trezor-firmware/core/src/apps/ethereum/keychain.py

from typing import TYPE_CHECKING

from apps.common import paths
from apps.common.keychain import get_keychain

from . import CURVE, networks

if TYPE_CHECKING:
    from typing import Callable, Iterable, TypeVar

    from trezor.wire import Context

    from trezor.messages import (
        EthereumGetAddress,
        EthereumGetPublicKey,
        EthereumSignMessage,
        EthereumSignTx,
        EthereumSignTxEIP1559,
        EthereumSignTypedData,
    )

    from apps.common.keychain import MsgOut, Handler, HandlerWithKeychain

    EthereumMessages = (
        EthereumGetAddress
        | EthereumGetPublicKey
        | EthereumSignTx
        | EthereumSignMessage
        | EthereumSignTypedData
    )
    MsgIn = TypeVar("MsgIn", bound=EthereumMessages)

    EthereumSignTxAny = EthereumSignTx | EthereumSignTxEIP1559
    MsgInChainId = TypeVar("MsgInChainId", bound=EthereumSignTxAny)


# We believe Ethereum should use 44'/60'/a' for everything, because it is
# account-based, rather than UTXO-based. Unfortunately, lot of Ethereum
# tools (MEW, Metamask) do not use such scheme and set a = 0 and then
# iterate the address index i. For compatibility, we allow this scheme as well.
# Also to support "Ledger Live" legacy paths we allow 44'/60'/0'/a paths.

PATTERNS_ADDRESS = (
    paths.PATTERN_BIP44,
    paths.PATTERN_SEP5,
    paths.PATTERN_SEP5_LEDGER_LIVE_LEGACY,
)


def _schemas_from_address_n(
    patterns: Iterable[str], address_n: paths.Bip32Path
) -> Iterable[paths.PathSchema]:
    if len(address_n) < 2:
        return ()

    slip44_hardened = address_n[1]
    if slip44_hardened not in networks.all_slip44_ids_hardened():
        return ()

    if not slip44_hardened & paths.HARDENED:
        return ()

    slip44_id = slip44_hardened - paths.HARDENED
    schemas = [paths.PathSchema.parse(pattern, slip44_id) for pattern in patterns]
    return [s.copy() for s in schemas]


def with_keychain_from_path(
    *patterns: str,
) -> Callable[[HandlerWithKeychain[MsgIn, MsgOut]], Handler[MsgIn, MsgOut]]:
    def decorator(func: HandlerWithKeychain[MsgIn, MsgOut]) -> Handler[MsgIn, MsgOut]:
        async def wrapper(ctx: Context, msg: MsgIn) -> MsgOut:
            schemas = _schemas_from_address_n(patterns, msg.address_n)
            keychain = await get_keychain(ctx, CURVE, schemas)
            with keychain:
                return await func(ctx, msg, keychain)

        return wrapper

    return decorator


def _schemas_from_chain_id(msg: EthereumSignTxAny) -> Iterable[paths.PathSchema]:
    info = networks.by_chain_id(msg.chain_id)
    slip44_id: tuple[int, ...]
    if info is None:
        # allow Ethereum or testnet paths for unknown networks
        slip44_id = (60, 1)
    elif info.slip44 not in (60, 1):
        # allow cross-signing with Ethereum unless it's testnet
        slip44_id = (info.slip44, 60)
    else:
        slip44_id = (info.slip44,)

    schemas = [
        paths.PathSchema.parse(pattern, slip44_id) for pattern in PATTERNS_ADDRESS
    ]
    return [s.copy() for s in schemas]


def with_keychain_from_chain_id(
    func: HandlerWithKeychain[MsgInChainId, MsgOut]
) -> Handler[MsgInChainId, MsgOut]:
    # this is only for SignTx, and only PATTERN_ADDRESS is allowed
    async def wrapper(ctx: Context, msg: MsgInChainId) -> MsgOut:
        schemas = _schemas_from_chain_id(msg)
        keychain = await get_keychain(ctx, CURVE, schemas)
        with keychain:
            return await func(ctx, msg, keychain)

    return wrapper
style(core): full pyright-based type-checking Changes many fields to required -- as far as we were able to figure out, signing would fail if these fields aren't provided anyway, so this should not pose a compatibility problem. Co-authored-by: matejcik <ja@matejcik.cz> 2 years ago			`from typing import TYPE_CHECKING`

refactor(core): convert apps.common to layouts 3 years ago			`from apps.common import paths`
core: update references to keychain everywhere 4 years ago			`from apps.common.keychain import get_keychain`
core/ethereum: introduce custom keychain decorators 4 years ago
core: update isort config to place relative imports last 4 years ago			`from . import CURVE, networks`

