Add flag to confirm key on device (#8478)

2020-02-26 15:24:44 -07:00
parent d47a47924a
commit f6f0f94e17
5 changed files with 28 additions and 7 deletions
--- a/remote-wallet/src/ledger.rs
+++ b/remote-wallet/src/ledger.rs
@ -261,7 +261,7 @@ impl RemoteWallet for LedgerWallet {
            .serial_number
            .clone()
            .unwrap_or_else(|| "Unknown".to_owned());
-        self.get_pubkey(&DerivationPath::default())
+        self.get_pubkey(&DerivationPath::default(), false)
            .map(|pubkey| RemoteWalletInfo {
                model,
                manufacturer,
@ -270,12 +270,16 @@ impl RemoteWallet for LedgerWallet {
            })
    }

-    fn get_pubkey(&self, derivation_path: &DerivationPath) -> Result<Pubkey, RemoteWalletError> {
+    fn get_pubkey(
+        &self,
+        derivation_path: &DerivationPath,
+        confirm_key: bool,
+    ) -> Result<Pubkey, RemoteWalletError> {
        let derivation_path = extend_and_serialize(derivation_path);

        let key = self.send_apdu(
            commands::GET_PUBKEY,
-            0, // In the naive implementation, default request is for no device confirmation
+            if confirm_key { 1 } else { 0 },
            0,
            &derivation_path,
        )?;
--- a/remote-wallet/src/remote_keypair.rs
+++ b/remote-wallet/src/remote_keypair.rs
@ -20,9 +20,10 @@ impl RemoteKeypair {
    pub fn new(
        wallet_type: RemoteWalletType,
        derivation_path: DerivationPath,
+        confirm_key: bool,
    ) -> Result<Self, RemoteWalletError> {
        let pubkey = match &wallet_type {
-            RemoteWalletType::Ledger(wallet) => wallet.get_pubkey(&derivation_path)?,
+            RemoteWalletType::Ledger(wallet) => wallet.get_pubkey(&derivation_path, confirm_key)?,
        };

        Ok(Self {
@ -51,6 +52,7 @@ pub fn generate_remote_keypair(
    path: String,
    explicit_derivation_path: Option<DerivationPath>,
    wallet_manager: &RemoteWalletManager,
+    confirm_key: bool,
 ) -> Result<RemoteKeypair, RemoteWalletError> {
    let (remote_wallet_info, mut derivation_path) = RemoteWalletInfo::parse_path(path)?;
    if let Some(derivation) = explicit_derivation_path {
@ -61,6 +63,7 @@ pub fn generate_remote_keypair(
        Ok(RemoteKeypair::new(
            RemoteWalletType::Ledger(ledger),
            derivation_path,
+            confirm_key,
        )?)
    } else {
        Err(RemoteWalletError::DeviceTypeMismatch)
--- a/remote-wallet/src/remote_wallet.rs
+++ b/remote-wallet/src/remote_wallet.rs
@ -174,7 +174,11 @@ pub trait RemoteWallet {
    ) -> Result<RemoteWalletInfo, RemoteWalletError>;

    /// Get solana pubkey from a RemoteWallet
-    fn get_pubkey(&self, derivation_path: &DerivationPath) -> Result<Pubkey, RemoteWalletError>;
+    fn get_pubkey(
+        &self,
+        derivation_path: &DerivationPath,
+        confirm_key: bool,
+    ) -> Result<Pubkey, RemoteWalletError>;

    /// Sign transaction data with wallet managing pubkey at derivation path m/44'/501'/<account>'/<change>'.
    fn sign_message(