src_features/signMessageEIP712/encode_field.c

#ifdef HAVE_EIP712_FULL_SUPPORT

#include <stdlib.h>
#include <string.h>
#include "encode_field.h"
#include "mem.h"
#include "shared_context.h"
#include "apdu_constants.h"  // APDU response codes

typedef enum { MSB, LSB } e_padding_type;

/**
 * Encode a field value to 32 bytes (padded)
 *
 * @param[in] value field value to encode
 * @param[in] length field length before encoding
 * @param[in] ptype padding direction (LSB vs MSB)
 * @param[in] pval value used for padding
 * @return encoded field value
 */
static void *field_encode(const uint8_t *const value,
                          uint8_t length,
                          e_padding_type ptype,
                          uint8_t pval) {
    uint8_t *padded_value;
    uint8_t start_idx;

    if (length > EIP_712_ENCODED_FIELD_LENGTH)  // sanity check
    {
        apdu_response_code = APDU_RESPONSE_INVALID_DATA;
        return NULL;
    }
    if ((padded_value = mem_alloc(EIP_712_ENCODED_FIELD_LENGTH)) != NULL) {
        switch (ptype) {
            case MSB:
                memset(padded_value, pval, EIP_712_ENCODED_FIELD_LENGTH - length);
                start_idx = EIP_712_ENCODED_FIELD_LENGTH - length;
                break;
            case LSB:
                explicit_bzero(padded_value + length, EIP_712_ENCODED_FIELD_LENGTH - length);
                start_idx = 0;
                break;
            default:
                apdu_response_code = APDU_RESPONSE_CONDITION_NOT_SATISFIED;
                return NULL;  // should not be here
        }
        memcpy(&padded_value[start_idx], value, length);
    } else {
        apdu_response_code = APDU_RESPONSE_INSUFFICIENT_MEMORY;
    }
    return padded_value;
}

/**
 * Encode an unsigned integer
 *
 * @param[in] value pointer to the "packed" integer received
 * @param[in] length its byte-length
 * @return the encoded value
 */
void *encode_uint(const uint8_t *const value, uint8_t length) {
    // no length check here since it will be checked by field_encode
    return field_encode(value, length, MSB, 0x00);
}

/**
 * Encode a signed integer
 *
 * @param[in] value pointer to the "packed" integer received
 * @param[in] length its byte-length
 * @param[in] typesize the type size in bytes
 * @return the encoded value
 */
void *encode_int(const uint8_t *const value, uint8_t length, uint8_t typesize) {
    uint8_t padding_value;

    if (length < 1) {
        apdu_response_code = APDU_RESPONSE_INVALID_DATA;
        return NULL;
    }

    if ((length == typesize) && (value[0] & (1 << 7)))  // negative number
    {
        padding_value = 0xFF;
    } else {
        padding_value = 0x00;
    }
    // no length check here since it will be checked by field_encode
    return field_encode(value, length, MSB, padding_value);
}

/**
 * Encode a fixed-size byte array
 *
 * @param[in] value pointer to the "packed" bytes array
 * @param[in] length its byte-length
 * @return the encoded value
 */
void *encode_bytes(const uint8_t *const value, uint8_t length) {
    // no length check here since it will be checked by field_encode
    return field_encode(value, length, LSB, 0x00);
}

/**
 * Encode a boolean
 *
 * @param[in] value pointer to the boolean received
 * @param[in] length its byte-length
 * @return the encoded value
 */
void *encode_boolean(const bool *const value, uint8_t length) {
    if (length != 1)  // sanity check
    {
        apdu_response_code = APDU_RESPONSE_INVALID_DATA;
        return NULL;
    }
    return encode_uint((uint8_t *) value, length);
}

/**
 * Encode an address
 *
 * @param[in] value pointer to the address received
 * @param[in] length its byte-length
 * @return the encoded value
 */
void *encode_address(const uint8_t *const value, uint8_t length) {
    if (length != ADDRESS_LENGTH)  // sanity check
    {
        apdu_response_code = APDU_RESPONSE_INVALID_DATA;
        return NULL;
    }
    return encode_uint(value, length);
}

#endif  // HAVE_EIP712_FULL_SUPPORT
Now only compiles full EIP-712 support for capable devices 2022-05-16 10:59:20 +02:00			`#ifdef HAVE_EIP712_FULL_SUPPORT`

