Mirrored_Repos/python-kasa
1
0
Fork 0
mirror of https://github.com/python-kasa/python-kasa.git synced 2024-12-22 19:23:34 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
63f4f82791
python-kasa/kasa/transports/klaptransport.py

510 lines
19 KiB
Python
Raw Normal View History

Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
"""Implementation of the TP-Link Klap Home Protocol.
Encryption/Decryption methods based on the works of
Simon Wilkinson and Chris Weeldon
Klap devices that have never been connected to the kasa
cloud should work with blank credentials.
Devices that have been connected to the kasa cloud will
switch intermittently between the users cloud credentials
and default kasa credentials that are hardcoded.
This appears to be an issue with the devices.
The protocol works by doing a two stage handshake to obtain
and encryption key and session id cookie.
Authentication uses an auth_hash which is
md5(md5(username),md5(password))
handshake1: client sends a random 16 byte local_seed to the
device and receives a random 16 bytes remote_seed, followed
by sha256(local_seed + auth_hash). It also returns a
TP_SESSIONID in the cookie header. This implementation
then checks this value against the possible auth_hashes
described above (user cloud, kasa hardcoded, blank). If it
finds a match it moves onto handshake2
handshake2: client sends sha25(remote_seed + auth_hash) to
the device along with the TP_SESSIONID. Device responds with
Fix minor typos in docstrings (#659)
2024-01-20 01:40:21 +00:00
200 if successful. It generally will be because this
implementation checks the auth_hash it received during handshake1
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
encryption: local_seed, remote_seed and auth_hash are now used
Fix minor typos in docstrings (#659)
2024-01-20 01:40:21 +00:00
for encryption. The last 4 bytes of the initialization vector
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
are used as a sequence number that increments every time the
client calls encrypt and this sequence number is sent as a
url parameter to the device along with the encrypted payload
https://gist.github.com/chriswheeldon/3b17d974db3817613c69191c0480fe55
https://github.com/python-kasa/python-kasa/pull/117
"""
Enable and convert to future annotations (#838)
2024-04-17 13:39:24 +00:00
from __future__ import annotations
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
import asyncio
Allow serializing and passing of credentials_hashes in DeviceConfig (#607) * Allow passing of credentials_hashes in DeviceConfig * Update following review
2024-01-03 21:46:08 +00:00
import base64
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
import datetime
import hashlib
import logging
import secrets
Reduce the number of times creating the cipher in klap (#712)
2024-01-26 17:44:41 +00:00
import struct
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
import time
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
from asyncio import Future
Remove support for python <3.11 (#1273) Python 3.11 ships with latest Debian Bookworm. pypy is not that widely used with this library based on statistics. It could be added back when pypy supports python 3.11.
2024-11-18 18:46:36 +00:00
from collections.abc import Generator
from typing import TYPE_CHECKING, Any, cast
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Use hashlib in place of hashes.Hash (#714)
2024-01-26 16:57:56 +00:00
from cryptography.hazmat.primitives import padding
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
Avoid rebuilding urls for every request (#715) * Avoid rebuilding urls for every request * more fixes * more fixes * make mypy happy * reduce * tweak * fix tests * fix tests * tweak * tweak * lint * fix type
2024-01-29 15:26:00 +00:00
from yarl import URL
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Move protocol modules into protocols package (#1254)
2024-11-13 17:50:21 +00:00
from kasa.credentials import DEFAULT_CREDENTIALS, Credentials, get_default_credentials
Move transports into their own package (#1247) This moves all transport implementations into a new `transports` package for cleaner main package & easier to understand project structure.
2024-11-12 13:40:44 +00:00
from kasa.deviceconfig import DeviceConfig
from kasa.exceptions import AuthenticationError, KasaException, _RetryableError
from kasa.httpclient import HttpClient
from kasa.json import loads as json_loads
Move protocol modules into protocols package (#1254)
2024-11-13 17:50:21 +00:00
from kasa.protocols.protocol import md5
Move transports into their own package (#1247) This moves all transport implementations into a new `transports` package for cleaner main package & easier to understand project structure.
2024-11-12 13:40:44 +00:00
from .basetransport import BaseTransport
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
_LOGGER = logging.getLogger(__name__)
Renew the handshake session 20 minutes before we think it will expire (#697) * Renew the KLAP handshake session 20 minutes before we think it will expire Currently we assumed the clocks were perfectly aligned and the handshake session lasted 20 hours. We now add a 20 minute buffer * use timeout cookie when available
2024-01-24 09:11:27 +00:00
ONE_DAY_SECONDS = 86400
SESSION_EXPIRE_BUFFER_SECONDS = 60 * 20
Reduce the number of times creating the cipher in klap (#712)
2024-01-26 17:44:41 +00:00
PACK_SIGNED_LONG = struct.Struct(">l").pack
Renew the handshake session 20 minutes before we think it will expire (#697) * Renew the KLAP handshake session 20 minutes before we think it will expire Currently we assumed the clocks were perfectly aligned and the handshake session lasted 20 hours. We now add a 20 minute buffer * use timeout cookie when available
2024-01-24 09:11:27 +00:00
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
def _sha256(payload: bytes) -> bytes:
Use hashlib in place of hashes.Hash (#714)
2024-01-26 16:57:56 +00:00
return hashlib.sha256(payload).digest() # noqa: S324
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
def _sha1(payload: bytes) -> bytes:
Use hashlib in place of hashes.Hash (#714)
2024-01-26 16:57:56 +00:00
return hashlib.sha1(payload).digest() # noqa: S324
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
class KlapTransport(BaseTransport):
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
"""Implementation of the KLAP encryption protocol.
