1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
|
"""
*******************************************************************************
* BTChip Bitcoin Hardware Wallet Python API
* (c) 2014 BTChip - 1BTChip7VfTnrPra5jqci7ejnMguuHogTn
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
********************************************************************************
"""
# Coinkite co-signer signing
# To be run with the dongle in developer mode, PIN verified
# Pass the JSON request to sign as parameter
# TODO : verify Coinkite signature in the request
import hashlib
import sys
import json
from btchip.btchip import *
from btchip.btchipUtils import *
from base64 import b64encode
# Replace with your own seed (preferably import it and store it), key path, and Testnet flag
SEED = bytearray("fe721b95503a18a14d93914e02ff153f924737c336b01f98f2ff39395f630187".decode('hex'))
KEYPATH = "0'/2/0"
TESTNET = True
# From Electrum
__b58chars = '123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz'
__b58base = len(__b58chars)
def b58encode(v):
""" encode v, which is a string of bytes, to base58."""
long_value = 0L
for (i, c) in enumerate(v[::-1]):
long_value += (256**i) * ord(c)
result = ''
while long_value >= __b58base:
div, mod = divmod(long_value, __b58base)
result = __b58chars[mod] + result
long_value = div
result = __b58chars[long_value] + result
# Bitcoin does a little leading-zero-compression:
# leading 0-bytes in the input become leading-1s
nPad = 0
for c in v:
if c == '\0': nPad += 1
else: break
return (__b58chars[0]*nPad) + result
def EncodeBase58Check(vchIn):
hash = Hash(vchIn)
return b58encode(vchIn + hash[0:4])
def sha256(x):
return hashlib.sha256(x).digest()
def hash_160(public_key):
try:
md = hashlib.new('ripemd160')
md.update(sha256(public_key))
return md.digest()
except Exception:
import ripemd
md = ripemd.new(sha256(public_key))
return md.digest()
def Hash(x):
if type(x) is unicode: x=x.encode('utf-8')
return sha256(sha256(x))
def i4b(self, x):
return pack('>I', x)
# /from Electrum
def getXpub(publicKeyData, testnet=False):
header = ("043587CF" if testnet else "0488B21E")
result = header.decode('hex') + chr(publicKeyData['depth']) + str(publicKeyData['parentFingerprint']) + str(publicKeyData['childNumber']) + str(publicKeyData['chainCode']) + str(compress_public_key(publicKeyData['publicKey']))
return EncodeBase58Check(result)
def getPub(publicKeyData, testnet=False):
header = ("6F" if testnet else "00")
keyData = hash_160(str(compress_public_key(publicKeyData)))
return EncodeBase58Check(header.decode('hex') + keyData)
def signMessage(encodedPrivateKey, data):
messageData = bytearray("\x18Bitcoin Signed Message:\n")
writeVarint(len(data), messageData)
messageData.extend(data)
messageHash = Hash(messageData)
signature = app.signImmediate(encodedPrivateKey, messageHash)
# Parse the ASN.1 signature
rLength = signature[3]
r = signature[4 : 4 + rLength]
sLength = signature[4 + rLength + 1]
s = signature[4 + rLength + 2:]
if rLength == 33:
r = r[1:]
if sLength == 33:
s = s[1:]
r = str(r)
s = str(s)
# And convert it
return b64encode(chr(27 + 4 + (signature[0] & 0x01)) + r + s)
f = open(sys.argv[1], 'r')
signData = json.load(f)
requestData = json.loads(signData['contents'])
result = {}
result['cosigner'] = requestData['cosigner']
result['request'] = requestData['request']
result['signatures'] = []
dongle = getDongle(True)
app = btchip(dongle)
seed = app.importPrivateKey(SEED, TESTNET)
privateKey = app.deriveBip32Key(seed, KEYPATH)
publicKeyData = app.getPublicKey(privateKey)
wallets = {}
for key in requestData['req_keys'].keys():
privateKeyDiv = app.deriveBip32Key(privateKey, key)
publicKeyDataDiv = app.getPublicKey(privateKeyDiv)
if getPub(publicKeyDataDiv['publicKey'], TESTNET) == requestData['req_keys'][key][0]:
wallets[key] = privateKeyDiv
else:
raise "Invalid wallet, could not match key"
for signInput in requestData['inputs']:
sigHash = signInput[1].decode('hex')
signature = "\x30" + str(app.signImmediate(wallets[signInput[0]], sigHash)[1:])
signature = signature + "\x01"
result['signatures'].append([signature.encode('hex'), sigHash.encode('hex'), signInput[0]])
body = {}
body['_humans'] = "Upload this set of signatures to Coinkite."
body['content'] = json.dumps(result)
body['signature'] = signMessage(privateKey, body['content'])
body['signed_by'] = getPub(publicKeyData['publicKey'], False) # Bug, should use network
print json.dumps(body)
dongle.close()
|
