You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
314 lines
11 KiB
314 lines
11 KiB
/*
|
|
* This file is part of the Trezor project, https://trezor.io/
|
|
*
|
|
* Copyright (c) SatoshiLabs
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
#include "py/objstr.h"
|
|
#include "py/runtime.h"
|
|
|
|
#include "version.h"
|
|
|
|
#if MICROPY_PY_TREZORUTILS
|
|
|
|
#include "embed/extmod/modtrezorutils/modtrezorutils-meminfo.h"
|
|
#include "embed/extmod/trezorobj.h"
|
|
|
|
#include <string.h>
|
|
#include "blake2s.h"
|
|
#include "common.h"
|
|
#include "flash.h"
|
|
|
|
#ifndef TREZOR_EMULATOR
|
|
#include "image.h"
|
|
#endif
|
|
|
|
static void ui_progress(mp_obj_t ui_wait_callback, uint32_t current,
|
|
uint32_t total) {
|
|
if (mp_obj_is_callable(ui_wait_callback)) {
|
|
mp_call_function_2_protected(ui_wait_callback, mp_obj_new_int(current),
|
|
mp_obj_new_int(total));
|
|
}
|
|
}
|
|
|
|
/// def consteq(sec: bytes, pub: bytes) -> bool:
|
|
/// """
|
|
/// Compares the private information in `sec` with public, user-provided
|
|
/// information in `pub`. Runs in constant time, corresponding to a length
|
|
/// of `pub`. Can access memory behind valid length of `sec`, caller is
|
|
/// expected to avoid any invalid memory access.
|
|
/// """
|
|
STATIC mp_obj_t mod_trezorutils_consteq(mp_obj_t sec, mp_obj_t pub) {
|
|
mp_buffer_info_t secbuf = {0};
|
|
mp_get_buffer_raise(sec, &secbuf, MP_BUFFER_READ);
|
|
mp_buffer_info_t pubbuf = {0};
|
|
mp_get_buffer_raise(pub, &pubbuf, MP_BUFFER_READ);
|
|
|
|
size_t diff = secbuf.len - pubbuf.len;
|
|
for (size_t i = 0; i < pubbuf.len; i++) {
|
|
const uint8_t *s = (uint8_t *)secbuf.buf;
|
|
const uint8_t *p = (uint8_t *)pubbuf.buf;
|
|
diff |= s[i] - p[i];
|
|
}
|
|
|
|
if (diff == 0) {
|
|
return mp_const_true;
|
|
} else {
|
|
return mp_const_false;
|
|
}
|
|
}
|
|
STATIC MP_DEFINE_CONST_FUN_OBJ_2(mod_trezorutils_consteq_obj,
|
|
mod_trezorutils_consteq);
|
|
|
|
/// def memcpy(
|
|
/// dst: bytearray | memoryview,
|
|
/// dst_ofs: int,
|
|
/// src: bytes,
|
|
/// src_ofs: int,
|
|
/// n: int | None = None,
|
|
/// ) -> int:
|
|
/// """
|
|
/// Copies at most `n` bytes from `src` at offset `src_ofs` to
|
|
/// `dst` at offset `dst_ofs`. Returns the number of actually
|
|
/// copied bytes. If `n` is not specified, tries to copy
|
|
/// as much as possible.
|
|
/// """
|
|
STATIC mp_obj_t mod_trezorutils_memcpy(size_t n_args, const mp_obj_t *args) {
|
|
mp_arg_check_num(n_args, 0, 4, 5, false);
|
|
|
|
mp_buffer_info_t dst = {0};
|
|
mp_get_buffer_raise(args[0], &dst, MP_BUFFER_WRITE);
|
|
uint32_t dst_ofs = trezor_obj_get_uint(args[1]);
|
|
|
|
mp_buffer_info_t src = {0};
|
|
mp_get_buffer_raise(args[2], &src, MP_BUFFER_READ);
|
|
uint32_t src_ofs = trezor_obj_get_uint(args[3]);
|
|
|
|
uint32_t n = 0;
|
|
if (n_args > 4) {
|
|
n = trezor_obj_get_uint(args[4]);
|
|
} else {
|
|
n = src.len;
|
|
}
|
|
|
|
size_t dst_rem = (dst_ofs < dst.len) ? dst.len - dst_ofs : 0;
|
|
size_t src_rem = (src_ofs < src.len) ? src.len - src_ofs : 0;
|
|
size_t ncpy = MIN(n, MIN(src_rem, dst_rem));
|
|
|
|
memmove(((char *)dst.buf) + dst_ofs, ((const char *)src.buf) + src_ofs, ncpy);
|
|
|
|
return mp_obj_new_int(ncpy);
|
|
}
|
|
STATIC MP_DEFINE_CONST_FUN_OBJ_VAR_BETWEEN(mod_trezorutils_memcpy_obj, 4, 5,
|
|
mod_trezorutils_memcpy);
|
|
|
|
/// def halt(msg: str | None = None) -> None:
|
|
/// """
|
|
/// Halts execution.
