src_features/signMessage/cmd_signMessage.c

#include <stdbool.h>
#include <ctype.h>
#include <string.h>
#include "apdu_constants.h"
#include "sign_message.h"
#include "common_ui.h"

static uint8_t processed_size;
static struct {
    sign_message_state sign_state : 1;
    bool ui_started : 1;
} states;

static const char SIGN_MAGIC[] =
    "\x19"
    "Ethereum Signed Message:\n";

/**
 * Send a response APDU with the given Status Word
 *
 * @param[in] sw status word
 */
static void apdu_reply(uint16_t sw) {
    if ((sw != APDU_RESPONSE_OK) && states.ui_started) {
        ui_idle();
    }
    G_io_apdu_buffer[0] = (sw >> 8) & 0xff;
    G_io_apdu_buffer[1] = sw & 0xff;
    io_exchange(CHANNEL_APDU | IO_RETURN_AFTER_TX, 2);
}

/**
 * Get unprocessed data from last received APDU
 *
 * @return pointer to data in APDU buffer
 */
static const uint8_t *unprocessed_data(void) {
    return &G_io_apdu_buffer[OFFSET_CDATA] + processed_size;
}

/**
 * Get size of unprocessed data from last received APDU
 *
 * @return size of data in bytes
 */
static size_t unprocessed_length(void) {
    return G_io_apdu_buffer[OFFSET_LC] - processed_size;
}

/**
 * Get used space from UI buffer
 *
 * @return size in bytes
 */
static size_t ui_buffer_length(void) {
    return strlen(UI_191_BUFFER);
}

/**
 * Get remaining space from UI buffer
 *
 * @return size in bytes
 */
static size_t remaining_ui_buffer_length(void) {
    // -1 for the ending NULL byte
    return (sizeof(UI_191_BUFFER) - 1) - ui_buffer_length();
}

/**
 * Get free space from UI buffer
 *
 * @return pointer to the free space
 */
static char *remaining_ui_buffer(void) {
    return &UI_191_BUFFER[ui_buffer_length()];
}

/**
 * Reset the UI buffer
 *
 * Simply sets its first byte to a NULL character
 */
static void reset_ui_buffer(void) {
    UI_191_BUFFER[0] = '\0';
}

/**
 * Handle the data specific to the first APDU of an EIP-191 signature
 *
 * @param[in] data the APDU payload
 * @param[in] length the payload size
 * @return pointer to the start of the start of the message; \ref NULL if it failed
 */
static const uint8_t *first_apdu_data(const uint8_t *data, uint8_t *length) {
    if (appState != APP_STATE_IDLE) {
        apdu_reply(APDU_RESPONSE_CONDITION_NOT_SATISFIED);
    }
    appState = APP_STATE_SIGNING_MESSAGE;
    data = parseBip32(data, length, &tmpCtx.messageSigningContext.bip32);
    if (data == NULL) {
        apdu_reply(APDU_RESPONSE_INVALID_DATA);
        return NULL;
    }

    if (*length < sizeof(uint32_t)) {
        PRINTF("Invalid data\n");
        apdu_reply(APDU_RESPONSE_INVALID_DATA);
        return NULL;
    }

    tmpCtx.messageSigningContext.remainingLength = U4BE(data, 0);
    data += sizeof(uint32_t);
    *length -= sizeof(uint32_t);

    // Initialize message header + length
    cx_keccak_init(&global_sha3, 256);
    cx_hash((cx_hash_t *) &global_sha3, 0, (uint8_t *) SIGN_MAGIC, sizeof(SIGN_MAGIC) - 1, NULL, 0);
    snprintf(strings.tmp.tmp2,
             sizeof(strings.tmp.tmp2),
             "%u",
             tmpCtx.messageSigningContext.remainingLength);
    cx_hash((cx_hash_t *) &global_sha3,
            0,
            (uint8_t *) strings.tmp.tmp2,
            strlen(strings.tmp.tmp2),
            NULL,
            0);
    reset_ui_buffer();
    states.sign_state = STATE_191_HASH_DISPLAY;
    states.ui_started = false;
    return data;
}

