trezor-firmware/src/apps/wallet/sign_tx/addresses.py

from micropython import const

from trezor.crypto.hashlib import sha256, ripemd160
from trezor.crypto import base58, bech32
from trezor.utils import ensure

from trezor.messages.CoinType import CoinType
from trezor.messages import FailureType
from trezor.messages import InputScriptType

# supported witness version for bech32 addresses
_BECH32_WITVER = const(0x00)


class AddressError(Exception):
    pass


def get_address(script_type: InputScriptType, coin: CoinType, node) -> str:

    if script_type == InputScriptType.SPENDADDRESS:  # p2pkh
        return node.address(coin.address_type)

    elif script_type == InputScriptType.SPENDWITNESS:  # native p2wpkh
        if not coin.segwit or not coin.bech32_prefix:
            raise AddressError(FailureType.ProcessError,
                               'Segwit not enabled on this coin')
        return address_p2wpkh(node.public_key(), coin.bech32_prefix)

    elif script_type == InputScriptType.SPENDP2SHWITNESS:  # p2wpkh using p2sh
        if not coin.segwit or coin.address_type_p2sh is None:
            raise AddressError(FailureType.ProcessError,
                               'Segwit not enabled on this coin')
        return address_p2wpkh_in_p2sh(node.public_key(), coin.address_type_p2sh)

    else:
        raise AddressError(FailureType.ProcessError,
                           'Invalid script type')


def address_p2sh(redeem_script_hash: bytes, addrtype: int) -> str:
    s = bytearray(21)
    s[0] = addrtype
    s[1:21] = redeem_script_hash
    return base58.encode_check(bytes(s))


# P2WPKH nested in P2SH. The P2SH redeem script hash is created using the
# `raw` function
def address_p2wpkh_in_p2sh(pubkey: bytes, addrtype: int) -> str:
    redeem_script_hash = address_p2wpkh_in_p2sh_script(pubkey)
    return address_p2sh(redeem_script_hash, addrtype)


# Generates a P2SH redeem script based on a public key hash in a P2WPKH manner
def address_p2wpkh_in_p2sh_script(pubkey: bytes) -> bytes:
    s = bytearray(22)
    s[0] = 0x00  # OP_0
    s[1] = 0x14  # pushing 20 bytes
    s[2:22] = ecdsa_hash_pubkey(pubkey)
    h = sha256(s).digest()
    h = ripemd160(h).digest()
    return h


# P2WSH nested in P2SH. The P2SH redeem script hash is created using the
# `raw` function
def address_p2wsh_in_p2sh(witness_script_hash: bytes, addrtype: int) -> str:
    redeem_script_hash = address_p2wsh_in_p2sh_script(witness_script_hash)
    return address_p2sh(redeem_script_hash, addrtype)


# Generates a P2SH redeem script based on a hash of a witness redeem script hash
def address_p2wsh_in_p2sh_script(script_hash: bytes) -> bytes:
    s = bytearray(34)
    s[0] = 0x00  # OP_0
    s[1] = 0x20  # pushing 32 bytes
    s[2:34] = script_hash
    h = sha256(s).digest()
    h = ripemd160(h).digest()
    return h


# Native Bech32 P2WPKH
def address_p2wpkh(pubkey: bytes, hrp: str) -> str:
    pubkeyhash = ecdsa_hash_pubkey(pubkey)
    address = bech32.encode(hrp, _BECH32_WITVER, pubkeyhash)
    if address is None:
        raise AddressError(FailureType.ProcessError,
                           'Invalid address')
    return address


# Native Bech32 P2WSH, script_hash is 32-byte SHA256(script)
def address_p2wsh(script_hash: bytes, hrp: str) -> str:
    address = bech32.encode(hrp, _BECH32_WITVER, script_hash)
    if address is None:
        raise AddressError(FailureType.ProcessError,
                           'Invalid address')
    return address


def decode_bech32_address(prefix: str, address: str) -> bytes:
    witver, raw = bech32.decode(prefix, address)
    if witver != _BECH32_WITVER:
        raise AddressError(FailureType.ProcessError,
                           'Invalid address witness program')
    return bytes(raw)


def ecdsa_hash_pubkey(pubkey: bytes) -> bytes:
    if pubkey[0] == 0x04:
        ensure(len(pubkey) == 65)  # uncompressed format
    elif pubkey[0] == 0x00:
        ensure(len(pubkey) == 1)   # point at infinity
    else:
        ensure(len(pubkey) == 33)  # compresssed format
    h = sha256(pubkey).digest()
    h = ripemd160(h).digest()
    return h
wallet/signing: extract addresses.py 2017-11-23 16:30:43 +00:00			`from micropython import const`

			`from trezor.crypto.hashlib import sha256, ripemd160`
			`from trezor.crypto import base58, bech32`
			`from trezor.utils import ensure`

			`from trezor.messages.CoinType import CoinType`
			`from trezor.messages import FailureType`
			`from trezor.messages import InputScriptType`

			`# supported witness version for bech32 addresses`
			`_BECH32_WITVER = const(0x00)`


			`class AddressError(Exception):`
			`pass`


wallet/get_address: support segwit 2017-11-23 16:35:27 +00:00			`def get_address(script_type: InputScriptType, coin: CoinType, node) -> str:`
wallet/signing: extract addresses.py 2017-11-23 16:30:43 +00:00
			`if script_type == InputScriptType.SPENDADDRESS: # p2pkh`
			`return node.address(coin.address_type)`

