2018-06-21 14:28:34 +00:00
|
|
|
# This file is part of the Trezor project.
|
2017-01-03 18:40:05 +00:00
|
|
|
#
|
2019-05-29 16:44:09 +00:00
|
|
|
# Copyright (C) 2012-2019 SatoshiLabs and contributors
|
2017-01-03 18:40:05 +00:00
|
|
|
#
|
|
|
|
# This library is free software: you can redistribute it and/or modify
|
2018-06-21 14:28:34 +00:00
|
|
|
# it under the terms of the GNU Lesser General Public License version 3
|
|
|
|
# as published by the Free Software Foundation.
|
2017-01-03 18:40:05 +00:00
|
|
|
#
|
|
|
|
# This library is distributed in the hope that it will be useful,
|
|
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
# GNU Lesser General Public License for more details.
|
|
|
|
#
|
2018-06-21 14:28:34 +00:00
|
|
|
# You should have received a copy of the License along with this library.
|
|
|
|
# If not, see <https://www.gnu.org/licenses/lgpl-3.0.html>.
|
2017-01-03 18:40:05 +00:00
|
|
|
|
2018-05-22 17:13:59 +00:00
|
|
|
import pytest
|
2017-01-02 16:17:16 +00:00
|
|
|
|
2018-08-13 16:21:24 +00:00
|
|
|
from trezorlib import btc, messages as proto
|
2020-03-24 13:18:08 +00:00
|
|
|
from trezorlib.exceptions import TrezorFailure
|
|
|
|
from trezorlib.tools import H_, parse_path
|
2018-08-13 16:21:24 +00:00
|
|
|
|
2020-03-03 16:29:02 +00:00
|
|
|
from ..tx_cache import TxCache
|
2020-03-26 14:58:44 +00:00
|
|
|
from .signtx import request_finished, request_input, request_output
|
2017-01-02 16:17:16 +00:00
|
|
|
|
2020-03-26 14:58:44 +00:00
|
|
|
B = proto.ButtonRequestType
|
2020-03-03 16:29:02 +00:00
|
|
|
TX_API = TxCache("Testnet")
|
2018-04-10 09:42:21 +00:00
|
|
|
|
2020-03-26 14:58:44 +00:00
|
|
|
TXHASH_20912f = bytes.fromhex(
|
|
|
|
"20912f98ea3ed849042efed0fdac8cb4fc301961c5988cba56902d8ffb61c337"
|
|
|
|
)
|
|
|
|
TXHASH_9c3192 = bytes.fromhex(
|
|
|
|
"9c31922be756c06d02167656465c8dc83bb553bf386a3f478ae65b5c021002be"
|
|
|
|
)
|
2020-03-20 10:24:04 +00:00
|
|
|
TXHASH_e5040e = bytes.fromhex(
|
|
|
|
"e5040e1bc1ae7667ffb9e5248e90b2fb93cd9150234151ce90e14ab2f5933bcd"
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
def request_input(n, tx_hash=None):
|
|
|
|
return proto.TxRequest(
|
|
|
|
request_type=proto.RequestType.TXINPUT,
|
|
|
|
details=proto.TxRequestDetailsType(request_index=n, tx_hash=tx_hash),
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
def request_output(n, tx_hash=None):
|
|
|
|
return proto.TxRequest(
|
|
|
|
request_type=proto.RequestType.TXOUTPUT,
|
|
|
|
details=proto.TxRequestDetailsType(request_index=n, tx_hash=tx_hash),
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
def request_meta(tx_hash):
|
|
|
|
return proto.TxRequest(
|
|
|
|
request_type=proto.RequestType.TXMETA,
|
|
|
|
details=proto.TxRequestDetailsType(tx_hash=tx_hash),
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
def request_finished():
|
|
|
|
return proto.TxRequest(request_type=proto.RequestType.TXFINISHED)
|
2020-03-26 14:58:44 +00:00
|
|
|
|
2017-06-23 19:31:42 +00:00
