coldcard/firmware
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
new_edge
firmware/shared/usb.py
scgbckbone 52ae9f96cd stxn USB cmd miniscript name lenght
2025-11-03 22:46:28 +01:00

1093 lines
37 KiB
Python
Raw Permalink Blame History

# (c) Copyright 2018 by Coinkite Inc. This file is covered by license found in COPYING-CC.
#
# usb.py - USB related things
#
import ckcc, pyb, callgate, sys, ux, ngu, stash, aes256ctr, ujson
from uasyncio import sleep_ms, core
from uhashlib import sha256
from public_constants import MAX_MSG_LEN, MAX_BLK_LEN
from public_constants import STXN_FLAGS_MASK
from ustruct import pack, unpack_from
from ckcc import watchpoint, is_simulator
from utils import problem_file_line, call_later_ms
from version import supports_hsm, is_devmode, MAX_TXN_LEN, MAX_UPLOAD_LEN
from exceptions import FramingError, CCBusyError, HSMDenied, HSMCMDDisabled, SpendPolicyViolation
from pincodes import pa
# Unofficial, unpermissioned... numbers
COINKITE_VID = 0xd13e
CKCC_PID = 0xcc10
# Based on the U2F descriptor:
# see <https://fidoalliance.org/specs/fido-u2f-v1.0-ps-20141009/fido-u2f-hid-protocol-ps-20141009.html>
# however, we don't want to be detected as a U2F device, because we
# don't support that protocol, and we don't want web browsers and such
# trying to speak U2F/HID/USB protocol at us. This descriptor is just to
# keep the HID class drivers happy, we will detect based on VID/PID.
#
hid_descp = bytes([
0x06, 0xcc, 0x10, # USAGE_PAGE (CC10 = Coldcard v1.0)
0x09, 0x01, # USAGE (0x01)
0xa1, 0x01, # COLLECTION (Application)
0x09, 0x20, # USAGE (Input Report Data)
0x15, 0x00, # LOGICAL_MINIMUM (0)
0x26, 0xff, 0x00, # LOGICAL_MAXIMUM (255)
0x75, 0x08, # REPORT_SIZE (8)
0x95, 0x40, # REPORT_COUNT (64)
0x81, 0x02, # INPUT (Data,Var,Abs)
0x09, 0x21, # USAGE (Output Report Data)
0x15, 0x00, # LOGICAL_MINIMUM (0)
0x26, 0xff, 0x00, # LOGICAL_MAXIMUM (255)
0x75, 0x08, # REPORT_SIZE (8)
0x95, 0x40, # REPORT_COUNT (64)
0x91, 0x02, # OUTPUT (Data,Var,Abs)
0xc0, # END_COLLECTION
])
# Only these whitelisted USB commands are allowed once we enter HSM mode.
# NOTE: 'robo' here would allow firmware changes during HSM mode!
HSM_WHITELIST = frozenset({
'logo', 'ping', 'vers', # harmless/boring
'upld', 'sha2', 'dwld', 'stxn', # up/download/sign PSBT needed
'mitm', 'ncry', # maybe limited by policy tho
'smsg', # limited by policy
'blkc', 'hsts', # report status values
'stok', 'smok', # completion check: sign txn or msg
'xpub', # quick status checks
'show', 'msas', # limited by HSM policy
'user', # auth HSM user, other user cmds not allowed
'gslr', # read storage locker; hsm mode only, limited usage
})