KLAP is the name used in device discovery for TP-Link's new encryption
protocol, used by newer firmware versions.
"""
Add DeviceConfig to allow specifying configuration parameters (#569) * Add DeviceConfig handling * Update post review * Further update post latest review * Update following latest review * Update docstrings and docs
2023-12-29 19:17:15 +00:00
DEFAULT_PORT: int = 80
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
SESSION_COOKIE_NAME = "TP_SESSIONID"
Renew the handshake session 20 minutes before we think it will expire (#697) * Renew the KLAP handshake session 20 minutes before we think it will expire Currently we assumed the clocks were perfectly aligned and the handshake session lasted 20 hours. We now add a 20 minute buffer * use timeout cookie when available
2024-01-24 09:11:27 +00:00
TIMEOUT_COOKIE_NAME = "TIMEOUT"
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
def __init__(
self,
*,
Add DeviceConfig to allow specifying configuration parameters (#569) * Add DeviceConfig handling * Update post review * Further update post latest review * Update following latest review * Update docstrings and docs
2023-12-29 19:17:15 +00:00
config: DeviceConfig,
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
) -> None:
Add DeviceConfig to allow specifying configuration parameters (#569) * Add DeviceConfig handling * Update post review * Further update post latest review * Update following latest review * Update docstrings and docs
2023-12-29 19:17:15 +00:00
super().__init__(config=config)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Encapsulate http client dependency (#642) * Encapsulate http client dependency * Store cookie dict as variable * Update post-review
2024-01-18 09:57:33 +00:00
self._http_client = HttpClient(config)
Enable and convert to future annotations (#838)
2024-04-17 13:39:24 +00:00
self._local_seed: bytes | None = None
Fix cli discover bug with None username/password (#615)
2024-01-04 18:17:48 +00:00
if (
not self._credentials or self._credentials.username is None
) and not self._credentials_hash:
Allow serializing and passing of credentials_hashes in DeviceConfig (#607) * Allow passing of credentials_hashes in DeviceConfig * Update following review
2024-01-03 21:46:08 +00:00
self._credentials = Credentials()
if self._credentials:
self._local_auth_hash = self.generate_auth_hash(self._credentials)
self._local_auth_owner = self.generate_owner_hash(self._credentials).hex()
else:
self._local_auth_hash = base64.b64decode(self._credentials_hash.encode()) # type: ignore[union-attr]
Enable and convert to future annotations (#838)
2024-04-17 13:39:24 +00:00
self._default_credentials_auth_hash: dict[str, bytes] = {}
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
self._blank_auth_hash: bytes | None = None
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
self._handshake_lock = asyncio.Lock()
self._query_lock = asyncio.Lock()
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
self._handshake_done: bool = False
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Enable and convert to future annotations (#838)
2024-04-17 13:39:24 +00:00
self._encryption_session: KlapEncryptionSession | None = None
self._session_expire_at: float | None = None
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Enable and convert to future annotations (#838)
2024-04-17 13:39:24 +00:00
self._session_cookie: dict[str, Any] | None = None
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Do login entirely within AesTransport (#580) * Do login entirely within AesTransport * Remove login and handshake attributes from BaseTransport * Add AesTransport tests * Synchronise transport and protocol __init__ signatures and rename internal variables * Update after review
2023-12-19 14:11:59 +00:00
_LOGGER.debug("Created KLAP transport for %s", self._host)
Fix port-override for aes&klap transports (#734) * Fix port-override for aes&klap transports * Add tests for port override
2024-02-03 14:28:20 +00:00
self._app_url = URL(f"http://{self._host}:{self._port}/app")
Avoid rebuilding urls for every request (#715) * Avoid rebuilding urls for every request * more fixes * more fixes * make mypy happy * reduce * tweak * fix tests * fix tests * tweak * tweak * lint * fix type
2024-01-29 15:26:00 +00:00
self._request_url = self._app_url / "request"
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Add DeviceConfig to allow specifying configuration parameters (#569) * Add DeviceConfig handling * Update post review * Further update post latest review * Update following latest review * Update docstrings and docs
2023-12-29 19:17:15 +00:00
@property
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def default_port(self) -> int:
Add DeviceConfig to allow specifying configuration parameters (#569) * Add DeviceConfig handling * Update post review * Further update post latest review * Update following latest review * Update docstrings and docs
2023-12-29 19:17:15 +00:00
"""Default port for the transport."""
return self.DEFAULT_PORT
Allow serializing and passing of credentials_hashes in DeviceConfig (#607) * Allow passing of credentials_hashes in DeviceConfig * Update following review
2024-01-03 21:46:08 +00:00
@property
Fix credential hash to return None on empty credentials (#1029) If discovery is triggered without credentials and discovers devices requiring authentication, blank credentials are used to initialise the protocols and no connection is actually made. In this instance we should not return the credentials_hash for blank credentials as it will be invalid.
