Telethon/telethon/network/authenticator.py

import os
import time
from hashlib import sha1

from .. import helpers as utils
from ..crypto import AES, AuthKey, Factorization
from ..crypto import rsa
from ..network import MtProtoPlainSender
from ..extensions import BinaryReader, BinaryWriter


def do_authentication(connection):
    """Executes the authentication process with the Telegram servers.
       If no error is raised, returns both the authorization key and the
       time offset.
    """
    sender = MtProtoPlainSender(connection)
    sender.connect()

    # Step 1 sending: PQ Request
    nonce = os.urandom(16)
    with BinaryWriter(known_length=20) as writer:
        writer.write_int(0x60469778, signed=False)  # Constructor number
        writer.write(nonce)
        sender.send(writer.get_bytes())

    # Step 1 response: PQ Request
    pq, pq_bytes, server_nonce, fingerprints = None, None, None, []
    with BinaryReader(sender.receive()) as reader:
        response_code = reader.read_int(signed=False)
        if response_code != 0x05162463:
            raise AssertionError('Invalid response code: {}'.format(
                hex(response_code)))

        nonce_from_server = reader.read(16)
        if nonce_from_server != nonce:
            raise AssertionError('Invalid nonce from server')

        server_nonce = reader.read(16)

        pq_bytes = reader.tgread_bytes()
        pq = get_int(pq_bytes)

        vector_id = reader.read_int()
        if vector_id != 0x1cb5c415:
            raise AssertionError('Invalid vector constructor ID: {}'.format(
                hex(response_code)))

        fingerprints = []
        fingerprint_count = reader.read_int()
        for _ in range(fingerprint_count):
            fingerprints.append(reader.read(8))

    # Step 2 sending: DH Exchange
    new_nonce = os.urandom(32)
    p, q = Factorization.factorize(pq)
    with BinaryWriter() as pq_inner_data_writer:
        pq_inner_data_writer.write_int(
            0x83c95aec, signed=False)  # PQ Inner Data
        pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(pq))
        pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(min(p, q)))
        pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(max(p, q)))
        pq_inner_data_writer.write(nonce)
        pq_inner_data_writer.write(server_nonce)
        pq_inner_data_writer.write(new_nonce)

        # sha_digest + data + random_bytes
        cipher_text, target_fingerprint = None, None
        for fingerprint in fingerprints:
            cipher_text = rsa.encrypt(
                fingerprint,
                pq_inner_data_writer.get_bytes()
            )

            if cipher_text is not None:
                target_fingerprint = fingerprint
                break

        if cipher_text is None:
            raise AssertionError(
                'Could not find a valid key for fingerprints: {}'
                .format(', '.join([repr(f) for f in fingerprints]))
            )

        with BinaryWriter() as req_dh_params_writer:
            req_dh_params_writer.write_int(
                0xd712e4be, signed=False)  # Req DH Params
            req_dh_params_writer.write(nonce)
            req_dh_params_writer.write(server_nonce)
            req_dh_params_writer.tgwrite_bytes(rsa.get_byte_array(min(p, q)))
            req_dh_params_writer.tgwrite_bytes(rsa.get_byte_array(max(p, q)))
            req_dh_params_writer.write(target_fingerprint)
            req_dh_params_writer.tgwrite_bytes(cipher_text)

            req_dh_params_bytes = req_dh_params_writer.get_bytes()
            sender.send(req_dh_params_bytes)

    # Step 2 response: DH Exchange
    encrypted_answer = None
    with BinaryReader(sender.receive()) as reader:
        response_code = reader.read_int(signed=False)

        if response_code == 0x79cb045d:
            raise AssertionError('Server DH params fail: TODO')

        if response_code != 0xd0e8075c:
            raise AssertionError('Invalid response code: {}'.format(
                hex(response_code)))

        nonce_from_server = reader.read(16)
        if nonce_from_server != nonce:
            raise NotImplementedError('Invalid nonce from server')

        server_nonce_from_server = reader.read(16)
        if server_nonce_from_server != server_nonce:
            raise NotImplementedError('Invalid server nonce from server')

        encrypted_answer = reader.tgread_bytes()