# HSM related commands that are not allowed if 'hsmcmd' is disabled.
HSM_DISABLE_CMDS = frozenset({
"user",
"rmur",
"nwur",
"gslr",
"hsts",
"hsms",
})
# spending policy active: blacklist some commands
# - 'pass' may be allowed if 'okeys' is enabled
HOBBLED_CMDS = frozenset({
'enrl', # no new multisigs during policy enforcement
'back', # no backups
'bagi', 'dfu_', # just in case
"user", # same as HSM_DISABLE_CMDS
"rmur",
"nwur",
"gslr",
"hsts",
"hsms",
})
# singleton instance of USBHandler()
handler = None
def enable_keyboard_emulation():
if is_simulator():
enable_usb()
else:
# real device
pyb.usb_mode('VCP+HID', hid=pyb.hid_keyboard)
global handler
if not handler:
handler = USBHandler()
def enable_usb():
# We can't change it on the fly; must be disabled before here
# - only one combo of subclasses can be used during a single power-up cycle
cur = pyb.usb_mode()
if cur:
print("USB already enabled: %s" % cur)
else:
# subclass, protocol, max packet length, polling interval, report descriptor
hid_info = (0x0, 0x0, 64, 5, hid_descp)
classes = 'VCP+MSC+HID'
pyb.usb_mode(classes, vid=COINKITE_VID, pid=CKCC_PID, hid=hid_info)
global handler
if not handler:
handler = USBHandler()
from imptask import IMPT
if "USB" not in IMPT.tasks:
IMPT.start_task('USB', handler.usb_hid_recv())
def disable_usb():
from imptask import IMPT
task_usb = IMPT.tasks.pop("USB", None)
if task_usb:
task_usb.cancel()
# pull the plug
pyb.usb_mode(None)
def is_vcp_active():
# VCP = Virtual Comm Port
en = ckcc.vcp_enabled(None)
cur = pyb.usb_mode()
return cur and ('VCP' in cur) and en
def get_miniscript_by_name(name_bytes):
from wallet import MiniScriptWallet
for w in MiniScriptWallet.iter_wallets():
if w.name == str(name_bytes, 'ascii'):
return True, w
else:
return False, b'err_Miniscript wallet not found'
class USBHandler:
def __init__(self):
self.dev = pyb.USB_HID()
# We keep a running hash over whatever has been uploaded
# - reset at offset zero, can be read back anytime
self.file_checksum = sha256()
self.is_fw_upgrade = False
# handle simulator
self.blockable = getattr(self.dev, 'pipe', self.dev)
self.msg = bytearray(2048+12)
assert len(self.msg) == MAX_MSG_LEN
self.encrypted_req = False
# not bound to a specific crypto setup by default
self.bound = False
# these will be objects later
self.encrypt = None
self.decrypt = None
def get_packet(self):
# read next packet (64 bytes) waiting on the wire. Unframe it and return
# active part of packet, flags associated.
buf = self.dev.recv(64, timeout=5000)
ckcc.usb_active()
if not buf:
raise FramingError('timeout')
elif len(buf) < 64:
raise FramingError('short')
elif len(buf) > 64:
raise FramingError('long')
# first byte gives us the actual size, status
# all illegal combos here may become special messages someday
flag = buf[0]
is_last = bool(flag & 0x80)
len_here = int(flag & 0x3f)
is_encrypted = bool(flag & 0x40)
return buf[1:1+len_here], is_last, is_encrypted
async def usb_hid_recv(self):
# blocks and builds up a full-length command packet in memory
# - calls self.handle() once complete msg on hand
msg_len = 0
while 1:
success = False
yield core._io_queue.queue_read(self.blockable)
try:
here, is_last, is_encrypted = self.get_packet()
#print('Rx[%d]' % len(here))
if here:
lh = len(here)
if msg_len+lh > MAX_MSG_LEN:
raise FramingError('xlong')
self.msg[msg_len:msg_len + lh] = here
msg_len += lh
else:
# treat zero-length packets as a reset request
# do not echo anything back on link.. used to resync connection
msg_len = 0
continue
if not is_last:
# need more content
continue
if not(4 <= msg_len <= MAX_MSG_LEN):
raise FramingError('badsz')
if not is_encrypted and self.bound:
raise FramingError('must encrypt')
if is_encrypted:
if self.decrypt is None:
raise FramingError('no key')
self.encrypted_req = True
self.decrypt_inplace(msg_len)
else:
self.encrypted_req = False
# process request
try:
# this saves memory over a simple slice (confirmed)
args = memoryview(self.msg)[4:msg_len]
resp = await self.handle(self.msg[0:4], args)
success = True
except CCBusyError:
# auth UX is doing something else
resp = b'busy'
except SpendPolicyViolation:
resp = b'err_Spending policy in effect'
except HSMDenied:
resp = b'err_Not allowed in HSM mode'
except HSMCMDDisabled:
# do NOT change below error msg as other applications depend on it
resp = b'err_HSM commands disabled'
msg_len = 0
except (ValueError, AssertionError) as exc:
# some limited invalid args feedback
#print("USB request caused assert: ", end='')
# sys.print_exception(exc)
msg = str(exc)
if not msg:
msg = 'Assertion ' + problem_file_line(exc)
resp = b'err_' + msg.encode()[0:80]
except MemoryError:
# prefer to catch at higher layers, but sometimes can't
resp = b'err_Out of RAM'
except FramingError as exc:
raise exc
except Exception as exc:
# catch bugs and fuzzing too
if is_simulator() or is_devmode:
print("USB request caused this: ", end='')
sys.print_exception(exc)
resp = b'err_Confused ' + problem_file_line(exc)
if not success:
