7gP(dZddlZddlmZmZddlmZddlmZm Z m Z m Z ddl m Z ddlmZedd \ZZZZZd edd D\ZZZZZGd d ZGd deZdS)z Variant on `KexGroup1 ` where the prime "p" and generator "g" are provided by the server. A bit more work is required on the client side, and a **lot** more on the server side. N)sha1sha256)util)DEBUGbyte_chrbyte_ord byte_mask)Message) SSHException#c,g|]}t|S)r).0cs J/var/www/html/syslog/venv/lib/python3.11/site-packages/paramiko/kex_gex.py r0s(((QXa[[(((cZeZdZdZdZdZdZeZdZ ddZ dZ d Z d Z d Zd Zd ZdZdS)KexGexz"diffie-hellman-group-exchange-sha1 icv||_d|_d|_d|_d|_d|_d|_d|_dS)NF) transportpqgxef old_style)selfrs r__init__zKexGex.__init__;s>"rFcF|jjr'|jttdSt }|r<|t||j d|_ nh|t||j ||j ||j |j||jtdS)NT)r server_mode_expect_packet_MSG_KEXDH_GEX_REQUEST_MSG_KEXDH_GEX_REQUEST_OLDr add_bytec_MSG_KEXDH_GEX_REQUEST_OLDadd_intpreferred_bitsr!c_MSG_KEXDH_GEX_REQUESTmin_bitsmax_bits _send_message_MSG_KEXDH_GEX_GROUP)r"_test_old_stylems r start_kexzKexGex.start_kexEs > %  N ) )&(B    F II  % JJ2 3 3 3 IId) * * *!DNN JJ. / / / IIdm $ $ $ IId) * * * IIdm $ $ $ $$Q''' %%&:;;;;;rc|tkr||S|tkr||S|tkr||S|t kr||S|tkr| |Sd}t| |j |)Nz*KexGex {} asked to handle packet type {:d}) r'_parse_kexdh_gex_requestr1_parse_kexdh_gex_group_MSG_KEXDH_GEX_INIT_parse_kexdh_gex_init_MSG_KEXDH_GEX_REPLY_parse_kexdh_gex_replyr(_parse_kexdh_gex_request_oldr formatname)r"ptyper3msgs r parse_nextzKexGex.parse_next\s * * *0033 3 * * *..q11 1 ) ) )--a00 0 * * *..q11 1 0 0 044Q77 7:3::di77888rc~|jdz dz}tj|d}t|d}t |}d}|dzs|dz}|dz}|dz t j|}t|d||ddz}tj|d}|dkr||krnX||_ dS)Nr) rr deflate_longrlenosurandomr inflate_longr)r"rqnormqhbyte byte_countqmaskx_bytesrs r _generate_xzKexGex._generate_xls VaZA !!Q''%(##ZZ D=  qLF aKED=  j,,G E22WQRR[@G!'1--AAAEE   rc@|}|}|}||jkr|j}||jkr|j}||kr|}||kr|}||_||_||_|j}|t d|jtd |||| |||\|_ |_ t}|t||j ||j |j||jt&dS)N-Can't do server-side gex with no modulus packzPicking p ({} <= {} <= {} bits))get_intr/r.r,r_get_modulus_packr _logrr= get_modulusrrr r)c_MSG_KEXDH_GEX_GROUP add_mpintr0r&r8)r"r3minbits preferredbitsmaxbitspacks rr6zKexGex._parse_kexdh_gex_request~s))++ ))++ 4= ( ( MM 4= ( ( MM ] " "#G ] " "#G + ~//11 <NOO O   - 4 4     ))'='JJ II ())) DF DF $$Q''' %%&9:::::rc ||_|j|jkr |j|_|j|jkr |j|_|j}|t d|jtd |j| |j|j|j\|_ |_ t}|t||j ||j |j||jt&d|_dS)NrSzPicking p (~ {} bits)T)rTr,r/r.rrUr rVrr=rWrrr r)rXrYr0r&r8r!)r"r3r]s rr<z#KexGex._parse_kexdh_gex_request_oldsK iikk   . ."&-D    . ."&-D ~//11 <NOO O  *11$2EFF   )) M4.    II ())) DF DF $$Q''' %%&9:::rc||_||_tj|j}|dks|dkr"t d||jtd|| t|j|j |j|_ t}|t ||j |j||jt(dS)Nrrz||_|jdks|j|jdz krtd|t |j|j|j|_t |j|j|j}|j }t}| |j j|j j|j j|j j||js||j||j|js||j||j||j||j||j|||| }|j |||j ||j j}t}|t<||||j|||j ||j !dS)NrCzClient kex "e" is out of range)"r`rrr rQrbrrr rget_server_keyasbytesr addremote_version local_versionremote_kex_initlocal_kex_initr!r+r.r,r/rY hash_algodigest_set_K_H sign_ssh_data host_key_typer)c_MSG_KEXDH_GEX_REPLY add_stringr0_activate_outbound)r"r3KkeyhmHsigs rr9zKexGex._parse_kexdh_gex_inits FQJJDFTVaZ//?@@ @ TVTVTV,,  ' 'n++--5577YY  N ) N ( N * N )     ~ & JJt} % % % 4&'''~ & JJt} % % % TV TV TV TV Q NN2::<< ( ( / / 1 1 1%%%n++--;; t~+   II ())) S DF S $$Q''' ))+++++rc~|}||_|}|jdks|j|jdz krt dt |j|j|j}t}||j j |j j |j j |j j ||js||j||j|js||j||j||j||j||j|||j ||||j |||j dS)NrCzServer kex "f" is out of range) get_stringr`r rr rbrr rhrrjrirlrkr!r+r.r,r/rYrrrormrgrn _verify_keyrt)r"r3host_keyryrurws rr;zKexGex._parse_kexdh_gex_replys<<>>llnn FQJJDFTVaZ//?@@ @  ' 'YY  N ( N ) N ) N *     ~ & JJt} % % % 4&'''~ & JJt} % % % TV TV TV TV Q 4>>"**,,#?#?#F#F#H#HIII ""8S111 ))+++++rN)F)__name__ __module__ __qualname__r>r.r/r,rrmr#r4rArQr6r<r7r9r;rrrrr3s /DHHNI<<<<. 9 9 9 $$;$;$;L6<<<(),),),V,,,,,rrceZdZdZeZdS) KexGexSHA256z$diffie-hellman-group-exchange-sha256N)r~rrr>rrmrrrrrs 1DIIIrr)__doc__rIhashlibrrparamikorparamiko.commonrrrr paramiko.messager paramiko.ssh_exceptionr ranger(r1r8r:r'r*rXrcrrr-rrrrrrsE&  @@@@@@@@@@@@$$$$$$////// E"bMM )(%%B--((( h,h,h,h,h,h,h,h,V6r