|
|
/// """
|
|
STATIC mp_obj_t mod_trezorutils_halt(size_t n_args, const mp_obj_t *args) {
|
|
mp_buffer_info_t msg = {0};
|
|
if (n_args > 0 && mp_get_buffer(args[0], &msg, MP_BUFFER_READ)) {
|
|
ensure(secfalse, msg.buf);
|
|
} else {
|
|
ensure(secfalse, "halt");
|
|
}
|
|
return mp_const_none;
|
|
}
|
|
STATIC MP_DEFINE_CONST_FUN_OBJ_VAR_BETWEEN(mod_trezorutils_halt_obj, 0, 1,
|
|
mod_trezorutils_halt);
|
|
|
|
/// def firmware_hash(
|
|
/// challenge: bytes | None = None,
|
|
/// callback: Callable[[int, int], None] | None = None,
|
|
/// ) -> bytes:
|
|
/// """
|
|
/// Computes the Blake2s hash of the firmware with an optional challenge as
|
|
/// the key.
|
|
/// """
|
|
STATIC mp_obj_t mod_trezorutils_firmware_hash(size_t n_args,
|
|
const mp_obj_t *args) {
|
|
BLAKE2S_CTX ctx;
|
|
mp_buffer_info_t chal = {0};
|
|
if (n_args > 0 && args[0] != mp_const_none) {
|
|
mp_get_buffer_raise(args[0], &chal, MP_BUFFER_READ);
|
|
}
|
|
|
|
if (chal.len != 0) {
|
|
if (blake2s_InitKey(&ctx, BLAKE2S_DIGEST_LENGTH, chal.buf, chal.len) != 0) {
|
|
mp_raise_msg(&mp_type_ValueError, "Invalid challenge.");
|
|
}
|
|
} else {
|
|
blake2s_Init(&ctx, BLAKE2S_DIGEST_LENGTH);
|
|
}
|
|
|
|
mp_obj_t ui_wait_callback = mp_const_none;
|
|
if (n_args > 1 && args[1] != mp_const_none) {
|
|
ui_wait_callback = args[1];
|
|
}
|
|
|
|
ui_progress(ui_wait_callback, 0, FIRMWARE_SECTORS_COUNT);
|
|
for (int i = 0; i < FIRMWARE_SECTORS_COUNT; i++) {
|
|
uint8_t sector = FIRMWARE_SECTORS[i];
|
|
uint32_t size = flash_sector_size(sector);
|
|
const void *data = flash_get_address(sector, 0, size);
|
|
if (data == NULL) {
|
|
mp_raise_msg(&mp_type_RuntimeError, "Failed to read firmware.");
|
|
}
|
|
blake2s_Update(&ctx, data, size);
|
|
ui_progress(ui_wait_callback, i + 1, FIRMWARE_SECTORS_COUNT);
|
|
}
|
|
|
|
vstr_t vstr = {0};
|
|
vstr_init_len(&vstr, BLAKE2S_DIGEST_LENGTH);
|
|
if (blake2s_Final(&ctx, vstr.buf, vstr.len) != 0) {
|
|
vstr_clear(&vstr);
|
|
mp_raise_msg(&mp_type_RuntimeError, "Failed to finalize firmware hash.");
|
|
}
|
|
|
|
return mp_obj_new_str_from_vstr(&mp_type_bytes, &vstr);
|
|
}
|
|
STATIC MP_DEFINE_CONST_FUN_OBJ_VAR_BETWEEN(mod_trezorutils_firmware_hash_obj, 0,
|
|
2, mod_trezorutils_firmware_hash);
|
|
|
|
/// def firmware_vendor() -> str:
|
|
/// """
|
|
/// Returns the firmware vendor string from the vendor header.
