2018-05-30 18:04:50 +02:00
|
|
|
(*---------------------------------------------------------------------------
|
|
|
|
|
Copyright (c) 2017 Vincent Bernardoff. All rights reserved.
|
|
|
|
|
Distributed under the ISC license, see terms at the end of the file.
|
|
|
|
|
---------------------------------------------------------------------------*)
|
|
|
|
|
|
2018-06-28 20:44:04 +02:00
|
|
|
open Rresult
|
2018-05-30 18:04:50 +02:00
|
|
|
open Ledgerwallet
|
|
|
|
|
|
2018-06-28 20:44:04 +02:00
|
|
|
module Version = struct
|
|
|
|
|
type app_class = Tezos | TezBake
|
|
|
|
|
let pp_app_class ppf = function
|
2018-09-04 22:15:45 -04:00
|
|
|
| Tezos -> Format.pp_print_string ppf "Tezos Wallet"
|
2018-09-10 18:59:45 -04:00
|
|
|
| TezBake -> Format.pp_print_string ppf "Tezos Baking"
|
2018-06-28 20:44:04 +02:00
|
|
|
|
2018-08-31 10:19:22 +02:00
|
|
|
let class_of_int = function
|
2018-06-28 20:44:04 +02:00
|
|
|
| 0 -> Tezos
|
|
|
|
|
| 1 -> TezBake
|
|
|
|
|
| _ -> invalid_arg "class_of_int"
|
|
|
|
|
|
|
|
|
|
type t = {
|
|
|
|
|
app_class : app_class ;
|
|
|
|
|
major : int ;
|
|
|
|
|
minor : int ;
|
|
|
|
|
patch : int ;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let pp ppf { app_class ; major ; minor ; patch } =
|
2018-09-04 22:15:45 -04:00
|
|
|
Format.fprintf ppf "%a %d.%d.%d"
|
2018-06-28 20:44:04 +02:00
|
|
|
pp_app_class app_class major minor patch
|
|
|
|
|
|
|
|
|
|
let create ~app_class ~major ~minor ~patch = {
|
|
|
|
|
app_class ; major ; minor ; patch
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type Transport.Status.t +=
|
|
|
|
|
Tezos_impossible_to_read_version
|
|
|
|
|
|
|
|
|
|
let () = Transport.Status.register_string_f begin function
|
|
|
|
|
| Tezos_impossible_to_read_version ->
|
|
|
|
|
Some "Impossible to read version"
|
|
|
|
|
| _ -> None
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
let read cs =
|
|
|
|
|
try
|
|
|
|
|
let app_class = class_of_int (Cstruct.get_uint8 cs 0) in
|
|
|
|
|
let major = Cstruct.get_uint8 cs 1 in
|
|
|
|
|
let minor = Cstruct.get_uint8 cs 2 in
|
|
|
|
|
let patch = Cstruct.get_uint8 cs 3 in
|
|
|
|
|
R.ok (create ~app_class ~major ~minor ~patch)
|
|
|
|
|
with _ ->
|
|
|
|
|
Transport.app_error
|
|
|
|
|
~msg:"Version.read" (R.error Tezos_impossible_to_read_version)
|
|
|
|
|
end
|
|
|
|
|
|
2018-05-30 18:04:50 +02:00
|
|
|
type ins =
|
2018-06-28 20:44:04 +02:00
|
|
|
| Version
|
2018-09-22 18:33:24 +07:00
|
|
|
| Git_commit
|
2018-06-28 20:44:04 +02:00
|
|
|
| Authorize_baking
|
2018-05-30 18:04:50 +02:00
|
|
|
| Get_public_key
|
2018-06-28 20:44:04 +02:00
|
|
|
| Prompt_public_key
|
2018-05-30 18:04:50 +02:00
|
|
|
| Sign
