mgC UdZddlmZmZmZmZmZddlmZmZm Z m Z m Z ddl m Z ddlmZmZddlmZddlmZmZmZdd lmZmZmZmZmZdd lmZdd lmZm Z erdd l!Z!dd l"m#Z#m$Z$ddl"m%Z%eee&e'fZ(ee&e&e&e(fZ)e e'e)fZ*ee&Z+ee&e&fZ,dZ-dZ.dZ/dZ0dZ1dZ2dZ3dZ4dZ5dZ6gZ7ee8e9d<iZ:ee8e dfe9d<iZ;ee8e dfe9d<GddeZ<Gdde<Z=Gdde=Z>Gdd e=Z?Gd!d"e=Z@Gd#d$e=ZAGd%d&e=ZBGd'd(e=ZCGd)d*e=ZDGd+de<ZEGd,d-eEZFGd.d/eEZGGd0d1eEZHGd2d3eEZIGd4d5eEZJGd6d7eEZKGd8d9eEZLd:e8d;e e=dZMd=ee8fd?ZNd@dAdBe8d=ee=fdCZOd@dDd=ee8fdEZPd@dDdFe&dBe8dGed=eeEf dHZQdIe>eFfdJe?eGfdKe@eHfdLeAeIfdMeBeJfdNeCeKfdOeDeLffZReRD]ZSeMeS y )PzSSH authentication handlers) TYPE_CHECKING AwaitableDictListOptional)SequenceTupleTypeUnioncast) DEFAULT_LANG)GSSBaseGSSError) SSHLogger) ProtocolErrorPasswordChangeRequiredget_symbol_names)BooleanStringUInt32 SSHPacketSSHPacketHandler) SigningKey)saslprep SASLPrepErrorN) SSHConnectionSSHClientConnection)SSHServerConnection<=?@AB _auth_methods ClientAuth_client_auth_handlers ServerAuth_server_auth_handlersc xeZdZdZdddedfdZddd ed ed ed dfd Z e d e fdZ dedd dfdZ ddZy)AuthzParent class for authenticationconnrcoroNc`||_|j|_|j||_yN)_connlogger_logger create_task_coro)selfr-r.s -lib/python3.12/site-packages/asyncssh/auth.py__init__z Auth.__init__Ms& {{ 595E5Ed5K Ttrivialpkttypeargsr;returncF|jj|g|||dy)zSend an auth packet)handlerr;N)r1send_userauth_packet)r6r<r;r=s r7 send_packetzAuth.send_packetRs+ ( '' 9$ 907 9r9c|jS)z4A logger associated with this authentication handler)r3r6s r7r2z Auth.loggerYs||r9cd|j|jj||_y)z Create an asynchronous auth taskN)cancelr1r4r5)r6r.s r7r4zAuth.create_task_s# ZZ++D1 r9c`|jr"|jjd|_yy)z%Cancel any authentication in progressN)r5rFrDs r7rFz Auth.canceles' :: JJ   DJ r9r>N)__name__ __module__ __qualname____doc__rr8intbytesboolrBpropertyrr2r4rFr9r7r,r,Js~)L_LIdOL %)939u9!9-19  2 $2D2 r9r,c veZdZUdZded<dddeffd Zdd Zdd Zdd Z dd d dede e de ddfdZ xZS)r'z&Parent class for client authenticationrr1r-methodcP||_t| ||jyr0)_methodsuperr8_startr6r-rS __class__s r7r8zClientAuth.__init__rs  t{{}-r9r>NcKtw)z2Abstract method for starting client authenticationNotImplementedErrorrDs r7rWzClientAuth._startw"! cy)zCallback when auth succeedsNrQrDs r7auth_succeededzClientAuth.auth_succeeded}r9cy)zCallback when auth failsNrQrDs r7 auth_failedzClientAuth.auth_failedrar9Tkeyr;r=rer;cvK|jj|jg|||dd{y7w)z"Send a user authentication requestrdN)r1send_userauth_requestrU)r6rer;r=s r7 send_requestzClientAuth.send_requestsB /djj..t||@d@7>@ @ @s /979rH)rIrJrKrL__annotations__rNr8rWr`rcrrrOrh __classcell__rYs@r7r'r'mse0  .2.E. " *'8<+/@@ ( 