add schema parser and merkle proof

Author: abenso

.github/workflows/codeql.yml

@@ -17,7 +17,7 @@ jobs:
     if: github.event.repository.private == false
     strategy:
       matrix:
-        sdk: ["$NANOS_SDK", "$NANOX_SDK", "$NANOSP_SDK", "$STAX_SDK", "$FLEX_SDK"]
+        sdk: ["$NANOX_SDK", "$NANOSP_SDK", "$STAX_SDK", "$FLEX_SDK"]
     container:
       image: ghcr.io/ledgerhq/ledger-app-builder/ledger-app-builder-legacy:latest
 

.github/workflows/main.yml

@@ -24,7 +24,18 @@ jobs:
     with:
       upload_app_binaries_artifact: "compiled_app_binaries"
 
-
+  cpp_tests:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          submodules: true
+      - name: Install deps
+        run: |
+          sudo update-alternatives --install /usr/bin/python python /usr/bin/python3 10
+          make deps
+      - run: make cpp_test
 
   build:
     runs-on: ${{ github.repository_owner == 'zondax' && 'zondax-runners' || 'ubuntu-latest' }}

.gitmodules

@@ -7,3 +7,6 @@
 [submodule "deps/ledger-secure-sdk"]
 	path = deps/ledger-secure-sdk
 	url = https://github.com/LedgerHQ/ledger-secure-sdk.git
+[submodule "js"]
+	path = js
+	url = https://github.com/Zondax/ledger-sovereign-js.git

CMakeLists.txt

@@ -138,6 +138,15 @@ file(GLOB_RECURSE LIB_SRC
         ${CMAKE_CURRENT_SOURCE_DIR}/app/src/parser.c
         ${CMAKE_CURRENT_SOURCE_DIR}/app/src/parser_impl.c
         ${CMAKE_CURRENT_SOURCE_DIR}/app/src/crypto_helper.c
+        ${CMAKE_CURRENT_SOURCE_DIR}/app/src/schema_reader.c
+        ${CMAKE_CURRENT_SOURCE_DIR}/app/src/borsh.c
+        ${CMAKE_CURRENT_SOURCE_DIR}/app/src/schema_proof.c
+        ${CMAKE_CURRENT_SOURCE_DIR}/app/src/schema_helper.c
+        ${CMAKE_CURRENT_SOURCE_DIR}/app/src/schema_txn_parser.c
+        ${CMAKE_CURRENT_SOURCE_DIR}/app/src/ui_item_manager.c
+        ${CMAKE_CURRENT_SOURCE_DIR}/app/src/ui_item_buffer.c
+        ${CMAKE_CURRENT_SOURCE_DIR}/app/src/stack_manager.c
+        ${CMAKE_CURRENT_SOURCE_DIR}/app/src/render.c
         )
 
 add_library(app_lib STATIC ${LIB_SRC})
@@ -147,6 +156,8 @@ target_include_directories(app_lib PUBLIC
         ${CMAKE_CURRENT_SOURCE_DIR}/app/src
         ${CMAKE_CURRENT_SOURCE_DIR}/app/src/lib
         ${CMAKE_CURRENT_SOURCE_DIR}/app/src/common
+        ${CMAKE_CURRENT_SOURCE_DIR}/app/src/txdefs
+        ${CMAKE_CURRENT_SOURCE_DIR}/app/src/modules
         ${CMAKE_CURRENT_SOURCE_DIR}/deps/picohash
         )
 

Makefile

@@ -18,8 +18,8 @@
 # BOLOS_SDK IS  DEFINED	 	We use the plain Makefile for Ledger
 # BOLOS_SDK NOT DEFINED		We use a containerized build approach
 
-TESTS_JS_PACKAGE = "@zondax/ledger-sovereign"
-TESTS_JS_DIR = $(CURDIR)/../ledger-sovereign-js
+# TESTS_JS_PACKAGE = "@zondax/ledger-sovereign"
+# TESTS_JS_DIR = $(CURDIR)/../ledger-sovereign-js
 
 ifeq ($(BOLOS_SDK),)
 # In this case, there is not predefined SDK and we run dockerized

app/Makefile

@@ -76,6 +76,7 @@ VARIANT_PARAM=COIN
 VARIANT_VALUES=$(COIN)
 