2024-07-02 12:43:37 +00:00
def credentials_hash(self) -> str | None:
Allow serializing and passing of credentials_hashes in DeviceConfig (#607) * Allow passing of credentials_hashes in DeviceConfig * Update following review
2024-01-03 21:46:08 +00:00
"""The hashed credentials used by the transport."""
Fix credential hash to return None on empty credentials (#1029) If discovery is triggered without credentials and discovers devices requiring authentication, blank credentials are used to initialise the protocols and no connection is actually made. In this instance we should not return the credentials_hash for blank credentials as it will be invalid.
2024-07-02 12:43:37 +00:00
if self._credentials == Credentials():
return None
Allow serializing and passing of credentials_hashes in DeviceConfig (#607) * Allow passing of credentials_hashes in DeviceConfig * Update following review
2024-01-03 21:46:08 +00:00
return base64.b64encode(self._local_auth_hash).decode()
Enable and convert to future annotations (#838)
2024-04-17 13:39:24 +00:00
async def perform_handshake1(self) -> tuple[bytes, bytes, bytes]:
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
"""Perform handshake1."""
local_seed: bytes = secrets.token_bytes(16)
# Handshake 1 has a payload of local_seed
# and a response of 16 bytes, followed by
# sha256(remote_seed | auth_hash)
payload = local_seed
Avoid rebuilding urls for every request (#715) * Avoid rebuilding urls for every request * more fixes * more fixes * make mypy happy * reduce * tweak * fix tests * fix tests * tweak * tweak * lint * fix type
2024-01-29 15:26:00 +00:00
url = self._app_url / "handshake1"
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Encapsulate http client dependency (#642) * Encapsulate http client dependency * Store cookie dict as variable * Update post-review
2024-01-18 09:57:33 +00:00
response_status, response_data = await self._http_client.post(url, data=payload)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
if _LOGGER.isEnabledFor(logging.DEBUG):
_LOGGER.debug(
Add flake8-logging (LOG) and flake8-logging-format (G) for ruff (#1104) Enables rules LOG (flake8-logging) and G (flake8-logging-format) for ruff. This will catch eager log message formatting, among other similar issues.
2024-08-30 14:13:14 +00:00
"Handshake1 posted at %s. Host is %s, "
"Response status is %s, Request was %s",
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
datetime.datetime.now(),
Do login entirely within AesTransport (#580) * Do login entirely within AesTransport * Remove login and handshake attributes from BaseTransport * Add AesTransport tests * Synchronise transport and protocol __init__ signatures and rename internal variables * Update after review
2023-12-19 14:11:59 +00:00
self._host,
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
response_status,
payload.hex(),
)
if response_status != 200:
Rename and deprecate exception classes (#739) # Public # SmartDeviceException -> KasaException UnsupportedDeviceException(SmartDeviceException) -> UnsupportedDeviceError(KasaException) TimeoutException(SmartDeviceException, asyncio.TimeoutError) -> TimeoutError(KasaException, asyncio.TimeoutError) Add new exception for error codes -> DeviceError(KasaException) AuthenticationException(SmartDeviceException) -> AuthenticationError(DeviceError) # Internal # RetryableException(SmartDeviceException) -> _RetryableError(DeviceError) ConnectionException(SmartDeviceException) -> _ConnectionError(KasaException)
2024-02-21 15:52:55 +00:00
raise KasaException(
Do login entirely within AesTransport (#580) * Do login entirely within AesTransport * Remove login and handshake attributes from BaseTransport * Add AesTransport tests * Synchronise transport and protocol __init__ signatures and rename internal variables * Update after review
2023-12-19 14:11:59 +00:00
f"Device {self._host} responded with {response_status} to handshake1"
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
)
Encapsulate http client dependency (#642) * Encapsulate http client dependency * Store cookie dict as variable * Update post-review
2024-01-18 09:57:33 +00:00
response_data = cast(bytes, response_data)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
remote_seed: bytes = response_data[0:16]
server_hash = response_data[16:]
Reduce AuthenticationExceptions raising from transports (#740) * Reduce AuthenticationExceptions raising from transports * Make auth failed test ids easier to read * Test invalid klap response length
2024-02-05 20:49:26 +00:00
if len(server_hash) != 32:
Rename and deprecate exception classes (#739) # Public # SmartDeviceException -> KasaException UnsupportedDeviceException(SmartDeviceException) -> UnsupportedDeviceError(KasaException) TimeoutException(SmartDeviceException, asyncio.TimeoutError) -> TimeoutError(KasaException, asyncio.TimeoutError) Add new exception for error codes -> DeviceError(KasaException) AuthenticationException(SmartDeviceException) -> AuthenticationError(DeviceError) # Internal # RetryableException(SmartDeviceException) -> _RetryableError(DeviceError) ConnectionException(SmartDeviceException) -> _ConnectionError(KasaException)
2024-02-21 15:52:55 +00:00
raise KasaException(
Reduce AuthenticationExceptions raising from transports (#740) * Reduce AuthenticationExceptions raising from transports * Make auth failed test ids easier to read * Test invalid klap response length
2024-02-05 20:49:26 +00:00
f"Device {self._host} responded with unexpected klap response "
+ f"{response_data!r} to handshake1"
)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
if _LOGGER.isEnabledFor(logging.DEBUG):
_LOGGER.debug(
"Handshake1 success at %s. Host is %s, "
Add flake8-logging (LOG) and flake8-logging-format (G) for ruff (#1104) Enables rules LOG (flake8-logging) and G (flake8-logging-format) for ruff. This will catch eager log message formatting, among other similar issues.