4@$(@48@r9ceZdZdZddZy)_ClientNullAuthz'Client side implementation of null authNc@K|jd{y7w)z Start client null authenticationN)rhrDs r7rWz_ClientNullAuth._starts!!!s rHrIrJrKrLrWrQr9r7rmrms 1"r9rmceZdZdZddZy)_ClientGSSKexAuthz3Client side implementation of GSS key exchange authNcK|jjrO|jjd|j |jj dd{y|jj y7 w)z,Start client GSS key exchange authenticationTrying GSS key exchange authFrdN)r1gss_kex_auth_requestedr2debug1rhget_gss_context try_next_authrDs r7rWz_ClientGSSKexAuth._startsq :: , , . KK  = >## (B(B(D,1$3 3 3 JJ $ $ & 3sA$B &B'!B rHrorQr9r7rqrqs = 'r9rqceZdZdZeedZdddeffd Zdd Z dd Z d e d e d e ddfdZ d e d e d e ddfdZd e d e d e ddfdZd e d e d e ddfdZee eeeeeeiZxZS)_ClientGSSMICAuthz*Client side implementation of GSS MIC authMSG_USERAUTH_GSSAPI_r-rrScBt|||d|_d|_yNF)rVr8_gss _got_errorrXs r7r8z_ClientGSSMICAuth.__init__s  v&'+ r9r>NcK|jjr|jjd|jj |_|j j djd|j jD}|jtt|j j|d{y|jjy7 w)z#Start client GSS MIC authenticationTrying GSS MIC authr9c32K|]}t|ywr0r).0mechs r7 z+_ClientGSSMICAuth._start..sGtfTlN) r1gss_mic_auth_requestedr2rurvr}resetjoinmechsrhrlenrw)r6rs r7rWz_ClientGSSMICAuth._starts :: , , . KK  4 5 224DI IIOO HHGtyyGHE##F3tyy+?$@%H H H JJ $ $ & IsCC;C9!C;c6|jJ|jjr`|jj|j}|j t t|jj|dy|j ty)z$Finish client GSS MIC authenticationNFr:) r}provides_integrityr1get_userauth_request_datarUrBMSG_USERAUTH_GSSAPI_MICrsign%MSG_USERAUTH_GSSAPI_EXCHANGE_COMPLETE)r6datas r7_finishz_ClientGSSMICAuth._finishsxyy$$$ 99 ' '::77 ED   4#DIINN4$89%*  ,   B Cr9_pkttype_pktidpacketc:|j}|j|jJ||jjvr t d |jj }|J|j tt||jjr|jyy#t$rY}|jr)|j tt|j|jjYd}~yd}~wwxYw)z&Process a GSS response from the serverNzMechanism mismatch) get_string check_endr}rrsteprBMSG_USERAUTH_GSSAPI_TOKENrcompleterrtokenMSG_USERAUTH_GSSAPI_ERRTOKr1rw)r6rrrrrexcs r7_process_responsez#_ClientGSSMICAuth._process_responses  "yy$$$ tyy & 45 5 'IINN$E$ $$   6u Fyy!! " 'yy  !;VCII=NO JJ $ $ & &  'sA#B88 DADDc|j}|j|jJ |jj|}|r|j t t ||jjr|jyy#t$rY}|jr)|j tt |j|jjYd}~yd}~wwxYw)z#Process a GSS token from the serverN)rrr}rrBrrrrrrrr1rwr6rrrrrs r7_process_tokenz _ClientGSSMICAuth._process_tokens"(!2!2!4yy$$$ 'IINN5)E  !:F5MJyy!! " 'yy  !;VCII=NO JJ $ $ & &  'sA"B C6AC11C6c|j}|j}|j}|j}|j|jj d|d|_y)z#Process a GSS error from the serverGSS error from server: %sTN) get_uint32rrr2rur~)r6rrr_msgs r7_process_errorz _ClientGSSMICAuth._process_errorsd        !     6<r9c0|j}|j|jJ |jj|y#t$r@}|j s*|j jdt|Yd}~yYd}~yd}~wwxYw)z)Process a GSS error token from the serverNr) rrr}rrr~r2rustrrs r7_process_error_tokenz&_ClientGSSMICAuth._process_error_tokens~!!