Add cardano support to trezorctl and some tests

[ddeath]

Added device tests for get_address and sign_transaction calls.

To the trezorctl was also added get_public_key, sign and verify message

[tsusanka]

@matejcik I can leave this for you to review, right?

[matejcik]

please rename to sign_tx ("tx" instead of "transaction", no "cardano" prefix)

[matejcik]

also the signature is not great, see comments in trezorctl and on create_sign_transaction_message.

In general, these functions should consume either simple values, or filled out protobuf messages. In this case, best I could come up with is:

def sign_tx(client, inputs: List[CardanoTxInputType], outputs: List[CardanoTxOutputType], transactions: List[bytes])

[ddeath]

fixed

[matejcik]

you should not put raw dict into the API call.
Instead, something like:

transaction = cardano.create_sign_tx(json.load(file))
signed_tx = cardano.sign_tx(client, transaction)

Also, how can the user create the JSON?
I expect there is a separate tool / script that generates it, but can it include the appropriate BIP32 paths?

[ddeath]

fixed with you metioned suggestion bellow

[matejcik]

this should not be part of this function, see comment in trezorctl

[ddeath]

fixed

[matejcik]

any reason to return a dict, as opposed to a tuple (hash, body) ?

[ddeath]

It is so user will see what is hash and what is body without looking at code. if it is only tuple you will have hard times to identify body vs hash as both looks same

[matejcik]

this is not user-facing function though. please return a tuple and do the conversion in trezorctl

[ddeath]

fixed

[matejcik]

please extract the lists of required fields to the top level:

REQUIRED_FIELDS_TRANSACTION = ("inputs", "outputs"...
REQUIRED_FIELDS_INPUT = (...
REQUIRED_FIELDS_OUTPUT = (...

Don't repeat the fields in the ValueError either.

[ddeath]

Fixed except output fields as there is only amount required and one other but it does not matter which one - well there must be at least one address_n (at least in one of the outputs)

[matejcik]

please use the same all(...) check as above

alternately, a better approach could be ensure_required_fields(dict, REQUIRED_FIELDS) helper that raises the ValueError. In that case, you could even put the list of required fields into the error messages

[ddeath]

Not sure how could I use all whene there are not || not ( || ) which is same as not || (not && not)

[matejcik]

ok, my bad, didn't notice the nesting

[matejcik]

the create_tx_ack_message is sort of pointless, esp. if you get transactions directly as an argument. please inline it here.

(also maybe verify that the requested index makes sense? but AFAICT the index is pointless anyway, so maybe it doesn't matter)

[ddeath]

fixed without index verification

[matejcik]

you don't seem to be using TREZOR_VERSION

[ddeath]

removed

[matejcik]

ISTM this test could be vastly simplified if you used set_expected_responses

see e.g. https://github.com/trezor/python-trezor/blob/master/trezorlib/tests/device_tests/test_msg_signtx.py

[ddeath]

I want to used that but I was unsure how to use it when I need to do swipes

[matejcik]

Ah, the swipes thing again! Yes, it makes sense in that case. We need a better infrastructure for simulating swipes.

[matejcik]

I have reviewed the changes. Please see comments and make modifications where appropriate.

In general, my main question is, how do you expect this to be used, from the user side? Is there a tool/service that generates the appropriate JSON data? If not, then, I suppose we'll keep it like this for now. I'm working on some changes that would make it more useful; namely, converting a dict to protobuf directly.

In any case, unless there are good reasons against, please go with my suggestion for the sign_tx() signature. Then it depends on where the JSON comes from. If the format is arbitrary, I suggest parsing it in trezorctl:

inputs = [cardano.create_input(input) for input in transaction['inputs']]
outputs = [cardano.create_output(output) for outputs in transaction['outputs']]
transactions = transaction['transactions']

If the format comes from somewhere else, I'd keep the create_transaction function, but make it return a tuple inputs, outputs, transactions as opposed to a protobuf message (which doesn't include the "transactions" field)`

[matejcik]

Also please add the remaining tests (sign/verify message, get public key i think?)

[ddeath]

@matejcik I tried to fix all your comments and also added tests...

About that JSON tool - there is no such a tool. If somebody want to use it then they could look here:
https://github.com/vacuumlabs/cardanolite/blob/78b03bbcf80a9b4d04444d0f954c7c8184ea636d/app/frontend/wallet/cardano-wallet.js#L82

There is our own code for creating tx or they can take a look to connect v5.

The CI is failing because of some other test fails to fetch some data from internet - I guess that we did not break it

[matejcik]

return response.tx_hash, response.tx_body

[ddeath]

I just returned response because it is CardanoSignedTx message now. Is that ok?

[matejcik]

Tests look reasonable. Please fix my latest comments, I'll look over the whole thing again tomorrow.

Travis failure is on our side; if you rebase on top of current master, it should go away.

[tsusanka]

Please also modify the signing test where now CardanoSignedTx message is returned (trezor/trezor-core@e657397) (if needed).

[ddeath]

I fixed comments and also did the rebase.