2024-08-30 14:13:14 +00:00
"Server remote_seed is: %s, server hash is: %s",
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
datetime.datetime.now(),
Do login entirely within AesTransport (#580) * Do login entirely within AesTransport * Remove login and handshake attributes from BaseTransport * Add AesTransport tests * Synchronise transport and protocol __init__ signatures and rename internal variables * Update after review
2023-12-19 14:11:59 +00:00
self._host,
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
remote_seed.hex(),
server_hash.hex(),
)
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
local_seed_auth_hash = self.handshake1_seed_auth_hash(
local_seed, remote_seed, self._local_auth_hash
) # type: ignore
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
# Check the response from the device with local credentials
if local_seed_auth_hash == server_hash:
_LOGGER.debug("handshake1 hashes match with expected credentials")
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
return local_seed, remote_seed, self._local_auth_hash # type: ignore
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Try default tapo credentials for klap and aes (#685) * Try default tapo credentials for klap and aes * Add tests
2024-01-23 14:44:32 +00:00
# Now check against the default setup credentials
for key, value in DEFAULT_CREDENTIALS.items():
if key not in self._default_credentials_auth_hash:
default_credentials = get_default_credentials(value)
self._default_credentials_auth_hash[key] = self.generate_auth_hash(
default_credentials
)
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
Try default tapo credentials for klap and aes (#685) * Try default tapo credentials for klap and aes * Add tests
2024-01-23 14:44:32 +00:00
default_credentials_seed_auth_hash = self.handshake1_seed_auth_hash(
local_seed,
remote_seed,
self._default_credentials_auth_hash[key], # type: ignore
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
)
Try default tapo credentials for klap and aes (#685) * Try default tapo credentials for klap and aes * Add tests
2024-01-23 14:44:32 +00:00
if default_credentials_seed_auth_hash == server_hash:
_LOGGER.debug(
Add flake8-logging (LOG) and flake8-logging-format (G) for ruff (#1104) Enables rules LOG (flake8-logging) and G (flake8-logging-format) for ruff. This will catch eager log message formatting, among other similar issues.
2024-08-30 14:13:14 +00:00
"Server response doesn't match our expected hash on ip %s, "
"but an authentication with %s default credentials matched",
Try default tapo credentials for klap and aes (#685) * Try default tapo credentials for klap and aes * Add tests
2024-01-23 14:44:32 +00:00
self._host,
Add flake8-logging (LOG) and flake8-logging-format (G) for ruff (#1104) Enables rules LOG (flake8-logging) and G (flake8-logging-format) for ruff. This will catch eager log message formatting, among other similar issues.
2024-08-30 14:13:14 +00:00
key,
Try default tapo credentials for klap and aes (#685) * Try default tapo credentials for klap and aes * Add tests
2024-01-23 14:44:32 +00:00
)
return local_seed, remote_seed, self._default_credentials_auth_hash[key] # type: ignore
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
# Finally check against blank credentials if not already blank
Cleanup credentials handling (#605) * credentials: don't allow none to simplify checks * Implement __bool__ for credentials * Cleanup klaptransport cred usage * Cleanup deviceconfig and tapodevice * fix linting * Pass dummy credentials for tests * Remove __bool__ dunder and add docs to credentials * Check for cred noneness in tapodevice.update()
2024-01-03 18:26:52 +00:00
blank_creds = Credentials()
if self._credentials != blank_creds:
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
if not self._blank_auth_hash:
self._blank_auth_hash = self.generate_auth_hash(blank_creds)
blank_seed_auth_hash = self.handshake1_seed_auth_hash(
local_seed,
remote_seed,
self._blank_auth_hash, # type: ignore
)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
if blank_seed_auth_hash == server_hash:
_LOGGER.debug(
Add flake8-logging (LOG) and flake8-logging-format (G) for ruff (#1104) Enables rules LOG (flake8-logging) and G (flake8-logging-format) for ruff. This will catch eager log message formatting, among other similar issues.
2024-08-30 14:13:14 +00:00
"Server response doesn't match our expected hash on ip %s, "
"but an authentication with blank credentials matched",
Do login entirely within AesTransport (#580) * Do login entirely within AesTransport * Remove login and handshake attributes from BaseTransport * Add AesTransport tests * Synchronise transport and protocol __init__ signatures and rename internal variables * Update after review
2023-12-19 14:11:59 +00:00
self._host,
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
)
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
return local_seed, remote_seed, self._blank_auth_hash # type: ignore
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Do login entirely within AesTransport (#580) * Do login entirely within AesTransport * Remove login and handshake attributes from BaseTransport * Add AesTransport tests * Synchronise transport and protocol __init__ signatures and rename internal variables * Update after review
2023-12-19 14:11:59 +00:00
msg = f"Server response doesn't match our challenge on ip {self._host}"
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
_LOGGER.debug(msg)
Rename and deprecate exception classes (#739) # Public # SmartDeviceException -> KasaException UnsupportedDeviceException(SmartDeviceException) -> UnsupportedDeviceError(KasaException) TimeoutException(SmartDeviceException, asyncio.TimeoutError) -> TimeoutError(KasaException, asyncio.TimeoutError) Add new exception for error codes -> DeviceError(KasaException) AuthenticationException(SmartDeviceException) -> AuthenticationError(DeviceError) # Internal # RetryableException(SmartDeviceException) -> _RetryableError(DeviceError) ConnectionException(SmartDeviceException) -> _ConnectionError(KasaException)
2024-02-21 15:52:55 +00:00
raise AuthenticationError(msg)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
async def perform_handshake2(
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
self, local_seed: bytes, remote_seed: bytes, auth_hash: bytes
Enable and convert to future annotations (#838)
2024-04-17 13:39:24 +00:00
) -> KlapEncryptionSession:
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
"""Perform handshake2."""
