Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Signed Ethereum network and token definitions from host #2410

Merged
merged 19 commits into from Mar 24, 2023
Merged

Signed Ethereum network and token definitions from host #2410

merged 19 commits into from Mar 24, 2023

Conversation

marnova
Copy link

@marnova marnova commented Jul 25, 2022

Enables to send signed Ethereum network and token definitions from host.
Related to #15 (high-level plan described in its comment #15 (comment)).

@marnova marnova self-assigned this Jul 25, 2022
@trezor-ci trezor-ci added this to To be reviewed in Pull Requests via automation Jul 25, 2022
@marnova marnova linked an issue Jul 25, 2022 that may be closed by this pull request
SignTx should contain the signed definition of the used coin/token #15
Closed
matejcik
matejcik reviewed Sep 29, 2022
View reviewed changes
Copy link
Contributor

@matejcik matejcik left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

partial review for now

common/defs/ethereum/eth_builtin_networks.json Outdated Show resolved Hide resolved
common/defs/README.md Outdated Show resolved Hide resolved
common/defs/README.md Outdated Show resolved Hide resolved
common/defs/README.md Outdated Show resolved Hide resolved
common/defs/README.md Outdated Show resolved Hide resolved
python/src/trezorlib/ethereum.py Outdated Show resolved Hide resolved
python/src/trezorlib/ethereum.py Outdated Show resolved Hide resolved
core/tests/test_apps.ethereum.tokens.py Outdated Show resolved Hide resolved
core/tests/test_apps.ethereum.layout.py Outdated Show resolved Hide resolved
common/protob/messages-ethereum.proto Outdated Show resolved Hide resolved
@marnova marnova mentioned this pull request Oct 3, 2022
Closed
@grdddj
Copy link
Contributor

grdddj commented Oct 13, 2022

I have some possibly good news including binary size.

So far we have considered the size of tokens.py and networks.py definitions around 90 KB in total - that is their size connected with src/apps/ethereum/tokens.py and networks,py respectively.

Now I tried to actually remove these two files from the build and got incredible results:

...
.flash2    -8_148  1    L-8_148  D0       mp_qstr_frozen_const_pool
.flash2    -13_068 135  L-10_956 D-2_112  src/apps/ethereum/networks.py                                _networks_iterator()
.flash2    -78_727 2054 L-45_911 D-32_816 src/apps/ethereum/tokens.py                                  token_by_chain_address()
.flash2    -87_716 1    L-87_716 D0       [section .flash2]
SUMMARY: 41 rows, -193_024 bytes in total (L-156_640 D-36_384).

There is that ~90 kb size decrease in src/apps/ethereum, but also other big decrease in mp_qstr_frozen_const_pool and mostly .flash2 section - str1 symbol in particular.

This means that if we can get rid of the most information in them, we are looking at a HUGE size decrease.

Holding the thumbs we can really replace it!

@grdddj
Copy link
Contributor

grdddj commented Oct 13, 2022
edited

I also tried to replace tokens.py with tokens.rs and exposing trezorui2.token_by_chain_address(chain_id: int, address: bytes) - it seems to be around 70 kB (say 45 %) smaller.

We could theoretically try to use this with coininfo.py, could save some kilobytes.

@marnova marnova marked this pull request as ready for review November 24, 2022 13:28
matejcik
matejcik reviewed Nov 30, 2022
View reviewed changes
Copy link
Contributor

@matejcik matejcik left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

legacy part review done.

feel free to rebase before you start working on these changes

legacy/firmware/ethereum_definitions.c Outdated Show resolved Hide resolved
legacy/firmware/ethereum_definitions.c Outdated Show resolved Hide resolved
legacy/firmware/ethereum_definitions.c Outdated Show resolved Hide resolved
legacy/firmware/ethereum_definitions.c Outdated Show resolved Hide resolved
legacy/firmware/ethereum_definitions.c Outdated Show resolved Hide resolved
legacy/firmware/ethereum_networks.c.mako Outdated Show resolved Hide resolved
legacy/firmware/ethereum_definitions.h Outdated Show resolved Hide resolved
legacy/firmware/fsm_msg_ethereum.h Outdated Show resolved Hide resolved
legacy/firmware/fsm_msg_ethereum.h Outdated Show resolved Hide resolved
legacy/firmware/fsm_msg_ethereum.h Outdated Show resolved Hide resolved
@marnova marnova force-pushed the marnova/ethereum_defs_from_host branch from 79f325a to e89e453 Compare December 7, 2022 13:18
This was referenced Dec 13, 2022
Closed
Closed
Merged
@Hannsek Hannsek assigned matejcik and unassigned marnova Feb 3, 2023
@matejcik matejcik force-pushed the marnova/ethereum_defs_from_host branch from 7466199 to 472a04a Compare February 3, 2023 13:56
matejcik
matejcik reviewed Feb 3, 2023
View reviewed changes
Copy link
Contributor

