from trezor import ui from trezor import wire from trezor.utils import unimport if __debug__: matrix = None @unimport async def request_pin_on_display(session_id: int, code: int=None) -> str: from trezor.messages.ButtonRequest import ButtonRequest from trezor.messages.ButtonRequestType import ProtectCall from trezor.messages.FailureType import PinCancelled from trezor.messages.wire_types import ButtonAck from trezor.ui.confirm import ConfirmDialog, CONFIRMED from trezor.ui.pin import PinMatrix if __debug__: global matrix _, label = _get_code_and_label(code) await wire.call(session_id, ButtonRequest(code=ProtectCall), ButtonAck) ui.display.clear() matrix = PinMatrix(label) dialog = ConfirmDialog(matrix) pin = matrix.pin matrix = None if await dialog != CONFIRMED: raise wire.FailureError(PinCancelled, 'PIN cancelled') return pin @unimport async def request_pin_on_client(session_id: int, code: int=None) -> str: from trezor.messages.FailureType import PinCancelled from trezor.messages.PinMatrixRequest import PinMatrixRequest from trezor.messages.wire_types import PinMatrixAck, Cancel from trezor.ui.pin import PinMatrix if __debug__: global matrix code, label = _get_code_and_label(code) ui.display.clear() matrix = PinMatrix(label) matrix.render() ack = await wire.call(session_id, PinMatrixRequest(type=code), PinMatrixAck, Cancel) digits = matrix.digits matrix = None if ack.MESSAGE_WIRE_TYPE == Cancel: raise wire.FailureError(PinCancelled, 'PIN cancelled') return _decode_pin(ack.pin, digits) request_pin = request_pin_on_client @unimport async def request_pin_twice(session_id: int) -> str: from trezor.messages.FailureType import ActionCancelled from trezor.messages import PinMatrixRequestType pin_first = await request_pin(session_id, PinMatrixRequestType.NewFirst) pin_again = await request_pin(session_id, PinMatrixRequestType.NewSecond) if pin_first != pin_again: # changed message due to consistency with T1 msgs raise wire.FailureError(ActionCancelled, 'PIN change failed') return pin_first async def protect_by_pin_repeatedly(session_id: int, at_least_once: bool=False): from . import storage locked = storage.is_locked() or at_least_once while locked: pin = await request_pin(session_id) locked = not storage.unlock(pin, _render_pin_failure) async def protect_by_pin_or_fail(session_id: int, at_least_once: bool=False): from trezor.messages.FailureType import PinInvalid from . import storage locked = storage.is_locked() or at_least_once if locked: pin = await request_pin(session_id) if not storage.unlock(pin, _render_pin_failure): raise wire.FailureError(PinInvalid, 'PIN invalid') protect_by_pin = protect_by_pin_or_fail def _render_pin_failure(sleep_ms: int): ui.display.clear() ui.display.text_center(240, 240, 'Sleeping for %d seconds' % (sleep_ms / 1000), ui.BOLD, ui.RED, ui.BLACK) def _get_code_and_label(code: int): from trezor.messages import PinMatrixRequestType if code is None: code = PinMatrixRequestType.Current if code == PinMatrixRequestType.NewFirst: label = 'Enter new PIN' elif code == PinMatrixRequestType.NewSecond: label = 'Enter PIN again' else: # PinMatrixRequestType.Current label = 'Enter PIN' return code, label def _decode_pin(pin: str, secret: list) -> str: return ''.join([str(secret[int(d) - 1]) for d in pin])