# do not let the progress screen hang on "Receiving..."
from ux import restore_menu
restore_menu()
msg_len = 0
# always send a reply if they get this far
await self.send_response(resp)
except FramingError as exc:
reason = exc.args[0]
# print("Framing: %s" % reason)
await self.framing_error(reason)
msg_len = 0
except BaseException as exc:
# recover from general issues/keep going
#print("USB!")
#sys.print_exception(exc)
msg_len = 0
def decrypt_inplace(self, msg_len):
# self.msg is encrypted. decode it in place
# - seems dangerous to use memview here, but works
# - some memory alloc still happens here tho
self.msg[0:msg_len] = self.decrypt(memoryview(self.msg)[0:msg_len])
def encrypt_response(self, msg):
# encrypt what we'll send to desktop
return self.encrypt(msg)
async def send_response(self, resp):
# send a python object as the response
# - we know how to encode a few things, or send binary
# - sadly we cannot stream here because we cannot subclass streams
# - cannot reuse rx buffer either!
# handle simple types here
if isinstance(resp, (bytes, bytearray)):
# preformated
assert len(resp) >= 4
elif resp is None:
resp = b'okay'
elif isinstance(resp, int):
resp = pack('<4sI', 'int1', resp)
else:
#print("Unknown resp: " + repr(resp))
raise NotImplementedError()
assert len(resp) >= 4
msg = bytearray(64)
if self.encrypt and self.encrypted_req:
resp = self.encrypt_response(resp)
final_flag = 0x80 | 0x40
else:
final_flag = 0x80
pos = 0
left = len(resp)
while left:
# sent up to 63 bytes per packet
here = min(left, 63)
msg[0] = here
msg[1:1+here] = resp[pos:pos+here]
if here == left:
# no more to come
assert 0 <= here < 64
msg[0] |= final_flag
left -= here
pos += here
ckcc.usb_active()
for retries in range(100):
chk = self.dev.send(msg)
if chk == 64: break
# Host may not have read previous value yet, so might need
# to wait for it. Data loss possible here, but also the
# host may stop reading the EP forever, so not our fault.
# Let other stuff run during this delay.
await sleep_ms(10)
async def framing_error(self, why):
# send error about framing, and recover
resp = b'fram' + why.encode()
await self.send_response(resp)
async def handle(self, cmd, args):
# Dispatch incoming message, and provide reply.
from glob import hsm_active, settings
try:
cmd = bytes(cmd).decode()
except:
raise FramingError('decode')
if is_devmode and cmd[0].isupper():
# special hacky commands to support testing w/ the simulator
try:
from usb_test_commands import do_usb_command
return do_usb_command(cmd, args)
except:
pass
if hsm_active:
# only a few commands are allowed during HSM mode
if cmd not in HSM_WHITELIST:
raise HSMDenied
if pa.hobbled_mode:
# block some commands when we are hobbled.
if cmd in HOBBLED_CMDS:
raise SpendPolicyViolation
if cmd in {'pwok', 'pass'}:
from ccc import sssp_spending_policy
if not sssp_spending_policy('okeys'):
raise SpendPolicyViolation
elif not settings.get('hsmcmd', False):
# block these HSM-related command if not using feature
if cmd in HSM_DISABLE_CMDS:
raise HSMCMDDisabled
if cmd == 'dfu_':