# Handshake 2 has the following payload:
# sha256(serverBytes | authenticator)
Avoid rebuilding urls for every request (#715) * Avoid rebuilding urls for every request * more fixes * more fixes * make mypy happy * reduce * tweak * fix tests * fix tests * tweak * tweak * lint * fix type
2024-01-29 15:26:00 +00:00
url = self._app_url / "handshake2"
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
payload = self.handshake2_seed_auth_hash(local_seed, remote_seed, auth_hash)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Encapsulate http client dependency (#642) * Encapsulate http client dependency * Store cookie dict as variable * Update post-review
2024-01-18 09:57:33 +00:00
response_status, _ = await self._http_client.post(
url,
data=payload,
cookies_dict=self._session_cookie,
)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
if _LOGGER.isEnabledFor(logging.DEBUG):
_LOGGER.debug(
Add flake8-logging (LOG) and flake8-logging-format (G) for ruff (#1104) Enables rules LOG (flake8-logging) and G (flake8-logging-format) for ruff. This will catch eager log message formatting, among other similar issues.
2024-08-30 14:13:14 +00:00
"Handshake2 posted %s. Host is %s, "
"Response status is %s, Request was %s",
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
datetime.datetime.now(),
Do login entirely within AesTransport (#580) * Do login entirely within AesTransport * Remove login and handshake attributes from BaseTransport * Add AesTransport tests * Synchronise transport and protocol __init__ signatures and rename internal variables * Update after review
2023-12-19 14:11:59 +00:00
self._host,
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
response_status,
payload.hex(),
)
if response_status != 200:
Reduce AuthenticationExceptions raising from transports (#740) * Reduce AuthenticationExceptions raising from transports * Make auth failed test ids easier to read * Test invalid klap response length
2024-02-05 20:49:26 +00:00
# This shouldn't be caused by incorrect
Rename and deprecate exception classes (#739) # Public # SmartDeviceException -> KasaException UnsupportedDeviceException(SmartDeviceException) -> UnsupportedDeviceError(KasaException) TimeoutException(SmartDeviceException, asyncio.TimeoutError) -> TimeoutError(KasaException, asyncio.TimeoutError) Add new exception for error codes -> DeviceError(KasaException) AuthenticationException(SmartDeviceException) -> AuthenticationError(DeviceError) # Internal # RetryableException(SmartDeviceException) -> _RetryableError(DeviceError) ConnectionException(SmartDeviceException) -> _ConnectionError(KasaException)
2024-02-21 15:52:55 +00:00
# credentials so don't raise AuthenticationError
raise KasaException(
Do login entirely within AesTransport (#580) * Do login entirely within AesTransport * Remove login and handshake attributes from BaseTransport * Add AesTransport tests * Synchronise transport and protocol __init__ signatures and rename internal variables * Update after review
2023-12-19 14:11:59 +00:00
f"Device {self._host} responded with {response_status} to handshake2"
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
)
return KlapEncryptionSession(local_seed, remote_seed, auth_hash)
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
async def perform_handshake(self) -> None:
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
"""Perform handshake1 and handshake2.
Sets the encryption_session if successful.
"""
Do login entirely within AesTransport (#580) * Do login entirely within AesTransport * Remove login and handshake attributes from BaseTransport * Add AesTransport tests * Synchronise transport and protocol __init__ signatures and rename internal variables * Update after review
2023-12-19 14:11:59 +00:00
_LOGGER.debug("Starting handshake with %s", self._host)
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
self._handshake_done = False
self._session_expire_at = None
self._session_cookie = None
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
local_seed, remote_seed, auth_hash = await self.perform_handshake1()
Renew the handshake session 20 minutes before we think it will expire (#697) * Renew the KLAP handshake session 20 minutes before we think it will expire Currently we assumed the clocks were perfectly aligned and the handshake session lasted 20 hours. We now add a 20 minute buffer * use timeout cookie when available
2024-01-24 09:11:27 +00:00
http_client = self._http_client
if cookie := http_client.get_cookie(self.SESSION_COOKIE_NAME): # type: ignore
Encapsulate http client dependency (#642) * Encapsulate http client dependency * Store cookie dict as variable * Update post-review
2024-01-18 09:57:33 +00:00
self._session_cookie = {self.SESSION_COOKIE_NAME: cookie}
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
# The device returns a TIMEOUT cookie on handshake1 which
# it doesn't like to get back so we store the one we want
Renew the handshake session 20 minutes before we think it will expire (#697) * Renew the KLAP handshake session 20 minutes before we think it will expire Currently we assumed the clocks were perfectly aligned and the handshake session lasted 20 hours. We now add a 20 minute buffer * use timeout cookie when available
2024-01-24 09:11:27 +00:00
timeout = int(
http_client.get_cookie(self.TIMEOUT_COOKIE_NAME) or ONE_DAY_SECONDS
)
# There is a 24 hour timeout on the session cookie
# but the clock on the device is not always accurate
# so we set the expiry to 24 hours from now minus a buffer
Use monotonic time for query timing (#1070) To fix intermittent issues with [windows CI](https://github.com/python-kasa/python-kasa/actions/runs/9952477932/job/27493918272?pr=1068). Probably better to use monotonic here anyway. ``` FAILED kasa/tests/test_smartdevice.py::test_update_module_update_delays[L530E(EU)_3.0_1.1.6.json-SMART] - ValueError: Clock moved backwards. Refusing to generate ID. ```
2024-07-16 12:25:32 +00:00
self._session_expire_at = (
time.monotonic() + timeout - SESSION_EXPIRE_BUFFER_SECONDS
)
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
self._encryption_session = await self.perform_handshake2(
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
local_seed, remote_seed, auth_hash
)
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
self._handshake_done = True
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Do login entirely within AesTransport (#580) * Do login entirely within AesTransport * Remove login and handshake attributes from BaseTransport * Add AesTransport tests * Synchronise transport and protocol __init__ signatures and rename internal variables * Update after review
2023-12-19 14:11:59 +00:00
_LOGGER.debug("Handshake with %s complete", self._host)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def _handshake_session_expired(self) -> bool:
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
"""Return true if session has expired."""
