trezor-agent/sshagent/trezor.py

import io
import re
import struct
import binascii

from . import util
from . import formats

import logging
log = logging.getLogger(__name__)


class TrezorLibrary(object):

    @staticmethod
    def client():
        # pylint: disable=import-error
        from trezorlib.client import TrezorClient
        from trezorlib.transport_hid import HidTransport
        devices = HidTransport.enumerate()
        if len(devices) != 1:
            raise ValueError('{:d} Trezor devices found'.format(len(devices)))
        return TrezorClient(HidTransport(devices[0]))

    @staticmethod
    def parse_identity(s):
        # pylint: disable=import-error
        from trezorlib.types_pb2 import IdentityType
        return IdentityType(**_string_to_identity(s))


class Client(object):

    curve_name = 'nist256p1'

    def __init__(self, factory=TrezorLibrary):
        self.factory = factory
        self.client = self.factory.client()
        f = self.client.features
        log.debug('connected to Trezor %s', f.device_id)
        log.debug('label    : %s', f.label)
        log.debug('vendor   : %s', f.vendor)
        version = [f.major_version, f.minor_version, f.patch_version]
        log.debug('version  : %s', '.'.join([str(v) for v in version]))
        log.debug('revision : %s', binascii.hexlify(f.revision))

    def __enter__(self):
        return self

    def __exit__(self, *args):
        log.info('disconnected from Trezor')
        self.client.close()

    def get_identity(self, label):
        return self.factory.parse_identity(label)

    def get_public_key(self, identity):
        label = _identity_to_string(identity)
        log.info('getting "%s" public key from Trezor...', label)
        addr = _get_address(identity)
        node = self.client.get_public_node(addr, self.curve_name)

        pubkey = node.node.public_key
        return formats.export_public_key(pubkey=pubkey, label=label)

    def sign_ssh_challenge(self, identity, blob):
        label = _identity_to_string(identity)
        msg = _parse_ssh_blob(blob)

        log.info('please confirm user %s connection to "%s" using Trezor...',
                 msg['user'], label)

        assert identity.proto == 'ssh'
        visual = identity.path  # not signed when proto='ssh'
        result = self.client.sign_identity(identity=identity,
                                           challenge_hidden=blob,
                                           challenge_visual=visual,
                                           ecdsa_curve_name=self.curve_name)
        public_key_blob = formats.decompress_pubkey(result.public_key)
        assert public_key_blob == msg['public_key']['blob']
        assert len(result.signature) == 65
        assert result.signature[0] == b'\x00'

        sig = result.signature[1:]
        r = util.bytes2num(sig[:32])
        s = util.bytes2num(sig[32:])
        return (r, s)


_identity_regexp = re.compile(''.join([
    '^'
    r'(?:(?P<proto>.*)://)?',
    r'(?:(?P<user>.*)@)?',
    r'(?P<host>.*?)',
    r'(?::(?P<port>\w*))?',
    r'(?P<path>/.*)?',
    '$'
]))

def _string_to_identity(s):
    m = _identity_regexp.match(s)
    result = m.groupdict()
    if not result.get('proto'):
        result['proto'] = 'ssh'  # otherwise, Trezor will use SECP256K1 curve

    log.debug('parsed identity: %s', result)
    return {k: v for k, v in result.items() if v}


def _identity_to_string(identity):
    assert identity.proto == 'ssh'
    result = [identity.proto + '://']
    if identity.user:
        result.append(identity.user + '@')
    result.append(identity.host)
    if identity.port:
        result.append(':' + identity.port)
    if identity.path:
        result.append(identity.path)
    return ''.join(result)


def _get_address(identity):
    index = struct.pack('<L', identity.index)
    addr = index + _identity_to_string(identity)
    log.debug('address string: %r', addr)
    digest = formats.hashfunc(addr).digest()
    s = io.BytesIO(bytearray(digest))