			`elif script_type == InputScriptType.SPENDWITNESS: # native p2wpkh`
			`if not coin.segwit or not coin.bech32_prefix:`
			`raise AddressError(FailureType.ProcessError,`
			`'Segwit not enabled on this coin')`
			`return address_p2wpkh(node.public_key(), coin.bech32_prefix)`

			`elif script_type == InputScriptType.SPENDP2SHWITNESS: # p2wpkh using p2sh`
signing: p2sh and witness native addresses 2018-01-24 10:07:31 +00:00			`if not coin.segwit or coin.address_type_p2sh is None:`
wallet/signing: extract addresses.py 2017-11-23 16:30:43 +00:00			`raise AddressError(FailureType.ProcessError,`
			`'Segwit not enabled on this coin')`
			`return address_p2wpkh_in_p2sh(node.public_key(), coin.address_type_p2sh)`

			`else:`
			`raise AddressError(FailureType.ProcessError,`
			`'Invalid script type')`


signing: p2sh and witness native addresses 2018-01-24 10:07:31 +00:00			`def address_p2sh(redeem_script_hash: bytes, addrtype: int) -> str:`
wallet/signing: extract addresses.py 2017-11-23 16:30:43 +00:00			`s = bytearray(21)`
			`s[0] = addrtype`
signing: p2sh and witness native addresses 2018-01-24 10:07:31 +00:00			`s[1:21] = redeem_script_hash`
wallet/signing: extract addresses.py 2017-11-23 16:30:43 +00:00			`return base58.encode_check(bytes(s))`


signing: p2sh and witness native addresses 2018-01-24 10:07:31 +00:00			`# P2WPKH nested in P2SH. The P2SH redeem script hash is created using the`
			# `raw` function
			`def address_p2wpkh_in_p2sh(pubkey: bytes, addrtype: int) -> str:`
			`redeem_script_hash = address_p2wpkh_in_p2sh_script(pubkey)`
			`return address_p2sh(redeem_script_hash, addrtype)`


			`# Generates a P2SH redeem script based on a public key hash in a P2WPKH manner`
			`def address_p2wpkh_in_p2sh_script(pubkey: bytes) -> bytes:`
wallet/signing: extract addresses.py 2017-11-23 16:30:43 +00:00			`s = bytearray(22)`
			`s[0] = 0x00 # OP_0`
			`s[1] = 0x14 # pushing 20 bytes`
			`s[2:22] = ecdsa_hash_pubkey(pubkey)`
			`h = sha256(s).digest()`
			`h = ripemd160(h).digest()`
			`return h`


signing: p2sh and witness native addresses 2018-01-24 10:07:31 +00:00			`# P2WSH nested in P2SH. The P2SH redeem script hash is created using the`
			# `raw` function
			`def address_p2wsh_in_p2sh(witness_script_hash: bytes, addrtype: int) -> str:`
			`redeem_script_hash = address_p2wsh_in_p2sh_script(witness_script_hash)`
			`return address_p2sh(redeem_script_hash, addrtype)`


			`# Generates a P2SH redeem script based on a hash of a witness redeem script hash`
			`def address_p2wsh_in_p2sh_script(script_hash: bytes) -> bytes:`
			`s = bytearray(34)`
			`s[0] = 0x00 # OP_0`
			`s[1] = 0x20 # pushing 32 bytes`
			`s[2:34] = script_hash`
			`h = sha256(s).digest()`
			`h = ripemd160(h).digest()`
			`return h`


			`# Native Bech32 P2WPKH`
wallet/signing: extract addresses.py 2017-11-23 16:30:43 +00:00			`def address_p2wpkh(pubkey: bytes, hrp: str) -> str:`
			`pubkeyhash = ecdsa_hash_pubkey(pubkey)`
			`address = bech32.encode(hrp, _BECH32_WITVER, pubkeyhash)`
			`if address is None:`
			`raise AddressError(FailureType.ProcessError,`
			`'Invalid address')`
			`return address`


signing: p2sh and witness native addresses 2018-01-24 10:07:31 +00:00			`# Native Bech32 P2WSH, script_hash is 32-byte SHA256(script)`
			`def address_p2wsh(script_hash: bytes, hrp: str) -> str:`
			`address = bech32.encode(hrp, _BECH32_WITVER, script_hash)`
			`if address is None:`
			`raise AddressError(FailureType.ProcessError,`
			`'Invalid address')`
			`return address`


wallet/signing: extract addresses.py 2017-11-23 16:30:43 +00:00			`def decode_bech32_address(prefix: str, address: str) -> bytes:`
			`witver, raw = bech32.decode(prefix, address)`
			`if witver != _BECH32_WITVER:`
			`raise AddressError(FailureType.ProcessError,`
			`'Invalid address witness program')`
			`return bytes(raw)`


			`def ecdsa_hash_pubkey(pubkey: bytes) -> bytes:`
			`if pubkey[0] == 0x04:`
			`ensure(len(pubkey) == 65) # uncompressed format`
			`elif pubkey[0] == 0x00:`
			`ensure(len(pubkey) == 1) # point at infinity`
			`else:`
			`ensure(len(pubkey) == 33) # compresssed format`
			`h = sha256(pubkey).digest()`
			`h = ripemd160(h).digest()`
			`return h`