Telethon/telethon/network/authenticator.py

import os
import time
from hashlib import sha1

import errno

from .. import helpers as utils
from ..crypto import AES, AuthKey, Factorization
from ..crypto import rsa
from ..errors import SecurityError, TypeNotFoundError
from ..extensions import BinaryReader, BinaryWriter
from ..network import MtProtoPlainSender


def do_authentication(connection, retries=5):
    if not retries or retries < 0:
        retries = 1

    last_error = None
    while retries:
        try:
            return _do_authentication(connection)
        except (SecurityError, TypeNotFoundError, NotImplementedError) as e:
            last_error = e
        retries -= 1
    raise last_error


def _do_authentication(connection):
    """Executes the authentication process with the Telegram servers.
       If no error is raised, returns both the authorization key and the
       time offset.
    """
    sender = MtProtoPlainSender(connection)

    # Step 1 sending: PQ Request
    nonce = os.urandom(16)
    with BinaryWriter(known_length=20) as writer:
        writer.write_int(0x60469778, signed=False)  # Constructor number
        writer.write(nonce)
        sender.send(writer.get_bytes())

    # Step 1 response: PQ Request
    pq, pq_bytes, server_nonce, fingerprints = None, None, None, []
    with BinaryReader(sender.receive()) as reader:
        response_code = reader.read_int(signed=False)
        if response_code != 0x05162463:
            raise TypeNotFoundError(response_code)

        nonce_from_server = reader.read(16)
        if nonce_from_server != nonce:
            raise SecurityError('Invalid nonce from server')

        server_nonce = reader.read(16)

        pq_bytes = reader.tgread_bytes()
        pq = get_int(pq_bytes)

        vector_id = reader.read_int()
        if vector_id != 0x1cb5c415:
            raise TypeNotFoundError(response_code)

        fingerprints = []
        fingerprint_count = reader.read_int()
        for _ in range(fingerprint_count):
            fingerprints.append(reader.read(8))

    # Step 2 sending: DH Exchange
    new_nonce = os.urandom(32)
    p, q = Factorization.factorize(pq)
    with BinaryWriter() as pq_inner_data_writer:
        pq_inner_data_writer.write_int(
            0x83c95aec, signed=False)  # PQ Inner Data
        pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(pq))
        pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(min(p, q)))
        pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(max(p, q)))
        pq_inner_data_writer.write(nonce)
        pq_inner_data_writer.write(server_nonce)
        pq_inner_data_writer.write(new_nonce)

        # sha_digest + data + random_bytes
        cipher_text, target_fingerprint = None, None
        for fingerprint in fingerprints:
            cipher_text = rsa.encrypt(
                fingerprint,
                pq_inner_data_writer.get_bytes()
            )

            if cipher_text is not None:
                target_fingerprint = fingerprint
                break

        if cipher_text is None:
            raise SecurityError(
                'Could not find a valid key for fingerprints: {}'
                .format(', '.join([repr(f) for f in fingerprints]))
            )

        with BinaryWriter() as req_dh_params_writer:
            req_dh_params_writer.write_int(
                0xd712e4be, signed=False)  # Req DH Params
            req_dh_params_writer.write(nonce)
            req_dh_params_writer.write(server_nonce)
            req_dh_params_writer.tgwrite_bytes(rsa.get_byte_array(min(p, q)))
            req_dh_params_writer.tgwrite_bytes(rsa.get_byte_array(max(p, q)))
            req_dh_params_writer.write(target_fingerprint)
            req_dh_params_writer.tgwrite_bytes(cipher_text)

            req_dh_params_bytes = req_dh_params_writer.get_bytes()
            sender.send(req_dh_params_bytes)

    # Step 2 response: DH Exchange
    encrypted_answer = None
    with BinaryReader(sender.receive()) as reader:
        response_code = reader.read_int(signed=False)

        if response_code == 0x79cb045d:
            raise SecurityError('Server DH params fail: TODO')

        if response_code != 0xd0e8075c:
            raise TypeNotFoundError(response_code)

        nonce_from_server = reader.read(16)
        if nonce_from_server != nonce:
            raise SecurityError('Invalid nonce from server')

        server_nonce_from_server = reader.read(16)
        if server_nonce_from_server != server_nonce:
            raise SecurityError('Invalid server nonce from server')

        encrypted_answer = reader.tgread_bytes()