#yy$$$ J IINN5 ! J?? ""#>CII# JsA B1BBrH)rIrJrKrLrglobals_handler_namesrNr8rWrrMrrrrrMSG_USERAUTH_GSSAPI_RESPONSErMSG_USERAUTH_GSSAPI_ERRORr_packet_handlersrjrks@r7ryrys4%gi1GHN 2 E ' D'#'s'"+'04'4's'C'('-1'. s C ( -1  JS J# J%. J37 J %&7!n!n"&: r9ryceZdZdZddZy)_ClientHostBasedAuthz-Client side implementation of host based authNcBK|jjd{\}}}||jjy|jj d|||j  |j t|j t|jt|t||d{y77#t$rI}|jj dt||jjYd}~yd}~wwxYww)z&Start client host based authenticationNz=Trying host based auth of user %s on host %s with %s host key)rezHost based auth failed: %s) r1host_based_auth_requestedrwr2ru algorithmrhr public_data ValueErrorr)r6keypair client_hostclient_usernamers r7rWz_ClientHostBasedAuth._start"s**668 8 .o ? JJ $ $ &  ./> ",, . '##F7+<+<$=$*7+>+>$?$*;$7$*?$;$J J J 9 J ' KK  ;SX F JJ $ $ & & 'sMDCA D/AC CC DC D?DDDDrHrorQr9r7rrs 7'r9rc\eZdZdZeedZd dZd dZde de d e ddfd Z e e iZ y) _ClientPublicKeyAuthz-Client side implementation of public key authMSG_USERAUTH_PK_r>NcK|jjd{|_|j|jjy|jj d|jj |jtdt|jj t|jjd{y77w)z&Start client public key authenticationN"Trying public key auth with %s keyF) r1public_key_auth_requested_keypairrwr2rurrhrrrrDs r7rWz_ClientPublicKeyAuth._start?s#jjBBDD == JJ $ $ &  ?==22 4 &t}}'>'> ? &t}}'@'@ AC C CE Cs"C$C B9C$C"C$"C$cbK|jJ|jjd|jj|j t dt |jjt |jj|jdd{y7w)zSend signed public key requestNzSigning request with %s keyTFrd)rr2rurrhrrrrDs r7_send_signed_requestz)_ClientPublicKeyAuth._send_signed_requestOs}}((( 8==22 4 &t}}'>'> ? &t}}'@'@ A$(MM5 B B BsB%B/'B-(B/rrrc8|j}|j}|j|jJ||jjk7s||jjk7r t d|j |jy)z Process a public key ok responseNz Key mismatch)rrrrrrr4r)r6rrrrkey_datas r7_process_public_key_okz+_ClientPublicKeyAuth._process_public_key_ok\s%%' $$&}}((( 00 0DMM555/ / 2245r9rH)rIrJrKrLrrrrWrrMrrMSG_USERAUTH_PK_OKrrQr9r7rr:sS7%gi1CDNC B6s6C6'06596" 2r9rc peZdZdZeedZddZdededed e ddf d Z d e d e d e ddfdZ ee iZy)_ClientKbdIntAuthz7Client side implementation of keyboard-interactive authMSG_USERAUTH_INFO_r>Nc K|jjd{}||jjy|jj d|j t dt |d{y7i7w)z0Start client keyboard interactive authenticationN Trying keyboard-interactive auth)r1kbdint_auth_requestedrwr2rurhr)r6 submethodss r7rWz_ClientKbdIntAuth._startvst ::;;==   JJ $ $ &  =>r F:,>???> @s"BB A#BB B Bname instructionlangpromptscK|jj||||d{}||jjy|jtt t |djd|D| y7dw)z7Receive and respond to a keyboard interactive challengeNr9c32K|]}t|ywr0r)rrs r7rz7_ClientKbdIntAuth._receive_challenge..s!?Y&)Yrr:)r1kbdint_challenge_receivedrwrBMSG_USERAUTH_INFO_RESPONSErrr)r6rrrr responsess r7_receive_challengez$_ClientKbdIntAuth._receive_challenges **66t[7;WF F    JJ $ $ &  3VC N5K!?Y!??