style(core): full pyright-based type-checking Changes many fields to required -- as far as we were able to figure out, signing would fail if these fields aren't provided anyway, so this should not pose a compatibility problem. Co-authored-by: matejcik <ja@matejcik.cz> 2 years ago			`if TYPE_CHECKING:`
style(core): remove old-style annotations (Set, Tuple, Union) 2 years ago			`from typing import Callable, Iterable, TypeVar`
core/ethereum: introduce custom keychain decorators 4 years ago
chore(core): decrease ethereum size by 17250 bytes 2 years ago			`from trezor.wire import Context`

feat(core/ethereum): enable type-checking for Ethereum app 3 years ago			`from trezor.messages import (`
			`EthereumGetAddress,`
			`EthereumGetPublicKey,`
			`EthereumSignMessage,`
			`EthereumSignTx,`
			`EthereumSignTxEIP1559,`
feat(core/ethereum): EIP-712 Based on original contribution by Max Kupriianov <xlab@hey.com> Implemented EIP-712 typed data signatures in Ethereum app. Add eth_abi into pyproject deps device test for EIP 712 fixed hex decoding for address fixup! fixed hex decoding for address code quality, more pythonic code, removing unused imports running black and isort on changed files trezorctl file input for EIP 712 data signing fixup! code quality, more pythonic code, removing unused imports fixup! fixup! code quality, more pythonic code, removing unused imports necessary changes after rebase to master unit tests for sign_typed_data.py new protobuf messages, working for nonarray types simplified and verified solution for our simple data support for simple arrays, without their confirmation reverting protobuf value messages to bytes, appropriate changes showing arrays in Trezor, code quality improvements data validation on Trezor, minor improvements using custom types for storing type data instead of dicts, addressing feedback from review moving helper functions to its own file, tests for decode_data additional overall tests support for arrays of structs adding support for metamask_v4_compat variable using HashWriter object to collect the final hash continously minor improvements in code quality validate_field_type function streaming values from client without saving them, missing UI prototype of streamed UI using confirm_properties accounting for bytes in data, more data types in integration tests rebase on master, using f-strings minor fixes and improvements from code review StructHasher class for the whole hashing process mypy and style changes asking users whether to show structs and arrays protobuf descriptions to fix make defs_check unifying comments, mypy fix unit tests for StructHasher class UI fixtures, skipping device tests for T1 addressing majority of code review comments about code quality and structure changing file structure - layouts, helpers, sign_typed_data decode_data renaming and docstring, renaming unit test file using tuples instead of lists in elifs layout improvements excluding core/src/apps/common/confirm.py file from the PR True/False returning layout with Show more button code review layout improvements forgotten br_type argument to should_show_more 3 years ago			`EthereumSignTypedData,`
feat(core/ethereum): enable type-checking for Ethereum app 3 years ago			`)`
core/ethereum: introduce custom keychain decorators 4 years ago
core: update references to keychain everywhere 4 years ago			`from apps.common.keychain import MsgOut, Handler, HandlerWithKeychain`
core/ethereum: introduce custom keychain decorators 4 years ago
style(core): remove old-style annotations (Set, Tuple, Union) 2 years ago			`EthereumMessages = (`
			`EthereumGetAddress`
			`\| EthereumGetPublicKey`
			`\| EthereumSignTx`
			`\| EthereumSignMessage`
			`\| EthereumSignTypedData`
			`)`
feat(core/ethereum): enable type-checking for Ethereum app 3 years ago			`MsgIn = TypeVar("MsgIn", bound=EthereumMessages)`

style(core): remove old-style annotations (Set, Tuple, Union) 2 years ago			`EthereumSignTxAny = EthereumSignTx \| EthereumSignTxEIP1559`
feat(core/ethereum): enable type-checking for Ethereum app 3 years ago			`MsgInChainId = TypeVar("MsgInChainId", bound=EthereumSignTxAny)`
core/ethereum: introduce custom keychain decorators 4 years ago

feat(core): update most apps to use path schemas 4 years ago			`# We believe Ethereum should use 44'/60'/a' for everything, because it is`
			`# account-based, rather than UTXO-based. Unfortunately, lot of Ethereum`
			`# tools (MEW, Metamask) do not use such scheme and set a = 0 and then`
feat(core/ethereum): add SEP5 path schema as well as the compat schema 4 years ago			`# iterate the address index i. For compatibility, we allow this scheme as well.`
feat(core/ethereum, legacy/ethereum): add support to Ledger Live legacy derivation path 2 years ago			`# Also to support "Ledger Live" legacy paths we allow 44'/60'/0'/a paths.`
feat(core): update most apps to use path schemas 4 years ago
feat(core/ethereum, legacy/ethereum): add support to Ledger Live legacy derivation path 2 years ago			`PATTERNS_ADDRESS = (`
			`paths.PATTERN_BIP44,`
			`paths.PATTERN_SEP5,`
			`paths.PATTERN_SEP5_LEDGER_LIVE_LEGACY,`
			`)`
feat(core): update most apps to use path schemas 4 years ago