|
2018-06-28 20:44:04 +02:00
|
|
|
| Sign_unsafe
|
|
|
|
|
| Reset_high_watermark
|
|
|
|
|
| Query_high_watermark
|
2018-09-27 17:52:05 +08:00
|
|
|
| Get_authorized_key
|
2019-01-28 17:12:58 -05:00
|
|
|
| Setup
|
|
|
|
|
| Query_all_high_watermarks
|
2019-03-06 16:05:23 +00:00
|
|
|
| Deauthorize_baking
|
|
|
|
|
| Get_authorized_path_and_curve
|
2018-05-30 18:04:50 +02:00
|
|
|
|
|
|
|
|
let int_of_ins = function
|
2018-06-28 20:44:04 +02:00
|
|
|
| Version -> 0x00
|
|
|
|
|
| Authorize_baking -> 0x01
|
2018-05-30 18:04:50 +02:00
|
|
|
| Get_public_key -> 0x02
|
2018-06-28 20:44:04 +02:00
|
|
|
| Prompt_public_key -> 0x03
|
2018-05-30 18:04:50 +02:00
|
|
|
| Sign -> 0x04
|
2018-06-28 20:44:04 +02:00
|
|
|
| Sign_unsafe -> 0x05
|
|
|
|
|
| Reset_high_watermark -> 0x06
|
|
|
|
|
| Query_high_watermark -> 0x08
|
2018-09-22 18:33:24 +07:00
|
|
|
| Git_commit -> 0x09
|
2018-09-27 17:52:05 +08:00
|
|
|
| Get_authorized_key -> 0x07
|
2019-01-28 17:12:58 -05:00
|
|
|
| Setup -> 0x0A
|
|
|
|
|
| Query_all_high_watermarks -> 0x0B
|
2019-03-06 16:05:23 +00:00
|
|
|
| Deauthorize_baking -> 0x0C
|
|
|
|
|
| Get_authorized_path_and_curve -> 0x0D
|
2018-05-30 18:04:50 +02:00
|
|
|
|
|
|
|
|
type curve =
|
|
|
|
|
| Ed25519
|
|
|
|
|
| Secp256k1
|
|
|
|
|
| Secp256r1
|
|
|
|
|
|
2018-10-04 19:34:51 +08:00
|
|
|
let pp_curve ppf = function
|
|
|
|
|
| Ed25519 -> Format.pp_print_string ppf "ed25519"
|
|
|
|
|
| Secp256k1 -> Format.pp_print_string ppf "secp256k1"
|
|
|
|
|
| Secp256r1 -> Format.pp_print_string ppf "P-256"
|
|
|
|
|
|
|
|
|
|
let pp_curve_short ppf = function
|
|
|
|
|
| Ed25519 -> Format.pp_print_string ppf "ed"
|
|
|
|
|
| Secp256k1 -> Format.pp_print_string ppf "secp"
|
|
|
|
|
| Secp256r1 -> Format.pp_print_string ppf "p2"
|
|
|
|
|
|
|
|
|
|
let curve_of_string str =
|
|
|
|
|
match String.lowercase_ascii str with
|
|
|
|
|
| "ed" | "ed25519" -> Some Ed25519
|
|
|
|
|
| "secp256k1" -> Some Secp256k1
|
|
|
|
|
| "p256" | "p-256" | "secp256r1" -> Some Secp256r1
|
|
|
|
|
| _ -> None
|
|
|
|
|
|
2018-05-30 18:04:50 +02:00
|
|
|
let int_of_curve = function
|
|
|
|
|
| Ed25519 -> 0x00
|
|
|
|
|
| Secp256k1 -> 0x01
|
|
|
|
|
| Secp256r1 -> 0x02
|
|
|
|
|
|
2019-03-06 16:05:23 +00:00
|
|
|
let curve_of_int = function
|
|
|
|
|
| 0x00 -> Some Ed25519
|
|
|
|
|
| 0x01 -> Some Secp256k1
|
|
|
|
|
| 0x02 -> Some Secp256r1
|
|
|
|
|
| _ -> None
|
|
|
|
|
|
|
|
|
|
type Transport.Status.t +=
|
|
|
|
|
Tezos_invalid_curve_code of int
|
|
|
|
|
|
|
|
|
|
let () = Transport.Status.register_string_f begin function
|
|
|
|
|
| Tezos_invalid_curve_code curve_code ->
|
|
|
|
|
Some ("Unrecognized curve code: " ^ string_of_int curve_code)