/**
 * Feed the progressive hash with new data
 *
 * @param[in] data the new data
 * @param[in] length the data length
 * @return whether it was successful or not
 */
static bool feed_hash(const uint8_t *const data, const uint8_t length) {
    if (length > tmpCtx.messageSigningContext.remainingLength) {
        PRINTF("Error: Length mismatch ! (%u > %u)!\n",
               length,
               tmpCtx.messageSigningContext.remainingLength);
        apdu_reply(APDU_RESPONSE_INVALID_DATA);
        return false;
    }
    cx_hash((cx_hash_t *) &global_sha3, 0, data, length, NULL, 0);
    if ((tmpCtx.messageSigningContext.remainingLength -= length) == 0) {
        // Finalize hash
        cx_hash((cx_hash_t *) &global_sha3,
                CX_LAST,
                NULL,
                0,
                tmpCtx.messageSigningContext.hash,
                32);
    }
    return true;
}

/**
 * Feed the UI with new data
 */
static void feed_display(void) {
    int c;

    while ((unprocessed_length() > 0) && (remaining_ui_buffer_length() > 0)) {
        c = *(char *) unprocessed_data();
        if (isspace(c))  // to replace all white-space characters as spaces
        {
            c = ' ';
        }
        if (isprint(c)) {
            sprintf(remaining_ui_buffer(), "%c", (char) c);
            processed_size += 1;
        } else {
            if (remaining_ui_buffer_length() >= 4)  // 4 being the fixed length of \x00
            {
                snprintf(remaining_ui_buffer(), remaining_ui_buffer_length(), "\\x%02x", c);
                processed_size += 1;
            } else {
                // fill the rest of the UI buffer spaces, to consider the buffer full
                memset(remaining_ui_buffer(), ' ', remaining_ui_buffer_length());
            }
        }
    }

    if ((remaining_ui_buffer_length() == 0) ||
        (tmpCtx.messageSigningContext.remainingLength == 0)) {
        if (!states.ui_started) {
            ui_191_start();
            states.ui_started = true;
        } else {
            ui_191_switch_to_message();
        }
    }

    if ((unprocessed_length() == 0) && (tmpCtx.messageSigningContext.remainingLength > 0)) {
        apdu_reply(APDU_RESPONSE_OK);
    }
}

/**
 * EIP-191 APDU handler
 *
 * @param[in] p1 instruction parameter 1
 * @param[in] p2 instruction parameter 2
 * @param[in] payload received data
 * @param[in] length data length
 * @return whether the handling of the APDU was successful or not
 */
bool handleSignPersonalMessage(uint8_t p1,
                               uint8_t p2,
                               const uint8_t *const payload,
                               uint8_t length) {
    const uint8_t *data = payload;

    (void) p2;
    processed_size = 0;
    if (p1 == P1_FIRST) {
        if ((data = first_apdu_data(data, &length)) == NULL) {
            return false;
        }
        processed_size = data - payload;
    } else if (p1 != P1_MORE) {
        PRINTF("Error: Unexpected P1 (%u)!\n", p1);
        apdu_reply(APDU_RESPONSE_INVALID_P1_P2);
        return false;
    } else if (appState != APP_STATE_SIGNING_MESSAGE) {
        PRINTF("Error: App not already in signing state!\n");
        apdu_reply(APDU_RESPONSE_INVALID_DATA);
        return false;
    }

    if (!feed_hash(data, length)) {
        return false;
    }

    if (states.sign_state == STATE_191_HASH_DISPLAY) {
        feed_display();
    } else  // hash only
    {
        if (tmpCtx.messageSigningContext.remainingLength == 0) {
#ifdef NO_CONSENT
            io_seproxyhal_touch_signMessage_ok();
#else
            ui_191_switch_to_sign();
#endif
        } else {
            apdu_reply(APDU_RESPONSE_OK);
        }
    }
    return true;
}

/**
 * Decide whether to show the question to show more of the message or not
 */
void question_switcher(void) {
    if ((states.sign_state == STATE_191_HASH_DISPLAY) &&
        ((tmpCtx.messageSigningContext.remainingLength > 0) || (unprocessed_length() > 0))) {
        ui_191_switch_to_question();
    } else {
        // Go to Sign / Cancel
        ui_191_switch_to_sign();
    }
}

