From e07e4aba89edbecefd9479e2734af5c0b6373cf6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ond=C5=99ej=20Vejpustek?= <ondrej.vejpustek@satoshilabs.com>
Date: Wed, 11 Dec 2024 17:24:22 +0100
Subject: [PATCH] fix(core): fix serialization of signatures and witnesses in
 multisig

[no changelog]
---
 core/src/apps/bitcoin/get_address.py        |  4 ++--
 core/src/apps/bitcoin/multisig.py           | 11 ++++++++++-
 tests/device_tests/bitcoin/test_multisig.py | 15 +++++++++------
 3 files changed, 21 insertions(+), 9 deletions(-)

diff --git a/core/src/apps/bitcoin/get_address.py b/core/src/apps/bitcoin/get_address.py
index 2eee86a9b6..e3a053cf80 100644
--- a/core/src/apps/bitcoin/get_address.py
+++ b/core/src/apps/bitcoin/get_address.py
@@ -52,7 +52,7 @@ async def get_address(msg: GetAddress, keychain: Keychain, coin: CoinInfo) -> Ad
         address_n_to_name_or_unknown,
         validate_path_against_script_type,
     )
-    from .multisig import multisig_pubkey_index
+    from .multisig import multisig_xpub_index
 
     multisig = msg.multisig  # local_cache_attribute
     address_n = msg.address_n  # local_cache_attribute
@@ -110,7 +110,7 @@ async def get_address(msg: GetAddress, keychain: Keychain, coin: CoinInfo) -> Ad
                 pubnodes = multisig.nodes
             else:
                 pubnodes = [hd.node for hd in multisig.pubkeys]
-            multisig_index = multisig_pubkey_index(multisig, node.public_key())
+            multisig_index = multisig_xpub_index(multisig, node.public_key())
 
             await confirm_multisig_warning()
 
diff --git a/core/src/apps/bitcoin/multisig.py b/core/src/apps/bitcoin/multisig.py
index 205fccc392..c294c2d84a 100644
--- a/core/src/apps/bitcoin/multisig.py
+++ b/core/src/apps/bitcoin/multisig.py
@@ -58,6 +58,15 @@ def validate_multisig(multisig: MultisigRedeemScriptType) -> None:
 
 
 def multisig_pubkey_index(multisig: MultisigRedeemScriptType, pubkey: bytes) -> int:
+    validate_multisig(multisig)
+    pubkeys = multisig_get_pubkeys(multisig)
+    try:
+        return pubkeys.index(pubkey)
+    except ValueError:
+        raise DataError("Pubkey not found in multisig script")
+
+
+def multisig_xpub_index(multisig: MultisigRedeemScriptType, pubkey: bytes) -> int:
     validate_multisig(multisig)
     if multisig.nodes:
         for i, hd_node in enumerate(multisig.nodes):
@@ -67,7 +76,7 @@ def multisig_pubkey_index(multisig: MultisigRedeemScriptType, pubkey: bytes) ->
         for i, hd in enumerate(multisig.pubkeys):
             if multisig_get_pubkey(hd.node, hd.address_n) == pubkey:
                 return i
-    raise DataError("Pubkey not found in multisig script")
+    raise DataError("XPUB not found in multisig script")
 
 
 def multisig_get_pubkey(n: HDNodeType, p: paths.Bip32Path) -> bytes:
diff --git a/tests/device_tests/bitcoin/test_multisig.py b/tests/device_tests/bitcoin/test_multisig.py
index 7a3da905d6..5be4827fcd 100644
--- a/tests/device_tests/bitcoin/test_multisig.py
+++ b/tests/device_tests/bitcoin/test_multisig.py
@@ -171,10 +171,13 @@ def test_pubkeys_order(client: Client):
         client, parse_path("m/45h/1"), coin_name="Bitcoin"
     ).node
 
+    # A dummy signature is used to ensure that the signatures are serialized in the correct order
+    dummy_signature = bytes(71)
+
     multisig_unsorted_1 = messages.MultisigRedeemScriptType(
         nodes=[node_internal, node_external],
         address_n=[0, 0],
-        signatures=[b"", b"", b""],
+        signatures=[b"", dummy_signature],
         m=1,
         pubkeys_order=messages.MultisigPubkeysOrder.PRESERVED,
     )
@@ -182,7 +185,7 @@ def test_pubkeys_order(client: Client):
     multisig_unsorted_2 = messages.MultisigRedeemScriptType(
         nodes=[node_external, node_internal],
         address_n=[0, 0],
-        signatures=[b"", b"", b""],
+        signatures=[dummy_signature, b""],
         m=1,
         pubkeys_order=messages.MultisigPubkeysOrder.PRESERVED,
     )
@@ -190,7 +193,7 @@ def test_pubkeys_order(client: Client):
     multisig_sorted_1 = messages.MultisigRedeemScriptType(
         nodes=[node_internal, node_external],
         address_n=[0, 0],
-        signatures=[b"", b"", b""],
+        signatures=[b"", dummy_signature],
         m=1,
         pubkeys_order=messages.MultisigPubkeysOrder.LEXICOGRAPHIC,
     )
@@ -198,7 +201,7 @@ def test_pubkeys_order(client: Client):
     multisig_sorted_2 = messages.MultisigRedeemScriptType(
         nodes=[node_external, node_internal],
         address_n=[0, 0],
-        signatures=[b"", b"", b""],
+        signatures=[b"", dummy_signature],
         m=1,
         pubkeys_order=messages.MultisigPubkeysOrder.LEXICOGRAPHIC,
     )
@@ -278,9 +281,9 @@ def test_pubkeys_order(client: Client):
         multisig=multisig_sorted_2,
     )
 
-    tx_unsorted_1 = "0100000001637ffac0d4fbd8a6c02b114e36b079615ec3e4bdf09b769c7bf8b5fd6f8e7817000000009200483045022100f062d71445509d84a5769f219f4f0158dc7ff4351d671e6fa6bfdb171435064802206e1104f1d14f010bcc166cca6a9bd24b4a497475f8e23167858b4a3e92ac6a67014751210262e9ac5bea4c84c7dea650424ed768cf123af9e447eef3c63d37c41d1f825e49210369b79f2094a6eb89e7aff0e012a5699f7272968a341e48e99e64a54312f2932b52aeffffffff01301b0f000000000017a91440bfd8ae9d806d5bd7cf475ce6a80535836285148700000000"
+    tx_unsorted_1 = "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"
 
-    tx_unsorted_2 = "0100000001637ffac0d4fbd8a6c02b114e36b079615ec3e4bdf09b769c7bf8b5fd6f8e781701000000910047304402204914036468434698e2d87985007a66691f170195e4a16507bbb86b4c00da5fde02200a788312d447b3796ee5288ce9e9c0247896debfa473339302bc928da6dd78cb014751210369b79f2094a6eb89e7aff0e012a5699f7272968a341e48e99e64a54312f2932b210262e9ac5bea4c84c7dea650424ed768cf123af9e447eef3c63d37c41d1f825e4952aeffffffff01301b0f000000000017a914320ad0ff0f1b605ab1fa8e29b70d22827cf45a9f8700000000"
+    tx_unsorted_2 = "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"
 
     _, tx = btc.sign_tx(
         client,