|
|
|
|
|
| _ -> None
|
|
|
|
|
end
|
|
|
|
|
|
2018-05-30 18:04:50 +02:00
|
|
|
let wrap_ins cmd =
|
|
|
|
|
Apdu.create_cmd ~cmd ~cla_of_cmd:(fun _ -> 0x80) ~ins_of_cmd:int_of_ins
|
|
|
|
|
|
2018-06-28 20:44:04 +02:00
|
|
|
let get_version ?pp ?buf h =
|
|
|
|
|
let apdu = Apdu.create (wrap_ins Version) in
|
|
|
|
|
Transport.apdu ~msg:"get_version" ?pp ?buf h apdu >>=
|
|
|
|
|
Version.read
|
|
|
|
|
|
2018-09-22 18:33:24 +07:00
|
|
|
let get_git_commit ?pp ?buf h =
|
|
|
|
|
let apdu = Apdu.create (wrap_ins Git_commit) in
|
|
|
|
|
Transport.apdu ~msg:"get_git_commit" ?pp ?buf h apdu >>|
|
|
|
|
|
Cstruct.to_string
|
|
|
|
|
|
2019-03-06 16:05:23 +00:00
|
|
|
let read_path_with_length buf =
|
|
|
|
|
let length = Cstruct.get_uint8 buf 0 in
|
|
|
|
|
let rec go acc path =
|
|
|
|
|
if Cstruct.len path = 0 || List.length acc = length then List.rev acc
|
|
|
|
|
else
|
|
|
|
|
go (Cstruct.BE.get_uint32 path 0 :: acc)
|
|
|
|
|
(Cstruct.shift path 4) in
|
|
|
|
|
go [] (Cstruct.shift buf 1)
|
|
|
|
|
|
2018-09-27 17:52:05 +08:00
|
|
|
let get_authorized_key ?pp ?buf h =
|
|
|
|
|
let apdu = Apdu.create (wrap_ins Get_authorized_key) in
|
|
|
|
|
Transport.apdu ~msg:"get_authorized_key" ?pp ?buf h apdu >>| fun path ->
|
2019-03-06 16:05:23 +00:00
|
|
|
read_path_with_length path
|
|
|
|
|
|
|
|
|
|
let get_authorized_path_and_curve ?pp ?buf h =
|
|
|
|
|
let apdu = Apdu.create (wrap_ins Get_authorized_path_and_curve) in
|
|
|
|
|
Transport.apdu ~msg:"get_authorized_path_and_curve" ?pp ?buf h apdu >>= fun payload ->
|
|
|
|
|
let curve_code = Cstruct.get_uint8 payload 0 in
|
|
|
|
|
match curve_of_int curve_code with
|
|
|
|
|
| None ->
|
|
|
|
|
Transport.app_error ~msg:"get_authorized_path_and_curve" (R.error (Tezos_invalid_curve_code curve_code))
|
|
|
|
|
| Some curve ->
|
|
|
|
|
let path_components = read_path_with_length (Cstruct.shift payload 1) in
|
|
|
|
|
R.ok (path_components, curve)
|
2018-09-27 17:52:05 +08:00
|
|
|
|
2018-05-30 18:04:50 +02:00
|
|
|
let write_path cs path =
|
|
|
|
|
ListLabels.fold_left path ~init:cs ~f:begin fun cs i ->
|
|
|
|
|
Cstruct.BE.set_uint32 cs 0 i ;
|
|
|
|
|
Cstruct.shift cs 4
|
|
|
|
|
end
|
|
|
|
|
|
2018-06-28 20:44:04 +02:00
|
|
|
let get_public_key_like cmd ?pp ?buf h curve path =
|
2018-05-30 18:04:50 +02:00
|
|
|
let nb_derivations = List.length path in
|
|
|
|
|
if nb_derivations > 10 then invalid_arg "get_public_key: max 10 derivations" ;
|
|
|
|
|
let lc = 1 + 4 * nb_derivations in
|
|
|
|
|
let data_init = Cstruct.create lc in
|
|
|
|
|
Cstruct.set_uint8 data_init 0 nb_derivations ;
|
|
|
|
|
let data = Cstruct.shift data_init 1 in
|