/**
 * The user has decided to skip the rest of the message
 */
void skip_rest_of_message(void) {
    states.sign_state = STATE_191_HASH_ONLY;
    if (tmpCtx.messageSigningContext.remainingLength > 0) {
        apdu_reply(APDU_RESPONSE_OK);
    } else {
        ui_191_switch_to_sign();
    }
}

/**
 * The user has decided to see the next chunk of the message
 */
void continue_displaying_message(void) {
    reset_ui_buffer();
    if (unprocessed_length() > 0) {
        feed_display();
    }
}
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`#include <stdbool.h>`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`#include <ctype.h>`
Removed unused header includes from EIP-191 2022-09-09 17:23:24 +02:00			`#include <string.h>`
Merge Starkware branch 2020-06-27 13:24:04 +02:00			`#include "apdu_constants.h"`
New implementation 2022-09-02 14:22:11 +02:00			`#include "sign_message.h"`
eth: split ux from rest of source 2022-08-24 09:25:01 +02:00			`#include "common_ui.h"`
Merge Starkware branch 2020-06-27 13:24:04 +02:00
New implementation 2022-09-02 14:22:11 +02:00			`static uint8_t processed_size;`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`static struct {`
Minimize the RAM used by EIP-191 global variables 2022-09-08 10:21:58 +02:00			`sign_message_state sign_state : 1;`
			`bool ui_started : 1;`
			`} states;`
Merge Starkware branch 2020-06-27 13:24:04 +02:00
Fix compilation warnings (#159) * Fix easy warnings for sdk 2.0 * Add attribute unused to bagl_elemt_t in callback functions * Add attribute unused to io_event function * Clang-format * Use elfs from CI in tests (#167) * Add Nano X build * Use CI's build artifacts for CI's tests * Add network display (#152) * Add network name display instead of chainID * Add display of correct ticker along with network * Add FTM * Clang-format * Add comment in python script * Rename SIZE_MAX to MAX_SIZE * Change %u to %d in printf * Remove needless PIC * Update comment about get_chain_id() * Update example script to follow EIP155 * Remove unused PIC calls * Add whitespace between ticker and amount when using EIP155 * Remove decimal config per network, set back 18 everywhere * Adapt u32_from_BE to swith cases * Remove chainid from signTx.py * Switch to switch in stead of if in get_chain_id * Revert "Remove chainid from signTx.py" This reverts commit 454e09f280ec3e3ec1c7d7cc0027247ef4390088. * Change Ethereum chainid to 1 * Rename chainid_step to network_step * Adapt finalizeParsing to new chainid for Ethereum * Update snapshots * clang-format * Fix network display logic for clones * Fix tests * Add clone tests Co-authored-by: TamtamHero <10632523+TamtamHero@users.noreply.github.com> Co-authored-by: Jean P <10632523+TamtamHero@users.noreply.github.com> 2021-07-05 11:01:51 +02:00			`static const char SIGN_MAGIC[] =`
Apply clang-format 2020-12-01 16:20:13 +01:00			`"\x19"`
			`"Ethereum Signed Message:\n";`
Merge Starkware branch 2020-06-27 13:24:04 +02:00
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`/**`
Reimplement the status words for EIP-191 error cases without throwing 2022-09-15 13:26:11 +02:00			`* Send a response APDU with the given Status Word`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`*`
Reimplement the status words for EIP-191 error cases without throwing 2022-09-15 13:26:11 +02:00			`* @param[in] sw status word`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`*/`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`static void apdu_reply(uint16_t sw) {`
Better context checks when processing EIP-191 APDUs 2023-02-09 11:44:21 +01:00			`if ((sw != APDU_RESPONSE_OK) && states.ui_started) {`
			`ui_idle();`
			`}`
Minor fixes after review 2022-09-16 14:43:51 +02:00			`G_io_apdu_buffer[0] = (sw >> 8) & 0xff;`
			`G_io_apdu_buffer[1] = sw & 0xff;`
Reimplement the status words for EIP-191 error cases without throwing 2022-09-15 13:26:11 +02:00			`io_exchange(CHANNEL_APDU \| IO_RETURN_AFTER_TX, 2);`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`}`