feat(core/ethereum): add SEP5 path schema as well as the compat schema 4 years ago			`def _schemas_from_address_n(`
			`patterns: Iterable[str], address_n: paths.Bip32Path`
			`) -> Iterable[paths.PathSchema]:`
core/ethereum: introduce custom keychain decorators 4 years ago			`if len(address_n) < 2:`
feat(core/ethereum): add SEP5 path schema as well as the compat schema 4 years ago			`return ()`
feat(core): update most apps to use path schemas 4 years ago
core/ethereum: introduce custom keychain decorators 4 years ago			`slip44_hardened = address_n[1]`
			`if slip44_hardened not in networks.all_slip44_ids_hardened():`
feat(core/ethereum): add SEP5 path schema as well as the compat schema 4 years ago			`return ()`
feat(core): update most apps to use path schemas 4 years ago
refactor(core): convert apps.common to layouts 3 years ago			`if not slip44_hardened & paths.HARDENED:`
feat(core/ethereum): add SEP5 path schema as well as the compat schema 4 years ago			`return ()`
feat(core): update most apps to use path schemas 4 years ago
refactor(core): convert apps.common to layouts 3 years ago			`slip44_id = slip44_hardened - paths.HARDENED`
refactor(core): defragment PathSchema memory usage 3 years ago			`schemas = [paths.PathSchema.parse(pattern, slip44_id) for pattern in patterns]`
			`return [s.copy() for s in schemas]`
core/ethereum: introduce custom keychain decorators 4 years ago

			`def with_keychain_from_path(`
feat(core/ethereum): add SEP5 path schema as well as the compat schema 4 years ago			`*patterns: str,`
feat(core/ethereum): enable type-checking for Ethereum app 3 years ago			`) -> Callable[[HandlerWithKeychain[MsgIn, MsgOut]], Handler[MsgIn, MsgOut]]:`
			`def decorator(func: HandlerWithKeychain[MsgIn, MsgOut]) -> Handler[MsgIn, MsgOut]:`
chore(core): decrease ethereum size by 17250 bytes 2 years ago			`async def wrapper(ctx: Context, msg: MsgIn) -> MsgOut:`
feat(core/ethereum): add SEP5 path schema as well as the compat schema 4 years ago			`schemas = _schemas_from_address_n(patterns, msg.address_n)`
			`keychain = await get_keychain(ctx, CURVE, schemas)`
feat(core): update most apps to use path schemas 4 years ago			`with keychain:`
			`return await func(ctx, msg, keychain)`
core/ethereum: introduce custom keychain decorators 4 years ago
feat(core): update most apps to use path schemas 4 years ago			`return wrapper`

			`return decorator`


feat(core/ethereum): enable type-checking for Ethereum app 3 years ago			`def _schemas_from_chain_id(msg: EthereumSignTxAny) -> Iterable[paths.PathSchema]:`
feat(core): update most apps to use path schemas 4 years ago			`info = networks.by_chain_id(msg.chain_id)`
feat(core/ethereum): enable type-checking for Ethereum app 3 years ago			`slip44_id: tuple[int, ...]`
feat(core): update most apps to use path schemas 4 years ago			`if info is None:`
feat(core): re-allow unknown Ethereum networks, using Ethereum or Testnet paths (fixes #1335) 4 years ago			`# allow Ethereum or testnet paths for unknown networks`
			`slip44_id = (60, 1)`
style(all): fix pylint complaints [no changelog] 3 years ago			`elif info.slip44 not in (60, 1):`
feat(core/ethereum): add SEP5 path schema as well as the compat schema 4 years ago			`# allow cross-signing with Ethereum unless it's testnet`
			`slip44_id = (info.slip44, 60)`
			`else:`
			`slip44_id = (info.slip44,)`

refactor(core): defragment PathSchema memory usage 3 years ago			`schemas = [`
			`paths.PathSchema.parse(pattern, slip44_id) for pattern in PATTERNS_ADDRESS`
			`]`
			`return [s.copy() for s in schemas]`
core/ethereum: introduce custom keychain decorators 4 years ago

			`def with_keychain_from_chain_id(`
feat(core/ethereum): enable type-checking for Ethereum app 3 years ago			`func: HandlerWithKeychain[MsgInChainId, MsgOut]`
			`) -> Handler[MsgInChainId, MsgOut]:`
feat(core): update most apps to use path schemas 4 years ago			`# this is only for SignTx, and only PATTERN_ADDRESS is allowed`
chore(core): decrease ethereum size by 17250 bytes 2 years ago			`async def wrapper(ctx: Context, msg: MsgInChainId) -> MsgOut:`
feat(core/ethereum): add SEP5 path schema as well as the compat schema 4 years ago			`schemas = _schemas_from_chain_id(msg)`
			`keychain = await get_keychain(ctx, CURVE, schemas)`
core/ethereum: introduce custom keychain decorators 4 years ago			`with keychain:`
			`return await func(ctx, msg, keychain)`

			`return wrapper`