encrypted data. All fields are optional and depend on fields that were requested. Args: personal_details (:class:`telegram.SecureValue`, optional): Credentials for encrypted personal details. passport (:class:`telegram.SecureValue`, optional): Credentials for encrypted passport. internal_passport (:class:`telegram.SecureValue`, optional): Credentials for encrypted internal passport. driver_license (:class:`telegram.SecureValue`, optional): Credentials for encrypted driver license. identity_card (:class:`telegram.SecureValue`, optional): Credentials for encrypted ID card address (:class:`telegram.SecureValue`, optional): Credentials for encrypted residential address. utility_bill (:class:`telegram.SecureValue`, optional): Credentials for encrypted utility bill. bank_statement (:class:`telegram.SecureValue`, optional): Credentials for encrypted bank statement. rental_agreement (:class:`telegram.SecureValue`, optional): Credentials for encrypted rental agreement. passport_registration (:class:`telegram.SecureValue`, optional): Credentials for encrypted registration from internal passport. temporary_registration (:class:`telegram.SecureValue`, optional): Credentials for encrypted temporary registration. Attributes: personal_details (:class:`telegram.SecureValue`): Optional. Credentials for encrypted personal details. passport (:class:`telegram.SecureValue`): Optional. Credentials for encrypted passport. internal_passport (:class:`telegram.SecureValue`): Optional. Credentials for encrypted internal passport. driver_license (:class:`telegram.SecureValue`): Optional. Credentials for encrypted driver license. identity_card (:class:`telegram.SecureValue`): Optional. Credentials for encrypted ID card address (:class:`telegram.SecureValue`): Optional. Credentials for encrypted residential address. utility_bill (:class:`telegram.SecureValue`): Optional. Credentials for encrypted utility bill. bank_statement (:class:`telegram.SecureValue`): Optional. Credentials for encrypted bank statement. rental_agreement (:class:`telegram.SecureValue`): Optional. Credentials for encrypted rental agreement. passport_registration (:class:`telegram.SecureValue`): Optional. Credentials for encrypted registration from internal passport. temporary_registration (:class:`telegram.SecureValue`): Optional. Credentials for encrypted temporary registration. ) addressbank_statementdriver_license identity_cardinternal_passportpassportpassport_registrationpersonal_detailsrental_agreementtemporary_registration utility_billNr9rs SecureValuerqrprnrorlrvrmrtrrrur:c t || | |_| |_| |_||_||_||_||_||_ ||_ ||_ ||_ |jyr<)r=r>rurrrtrmrvrlrornrprqrsr@)rArsrqrprnrorlrvrmrtrrrur:rBs r,r>zSecureData.__init__:sw J/>T#N5OUX!4!Y *22488N3KQT2U^%--dhhy.As-KY + 3 3DHH_4MSV 3 W_!,!4!4TXX>N5OUX!4!Y $/$7$7AT8U[^$7$_ !&..txx /C.MZ#.#6#6txx@R7SY\#6#]  wDc22r.) NNNNNNNNNNNri) rQrRrSrTrUrrr>rjrOrYrZs@r,r^r^s2/b I 59,0592615+/0426489=:>*."=1=)$M2  !/   . -(}-!/#=1 ( 6!) 7X&B>B3H%3,4UO3 , 33r.r^ceZdZdZdZ ddddeddedd edd edd eedd eedd eeffdZe ddeededdedffd Z xZ S)rwa? This object represents the credentials that were used to decrypt the encrypted value. All fields are optional and depend on the type of field. Args: data (:class:`telegram.DataCredentials`, optional): Credentials for encrypted Telegram Passport data. Available for "personal_details", "passport", "driver_license", "identity_card", "identity_passport" and "address" types. front_side (:class:`telegram.FileCredentials`, optional): Credentials for encrypted document's front side. Available for "passport", "driver_license", "identity_card" and "internal_passport". reverse_side (:class:`telegram.FileCredentials`, optional): Credentials for encrypted document's reverse side. Available for "driver_license" and "identity_card". selfie (:class:`telegram.FileCredentials`, optional): Credentials for