return (
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
self._session_expire_at is None
Use monotonic time for query timing (#1070) To fix intermittent issues with [windows CI](https://github.com/python-kasa/python-kasa/actions/runs/9952477932/job/27493918272?pr=1068). Probably better to use monotonic here anyway. ``` FAILED kasa/tests/test_smartdevice.py::test_update_module_update_delays[L530E(EU)_3.0_1.1.6.json-SMART] - ValueError: Clock moved backwards. Refusing to generate ID. ```
2024-07-16 12:25:32 +00:00
or self._session_expire_at - time.monotonic() <= 0
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
)
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
async def send(self, request: str) -> Generator[Future, None, dict[str, str]]: # type: ignore[override]
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
"""Send the request."""
Do login entirely within AesTransport (#580) * Do login entirely within AesTransport * Remove login and handshake attributes from BaseTransport * Add AesTransport tests * Synchronise transport and protocol __init__ signatures and rename internal variables * Update after review
2023-12-19 14:11:59 +00:00
if not self._handshake_done or self._handshake_session_expired():
await self.perform_handshake()
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
# Check for mypy
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
if self._encryption_session is not None:
payload, seq = self._encryption_session.encrypt(request.encode())
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Encapsulate http client dependency (#642) * Encapsulate http client dependency * Store cookie dict as variable * Update post-review
2024-01-18 09:57:33 +00:00
response_status, response_data = await self._http_client.post(
Avoid rebuilding urls for every request (#715) * Avoid rebuilding urls for every request * more fixes * more fixes * make mypy happy * reduce * tweak * fix tests * fix tests * tweak * tweak * lint * fix type
2024-01-29 15:26:00 +00:00
self._request_url,
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
params={"seq": seq},
data=payload,
Encapsulate http client dependency (#642) * Encapsulate http client dependency * Store cookie dict as variable * Update post-review
2024-01-18 09:57:33 +00:00
cookies_dict=self._session_cookie,
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
)
msg = (
Remove time logging in debug message (#645)
2024-01-18 18:32:58 +00:00
f"Host is {self._host}, "
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
+ f"Sequence is {seq}, "
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
+ f"Response status is {response_status}, Request was {request}"
)
if response_status != 200:
Add flake8-logging (LOG) and flake8-logging-format (G) for ruff (#1104) Enables rules LOG (flake8-logging) and G (flake8-logging-format) for ruff. This will catch eager log message formatting, among other similar issues.
2024-08-30 14:13:14 +00:00
_LOGGER.error("Query failed after successful authentication: %s", msg)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
# If we failed with a security error, force a new handshake next time.
if response_status == 403:
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
self._handshake_done = False
Retry query on 403 after succesful handshake (#785) If a handshake session becomes invalid the device returns 403 on send and an `AuthenticationError` is raised which prevents a retry, however a retry would be successful. In HA this causes devices to go into reauth flow which is not necessary.
2024-02-22 17:02:03 +00:00
raise _RetryableError(
Add flake8-logging (LOG) and flake8-logging-format (G) for ruff (#1104) Enables rules LOG (flake8-logging) and G (flake8-logging-format) for ruff. This will catch eager log message formatting, among other similar issues.
2024-08-30 14:13:14 +00:00
"Got a security error from %s after handshake completed", self._host
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
)
else:
Rename and deprecate exception classes (#739) # Public # SmartDeviceException -> KasaException UnsupportedDeviceException(SmartDeviceException) -> UnsupportedDeviceError(KasaException) TimeoutException(SmartDeviceException, asyncio.TimeoutError) -> TimeoutError(KasaException, asyncio.TimeoutError) Add new exception for error codes -> DeviceError(KasaException) AuthenticationException(SmartDeviceException) -> AuthenticationError(DeviceError) # Internal # RetryableException(SmartDeviceException) -> _RetryableError(DeviceError) ConnectionException(SmartDeviceException) -> _ConnectionError(KasaException)
2024-02-21 15:52:55 +00:00
raise KasaException(
Add flake8-logging (LOG) and flake8-logging-format (G) for ruff (#1104) Enables rules LOG (flake8-logging) and G (flake8-logging-format) for ruff. This will catch eager log message formatting, among other similar issues.
