mirror of
https://github.com/trezor/trezor-firmware.git
synced 2025-07-12 01:28:10 +00:00
9fc5bb546b
Changes many fields to required -- as far as we were able to figure out, signing would fail if these fields aren't provided anyway, so this should not pose a compatibility problem. Co-authored-by: matejcik <ja@matejcik.cz>
54 lines
1.6 KiB
Python
54 lines
1.6 KiB
Python
from typing import TYPE_CHECKING
|
|
|
|
from trezor.crypto.curve import secp256k1
|
|
from trezor.crypto.hashlib import sha3_256
|
|
from trezor.messages import EthereumMessageSignature
|
|
from trezor.ui.layouts import confirm_signverify
|
|
from trezor.utils import HashWriter
|
|
|
|
from apps.common import paths
|
|
from apps.common.signverify import decode_message
|
|
|
|
from .helpers import address_from_bytes
|
|
from .keychain import PATTERNS_ADDRESS, with_keychain_from_path
|
|
|
|
if TYPE_CHECKING:
|
|
from trezor.messages import EthereumSignMessage
|
|
from trezor.wire import Context
|
|
|
|
from apps.common.keychain import Keychain
|
|
|
|
|
|
def message_digest(message: bytes) -> bytes:
|
|
h = HashWriter(sha3_256(keccak=True))
|
|
signed_message_header = b"\x19Ethereum Signed Message:\n"
|
|
h.extend(signed_message_header)
|
|
h.extend(str(len(message)).encode())
|
|
h.extend(message)
|
|
return h.get_digest()
|
|
|
|
|
|
@with_keychain_from_path(*PATTERNS_ADDRESS)
|
|
async def sign_message(
|
|
ctx: Context, msg: EthereumSignMessage, keychain: Keychain
|
|
) -> EthereumMessageSignature:
|
|
await paths.validate_path(ctx, keychain, msg.address_n)
|
|
|
|
node = keychain.derive(msg.address_n)
|
|
address = address_from_bytes(node.ethereum_pubkeyhash())
|
|
await confirm_signverify(
|
|
ctx, "ETH", decode_message(msg.message), address, verify=False
|
|
)
|
|
|
|
signature = secp256k1.sign(
|
|
node.private_key(),
|
|
message_digest(msg.message),
|
|
False,
|
|
secp256k1.CANONICAL_SIG_ETHEREUM,
|
|
)
|
|
|
|
return EthereumMessageSignature(
|
|
address=address,
|
|
signature=signature[1:] + bytearray([signature[0]]),
|
|
)
|