From d5fb2a477a7267ec6c88b7e09c39c8c9a63022fc Mon Sep 17 00:00:00 2001
From: Tomas Susanka <tsusanka@gmail.com>
Date: Fri, 30 Nov 2018 12:30:24 +0100
Subject: [PATCH] eth/verify: path is not validated; improve invalid signature
 handling

Ethereum's verify_function takes an actual address as an argument not a
derivation path. So any path validation does not make any sense.

Also, if the verify_recover function raises an exception, it gets
propogated as a DataError (additional fix for #422).
---
 src/apps/ethereum/verify_message.py | 13 +++++++------
 1 file changed, 7 insertions(+), 6 deletions(-)

diff --git a/src/apps/ethereum/verify_message.py b/src/apps/ethereum/verify_message.py
index b99085898..790235b56 100644
--- a/src/apps/ethereum/verify_message.py
+++ b/src/apps/ethereum/verify_message.py
@@ -6,9 +6,6 @@ from trezor.crypto.hashlib import sha3_256
 from trezor.messages.Success import Success
 from trezor.ui.text import Text
 
-from .address import validate_full_path
-
-from apps.common import paths
 from apps.common.confirm import require_confirm
 from apps.common.layout import split_address
 from apps.common.signverify import split_message
@@ -16,11 +13,15 @@ from apps.ethereum.sign_message import message_digest
 
 
 async def verify_message(ctx, msg):
-    await paths.validate_path(ctx, validate_full_path, path=msg.address)
-
     digest = message_digest(msg.message)
+    if len(msg.signature) != 65:
+        raise wire.DataError("Invalid signature")
     sig = bytearray([msg.signature[64]]) + msg.signature[:64]
-    pubkey = secp256k1.verify_recover(sig, digest)
+
+    try:
+        pubkey = secp256k1.verify_recover(sig, digest)
+    except ValueError:
+        raise wire.DataError("Invalid signature")
 
     if not pubkey:
         raise wire.DataError("Invalid signature")