WIP field hashing 2022-05-02 15:30:14 +02:00			`#include <stdlib.h>`
			`#include <string.h>`
			`#include "encode_field.h"`
			`#include "mem.h"`
			`#include "shared_context.h"`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`#include "apdu_constants.h" // APDU response codes`
WIP field hashing 2022-05-02 15:30:14 +02:00
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`typedef enum { MSB, LSB } e_padding_type;`
WIP field hashing 2022-05-02 15:30:14 +02:00
			`/**`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`* Encode a field value to 32 bytes (padded)`
WIP field hashing 2022-05-02 15:30:14 +02:00			`*`
WIP field hashing support 2022-04-14 18:22:35 +02:00			`* @param[in] value field value to encode`
			`* @param[in] length field length before encoding`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`* @param[in] ptype padding direction (LSB vs MSB)`
			`* @param[in] pval value used for padding`
WIP field hashing support 2022-04-14 18:22:35 +02:00			`* @return encoded field value`
WIP field hashing 2022-05-02 15:30:14 +02:00			`*/`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`static void field_encode(const uint8_t const value,`
			`uint8_t length,`
			`e_padding_type ptype,`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`uint8_t pval) {`
WIP field hashing 2022-05-02 15:30:14 +02:00			`uint8_t *padded_value;`
Fix dynamic bytes type encoding 2022-05-02 11:05:25 +02:00			`uint8_t start_idx;`
WIP field hashing 2022-05-02 15:30:14 +02:00
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`if (length > EIP_712_ENCODED_FIELD_LENGTH) // sanity check`
Now initializes a path in memory 2022-05-02 15:30:26 +02:00			`{`
EIP712 code now uses the global apdu response code; error handling improvements 2022-07-19 11:04:16 +02:00			`apdu_response_code = APDU_RESPONSE_INVALID_DATA;`
Now initializes a path in memory 2022-05-02 15:30:26 +02:00			`return NULL;`
			`}`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`if ((padded_value = mem_alloc(EIP_712_ENCODED_FIELD_LENGTH)) != NULL) {`
			`switch (ptype) {`
Fix dynamic bytes type encoding 2022-05-02 11:05:25 +02:00			`case MSB:`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`memset(padded_value, pval, EIP_712_ENCODED_FIELD_LENGTH - length);`
Fix dynamic bytes type encoding 2022-05-02 11:05:25 +02:00			`start_idx = EIP_712_ENCODED_FIELD_LENGTH - length;`
			`break;`
			`case LSB:`
			`explicit_bzero(padded_value + length, EIP_712_ENCODED_FIELD_LENGTH - length);`
			`start_idx = 0;`
			`break;`
			`default:`
Add missing APDU return code 2022-07-12 10:24:46 +02:00			`apdu_response_code = APDU_RESPONSE_CONDITION_NOT_SATISFIED;`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`return NULL; // should not be here`
Fix dynamic bytes type encoding 2022-05-02 11:05:25 +02:00			`}`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`memcpy(&padded_value[start_idx], value, length);`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`} else {`
EIP712 code now uses the global apdu response code; error handling improvements 2022-07-19 11:04:16 +02:00			`apdu_response_code = APDU_RESPONSE_INSUFFICIENT_MEMORY;`
			`}`
WIP field hashing support 2022-04-14 18:22:35 +02:00			`return padded_value;`
WIP field hashing 2022-05-02 15:30:14 +02:00			`}`

			`/**`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`* Encode an unsigned integer`
WIP field hashing 2022-05-02 15:30:14 +02:00			`*`
WIP field hashing support 2022-04-14 18:22:35 +02:00			`* @param[in] value pointer to the "packed" integer received`
WIP field hashing 2022-05-02 15:30:14 +02:00			`* @param[in] length its byte-length`
Fix dynamic bytes type encoding 2022-05-02 11:05:25 +02:00			`* @return the encoded value`
WIP field hashing 2022-05-02 15:30:14 +02:00			`*/`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`void encode_uint(const uint8_t const value, uint8_t length) {`
WIP field hashing support 2022-04-14 18:22:35 +02:00			`// no length check here since it will be checked by field_encode`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`return field_encode(value, length, MSB, 0x00);`
			`}`