# only useful in factory, undocumented.
return self.call_after(callgate.enter_dfu)
if cmd == 'rebo':
from auth import UserAuthorizedAction, FirmwareUpgradeRequest
import machine
req = UserAuthorizedAction.active_request
if req and isinstance(req, FirmwareUpgradeRequest):
# We're waiting on firmware upgrade approval, so don't reboot
# (which would not apply the upgrade anyway) and also don't
# give an error, because ckcc-protocol and other clients
# send the reboot as part of the old upgrade process.
return
return self.call_after(machine.reset)
if cmd == 'logo':
from utils import clean_shutdown
return self.call_after(clean_shutdown)
if cmd == 'ping':
return b'biny' + args
if cmd == 'upld':
offset, total_size = unpack_from('<II', args)
data = memoryview(args)[4+4:]
return await self.handle_upload(offset, total_size, data)
if cmd == 'dwld':
offset, length, fileno = unpack_from('<III', args)
return await self.handle_download(offset, length, fileno)
if cmd == 'ncry':
version, his_pubkey = unpack_from('<I64s', args)
return self.handle_crypto_setup(version, his_pubkey)
if cmd == 'vers':
from version import get_mpy_version, hw_label
from callgate import get_bl_version
# Returning: date, version(human), bootloader version, full date version
# BUT: be ready for additions!
rv = list(get_mpy_version())
rv.insert(2, get_bl_version()[0])
rv.append(hw_label)
return b'asci' + ('\n'.join(rv)).encode()
if cmd == 'sha2':
return b'biny' + self.file_checksum.digest()
if cmd == 'xpub':
assert self.encrypted_req, 'must encrypt'
return self.handle_xpub(args)
if cmd == 'mitm':
assert self.encrypted_req, 'must encrypt'
return await self.handle_mitm_check()
if cmd == 'smsg':
# sign message
addr_fmt, len_subpath, len_msg = unpack_from('<III', args)
subpath = args[12:12+len_subpath]
msg = args[12+len_subpath:]
assert len(msg) == len_msg, "badlen"
from auth import sign_msg
sign_msg(msg, subpath, addr_fmt)
return None
if cmd == 'show':
# simple cases, older code: text subpath
from auth import usb_show_address
addr_fmt, = unpack_from('<I', args)
# regression patch of AFC_BECH32M flag
# fixed here https://github.com/Coldcard/ckcc-protocol/commit/a6d901f9fca50755835eca895586ca74d0ca81ed
if addr_fmt == 0x17: # old P2TR
addr_fmt = 0x23 # new P2TR
return b'asci' + usb_show_address(addr_fmt, subpath=args[4:])
if cmd == 'enrl':
# Enroll new xpubkey to be involved in multisigs.
# - text config file must already be uploaded
file_len, file_sha = unpack_from('<I32s', args)
if file_sha != self.file_checksum.digest():
return b'err_Checksum'
assert 100 < file_len <= (32*200), "badlen"
# Start an UX interaction, return immediately here
from auth import maybe_enroll_xpub
maybe_enroll_xpub(sf_len=file_len, ux_reset=True)
return None
if cmd == 'mins':