%.  0 Fs"B B A%B rrrcD|j}|j}|j} |jd}|jd}|jd} |j } g} t | D]G} |j} |j } | jd}| j||fI|j|j||| | y#t$r tddwxYw#t$r tddwxYw)z5Process a keyboard interactive authentication requestutf-8asciiz)Invalid keyboard interactive info requestN) rdecodeUnicodeDecodeErrorrrrange get_booleanappendr4r)r6rrr name_bytesinstruction_bytes lang_bytesrrr num_promptsrr prompt_bytesechoprompts r7_process_info_requestz'_ClientKbdIntAuth._process_info_requests>&&( "--/&&(  :$$W-D+227;K$$W-D '') {#A!,,.L%%'D >%,,W5 NNFD> *$ 00{15w@ A%" :!/059 : :& >#%349=> >s3C0&D 0D DrH)rIrJrKrLrrrrWr KbdIntPromptsrrMrrMSG_USERAUTH_INFO_REQUESTrrQr9r7rrqs}A%gi1EFN @0S0s0#0*70<@0 AcA3A&/A48AD "#8r9rceZdZdZeedZdddeffd Zdd Z d e d e ddfd Z dd Z ddZ dedededdfdZeeiZxZS)_ClientPasswordAuthz+Client side implementation of password authMSG_USERAUTH_PASSWD_r-rrSc4t|||d|_yr|)rVr8_password_changerXs r7r8z_ClientPasswordAuth.__init__s v& %r9r>Nc$K|jjd{}||jjy|jj d|j t dt|dd{y7k7w)z$Start client password authenticationNTrying password authFr:)r1password_auth_requestedrwr2rurhrr)r6passwords r7rWz_ClientPasswordAuth._starts;;==   JJ $ $ &  12x0@(- / / /> /s"BB A%BBBBrrc K|jj||d{}|tk(r|jjy|jj dt t|\}}d|_|jtdt|jdt|jddd{y77w)zStart password changeNTrying to chsnge passwordTrFr:) r1password_change_requestedNotImplementedrwr2rur PasswordChangeResponserrhrrencode)r6rrresult old_password new_passwords r7_change_passwordz$_ClientPasswordAuth._change_passwordszz;;FDII ^ # JJ $ $ &  67%)*@&%I" l $ &|':':7'C D &|':':7'C D(- / / /J /s" CCB.CCCCc`|jr"d|_|jjyyr|)rr1password_changedrDs r7r`z"_ClientPasswordAuth.auth_succeededs(  $)D ! JJ ' ' ) !r9c`|jr"d|_|jjyyr|)rr1password_change_failedrDs r7rcz_ClientPasswordAuth.auth_faileds(  $)D ! JJ - - / !r9rrrc|j}|j} |jd}|jd}|j |j |j ||y#t$r tddwxYw)z!Process a password change requestrrzInvalid password change requestN)rrrrrcr4r)r6rrrrrrrs r7_process_password_changez,_ClientPasswordAuth._process_password_changes((* &&(  M!((1F$$W-D  ..vt<= " M AB L Ms "A66B rH)rIrJrKrLrrrrNr8rWrrr`rcrMrrMSG_USERAUTH_PASSWD_CHANGEREQrrjrks@r7rrs5%gi1GHN&2&E& //S///** 0 >>c>)2>7;>" &'?r9rceZdZUdZded<dddededeffd Ze ddd e fd Z ded d fd Z dd e d d fdZ ddZxZS)r)z&Parent class for server authenticationrr1r-usernamerSrc`||_||_t| ||j |yr0) _usernamerUrVr8rWr6r-r rSrrYs r7r8zServerAuth.__init__ s)!  