 INCLUDES_PATH += $(CURDIR)/src/common
+INCLUDES_PATH += $(BOLOS_SDK)/lib_cxng/src
 
 ########################################
 # Application communication interfaces #

app/src/borsh.c

@@ -0,0 +1,120 @@
+/*******************************************************************************
+ *   (c) 2018 - 2025 Zondax AG
+ *
+ *  Licensed under the Apache License, Version 2.0 (the "License");
+ *  you may not use this file except in compliance with the License.
+ *  You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ *  Unless required by applicable law or agreed to in writing, software
+ *  distributed under the License is distributed on an "AS IS" BASIS,
+ *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *  See the License for the specific language governing permissions and
+ *  limitations under the License.
+ ********************************************************************************/
+#include "bech32.h"
+#include "crypto_helper.h"
+#include "parser_impl.h"
+#include "zxformat.h"
+
+// void print_buffer(bytes_t *buffer, const char *title) {
+// #if defined(LEDGER_SPECIFIC)
+//     ZEMU_LOGF(50, "%s\n", title);
+//     char print[1000] = {0};
+//     array_to_hexstr(print, sizeof(print), buffer->ptr, buffer->len);
+//     ZEMU_LOGF(1000, "%s\n", print);
+// #else
+//     printf("%s %d: ", title, buffer->len);
+//     for (uint16_t i = 0; i < buffer->len; i++) {
+//         printf("%02x", buffer->ptr[i]);
+//     }
+//     printf("\n");
+// #endif
+// }
+
+// void print_buffer_u8(bytes_t *buffer, const char *title) {
+// #if defined(LEDGER_SPECIFIC)
+//     ZEMU_LOGF(50, "%s\n", title);
+//     char print[1000] = {0};
+//     array_to_hexstr(print, sizeof(print), buffer->ptr, buffer->len);
+//     ZEMU_LOGF(1000, "%s\n", print);
+// #else
+//     printf("%s %d: [", title, buffer->len);
+//     for (uint16_t i = 0; i < buffer->len; i++) {
+//         printf("%d, ", buffer->ptr[i]);
+//     }
+//     printf("]\n");
+// #endif
+// }
+
+// void print_buffer_str(bytes_t *buffer, const char *title) {
+// #if defined(LEDGER_SPECIFIC)
+//     ZEMU_LOGF(50, "%s\n", title);
+//     char print[1000] = {0};
+//     array_to_hexstr(print, sizeof(print), buffer->ptr, buffer->len);
+//     ZEMU_LOGF(1000, "%s\n", print);
+// #else
+//     uint8_t buff[1000] = {0};
+//     memcpy(buff, buffer->ptr, buffer->len);
+//     printf("%s %s\n", title, buff);
+// #endif
+// }
+
+void print_string(const char *str) {
+#if defined(LEDGER_SPECIFIC)
+    char print[1000] = {0};
+    MEMCPY(print, str, strlen(str));
+    ZEMU_LOGF(100, "%s\n", str);
+#else
+    printf("%s\n", str);
+#endif
+}
+
+// void print_string_title(const char *str, const char *title) {
+// #if defined(LEDGER_SPECIFIC)
+//     ZEMU_LOGF(100, "%s: %s\n", title, str);
+// #else
+//     printf("%s: %s\n", title, str);
+// #endif
+// }
+
+// void print_u8(const char *str, uint8_t val) {
+// #if defined(LEDGER_SPECIFIC)
+//     ZEMU_LOGF(100, "%s: %d\n", str, val);
+// #else
+//     printf("%s: %d\n", str, val);
+// #endif
+// }
+
+// void print_u16(const char *str, uint16_t val) {
+// #if defined(LEDGER_SPECIFIC)
+//     ZEMU_LOGF(100, "%s: %d\n", str, val);
+// #else
+//     printf("%s: %d\n", str, val);
+// #endif
+// }
+
+// void print_u32(const char *str, uint32_t val) {
+// #if defined(LEDGER_SPECIFIC)
+//     ZEMU_LOGF(100, "%s: %d\n", str, val);
+// #else
+//     printf("%s: %u\n", str, val);
+// #endif
+// }
+
+// void print_u64(const char *str, uint64_t val) {
+// #if defined(LEDGER_SPECIFIC)
+//     ZEMU_LOGF(100, "%s: %lu\n", str, val);
+// #else
+//     printf("%s: %llu\n", str, val);
+// #endif
+// }
+
+// void print_u64_hex(const char *str, uint64_t val) {
+// #if defined(LEDGER_SPECIFIC)
+//     ZEMU_LOGF(100, "%s: %lu\n", str, val);
+// #else
+//     printf("%s: 0x%llx\n", str, val);
+// #endif
+// }

