UNPKG

@lunie/cosmos-ledger

Version:

provide simple Ledger tooling for the Cosmos Ledger App with user friendly errors

luniehq/cosmos-ledger

397 lines 20.2 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
"use strict"; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); } return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; var __generator = (this && this.__generator) || function (thisArg, body) { var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g; return g = { next: verb(0), "throw": verb(1), "return": verb(2) }, typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g; function verb(n) { return function (v) { return step([n, v]); }; } function step(op) { if (f) throw new TypeError("Generator is already executing."); while (_) try { if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t; if (y = 0, t) op = [op[0] & 2, t.value]; switch (op[0]) { case 0: case 1: t = op; break; case 4: _.label++; return { value: op[1], done: false }; case 5: _.label++; y = op[1]; op = [0]; continue; case 7: op = _.ops.pop(); _.trys.pop(); continue; default: if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; } if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; } if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; } if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; } if (t[2]) _.ops.pop(); _.trys.pop(); continue; } op = body.call(thisArg, _); } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; } if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true }; } }; exports.__esModule = true; exports.checkAppMode = void 0; var ledger_cosmos_js_1 = require("ledger-cosmos-js"); var secp256k1_1 = require("secp256k1"); var semver = require('semver'); var crypto = require("crypto"); var Ripemd160 = require("ripemd160"); var bech32 = require("bech32"); var INTERACTION_TIMEOUT = 120; // seconds to wait for user action on Ledger, currently is always limited to 60 var REQUIRED_COSMOS_APP_VERSION = '1.5.3'; /* HD wallet derivation path (BIP44) DerivationPath{44, 118, account, 0, index} */ var HDPATH = [44, 118, 0, 0, 0]; var BECH32PREFIX = "cosmos"; var Ledger = /** @class */ (function () { function Ledger(_a, hdPath, hrp) { var _b = (_a === void 0 ? { testModeAllowed: false } : _a).testModeAllowed, testModeAllowed = _b === void 0 ? false : _b; if (hdPath === void 0) { hdPath = HDPATH; } if (hrp === void 0) { hrp = BECH32PREFIX; } this.testModeAllowed = testModeAllowed; this.hdPath = hdPath; this.hrp = hrp; this.platform = navigator.platform; // set it here to overwrite in tests this.userAgent = navigator.userAgent; // set it here to overwrite in tests } // quickly test connection and compatibility with the Ledger device throwing away the connection Ledger.prototype.testDevice = function () { return __awaiter(this, void 0, void 0, function () { var secondsTimeout; return __generator(this, function (_a) { switch (_a.label) { case 0: secondsTimeout = 3 // a lower value always timeouts ; return [4 /*yield*/, this.connect(secondsTimeout)]; case 1: _a.sent(); this.cosmosApp = null; return [2 /*return*/, this]; } }); }); }; // check if the Ledger device is ready to receive signing requests Ledger.prototype.isReady = function () { return __awaiter(this, void 0, void 0, function () { var version, msg; return __generator(this, function (_a) { switch (_a.label) { case 0: return [4 /*yield*/, this.getCosmosAppVersion()]; case 1: version = _a.sent(); if (!semver.gte(version, REQUIRED_COSMOS_APP_VERSION)) { msg = "Outdated version: Please update Ledger Cosmos App to the latest version."; throw new Error(msg); } // throws if not open return [4 /*yield*/, this.isCosmosAppOpen()]; case 2: // throws if not open _a.sent(); return [2 /*return*/]; } }); }); }; // connects to the device and checks for compatibility // the timeout is the time the user has to react to requests on the Ledger device // set a low timeout to only check the connection without preparing the connection for user input Ledger.prototype.connect = function (timeout) { if (timeout === void 0) { timeout = INTERACTION_TIMEOUT; } return __awaiter(this, void 0, void 0, function () { var transport, TransportWebHID, TransportWebUSB, err_1, cosmosLedgerApp; return __generator(this, function (_a) { switch (_a.label) { case 0: // assume well connection if connected once if (this.cosmosApp) return [2 /*return*/, this // check if browser is supported ]; // check if browser is supported getBrowser(this.userAgent); if (!isWindows(this.platform)) return [3 /*break*/, 3]; if (!navigator.hid) { throw