|
|
|
|
# SPDX-FileCopyrightText: 2020 Foundation Devices, Inc. <hello@foundationdevices.com>
|
|
|
|
|
# SPDX-License-Identifier: GPL-3.0-or-later
|
|
|
|
|
#
|
|
|
|
|
# SPDX-FileCopyrightText: 2018 Coinkite, Inc. <coldcardwallet.com>
|
|
|
|
|
# SPDX-License-Identifier: GPL-3.0-only
|
|
|
|
|
#
|
|
|
|
|
# (c) Copyright 2018 by Coinkite Inc. This file is part of Coldcard <coldcardwallet.com>
|
|
|
|
|
# and is covered by GPLv3 license found in COPYING.
|
|
|
|
|
#
|
|
|
|
|
# seed.py - bip39 seeds and words
|
|
|
|
|
#
|
|
|
|
|
# references:
|
|
|
|
|
# - <https://github.com/bitcoin/bips/blob/master/bip-0039.mediawiki>
|
|
|
|
|
# - <https://iancoleman.io/bip39/#english>
|
|
|
|
|
# - zero values:
|
|
|
|
|
# - 'abandon' * 23 + 'art'
|
|
|
|
|
# - 'abandon' * 17 + 'agent'
|
|
|
|
|
# - 'abandon' * 11 + 'about'
|
|
|
|
|
#
|
|
|
|
|
|
|
|
|
|
from common import noise
|
|
|
|
|
|
|
|
|
|
import trezorcrypto
|
|
|
|
|
import uctypes
|
|
|
|
|
from pincodes import SE_SECRET_LEN
|
|
|
|
|
from stash import SecretStash, SensitiveValues
|
|
|
|
|
from ubinascii import hexlify as b2a_hex
|
|
|
|
|
from utils import pop_count, xfp2str
|
|
|
|
|
from ux import ux_show_story
|
|
|
|
|
|
|
|
|
|
# seed words lengths we support: 24=>256 bits, and recommended
|
|
|
|
|
VALID_LENGTHS = (24, 18, 12)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
async def create_new_wallet_seed():
|
|
|
|
|
from noise_source import NoiseSource
|
|
|
|
|
from common import dis, system
|
|
|
|
|
from uasyncio import sleep_ms
|
|
|
|
|
|
|
|
|
|
# Pick a new random seed
|
|
|
|
|
dis.fullscreen('Generating Seed...')
|
|
|
|
|
await sleep_ms(1000)
|
|
|
|
|
|
|
|
|
|
# always full 24-word (256 bit) entropy
|
|
|
|
|
seed = bytearray(32)
|
|
|
|
|
noise.random_bytes(seed, NoiseSource.ALL)
|
|
|
|
|
|
|
|
|
|
# hash to mitigate any potential bias in Avalanche RNG
|
|
|
|
|
seed = trezorcrypto.sha256(seed).digest()
|
|
|
|
|
# print('create_new_wallet_seed(): New seed = {}'.format(b2a_hex(seed)))
|
|
|
|
|
|
|
|
|
|
return seed
|
|
|
|
|
|
|
|
|
|
async def save_wallet_seed(seed_bits):
|
|
|
|
|
from common import dis, pa, settings, system
|
|
|
|
|
|
|
|
|
|
dis.fullscreen('Saving Seed...')
|
|
|
|
|
|
|
|
|
|
system.show_busy_bar()
|
|
|
|
|
|
|
|
|
|
# encode it for our limited secret space
|
|
|
|
|
nv = SecretStash.encode(seed_bits=seed_bits)
|
|
|
|
|
|
|
|
|
|
pa.change(new_secret=nv)
|
|
|
|
|
|
|
|
|
|
# re-read settings since key is now different
|
|
|
|
|
# - also captures xfp, xpub at this point
|
|
|
|
|
await pa.new_main_secret(nv)
|
|
|
|
|
|
|
|
|
|
# check and reload secret
|
|
|
|
|
pa.reset()
|
|
|
|
|
pa.login()
|
|
|
|
|
|
|
|
|
|
system.hide_busy_bar()
|
|
|
|
|
|
|
|
|
|
def set_bip39_passphrase(pw):
|
|
|
|
|
# apply bip39 passphrase for now (volatile)
|
|
|
|
|
# - return None or error msg
|
|
|
|
|
import stash
|
|
|
|
|
from common import system
|
|
|
|
|
from utils import bytes_to_hex_str
|
|
|
|
|
|
|
|
|
|
stash.bip39_passphrase = pw
|
|
|
|
|
|
|
|
|
|
# Create a hash from the passphrase
|
|
|
|
|
if len(stash.bip39_passphrase) > 0:
|
|
|
|
|
digest = bytearray(32)
|
|
|
|
|
system.sha256(stash.bip39_passphrase, digest)
|
|
|
|
|
digest_hex = bytes_to_hex_str(digest)
|
|
|
|
|
stash.bip39_hash = digest_hex[:8] # Take first 8 characters (32-bits)
|
|
|
|
|
# print('stash.bip39_hash={}'.format(stash.bip39_hash))
|
|
|
|
|
else:
|
|
|
|
|
stash.bip39_hash = ''
|
|
|
|
|
|
|
|
|
|
with stash.SensitiveValues() as sv:
|
|
|
|
|
if sv.mode != 'words':
|
|
|
|
|
# can't do it without original seed words
|
|
|
|
|
return 'No BIP39 seed words'
|
|
|
|
|
|
|
|
|
|
sv.capture_xpub()
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
async def remember_bip39_passphrase():
