Merge pull request #655 from Cypherock/develop

Develop

Author: muzaffarbhat07

apps/btc_family/btc_pub_key.c

@@ -60,12 +60,17 @@
  * INCLUDES
  *****************************************************************************/
 
+#include <string.h>
+
 #include "bip32.h"
 #include "btc_api.h"
+#include "btc_app.h"
 #include "btc_helpers.h"
 #include "btc_priv.h"
 #include "coin_utils.h"
+#include "composable_app_queue.h"
 #include "curves.h"
+#include "exchange_main.h"
 #include "reconstruct_wallet_flow.h"
 #include "status_api.h"
 #include "ui_core_confirm.h"
@@ -152,6 +157,7 @@ static void send_public_key(const uint8_t *public_key);
 /*****************************************************************************
  * STATIC VARIABLES
  *****************************************************************************/
+static bool sign_address = false;
 
 static bool check_which_request(const btc_query_t *query,
                                 pb_size_t which_request) {
@@ -173,6 +179,17 @@ static bool validate_request_data(btc_get_public_key_request_t *request) {
                    ERROR_DATA_FLOW_INVALID_DATA);
     status = false;
   }
+
+  caq_node_data_t data = {.applet_id = get_btc_app_desc()->id};
+
+  memzero(data.params, sizeof(data.params));
+  memcpy(data.params,
+         request->initiate.wallet_id,
+         sizeof(request->initiate.wallet_id));
+  data.params[32] = EXCHANGE_FLOW_TAG_RECEIVE;
+
+  sign_address = exchange_app_validate_caq(data);
+
   return status;
 }
 
@@ -283,6 +300,11 @@ void btc_get_pub_key(btc_query_t *query) {
   delay_scr_init(ui_text_processing, DELAY_SHORT);
   size_t length = btc_get_address(seed, path, path_length, public_key, msg);
   memzero(seed, sizeof(seed));
+
+  if (sign_address) {
+    exchange_sign_address(msg, sizeof(msg));
+  }
+
   if (0 < length &&
       true == core_scroll_page(ui_text_receive_on, msg, btc_send_error)) {
     set_app_flow_status(BTC_GET_PUBLIC_KEY_STATUS_VERIFY);

apps/btc_family/btc_txn.c

@@ -66,6 +66,7 @@
 
 #include "bip32.h"
 #include "btc_api.h"
+#include "btc_app.h"
 #include "btc_helpers.h"
 #include "btc_inputs_validator.h"
 #include "btc_priv.h"
@@ -74,8 +75,10 @@
 #include "byte_stream.h"
 #include "coin_utils.h"
 #include "common.pb.h"
+#include "composable_app_queue.h"
 #include "constant_texts.h"
 #include "curves.h"
+#include "exchange_main.h"
 #include "reconstruct_wallet_flow.h"
 #include "status_api.h"
 #include "ui_core_confirm.h"
@@ -274,7 +277,7 @@ static bool send_script_sig(btc_query_t *query, const scrip_sig_t *sigs);
 /*****************************************************************************
  * STATIC VARIABLES
  *****************************************************************************/
-
+static bool use_signature_verification = false;
 static btc_txn_context_t *btc_txn_context = NULL;
 
 /*****************************************************************************
@@ -305,6 +308,17 @@ static bool validate_request_data(const btc_sign_txn_request_t *request) {
                    ERROR_DATA_FLOW_INVALID_DATA);
     status = false;
   }
+
+  caq_node_data_t data = {.applet_id = get_btc_app_desc()->id};
+
+  memzero(data.params, sizeof(data.params));
+  memcpy(data.params,
+         request->initiate.wallet_id,
+         sizeof(request->initiate.wallet_id));
+  data.params[32] = EXCHANGE_FLOW_TAG_SEND;
+
+  use_signature_verification = exchange_app_validate_caq(data);
+
   return status;
 }
 
@@ -572,6 +586,14 @@ static bool get_user_verification() {
       btc_send_error(ERROR_COMMON_ERROR_UNKNOWN_ERROR_TAG, status);
       return false;
     }
+
+    if (use_signature_verification) {
+      if (!exchange_validate_stored_signature(address, sizeof(address))) {
+        btc_send_error(ERROR_COMMON_ERROR_UNKNOWN_ERROR_TAG, status);
+        return false;
+      }
+    }
+
     if (!core_scroll_page(title, address, btc_send_error) ||
         !core_scroll_page(title, value, btc_send_error)) {
       return false;