encrypted selfie of the user with a document. Can be available for "passport", "driver_license", "identity_card" and "internal_passport". translation (List[:class:`telegram.FileCredentials`], optional): Credentials for an encrypted translation of the document. Available for "passport", "driver_license", "identity_card", "internal_passport", "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration". files (List[:class:`telegram.FileCredentials`], optional): Credentials for encrypted files. Available for "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration" types. Attributes: data (:class:`telegram.DataCredentials`): Optional. Credentials for encrypted Telegram Passport data. Available for "personal_details", "passport", "driver_license", "identity_card", "identity_passport" and "address" types. front_side (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted document's front side. Available for "passport", "driver_license", "identity_card" and "internal_passport". reverse_side (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted document's reverse side. Available for "driver_license" and "identity_card". selfie (:class:`telegram.FileCredentials`): Optional. Credentials for encrypted selfie of the user with a document. Can be available for "passport", "driver_license", "identity_card" and "internal_passport". translation (Tuple[:class:`telegram.FileCredentials`]): Optional. Credentials for an encrypted translation of the document. Available for "passport", "driver_license", "identity_card", "internal_passport", "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration". .. versionchanged:: 20.0 |tupleclassattrs| files (Tuple[:class:`telegram.FileCredentials`]): Optional. Credentials for encrypted files. Available for "utility_bill", "bank_statement", "rental_agreement", "passport_registration" and "temporary_registration" types. .. versionchanged:: 20.0 * |tupleclassattrs| * |alwaystuple| )r%files front_side reverse_sideselfie translationNr9r%DataCredentialsr|FileCredentialsr}r~r{rr:ct||||_||_||_||_t ||_t ||_|jyr<) r=r>r%r|r}r~rr{rr@) rAr%r|r}r~r{rr:rBs r,r>zSecureValue.__init__sT J//3 5?7C17 2DU2K 8J;8W r.r`rrCc:|j|}|sytj|jd||d<tj|jd||d<tj|jd||d<tj|jd||d<tj |jd||d<tj |jd||d<t | || S) rbNr%rcr|r}r~r{rrd)rerrOrfrde_listr=rgs r,rOzSecureValue.de_jsons t$&..txx/?S.IV ,44TXXl5KQT4U\.66txx7OUX6Y^(00(1C0MX'//0As/KW -55dhh}6MSV5W]wDc22r.)NNNNNNri) rQrRrSrTrUrrrr>rjrOrYrZs@r,rwrwxs5nYI-12648.27;=A*.()./01  *+  !234 h'89:X&*>B3H%3,4UO3 - 33r.rwc@eZdZdZdZdddededeeffdZxZ S) _CredentialsBasez3Base class for DataCredentials and FileCredentials.)r+ file_hashr$r#Nr9r$r#r:ct|||j5||_||_|j|_|j|_dddy#1swYyxYwr<)r=r> _unfrozenr$r#rr+)rAr$r#r:rBs r,r>z_CredentialsBase.__init__sZ J/ ^^  ,!DI%DK#'))DN"&))DN  , , ,s 1AA% rQrRrSrTrUrVrrr>rYrZs@r,rrs;=r@)rAr+r#r:rBs r,r>zDataCredentials.__init__  i:N r.rrZs@r,rr6 IX\#s8HCUr.rc@eZdZdZdZdddededeeffdZxZ S) ra These credentials can be used to decrypt encrypted files from the front_side, reverse_side, selfie and files fields in EncryptedPassportData. Args: file_hash (:obj:`str`): Checksum of encrypted file secret (:obj:`str`): Secret of encrypted file Attributes: hash (:obj:`str`): Checksum of encrypted file secret (:obj:`str`): Secret of encrypted file rNr9rr#r:cJt|||||jyrr)rArr#r:rBs r,r>zFileCredentials.__init__rr.rrZs@r,rrrr.r)0r0base64rtypingrrrrrcryptography.hazmat.backendsr 1cryptography.hazmat.primitives.asymmetric.paddingr r &cryptography.hazmat.primitives.ciphersr 1cryptography.hazmat.primitives.ciphers.algorithmsr ,cryptography.hazmat.primitives.ciphers.modesr%cryptography.hazmat.primitives.hashesrrrrr ImportErrortelegram._telegramobjectrtelegram._utils.argumentparsingrtelegram._utils.stringsrtelegram._utils.typesrtelegram.errorrtelegramrr-r4r6rNr^rwrrrrr.r,rs( JJ<L=E@PP4>0*2--`NN h$>h$V#3.#3L{3{3|`3.`3F,~,,&*&KO#A D$S!9D&&$ s.C C'&C'