    hardened = 0x80000000
    address_n = [13] + list(util.recv(s, '<LLLL'))
    return [(hardened | value) for value in address_n]


def _parse_ssh_blob(data):
    res = {}
    if data:
        i = io.BytesIO(data)
        res['nonce'] = util.read_frame(i)
        i.read(1)  # TBD
        res['user'] = util.read_frame(i)
        res['conn'] = util.read_frame(i)
        res['auth'] = util.read_frame(i)
        i.read(1)  # TBD
        res['key_type'] = util.read_frame(i)
        public_key = util.read_frame(i)
        res['public_key'] = formats.parse_pubkey(public_key)
        assert not i.read()
        log.debug('%s: user %r via %r (%r)',
                  res['conn'], res['user'], res['auth'], res['key_type'])
        log.debug('nonce: %s', binascii.hexlify(res['nonce']))
        log.debug('fingerprint: %s', res['public_key']['fingerprint'])
    return res
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`import io`
trezor: refactor label parsing and handling 2015-07-04 18:15:09 +00:00			`import re`
trezor: use identities instead of labels 2015-07-03 13:09:49 +00:00			`import struct`
trezor: better logging and exception handling 2015-06-15 06:50:51 +00:00			`import binascii`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00
code refactoring 2015-06-15 15:13:10 +00:00			`from . import util`
			`from . import formats`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00
code refactoring 2015-06-15 15:13:10 +00:00			`import logging`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`log = logging.getLogger(__name__)`


trezor: refactor Client to use Factory design pattern 2015-06-17 13:29:12 +00:00			`class TrezorLibrary(object):`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00
trezor: refactor Client to use Factory design pattern 2015-06-17 13:29:12 +00:00			`@staticmethod`
			`def client():`
trezor: ignore pylint errors 2015-06-17 14:56:12 +00:00			`# pylint: disable=import-error`
trezor: refactor Client to use Factory design pattern 2015-06-17 13:29:12 +00:00			`from trezorlib.client import TrezorClient`
			`from trezorlib.transport_hid import HidTransport`
trezor: better logging and exception handling 2015-06-15 06:50:51 +00:00			`devices = HidTransport.enumerate()`
			`if len(devices) != 1:`
			`raise ValueError('{:d} Trezor devices found'.format(len(devices)))`
trezor: refactor Client to use Factory design pattern 2015-06-17 13:29:12 +00:00			`return TrezorClient(HidTransport(devices[0]))`

			`@staticmethod`
trezor: use identities instead of labels 2015-07-03 13:09:49 +00:00			`def parse_identity(s):`
trezor: ignore pylint errors 2015-06-17 14:56:12 +00:00			`# pylint: disable=import-error`
trezor: refactor Client to use Factory design pattern 2015-06-17 13:29:12 +00:00			`from trezorlib.types_pb2 import IdentityType`
trezor: use identities instead of labels 2015-07-03 13:09:49 +00:00			`return IdentityType(**_string_to_identity(s))`
trezor: refactor Client to use Factory design pattern 2015-06-17 13:29:12 +00:00

			`class Client(object):`

trezor: explicitly specify SSH curve 2015-06-23 14:53:59 +00:00			`curve_name = 'nist256p1'`

trezor: refactor Client to use Factory design pattern 2015-06-17 13:29:12 +00:00			`def __init__(self, factory=TrezorLibrary):`
			`self.factory = factory`
			`self.client = self.factory.client()`
			`f = self.client.features`
trezor-agent: fix verbosity 2015-07-04 05:48:36 +00:00			`log.debug('connected to Trezor %s', f.device_id)`
pylint: fix issues 2015-06-16 07:33:48 +00:00			`log.debug('label : %s', f.label)`
			`log.debug('vendor : %s', f.vendor)`
trezor: better logging and exception handling 2015-06-15 06:50:51 +00:00			`version = [f.major_version, f.minor_version, f.patch_version]`
pylint: fix issues 2015-06-16 07:33:48 +00:00			`log.debug('version : %s', '.'.join([str(v) for v in version]))`
			`log.debug('revision : %s', binascii.hexlify(f.revision))`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00
trezor: Client should be a context manager 2015-06-17 13:51:42 +00:00			`def __enter__(self):`
			`return self`