apps/constellation_app/constellation_api.c

@@ -0,0 +1,200 @@
+/**
+ * @file    constellation_api.c
+ * @author  Cypherock X1 Team
+ * @brief   Defines helpers apis for CONSTELLATION app.
+ * @copyright Copyright (c) 2025 HODL TECH PTE LTD
+ * <br/> You may obtain a copy of license at <a href="https://mitcc.org/"
+ *target=_blank>https://mitcc.org/</a>
+ *
+ ******************************************************************************
+ * @attention
+ *
+ * (c) Copyright 2025 by HODL TECH PTE LTD
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining
+ * a copy of this software and associated documentation files (the
+ * "Software"), to deal in the Software without restriction, including
+ * without limitation the rights to use, copy, modify, merge, publish,
+ * distribute, sublicense, and/or sell copies of the Software, and to
+ * permit persons to whom the Software is furnished to do so, subject
+ * to the following conditions:
+ *
+ * The above copyright notice and this permission notice shall be
+ * included in all copies or substantial portions of the Software.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+ * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+ * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+ * IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR
+ * ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF
+ * CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+ * WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+ *
+ *
+ * "Commons Clause" License Condition v1.0
+ *
+ * The Software is provided to you by the Licensor under the License,
+ * as defined below, subject to the following condition.
+ *
+ * Without limiting other conditions in the License, the grant of
+ * rights under the License will not include, and the License does not
+ * grant to you, the right to Sell the Software.
+ *
+ * For purposes of the foregoing, "Sell" means practicing any or all
+ * of the rights granted to you under the License to provide to third
+ * parties, for a fee or other consideration (including without
+ * limitation fees for hosting or consulting/ support services related
+ * to the Software), a product or service whose value derives, entirely
+ * or substantially, from the functionality of the Software. Any license
+ * notice or attribution required by the License must also include
+ * this Commons Clause License Condition notice.
+ *
+ * Software: All X1Wallet associated files.
+ * License: MIT
+ * Licensor: HODL TECH PTE LTD
+ *
+ ******************************************************************************
+ */
+
+/*****************************************************************************
+ * INCLUDES
+ *****************************************************************************/
+
+#include "constellation_api.h"
+
+#include <pb_decode.h>
+#include <pb_encode.h>
+
+#include "common_error.h"
+#include "core_api.h"
+#include "events.h"
+
+/*****************************************************************************
+ * EXTERN VARIABLES
+ *****************************************************************************/
+
+/*****************************************************************************
+ * PRIVATE MACROS AND DEFINES
+ *****************************************************************************/
+
+/*****************************************************************************
+ * PRIVATE TYPEDEFS
+ *****************************************************************************/
+
+/*****************************************************************************
+ * STATIC VARIABLES
+ *****************************************************************************/
+
+/*****************************************************************************
+ * GLOBAL VARIABLES
+ *****************************************************************************/
+
+/*****************************************************************************
+ * STATIC FUNCTION PROTOTYPES
+ *****************************************************************************/
+
+/*****************************************************************************
+ * STATIC FUNCTIONS
+ *****************************************************************************/
+
+/*****************************************************************************
+ * GLOBAL FUNCTIONS
+ *****************************************************************************/
+bool decode_constellation_query(const uint8_t *data,
+                                uint16_t data_size,
+                                constellation_query_t *query_out) {
+  if (NULL == data || NULL == query_out || 0 == data_size) {
+    constellation_send_error(ERROR_COMMON_ERROR_CORRUPT_DATA_TAG,
+                             ERROR_DATA_FLOW_DECODING_FAILED);
+    return false;
+  }
+
+  // zeroise for safety from garbage in the query reference
+  memzero(query_out, sizeof(constellation_query_t));
+
+  /* Create a stream that reads from the buffer. */
+  pb_istream_t stream = pb_istream_from_buffer(data, data_size);
+
+  /* Now we are ready to decode the message. */
+  bool status = pb_decode(&stream, CONSTELLATION_QUERY_FIELDS, query_out);
+
+  /* Send error to host if status is false*/
+  if (false == status) {
+    constellation_send_error(ERROR_COMMON_ERROR_CORRUPT_DATA_TAG,
+                             ERROR_DATA_FLOW_DECODING_FAILED);
+  }
+
+  return status;
+}
+
+bool encode_constellation_result(const constellation_result_t *result,
+                                 uint8_t *buffer,
+                                 uint16_t max_buffer_len,
+                                 size_t *bytes_written_out) {
+  if (NULL == result || NULL == buffer || NULL == bytes_written_out)
+    return false;
+
+  /* Create a stream that will write to our buffer. */
+  pb_ostream_t stream = pb_ostream_from_buffer(buffer, max_buffer_len);
+
+  /* Now we are ready to encode the message! */
+  bool status = pb_encode(&stream, CONSTELLATION_RESULT_FIELDS, result);
+
+  if (true == status) {
+    *bytes_written_out = stream.bytes_written;
+  }
+
+  return status;
+}
+
+bool check_constellation_query(const constellation_query_t *query,
+                               pb_size_t exp_query_tag) {
+  if ((NULL == query) || (exp_query_tag != query->which_request)) {
+    constellation_send_error(ERROR_COMMON_ERROR_CORRUPT_DATA_TAG,
+                             ERROR_DATA_FLOW_INVALID_QUERY);
+    return false;
+  }
+  return true;
+}
+
+constellation_result_t init_constellation_result(pb_size_t result_tag) {
+  constellation_result_t result = CONSTELLATION_RESULT_INIT_ZERO;
+  result.which_response = result_tag;
+  return result;
+}
+
+void constellation_send_error(pb_size_t which_error, uint32_t error_code) {
+  constellation_result_t result =
+      init_constellation_result(CONSTELLATION_RESULT_COMMON_ERROR_TAG);
+  result.common_error = init_common_error(which_error, error_code);
+  constellation_send_result(&result);
+}
+
+void constellation_send_result(const constellation_result_t *result) {
+  // TODO: Set all option files
+  uint8_t buffer[1700] = {0};
+  size_t bytes_encoded = 0;
+  ASSERT(encode_constellation_result(
+      result, buffer, sizeof(buffer), &bytes_encoded));
+  send_response_to_host(&buffer[0], bytes_encoded);
+}
+
+bool constellation_get_query(constellation_query_t *query,
+                             pb_size_t exp_query_tag) {
+  evt_status_t event = get_events(EVENT_CONFIG_USB, MAX_INACTIVITY_TIMEOUT);
+
+  if (true == event.p0_event.flag) {
+    return false;
+  }
+
+  if (!decode_constellation_query(
+          event.usb_event.p_msg, event.usb_event.msg_size, query)) {
+    return false;
+  }
+
+  if (!check_constellation_query(query, exp_query_tag)) {
+    return false;
+  }
+
+  return true;
+}