			`/**`
			`* Encode a signed integer`
			`*`
			`* @param[in] value pointer to the "packed" integer received`
			`* @param[in] length its byte-length`
			`* @param[in] typesize the type size in bytes`
			`* @return the encoded value`
			`*/`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`void encode_int(const uint8_t const value, uint8_t length, uint8_t typesize) {`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`uint8_t padding_value;`

Security review (#331) * Fix some issues * add typed_data.c changes * Make attribution after the check 2022-08-08 13:53:41 +02:00			`if (length < 1) {`
			`apdu_response_code = APDU_RESPONSE_INVALID_DATA;`
Security review code linting 2022-08-08 13:55:45 +02:00			`return NULL;`
Security review (#331) * Fix some issues * add typed_data.c changes * Make attribution after the check 2022-08-08 13:53:41 +02:00			`}`

EIP-712 code linting 2022-07-19 11:49:18 +02:00			`if ((length == typesize) && (value[0] & (1 << 7))) // negative number`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`{`
			`padding_value = 0xFF;`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`} else {`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`padding_value = 0x00;`
			`}`
			`// no length check here since it will be checked by field_encode`
			`return field_encode(value, length, MSB, padding_value);`
Fix dynamic bytes type encoding 2022-05-02 11:05:25 +02:00			`}`

			`/**`
			`* Encode a fixed-size byte array`
			`*`
			`* @param[in] value pointer to the "packed" bytes array`
			`* @param[in] length its byte-length`
			`* @return the encoded value`
			`*/`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`void encode_bytes(const uint8_t const value, uint8_t length) {`
Fix dynamic bytes type encoding 2022-05-02 11:05:25 +02:00			`// no length check here since it will be checked by field_encode`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`return field_encode(value, length, LSB, 0x00);`
WIP field hashing 2022-05-02 15:30:14 +02:00			`}`

			`/**`
WIP field hashing support 2022-04-14 18:22:35 +02:00			`* Encode a boolean`
WIP field hashing 2022-05-02 15:30:14 +02:00			`*`
			`* @param[in] value pointer to the boolean received`
			`* @param[in] length its byte-length`
Fix dynamic bytes type encoding 2022-05-02 11:05:25 +02:00			`* @return the encoded value`
WIP field hashing 2022-05-02 15:30:14 +02:00			`*/`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`void encode_boolean(const bool const value, uint8_t length) {`
			`if (length != 1) // sanity check`
WIP field hashing 2022-05-02 15:30:14 +02:00			`{`
EIP712 code now uses the global apdu response code; error handling improvements 2022-07-19 11:04:16 +02:00			`apdu_response_code = APDU_RESPONSE_INVALID_DATA;`
WIP field hashing 2022-05-02 15:30:14 +02:00			`return NULL;`
			`}`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`return encode_uint((uint8_t *) value, length);`
WIP field hashing 2022-05-02 15:30:14 +02:00			`}`

			`/**`
WIP field hashing support 2022-04-14 18:22:35 +02:00			`* Encode an address`
WIP field hashing 2022-05-02 15:30:14 +02:00			`*`
			`* @param[in] value pointer to the address received`
			`* @param[in] length its byte-length`
Fix dynamic bytes type encoding 2022-05-02 11:05:25 +02:00			`* @return the encoded value`
WIP field hashing 2022-05-02 15:30:14 +02:00			`*/`
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`void encode_address(const uint8_t const value, uint8_t length) {`
			`if (length != ADDRESS_LENGTH) // sanity check`
WIP field hashing 2022-05-02 15:30:14 +02:00			`{`
EIP712 code now uses the global apdu response code; error handling improvements 2022-07-19 11:04:16 +02:00			`apdu_response_code = APDU_RESPONSE_INVALID_DATA;`
WIP field hashing 2022-05-02 15:30:14 +02:00			`return NULL;`
			`}`
Fix hashing of signed negative integers smaller than 256 bits 2022-06-08 18:31:16 +02:00			`return encode_uint(value, length);`
WIP field hashing 2022-05-02 15:30:14 +02:00			`}`
Now only compiles full EIP-712 support for capable devices 2022-05-16 10:59:20 +02:00
EIP-712 code linting 2022-07-19 11:49:18 +02:00			`#endif // HAVE_EIP712_FULL_SUPPORT`