|
|
/// """
|
|
STATIC mp_obj_t mod_trezorutils_firmware_vendor(void) {
|
|
#ifdef TREZOR_EMULATOR
|
|
return mp_obj_new_str_copy(&mp_type_str, (const uint8_t *)"EMULATOR", 8);
|
|
#else
|
|
vendor_header vhdr = {0};
|
|
uint32_t size = flash_sector_size(FLASH_SECTOR_FIRMWARE_START);
|
|
const void *data = flash_get_address(FLASH_SECTOR_FIRMWARE_START, 0, size);
|
|
if (data == NULL || sectrue != read_vendor_header(data, &vhdr)) {
|
|
mp_raise_msg(&mp_type_RuntimeError, "Failed to read vendor header.");
|
|
}
|
|
return mp_obj_new_str_copy(&mp_type_str, (const uint8_t *)vhdr.vstr,
|
|
vhdr.vstr_len);
|
|
#endif
|
|
}
|
|
STATIC MP_DEFINE_CONST_FUN_OBJ_0(mod_trezorutils_firmware_vendor_obj,
|
|
mod_trezorutils_firmware_vendor);
|
|
|
|
/// def firmware_sector_size(sector: int) -> int:
|
|
/// """
|
|
/// Returns the size of the firmware sector.
|
|
/// """
|
|
STATIC mp_obj_t mod_trezorutils_firmware_sector_size(mp_obj_t sector) {
|
|
mp_uint_t sector_id = trezor_obj_get_uint(sector);
|
|
if (sector_id >= FIRMWARE_SECTORS_COUNT) {
|
|
mp_raise_msg(&mp_type_ValueError, "Invalid sector.");
|
|
}
|
|
return mp_obj_new_int(flash_sector_size(FIRMWARE_SECTORS[sector_id]));
|
|
}
|
|
STATIC MP_DEFINE_CONST_FUN_OBJ_1(mod_trezorutils_firmware_sector_size_obj,
|
|
mod_trezorutils_firmware_sector_size);
|
|
|
|
/// def get_firmware_chunk(index: int, offset: int, buffer: bytearray) -> None:
|
|
/// """
|
|
/// Reads a chunk of the firmware into `buffer`.
|
|
/// """
|
|
STATIC mp_obj_t mod_trezorutils_get_firmware_chunk(const mp_obj_t index_obj,
|
|
const mp_obj_t offset_obj,
|
|
const mp_obj_t buffer) {
|
|
mp_uint_t index = trezor_obj_get_uint(index_obj);
|
|
if (index >= FIRMWARE_SECTORS_COUNT) {
|
|
mp_raise_msg(&mp_type_ValueError, "Invalid sector.");
|
|
}
|
|
int sector = FIRMWARE_SECTORS[index];
|
|
mp_uint_t offset = trezor_obj_get_uint(offset_obj);
|
|
mp_buffer_info_t buf = {0};
|
|
mp_get_buffer_raise(buffer, &buf, MP_BUFFER_WRITE);
|
|
const void *data = flash_get_address(sector, offset, buf.len);
|
|
if (data == NULL) {
|
|
mp_raise_msg(&mp_type_ValueError, "Invalid read.");
|
|
}
|
|
memcpy(buf.buf, data, buf.len);
|
|
|
|
return mp_const_none;
|
|
}
|
|
STATIC MP_DEFINE_CONST_FUN_OBJ_3(mod_trezorutils_get_firmware_chunk_obj,
|
|
mod_trezorutils_get_firmware_chunk);
|
|
|
|
STATIC mp_obj_str_t mod_trezorutils_revision_obj = {
|
|
{&mp_type_bytes}, 0, sizeof(SCM_REVISION) - 1, (const byte *)SCM_REVISION};