    # Step 3 sending: Complete DH Exchange
    key, iv = utils.generate_key_data_from_nonce(server_nonce, new_nonce)
    plain_text_answer = AES.decrypt_ige(encrypted_answer, key, iv)

    g, dh_prime, ga, time_offset = None, None, None, None
    with BinaryReader(plain_text_answer) as dh_inner_data_reader:
        dh_inner_data_reader.read(20)  # hash sum
        code = dh_inner_data_reader.read_int(signed=False)
        if code != 0xb5890dba:
            raise TypeNotFoundError(code)

        nonce_from_server1 = dh_inner_data_reader.read(16)
        if nonce_from_server1 != nonce:
            raise SecurityError('Invalid nonce in encrypted answer')

        server_nonce_from_server1 = dh_inner_data_reader.read(16)
        if server_nonce_from_server1 != server_nonce:
            raise SecurityError('Invalid server nonce in encrypted answer')

        g = dh_inner_data_reader.read_int()
        dh_prime = get_int(dh_inner_data_reader.tgread_bytes(), signed=False)
        ga = get_int(dh_inner_data_reader.tgread_bytes(), signed=False)

        server_time = dh_inner_data_reader.read_int()
        time_offset = server_time - int(time.time())

    b = get_int(os.urandom(256), signed=False)
    gb = pow(g, b, dh_prime)
    gab = pow(ga, b, dh_prime)

    # Prepare client DH Inner Data
    with BinaryWriter() as client_dh_inner_data_writer:
        client_dh_inner_data_writer.write_int(
            0x6643b654, signed=False)  # Client DH Inner Data
        client_dh_inner_data_writer.write(nonce)
        client_dh_inner_data_writer.write(server_nonce)
        client_dh_inner_data_writer.write_long(0)  # TODO retry_id
        client_dh_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(gb))

        with BinaryWriter() as client_dh_inner_data_with_hash_writer:
            client_dh_inner_data_with_hash_writer.write(
                sha1(client_dh_inner_data_writer.get_bytes()).digest())

            client_dh_inner_data_with_hash_writer.write(
                client_dh_inner_data_writer.get_bytes())

            client_dh_inner_data_bytes = \
                client_dh_inner_data_with_hash_writer.get_bytes()

    # Encryption
    client_dh_inner_data_encrypted_bytes = AES.encrypt_ige(
        client_dh_inner_data_bytes, key, iv)

    # Prepare Set client DH params
    with BinaryWriter() as set_client_dh_params_writer:
        set_client_dh_params_writer.write_int(0xf5045f1f, signed=False)
        set_client_dh_params_writer.write(nonce)
        set_client_dh_params_writer.write(server_nonce)
        set_client_dh_params_writer.tgwrite_bytes(
            client_dh_inner_data_encrypted_bytes)

        set_client_dh_params_bytes = set_client_dh_params_writer.get_bytes()
        sender.send(set_client_dh_params_bytes)

    # Step 3 response: Complete DH Exchange
    with BinaryReader(sender.receive()) as reader:
        code = reader.read_int(signed=False)
        if code == 0x3bcbf734:  # DH Gen OK
            nonce_from_server = reader.read(16)
            if nonce_from_server != nonce:
                raise SecurityError('Invalid nonce from server')

            server_nonce_from_server = reader.read(16)
            if server_nonce_from_server != server_nonce:
                raise SecurityError('Invalid server nonce from server')

            new_nonce_hash1 = reader.read(16)
            auth_key = AuthKey(rsa.get_byte_array(gab))

            new_nonce_hash_calculated = auth_key.calc_new_nonce_hash(new_nonce,
                                                                     1)
            if new_nonce_hash1 != new_nonce_hash_calculated:
                raise SecurityError('Invalid new nonce hash')

            return auth_key, time_offset

        elif code == 0x46dc1fb9:  # DH Gen Retry
            raise NotImplementedError('dh_gen_retry')

        elif code == 0xa69dae02:  # DH Gen Fail
            raise NotImplementedError('dh_gen_fail')

        else:
            raise NotImplementedError('DH Gen unknown: {}'.format(hex(code)))


def get_int(byte_array, signed=True):
    """Gets the specified integer from its byte array.
       This should be used by the authenticator,
       who requires the data to be in big endian
    """
    return int.from_bytes(byte_array, byteorder='big', signed=signed)
Pythonized some parts 2016-09-16 15:04:46 +03:00			`import os`
First attempt at TelegramClient. Added fixes and doc 2016-09-04 12:07:18 +03:00			`import time`
Use more straightforward calls of hashlib.sha1/sha256 2017-06-02 17:49:03 +03:00			`from hashlib import sha1`
Many code-style improvements 2016-11-30 00:29:42 +03:00
Create a Connection only once and avoid no-op if was "connected" 2017-09-21 14:43:33 +03:00			`import errno`