|
|
|
|
2019-09-11 12:29:39 +00:00
|
|
|
class TestMsgSigntxSegwit:
|
2019-08-27 14:58:59 +00:00
|
|
|
def test_send_p2sh(self, client):
|
2017-12-12 15:40:11 +00:00
|
|
|
inp1 = proto.TxInputType(
|
2018-04-18 13:53:40 +00:00
|
|
|
address_n=parse_path("49'/1'/0'/1/0"),
|
2017-06-23 19:31:42 +00:00
|
|
|
# 2N1LGaGg836mqSQqiuUBLfcyGBhyZbremDX
|
|
|
|
amount=123456789,
|
2020-03-26 14:58:44 +00:00
|
|
|
prev_hash=TXHASH_20912f,
|
2017-06-23 19:31:42 +00:00
|
|
|
prev_index=0,
|
2017-12-12 15:40:11 +00:00
|
|
|
script_type=proto.InputScriptType.SPENDP2SHWITNESS,
|
2017-06-23 19:31:42 +00:00
|
|
|
)
|
2017-12-12 15:40:11 +00:00
|
|
|
out1 = proto.TxOutputType(
|
2018-08-13 16:21:24 +00:00
|
|
|
address="mhRx1CeVfaayqRwq5zgRQmD7W5aWBfD5mC",
|
2017-06-23 19:31:42 +00:00
|
|
|
amount=12300000,
|
2017-12-12 15:40:11 +00:00
|
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS,
|
2017-06-23 19:31:42 +00:00
|
|
|
)
|
2017-12-12 15:40:11 +00:00
|
|
|
out2 = proto.TxOutputType(
|
2018-08-13 16:21:24 +00:00
|
|
|
address="2N1LGaGg836mqSQqiuUBLfcyGBhyZbremDX",
|
2017-12-12 15:40:11 +00:00
|
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS,
|
2017-06-23 19:31:42 +00:00
|
|
|
amount=123456789 - 11000 - 12300000,
|
|
|
|
)
|
2019-08-27 14:58:59 +00:00
|
|
|
with client:
|
|
|
|
client.set_expected_responses(
|
2018-08-13 16:21:24 +00:00
|
|
|
[
|
2020-03-26 14:58:44 +00:00
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
proto.ButtonRequest(code=B.ConfirmOutput),
|
|
|
|
request_output(1),
|
|
|
|
proto.ButtonRequest(code=B.ConfirmOutput),
|
|
|
|
proto.ButtonRequest(code=B.SignTx),
|
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
request_output(1),
|
|
|
|
request_input(0),
|
|
|
|
request_finished(),
|
2018-08-13 16:21:24 +00:00
|
|
|
]
|
|
|
|
)
|
2018-11-02 15:25:51 +00:00
|
|
|
_, serialized_tx = btc.sign_tx(
|
2019-08-27 14:58:59 +00:00
|
|
|
client, "Testnet", [inp1], [out1, out2], prev_txes=TX_API
|
2018-08-13 16:21:24 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
assert (
|
2018-09-12 18:34:26 +00:00
|
|
|
serialized_tx.hex()
|
|
|
|
== "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"
|
2018-08-13 16:21:24 +00:00
|
|
|
)
|
2017-01-02 16:17:16 +00:00
|
|
|
|
2019-08-27 14:58:59 +00:00
|
|
|
def test_send_p2sh_change(self, client):
|
2017-12-12 15:40:11 +00:00
|
|
|
inp1 = proto.TxInputType(
|
2018-04-18 13:53:40 +00:00
|
|
|
address_n=parse_path("49'/1'/0'/1/0"),
|
2017-06-23 19:31:42 +00:00
|
|
|
# 2N1LGaGg836mqSQqiuUBLfcyGBhyZbremDX
|
|
|
|
amount=123456789,
|
2020-03-26 14:58:44 +00:00
|
|
|
prev_hash=TXHASH_20912f,
|
2017-06-23 19:31:42 +00:00
|
|
|
prev_index=0,
|
2017-12-12 15:40:11 +00:00
|
|
|
script_type=proto.InputScriptType.SPENDP2SHWITNESS,
|
2017-06-23 19:31:42 +00:00
|
|
|
)
|
2017-12-12 15:40:11 +00:00
|
|
|
out1 = proto.TxOutputType(
|
2018-08-13 16:21:24 +00:00
|
|
|
address="mhRx1CeVfaayqRwq5zgRQmD7W5aWBfD5mC",
|
2017-06-23 19:31:42 +00:00
|
|
|
amount=12300000,
|