new Error("Your browser doesn't have HID enabled. Please enable this feature by visiting: chrome://flags/#enable-experimental-web-platform-features"); } return [4 /*yield*/, Promise.resolve().then(function () { return require( /* webpackChunkName: "webhid" */ '@ledgerhq/hw-transport-webhid'); })]; case 1: TransportWebHID = (_a.sent())["default"]; return [4 /*yield*/, TransportWebHID.create(timeout * 1000)]; case 2: transport = _a.sent(); return [3 /*break*/, 7]; case 3: _a.trys.push([3, 6, , 7]); return [4 /*yield*/, Promise.resolve().then(function () { return require( /* webpackChunkName: "webusb" */ '@ledgerhq/hw-transport-webusb'); })]; case 4: TransportWebUSB = (_a.sent())["default"]; return [4 /*yield*/, TransportWebUSB.create(timeout * 1000)]; case 5: transport = _a.sent(); return [3 /*break*/, 7]; case 6: err_1 = _a.sent(); /* istanbul ignore next: specific error rewrite */ if (err_1.message.trim().startsWith('No WebUSB interface found for your Ledger device')) { throw new Error("Couldn't connect to a Ledger device. Please use Ledger Live to upgrade the Ledger firmware to version 1.5.5 or later."); } /* istanbul ignore next: specific error rewrite */ if (err_1.message.trim().startsWith('Unable to claim interface')) { // apparently can't use it in several tabs in parallel throw new Error('Could not access Ledger device. Is it being used in another tab?'); } /* istanbul ignore next: specific error rewrite */ if (err_1.message.trim().startsWith('Not supported')) { // apparently can't use it in several tabs in parallel throw new Error("Your browser doesn't seem to support WebUSB yet. Try updating it to the latest version."); } /* istanbul ignore next: specific error rewrite */ if (err_1.message.trim().startsWith('No device selected')) { // apparently can't use it in several tabs in parallel throw new Error("You did not select a Ledger device. If you didn't see your Ledger, check if the Ledger is plugged in and unlocked."); } // throw unknown error throw err_1; case 7: cosmosLedgerApp = new ledger_cosmos_js_1["default"](transport); this.cosmosApp = cosmosLedgerApp; // checks if the Ledger is connected and the app is open return [4 /*yield*/, this.isReady()]; case 8: // checks if the Ledger is connected and the app is open _a.sent(); return [2 /*return*/, this]; } }); }); }; // returns the cosmos app version as a string like "1.1.0" Ledger.prototype.getCosmosAppVersion = function () { return __awaiter(this, void 0, void 0, function () { var response, major, minor, patch, test_mode, version; return __generator(this, function (_a) { switch (_a.label) { case 0: return [4 /*yield*/, this.connect()]; case 1: _a.sent(); return [4 /*yield*/, this.cosmosApp.getVersion()]; case 2: response = _a.sent(); this.checkLedgerErrors(response); major = response.major, minor = response.minor, patch = response.patch, test_mode = response.test_mode; exports.checkAppMode(this.testModeAllowed, test_mode); version = versionString({ major: major, minor: minor, patch: patch }); return [2 /*return*/, version]; } }); }); }; // checks if the cosmos app is open // to be used for a nicer UX Ledger.prototype.isCosmosAppOpen = function () { return __awaiter(this, void 0, void 0, function () { var appName; return __generator(this, function (_a) { switch (_a.label) { case 0: return [4 /*yield*/, this.getOpenApp()]; case 1: appName = _a.sent(); if (appName.toLowerCase() === "dashboard") { throw new Error("Please open the Cosmos Ledger app on your Ledger device."); } if (appName.toLowerCase() !== "cosmos") { throw new Error("Please close " + appName + " and open the Cosmos Ledger app on your Ledger device."); } return [2 /*return*/]; } }); }); }; Ledger.prototype.getOpenApp = function () { return __awaiter(this, void 0, void 0, function () { var response, appName; return __generator(this, function (_a) { switch (_a.label) { case 0: return [4 /*yield*/, this.connect()]; case 1: _a.sent(); return [4 /*yield*/, this.cosmosApp.appInfo()]; case 2: response = _a.sent(); this.checkLedgerErrors(response); appName = response.appName; return [2 /*return*/, appName]; } }); }); }; // returns the public key from the Ledger device as a Buffer Ledger.prototype.getPubKey = function () { return __awaiter(this, void 0, void 0, function () { var response; return __generator(this, function (_a) { switch (_a.label) { case 0: return [4 /*yield*/, this.connect()]; case 1: _a.sent(); return [4 /*yield*/, this.cosmosApp.publicKey(this.hdPath)]; case 2: response = _a.sent(); this.checkLedgerErrors(response); return [2 /*return*/, response.compressed_pk]; } }); }); }; // returns the cosmos address from the Ledger as a string Ledger.prototype.getCosmosAddress = function () { return __awaiter(this, void 0, void 0, function () { var pubKey, res; return __generator(this, function (_a) { switch (_a.label) { case 0: return [4 /*yield*/, this.connect()]; case 1: _a.sent(); return [4 /*yield*/, this.getPubKey()]; case 2: pubKey = _a.sent(); return [4 /*yield*/, getBech32FromPK(this.hrp, pubKey)]; case 3: res = _a.sent(); return [2 /*return*/, res]; } }); }); }; // triggers a confirmation request of the cosmos address on the Ledger device Ledger.prototype.confirmLedgerAddress = function () { return __awaiter(this, void 0, void 0, function () { var cosmosAppVersion, response; return __generator(this, function (_a) { switch (_a.label) { case 0: return [4 /*yield*/, this.connect()]; case 1: _a.sent(); return [4 /*yield*/, this.getCosmosAppVersion()]; case 2: cosmosAppVersion = _a.sent(); if (semver.lt(cosmosAppVersion, REQUIRED_COSMOS_APP_VERSION)) { // we can't check the address on an old cosmos app return [2 /*return*/]; } return [4 /*yield*/, this.cosmosApp.showAddressAndPubKey(this.hdPath, this.hrp)]; case 3: response = _a.sent(); this.checkLedgerErrors(response, { rejectionMessage: 'Displayed address was rejected' }); return [2 /*return*/]; } }); }); }; // create a signature for any message // in Cosmos this should be a serialized StdSignMsg // this is ideally generated by the @lunie/cosmos-js library Ledger.prototype.sign = function (signMessage) { return __awaiter(this, void 0, void 0, function () { var response, parsedSignature; return __generator(this, function (_a) { switch (_a.label) { case 0: return [4 /*yield*/, this.connect()]; case 1: _a.sent(); return [4 /*yield*/, this.cosmosApp.sign(this.hdPath, signMessage)]; case 2: response = _a.sent(); this.checkLedgerErrors(response); parsedSignature = secp256k1_1.signatureImport(response.signature); return [2 /*return*/, parsedSignature]; } }); }); }; // parse Ledger errors in a more user friendly format /* istanbul ignore next: maps a bunch of errors */ Ledger.prototype.checkLedgerErrors = function (_a, _b) { var error_message = _a.error_message, device_locked = _a.device_locked; var _c = _b === void 0 ? {} : _b, _d = _c.timeoutMessag, timeoutMessag = _d === void 0 ? 'Connection timed out. Please try again.' : _d, _e = _c.rejectionMessage, rejectionMessage = _e === void 0 ? 'User rejected the transaction' : _e; if (device_locked) { throw new Error("Ledger's screensaver mode is on"); } switch (error_message) { case "U2F: Timeout": throw new Error(timeoutMessag); case "Cosmos app does not seem to be open": throw new Error("Cosmos app is not open"); case "Command not allowed": throw new Error("Transaction rejected"); case "Transaction rejected": throw new Error(rejectionMessage); case "Unknown Status Code: 26628": throw new Error("Ledger's screensaver mode is on"); case "Instruction not supported": throw new Error("Your Cosmos Ledger App is not up to date. " + ("Please update to version " + REQUIRED_COSMOS_APP_VERSION + ".")); case "No errors": // do nothing break; default: throw new Error("Ledger Native Error: " + error_message); } }; return Ledger; }()); exports["default"] = Ledger; // stiched version string from Ledger app version object function versionString(_a) { var major = _a.major, minor = _a.minor, patch = _a.patch; return major + "." + minor + "." + patch; } // wrapper to throw if app is in testmode but it is not allowed to be in testmode exports.checkAppMode = function (testModeAllowed, testMode) { if (testMode && !testModeAllowed) { throw new Error("DANGER: The Cosmos Ledger app is in test mode and shouldn't be used on mainnet!"); } }; // doesn't properly work in ledger-cosmos-js function getBech32FromPK(hrp, pk) { if (pk.length !== 33) { throw new Error('expected compressed public key [31 bytes]'); } var hashSha256 = crypto .createHash('sha256') .update(pk) .digest(); var hashRip = new Ripemd160().update(hashSha256).digest(); return bech32.encode(hrp, bech32.toWords(hashRip)); } function isWindows(platform) { return platform.indexOf('Win') > -1; } function getBrowser(userAgent) { var ua = userAgent.toLowerCase(); var isChrome = /chrome|crios/.test(ua) && !/edge|opr\//.test(ua); var isBrave = isChrome && !window.google; if (!isChrome && !isBrave) { throw new Error("Your browser doesn't support Ledger devices."); } if (isBrave) return 'brave'; if (isChrome) return 'chrome'; } //# sourceMappingURL=cosmos-ledger.js.map