python-kasa
diff --git a/‎kasa/tapoprotocol.py renamed to ‎kasa/aesprotocol.py
Lines changed: 53 additions & 23 deletions b/‎kasa/tapoprotocol.py renamed to ‎kasa/aesprotocol.py
Lines changed: 53 additions & 23 deletions
diff --git a/‎kasa/device_factory.py
Lines changed: 1 addition & 1 deletion b/‎kasa/device_factory.py
Lines changed: 1 addition & 1 deletion
diff --git a/‎kasa/discover.py
Lines changed: 4 additions & 4 deletions b/‎kasa/discover.py
Lines changed: 4 additions & 4 deletions
@@ -1,5 +1,7 @@
-"""Implementation of the TP-Link TAPO Protocol.
+"""Implementation of the TP-Link AES Protocol.
 
+Based on the work of https://github.com/petretiandrea/plugp100
+under compatible GNU GPL3 license.
 """
 
 import asyncio
@@ -35,16 +37,16 @@ def _md5(payload: bytes) -> bytes:
 
 
 def _sha1(payload: bytes) -> str:
-    sha1_algo = hashlib.sha1()
+    sha1_algo = hashlib.sha1()  # noqa: S324
     sha1_algo.update(payload)
     return sha1_algo.hexdigest()
 
 
-class TapoAESProtocol(TPLinkProtocol):
-    """Implementation of the KLAP encryption protocol.
+class TPLinkAes(TPLinkProtocol):
+    """Implementation of the AES encryption protocol.
 
-    KLAP is the name used in device discovery for TP-Link's new encryption
-    protocol, used by newer firmware versions.
+    AES is the name used in device discovery for TP-Link's TAPO encryption
+    protocol, sometimes used by newer firmware versions on kasa devices.
     """
 
     DEFAULT_PORT = 80
@@ -95,9 +97,10 @@ def __init__(
         self.login_version = login_version
         self.login_token = None
 
-        _LOGGER.debug("Created KLAP object for %s", self.host)
+        _LOGGER.debug("Created AES object for %s", self.host)
 
     def hash_credentials(self, credentials, try_login_version2):
+        """Hash the credentials."""
         if try_login_version2:
             un = base64.b64encode(
                 _sha1(credentials.username.encode()).encode()
@@ -135,6 +138,7 @@ async def client_post(self, url, params=None, data=None, json=None, headers=None
         return resp.status_code, response_data
 
     async def send_secure_passthrough(self, request):
+        """Send encrypted message as passthrough."""
         url = f"http://{self.host}/app"
         if self.login_token:
             url += f"?token={self.login_token}"
@@ -159,7 +163,8 @@ async def send_secure_passthrough(self, request):
         else:
             raise AuthenticationException("Could not complete send")
 
-    def get_tapo_request(self, method, params=None):
+    def get_aes_request(self, method, params=None):
+        """Get a request message."""
         request = {
             "method": method,
             "params": params,
@@ -170,18 +175,20 @@ def get_tapo_request(self, method, params=None):
         return request
 
     async def perform_login(self, login_v2):
+        """Login to the device."""
         self.login_token = None
-        url = f"http://{self.host}/app"
+
         un, pw = self.hash_credentials(self.credentials, login_v2)
         params = {"password": pw, "username": un}
-        request = self.get_tapo_request("login_device", params)
+        request = self.get_aes_request("login_device", params)
         try:
             result = await self.send_secure_passthrough(request)
         except SmartDeviceException as ex:
             raise AuthenticationException(ex) from ex
         self.login_token = result["token"]
 
     async def perform_handshake(self):
+        """Perform the handshake."""
         _LOGGER.debug("Will perform handshaking...")
         _LOGGER.debug("Generating keypair")
 
@@ -192,7 +199,11 @@ async def perform_handshake(self):
         url = f"http://{self.host}/app"
         key_pair = KeyPair.create_key_pair()
 