@matejcik matejcik left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I have rebased on master and squashed the commit history somewhat.
Resolved all comments from before, most of them seem to have been resolved, the others we'll find and fix again. Only thing I'm leaving up is the most recent pending review.

common/protob/protocol.md Show resolved Hide resolved
core/.changelog.d/15.removed Outdated Show resolved Hide resolved
core/src/apps/ethereum/definitions.py Show resolved Hide resolved
core/src/apps/ethereum/definitions.py Outdated Show resolved Hide resolved
core/src/apps/ethereum/definitions.py Outdated Show resolved Hide resolved
core/src/apps/ethereum/keychain.py Outdated Show resolved Hide resolved
core/src/apps/ethereum/layout.py Outdated Show resolved Hide resolved
core/tests/test_apps.ethereum.keychain.py Outdated Show resolved Hide resolved
core/tests/test_apps.ethereum.definitions.py Outdated Show resolved Hide resolved
common/defs/README.md Outdated Show resolved Hide resolved
@matejcik matejcik mentioned this pull request Feb 8, 2023
Closed
@matejcik matejcik force-pushed the marnova/ethereum_defs_from_host branch from 472a04a to 17d55cd Compare February 10, 2023 16:04
grdddj
grdddj reviewed Feb 10, 2023
View reviewed changes
common/tools/coin_info.py Outdated Show resolved Hide resolved
grdddj
grdddj reviewed Feb 15, 2023
View reviewed changes
Copy link
Contributor

@grdddj grdddj left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some comments from reviewing core and python changes

core/src/apps/ethereum/definitions.py Show resolved Hide resolved
core/src/apps/ethereum/definitions.py Outdated Show resolved Hide resolved
core/src/apps/ethereum/definitions.py Show resolved Hide resolved
core/src/apps/ethereum/definitions.py Outdated Show resolved Hide resolved
core/src/apps/ethereum/get_public_key.py Show resolved Hide resolved
python/src/trezorlib/ethereum.py Outdated Show resolved Hide resolved
python/src/trezorlib/ethereum.py Outdated Show resolved Hide resolved
python/src/trezorlib/ethereum.py Outdated Show resolved Hide resolved
python/src/trezorlib/ethereum.py Outdated Show resolved Hide resolved
python/tools/eth_defs_unpack.py Outdated Show resolved Hide resolved
@mmilata mmilata mentioned this pull request Mar 2, 2023
Closed
@matejcik matejcik force-pushed the marnova/ethereum_defs_from_host branch from 8c6850c to 0813e48 Compare March 15, 2023 11:42
@matejcik matejcik requested review from mmilata and removed request for prusnak March 15, 2023 13:07
@matejcik
Copy link
Contributor

@mmilata please review mainly, in order of priority:

  • legacy implementation
  • core implementation
  • documentation

device tests are currently broken, that is a known problem

@matejcik matejcik force-pushed the marnova/ethereum_defs_from_host branch from facbadc to d73247c Compare March 16, 2023 15:39
mroz22
mroz22 reviewed Mar 17, 2023
View reviewed changes
docs/common/ethereum-definitions.md
`<TOKEN_ADDRESS>` is all lowercase token address hex without the `0x` prefix.

E.g., this is the URL for Görli TST token:
[https://data.trezor.io/firmware/eth-definitions/chain-id/5/token-7af963cf6d228e564e2a0aa0ddbf06210b38615d.dat]
Copy link
Contributor

@mroz22 mroz22 Mar 17, 2023
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this does not work
https://data.trezor.io/firmware/eth-definitions/chain-id/5/token-7af963cf6d228e564e2a0aa0ddbf06210b38615d.dat

this does
https://data.trezor.io/firmware/eth-definitions/by_chain_id/5/token_7af963cf6d228e564e2a0aa0ddbf06210b38615d.dat

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

expected behavior. also the version on your old-style URL will be rejected by current code in this branch.
i'll try to get the new links up ASAP

@onvej-sl
Copy link
Contributor

By the way, what is the motivation in this case for implementing a k-out-of-n signature using aggregated public keys and aggregated signatures instead of verifying each of k signatures separately?

@matejcik
Copy link
Contributor

By the way, what is the motivation in this case for implementing a k-out-of-n signature using aggregated public keys and aggregated signatures instead of verifying each of k signatures separately?