t{{623r9r>ct)z6Return whether this authentication method is supportedr[clsr-s r7 supportedzServerAuth.supporteds "!r9NcKtw)z2Abstract method for starting server authenticationr[r6rs r7rWzServerAuth._startr]r^partial_successc:|jj|y)z+Send a user authentication failure responseN)r1send_userauth_failure)r6rs r7 send_failurezServerAuth.send_failures ((9r9c8|jjy)z+Send a user authentication success responseN)r1send_userauth_successrDs r7 send_successzServerAuth.send_success"s ((*r9)FrH)rIrJrKrLrirrNrr8 classmethodrOrrWrrrjrks@r7r)r)s~0  424c44(14"2"t"" "9"" :D:T: +r9c:eZdZdZedddefdZdeddfdZy) _ServerNullAuthz'Server side implementation of null authr-rr>cy)z>Return that null authentication is never a supported auth modeFrQrs r7rz_ServerNullAuth.supported+sr9rNc Kyw)z4Supported always returns false, so we never get hereNrQrs r7rWz_ServerNullAuth._start1ss rIrJrKrLrrOrrrWrQr9r7rr(s<12t C9CCr9rc^eZdZdZdddededeffd Zeddde fd Z dedd fd Z xZ S) _ServerGSSKexAuthz3Server side implementation of GSS key exchange authr-rr rSrcTt||||||j|_yr0rVr8rvr}r s r7r8z_ServerGSSKexAuth.__init__8& x8((* r9r>c"|jS)z;Return whether GSS key exchange authentication is supported)gss_kex_auth_supportedrs r7rz_ServerGSSKexAuth.supported>**,,r9Nc$K|j}|j|jjd|jj |j }|jjr|jj||rh|jj|j|jj|jjd{r|jy|jy7&w)z,Start server GSS key exchange authenticationrsN)rrr2rur1rrUr}rverifyvalidate_gss_principalr userhostrr)r6rmicrs r7rWz_ServerGSSKexAuth._startDs! 9:zz33DLLA II  499#3#3D##>zz889=9=III         IsC%D'D('D) rIrJrKrLrrNrr8rrOrrWrjrks@r7r!r!5s`=+2+c++(1+ -2-t--  9  r9r!c eZdZdZeedZdddedede dd f fd Z e ddde fd Z de dd fd Zdd Zdedede dd fdZdedede dd fdZdedede dd fdZdedede dd fdZeeeeeeeeiZxZS)_ServerGSSMICAuthz*Server side implementation of GSS MIC authrzr-rr rSrr>NcTt||||||j|_yr0r#r s r7r8z_ServerGSSMICAuth.__init__\r$r9c"|jS)z2Return whether GSS MIC authentication is supported)gss_mic_auth_supportedrs r7rz_ServerGSSMICAuth.supportedbr'r9cKt}|j}t|D]!}|j|j #|j d}|j jD] }||vs|}n|s|jy|jjd|j j|jtt|yw)z#Start server GSS MIC authenticationNr)setrraddrrr}rrr2rurrBrr)r6rrnrmatchrs r7rWz_ServerGSSMICAuth._starths    qA IIf'') *IIOODu}$       01  5ve}Es A9C)A<'A>rrc 2|j}|j |jj|}|r |j t t |yy#t$r}|j tt|jt|jt t|t t|jr)|j tt |j|j!Yd}~yd}~wwxYw)z#Process a GSS token from the clientN)rrr}rrBrrrrrmaj_codemin_coderrrrrrs r7rz _ServerGSSMICAuth._process_tokens"(!2!2!4 IINN5)E  !:F5MJ   6s||8L#CLL16#c(3C#L1 3yy  !;VCII=NO      s A6%A11A6c~|j}|j|jj|j}|j j rR|j jr<|j j||r |j|jy|jy)z!Process a GSS MIC from the clientN) rrr1rrUr}rrr)r4rr)r6rrrr-rs r7 _process_micz_ServerGSSMICAuth._process_mics!zz33DLLA II  499#?#?   