2017-12-12 15:40:11 +00:00
|
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS,
|
2017-06-23 19:31:42 +00:00
|
|
|
)
|
2017-12-12 15:40:11 +00:00
|
|
|
out2 = proto.TxOutputType(
|
2018-04-18 13:53:40 +00:00
|
|
|
address_n=parse_path("49'/1'/0'/1/0"),
|
2017-12-12 15:40:11 +00:00
|
|
|
script_type=proto.OutputScriptType.PAYTOP2SHWITNESS,
|
2017-06-23 19:31:42 +00:00
|
|
|
amount=123456789 - 11000 - 12300000,
|
|
|
|
)
|
2019-08-27 14:58:59 +00:00
|
|
|
with client:
|
|
|
|
client.set_expected_responses(
|
2018-08-13 16:21:24 +00:00
|
|
|
[
|
2020-03-26 14:58:44 +00:00
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
proto.ButtonRequest(code=B.ConfirmOutput),
|
|
|
|
request_output(1),
|
|
|
|
proto.ButtonRequest(code=B.SignTx),
|
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
request_output(1),
|
|
|
|
request_input(0),
|
|
|
|
request_finished(),
|
2018-08-13 16:21:24 +00:00
|
|
|
]
|
|
|
|
)
|
2018-11-02 15:25:51 +00:00
|
|
|
_, serialized_tx = btc.sign_tx(
|
2019-08-27 14:58:59 +00:00
|
|
|
client, "Testnet", [inp1], [out1, out2], prev_txes=TX_API
|
2018-08-13 16:21:24 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
assert (
|
2018-09-12 18:34:26 +00:00
|
|
|
serialized_tx.hex()
|
|
|
|
== "0100000000010137c361fb8f2d9056ba8c98c5611930fcb48cacfdd0fe2e0449d83eea982f91200000000017160014d16b8c0680c61fc6ed2e407455715055e41052f5ffffffff02e0aebb00000000001976a91414fdede0ddc3be652a0ce1afbc1b509a55b6b94888ac3df39f060000000017a91458b53ea7f832e8f096e896b8713a8c6df0e892ca8702483045022100ccd253bfdf8a5593cd7b6701370c531199f0f05a418cd547dfc7da3f21515f0f02203fa08a0753688871c220648f9edadbdb98af42e5d8269364a326572cf703895b012103e7bfe10708f715e8538c92d46ca50db6f657bbc455b7494e6a0303ccdb868b7900000000"
|
2018-08-13 16:21:24 +00:00
|
|
|
)
|
2017-01-03 14:56:22 +00:00
|
|
|
|
2019-08-27 14:58:59 +00:00
|
|
|
def test_testnet_segwit_big_amount(self, client):
|
2018-11-12 15:27:56 +00:00
|
|
|
# This test is testing transaction with amount bigger than fits to uint32
|
|
|
|
|
|
|
|
inp1 = proto.TxInputType(
|
|
|
|
address_n=parse_path("m/49'/1'/0'/0/0"),
|
|
|
|
amount=2 ** 32 + 1,
|
|
|
|
prev_hash=b"\xff" * 32,
|
|
|
|
prev_index=0,
|
|
|
|
script_type=proto.InputScriptType.SPENDP2SHWITNESS,
|
|
|
|
)
|
|
|
|
out1 = proto.TxOutputType(
|
|
|
|
address="2Mt7P2BAfE922zmfXrdcYTLyR7GUvbwSEns", # seed allallall, bip32: m/49'/1'/0'/0/1, script type:p2shsegwit
|
|
|
|
amount=2 ** 32 + 1,
|
|
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS,
|
|
|
|
)
|
2019-08-27 14:58:59 +00:00
|
|
|
with client:
|
|
|
|
client.set_expected_responses(
|
2018-11-12 15:27:56 +00:00
|
|
|
[
|
2020-03-26 14:58:44 +00:00
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
proto.ButtonRequest(code=B.ConfirmOutput),
|
|
|
|
proto.ButtonRequest(code=B.SignTx),
|
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
request_input(0),
|
|
|
|
request_finished(),
|
2018-11-12 15:27:56 +00:00
|
|
|
]
|
|
|
|
)
|
2019-08-27 14:58:59 +00:00
|
|
|
