Merge pull request #942 from LedgerHQ/fix/apa/mab

Add new owner field for MAB sourced trusted names

Author: apaillier-ledger

client/src/ledger_app_clients/ethereum/client.py

@@ -1,4 +1,3 @@
-import struct
 from enum import IntEnum
 from typing import Optional
 import rlp
@@ -11,7 +10,6 @@
 from .command_builder import CommandBuilder
 from .eip712 import EIP712FieldType
 from .keychain import sign_data, Key
-from .tlv import format_tlv, FieldTag
 from .response_parser import pk_addr
 from .tx_simu import TxSimu
 from .tx_auth_7702 import TxAuth7702
@@ -20,26 +18,7 @@
 from .dynamic_networks import DynamicNetwork
 from .safe import SafeAccount, AccountType
 from .gating import Gating
-
-
-class TrustedNameType(IntEnum):
-    ACCOUNT = 0x01
-    CONTRACT = 0x02
-    NFT = 0x03
-    TOKEN = 0x04
-    WALLET = 0x05
-    CONTEXT_ADDRESS = 0x06
-
-
-class TrustedNameSource(IntEnum):
-    LAB = 0x00
-    CAL = 0x01
-    ENS = 0x02
-    UD = 0x03
-    FN = 0x04
-    DNS = 0x05
-    DYN_RESOLVER = 0x06
-    MULTISIG_ADDRESS_BOOK = 0x07
+from .trusted_name import TrustedName, TrustedNameSource
 
 
 class EIP712CalldataParamPresence(IntEnum):
@@ -281,58 +260,15 @@ def perform_privacy_operation(self,
                                                                           bip32_path,
                                                                           pubkey))
 
-    def _provide_trusted_name_common(self, payload: bytes, name_source: TrustedNameSource) -> RAPDU:
-        payload += format_tlv(FieldTag.STRUCT_TYPE, 3)  # TrustedName
-        if name_source == TrustedNameSource.CAL:
-            key_id = 9
-            key = Key.CAL
-        else:
-            key_id = 7
-            key = Key.TRUSTED_NAME
-
-        self.pki_client.send_certificate(PKIPubKeyUsage.PUBKEY_USAGE_TRUSTED_NAME, name_source == TrustedNameSource.CAL)
+    def provide_trusted_name(self, trusted_name: TrustedName) -> RAPDU:
+        self.pki_client.send_certificate(PKIPubKeyUsage.PUBKEY_USAGE_TRUSTED_NAME,
+                                         trusted_name.tn_source == TrustedNameSource.CAL)
 
-        payload += format_tlv(FieldTag.SIGNER_KEY_ID, key_id)  # test key
-        payload += format_tlv(FieldTag.SIGNER_ALGO, 1)  # secp256k1
-        payload += format_tlv(FieldTag.DER_SIGNATURE,
-                              sign_data(key, payload))
-        chunks = self._cmd_builder.provide_trusted_name(payload)
+        chunks = self._cmd_builder.provide_trusted_name(trusted_name.serialize())
         for chunk in chunks[:-1]:
             self._exchange(chunk)
         return self._exchange(chunks[-1])
 