s+   T\\^ ,    r9rH)rIrJrKrLrrrrrNrr8rrOrrWrrMrr=rr@rrrrrrjrks@r7r/r/Ws04%gi1GHN+2+c++(1+6:+ -2-t-- F9FF4  s C ( -1 ,  3    +4  9=   FS F# F%. F37 F  S  #  &  +/  "~-/I"/C| r9r/c:eZdZdZedddefdZdeddfdZy) _ServerHostBasedAuthz-Server side implementation of host based authr-rr>c"|jS)z5Return whether host based authentication is supported)host_based_auth_supportedrs r7rz_ServerHostBasedAuth.supported--//r9rNchK|j}|j}|j}|j}|j}|j}|j |jd}t |jd} |jjd| |||jj|j||| ||d{r|jy|jy#t t f$r tddwxYw7Ew)z&Start server host based authenticationrzInvalid host-based auth requestNz@Verifying host based auth of user %s on host %s with %s host key)rget_consumed_payloadrrrrrrr2rur1validate_host_based_authr rr) r6rrrclient_host_bytesclient_username_bytesr signaturerrs r7rWz_ServerHostBasedAuth._starts1%%' $$&"--/ & 1 1 3))+%%'  M+227;K&'<'C'CG'LMO 9:I&  3**55dnn6> 6E699F F F        #M2 M AB L M Fs+A1D24+DA D2*D0+&D2D--D2rrQr9r7rBrBs97020t00  9  r9rBc:eZdZdZedddefdZdeddfdZy) _ServerPublicKeyAuthz-Server side implementation of public key authr-rr>c"|jS)z5Return whether public key authentication is supported)public_key_auth_supportedrs r7rz_ServerPublicKeyAuth.supportedrEr9rNcNK|j}|j}|j}|r!|j}|j}nd}d}|j|r|jj d|n|jj d||j j|j|||d{r=|r|jy|jtt|t|y|jy7Rw)z&Start server public key authenticationr9zVerifying request with %s keyrN)rrrGrr2rur1validate_public_keyr rrBrrr)r6r sig_presentrrrrKs r7rWz_ServerPublicKeyAuth._starts((* %%' $$& --/C))+ICI  KK  > J KK  CY O**0014iA A A!!#  !3VI5F!'!13     AsCD%D#AD%rrQr9r7rMrMs97020t00  9  r9rMceZdZdZeedZedddefdZ de ddfd Z d e ddfd Z d eddfd Zdedede ddfdZeeiZy)_ServerKbdIntAuthz7Server side implementation of keyboard-interactive authrr-rr>c"|jS)z?Return whether keyboard interactive authentication is supported)kbdint_auth_supportedrs r7rz_ServerKbdIntAuth.supported&s))++r9rNcK|j}|j}|j |jd}|jd}|j j d|jj|j||d{}|j|y#t$r t ddwxYw7/w)z0Start server keyboard interactive authenticationrrz)Invalid keyboard interactive auth requestNr) rrrrrr2rur1get_kbdint_challenger _send_challenge)r6rrsubmethods_bytesrr challenges r7rWz_ServerKbdIntAuth._start,s&&( !,,. :$$W-D)009J =>**99$..:> LL  Y'" :!/059 : : Ls)1C "B2AC C C 2CC r[c ,t|ttfr[|\}}}}t|}d|D}|jt t |t |t |t|g|y|r|jy|jy)z2Send a keyboard interactive authentication requestc3PK|]\}}t|t|z ywr0)rr)rrrs r7rz4_ServerKbdIntAuth._send_challenge..Gs):18$F^gdm;18s$&N) isinstancetuplelistrrBrrrrr)r6r[rrrrr prompts_bytess r7rYz!