_, serialized_tx = btc.sign_tx(client, "Testnet", [inp1], [out1])
|
2018-11-12 15:27:56 +00:00
|
|
|
assert (
|
|
|
|
serialized_tx.hex()
|
|
|
|
== "01000000000101ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff00000000171600140099a7ecbd938ed1839f5f6bf6d50933c6db9d5cffffffff01010000000100000017a914097c569095163e84475d07aa95a1f736df895b7b8702483045022100cb9d3aa7a8064702e6b61c20c7fb9cb672c69d3786cf5efef8ad6d90136ca7d8022065119ff6c6e6e6960e6508fc5360359bb269bb25ef8d90019decaa0a050cc45a0121033add1f0e8e3c3136f7428dd4a4de1057380bd311f5b0856e2269170b4ffa65bf00000000"
|
|
|
|
)
|
|
|
|
|
2019-10-22 14:32:00 +00:00
|
|
|
@pytest.mark.multisig
|
2019-08-27 14:58:59 +00:00
|
|
|
def test_send_multisig_1(self, client):
|
2019-08-06 13:08:48 +00:00
|
|
|
nodes = [
|
2020-05-13 09:36:03 +00:00
|
|
|
btc.get_public_node(
|
|
|
|
client, parse_path(f"49'/1'/{i}'"), coin_name="Testnet"
|
|
|
|
).node
|
2019-08-06 13:08:48 +00:00
|
|
|
for i in range(1, 4)
|
|
|
|
]
|
|
|
|
|
2017-12-12 15:40:11 +00:00
|
|
|
multisig = proto.MultisigRedeemScriptType(
|
2019-08-06 13:08:48 +00:00
|
|
|
nodes=nodes, address_n=[1, 0], signatures=[b"", b"", b""], m=2
|
2017-01-07 16:36:59 +00:00
|
|
|
)
|
|
|
|
|
2017-12-12 15:40:11 +00:00
|
|
|
inp1 = proto.TxInputType(
|
2018-11-06 12:29:37 +00:00
|
|
|
address_n=parse_path("49'/1'/1'/1/0"),
|
2020-03-26 14:58:44 +00:00
|
|
|
prev_hash=TXHASH_9c3192,
|
2017-06-23 19:31:42 +00:00
|
|
|
prev_index=1,
|
2017-12-12 15:40:11 +00:00
|
|
|
script_type=proto.InputScriptType.SPENDP2SHWITNESS,
|
2017-06-23 19:31:42 +00:00
|
|
|
multisig=multisig,
|
2018-08-13 16:21:24 +00:00
|
|
|
amount=1610436,
|
2017-01-07 16:36:59 +00:00
|
|
|
)
|
|
|
|
|
2018-08-13 16:21:24 +00:00
|
|
|
out1 = proto.TxOutputType(
|
|
|
|
address="mhRx1CeVfaayqRwq5zgRQmD7W5aWBfD5mC",
|
|
|
|
amount=1605000,
|
|
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS,
|
|
|
|
)
|
2017-01-07 16:36:59 +00:00
|
|
|
|
2019-08-27 14:58:59 +00:00
|
|
|
with client:
|
|
|
|
client.set_expected_responses(
|
2018-08-13 16:21:24 +00:00
|
|
|
[
|
2020-03-26 14:58:44 +00:00
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
proto.ButtonRequest(code=B.ConfirmOutput),
|
|
|
|
proto.ButtonRequest(code=B.SignTx),
|
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
request_input(0),
|
|
|
|
request_finished(),
|
2018-08-13 16:21:24 +00:00
|
|
|
]
|
|
|
|
)
|
2018-11-02 15:25:51 +00:00
|
|
|
signatures, _ = btc.sign_tx(
|
2019-08-27 14:58:59 +00:00
|
|
|
client, "Testnet", [inp1], [out1], prev_txes=TX_API
|
2018-11-02 15:25:51 +00:00
|
|
|
)
|
2017-01-07 16:36:59 +00:00
|
|
|
# store signature
|
2018-11-02 15:25:51 +00:00
|
|
|
inp1.multisig.signatures[0] = signatures[0]
|
2017-01-07 16:36:59 +00:00
|
|
|
# sign with third key
|
2018-08-10 12:37:49 +00:00
|
|
|
inp1.address_n[2] = H_(3)
|
2019-08-27 14:58:59 +00:00
|
|
|
client.set_expected_responses(
|
2018-08-13 16:21:24 +00:00
|
|
|
[
|
2020-03-26 14:58:44 +00:00
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