			`def __exit__(self, *args):`
			`log.info('disconnected from Trezor')`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`self.client.close()`

agent: fix argument parser 2015-07-04 07:47:32 +00:00			`def get_identity(self, label):`
			`return self.factory.parse_identity(label)`

			`def get_public_key(self, identity):`
			`label = _identity_to_string(identity)`
trezor: update label after identity parsing 2015-07-04 05:48:56 +00:00			`log.info('getting "%s" public key from Trezor...', label)`
trezor: use identities instead of labels 2015-07-03 13:09:49 +00:00			`addr = _get_address(identity)`
trezor: explicitly specify SSH curve 2015-06-23 14:53:59 +00:00			`node = self.client.get_public_node(addr, self.curve_name)`
rename arguments and variable names 2015-07-04 05:35:59 +00:00
			`pubkey = node.node.public_key`
			`return formats.export_public_key(pubkey=pubkey, label=label)`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00
trezor: refactor label parsing and handling 2015-07-04 18:15:09 +00:00			`def sign_ssh_challenge(self, identity, blob):`
			`label = _identity_to_string(identity)`
trezor: reorg some code 2015-06-16 07:04:02 +00:00			`msg = _parse_ssh_blob(blob)`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00
trezor: fix confirmation message 2015-07-05 18:35:45 +00:00			`log.info('please confirm user %s connection to "%s" using Trezor...',`
agent: fix argument parser 2015-07-04 07:47:32 +00:00			`msg['user'], label)`
trezor: show identity.path at challenge_visual It won't be signed when using SSH-agent mode. 2015-07-05 12:35:25 +00:00
			`assert identity.proto == 'ssh'`
			`visual = identity.path # not signed when proto='ssh'`
			`result = self.client.sign_identity(identity=identity,`
			`challenge_hidden=blob,`
			`challenge_visual=visual,`
			`ecdsa_curve_name=self.curve_name)`
trezor: verify public key correctness 2015-07-20 14:21:46 +00:00			`public_key_blob = formats.decompress_pubkey(result.public_key)`
			`assert public_key_blob == msg['public_key']['blob']`
trezor: show identity.path at challenge_visual It won't be signed when using SSH-agent mode. 2015-07-05 12:35:25 +00:00			`assert len(result.signature) == 65`
			`assert result.signature[0] == b'\x00'`

			`sig = result.signature[1:]`
trezor: update for latest firmware patch 2015-06-22 18:23:49 +00:00			`r = util.bytes2num(sig[:32])`
			`s = util.bytes2num(sig[32:])`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`return (r, s)`


trezor-agent: automatic support for git identity The agent uses local 'git config', and chooses the url marked as "trezor = true". 2015-07-04 18:57:57 +00:00			`_identity_regexp = re.compile(''.join([`
trezor: refactor label parsing and handling 2015-07-04 18:15:09 +00:00			`'^'`
			`r'(?:(?P<proto>.*)://)?',`
			`r'(?:(?P<user>.*)@)?',`
			`r'(?P<host>.*?)',`
			`r'(?::(?P<port>\w*))?',`
trezor-agent: automatic support for git identity The agent uses local 'git config', and chooses the url marked as "trezor = true". 2015-07-04 18:57:57 +00:00			`r'(?P<path>/.*)?',`
trezor: refactor label parsing and handling 2015-07-04 18:15:09 +00:00			`'$'`
trezor-agent: automatic support for git identity The agent uses local 'git config', and chooses the url marked as "trezor = true". 2015-07-04 18:57:57 +00:00			`]))`
trezor: use identities instead of labels 2015-07-03 13:09:49 +00:00
			`def _string_to_identity(s):`
trezor: refactor label parsing and handling 2015-07-04 18:15:09 +00:00			`m = _identity_regexp.match(s)`
			`result = m.groupdict()`
			`if not result.get('proto'):`
			`result['proto'] = 'ssh' # otherwise, Trezor will use SECP256K1 curve`
trezor: use identities instead of labels 2015-07-03 13:09:49 +00:00
trezor: refactor label parsing and handling 2015-07-04 18:15:09 +00:00			`log.debug('parsed identity: %s', result)`
			`return {k: v for k, v in result.items() if v}`
trezor: use identities instead of labels 2015-07-03 13:09:49 +00:00