_ServerKbdIntAuth._send_challenge@s i% //8 ,D+tWg,K:18:M D  6t #K0&,#K0 B3@ B        r9rcK|jj|j|d{}|j|y7w)z7Validate a keyboard interactive authentication responseN)r1validate_kbdint_responser rY)r6rnext_challenges r7_validate_responsez$_ServerKbdIntAuth._validate_responseRs<**55dnniP P  ^, Qs*AAArrc@|j}g}t|D]5}|j} |jd}|j |7|j|j|j|y#t$r t ddwxYw)z6Process a keyboard interactive authentication responserz*Invalid keyboard interactive info responseN) rrrrrrrrr4re) r6rrr num_responsesrrresponse_bytesresponses r7_process_info_responsez(_ServerKbdIntAuth._process_info_responseYs))+  }%A#..0N ?)009   X &&  00;<& ?#%45:>? ?s BB)rIrJrKrLrrrrrOrrrWKbdIntChallengerYKbdIntResponsererMrjrrrQr9r7rTrT!sA%gi1EFN,2,t,, (9(((  T $-.-T-=s=C='0=59=, #$:r9rTc:eZdZdZedddefdZdeddfdZy) _ServerPasswordAuthz+Server side implementation of password authr-rr>c"|jS)z3Return whether password authentication is supported)password_auth_supportedrs r7rz_ServerPasswordAuth.supportedvs++--r9rNc^K|j}|j}|r|jnd}|j t|j d}t|j d} |rK|jjd|jj|j||d{}nI|jjd|jj|j|d{}|r|jy|jy#t t f$r tddwxYw77I#t $rG}|j#t$t'|j(t'|j*Yd}~yd}~wwxYww)z$Start server password authenticationr9rzInvalid password auth requestNrr)rrrrrrrrr2rur1change_passwordr validate_passwordrrrrBrrrr) r6rpassword_changepassword_bytesnew_password_bytesrrrrs r7rWz_ServerPasswordAuth._start|s!,,.**,4CV..0 K 5 5g >?H#$6$=$=g$FGL C ""#>?#zz99$..:B:F HH ""#9:**66t~~xPP!!#!!#'#M2 K ?@d J KHQ & C   :#CJJ/1A C C CstAF-4D7=AEEA EEE%F-&E6F-7EF-EE F*#=F% F-%F**F-rrQr9r7rnrnss<5.2.t.. !C9!C!Cr9rnalgclient_handlerserver_handlerr>cRtj||t|<|t|<y)z!Register an authentication methodN)r&rr(r*)rwrxrys r7register_auth_methodr{s(!/#!/#r9c>tDcgc] }|dk7r| c}Scc}w)z.Return a list of supported client auth methodsnone)r()rSs r7!get_supported_client_auth_methodsr~s1"7 "!6v  !6 "" "sr-rrSc2|tvrt|||Sy)z/Look up the client authentication method to useN)r&r()r-rSs r7lookup_client_authrs!$V,T6::r9rctg}tD],}t|j|s|j|.|S)z.Return a list of supported server auth methods)r&r*rr)r- auth_methodsrSs r7!get_supported_server_auth_methodsrs<L  ( 2 24 8    '  r9r rctj|}|r|j|r |||||S|jdy)z/Look up the server authentication method to useFN)r*getrr)r-r rSrr@s r7lookup_server_authrsF $''/G7$$T*tXvv66 ""5)r9r}s gssapi-keyexsgssapi-with-mics hostbaseds publickeyskeyboard-interactivespassword)TrLtypingrrrrrrr r r r constantsrgssrrloggingrmiscrrrrrrrrr public_keyrrrasyncio connectionrrrrrOrKbdIntNewChallengerkrlrrrrrrrrrrrr&rNrir(r*r,r'rmrqryrrrrr)rr!r/rBrMrTrnr{r~rrr_auth_method_list_argsrQr9r7rs*"AA55#"IIHH"-?/sDy)* 3S-78001#sCx)+(*(*%(*(*(*)+)+(*)+ tE{9;tE4 #556;9;tE4 #556;   F@@>"j" ' 'x xv':'64:4nE EPI*IX + +F Cj C  Dv vr% :% P& :& RO Od*C**CZ0e0T*5E0Z(0-10"8E?"2$)1*)= ,A   2 c $ .7   oOD/4EF/4EF24HI24HI/4EF14GHE% r9