			`/**`
Doxygen comments 2022-09-15 11:45:05 +02:00			`* Get unprocessed data from last received APDU`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`*`
Doxygen comments 2022-09-15 11:45:05 +02:00			`* @return pointer to data in APDU buffer`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`*/`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`static const uint8_t *unprocessed_data(void) {`
New implementation 2022-09-02 14:22:11 +02:00			`return &G_io_apdu_buffer[OFFSET_CDATA] + processed_size;`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`}`

			`/**`
Doxygen comments 2022-09-15 11:45:05 +02:00			`* Get size of unprocessed data from last received APDU`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`*`
Doxygen comments 2022-09-15 11:45:05 +02:00			`* @return size of data in bytes`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`*/`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`static size_t unprocessed_length(void) {`
New implementation 2022-09-02 14:22:11 +02:00			`return G_io_apdu_buffer[OFFSET_LC] - processed_size;`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`}`

Eip191 review (#314) * Avoid using a global for is_ascii * Fix unused var, missing init, and use size_t for length * Use snprintf where possible 2022-06-10 09:45:12 +02:00			`/**`
Doxygen comments 2022-09-15 11:45:05 +02:00			`* Get used space from UI buffer`
			`*`
			`* @return size in bytes`
Eip191 review (#314) * Avoid using a global for is_ascii * Fix unused var, missing init, and use size_t for length * Use snprintf where possible 2022-06-10 09:45:12 +02:00			`*/`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`static size_t ui_buffer_length(void) {`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`return strlen(UI_191_BUFFER);`
Eip191 review (#314) * Avoid using a global for is_ascii * Fix unused var, missing init, and use size_t for length * Use snprintf where possible 2022-06-10 09:45:12 +02:00			`}`

EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`/**`
Doxygen comments 2022-09-15 11:45:05 +02:00			`* Get remaining space from UI buffer`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`*`
Doxygen comments 2022-09-15 11:45:05 +02:00			`* @return size in bytes`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`*/`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`static size_t remaining_ui_buffer_length(void) {`
New implementation 2022-09-02 14:22:11 +02:00			`// -1 for the ending NULL byte`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`return (sizeof(UI_191_BUFFER) - 1) - ui_buffer_length();`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`}`