			`def _identity_to_string(identity):`
trezor: refactor label parsing and handling 2015-07-04 18:15:09 +00:00			`assert identity.proto == 'ssh'`
			`result = [identity.proto + '://']`
trezor: use identities instead of labels 2015-07-03 13:09:49 +00:00			`if identity.user:`
			`result.append(identity.user + '@')`
			`result.append(identity.host)`
			`if identity.port:`
			`result.append(':' + identity.port)`
			`if identity.path:`
trezor-agent: automatic support for git identity The agent uses local 'git config', and chooses the url marked as "trezor = true". 2015-07-04 18:57:57 +00:00			`result.append(identity.path)`
trezor: use identities instead of labels 2015-07-03 13:09:49 +00:00			`return ''.join(result)`


			`def _get_address(identity):`
			`index = struct.pack('<L', identity.index)`
			`addr = index + _identity_to_string(identity)`
trezor-agent: automatic support for git identity The agent uses local 'git config', and chooses the url marked as "trezor = true". 2015-07-04 18:57:57 +00:00			`log.debug('address string: %r', addr)`
trezor: reorg some code 2015-06-16 07:04:02 +00:00			`digest = formats.hashfunc(addr).digest()`
			`s = io.BytesIO(bytearray(digest))`

trezor: explicit hardened derivation 2015-06-23 05:59:10 +00:00			`hardened = 0x80000000`
trezor: use standard derivation for SignIdentity message 2015-06-23 14:54:26 +00:00			`address_n = [13] + list(util.recv(s, '<LLLL'))`
trezor: explicit hardened derivation 2015-06-23 05:59:10 +00:00			`return [(hardened \| value) for value in address_n]`
trezor: reorg some code 2015-06-16 07:04:02 +00:00

			`def _parse_ssh_blob(data):`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`res = {}`
			`if data:`
			`i = io.BytesIO(data)`
code refactoring 2015-06-15 15:13:10 +00:00			`res['nonce'] = util.read_frame(i)`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`i.read(1) # TBD`
code refactoring 2015-06-15 15:13:10 +00:00			`res['user'] = util.read_frame(i)`
			`res['conn'] = util.read_frame(i)`
			`res['auth'] = util.read_frame(i)`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`i.read(1) # TBD`
code refactoring 2015-06-15 15:13:10 +00:00			`res['key_type'] = util.read_frame(i)`
trezor: verify public key correctness 2015-07-20 14:21:46 +00:00			`public_key = util.read_frame(i)`
			`res['public_key'] = formats.parse_pubkey(public_key)`
trezor: refactor label parsing and handling 2015-07-04 18:15:09 +00:00			`assert not i.read()`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`log.debug('%s: user %r via %r (%r)',`
			`res['conn'], res['user'], res['auth'], res['key_type'])`
sshagent: add a few fixes and assertions 2015-07-03 13:35:21 +00:00			`log.debug('nonce: %s', binascii.hexlify(res['nonce']))`
trezor: verify public key correctness 2015-07-20 14:21:46 +00:00			`log.debug('fingerprint: %s', res['public_key']['fingerprint'])`
add support Trezor SSH agent 2015-06-06 14:52:10 +00:00			`return res`