-        pub_key = f"-----BEGIN PUBLIC KEY-----\n{key_pair.get_public_key()}\n-----END PUBLIC KEY-----\n"
+        pub_key = (
+            "-----BEGIN PUBLIC KEY-----\n"
+            + key_pair.get_public_key()
+            + "\n-----END PUBLIC KEY-----\n"
+        )
         handshake_params = {"key": pub_key}
         _LOGGER.debug(f"Handshake params: {handshake_params}")
 
@@ -255,7 +266,7 @@ async def query(self, request: Union[str, Dict], retry_count: int = 3) -> Dict:
         async with self.query_lock:
             return await self._query(request, retry_count)
 
-    async def _query(self, request: str, retry_count: int = 3) -> Dict:
+    async def <
F438
span class="pl-en">_query(self, request: Union[str, Dict], retry_count: int = 3) -> Dict:
         for retry in range(retry_count + 1):
             try:
                 return await self._execute_query(request, retry)
@@ -292,7 +303,7 @@ async def _query(self, request: str, retry_count: int = 3) -> Dict:
         # make mypy happy, this should never be reached..
         raise SmartDeviceException("Query reached somehow to unreachable")
 
-    async def _execute_query(self, request: str, retry_count: int) -> Dict:
+    async def _execute_query(self, request: Union[str, Dict], retry_count: int) -> Dict:
         if not self.http_client:
             self.http_client = httpx.AsyncClient()
 
@@ -305,14 +316,14 @@ async def _execute_query(self, request: str, retry_count: int) -> Dict:
                 await self.perform_login(True)
 
         if isinstance(request, dict):
-            tapo_method = next(iter(request))
-            tapo_params = request[tapo_method]
+            aes_method = next(iter(request))
+            aes_params = request[aes_method]
         else:
-            tapo_method = request
-            tapo_params = None
+            aes_method = request
+            aes_params = None
 
-        tapo_request = self.get_tapo_request(tapo_method, tapo_params)
-        response_data = await self.send_secure_passthrough(tapo_request)
+        aes_request = self.get_aes_request(aes_method, aes_params)
+        response_data = await self.send_secure_passthrough(aes_request)
 
         _LOGGER.debug(
             "%s << %s",
@@ -331,13 +342,18 @@ async def close(self) -> None:
 
 
 class AesEncyptionSession:
+    """Class for an AES encryption session."""
+
     @staticmethod
     def create_from_keypair(handshake_key: str, keypair):
-        handshake_key: bytes = base64.b64decode(handshake_key.encode("UTF-8"))
+        """Create the encryption session."""
+        handshake_key_bytes: bytes = base64.b64decode(handshake_key.encode("UTF-8"))
         private_key_data = base64.b64decode(keypair.get_private_key().encode("UTF-8"))
 
         private_key = serialization.load_der_private_key(private_key_data, None, None)
-        key_and_iv = private_key.decrypt(handshake_key, asymmetric_padding.PKCS1v15())
+        key_and_iv = private_key.decrypt(
+            handshake_key_bytes, asymmetric_padding.PKCS1v15()
+        )
         if key_and_iv is None:
             raise ValueError("Decryption failed!")
 
@@ -348,13 +364,15 @@ def __init__(self, key, iv):
         self.padding_strategy = padding.PKCS7(algorithms.AES.block_size)
 
     def encrypt(self, data) -> bytes:
+        """Encrypt the message."""
         encryptor = self.cipher.encryptor()
         padder = self.padding_strategy.padder()
         padded_data = padder.update(data) + padder.finalize()
         encrypted = encryptor.update(padded_data) + encryptor.finalize()
         return base64.b64encode(encrypted)
 
     def decrypt(self, data) -> str:
+        """Decrypt the message."""
         decryptor = self.cipher.decryptor()
         unpadder = self.padding_strategy.unpadder()
         decrypted = decryptor.update(base64.b64decode(data)) + decryptor.finalize()
@@ -363,8 +381,11 @@ def decrypt(self, data) -> str:
 
 
 class KeyPair:
+    """Class for generating key pairs."""
+
     @staticmethod
     def create_key_pair(key_size: int = 1024):
+        """Create a key pair."""
         private_key = rsa.generate_private_key(public_exponent=65537, key_size=key_size)
         public_key = private_key.public_key()
 