proto.ButtonRequest(code=B.ConfirmOutput),
|
|
|
|
proto.ButtonRequest(code=B.SignTx),
|
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
request_input(0),
|
|
|
|
request_finished(),
|
2018-08-13 16:21:24 +00:00
|
|
|
]
|
|
|
|
)
|
2018-11-02 15:25:51 +00:00
|
|
|
_, serialized_tx = btc.sign_tx(
|
2019-08-27 14:58:59 +00:00
|
|
|
client, "Testnet", [inp1], [out1], prev_txes=TX_API
|
2018-08-13 16:21:24 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
assert (
|
2018-09-12 18:34:26 +00:00
|
|
|
serialized_tx.hex()
|
2018-11-06 12:29:37 +00:00
|
|
|
== "01000000000101be0210025c5be68a473f6a38bf53b53bc88d5c46567616026dc056e72b92319c0100000023220020cf28684ff8a6dda1a7a9704dde113ddfcf236558da5ce35ad3f8477474dbdaf7ffffffff01887d1800000000001976a91414fdede0ddc3be652a0ce1afbc1b509a55b6b94888ac040047304402203fc3fbe6cd6250d82ace4a585debc07587c07d2efc8bb56558c91e1f810fe65402206025bd9a4e80960f617b6e5bfdd568e34aa085d093471b7976e6b14c2a2402a7014730440220327abf491a57964d75c67fad204eb782fa74aa4abde40e5ad30fb0b7696102b7022049e31f2302417be0a87e2f818b93a862a7e67d4178b7cbeee680264f0882113f0169522103d54ab3c8b81cb7f8f8088df4c62c105e8acaa2fb53b180f6bc6f922faecf3fdc21036aa47994f3f18f0976d6073ca79997003c3fa29c4f93907998fefc1151b4529b2102a092580f2828272517c402da9461425c5032860ab40180e041fbbb88ea2a520453ae00000000"
|
2018-08-13 16:21:24 +00:00
|
|
|
)
|
2017-03-30 18:02:05 +00:00
|
|
|
|
2019-08-27 14:58:59 +00:00
|
|
|
def test_attack_change_input_address(self, client):
|
2017-12-12 15:40:11 +00:00
|
|
|
inp1 = proto.TxInputType(
|
2018-04-18 13:53:40 +00:00
|
|
|
address_n=parse_path("49'/1'/0'/1/0"),
|
2017-07-27 19:50:12 +00:00
|
|
|
# 2N1LGaGg836mqSQqiuUBLfcyGBhyZbremDX
|
|
|
|
amount=123456789,
|
2020-03-26 14:58:44 +00:00
|
|
|
prev_hash=TXHASH_20912f,
|
2017-07-27 19:50:12 +00:00
|
|
|
prev_index=0,
|
2017-12-12 15:40:11 +00:00
|
|
|
script_type=proto.InputScriptType.SPENDP2SHWITNESS,
|
2017-07-27 19:50:12 +00:00
|
|
|
)
|
2017-12-12 15:40:11 +00:00
|
|
|
out1 = proto.TxOutputType(
|
2018-08-13 16:21:24 +00:00
|
|
|
address="mhRx1CeVfaayqRwq5zgRQmD7W5aWBfD5mC",
|
2017-07-27 19:50:12 +00:00
|
|
|
amount=12300000,
|
2017-12-12 15:40:11 +00:00
|
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS,
|
2017-07-27 19:50:12 +00:00
|
|
|
)
|
2017-12-12 15:40:11 +00:00
|
|
|
out2 = proto.TxOutputType(
|
2018-11-06 12:29:37 +00:00
|
|
|
address_n=parse_path("49'/1'/12'/1/0"),
|
2017-12-12 15:40:11 +00:00
|
|
|
script_type=proto.OutputScriptType.PAYTOP2SHWITNESS,
|
2017-07-27 19:50:12 +00:00
|
|
|
amount=123456789 - 11000 - 12300000,
|
|
|
|
)
|
|
|
|
|
|
|
|
# Test if the transaction can be signed normally
|
2019-08-27 14:58:59 +00:00
|
|
|
with client:
|
|
|
|
client.set_expected_responses(
|
2018-08-13 16:21:24 +00:00
|
|
|
[
|
2020-03-26 14:58:44 +00:00
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
proto.ButtonRequest(code=B.ConfirmOutput),
|
|
|
|
request_output(1),
|
|
|
|
proto.ButtonRequest(code=B.ConfirmOutput),