Use relative imports always where possible 2017-05-21 14:02:54 +03:00			`from .. import helpers as utils`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`from ..crypto import AES, AuthKey, Factorization`
			`from ..crypto import rsa`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`from ..errors import SecurityError, TypeNotFoundError`
Slightly reorganise the project structure 2017-06-09 17:13:39 +03:00			`from ..extensions import BinaryReader, BinaryWriter`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`from ..network import MtProtoPlainSender`


			`def do_authentication(connection, retries=5):`
			`if not retries or retries < 0:`
			`retries = 1`

			`last_error = None`
			`while retries:`
			`try:`
			`return _do_authentication(connection)`
			`except (SecurityError, TypeNotFoundError, NotImplementedError) as e:`
			`last_error = e`
			`retries -= 1`
			`raise last_error`
Added authenticator 2016-08-28 20:26:06 +03:00

Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`def _do_authentication(connection):`
First attempt at TelegramClient. Added fixes and doc 2016-09-04 12:07:18 +03:00			`"""Executes the authentication process with the Telegram servers.`
Update to v0.10 and some minor grammar fixes 2017-06-03 14:36:41 +03:00			`If no error is raised, returns both the authorization key and the`
			`time offset.`
			`"""`
Create a centralized Connection class, replaces TcpTransport (#112) 2017-08-28 22:23:31 +03:00			`sender = MtProtoPlainSender(connection)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`# Step 1 sending: PQ Request`
Pythonized some parts 2016-09-16 15:04:46 +03:00			`nonce = os.urandom(16)`
Set a known buffer size if possible on BinaryWriter()s 2017-08-29 21:25:49 +03:00			`with BinaryWriter(known_length=20) as writer:`
Several fixes to authenticator, added more unit tests Some fixes include, in more detail: - Using little over big endianess in some parts - Flagging all the constructor numbers as unsigned - Fixed bugs with factorizer - Implemented TLSharp's RSA 2016-09-03 11:54:58 +03:00			`writer.write_int(0x60469778, signed=False) # Constructor number`
Added authenticator 2016-08-28 20:26:06 +03:00			`writer.write(nonce)`
			`sender.send(writer.get_bytes())`

			`# Step 1 response: PQ Request`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`pq, pq_bytes, server_nonce, fingerprints = None, None, None, []`
Added authenticator 2016-08-28 20:26:06 +03:00			`with BinaryReader(sender.receive()) as reader:`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`response_code = reader.read_int(signed=False)`
Added authenticator 2016-08-28 20:26:06 +03:00			`if response_code != 0x05162463:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise TypeNotFoundError(response_code)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`nonce_from_server = reader.read(16)`
			`if nonce_from_server != nonce:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise SecurityError('Invalid nonce from server')`
Added authenticator 2016-08-28 20:26:06 +03:00
			`server_nonce = reader.read(16)`

			`pq_bytes = reader.tgread_bytes()`
Completely refactored unit tests, removed unused code 2016-09-08 17:11:37 +03:00			`pq = get_int(pq_bytes)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`vector_id = reader.read_int()`
			`if vector_id != 0x1cb5c415:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise TypeNotFoundError(response_code)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`fingerprints = []`
			`fingerprint_count = reader.read_int()`
			`for _ in range(fingerprint_count):`
			`fingerprints.append(reader.read(8))`

			`# Step 2 sending: DH Exchange`
Pythonized some parts 2016-09-16 15:04:46 +03:00			`new_nonce = os.urandom(32)`
Make lint happier 2017-05-21 14:59:16 +03:00			`p, q = Factorization.factorize(pq)`
Added authenticator 2016-08-28 20:26:06 +03:00			`with BinaryWriter() as pq_inner_data_writer:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`pq_inner_data_writer.write_int(`
			`0x83c95aec, signed=False) # PQ Inner Data`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(pq))`
			`pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(min(p, q)))`
			`pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(max(p, q)))`
Added authenticator 2016-08-28 20:26:06 +03:00			`pq_inner_data_writer.write(nonce)`
			`pq_inner_data_writer.write(server_nonce)`
			`pq_inner_data_writer.write(new_nonce)`

Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`# sha_digest + data + random_bytes`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`cipher_text, target_fingerprint = None, None`
Added authenticator 2016-08-28 20:26:06 +03:00			`for fingerprint in fingerprints:`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`cipher_text = rsa.encrypt(`
			`fingerprint,`
			`pq_inner_data_writer.get_bytes()`
			`)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`if cipher_text is not None:`
			`target_fingerprint = fingerprint`
			`break`