the main motivation is that CoSi is a thing we know well and we can piggy-back on the same functionality as firmware signing; n.b., it's the only way to sign arbitrary data on Trezor, otherwise we'd need to go with something like T1's SignMessage method.
the other (smaller) reason is space saving, because it's more practical to make the definition blobs as small as possible

matejcik and others added 13 commits March 24, 2023 11:34
@matejcik
refactor(core): delegate EthereumGetPublicKey to bitcoin GetPublicKey
4994ae3
@matejcik
docs(common): how to add new protobuf message
ab6cf72
@matejcik
feat(common): protobuf messages for Ethereum definitions
ee72762
@matejcik
docs: document Ethereum definition binary format
2d1d4f4
@matejcik
feat(common): switch to external Ethereum definitions, add generators
d09e0ad
@matejcik
fix(common): deal with duplicity code leftovers
40e3283 
also fixes #2759
@matejcik
feat(core): external Ethereum definitions
7028552
@matejcik
feat(legacy): support external Ethereum definitions
4571c2e
@matejcik
feat(python): support external Ethereum definitions
202cf0c
@matejcik
feat(core): implement CoSi module and CoSi verification
0ae454b
@matejcik
feat(core): update Ethereum definitions to verify using CoSi
e35b005
@matejcik
feat(legacy): implement CoSi verification
105bace
@matejcik
feat(legacy): update Ethereum definitions to verify using CoSi
9ea9cb5
@matejcik matejcik force-pushed the marnova/ethereum_defs_from_host branch from 4aa7289 to 8609f48 Compare March 24, 2023 10:47
@matejcik
Copy link
Contributor

For now i am leaving the signing format as is and I'd like to merge, unless you disagree @andrewkozlik @onvej-sl ?
If you feel like we should change it, please file an issue and we'll do that separately.

@andrewkozlik
Copy link
Contributor

By the way, what is the motivation in this case for implementing a k-out-of-n signature using aggregated public keys and aggregated signatures instead of verifying each of k signatures separately?

the main motivation is that CoSi is a thing we know well and we can piggy-back on the same functionality as firmware signing; n.b., it's the only way to sign arbitrary data on Trezor, otherwise we'd need to go with something like T1's SignMessage method. the other (smaller) reason is space saving, because it's more practical to make the definition blobs as small as possible

The problem with CoSi is that it's difficult to use correctly. There is the already mentioned rogue public key attack. In addition, the process of combining the "commitments" is also prone to incorrect usage, which can be exploited to leak the private key.

For now i am leaving the signing format as is and I'd like to merge, unless you disagree @andrewkozlik @onvej-sl ?
If you feel like we should change it, please file an issue and we'll do that separately.

Based on @onvej-sl's evaluation, I don't see any obvious problem with not signing the sigmask.

@matejcik
tests: update device_tests for external definitions
2d0c4e8
@matejcik
fix(python/trezorctl): fix colliding option shortcut in ethereum sign-tx
8c77bd4 
fixes #2535
@matejcik
fix(legacy): display very large amounts
7fc4cf5 
Previously, an amount whose decimal representation with suffix does not
fit in buffer would not be rendered at all. This looks weird in
"Send                          to address 0xblabla".

Enlarging the buffer lets the amount be stringified. Then it won't fit
on screen so this is not a perfect fix, but "Send 25000000... to
address" is better than before.
@matejcik
fix(tests): only override left clicks in index custom script
b05115c
@matejcik
fix(legacy): limit EthereumGetPublicKey allowable paths
ccd4bf6
@matejcik
fix(core): remove shutdown()
5300790 
In a very weird situation, our declaration of `shutdown()` shadows a
function `shutdown(int, int)` from sys/socket, which _just happens_ to
be called by libxcb when closing the sdl window. This calls
`main_clean_exit` which calls into micropython and causes at best an
uncaught NLR and at worst an outright segfault because by that time the
micropython environment doesn't exist anymore.

I didn't think this sort of thing would be possible but here we are??

Fixed by removing `__shutdown()` and replacing `shutdown` with
`trezor_shutdown`
@matejcik matejcik force-pushed the marnova/ethereum_defs_from_host branch from 8609f48 to 5300790 Compare March 24, 2023 11:24
@prusnak
Copy link
Member

prusnak commented Mar 24, 2023
edited

By the way, what is the motivation in this case for implementing a k-out-of-n signature using aggregated public keys and aggregated signatures instead of verifying each of k signatures separately?

The main motivation was speed of verification. It is faster to verify just one signature instead of verifying 3 signatures. This is very much pronounced in the original T1 bootloader where it takes around 1 second to verify 3 signatures prolonging the boot time, while TT bootloader phase is "instant" (according to naked eye).

@matejcik matejcik merged commit 9244522 into master Mar 24, 2023
7 checks passed
Pull Requests automation moved this from Finalizing to Merged Mar 24, 2023
@matejcik matejcik deleted the marnova/ethereum_defs_from_host branch March 24, 2023 12:24
@bosomt
Copy link

bosomt commented Apr 18, 2023

QA OK

trezor/trezor-suite#6442 (comment)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@matejcik matejcik matejcik left review comments

@mroz22 mroz22 mroz22 left review comments

@grdddj grdddj grdddj left review comments

@andrewkozlik andrewkozlik andrewkozlik left review comments

@mmilata mmilata mmilata approved these changes

Assignees

@matejcik matejcik

@grdddj grdddj

Labels
None yet
Projects
Firmware
Status: Approved
Pull Requests
Merged
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

SignTx should contain the signed definition of the used coin/token
9 participants
@marnova @grdddj @matejcik @andrewkozlik @onvej-sl @prusnak @bosomt @mmilata @mroz22