Doxygen comments 2022-09-15 11:45:05 +02:00			`/**`
			`* Get free space from UI buffer`
			`*`
			`* @return pointer to the free space`
			`*/`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`static char *remaining_ui_buffer(void) {`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`return &UI_191_BUFFER[ui_buffer_length()];`
			`}`
Fix multiple vulnerabilities 2022-07-08 11:12:50 +02:00
Doxygen comments 2022-09-15 11:45:05 +02:00			`/**`
			`* Reset the UI buffer`
			`*`
			`* Simply sets its first byte to a NULL character`
			`*/`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`static void reset_ui_buffer(void) {`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`UI_191_BUFFER[0] = '\0';`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00			`}`
Fix multiple vulnerabilities 2022-07-08 11:12:50 +02:00
Doxygen comments 2022-09-15 11:45:05 +02:00			`/**`
			`* Handle the data specific to the first APDU of an EIP-191 signature`
			`*`
			`* @param[in] data the APDU payload`
			`* @param[in] length the payload size`
			`* @return pointer to the start of the start of the message; \ref NULL if it failed`
			`*/`
Merge remote-tracking branch 'origin/develop' into HEAD 2022-10-17 11:44:28 +02:00			`static const uint8_t first_apdu_data(const uint8_t data, uint8_t *length) {`
New implementation 2022-09-02 14:22:11 +02:00			`if (appState != APP_STATE_IDLE) {`
Better context checks when processing EIP-191 APDUs 2023-02-09 11:44:21 +01:00			`apdu_reply(APDU_RESPONSE_CONDITION_NOT_SATISFIED);`
New implementation 2022-09-02 14:22:11 +02:00			`}`
			`appState = APP_STATE_SIGNING_MESSAGE;`
			`data = parseBip32(data, length, &tmpCtx.messageSigningContext.bip32);`
			`if (data == NULL) {`
Better context checks when processing EIP-191 APDUs 2023-02-09 11:44:21 +01:00			`apdu_reply(APDU_RESPONSE_INVALID_DATA);`
New implementation 2022-09-02 14:22:11 +02:00			`return NULL;`
			`}`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00
New implementation 2022-09-02 14:22:11 +02:00			`if (*length < sizeof(uint32_t)) {`
			`PRINTF("Invalid data\n");`
Better context checks when processing EIP-191 APDUs 2023-02-09 11:44:21 +01:00			`apdu_reply(APDU_RESPONSE_INVALID_DATA);`
New implementation 2022-09-02 14:22:11 +02:00			`return NULL;`
			`}`
Fix multiple vulnerabilities 2022-07-08 11:12:50 +02:00
New implementation 2022-09-02 14:22:11 +02:00			`tmpCtx.messageSigningContext.remainingLength = U4BE(data, 0);`
			`data += sizeof(uint32_t);`
			`*length -= sizeof(uint32_t);`
Fix multiple vulnerabilities 2022-07-08 11:12:50 +02:00
New implementation 2022-09-02 14:22:11 +02:00			`// Initialize message header + length`
			`cx_keccak_init(&global_sha3, 256);`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`cx_hash((cx_hash_t ) &global_sha3, 0, (uint8_t ) SIGN_MAGIC, sizeof(SIGN_MAGIC) - 1, NULL, 0);`
New implementation 2022-09-02 14:22:11 +02:00			`snprintf(strings.tmp.tmp2,`
			`sizeof(strings.tmp.tmp2),`
			`"%u",`
			`tmpCtx.messageSigningContext.remainingLength);`
			`cx_hash((cx_hash_t *) &global_sha3,`
			`0,`
			`(uint8_t *) strings.tmp.tmp2,`
			`strlen(strings.tmp.tmp2),`
			`NULL,`
			`0);`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`reset_ui_buffer();`
Minimize the RAM used by EIP-191 global variables 2022-09-08 10:21:58 +02:00			`states.sign_state = STATE_191_HASH_DISPLAY;`
			`states.ui_started = false;`
New implementation 2022-09-02 14:22:11 +02:00			`return data;`
			`}`
Fix multiple vulnerabilities 2022-07-08 11:12:50 +02:00
Doxygen comments 2022-09-15 11:45:05 +02:00			`/**`
			`* Feed the progressive hash with new data`
			`*`
			`* @param[in] data the new data`
			`* @param[in] length the data length`
			`* @return whether it was successful or not`
			`*/`
Minor fixes after review 2022-09-16 14:43:51 +02:00			`static bool feed_hash(const uint8_t *const data, const uint8_t length) {`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`if (length > tmpCtx.messageSigningContext.remainingLength) {`
New implementation 2022-09-02 14:22:11 +02:00			`PRINTF("Error: Length mismatch ! (%u > %u)!\n",`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`length,`
			`tmpCtx.messageSigningContext.remainingLength);`
Better context checks when processing EIP-191 APDUs 2023-02-09 11:44:21 +01:00			`apdu_reply(APDU_RESPONSE_INVALID_DATA);`
New implementation 2022-09-02 14:22:11 +02:00			`return false;`