app/src/borsh.h

@@ -0,0 +1,63 @@
+/*******************************************************************************
+ *   (c) 2018 - 2025 Zondax AG
+ *
+ *  Licensed under the Apache License, Version 2.0 (the "License");
+ *  you may not use this file except in compliance with the License.
+ *  You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ *  Unless required by applicable law or agreed to in writing, software
+ *  distributed under the License is distributed on an "AS IS" BASIS,
+ *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *  See the License for the specific language governing permissions and
+ *  limitations under the License.
+ ********************************************************************************/
+
+#pragma once
+
+#ifdef __cplusplus
+extern "C" {
+#endif
+
+#include <sigutils.h>
+#include <stdbool.h>
+
+#include "parser_impl.h"
+
+#define OFFSET_U8 1
+#define OFFSET_U16 2
+#define OFFSET_U32 4
+#define OFFSET_U64 8
+
+#define DEFINE_READ_UINT(bits)                                                              \
+    static inline parser_error_t read_u##bits(parser_context_t *ctx, uint##bits##_t *val) { \
+        CHECK_INPUT(ctx);                                                                   \
+        CHECK_INPUT(val);                                                                   \
+        *val = *(uint##bits##_t *)(ctx->buffer.ptr + ctx->offset);                          \
+        CTX_CHECK_AND_ADVANCE(ctx, OFFSET_U##bits);                                         \
+        return parser_ok;                                                                   \
+    }
+
+DEFINE_READ_UINT(8)
+DEFINE_READ_UINT(16)
+DEFINE_READ_UINT(32)
+DEFINE_READ_UINT(64)
+
+#undef DEFINE_READ_UINT
+
+// TODO: Remove these functions
+// void print_buffer(bytes_t *buffer, const char *title);
+// void print_buffer_str(bytes_t *buffer, const char *title);
+// void print_buffer_u8(bytes_t *buffer, const char *title);
+void print_string(const char *str);
+// void print_string_title(const char *str, const char *title);
+// void print_u8(const char *str, uint8_t val);
+// void print_u16(const char *str, uint16_t val);
+// void print_u32(const char *str, uint32_t val);
+// void print_u64(const char *str, uint64_t val);
+// void print_u64_hex(const char *str, uint64_t val);
+
+#ifdef __cplusplus
+}
+#endif

app/src/common/parser_common.h

@@ -44,6 +44,9 @@ typedef enum {
     parser_unexpected_type,
     parser_unexpected_method,
     parser_unexpected_buffer_end,
+    parser_encoding_failed,
+    parser_invalid_crypto_settings,
+    parser_ledger_api_error,
     parser_unexpected_value,
     parser_unexpected_number_items,
     parser_unexpected_version,
@@ -54,15 +57,29 @@ typedef enum {
     parser_invalid_address,
     parser_unexpected_chain,
     parser_missing_field,
-    paser_unknown_transaction,
-} parser_error_t;
+    parser_unknown_transaction,
+    parser_running_out_of_stack,
+    parser_root_type_indices_overflow,
+    parser_unexpected_root_hash,
+    parser_unexpected_chain_hash,
+    parser_schema_index_not_found,
+    parser_scheme_discriminant_overflow,
+    parser_name_registry_not_found,
+    parser_too_many_items,
+    parser_push_item_too_long,
+
+    // parser specific
+    parser_schema_unknown_type,
+    parser_schema_parser_txn_failed,
+    parser_schema_merkle_proofs_indices_mismatch,
 