|
|
|
|
/// SCM_REVISION: bytes
|
|
/// VERSION_MAJOR: int
|
|
/// VERSION_MINOR: int
|
|
/// VERSION_PATCH: int
|
|
/// MODEL: str
|
|
/// EMULATOR: bool
|
|
/// BITCOIN_ONLY: bool
|
|
/// FIRMWARE_SECTORS_COUNT: int
|
|
|
|
STATIC const mp_rom_map_elem_t mp_module_trezorutils_globals_table[] = {
|
|
{MP_ROM_QSTR(MP_QSTR___name__), MP_ROM_QSTR(MP_QSTR_trezorutils)},
|
|
{MP_ROM_QSTR(MP_QSTR_consteq), MP_ROM_PTR(&mod_trezorutils_consteq_obj)},
|
|
{MP_ROM_QSTR(MP_QSTR_memcpy), MP_ROM_PTR(&mod_trezorutils_memcpy_obj)},
|
|
{MP_ROM_QSTR(MP_QSTR_halt), MP_ROM_PTR(&mod_trezorutils_halt_obj)},
|
|
{MP_ROM_QSTR(MP_QSTR_firmware_hash),
|
|
MP_ROM_PTR(&mod_trezorutils_firmware_hash_obj)},
|
|
{MP_ROM_QSTR(MP_QSTR_firmware_vendor),
|
|
MP_ROM_PTR(&mod_trezorutils_firmware_vendor_obj)},
|
|
{MP_ROM_QSTR(MP_QSTR_get_firmware_chunk),
|
|
MP_ROM_PTR(&mod_trezorutils_get_firmware_chunk_obj)},
|
|
{MP_ROM_QSTR(MP_QSTR_firmware_sector_size),
|
|
MP_ROM_PTR(&mod_trezorutils_firmware_sector_size_obj)},
|
|
{MP_ROM_QSTR(MP_QSTR_FIRMWARE_SECTORS_COUNT),
|
|
MP_ROM_INT(FIRMWARE_SECTORS_COUNT)},
|
|
|
|
// various built-in constants
|
|
{MP_ROM_QSTR(MP_QSTR_SCM_REVISION),
|
|
MP_ROM_PTR(&mod_trezorutils_revision_obj)},
|
|
{MP_ROM_QSTR(MP_QSTR_VERSION_MAJOR), MP_ROM_INT(VERSION_MAJOR)},
|
|
{MP_ROM_QSTR(MP_QSTR_VERSION_MINOR), MP_ROM_INT(VERSION_MINOR)},
|
|
{MP_ROM_QSTR(MP_QSTR_VERSION_PATCH), MP_ROM_INT(VERSION_PATCH)},
|
|
#if defined TREZOR_MODEL_1
|
|
{MP_ROM_QSTR(MP_QSTR_MODEL), MP_ROM_QSTR(MP_QSTR_1)},
|
|
#elif defined TREZOR_MODEL_T
|
|
{MP_ROM_QSTR(MP_QSTR_MODEL), MP_ROM_QSTR(MP_QSTR_T)},
|
|
#else
|
|
#error Unknown Trezor model
|
|
#endif
|
|
#ifdef TREZOR_EMULATOR
|
|
{MP_ROM_QSTR(MP_QSTR_EMULATOR), mp_const_true},
|
|
MEMINFO_DICT_ENTRIES
|
|
#else
|
|
{MP_ROM_QSTR(MP_QSTR_EMULATOR), mp_const_false},
|
|
#endif
|
|
#if BITCOIN_ONLY
|
|
{MP_ROM_QSTR(MP_QSTR_BITCOIN_ONLY), mp_const_true},
|
|
#else
|
|
{MP_ROM_QSTR(MP_QSTR_BITCOIN_ONLY), mp_const_false},
|
|
#endif
|
|
};
|
|
|
|
STATIC MP_DEFINE_CONST_DICT(mp_module_trezorutils_globals,
|
|
mp_module_trezorutils_globals_table);
|
|
|
|
const mp_obj_module_t mp_module_trezorutils = {
|
|
.base = {&mp_type_module},
|
|
.globals = (mp_obj_dict_t *)&mp_module_trezorutils_globals,
|
|
};
|
|
|
|
MP_REGISTER_MODULE(MP_QSTR_trezorutils, mp_module_trezorutils,
|
|
MICROPY_PY_TREZORUTILS);
|
|
|
|
#endif // MICROPY_PY_TREZORUTILS
|