			`}`
			`cx_hash((cx_hash_t *) &global_sha3, 0, data, length, NULL, 0);`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`if ((tmpCtx.messageSigningContext.remainingLength -= length) == 0) {`
New implementation 2022-09-02 14:22:11 +02:00			`// Finalize hash`
Apply clang-format 2020-12-01 16:20:13 +01:00			`cx_hash((cx_hash_t *) &global_sha3,`
New implementation 2022-09-02 14:22:11 +02:00			`CX_LAST,`
Apply clang-format 2020-12-01 16:20:13 +01:00			`NULL,`
New implementation 2022-09-02 14:22:11 +02:00			`0,`
			`tmpCtx.messageSigningContext.hash,`
			`32);`
			`}`
			`return true;`
			`}`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00
Doxygen comments 2022-09-15 11:45:05 +02:00			`/**`
			`* Feed the UI with new data`
			`*/`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`static void feed_display(void) {`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`int c;`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`while ((unprocessed_length() > 0) && (remaining_ui_buffer_length() > 0)) {`
			`c = (char ) unprocessed_data();`
			`if (isspace(c)) // to replace all white-space characters as spaces`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`{`
			`c = ' ';`
			`}`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`if (isprint(c)) {`
			`sprintf(remaining_ui_buffer(), "%c", (char) c);`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`processed_size += 1;`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`} else {`
			`if (remaining_ui_buffer_length() >= 4) // 4 being the fixed length of \x00`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`{`
			`snprintf(remaining_ui_buffer(), remaining_ui_buffer_length(), "\\x%02x", c);`
			`processed_size += 1;`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`} else {`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`// fill the rest of the UI buffer spaces, to consider the buffer full`
Downgrade to make the app fit on LNS 2022-09-15 16:32:26 +02:00			`memset(remaining_ui_buffer(), ' ', remaining_ui_buffer_length());`
Handling of EIP191 non ASCII messages 2022-09-08 10:20:44 +02:00			`}`
			`}`
Remove trailing whitespaces 2020-10-07 16:56:40 +02:00			`}`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`if ((remaining_ui_buffer_length() == 0) \|\|`
			`(tmpCtx.messageSigningContext.remainingLength == 0)) {`
			`if (!states.ui_started) {`
Better separation between EIP-191 UI & business logic 2022-09-08 18:41:49 +02:00			`ui_191_start();`
Minimize the RAM used by EIP-191 global variables 2022-09-08 10:21:58 +02:00			`states.ui_started = true;`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`} else {`
Better separation between EIP-191 UI & business logic 2022-09-08 18:41:49 +02:00			`ui_191_switch_to_message();`
New implementation 2022-09-02 14:22:11 +02:00			`}`
Merge Starkware branch 2020-06-27 13:24:04 +02:00			`}`
New implementation 2022-09-02 14:22:11 +02:00
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`if ((unprocessed_length() == 0) && (tmpCtx.messageSigningContext.remainingLength > 0)) {`
Better context checks when processing EIP-191 APDUs 2023-02-09 11:44:21 +01:00			`apdu_reply(APDU_RESPONSE_OK);`
Apply clang-format 2020-12-01 16:20:13 +01:00			`}`
New implementation 2022-09-02 14:22:11 +02:00			`}`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00
Doxygen comments 2022-09-15 11:45:05 +02:00			`/**`
			`* EIP-191 APDU handler`
			`*`
			`* @param[in] p1 instruction parameter 1`
			`* @param[in] p2 instruction parameter 2`
			`* @param[in] payload received data`
			`* @param[in] length data length`
			`* @return whether the handling of the APDU was successful or not`
			`*/`
New implementation 2022-09-02 14:22:11 +02:00			`bool handleSignPersonalMessage(uint8_t p1,`
			`uint8_t p2,`
			`const uint8_t *const payload,`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`uint8_t length) {`
New implementation 2022-09-02 14:22:11 +02:00			`const uint8_t *data = payload;`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`(void) p2;`
New implementation 2022-09-02 14:22:11 +02:00			`processed_size = 0;`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`if (p1 == P1_FIRST) {`
Merge remote-tracking branch 'origin/develop' into HEAD 2022-10-17 11:44:28 +02:00			`if ((data = first_apdu_data(data, &length)) == NULL) {`
New implementation 2022-09-02 14:22:11 +02:00			`return false;`