|
|
|
|
proto.ButtonRequest(code=B.SignTx),
|
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
request_output(1),
|
|
|
|
request_input(0),
|
|
|
|
request_finished(),
|
2018-08-13 16:21:24 +00:00
|
|
|
]
|
|
|
|
)
|
2018-11-02 15:25:51 +00:00
|
|
|
_, serialized_tx = btc.sign_tx(
|
2019-08-27 14:58:59 +00:00
|
|
|
client, "Testnet", [inp1], [out1, out2], prev_txes=TX_API
|
2018-08-13 16:21:24 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
assert (
|
2018-09-12 18:34:26 +00:00
|
|
|
serialized_tx.hex()
|
2018-11-06 12:29:37 +00:00
|
|
|
== "0100000000010137c361fb8f2d9056ba8c98c5611930fcb48cacfdd0fe2e0449d83eea982f91200000000017160014d16b8c0680c61fc6ed2e407455715055e41052f5ffffffff02e0aebb00000000001976a91414fdede0ddc3be652a0ce1afbc1b509a55b6b94888ac3df39f060000000017a9142f98413cb83ff8b3eaf1926192e68973cbd68a3a8702473044022013cbce7c575337ca05dbe03b5920a0805b510cd8dfd3180bd7c5d01cec6439cd0220050001be4bcefb585caf973caae0ffec682347f2127cc22f26efd93ee54fd852012103e7bfe10708f715e8538c92d46ca50db6f657bbc455b7494e6a0303ccdb868b7900000000"
|
2018-08-13 16:21:24 +00:00
|
|
|
)
|
2017-07-27 19:50:12 +00:00
|
|
|
|
2018-11-02 15:25:51 +00:00
|
|
|
run_attack = True
|
|
|
|
|
|
|
|
def attack_processor(msg):
|
|
|
|
nonlocal run_attack
|
|
|
|
|
|
|
|
if run_attack and msg.tx.inputs and msg.tx.inputs[0] == inp1:
|
|
|
|
run_attack = False
|
2018-11-06 12:29:37 +00:00
|
|
|
msg.tx.inputs[0].address_n[2] = H_(12)
|
2018-11-02 15:25:51 +00:00
|
|
|
|
|
|
|
return msg
|
|
|
|
|
2017-07-27 19:50:12 +00:00
|
|
|
# Now run the attack, must trigger the exception
|
2019-08-27 14:58:59 +00:00
|
|
|
client.set_filter(proto.TxAck, attack_processor)
|
|
|
|
with client:
|
|
|
|
client.set_expected_responses(
|
2018-08-13 16:21:24 +00:00
|
|
|
[
|
2020-03-26 14:58:44 +00:00
|
|
|
request_input(0),
|
|
|
|
request_output(0),
|
|
|
|
proto.ButtonRequest(code=B.ConfirmOutput),
|
|
|
|
request_output(1),
|
|
|
|
proto.ButtonRequest(code=B.SignTx),
|
|
|
|
request_input(0),
|
2018-08-13 16:21:24 +00:00
|
|
|
proto.Failure(code=proto.FailureType.ProcessError),
|
|
|
|
]
|
|
|
|
)
|
2020-03-24 13:18:08 +00:00
|
|
|
with pytest.raises(TrezorFailure) as exc:
|
2019-08-27 14:58:59 +00:00
|
|
|
btc.sign_tx(client, "Testnet", [inp1], [out1, out2], prev_txes=TX_API)
|
2020-03-26 14:58:44 +00:00
|
|
|
assert exc.value.code == proto.FailureType.ProcessError
|
2019-09-11 12:36:26 +00:00
|
|
|
if client.features.model == "1":
|
2020-03-26 14:58:44 +00:00
|
|
|
assert exc.value.message.endswith("Failed to compile input")
|
2018-02-27 14:08:00 +00:00
|
|
|
else:
|
2020-03-26 14:58:44 +00:00
|
|
|
assert exc.value.message.endswith(
|
2018-08-13 16:21:24 +00:00
|
|
|
"Transaction has changed during signing"
|
|
|
|
)
|
2020-03-20 10:24:04 +00:00
|
|
|
|
|
|
|
def test_attack_mixed_inputs(self, client):
|
|
|
|
TRUE_AMOUNT = 12345678
|
|
|
|
FAKE_AMOUNT = 123
|
|
|
|
|
|
|
|
inp1 = proto.TxInputType(
|
|
|
|
address_n=parse_path("44'/1'/0'/0/0"),
|