-    def provide_trusted_name_v1(self, addr: bytes, name: str, challenge: int) -> RAPDU:
-        payload = format_tlv(FieldTag.STRUCT_VERSION, 1)
-        payload += format_tlv(FieldTag.CHALLENGE, challenge)
-        payload += format_tlv(FieldTag.COIN_TYPE, 0x3c)  # ETH in slip-44
-        payload += format_tlv(FieldTag.TRUSTED_NAME, name)
-        payload += format_tlv(FieldTag.ADDRESS, addr)
-        return self._provide_trusted_name_common(payload, TrustedNameSource.ENS)
-
-    def provide_trusted_name_v2(self,
-                                addr: bytes,
-                                name: str,
-                                name_type: TrustedNameType,
-                                name_source: TrustedNameSource,
-                                chain_id: int,
-                                nft_id: Optional[int] = None,
-                                challenge: Optional[int] = None,
-                                not_valid_after: Optional[tuple[int, int, int]] = None) -> RAPDU:
-        payload = format_tlv(FieldTag.STRUCT_VERSION, 2)
-        payload += format_tlv(FieldTag.TRUSTED_NAME, name)
-        payload += format_tlv(FieldTag.ADDRESS, addr)
-        payload += format_tlv(FieldTag.TRUSTED_NAME_TYPE, name_type)
-        payload += format_tlv(FieldTag.TRUSTED_NAME_SOURCE, name_source)
-        payload += format_tlv(FieldTag.CHAIN_ID, chain_id)
-        if nft_id is not None:
-            payload += format_tlv(FieldTag.TRUSTED_NAME_NFT_ID, nft_id)
-        if challenge is not None:
-            payload += format_tlv(FieldTag.CHALLENGE, challenge)
-        if not_valid_after is not None:
-            assert len(not_valid_after) == 3
-            payload += format_tlv(FieldTag.NOT_VALID_AFTER, struct.pack("BBB", *not_valid_after))
-        return self._provide_trusted_name_common(payload, name_source)
-
     def set_plugin(self,
                    plugin_name: str,
                    contract_addr: bytes,

client/src/ledger_app_clients/ethereum/gcs.py

@@ -4,7 +4,7 @@
 
 from .tlv import TlvSerializable
 from .keychain import sign_data, Key
-from .client import TrustedNameType, TrustedNameSource
+from .trusted_name import TrustedNameType, TrustedNameSource
 
 
 class TxInfoTag(IntEnum):

client/src/ledger_app_clients/ethereum/tlv.py

@@ -5,27 +5,17 @@
 class FieldTag(IntEnum):
     STRUCT_TYPE = 0x01
     STRUCT_VERSION = 0x02
-    NOT_VALID_AFTER = 0x10
     CHALLENGE = 0x12
-    SIGNER_KEY_ID = 0x13
-    SIGNER_ALGO = 0x14
     DER_SIGNATURE = 0x15
-    TRUSTED_NAME = 0x20
-    COIN_TYPE = 0x21
     ADDRESS = 0x22
     CHAIN_ID = 0x23
     TICKER = 0x24
     TX_HASH = 0x27
     DOMAIN_HASH = 0x28
     SELECTOR = 0x40
-    IMPL_ADDRESS = 0x41
-    DELEGATION_TYPE = 0x42
     BLOCKCHAIN_FAMILY = 0x51
     NETWORK_NAME = 0x52
     NETWORK_ICON_HASH = 0x53
-    TRUSTED_NAME_TYPE = 0x70
-    TRUSTED_NAME_SOURCE = 0x71
-    TRUSTED_NAME_NFT_ID = 0x72
     TX_CHECKS_NORMALIZED_RISK = 0x80
     TX_CHECKS_NORMALIZED_CATEGORY = 0x81
     MESSAGE = 0x82