# Enroll new xpubkey to be involved in miniscript.
# - descriptor text config file must already be uploaded
file_len, file_sha = unpack_from('<I32s', args)
if file_sha != self.file_checksum.digest():
return b'err_Checksum'
assert 100 < file_len <= (100 * 200), "badlen"
# Start an UX interaction, return immediately here
from auth import maybe_enroll_xpub
maybe_enroll_xpub(sf_len=file_len, ux_reset=True)
return None
if cmd.startswith("ms"):
# miniscript related commands
assert self.encrypted_req, 'must encrypt'
if cmd == "msls":
# list all registered miniscript wallet names
from wallet import MiniScriptWallet
wallets = [w.name for w in MiniScriptWallet.iter_wallets()]
return b'asci' + ujson.dumps(wallets)
if cmd == "msas":
# get miniscript address based on int/ext index
if hsm_active and not hsm_active.approve_address_share(miniscript=True):
raise HSMDenied
change, idx, = unpack_from('<II', args)
assert change in (0, 1), "change not bool"
assert 0 <= idx < (2 ** 31), "child idx"
name = args[8:]
assert len(name) <= 32, "name len"
ok, w = get_miniscript_by_name(name)
if not ok:
return w
from auth import start_show_miniscript_address
return b'asci' + start_show_miniscript_address(w, change, idx)
assert len(args) <= 32, "name len"
ok, w = get_miniscript_by_name(args)
if not ok:
return w
if cmd == "msdl":
# delete miniscript wallet by its name (unique id)
from auth import maybe_delete_miniscript
maybe_delete_miniscript(w)
return None
if cmd == "msgt":
# takes name and returns descriptor + name json
# MiniscriptWallet.to_string only fills policy
return b'asci' + ujson.dumps({"name": w.name, "desc": w.to_string()})
if cmd == "mspl":
# takes name and returns BIP-388 Wallet Policy
return b'asci' + ujson.dumps({"name": w.name, "desc_template": w.desc_tmplt,
"keys_info": w.keys_info})
if cmd == 'stxn':
# sign transaction
txn_len, flags, txn_sha = unpack_from('<II32s', args)
if txn_sha != self.file_checksum.digest():
return b'err_Checksum'
assert 50 < txn_len <= MAX_TXN_LEN, "badlen"
# optional miniscript wallet name
try:
name_len = unpack_from('B', args[40:])[0]
name = str(args[41:41 + name_len], "ascii")
assert 1 <= len(name) <= 32, "name len"
except:
name = None
w = None
if name:
ok, w = get_miniscript_by_name(name)
if not ok:
return w
from auth import sign_transaction
sign_transaction(txn_len, (flags & STXN_FLAGS_MASK), txn_sha, miniscript_wallet=w)
return None
if cmd == 'stok' or cmd == 'bkok' or cmd == 'smok' or cmd == 'pwok':
# Have we finished (whatever) the transaction,
# which needed user approval? If so, provide result.
from auth import UserAuthorizedAction
req = UserAuthorizedAction.active_request
if not req:
return b'err_No active request'
if req.refused:
UserAuthorizedAction.cleanup()
return b'refu'
if req.failed:
rv = b'err_' + req.failed.encode()
UserAuthorizedAction.cleanup()
return rv
if not req.result:
# STILL waiting on user
return None
if cmd == 'pwok':
# return new root xpub
xpub = req.result
UserAuthorizedAction.cleanup()
return b'asci' + bytes(xpub, 'ascii')
elif cmd == 'smok':
# signed message done: just give them the signature
addr, sig = req.address, req.result
UserAuthorizedAction.cleanup()
return pack('<4sI', 'smrx', len(addr)) + addr.encode() + sig
else:
# generic file response
resp_len, sha = req.result
UserAuthorizedAction.cleanup()
return pack('<4sI32s', 'strx', resp_len, sha)
if cmd == 'pass':
# bip39 passphrase provided, maybe use it if authorized
assert self.encrypted_req, 'must encrypt'
from auth import start_bip39_passphrase
from glob import settings
assert settings.get("words", True), 'no seed'
assert len(args) < 400, 'too long'
pw = str(args, 'utf8')
assert len(pw), 'too short'
assert len(pw) < 100, 'too long'
return start_bip39_passphrase(pw)
if cmd == 'back':