    # Step 3 sending: Complete DH Exchange
    key, iv = utils.generate_key_data_from_nonce(server_nonce, new_nonce)
    plain_text_answer = AES.decrypt_ige(encrypted_answer, key, iv)

    g, dh_prime, ga, time_offset = None, None, None, None
    with BinaryReader(plain_text_answer) as dh_inner_data_reader:
        dh_inner_data_reader.read(20)  # hash sum
        code = dh_inner_data_reader.read_int(signed=False)
        if code != 0xb5890dba:
            raise AssertionError('Invalid DH Inner Data code: {}'.format(code))

        nonce_from_server1 = dh_inner_data_reader.read(16)
        if nonce_from_server1 != nonce:
            raise AssertionError('Invalid nonce in encrypted answer')

        server_nonce_from_server1 = dh_inner_data_reader.read(16)
        if server_nonce_from_server1 != server_nonce:
            raise AssertionError('Invalid server nonce in encrypted answer')

        g = dh_inner_data_reader.read_int()
        dh_prime = get_int(dh_inner_data_reader.tgread_bytes(), signed=False)
        ga = get_int(dh_inner_data_reader.tgread_bytes(), signed=False)

        server_time = dh_inner_data_reader.read_int()
        time_offset = server_time - int(time.time())

    b = get_int(os.urandom(256), signed=False)
    gb = pow(g, b, dh_prime)
    gab = pow(ga, b, dh_prime)

    # Prepare client DH Inner Data
    with BinaryWriter() as client_dh_inner_data_writer:
        client_dh_inner_data_writer.write_int(
            0x6643b654, signed=False)  # Client DH Inner Data
        client_dh_inner_data_writer.write(nonce)
        client_dh_inner_data_writer.write(server_nonce)
        client_dh_inner_data_writer.write_long(0)  # TODO retry_id
        client_dh_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(gb))

        with BinaryWriter() as client_dh_inner_data_with_hash_writer:
            client_dh_inner_data_with_hash_writer.write(
                sha1(client_dh_inner_data_writer.get_bytes()).digest())

            client_dh_inner_data_with_hash_writer.write(
                client_dh_inner_data_writer.get_bytes())

            client_dh_inner_data_bytes = \
                client_dh_inner_data_with_hash_writer.get_bytes()

    # Encryption
    client_dh_inner_data_encrypted_bytes = AES.encrypt_ige(
        client_dh_inner_data_bytes, key, iv)

    # Prepare Set client DH params
    with BinaryWriter() as set_client_dh_params_writer:
        set_client_dh_params_writer.write_int(0xf5045f1f, signed=False)
        set_client_dh_params_writer.write(nonce)
        set_client_dh_params_writer.write(server_nonce)
        set_client_dh_params_writer.tgwrite_bytes(
            client_dh_inner_data_encrypted_bytes)

        set_client_dh_params_bytes = set_client_dh_params_writer.get_bytes()
        sender.send(set_client_dh_params_bytes)

    # Step 3 response: Complete DH Exchange
    with BinaryReader(sender.receive()) as reader:
        # Everything read from the server, disconnect now
        sender.disconnect()

        code = reader.read_int(signed=False)
        if code == 0x3bcbf734:  # DH Gen OK
            nonce_from_server = reader.read(16)
            if nonce_from_server != nonce:
                raise NotImplementedError('Invalid nonce from server')

            server_nonce_from_server = reader.read(16)
            if server_nonce_from_server != server_nonce:
                raise NotImplementedError('Invalid server nonce from server')

            new_nonce_hash1 = reader.read(16)
            auth_key = AuthKey(rsa.get_byte_array(gab))

