You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
155 lines
4.3 KiB
155 lines
4.3 KiB
3 years ago
|
from trezor import wire
|
||
|
from trezor.crypto import rlp
|
||
|
from trezor.crypto.curve import secp256k1
|
||
|
from trezor.crypto.hashlib import sha3_256
|
||
|
from trezor.messages import EthereumAccessList, EthereumSignTxEIP1559, EthereumTxRequest
|
||
|
from trezor.utils import HashWriter
|
||
|
|
||
|
from apps.common import paths
|
||
|
|
||
|
from . import address
|
||
|
from .keychain import with_keychain_from_chain_id
|
||
|
from .layout import (
|
||
|
require_confirm_data,
|
||
|
require_confirm_eip1559_fee,
|
||
|
require_confirm_tx,
|
||
|
)
|
||
|
from .sign_tx import check_data, check_to, handle_erc20, sanitize, send_request_chunk
|
||
|
|
||
|
TX_TYPE = 2
|
||
|
|
||
|
|
||
|
def access_list_item_length(item: EthereumAccessList) -> int:
|
||
|
address_length = rlp.length(address.bytes_from_address(item.address))
|
||
|
keys_length = rlp.length(item.storage_keys)
|
||
|
return (
|
||
|
rlp.header_length(address_length + keys_length) + address_length + keys_length
|
||
|
)
|
||
|
|
||
|
|
||
|
def access_list_length(access_list: list[EthereumAccessList]) -> int:
|
||
|
payload_length = sum(access_list_item_length(i) for i in access_list)
|
||
|
return rlp.header_length(payload_length) + payload_length
|
||
|
|
||
|
|
||
|
def write_access_list(w: HashWriter, access_list: list[EthereumAccessList]) -> None:
|
||
|
payload_length = sum(access_list_item_length(i) for i in access_list)
|
||
|
rlp.write_header(w, payload_length, rlp.LIST_HEADER_BYTE)
|
||
|
for item in access_list:
|
||
|
address_bytes = address.bytes_from_address(item.address)
|
||
|
address_length = rlp.length(address_bytes)
|
||
|
keys_length = rlp.length(item.storage_keys)
|
||
|
rlp.write_header(w, address_length + keys_length, rlp.LIST_HEADER_BYTE)
|
||
|
rlp.write(w, address_bytes)
|
||
|
rlp.write(w, item.storage_keys)
|
||
|
|
||
|
|
||
|
@with_keychain_from_chain_id
|
||
|
async def sign_tx_eip1559(ctx, msg, keychain):
|
||
|
msg = sanitize(msg)
|
||
|
|
||
|
check(msg)
|
||
|
|
||
|
await paths.validate_path(ctx, keychain, msg.address_n)
|
||
|
|
||
|
# Handle ERC20s
|
||
|
token, address_bytes, recipient, value = await handle_erc20(ctx, msg)
|
||
|
|
||
|
data_total = msg.data_length
|
||
|
|
||
|
await require_confirm_tx(ctx, recipient, value, msg.chain_id, token)
|
||
|
if token is None and msg.data_length > 0:
|
||
|
await require_confirm_data(ctx, msg.data_initial_chunk, data_total)
|
||
|
|
||
|
await require_confirm_eip1559_fee(
|
||
|
ctx,
|
||
|
int.from_bytes(msg.max_priority_fee, "big"),
|
||
|
int.from_bytes(msg.max_gas_fee, "big"),
|
||
|
int.from_bytes(msg.gas_limit, "big"),
|
||
|
msg.chain_id,
|
||
|
)
|
||
|
|
||
|
data = bytearray()
|
||
|
data += msg.data_initial_chunk
|
||
|
data_left = data_total - len(msg.data_initial_chunk)
|
||
|
|
||
|
total_length = get_total_length(msg, data_total)
|
||
|
|
||
|
sha = HashWriter(sha3_256(keccak=True))
|
||
|
|
||
|
rlp.write(sha, TX_TYPE)
|
||
|
|
||
|
rlp.write_header(sha, total_length, rlp.LIST_HEADER_BYTE)
|
||
|
|
||
|
for field in (
|
||
|
msg.chain_id,
|
||
|
msg.nonce,
|
||
|
msg.max_priority_fee,
|
||
|
msg.max_gas_fee,
|
||
|
msg.gas_limit,
|
||
|
address_bytes,
|
||
|
msg.value,
|
||
|
):
|
||
|
rlp.write(sha, field)
|
||
|
|
||
|
if data_left == 0:
|
||
|
rlp.write(sha, data)
|
||
|
else:
|
||
|
rlp.write_header(sha, data_total, rlp.STRING_HEADER_BYTE, data)
|
||
|
sha.extend(data)
|
||
|
|
||
|
while data_left > 0:
|
||
|
resp = await send_request_chunk(ctx, data_left)
|
||
|
data_left -= len(resp.data_chunk)
|
||
|
sha.extend(resp.data_chunk)
|
||
|
|
||
|
write_access_list(sha, msg.access_list)
|
||
|
|
||
|
digest = sha.get_digest()
|
||
|
result = sign_digest(msg, keychain, digest)
|
||
|
|
||
|
return result
|
||
|
|
||
|
|
||
|
def get_total_length(msg: EthereumSignTxEIP1559, data_total: int) -> int:
|
||
|
length = 0
|
||
|
|
||
|
for item in (
|
||
|
msg.nonce,
|
||
|
msg.gas_limit,
|
||
|
address.bytes_from_address(msg.to),
|
||
|
msg.value,
|
||
|
msg.chain_id,
|
||
|
msg.max_gas_fee,
|
||
|
msg.max_priority_fee,
|
||
|
):
|
||
|
length += rlp.length(item)
|
||
|
|
||
|
length += rlp.header_length(data_total, msg.data_initial_chunk)
|
||
|
length += data_total
|
||
|
|
||
|
length += access_list_length(msg.access_list)
|
||
|
|
||
|
return length
|
||
|
|
||
|
|
||
|
def sign_digest(msg: EthereumSignTxEIP1559, keychain, digest):
|
||
|
node = keychain.derive(msg.address_n)
|
||
|
signature = secp256k1.sign(
|
||
|
node.private_key(), digest, False, secp256k1.CANONICAL_SIG_ETHEREUM
|
||
|
)
|
||
|
|
||
|
req = EthereumTxRequest()
|
||
|
req.signature_v = signature[0] - 27
|
||
|
req.signature_r = signature[1:33]
|
||
|
req.signature_s = signature[33:]
|
||
|
|
||
|
return req
|
||
|
|
||
|
|
||
|
def check(msg: EthereumSignTxEIP1559):
|
||
|
check_data(msg)
|
||
|
|
||
|
if not check_to(msg):
|
||
|
raise wire.DataError("Safety check failed")
|