client/src/ledger_app_clients/ethereum/trusted_name.py

@@ -0,0 +1,121 @@
+import struct
+from enum import IntEnum
+
+from .keychain import Key, sign_data
+from .tlv import TlvSerializable
+
+
+class TrustedNameType(IntEnum):
+    ACCOUNT = 0x01
+    CONTRACT = 0x02
+    NFT = 0x03
+    TOKEN = 0x04
+    WALLET = 0x05
+    CONTEXT_ADDRESS = 0x06
+
+
+class TrustedNameSource(IntEnum):
+    LAB = 0x00
+    CAL = 0x01
+    ENS = 0x02
+    UD = 0x03
+    FN = 0x04
+    DNS = 0x05
+    DYN_RESOLVER = 0x06
+    MULTISIG_ADDRESS_BOOK = 0x07
+
+
+class Tag(IntEnum):
+    STRUCT_TYPE = 0x01
+    STRUCT_VERSION = 0x02
+    NOT_VALID_AFTER = 0x10
+    CHALLENGE = 0x12
+    SIG_KEY_ID = 0x13
+    SIG_ALGO = 0x14
+    SIGNATURE = 0x15
+    NAME = 0x20
+    COIN_TYPE = 0x21
+    ADDRESS = 0x22
+    CHAIN_ID = 0x23
+    TYPE = 0x70
+    SOURCE = 0x71
+    NFT_ID = 0x72
+    OWNER = 0x74
+
+
+class TrustedName(TlvSerializable):
+    struct_version: int
+    coin_type: int | None
+    not_valid_after: tuple[int, int, int] | None
+    tn_type: TrustedNameType | None
+    tn_source: TrustedNameSource | None
+    name: str
+    chain_id: int | None
+    address: bytes
+    challenge: bytes | None
+    nft_id: int | None
+    owner: bytes | None
+
+    def __init__(
+        self,
+        version: int,
+        address: bytes,
+        name: str,
+        coin_type: int | None = None,
+        not_valid_after: tuple[int, int, int] | None = None,
+        challenge: bytes | None = None,
+        tn_type: TrustedNameType | None = None,
+        tn_source: TrustedNameSource | None = None,
+        chain_id: int | None = None,
+        nft_id: int | None = None,
+        owner: bytes | None = None,
+        signature: bytes | None = None,
+    ) -> None:
+        self.version = version
+        self.coin_type = coin_type
+        self.not_valid_after = not_valid_after
+        self.tn_type = tn_type
+        self.tn_source = tn_source
+        self.name = name
+        self.chain_id = chain_id
+        self.address = address
+        self.challenge = challenge
+        self.owner = owner
+        self.nft_id = nft_id
+        self.signature = signature
+
+    def serialize(self) -> bytes:
+        payload = bytearray()
+        payload += self.serialize_field(Tag.STRUCT_TYPE, 0x03)
+        payload += self.serialize_field(Tag.STRUCT_VERSION, self.version)
+        if self.coin_type is not None:
+            payload += self.serialize_field(Tag.COIN_TYPE, self.coin_type)
+        if self.not_valid_after is not None:
+            payload += self.serialize_field(Tag.NOT_VALID_AFTER, struct.pack("BBB", *self.not_valid_after))
+        if self.tn_type is not None:
+            payload += self.serialize_field(Tag.TYPE, self.tn_type)
+        if self.tn_source is not None:
+            payload += self.serialize_field(Tag.SOURCE, self.tn_source)
+        payload += self.serialize_field(Tag.NAME, self.name)
+        if self.chain_id is not None:
+            payload += self.serialize_field(Tag.CHAIN_ID, self.chain_id)
+        payload += self.serialize_field(Tag.ADDRESS, self.address)
+        if self.challenge is not None:
+            payload += self.serialize_field(Tag.CHALLENGE, self.challenge)
+        if self.nft_id is not None:
+            payload += self.serialize_field(Tag.NFT_ID, self.nft_id)
+        if self.owner is not None:
+            payload += self.serialize_field(Tag.OWNER, self.owner)
+        sig = self.signature
+        if self.tn_source == TrustedNameSource.CAL:
+            key_id = 9
+            key = Key.CAL
+        else:
+            key_id = 7
+            key = Key.TRUSTED_NAME
+        payload += self.serialize_field(Tag.SIG_KEY_ID, key_id)
+        payload += self.serialize_field(Tag.SIG_ALGO, 1)
+        if sig is None:
+            sig = sign_data(key, payload)
+        payload += self.serialize_field(Tag.SIGNATURE, sig)
+        return payload

client/src/ledger_app_clients/ethereum/utils.py

@@ -7,6 +7,10 @@
 import rlp
 
 
+class CoinType(IntEnum):
+    ETH = 0x3c
+
+
 class TxType(IntEnum):
     TRANSACTION = 0x00
     TYPED_DATA = 0x01

doc/ethapp.adoc

@@ -1236,19 +1236,19 @@ _Input data_
 ##### If P1 == first chunk
 
 [width="80%"]
-|==========================================
-| *Description*         | *Length (byte)*
-| Payload length        | 2
-| TLV payload           | variable
-|==========================================
+|=========================================================================
+| *Description*                                         | *Length (byte)*
+| Payload length                                        | 2
+| link:tlv_structs.md#trusted_name[TRUSTED_NAME struct] | variable
+|=========================================================================
 