            new_nonce_hash_calculated = auth_key.calc_new_nonce_hash(new_nonce,
                                                                     1)
            if new_nonce_hash1 != new_nonce_hash_calculated:
                raise AssertionError('Invalid new nonce hash')

            return auth_key, time_offset

        elif code == 0x46dc1fb9:  # DH Gen Retry
            raise NotImplementedError('dh_gen_retry')

        elif code == 0xa69dae02:  # DH Gen Fail
            raise NotImplementedError('dh_gen_fail')

        else:
            raise AssertionError('DH Gen unknown: {}'.format(hex(code)))


def get_int(byte_array, signed=True):
    """Gets the specified integer from its byte array. This should be used by the authenticator,
       who requires the data to be in big endian"""
    return int.from_bytes(byte_array, byteorder='big', signed=signed)
Pythonized some parts 2016-09-16 15:04:46 +03:00			`import os`
First attempt at TelegramClient. Added fixes and doc 2016-09-04 12:07:18 +03:00			`import time`
Use more straightforward calls of hashlib.sha1/sha256 2017-06-02 17:49:03 +03:00			`from hashlib import sha1`
Many code-style improvements 2016-11-30 00:29:42 +03:00
Use relative imports always where possible 2017-05-21 14:02:54 +03:00			`from .. import helpers as utils`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`from ..crypto import AES, AuthKey, Factorization`
			`from ..crypto import rsa`
Use relative imports always where possible 2017-05-21 14:02:54 +03:00			`from ..network import MtProtoPlainSender`
Slightly reorganise the project structure 2017-06-09 17:13:39 +03:00			`from ..extensions import BinaryReader, BinaryWriter`
Added authenticator 2016-08-28 20:26:06 +03:00

Create a centralized Connection class, replaces TcpTransport (#112) 2017-08-28 22:23:31 +03:00			`def do_authentication(connection):`
First attempt at TelegramClient. Added fixes and doc 2016-09-04 12:07:18 +03:00			`"""Executes the authentication process with the Telegram servers.`
Update to v0.10 and some minor grammar fixes 2017-06-03 14:36:41 +03:00			`If no error is raised, returns both the authorization key and the`
			`time offset.`
			`"""`
Create a centralized Connection class, replaces TcpTransport (#112) 2017-08-28 22:23:31 +03:00			`sender = MtProtoPlainSender(connection)`
Avoid counterintuitive automatic connection 2017-05-20 12:33:37 +03:00			`sender.connect()`
Added authenticator 2016-08-28 20:26:06 +03:00
			`# Step 1 sending: PQ Request`
Pythonized some parts 2016-09-16 15:04:46 +03:00			`nonce = os.urandom(16)`
Set a known buffer size if possible on BinaryWriter()s 2017-08-29 21:25:49 +03:00			`with BinaryWriter(known_length=20) as writer:`
Several fixes to authenticator, added more unit tests Some fixes include, in more detail: - Using little over big endianess in some parts - Flagging all the constructor numbers as unsigned - Fixed bugs with factorizer - Implemented TLSharp's RSA 2016-09-03 11:54:58 +03:00			`writer.write_int(0x60469778, signed=False) # Constructor number`
Added authenticator 2016-08-28 20:26:06 +03:00			`writer.write(nonce)`
			`sender.send(writer.get_bytes())`

			`# Step 1 response: PQ Request`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`pq, pq_bytes, server_nonce, fingerprints = None, None, None, []`
Added authenticator 2016-08-28 20:26:06 +03:00			`with BinaryReader(sender.receive()) as reader:`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`response_code = reader.read_int(signed=False)`
Added authenticator 2016-08-28 20:26:06 +03:00			`if response_code != 0x05162463:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`raise AssertionError('Invalid response code: {}'.format(`
			`hex(response_code)))`
Added authenticator 2016-08-28 20:26:06 +03:00
			`nonce_from_server = reader.read(16)`
			`if nonce_from_server != nonce:`
			`raise AssertionError('Invalid nonce from server')`