|
|
|
|
let _data = write_path data path in
|
2018-06-28 20:44:04 +02:00
|
|
|
let msg = "get_public_key" in
|
|
|
|
|
let apdu = Apdu.create
|
|
|
|
|
~p2:(int_of_curve curve) ~lc ~data:data_init (wrap_ins cmd) in
|
|
|
|
|
Transport.apdu ~msg ?pp ?buf h apdu >>| fun addr ->
|
2018-05-30 18:04:50 +02:00
|
|
|
let keylen = Cstruct.get_uint8 addr 0 in
|
|
|
|
|
Cstruct.sub addr 1 keylen
|
|
|
|
|
|
2018-06-28 20:44:04 +02:00
|
|
|
let get_public_key ?(prompt=true) =
|
|
|
|
|
let cmd = if prompt then Prompt_public_key else Get_public_key in
|
|
|
|
|
get_public_key_like cmd
|
|
|
|
|
|
|
|
|
|
let authorize_baking = get_public_key_like Authorize_baking
|
|
|
|
|
|
2019-01-28 17:12:58 -05:00
|
|
|
let setup_baking ?pp ?buf h ~main_chain_id ~main_hwm ~test_hwm curve path =
|
|
|
|
|
let nb_derivations = List.length path in
|
|
|
|
|
if nb_derivations > 10 then
|
|
|
|
|
invalid_arg "Ledgerwallet_tezos.setup: max 10 derivations" ;
|
|
|
|
|
let lc =
|
|
|
|
|
(* [ chain-id | main-hwm | test-hwm | derivations-path ] *)
|
|
|
|
|
(* derivations-path = [ length | paths ] *)
|
|
|
|
|
(3 * 4) + 1 + (4 * nb_derivations) in
|
|
|
|
|
let data_init = Cstruct.create lc in
|
|
|
|
|
(* If the size of chain-ids changes, then all assumptions of this
|
2019-03-06 16:05:23 +00:00
|
|
|
binary format are broken (the ledger expects a uint32). *)
|
2019-01-28 17:12:58 -05:00
|
|
|
assert (String.length main_chain_id = 4) ;
|
|
|
|
|
for ith = 0 to 3 do
|
|
|
|
|
Cstruct.set_uint8 data_init ith (int_of_char main_chain_id.[ith]) ;
|
|
|
|
|
done ;
|
|
|
|
|
Cstruct.BE.set_uint32 data_init 4 main_hwm ;
|
|
|
|
|
Cstruct.BE.set_uint32 data_init 8 test_hwm ;
|
|
|
|
|
Cstruct.set_uint8 data_init 12 nb_derivations ;
|
|
|
|
|
let (_ : Cstruct.t) =
|
|
|
|
|
let data = Cstruct.shift data_init (12 + 1) in
|
|
|
|
|
write_path data path in
|
|
|
|
|
let msg = "setup" in
|
|
|
|
|
let apdu =
|
|
|
|
|
Apdu.create
|
|
|
|
|
~p2:(int_of_curve curve) ~lc ~data:data_init (wrap_ins Setup) in
|
|
|
|
|
Transport.apdu ~msg ?pp ?buf h apdu >>| fun addr ->
|
|
|
|
|
let keylen = Cstruct.get_uint8 addr 0 in
|
|
|
|
|
Cstruct.sub addr 1 keylen
|
|
|
|
|
|
2019-03-06 16:05:23 +00:00
|
|
|
let deauthorize_baking ?pp ?buf h =
|
|
|
|
|
let apdu = Apdu.create (wrap_ins Deauthorize_baking) in
|
|
|
|
|
Transport.apdu ~msg:"deauthorize_baking" ?pp ?buf h apdu >>| fun _ ->
|
|
|
|
|
()
|
|
|
|
|
|
2018-06-28 20:44:04 +02:00
|
|
|
let get_high_watermark ?pp ?buf h =
|
|
|
|
|
let apdu = Apdu.create (wrap_ins Query_high_watermark) in
|
|
|
|
|
Transport.apdu ~msg:"get_high_watermark" ?pp ?buf h apdu >>| fun hwm ->
|
|
|
|
|
Cstruct.BE.get_uint32 hwm 0
|
|