 ##### If P1 == following chunk
 
 [width="80%"]
-|==========================================
-| *Description*         | *Length (byte)*
-| TLV payload           | variable
-|==========================================
+|=========================================================================
+| *Description*                                         | *Length (byte)*
+| link:tlv_structs.md#trusted_name[TRUSTED_NAME struct] | variable
+|=========================================================================
 
 _Output data_
 

doc/tlv_structs.md

@@ -1,5 +1,25 @@
 # TLV structures
 
+## TRUSTED_NAME
+
+| Name            | Tag  | Payload type    | Description                     | Optional |
+|-----------------|------|-----------------|---------------------------------|----------|
+| STRUCT_TYPE     | 0x01 | uint8           | structure type (0x03)           |          |
+| STRUCT_VERSION  | 0x02 | uint8           | structure version (currently 2) |          |
+| NOT_VALID_AFTER | 0x10 | uint8[3]        | app version (major,minor,patch) | x        |
+| CHALLENGE       | 0x12 | uint32          |                                 | x        |
+| SIG_KEY_ID      | 0x13 | uint8           |                                 | x        |
+| SIG_ALGO        | 0x14 | uint8           |                                 | x        |
+| SIGNATURE       | 0x15 | uint8[]         |                                 | x        |
+| NAME            | 0x20 | char[]          | what to substitute with         |          |
+| COIN_TYPE       | 0x21 | uint8           | as defined in SLIP-44           | x        |
+| ADDRESS         | 0x22 | uint8[20]       | address to substitute           |          |
+| CHAIN_ID        | 0x23 | uint64          |                                 | x        |
+| TYPE            | 0x70 | uint8           |                                 | x        |
+| SOURCE          | 0x71 | uint8           |                                 | x        |
+| NFT_ID          | 0x72 | uint256         |                                 | x        |
+| OWNER           | 0x74 | uint8[20]       |                                 | x        |
+
 ## TRANSACTION_INFO
 
 | Name               | Tag  | Payload type | Description                                          | Optional | Source / value                                             |

src/features/getPublicKey/getPublicKey.c

@@ -24,22 +24,22 @@ uint16_t get_public_key_string(bip32_path_t *bip32,
 
 uint16_t get_public_key(uint8_t *out, uint8_t outLength) {
     uint8_t raw_pubkey[65];
-    cx_err_t error = CX_INTERNAL_ERROR;
+    cx_err_t error;
 
     if (outLength < ADDRESS_LENGTH) {
         return SWO_WRONG_DATA_LENGTH;
     }
-    CX_CHECK(bip32_derive_get_pubkey_256(CX_CURVE_256K1,
-                                         tmpCtx.transactionContext.bip32.path,
-                                         tmpCtx.transactionContext.bip32.length,
-                                         raw_pubkey,
-                                         NULL,
-                                         CX_SHA512));
-
+    if ((error = bip32_derive_get_pubkey_256(CX_CURVE_256K1,
+                                             tmpCtx.transactionContext.bip32.path,
+                                             tmpCtx.transactionContext.bip32.length,
+                                             raw_pubkey,
+                                             NULL,
+                                             CX_SHA512)) != CX_OK) {
+        PRINTF("Error: could not derive pubkey!\n");
+        return error;
+    }
     getEthAddressFromRawKey(raw_pubkey, out);
-    error = SWO_SUCCESS;
-end:
-    return error;
+    return SWO_SUCCESS;
 }
 
 uint32_t set_result_get_publicKey() {