			`server_nonce = reader.read(16)`

			`pq_bytes = reader.tgread_bytes()`
Completely refactored unit tests, removed unused code 2016-09-08 17:11:37 +03:00			`pq = get_int(pq_bytes)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`vector_id = reader.read_int()`
			`if vector_id != 0x1cb5c415:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`raise AssertionError('Invalid vector constructor ID: {}'.format(`
			`hex(response_code)))`
Added authenticator 2016-08-28 20:26:06 +03:00
			`fingerprints = []`
			`fingerprint_count = reader.read_int()`
			`for _ in range(fingerprint_count):`
			`fingerprints.append(reader.read(8))`

			`# Step 2 sending: DH Exchange`
Pythonized some parts 2016-09-16 15:04:46 +03:00			`new_nonce = os.urandom(32)`
Make lint happier 2017-05-21 14:59:16 +03:00			`p, q = Factorization.factorize(pq)`
Added authenticator 2016-08-28 20:26:06 +03:00			`with BinaryWriter() as pq_inner_data_writer:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`pq_inner_data_writer.write_int(`
			`0x83c95aec, signed=False) # PQ Inner Data`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(pq))`
			`pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(min(p, q)))`
			`pq_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(max(p, q)))`
Added authenticator 2016-08-28 20:26:06 +03:00			`pq_inner_data_writer.write(nonce)`
			`pq_inner_data_writer.write(server_nonce)`
			`pq_inner_data_writer.write(new_nonce)`

Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`# sha_digest + data + random_bytes`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`cipher_text, target_fingerprint = None, None`
Added authenticator 2016-08-28 20:26:06 +03:00			`for fingerprint in fingerprints:`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`cipher_text = rsa.encrypt(`
			`fingerprint,`
			`pq_inner_data_writer.get_bytes()`
			`)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`if cipher_text is not None:`
			`target_fingerprint = fingerprint`
			`break`

			`if cipher_text is None:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`raise AssertionError(`
			`'Could not find a valid key for fingerprints: {}'`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`.format(', '.join([repr(f) for f in fingerprints]))`
			`)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`with BinaryWriter() as req_dh_params_writer:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`req_dh_params_writer.write_int(`
			`0xd712e4be, signed=False) # Req DH Params`
Added authenticator 2016-08-28 20:26:06 +03:00			`req_dh_params_writer.write(nonce)`
			`req_dh_params_writer.write(server_nonce)`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`req_dh_params_writer.tgwrite_bytes(rsa.get_byte_array(min(p, q)))`
			`req_dh_params_writer.tgwrite_bytes(rsa.get_byte_array(max(p, q)))`
Several fixes to authenticator, added more unit tests Some fixes include, in more detail: - Using little over big endianess in some parts - Flagging all the constructor numbers as unsigned - Fixed bugs with factorizer - Implemented TLSharp's RSA 2016-09-03 11:54:58 +03:00			`req_dh_params_writer.write(target_fingerprint)`
Added authenticator 2016-08-28 20:26:06 +03:00			`req_dh_params_writer.tgwrite_bytes(cipher_text)`

Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`req_dh_params_bytes = req_dh_params_writer.get_bytes()`
			`sender.send(req_dh_params_bytes)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`# Step 2 response: DH Exchange`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`encrypted_answer = None`
Added authenticator 2016-08-28 20:26:06 +03:00			`with BinaryReader(sender.receive()) as reader:`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`response_code = reader.read_int(signed=False)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`if response_code == 0x79cb045d:`
			`raise AssertionError('Server DH params fail: TODO')`