			`if cipher_text is None:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise SecurityError(`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`'Could not find a valid key for fingerprints: {}'`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`.format(', '.join([repr(f) for f in fingerprints]))`
			`)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`with BinaryWriter() as req_dh_params_writer:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`req_dh_params_writer.write_int(`
			`0xd712e4be, signed=False) # Req DH Params`
Added authenticator 2016-08-28 20:26:06 +03:00			`req_dh_params_writer.write(nonce)`
			`req_dh_params_writer.write(server_nonce)`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`req_dh_params_writer.tgwrite_bytes(rsa.get_byte_array(min(p, q)))`
			`req_dh_params_writer.tgwrite_bytes(rsa.get_byte_array(max(p, q)))`
Several fixes to authenticator, added more unit tests Some fixes include, in more detail: - Using little over big endianess in some parts - Flagging all the constructor numbers as unsigned - Fixed bugs with factorizer - Implemented TLSharp's RSA 2016-09-03 11:54:58 +03:00			`req_dh_params_writer.write(target_fingerprint)`
Added authenticator 2016-08-28 20:26:06 +03:00			`req_dh_params_writer.tgwrite_bytes(cipher_text)`

Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`req_dh_params_bytes = req_dh_params_writer.get_bytes()`
			`sender.send(req_dh_params_bytes)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`# Step 2 response: DH Exchange`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`encrypted_answer = None`
Added authenticator 2016-08-28 20:26:06 +03:00			`with BinaryReader(sender.receive()) as reader:`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`response_code = reader.read_int(signed=False)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`if response_code == 0x79cb045d:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise SecurityError('Server DH params fail: TODO')`
Added authenticator 2016-08-28 20:26:06 +03:00
			`if response_code != 0xd0e8075c:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise TypeNotFoundError(response_code)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`nonce_from_server = reader.read(16)`
			`if nonce_from_server != nonce:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise SecurityError('Invalid nonce from server')`
Added authenticator 2016-08-28 20:26:06 +03:00
			`server_nonce_from_server = reader.read(16)`
			`if server_nonce_from_server != server_nonce:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise SecurityError('Invalid server nonce from server')`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00
Added authenticator 2016-08-28 20:26:06 +03:00			`encrypted_answer = reader.tgread_bytes()`

			`# Step 3 sending: Complete DH Exchange`
Make lint happier 2017-05-21 14:59:16 +03:00			`key, iv = utils.generate_key_data_from_nonce(server_nonce, new_nonce)`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00			`plain_text_answer = AES.decrypt_ige(encrypted_answer, key, iv)`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00
			`g, dh_prime, ga, time_offset = None, None, None, None`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00			`with BinaryReader(plain_text_answer) as dh_inner_data_reader:`
Make lint happier 2017-05-21 14:59:16 +03:00			`dh_inner_data_reader.read(20) # hash sum`
Added authenticator 2016-08-28 20:26:06 +03:00			`code = dh_inner_data_reader.read_int(signed=False)`
			`if code != 0xb5890dba:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise TypeNotFoundError(code)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`nonce_from_server1 = dh_inner_data_reader.read(16)`
			`if nonce_from_server1 != nonce:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise SecurityError('Invalid nonce in encrypted answer')`
Added authenticator 2016-08-28 20:26:06 +03:00
			`server_nonce_from_server1 = dh_inner_data_reader.read(16)`
			`if server_nonce_from_server1 != server_nonce:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise SecurityError('Invalid server nonce in encrypted answer')`
Added authenticator 2016-08-28 20:26:06 +03:00
			`g = dh_inner_data_reader.read_int()`
Completely refactored unit tests, removed unused code 2016-09-08 17:11:37 +03:00			`dh_prime = get_int(dh_inner_data_reader.tgread_bytes(), signed=False)`
			`ga = get_int(dh_inner_data_reader.tgread_bytes(), signed=False)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`server_time = dh_inner_data_reader.read_int()`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00			`time_offset = server_time - int(time.time())`
Added authenticator 2016-08-28 20:26:06 +03:00
Use the correct amount of random bytes in DH request The official documentation says a 2048 bit number. `os.urandom` takes an argument that represents the number of bytes. 2048 bits is 256 bytes 2017-06-19 00:38:14 +03:00			`b = get_int(os.urandom(256), signed=False)`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`gb = pow(g, b, dh_prime)`
			`gab = pow(ga, b, dh_prime)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`# Prepare client DH Inner Data`
			`with BinaryWriter() as client_dh_inner_data_writer:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`client_dh_inner_data_writer.write_int(`
			`0x6643b654, signed=False) # Client DH Inner Data`
Added authenticator 2016-08-28 20:26:06 +03:00			`client_dh_inner_data_writer.write(nonce)`
			`client_dh_inner_data_writer.write(server_nonce)`
			`client_dh_inner_data_writer.write_long(0) # TODO retry_id`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`client_dh_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(gb))`
Added authenticator 2016-08-28 20:26:06 +03:00
			`with BinaryWriter() as client_dh_inner_data_with_hash_writer:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`client_dh_inner_data_with_hash_writer.write(`
Use more straightforward calls of hashlib.sha1/sha256 2017-06-02 17:49:03 +03:00			`sha1(client_dh_inner_data_writer.get_bytes()).digest())`