			`}`
			`processed_size = data - payload;`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`} else if (p1 != P1_MORE) {`
New implementation 2022-09-02 14:22:11 +02:00			`PRINTF("Error: Unexpected P1 (%u)!\n", p1);`
Better context checks when processing EIP-191 APDUs 2023-02-09 11:44:21 +01:00			`apdu_reply(APDU_RESPONSE_INVALID_P1_P2);`
			`return false;`
			`} else if (appState != APP_STATE_SIGNING_MESSAGE) {`
			`PRINTF("Error: App not already in signing state!\n");`
			`apdu_reply(APDU_RESPONSE_INVALID_DATA);`
Reimplement the status words for EIP-191 error cases without throwing 2022-09-15 13:26:11 +02:00			`return false;`
Apply clang-format 2020-12-01 16:20:13 +01:00			`}`
EIP-191 clear signing 2022-05-23 16:39:24 +02:00
Merge remote-tracking branch 'origin/develop' into HEAD 2022-10-17 11:44:28 +02:00			`if (!feed_hash(data, length)) {`
New implementation 2022-09-02 14:22:11 +02:00			`return false;`
			`}`
Merge Starkware branch 2020-06-27 13:24:04 +02:00
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`if (states.sign_state == STATE_191_HASH_DISPLAY) {`
New implementation 2022-09-02 14:22:11 +02:00			`feed_display();`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`} else // hash only`
New implementation 2022-09-02 14:22:11 +02:00			`{`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`if (tmpCtx.messageSigningContext.remainingLength == 0) {`
Merge Starkware branch 2020-06-27 13:24:04 +02:00			`#ifdef NO_CONSENT`
Better separation between EIP-191 UI & business logic 2022-09-08 18:41:49 +02:00			`io_seproxyhal_touch_signMessage_ok();`
			`#else`
			`ui_191_switch_to_sign();`
			`#endif`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`} else {`
Better context checks when processing EIP-191 APDUs 2023-02-09 11:44:21 +01:00			`apdu_reply(APDU_RESPONSE_OK);`
New implementation 2022-09-02 14:22:11 +02:00			`}`
			`}`
			`return true;`
			`}`
Merge Starkware branch 2020-06-27 13:24:04 +02:00
Better separation between EIP-191 UI & business logic 2022-09-08 18:41:49 +02:00			`/**`
			`* Decide whether to show the question to show more of the message or not`
			`*/`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`void question_switcher(void) {`
			`if ((states.sign_state == STATE_191_HASH_DISPLAY) &&`
			`((tmpCtx.messageSigningContext.remainingLength > 0) \|\| (unprocessed_length() > 0))) {`
Better separation between EIP-191 UI & business logic 2022-09-08 18:41:49 +02:00			`ui_191_switch_to_question();`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`} else {`
Better separation between EIP-191 UI & business logic 2022-09-08 18:41:49 +02:00			`// Go to Sign / Cancel`
			`ui_191_switch_to_sign();`
New implementation 2022-09-02 14:22:11 +02:00			`}`
			`}`
Merge Starkware branch 2020-06-27 13:24:04 +02:00
Better separation between EIP-191 UI & business logic 2022-09-08 18:41:49 +02:00			`/**`
			`* The user has decided to skip the rest of the message`
			`*/`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`void skip_rest_of_message(void) {`
Minimize the RAM used by EIP-191 global variables 2022-09-08 10:21:58 +02:00			`states.sign_state = STATE_191_HASH_ONLY;`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`if (tmpCtx.messageSigningContext.remainingLength > 0) {`
Better context checks when processing EIP-191 APDUs 2023-02-09 11:44:21 +01:00			`apdu_reply(APDU_RESPONSE_OK);`
Apply clang-format 2020-12-01 16:20:13 +01:00			`} else {`
Better separation between EIP-191 UI & business logic 2022-09-08 18:41:49 +02:00			`ui_191_switch_to_sign();`
Fix skip issue 2022-09-06 09:41:16 +02:00			`}`
New implementation 2022-09-02 14:22:11 +02:00			`}`
Merge Starkware branch 2020-06-27 13:24:04 +02:00
Better separation between EIP-191 UI & business logic 2022-09-08 18:41:49 +02:00			`/**`
			`* The user has decided to see the next chunk of the message`
			`*/`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`void continue_displaying_message(void) {`
Better separation between EIP-191 UI & business logic 2022-09-08 18:41:49 +02:00			`reset_ui_buffer();`
Linting + updated to clang-format 12.0.1 2022-09-15 16:29:45 +02:00			`if (unprocessed_length() > 0) {`
Better separation between EIP-191 UI & business logic 2022-09-08 18:41:49 +02:00			`feed_display();`
Apply clang-format 2020-12-01 16:20:13 +01:00			`}`
Merge Starkware branch 2020-06-27 13:24:04 +02:00			`}`