			`if response_code != 0xd0e8075c:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`raise AssertionError('Invalid response code: {}'.format(`
			`hex(response_code)))`
Added authenticator 2016-08-28 20:26:06 +03:00
			`nonce_from_server = reader.read(16)`
			`if nonce_from_server != nonce:`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`raise NotImplementedError('Invalid nonce from server')`
Added authenticator 2016-08-28 20:26:06 +03:00
			`server_nonce_from_server = reader.read(16)`
			`if server_nonce_from_server != server_nonce:`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`raise NotImplementedError('Invalid server nonce from server')`

Added authenticator 2016-08-28 20:26:06 +03:00			`encrypted_answer = reader.tgread_bytes()`

			`# Step 3 sending: Complete DH Exchange`
Make lint happier 2017-05-21 14:59:16 +03:00			`key, iv = utils.generate_key_data_from_nonce(server_nonce, new_nonce)`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00			`plain_text_answer = AES.decrypt_ige(encrypted_answer, key, iv)`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00
			`g, dh_prime, ga, time_offset = None, None, None, None`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00			`with BinaryReader(plain_text_answer) as dh_inner_data_reader:`
Make lint happier 2017-05-21 14:59:16 +03:00			`dh_inner_data_reader.read(20) # hash sum`
Added authenticator 2016-08-28 20:26:06 +03:00			`code = dh_inner_data_reader.read_int(signed=False)`
			`if code != 0xb5890dba:`
			`raise AssertionError('Invalid DH Inner Data code: {}'.format(code))`

			`nonce_from_server1 = dh_inner_data_reader.read(16)`
			`if nonce_from_server1 != nonce:`
			`raise AssertionError('Invalid nonce in encrypted answer')`

			`server_nonce_from_server1 = dh_inner_data_reader.read(16)`
			`if server_nonce_from_server1 != server_nonce:`
			`raise AssertionError('Invalid server nonce in encrypted answer')`

			`g = dh_inner_data_reader.read_int()`
Completely refactored unit tests, removed unused code 2016-09-08 17:11:37 +03:00			`dh_prime = get_int(dh_inner_data_reader.tgread_bytes(), signed=False)`
			`ga = get_int(dh_inner_data_reader.tgread_bytes(), signed=False)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`server_time = dh_inner_data_reader.read_int()`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00			`time_offset = server_time - int(time.time())`
Added authenticator 2016-08-28 20:26:06 +03:00
Use the correct amount of random bytes in DH request The official documentation says a 2048 bit number. `os.urandom` takes an argument that represents the number of bytes. 2048 bits is 256 bytes 2017-06-19 00:38:14 +03:00			`b = get_int(os.urandom(256), signed=False)`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`gb = pow(g, b, dh_prime)`
			`gab = pow(ga, b, dh_prime)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`# Prepare client DH Inner Data`
			`with BinaryWriter() as client_dh_inner_data_writer:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`client_dh_inner_data_writer.write_int(`
			`0x6643b654, signed=False) # Client DH Inner Data`
Added authenticator 2016-08-28 20:26:06 +03:00			`client_dh_inner_data_writer.write(nonce)`
			`client_dh_inner_data_writer.write(server_nonce)`
			`client_dh_inner_data_writer.write_long(0) # TODO retry_id`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`client_dh_inner_data_writer.tgwrite_bytes(rsa.get_byte_array(gb))`
Added authenticator 2016-08-28 20:26:06 +03:00
			`with BinaryWriter() as client_dh_inner_data_with_hash_writer:`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`client_dh_inner_data_with_hash_writer.write(`
Use more straightforward calls of hashlib.sha1/sha256 2017-06-02 17:49:03 +03:00			`sha1(client_dh_inner_data_writer.get_bytes()).digest())`