# start backup: asks user, takes long time.
from auth import start_remote_backup
return start_remote_backup()
if cmd == 'rest':
# restore backup from what is already uploaded in PSRAM
file_len, file_sha, bf = unpack_from('<I32sB', args)
if file_sha != self.file_checksum.digest():
return b'err_Checksum'
from auth import start_remote_restore_backup
return start_remote_restore_backup(file_len, bf)
if cmd == 'blkc':
# report which blockchain we are configured for
from chains import current_chain
chain = current_chain()
return b'asci' + chain.ctype
if cmd == 'bagi':
return self.handle_bag_number(args)
if supports_hsm:
# HSM and user-related features only supported on Mk4
if cmd == 'hsms':
# HSM mode "start" -- requires user approval
if args:
file_len, file_sha = unpack_from('<I32s', args)
if file_sha != self.file_checksum.digest():
return b'err_Checksum'
assert 2 <= file_len <= (200*1000), "badlen"
else:
file_len = 0
# Start an UX interaction but return (mostly) immediately here
from hsm_ux import start_hsm_approval
await start_hsm_approval(sf_len=file_len, usb_mode=True)
return None
if cmd == 'hsts':
# can always query HSM mode
from hsm import hsm_status_report
return b'asci' + ujson.dumps(hsm_status_report())
if cmd == 'gslr':
# get the value held in the Storage Locker
assert hsm_active, 'need hsm'
return b'biny' + hsm_active.fetch_storage_locker()
# User Mgmt
if cmd == 'nwur': # new user
from users import Users
auth_mode, ul, sl = unpack_from('<BBB', args)
username = bytes(args[3:3+ul]).decode('ascii')
secret = bytes(args[3+ul:3+ul+sl])
return b'asci' + Users.create(username, auth_mode, secret).encode('ascii')
if cmd == 'rmur': # delete user
from users import Users
ul, = unpack_from('<B', args)
username = bytes(args[1:1+ul]).decode('ascii')
return Users.delete(username)
if cmd == 'user': # auth user (HSM mode)
from users import Users
totp_time, ul, tl = unpack_from('<IBB', args)
username = bytes(args[6:6+ul]).decode('ascii')
token = bytes(args[6+ul:6+ul+tl])
if hsm_active:
# just queues these details, can't be checked until PSBT on-hand
hsm_active.usb_auth_user(username, token, totp_time)
return None
else:
# dryrun/testing purposes: validate only, doesn't unlock nothing
return b'asci' + Users.auth_okay(username, token, totp_time).encode('ascii')
#print("USB garbage: %s +[%d]" % (cmd, len(args)))
# Force logout if bound and unknown command received
if self.bound:
from utils import clean_shutdown, call_later_ms
call_later_ms(250, clean_shutdown)
return b'err_Unknown cmd'
def call_after(self, func, *args):
# we want to provide nice response before dying
call_later_ms(500, func, *args)
def handle_crypto_setup(self, version, his_pubkey):
# pick a one-time key pair for myself, and return the pubkey for that
# determine what the session key will be for this connection
if version not in [0x1, 0x2]:
raise FramingError('bad ncry version')
assert len(his_pubkey) == 64
if self.bound:
raise FramingError('crypto already set up')
if version == 0x2:
self.bound = True
# pick a random key pair, just for this session
pair = ngu.secp256k1.keypair()
my_pubkey = pair.pubkey().to_bytes(True) # un-compressed
#print('my pubkey = ' + str(b2a_hex(my_pubkey)))
#print('his pubkey = ' + str(b2a_hex(his_pubkey)))
self.session_key = pair.ecdh_multiply(b'\x04' + his_pubkey)
del pair
#print("session = " + str(b2a_hex(self.session_key)))
# Would be nice to have nonce in addition to the counter, but
# harder on the desktop side.
ctr = aes256ctr.new(self.session_key)
self.encrypt = ctr.cipher
self.decrypt = ctr.copy().cipher
from glob import settings
xfp = settings.get('xfp', 0)
xpub = settings.get('xpub', '')
#assert my_pubkey[0] == 0x04
return b'mypb' + my_pubkey[1:] + pack('<II', xfp, len(xpub)) + xpub
async def handle_mitm_check(self):