2024-08-30 14:13:14 +00:00
f"Device {self._host} responded with {response_status} to "
f"request with seq {seq}"
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
)
else:
Redact sensitive info from debug logs (#1069) Redacts sensitive data when debug logging device responses such as mac, location and usernames
2024-07-17 17:57:09 +00:00
_LOGGER.debug("Device %s query posted %s", self._host, msg)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Raise KasaException on decryption errors (#1078) Currently if the library encounters an invalid decryption error it raises a value error. This PR wraps it in a KasaException so consumers such as HA can catch an expected library exception.
2024-07-22 18:33:31 +00:00
if TYPE_CHECKING:
assert self._encryption_session
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
assert isinstance(response_data, bytes)
Raise KasaException on decryption errors (#1078) Currently if the library encounters an invalid decryption error it raises a value error. This PR wraps it in a KasaException so consumers such as HA can catch an expected library exception.
2024-07-22 18:33:31 +00:00
try:
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
decrypted_response = self._encryption_session.decrypt(response_data)
Raise KasaException on decryption errors (#1078) Currently if the library encounters an invalid decryption error it raises a value error. This PR wraps it in a KasaException so consumers such as HA can catch an expected library exception.
2024-07-22 18:33:31 +00:00
except Exception as ex:
raise KasaException(
f"Error trying to decrypt device {self._host} response: {ex}"
) from ex
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
json_payload = json_loads(decrypted_response)
Redact sensitive info from debug logs (#1069) Redacts sensitive data when debug logging device responses such as mac, location and usernames
2024-07-17 17:57:09 +00:00
_LOGGER.debug("Device %s query response received", self._host)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
return json_payload
async def close(self) -> None:
Update transport close/reset behaviour (#689) Co-authored-by: J. Nick Koston <nick@koston.org>
2024-01-23 22:15:18 +00:00
"""Close the http client and reset internal state."""
await self.reset()
await self._http_client.close()
async def reset(self) -> None:
"""Reset internal handshake state."""
Improve smartprotocol error handling and retries (#578) * Improve smartprotocol error handling and retries * Update after review * Enum to IntEnum and SLEEP_SECONDS_AFTER_TIMEOUT
2023-12-10 15:41:53 +00:00
self._handshake_done = False
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
@staticmethod
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def generate_auth_hash(creds: Credentials) -> bytes:
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
"""Generate an md5 auth hash for the protocol on the supplied credentials."""
Cleanup credentials handling (#605) * credentials: don't allow none to simplify checks * Implement __bool__ for credentials * Cleanup klaptransport cred usage * Cleanup deviceconfig and tapodevice * fix linting * Pass dummy credentials for tests * Remove __bool__ dunder and add docs to credentials * Check for cred noneness in tapodevice.update()
2024-01-03 18:26:52 +00:00
un = creds.username
pw = creds.password
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
return md5(md5(un.encode()) + md5(pw.encode()))
@staticmethod
def handshake1_seed_auth_hash(
local_seed: bytes, remote_seed: bytes, auth_hash: bytes
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
) -> bytes:
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
"""Generate an md5 auth hash for the protocol on the supplied credentials."""
return _sha256(local_seed + auth_hash)
@staticmethod
def handshake2_seed_auth_hash(
local_seed: bytes, remote_seed: bytes, auth_hash: bytes
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
) -> bytes:
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
"""Generate an md5 auth hash for the protocol on the supplied credentials."""
return _sha256(remote_seed + auth_hash)
@staticmethod
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def generate_owner_hash(creds: Credentials) -> bytes:
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
"""Return the MD5 hash of the username in this object."""
Cleanup credentials handling (#605) * credentials: don't allow none to simplify checks * Implement __bool__ for credentials * Cleanup klaptransport cred usage * Cleanup deviceconfig and tapodevice * fix linting * Pass dummy credentials for tests * Remove __bool__ dunder and add docs to credentials * Check for cred noneness in tapodevice.update()
2024-01-03 18:26:52 +00:00
un = creds.username
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
return md5(un.encode())
Add DeviceConfig to allow specifying configuration parameters (#569) * Add DeviceConfig handling * Update post review * Further update post latest review * Update following latest review * Update docstrings and docs
2023-12-29 19:17:15 +00:00
class KlapTransportV2(KlapTransport):
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
"""Implementation of the KLAP encryption protocol with v2 hanshake hashes."""
@staticmethod
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def generate_auth_hash(creds: Credentials) -> bytes:
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
"""Generate an md5 auth hash for the protocol on the supplied credentials."""