Many code-style improvements 2016-11-30 00:29:42 +03:00			`client_dh_inner_data_with_hash_writer.write(`
			`client_dh_inner_data_writer.get_bytes())`
Use more straightforward calls of hashlib.sha1/sha256 2017-06-02 17:49:03 +03:00
			`client_dh_inner_data_bytes = \`
			`client_dh_inner_data_with_hash_writer.get_bytes()`
Added authenticator 2016-08-28 20:26:06 +03:00
			`# Encryption`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`client_dh_inner_data_encrypted_bytes = AES.encrypt_ige(`
			`client_dh_inner_data_bytes, key, iv)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`# Prepare Set client DH params`
			`with BinaryWriter() as set_client_dh_params_writer:`
Several fixes to authenticator, added more unit tests Some fixes include, in more detail: - Using little over big endianess in some parts - Flagging all the constructor numbers as unsigned - Fixed bugs with factorizer - Implemented TLSharp's RSA 2016-09-03 11:54:58 +03:00			`set_client_dh_params_writer.write_int(0xf5045f1f, signed=False)`
Added authenticator 2016-08-28 20:26:06 +03:00			`set_client_dh_params_writer.write(nonce)`
			`set_client_dh_params_writer.write(server_nonce)`
Many code-style improvements 2016-11-30 00:29:42 +03:00			`set_client_dh_params_writer.tgwrite_bytes(`
			`client_dh_inner_data_encrypted_bytes)`
Added authenticator 2016-08-28 20:26:06 +03:00
			`set_client_dh_params_bytes = set_client_dh_params_writer.get_bytes()`
			`sender.send(set_client_dh_params_bytes)`

			`# Step 3 response: Complete DH Exchange`
			`with BinaryReader(sender.receive()) as reader:`
Avoid counterintuitive automatic connection 2017-05-20 12:33:37 +03:00			`# Everything read from the server, disconnect now`
			`sender.disconnect()`

Added authenticator 2016-08-28 20:26:06 +03:00			`code = reader.read_int(signed=False)`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`if code == 0x3bcbf734: # DH Gen OK`
Added authenticator 2016-08-28 20:26:06 +03:00			`nonce_from_server = reader.read(16)`
			`if nonce_from_server != nonce:`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`raise NotImplementedError('Invalid nonce from server')`
Added authenticator 2016-08-28 20:26:06 +03:00
			`server_nonce_from_server = reader.read(16)`
			`if server_nonce_from_server != server_nonce:`
Reviewed authenticator.py 2016-08-30 18:40:49 +03:00			`raise NotImplementedError('Invalid server nonce from server')`

Added authenticator 2016-08-28 20:26:06 +03:00			`new_nonce_hash1 = reader.read(16)`
Use pycrypto's RSA instead the old weird RSA implementation 2017-08-23 22:49:27 +03:00			`auth_key = AuthKey(rsa.get_byte_array(gab))`
Added authenticator 2016-08-28 20:26:06 +03:00
Many code-style improvements 2016-11-30 00:29:42 +03:00			`new_nonce_hash_calculated = auth_key.calc_new_nonce_hash(new_nonce,`
			`1)`
Added authenticator 2016-08-28 20:26:06 +03:00			`if new_nonce_hash1 != new_nonce_hash_calculated:`
			`raise AssertionError('Invalid new nonce hash')`

			`return auth_key, time_offset`

			`elif code == 0x46dc1fb9: # DH Gen Retry`
			`raise NotImplementedError('dh_gen_retry')`

			`elif code == 0xa69dae02: # DH Gen Fail`
			`raise NotImplementedError('dh_gen_fail')`

			`else:`
			`raise AssertionError('DH Gen unknown: {}'.format(hex(code)))`
Several fixes to authenticator, added more unit tests Some fixes include, in more detail: - Using little over big endianess in some parts - Flagging all the constructor numbers as unsigned - Fixed bugs with factorizer - Implemented TLSharp's RSA 2016-09-03 11:54:58 +03:00

Completely refactored unit tests, removed unused code 2016-09-08 17:11:37 +03:00			`def get_int(byte_array, signed=True):`
			`"""Gets the specified integer from its byte array. This should be used by the authenticator,`
			`who requires the data to be in big endian"""`
			`return int.from_bytes(byte_array, byteorder='big', signed=signed)`