# Sign the current session key using our master (bitcoin) key.
# - proves our identity and that no-one is between
# Rate limit and fuzz timing in case we have timing sensitivity
await sleep_ms(100 + ngu.random.uniform(100))
with stash.SensitiveValues() as sv:
pk = sv.node.privkey()
sv.register(pk)
signature = ngu.secp256k1.sign(pk, self.session_key, 0).to_bytes()
assert len(signature) == 65
return b'biny' + signature
async def handle_download(self, offset, length, file_number):
# let them read from where we store the signed txn
# - filenumber can be 0 or 1: uploaded txn, or result
# limiting memory use here, should be MAX_BLK_LEN really
length = min(length, MAX_BLK_LEN)
assert 0 <= file_number < 2, 'bad fnum'
assert 0 <= offset <= MAX_TXN_LEN, "bad offset"
assert 1 <= length, 'len'
# maintain a running SHA256 over what's sent
if offset == 0:
self.file_checksum = sha256()
resp = bytearray(4 + length)
resp[0:4] = b'biny'
buf = memoryview(resp)[4:]
pos = (MAX_TXN_LEN * file_number) + offset
from glob import PSRAM
PSRAM.read(pos, buf)
self.file_checksum.update(buf)
return resp
async def handle_upload(self, offset, total_size, data):
from glob import PSRAM
from glob import dis, hsm_active
from utils import check_firmware_hdr
from sigheader import FW_HEADER_OFFSET, FW_HEADER_SIZE, FW_HEADER_MAGIC
# maintain a running SHA256 over what's received
if offset == 0:
self.file_checksum = sha256()
self.is_fw_upgrade = False
dis.fullscreen("Receiving...", 0)
else:
dis.progress_sofar(offset, total_size)
assert offset % 256 == 0, 'alignment'
assert offset+len(data) <= total_size <= MAX_UPLOAD_LEN, 'long'
if hsm_active or pa.hobbled_mode:
# additional restriction in HSM mode or hobbled: must be PSBT
assert offset+len(data) <= total_size <= MAX_TXN_LEN, 'psbt'
if offset == 0:
assert data[0:5] == b'psbt\xff', 'psbt'
self.file_checksum.update(data)
for pos in range(offset, offset+len(data), 256):
# write up to 256 bytes
here = data[pos-offset:pos-offset+256]
# Very special case for firmware upgrades: intercept and modify
# header contents on the fly, and also fail faster if wouldn't work
# on this specific hardware.
# - workaround: ckcc-protocol upgrade process understates the file
# length and appends hdr, but that's kinda a bug, so support both
is_trailer = (pos == (total_size - FW_HEADER_SIZE) or pos == total_size)
if pos == (FW_HEADER_OFFSET & ~255):
hdr = memoryview(here)[-128:]
magic, = unpack_from('<I', hdr[0:4])
if magic == FW_HEADER_MAGIC:
prob = check_firmware_hdr(hdr, total_size)
if prob:
raise ValueError(prob)
self.is_fw_upgrade = bytes(hdr)
assert not pa.tmp_value, "tmp"
if is_trailer and self.is_fw_upgrade:
# expect the trailer to exactly match the original one
assert len(here) == 128 # == FW_HEADER_SIZE
hdr = memoryview(here)[-128:]
assert hdr == self.is_fw_upgrade # indicates hacking
# but don't write it, instead offer user a chance to abort
from auth import authorize_upgrade
authorize_upgrade(self.is_fw_upgrade, pos, psram_offset=0)
# pretend we wrote it, so ckcc-protocol or whatever gives normal feedback
return offset
# write to PSRAM
PSRAM.write(pos, here)
if offset+len(data) >= total_size and not hsm_active:
# probably done
dis.progress_bar_show(1.0)
ux.restore_menu()
return offset
def handle_xpub(self, subpath):