Cleanup credentials handling (#605) * credentials: don't allow none to simplify checks * Implement __bool__ for credentials * Cleanup klaptransport cred usage * Cleanup deviceconfig and tapodevice * fix linting * Pass dummy credentials for tests * Remove __bool__ dunder and add docs to credentials * Check for cred noneness in tapodevice.update()
2024-01-03 18:26:52 +00:00
un = creds.username
pw = creds.password
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
return _sha256(_sha1(un.encode()) + _sha1(pw.encode()))
@staticmethod
def handshake1_seed_auth_hash(
local_seed: bytes, remote_seed: bytes, auth_hash: bytes
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
) -> bytes:
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
"""Generate an md5 auth hash for the protocol on the supplied credentials."""
return _sha256(local_seed + remote_seed + auth_hash)
@staticmethod
def handshake2_seed_auth_hash(
local_seed: bytes, remote_seed: bytes, auth_hash: bytes
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
) -> bytes:
Add klap support for TAPO protocol by splitting out Transports and Protocols (#557) * Add support for TAPO/SMART KLAP and seperate transports from protocols * Add tests and some review changes * Update following review * Updates following review
2023-12-04 18:50:05 +00:00
"""Generate an md5 auth hash for the protocol on the supplied credentials."""
return _sha256(remote_seed + local_seed + auth_hash)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
class KlapEncryptionSession:
"""Class to represent an encryption session and it's internal state.
i.e. sequence number which the device expects to increment.
"""
Reduce the number of times creating the cipher in klap (#712)
2024-01-26 17:44:41 +00:00
_cipher: Cipher
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def __init__(self, local_seed: bytes, remote_seed: bytes, user_hash: bytes) -> None:
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
self.local_seed = local_seed
self.remote_seed = remote_seed
self.user_hash = user_hash
self._key = self._key_derive(local_seed, remote_seed, user_hash)
(self._iv, self._seq) = self._iv_derive(local_seed, remote_seed, user_hash)
Reduce the number of times creating the cipher in klap (#712)
2024-01-26 17:44:41 +00:00
self._aes = algorithms.AES(self._key)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
self._sig = self._sig_derive(local_seed, remote_seed, user_hash)
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def _key_derive(
self, local_seed: bytes, remote_seed: bytes, user_hash: bytes
) -> bytes:
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
payload = b"lsk" + local_seed + remote_seed + user_hash
return hashlib.sha256(payload).digest()[:16]
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def _iv_derive(
self, local_seed: bytes, remote_seed: bytes, user_hash: bytes
) -> tuple[bytes, int]:
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
# iv is first 16 bytes of sha256, where the last 4 bytes forms the
# sequence number used in requests and is incremented on each request
payload = b"iv" + local_seed + remote_seed + user_hash
fulliv = hashlib.sha256(payload).digest()
seq = int.from_bytes(fulliv[-4:], "big", signed=True)
return (fulliv[:12], seq)
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def _sig_derive(
self, local_seed: bytes, remote_seed: bytes, user_hash: bytes
) -> bytes:
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
# used to create a hash with which to prefix each request
payload = b"ldk" + local_seed + remote_seed + user_hash
return hashlib.sha256(payload).digest()[:28]
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def _generate_cipher(self) -> None:
Reduce the number of times creating the cipher in klap (#712)
2024-01-26 17:44:41 +00:00
iv_seq = self._iv + PACK_SIGNED_LONG(self._seq)
cbc = modes.CBC(iv_seq)
self._cipher = Cipher(self._aes, cbc)
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def encrypt(self, msg: bytes | str) -> tuple[bytes, int]:
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
"""Encrypt the data and increment the sequence number."""
Reduce the number of times creating the cipher in klap (#712)
2024-01-26 17:44:41 +00:00
self._seq += 1
self._generate_cipher()
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
if isinstance(msg, str):
msg = msg.encode("utf-8")
Reduce the number of times creating the cipher in klap (#712)
2024-01-26 17:44:41 +00:00
encryptor = self._cipher.encryptor()
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
padder = padding.PKCS7(128).padder()
padded_data = padder.update(msg) + padder.finalize()
ciphertext = encryptor.update(padded_data) + encryptor.finalize()
Use hashlib for klap since its faster (#711)
2024-01-26 09:33:18 +00:00
signature = hashlib.sha256(
Reduce the number of times creating the cipher in klap (#712)
2024-01-26 17:44:41 +00:00
self._sig + PACK_SIGNED_LONG(self._seq) + ciphertext
Use hashlib for klap since its faster (#711)
2024-01-26 09:33:18 +00:00
).digest()
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
return (signature + ciphertext, self._seq)
Enable ruff check for ANN (#1139)
2024-11-10 18:55:13 +00:00
def decrypt(self, msg: bytes) -> str:
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
"""Decrypt the data."""
Reduce the number of times creating the cipher in klap (#712)
2024-01-26 17:44:41 +00:00
decryptor = self._cipher.decryptor()
Add klap protocol (#509) * Add support for the new encryption protocol This adds support for the new TP-Link discovery and encryption protocols. It is currently incomplete - only devices without username and password are current supported, and single device discovery is not implemented. Discovery should find both old and new devices. When accessing a device by IP the --klap option can be specified on the command line to active the new connection protocol. sdb9696 - This commit also contains 16 later commits from Simon Wilkinson squashed into the original * Update klap changes 2023 to fix encryption, deal with kasa credential switching and work with new discovery changes * Move from aiohttp to httpx * Changes following review comments --------- Co-authored-by: Simon Wilkinson <simon@sxw.org.uk>
2023-11-20 13:17:10 +00:00
dp = decryptor.update(msg[32:]) + decryptor.finalize()
unpadder = padding.PKCS7(128).unpadder()
plaintextbytes = unpadder.update(dp) + unpadder.finalize()
return plaintextbytes.decode()
Reference in New Issue Copy Permalink