mirror of
https://github.com/trezor/trezor-firmware.git
synced 2025-01-09 23:11:10 +00:00
239 lines
15 KiB
Python
239 lines
15 KiB
Python
# This file is part of the TREZOR project.
|
|
#
|
|
# Copyright (C) 2017 Jochen Hoenicke <hoenicke@gmail.com>
|
|
#
|
|
# This library is free software: you can redistribute it and/or modify
|
|
# it under the terms of the GNU Lesser General Public License as published by
|
|
# the Free Software Foundation, either version 3 of the License, or
|
|
# (at your option) any later version.
|
|
#
|
|
# This library is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU Lesser General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU Lesser General Public License
|
|
# along with this library. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
import unittest
|
|
import common
|
|
import binascii
|
|
|
|
from trezorlib import messages as proto
|
|
from trezorlib.tx_api import TxApiTestnet
|
|
from trezorlib.ckd_public import deserialize
|
|
from trezorlib.client import CallException
|
|
|
|
|
|
class TestMsgSigntxSegwit(common.TrezorTest):
|
|
|
|
def test_send_p2sh(self):
|
|
self.setup_mnemonic_allallall()
|
|
self.client.set_tx_api(TxApiTestnet)
|
|
inp1 = proto.TxInputType(
|
|
address_n=self.client.expand_path("49'/1'/0'/1/0"),
|
|
# 2N1LGaGg836mqSQqiuUBLfcyGBhyZbremDX
|
|
amount=123456789,
|
|
prev_hash=binascii.unhexlify('20912f98ea3ed849042efed0fdac8cb4fc301961c5988cba56902d8ffb61c337'),
|
|
prev_index=0,
|
|
script_type=proto.InputScriptType.SPENDP2SHWITNESS,
|
|
)
|
|
out1 = proto.TxOutputType(
|
|
address='mhRx1CeVfaayqRwq5zgRQmD7W5aWBfD5mC',
|
|
amount=12300000,
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS,
|
|
)
|
|
out2 = proto.TxOutputType(
|
|
address='2N1LGaGg836mqSQqiuUBLfcyGBhyZbremDX',
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS,
|
|
amount=123456789 - 11000 - 12300000,
|
|
)
|
|
with self.client:
|
|
self.client.set_expected_responses([
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.ConfirmOutput),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=1)),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.ConfirmOutput),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.SignTx),
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=1)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXFINISHED),
|
|
])
|
|
(signatures, serialized_tx) = self.client.sign_tx('Testnet', [inp1], [out1, out2])
|
|
|
|
self.assertEqual(binascii.hexlify(serialized_tx), b'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')
|
|
|
|
def test_send_p2sh_change(self):
|
|
self.setup_mnemonic_allallall()
|
|
self.client.set_tx_api(TxApiTestnet)
|
|
inp1 = proto.TxInputType(
|
|
address_n=self.client.expand_path("49'/1'/0'/1/0"),
|
|
# 2N1LGaGg836mqSQqiuUBLfcyGBhyZbremDX
|
|
amount=123456789,
|
|
prev_hash=binascii.unhexlify('20912f98ea3ed849042efed0fdac8cb4fc301961c5988cba56902d8ffb61c337'),
|
|
prev_index=0,
|
|
script_type=proto.InputScriptType.SPENDP2SHWITNESS,
|
|
)
|
|
out1 = proto.TxOutputType(
|
|
address='mhRx1CeVfaayqRwq5zgRQmD7W5aWBfD5mC',
|
|
amount=12300000,
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS,
|
|
)
|
|
out2 = proto.TxOutputType(
|
|
address_n=self.client.expand_path("49'/1'/0'/1/0"),
|
|
script_type=proto.OutputScriptType.PAYTOP2SHWITNESS,
|
|
amount=123456789 - 11000 - 12300000,
|
|
)
|
|
with self.client:
|
|
self.client.set_expected_responses([
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.ConfirmOutput),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=1)),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.SignTx),
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=1)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXFINISHED),
|
|
])
|
|
(signatures, serialized_tx) = self.client.sign_tx('Testnet', [inp1], [out1, out2])
|
|
|
|
self.assertEqual(binascii.hexlify(serialized_tx), b'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')
|
|
|
|
def test_send_multisig_1(self):
|
|
self.setup_mnemonic_allallall()
|
|
self.client.set_tx_api(TxApiTestnet)
|
|
nodes = map(lambda index: self.client.get_public_node(self.client.expand_path("999'/1'/%d'" % index)), range(1, 4))
|
|
multisig = proto.MultisigRedeemScriptType(
|
|
pubkeys=list(map(lambda n: proto.HDNodePathType(node=deserialize(n.xpub), address_n=[2, 0]), nodes)),
|
|
signatures=[b'', b'', b''],
|
|
m=2,
|
|
)
|
|
|
|
inp1 = proto.TxInputType(
|
|
address_n=self.client.expand_path("999'/1'/1'/2/0"),
|
|