[tsusanka]

@ddeath we would like to unify what derivation paths are sent to which coins. We came up with this doc. We would like Cardano wallets to send 44'/1815'/a' for get public key and 44'/1815'/a'/0/i for get_address / sign.

1. Is that okay on your side?
2. Do you think you could modify the tests accordingly? I know it's a pain to regenerate the data, but the tests serve as a point of reference sometimes and it would be unfortunate to have it incorrect.

[ddeath]

@tsusanka

1. I would suggest to change get_address and sign to 44'/1815'/a'/{0,1}/i as I have almost ready PR for adding support for cardano derivation scheme v2 which uses 0 or 1 in that place. In the v1 it must be 0 but in v2 it can be 0 or 1
2. I will regenerate the tests

[matejcik]

I finally got to review the current state. It looks mostly OK.

Two things:

1. please add at least one invalid sig to verify_message test :) this way it's not testing much.

2. do the tests pass in the current trezor-core master? if not, they should all be marked xfail

[tsusanka]

I would suggest to change get_address and sign to 44'/1815'/a'/{0,1}/i as I have almost ready PR for adding support for cardano derivation scheme v2 which uses 0 or 1 in that place. In the v1 it must be 0 but in v2 it can be 0 or 1

Ok, agreed.

[ddeath]

@tsusanka I changed test so it reflect the derivation paths. Please check if that is what you mean. Also I overlooked the get_address and sign_transaction derivation paths and would suggest to change it to 44'/1815'/a'/{0,1}/{i, i'} as the official cardano wallet Daedalus is working with addresses derived with i' it is also possible to use i but for example Binance has problems to accept these kind of addresses.
Also in derivation scheme v2 is used i by default in cardano new wallet Icarus.

@matejcik added invalid signatures tests. The test should be passing on master, but they are not because there was introduced bugs couple days ago in this commit where the name of messages are incorrectly swaped and also in this commit where the .ui was not renamed to .layout

So not sure if I should mark it as xfail. I will create a PR for adding derivation scheme v2 in couple of hours where I fixed it already. But not sure about your workflow so please just point me out what is the way to do it in this situation.

Thanks

[matejcik]

Btw for further reference it would be great if you didn't squash the commit every time, so we could see changes from last time and not have to read through the whole thing.

If your code is in core, and the tests are supposed to pass, then no xfail is needed. xfail is for cases when the tests are submitted ahead of the device code.

[matejcik]

please rename to match test contents

[matejcik]

please rename test and method names, and consider using pytest.mark.parametrize

[matejcik]

also this

while you're at it, consider using @pytest.mark.parametrize to simplify test code here, see e.g. test_cancel

[matejcik]

Any reason you're using this mnemonic? If not, please regenerate the sigs with the default all all all...

(a good reason would be, e.g., if these were officially documented test vectors)

[ddeath]

I was choosing this mnemonic because the same is in trezor-core

[matejcik]

In that case let's change it to the default all all all.... It should be changed in trezor-core too, but we'll probably do that later along with other currencies that use custom mnemonics for tests.

[ddeath]

I can change it as I will be removing / changing all the tests because of change of derivation scheme in the next PR.

[matejcik]

FWIW you don't need to test invalid sigs here, because you're already testing against an expected value; it's very unlikely that a sign_message would produce the particular signature that you're testing it's not producing.

(as opposed to the verify_message method, where you need a test that it can fail, that it doesn't return True for every input)

unless of course these are vectors for some known failure mode

[matejcik]

this should probably extract the @field("address") directly, right?

[matejcik]

ISTM this will fail now that get_address returns the address directly?

[ddeath]

Yes it failed. Fixed. Also replaced custom mnemonic for all all...

[matejcik]

In the meantime, I merged a big change into master. This should affect you very little, although you will probably get merge conflicts in trezorctl.

IMHO the safest way to resolve them is simply copy-paste your code from pre-merge trezorctl to post-merge trezorctl.

Another change that affects you is that @expect and @field are now the same decorator, so please modify that one use of @field to @expect(..., field='...')

afterwards, run make style (note you need python 3.6 for that)

[ddeath]

@tsusanka please ignore last conversation about i vs i'. It should be ok as it is, because as stated here trezor/trezor-crypto#179 (comment) the derivation scheme v1 is going to be dropped

[ddeath]

@matejcik should be fixed now

[tsusanka]

@tsusanka please ignore last conversation about i vs i'. It should be ok as it is, because as stated here trezor/trezor-crypto#179 (comment) the derivation scheme v1 is going to be dropped

Ok so 44'/1815'/a'/{0,1}/i it is.

[matejcik]

looks good to merge from my side.

@tsusanka @ddeath any planned changes regarding the paths? Or should I merge it now and path changes will be resolved in a new PR?

[tsusanka]

IMHO it is correct now and the tests seem to use correct paths.

[ddeath]

I am ok with the current paths

[ddeath]

@matejcik added changes for cadrano derivation path v2 and marked all test as xfail

[matejcik]

Neat, merging. Now let's see what happens with core :)
Thanks!