|
|
|
|
|
# Compute current xprv and switch to using that as root secret.
|
|
|
|
|
import stash
|
|
|
|
|
from common import dis, pa, system
|
|
|
|
|
|
|
|
|
|
dis.fullscreen('Check...')
|
|
|
|
|
|
|
|
|
|
with stash.SensitiveValues() as sv:
|
|
|
|
|
# GIT: https://github.com/Coldcard/firmware/commit/7e97d93153aee1a6878702145410ff9a6106119a
|
|
|
|
|
# If this message is deemed unnecessary, we could consider if the above commit fixes it
|
|
|
|
|
if sv.mode != 'words':
|
|
|
|
|
# not a BIP39 derived secret, so cannot work.
|
|
|
|
|
await ux_show_story('''The wallet secret was not based on a seed phrase, so we cannot add a BIP39 passphrase at this time.''', title='Failed')
|
|
|
|
|
return
|
|
|
|
|
|
|
|
|
|
nv = SecretStash.encode(xprv=sv.node)
|
|
|
|
|
|
|
|
|
|
# Important: won't write new XFP to nvram if pw still set
|
|
|
|
|
stash.bip39_passphrase = ''
|
|
|
|
|
|
|
|
|
|
system.show_busy_bar()
|
|
|
|
|
|
|
|
|
|
dis.fullscreen('Saving...')
|
|
|
|
|
pa.change(new_secret=nv)
|
|
|
|
|
|
|
|
|
|
# re-read settings since key is now different
|
|
|
|
|
# - also captures xfp, xpub at this point
|
|
|
|
|
await pa.new_main_secret(nv)
|
|
|
|
|
|
|
|
|
|
system.hide_busy_bar()
|
|
|
|
|
|
|
|
|
|
# check and reload secret
|
|
|
|
|
pa.reset()
|
|
|
|
|
pa.login()
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
async def erase_wallet(restart=True):
|
|
|
|
|
from common import dis, pa, settings,system
|
|
|
|
|
import utime
|
|
|
|
|
import version
|
|
|
|
|
|
|
|
|
|
dis.fullscreen('Erasing Wallet...')
|
|
|
|
|
|
|
|
|
|
system.show_busy_bar();
|
|
|
|
|
|
|
|
|
|
# Remove wallet-related settings, but leave other settings alone like terms_ok, validated_ok
|
|
|
|
|
settings.remove('xfp')
|
|
|
|
|
settings.remove('xpub')
|
|
|
|
|
settings.remove('words')
|
|
|
|
|
settings.remove('multisig')
|
|
|
|
|
settings.remove('accounts')
|
|
|
|
|
settings.remove('backup_quiz')
|
|
|
|
|
settings.remove('enable_passphrase')
|
|
|
|
|
|
|
|
|
|
# save a blank secret (all zeros is a special case)
|
|
|
|
|
nv = bytes(SE_SECRET_LEN)
|
|
|
|
|
pa.change(new_secret=nv)
|
|
|
|
|
|
|
|
|
|
await settings.save()
|
|
|
|
|
system.hide_busy_bar();
|
|
|
|
|
|
|
|
|
|
if restart:
|
|
|
|
|
dis.fullscreen('Restarting...')
|
|
|
|
|
utime.sleep(1)
|
|
|
|
|
|
|
|
|
|
# security: need to reboot to really be sure to clear the secrets from main memory.
|
|
|
|
|
from machine import reset
|
|
|
|
|
reset()
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# EOF
|