|
|
|
amount=31000000,
|
|
|
|
prev_hash=TXHASH_e5040e,
|
|
|
|
prev_index=0,
|
|
|
|
script_type=proto.InputScriptType.SPENDADDRESS,
|
|
|
|
sequence=0xFFFFFFFD,
|
|
|
|
)
|
|
|
|
inp2 = proto.TxInputType(
|
|
|
|
address_n=parse_path("49'/1'/0'/1/0"),
|
|
|
|
amount=TRUE_AMOUNT,
|
|
|
|
prev_hash=TXHASH_20912f,
|
|
|
|
prev_index=0,
|
|
|
|
script_type=proto.InputScriptType.SPENDP2SHWITNESS,
|
|
|
|
sequence=0xFFFFFFFD,
|
|
|
|
)
|
|
|
|
out1 = proto.TxOutputType(
|
|
|
|
address="mhRx1CeVfaayqRwq5zgRQmD7W5aWBfD5mC",
|
|
|
|
amount=30998000,
|
|
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS,
|
|
|
|
)
|
|
|
|
|
|
|
|
expected_responses = [
|
|
|
|
request_input(0),
|
|
|
|
request_meta(TXHASH_e5040e),
|
|
|
|
request_input(0, TXHASH_e5040e),
|
|
|
|
request_output(0, TXHASH_e5040e),
|
|
|
|
request_output(1, TXHASH_e5040e),
|
|
|
|
request_input(1),
|
|
|
|
request_output(0),
|
|
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.ConfirmOutput),
|
|
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.FeeOverThreshold),
|
|
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.SignTx),
|
|
|
|
request_input(0),
|
|
|
|
request_input(1),
|
|
|
|
request_output(0),
|
|
|
|
request_input(1),
|
|
|
|
request_output(0),
|
|
|
|
request_input(1),
|
|
|
|
]
|
|
|
|
|
|
|
|
if client.features.model == "1":
|
|
|
|
# T1 asks for first input for witness again
|
|
|
|
expected_responses.insert(-1, request_input(0))
|
|
|
|
pass
|
|
|
|
|
|
|
|
with client:
|
|
|
|
# Sign unmodified transaction.
|
|
|
|
# "Fee over threshold" warning is displayed - fee is the whole TRUE_AMOUNT
|
|
|
|
client.set_expected_responses(expected_responses + [request_finished()])
|
|
|
|
btc.sign_tx(
|
|
|
|
client, "Testnet", [inp1, inp2], [out1], prev_txes=TX_API,
|
|
|
|
)
|
|
|
|
|
|
|
|
# In Phase 1 make the user confirm a lower value of the segwit input.
|
|
|
|
inp2.amount = FAKE_AMOUNT
|
|
|
|
|
|
|
|
ctr = 3
|
|
|
|
|
|
|
|
def attack(msg):
|
|
|
|
nonlocal ctr
|
|
|
|
|
|
|
|
if msg.tx.inputs and msg.tx.inputs[0] == inp2:
|
|
|
|
ctr -= 1
|
|
|
|
if ctr <= 0:
|
|
|
|
# after Phase 1 is done and input 1 is signed, let Trezor sign
|
|
|
|
# the true amount in Phase 2
|
|
|
|
msg.tx.inputs[0].amount = TRUE_AMOUNT
|
|
|
|
|
|
|
|
return msg
|
|
|
|
|
|
|
|
# Sign with attacker.
|
|
|
|
with pytest.raises(TrezorFailure) as e, client:
|
|
|
|
# "Fee over threshold" is NOT displayed, because the calculated fee
|
|
|
|
# in phase 1 is small.
|
|
|
|
assert expected_responses[8] == proto.ButtonRequest(
|
|
|
|
code=proto.ButtonRequestType.FeeOverThreshold
|
|
|
|
)
|
|
|
|
del expected_responses[8]
|
|
|
|
|
|
|
|
client.set_filter(proto.TxAck, attack)
|
|
|
|
client.set_expected_responses(expected_responses + [proto.Failure()])
|
|
|
|
btc.sign_tx(
|
|
|
|
client, "Testnet", [inp1, inp2], [out1], prev_txes=TX_API,
|
|
|
|
)
|
|
|
|
|
|
|
|
assert e.value.failure.message.endswith(
|
|
|
|
"Transaction has changed during signing"
|
|
|
|
)
|