|
|
|
|
2019-01-28 17:12:58 -05:00
|
|
|
let get_all_high_watermarks ?pp ?buf h =
|
|
|
|
|
let apdu = Apdu.create (wrap_ins Query_all_high_watermarks) in
|
|
|
|
|
Transport.apdu ~msg:"get_high_watermark" ?pp ?buf h apdu >>| fun tuple ->
|
|
|
|
|
let main_hwm = Cstruct.BE.get_uint32 tuple 0 in
|
|
|
|
|
let test_hwm = Cstruct.BE.get_uint32 tuple 4 in
|
|
|
|
|
let chain_id = Cstruct.copy tuple 8 4 in
|
|
|
|
|
(`Main_hwm main_hwm, `Test_hwm test_hwm, `Chain_id chain_id)
|
|
|
|
|
|
2018-06-28 20:44:04 +02:00
|
|
|
let set_high_watermark ?pp ?buf h hwm =
|
|
|
|
|
let data = Cstruct.create 4 in
|
|
|
|
|
Cstruct.BE.set_uint32 data 0 hwm ;
|
|
|
|
|
let apdu = Apdu.create ~lc:4 ~data (wrap_ins Reset_high_watermark) in
|
|
|
|
|
Transport.apdu ~msg:"set_high_watermark" ?pp ?buf h apdu >>|
|
|
|
|
|
ignore
|
|
|
|
|
|
|
|
|
|
let sign ?pp ?buf ?(hash_on_ledger=true) h curve path payload =
|
2018-05-30 18:04:50 +02:00
|
|
|
let nb_derivations = List.length path in
|
|
|
|
|
if nb_derivations > 10 then invalid_arg "get_public_key: max 10 derivations" ;
|
|
|
|
|
let lc = 1 + 4 * nb_derivations in
|
|
|
|
|
let data_init = Cstruct.create lc in
|
|
|
|
|
Cstruct.set_uint8 data_init 0 nb_derivations ;
|
|
|
|
|
let data = Cstruct.shift data_init 1 in
|
|
|
|
|
let _data = write_path data path in
|
2018-06-28 20:44:04 +02:00
|
|
|
let cmd = wrap_ins (if hash_on_ledger then Sign else Sign_unsafe) in
|
|
|
|
|
let msg = "sign" in
|
2018-05-30 18:04:50 +02:00
|
|
|
let apdu = Apdu.create ~p2:(int_of_curve curve) ~lc ~data:data_init cmd in
|
|
|
|
|
let _addr = Transport.apdu ~msg ?pp ?buf h apdu in
|
|
|
|
|
Transport.write_payload ~mark_last:true ?pp ?buf ~msg ~cmd h ~p1:0x01 payload
|
|
|
|
|
|
|
|
|
|
(*---------------------------------------------------------------------------
|
|
|
|
|
Copyright (c) 2017 Vincent Bernardoff
|
|
|
|
|
|
|
|
|
|
Permission to use, copy, modify, and/or distribute this software for any
|
|
|
|
|
purpose with or without fee is hereby granted, provided that the above
|
|
|
|
|
copyright notice and this permission notice appear in all copies.
|
|
|
|
|
|
|
|
|
|
THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
|
|
|
|
|
WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
|
|
|
|
|
MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
|
|
|
|
|
ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
|
|
|
|
|
WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
|
|
|
|
|
ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
|
|
|
|
|
OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
|
|
|
|
|
---------------------------------------------------------------------------*)
|