# Share the xpub for the indicated subpath. Expects
# a text string which is the path derivation.
# TODO: might not have a privkey yet
from chains import current_chain
from utils import cleanup_deriv_path
subpath = cleanup_deriv_path(subpath)
from glob import hsm_active
if hsm_active and not hsm_active.approve_xpub_share(subpath):
raise HSMDenied
chain = current_chain()
with stash.SensitiveValues() as sv:
node = sv.derive_path(subpath)
xpub = chain.serialize_public(node)
return b'asci' + xpub.encode()
def handle_bag_number(self, bag_num):
import version, callgate
from glob import dis, settings
if bag_num and version.is_factory_mode and not version.has_qr:
# check state first
assert settings.get('tested', False)
assert pa.is_blank()
assert 8 <= len(bag_num) < 32
# do the change
failed = callgate.set_bag_number(bag_num)
assert not failed
callgate.set_rdp_level(2)
pa.greenlight_firmware()
dis.fullscreen(bytes(bag_num).decode())
self.call_after(callgate.show_logout, 1)
# always report the existing/new value
val = callgate.get_bag_number() or b''
return b'asci' + val
class EmulatedKeyboard:
# be a context manager, used during kbd emulation
# <https://usb.org/sites/default/files/hut1_3_0.pdf> page 88+
char_map = {
"a": 0x04,
"b": 0x05,
"c": 0x06,
"d": 0x07,
"e": 0x08,
"f": 0x09,
"g": 0x0A,
"h": 0x0B,
"i": 0x0C,
"j": 0x0D,
"k": 0x0E,
"l": 0x0F,
"m": 0x10,
"n": 0x11,
"o": 0x12,
"p": 0x13,
"q": 0x14,
"r": 0x15,
"s": 0x16,
"t": 0x17,
"u": 0x18,
"v": 0x19,
"w": 0x1A,
"x": 0x1B,
"y": 0x1C, # qwerty
"z": 0x1D,
# numbers (top row - USA centric)
"1": 0x1e,
"2": 0x1f,
"3": 0x20,
"4": 0x21,
"5": 0x22,
"6": 0x23,
"7": 0x24,
"8": 0x25,
"9": 0x26,
"0": 0x27,
" ": 0x2C, # spacebar
# HACK: Keypad symbols work w/o concern for language, shift state
"/": 0x54,
"*": 0x55,
"-": 0x56,
"+": 0x57,
# Keyboard Enter
"\r": 0x28,
}
def __enter__(self):
return self
async def connect(self):
# can be slow; needs to wait until host has enumerated us
# - does UX for that
# - can fail when host doesn't want to enumerate us, shows msg
# - returns T if problem
from glob import dis
dis.fullscreen("Switching...")
if is_simulator(): return
# if USB was enabled, reset is needed
disable_usb()
enable_keyboard_emulation()
# wait for emeration, with timeout
self.dev = pyb.USB_HID()
# macOS at least: need twice to be sure, maybe more!
all_up = bytes(8) # harmless "all keys are up" keyboard report
fails = 0
for keyups in range(3):
for retry in range(100):
rv = self.dev.send(all_up)
if rv == 8: break
await sleep_ms(5)
else:
fails += 1
if fails < 3:
return False
# if we are connected to a COLDPOWER, for example, this will happen.
from ux import ux_show_story
await ux_show_story("USB Host computer, if any, is not communicating with us.",
title="FAILED")
return True
def __exit__(self, exc_type, exc_val, exc_tb):
# disable keyboard emulation mode (all USB)
from glob import settings
disable_usb()
if not settings.get("du"):
# enable usb only if it was previously enabled, otherwise keep disabled
enable_usb()
@classmethod
def can_type(cls, s):
# do we know how to type all the chars in "s"
# .lower() has no effect on symbols, numbers, and escapes
return all(ch.lower() in cls.char_map for ch in s)
async def send_keystrokes(self, keystroke_string):
from glob import dis
# Send keystrokes to enter a password... only expected to support Base64 charset
if is_simulator():
print("Simulating keystrokes: " + repr(keystroke_string))
return
buf = bytearray(8)
pwd_len = len(keystroke_string)
dis.fullscreen('Typing...')
for i, ch in enumerate(keystroke_string, start=1):
cap = False
to_press = self.char_map.get(ch, None)
if to_press is None:
cap = True
to_press = self.char_map.get(ch.lower(), None)
if to_press is None:
# problem: we don't know how to type this char
to_press = 0x1B # X
buf[2] = to_press
if cap:
# set LEFT SHIFT for capital letters
buf[0] = 0x02
while self.dev.send(buf) == 0:
await sleep_ms(5)
# all keys up
buf[2] = 0x00
buf[0] = 0x00
while self.dev.send(buf) == 0:
await sleep_ms(5)
dis.progress_bar_show(i/pwd_len)
# EOF
Reference in New Issue View Git Blame Copy Permalink