Many code-style improvements 2016-11-30 00:29:42 +03:00			`client_dh_inner_data_with_hash_writer.write(`
			`client_dh_inner_data_writer.get_bytes())`
Use more straightforward calls of hashlib.sha1/sha256 2017-06-02 17:49:03 +03:00
			`client_dh_inner_data_bytes = \`
			`client_dh_inner_data_with_hash_writer.get_bytes()`
Added authenticator 2016-08-28 20:26:06 +03:00
			`# Encryption`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`client_dh_inner_data_encrypted_bytes = AES.encrypt_ige(`
			`client_dh_inner_data_bytes, key, iv)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`# Prepare Set client DH params`
			`with BinaryWriter() as set_client_dh_params_writer:`
Several fixes to authenticator, added more unit tests Some fixes include, in more detail: - Using little over big endianess in some parts - Flagging all the constructor numbers as unsigned - Fixed bugs with factorizer - Implemented TLSharp's RSA 2016-09-03 11:54:58 +03:00			`set_client_dh_params_writer.write_int(0xf5045f1f, signed=False)`
Added authenticator 2016-08-28 20:26:06 +03:00			`set_client_dh_params_writer.write(nonce)`
			`set_client_dh_params_writer.write(server_nonce)`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`set_client_dh_params_writer.tgwrite_bytes(`
			`client_dh_inner_data_encrypted_bytes)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`set_client_dh_params_bytes = set_client_dh_params_writer.get_bytes()`
			`sender.send(set_client_dh_params_bytes)`

			`# Step 3 response: Complete DH Exchange`
			`with BinaryReader(sender.receive()) as reader:`
			`code = reader.read_int(signed=False)`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`if code == 0x3bcbf734: # DH Gen OK`
Added authenticator 2016-08-28 20:26:06 +03:00			`nonce_from_server = reader.read(16)`
			`if nonce_from_server != nonce:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise SecurityError('Invalid nonce from server')`
Added authenticator 2016-08-28 20:26:06 +03:00
			`server_nonce_from_server = reader.read(16)`
			`if server_nonce_from_server != server_nonce:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise SecurityError('Invalid server nonce from server')`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00
Added authenticator 2016-08-28 20:26:06 +03:00			`new_nonce_hash1 = reader.read(16)`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`auth_key = AuthKey(rsa.get_byte_array(gab))`
Added authenticator 2016-08-28 20:26:06 +03:00
Many code-style improvements 2016-11-30 00:29:42 +03:00			`new_nonce_hash_calculated = auth_key.calc_new_nonce_hash(new_nonce,`
			`1)`
Added authenticator 2016-08-28 20:26:06 +03:00			`if new_nonce_hash1 != new_nonce_hash_calculated:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise SecurityError('Invalid new nonce hash')`
Added authenticator 2016-08-28 20:26:06 +03:00
			`return auth_key, time_offset`

			`elif code == 0x46dc1fb9: # DH Gen Retry`
			`raise NotImplementedError('dh_gen_retry')`

			`elif code == 0xa69dae02: # DH Gen Fail`
			`raise NotImplementedError('dh_gen_fail')`

			`else:`
Retry authentication for auth keys up to five times by default 2017-09-17 20:14:36 +03:00			`raise NotImplementedError('DH Gen unknown: {}'.format(hex(code)))`
Several fixes to authenticator, added more unit tests Some fixes include, in more detail: - Using little over big endianess in some parts - Flagging all the constructor numbers as unsigned - Fixed bugs with factorizer - Implemented TLSharp's RSA 2016-09-03 11:54:58 +03:00

Completely refactored unit tests, removed unused code 2016-09-08 17:11:37 +03:00			`def get_int(byte_array, signed=True):`
Make lint happier 2017-09-04 18:10:04 +03:00			`"""Gets the specified integer from its byte array.`
			`This should be used by the authenticator,`
			`who requires the data to be in big endian`
			`"""`
Completely refactored unit tests, removed unused code 2016-09-08 17:11:37 +03:00			`return int.from_bytes(byte_array, byteorder='big', signed=signed)`