-typedef struct {
-    const uint8_t *buffer;
-    uint16_t bufferLen;
-    uint16_t offset;
-    parser_tx_t *tx_obj;
-} parser_context_t;
+    // ui specific
+    parser_ui_item_title_empty,
+    parser_ui_separator_not_found,
+    parser_ui_buffer_not_initialized,
+    parser_ui_buffer_init_failed,
+    parser_ui_buffer_too_small,
+} parser_error_t;
 
 #ifdef __cplusplus
 }

app/src/crypto_helper.c

@@ -19,12 +19,42 @@
 #include "zxformat.h"
 #if defined(LEDGER_SPECIFIC)
 #include "cx.h"
+#include "cx_sha256.h"
+cx_sha256_t ctx;
 #else
 #include "picohash.h"
-#define CX_SHA256_SIZE 32
+picohash_ctx_t ctx;
 #endif
 
-zxerr_t crypto_computeSha256(uint8_t *output, uint16_t outputLen, const uint8_t *input, uint16_t inputLen) {
+zxerr_t crypto_sha256_init() {
+#if defined(LEDGER_SPECIFIC)
+    memset(&ctx, 0, sizeof(ctx));
+    cx_sha256_init_no_throw(&ctx);
+#else
+    picohash_init_sha256(&ctx);
+#endif
+    return zxerr_ok;
+}
+
+zxerr_t crypto_sha256_update(const uint8_t *input, uint16_t inputLen) {
+#if defined(LEDGER_SPECIFIC)
+    CHECK_CX_OK(cx_sha256_update(&ctx, input, inputLen));
+#else
+    picohash_update(&ctx, input, inputLen);
+#endif
+    return zxerr_ok;
+}
+
+zxerr_t crypto_sha256_final(uint8_t *output) {
+#if defined(LEDGER_SPECIFIC)
+    CHECK_CX_OK(cx_sha256_final(&ctx, output));
+#else
+    picohash_final(&ctx, output);
+#endif
+    return zxerr_ok;
+}
+
+zxerr_t crypto_sha256_one_shot(uint8_t *output, uint16_t outputLen, const uint8_t *input, uint16_t inputLen) {
     if (output == NULL || outputLen == 0 || input == NULL) {
         return zxerr_invalid_crypto_settings;
     }
@@ -35,14 +65,10 @@ zxerr_t crypto_computeSha256(uint8_t *output, uint16_t outputLen, const uint8_t
 
     MEMZERO(output, outputLen);
 
-#if defined(LEDGER_SPECIFIC)
-    cx_hash_sha256(input, inputLen, output, outputLen);
-#else
-    picohash_ctx_t ctx;
-    picohash_init_sha256(&ctx);
-    picohash_update(&ctx, input, inputLen);
-    picohash_final(&ctx, output);
-#endif
+    CHECK_ZXERR(crypto_sha256_init());
+    CHECK_ZXERR(crypto_sha256_update(input, inputLen));
+    CHECK_ZXERR(crypto_sha256_final(output));
+
     return zxerr_ok;
 }
 
@@ -59,7 +85,7 @@ zxerr_t crypto_computeAddress(uint8_t *address, uint16_t addressLen, const uint8
     MEMZERO(address, addressLen);
 
     uint8_t sha[PK_LEN_25519] = {0};
-    CHECK_ZXERR(crypto_computeSha256(sha, sizeof(sha), pubkey, PK_LEN_25519));
+    CHECK_ZXERR(crypto_sha256_one_shot(sha, sizeof(sha), pubkey, PK_LEN_25519));
     CHECK_ZXERR(
         bech32EncodeFromBytes((char *)address, ADDRESS_MAX_LENGTH, HRP, sha, PUBKEY_SHA_LEN, 1, BECH32_ENCODING_BECH32M));