@@ -388,13 +409,17 @@ def __init__(self, private_key: str, public_key: str):
         self.public_key = public_key
 
     def get_private_key(self) -> str:
+        """Get the private key."""
         return self.private_key
 
     def get_public_key(self) -> str:
+        """Get the public key."""
         return self.public_key
 
 
 class SnowflakeId:
+    """Class for generating snowflake ids."""
+
     EPOCH = 1420041600000  # Custom epoch (in milliseconds)
     WORKER_ID_BITS = 5
     DATA_CENTER_ID_BITS = 5
@@ -408,11 +433,15 @@ class SnowflakeId:
     def __init__(self, worker_id, data_center_id):
         if worker_id > SnowflakeId.MAX_WORKER_ID or worker_id < 0:
             raise ValueError(
-                f"Worker ID can't be greater than {SnowflakeId.MAX_WORKER_ID} or less than 0"
+                "Worker ID can't be greater than "
+                + str(SnowflakeId.MAX_WORKER_ID)
+                + " or less than 0"
             )
         if data_center_id > SnowflakeId.MAX_DATA_CENTER_ID or data_center_id < 0:
             raise ValueError(
-                f"Data center ID can't be greater than {SnowflakeId.MAX_DATA_CENTER_ID} or less than 0"
+                "Data center ID can't be greater than "
+                + str(SnowflakeId.MAX_DATA_CENTER_ID)
+                + " or less than 0"
             )
 
         self.worker_id = worker_id
@@ -421,6 +450,7 @@ def __init__(self, worker_id, data_center_id):
         self.last_timestamp = -1
 
     def generate_id(self):
+        """Generate a snowflake id."""
         timestamp = self._current_millis()
 
         if timestamp < self.last_timestamp:
 
@@ -13,7 +13,7 @@
 from .smartlightstrip import SmartLightStrip
 from .smartplug import SmartPlug
 from .smartstrip import SmartStrip
-from .tapoplug import TapoPlug
+from .tapo.tapoplug import TapoPlug
 
 DEVICE_TYPE_TO_CLASS = {
     DeviceType.Plug: SmartPlug,
 
@@ -15,6 +15,7 @@
 except ImportError:
     from pydantic import BaseModel, Field
 
+from kasa.aesprotocol import TPLinkAes
 from kasa.credentials import Credentials
 from kasa.exceptions import UnsupportedDeviceException
 from kasa.json import dumps as json_dumps
@@ -23,8 +24,7 @@
 from kasa.protocol import TPLinkSmartHomeProtocol
 from kasa.smartdevice import SmartDevice, SmartDeviceException
 from kasa.smartplug import SmartPlug
-from kasa.tapoplug import TapoPlug
-from kasa.tapoprotocol import TapoAESProtocol
+from kasa.tapo.tapoplug import TapoPlug
 
 from .device_factory import get_device_class_from_info
 
@@ -383,7 +383,7 @@ def _get_device_instance(
         if discovery_result.mgt_encrypt_schm.encrypt_type in ("KLAP", "AES"):
             type_ = discovery_result.device_type
             device_class = None
-            supported_device_types = {
+            supported_device_types: dict[str, Type[SmartDevice]] = {
                 "SMART.TAPOPLUG": TapoPlug,
                 "SMART.KASAPLUG": TapoPlug,
                 "IOT.SMARTPLUGSWITCH": SmartPlug,
@@ -399,7 +399,7 @@ def _get_device_instance(
                 if discovery_result.mgt_encrypt_schm.encrypt_type == "KLAP":
                     device.protocol = TPLinkKlap(ip, credentials=credentials)
                 else:
-                    device.protocol = TapoAESProtocol(
+                    device.protocol = TPLinkAes(
                         ip,
                         credentials=credentials,
                         login_version=discovery_result.mgt_encrypt_schm.lv,