prev_hash=binascii.unhexlify('9c31922be756c06d02167656465c8dc83bb553bf386a3f478ae65b5c021002be'),
|
|
prev_index=1,
|
|
script_type=proto.InputScriptType.SPENDP2SHWITNESS,
|
|
multisig=multisig,
|
|
amount=1610436
|
|
)
|
|
|
|
out1 = proto.TxOutputType(address='mhRx1CeVfaayqRwq5zgRQmD7W5aWBfD5mC',
|
|
amount=1605000,
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS)
|
|
|
|
with self.client:
|
|
self.client.set_expected_responses([
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.ConfirmOutput),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.SignTx),
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXFINISHED),
|
|
])
|
|
(signatures1, _) = self.client.sign_tx('Testnet', [inp1], [out1])
|
|
# store signature
|
|
inp1.multisig.signatures[0] = signatures1[0]
|
|
# sign with third key
|
|
inp1.address_n[2] = 0x80000003
|
|
self.client.set_expected_responses([
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.ConfirmOutput),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.SignTx),
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXFINISHED),
|
|
])
|
|
(signatures2, serialized_tx) = self.client.sign_tx('Testnet', [inp1], [out1])
|
|
|
|
self.assertEqual(binascii.hexlify(serialized_tx), b'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')
|
|
|
|
def test_attack_change_input_address(self):
|
|
# This unit test attempts to modify input address after the Trezor checked
|
|
# that it matches the change output
|
|
|
|
self.setup_mnemonic_allallall()
|
|
self.client.set_tx_api(TxApiTestnet)
|
|
inp1 = proto.TxInputType(
|
|
address_n=self.client.expand_path("49'/1'/0'/1/0"),
|
|
# 2N1LGaGg836mqSQqiuUBLfcyGBhyZbremDX
|
|
amount=123456789,
|
|
prev_hash=binascii.unhexlify('20912f98ea3ed849042efed0fdac8cb4fc301961c5988cba56902d8ffb61c337'),
|
|
prev_index=0,
|
|
script_type=proto.InputScriptType.SPENDP2SHWITNESS,
|
|
)
|
|
out1 = proto.TxOutputType(
|
|
address='mhRx1CeVfaayqRwq5zgRQmD7W5aWBfD5mC',
|
|
amount=12300000,
|
|
script_type=proto.OutputScriptType.PAYTOADDRESS,
|
|
)
|
|
out2 = proto.TxOutputType(
|
|
address_n=self.client.expand_path("49'/1'/12345'/1/0"),
|
|
script_type=proto.OutputScriptType.PAYTOP2SHWITNESS,
|
|
amount=123456789 - 11000 - 12300000,
|
|
)
|
|
|
|
global run_attack
|
|
run_attack = True
|
|
|
|
def attack_processor(req, msg):
|
|
import sys
|
|
global run_attack
|
|
|
|
if req.details.tx_hash is not None:
|
|
return msg
|
|
|
|
if req.request_type != proto.RequestType.TXINPUT:
|
|
return msg
|
|
|
|
if req.details.request_index != 0:
|
|
return msg
|
|
|
|
if not run_attack:
|
|
return msg
|
|
|
|
msg.inputs[0].address_n[2] = 12345 + 0x80000000
|
|
run_attack = False
|
|
return msg
|
|
|
|
# Test if the transaction can be signed normally
|
|
with self.client:
|
|
self.client.set_expected_responses([
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.ConfirmOutput),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=1)),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.ConfirmOutput),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.SignTx),
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=1)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXFINISHED),
|
|
])
|
|
(signatures, serialized_tx) = self.client.sign_tx('Testnet', [inp1], [out1, out2])
|
|
|
|
self.assertEqual(binascii.hexlify(serialized_tx), b'0100000000010137c361fb8f2d9056ba8c98c5611930fcb48cacfdd0fe2e0449d83eea982f91200000000017160014d16b8c0680c61fc6ed2e407455715055e41052f5ffffffff02e0aebb00000000001976a91414fdede0ddc3be652a0ce1afbc1b509a55b6b94888ac3df39f060000000017a914dae9e09a7fc3bbe5a716fffec1bbb340b82a4fb9870248304502210099b5c4f8fd4402c9c0136fee5f711137d64fc9f14587e01bfa7798f5428f845d0220253e21c98f5b1b64efae69bc2ea9799c5620a43450baa6762a0c3cf4fdc886e5012103e7bfe10708f715e8538c92d46ca50db6f657bbc455b7494e6a0303ccdb868b7900000000')
|
|
|
|
# Now run the attack, must trigger the exception
|
|
with self.client:
|
|
self.client.set_expected_responses([
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.ConfirmOutput),
|
|
proto.TxRequest(request_type=proto.RequestType.TXOUTPUT, details=proto.TxRequestDetailsType(request_index=1)),
|
|
proto.ButtonRequest(code=proto.ButtonRequestType.SignTx),
|
|
proto.TxRequest(request_type=proto.RequestType.TXINPUT, details=proto.TxRequestDetailsType(request_index=0)),
|
|
proto.Failure(code=proto.FailureType.ProcessError),
|
|
])
|
|
self.assertRaises(CallException, self.client.sign_tx, 'Testnet', [inp1], [out1, out2], debug_processor=attack_processor)
|