Trezor: add support for a new Trezor-Host Protocol #775
Comments
|
related: #326 back then the issue was that HWI does not want to expose "session management" functionality to callers -- even if we persist the above info on disk, every single user of HWI on the same system will live in the same session. Also i'm not up-to-date on how HWI currently handles multiple concurrently open passphrases? I recall something like, you can specify passphrase argument on the command line and this is passed to the wallet; if you don't, AND passphrase on Trezor is enabled, HWI will invoke passphrase prompt on device. So if the caller app does nothing, Trezor will ask for passphrase on every HWI command, correct? I'm wondering whether something like fingerprint-to-session database would be appropriate, so that callers can enumerate the possible (open) passphrase wallets? But that may be problematic when the wallet is not "open" and so not enumerated? |
|
To be clear: this issue is not about implementing THP in HWI directly, we're doing that in trezorlib ourselves. This issue is about the HWI-side API and UX of pairing and of persisting sessions between command invocations. |
Rationale
New Trezor devices will use a new session-based Trezor-Host Protocol with encrypted channels. For HWI to support such devices, changes in
trezorlibare necessary. Furthermore, to avoid a new handshake for each command, information about the connection needs to be temporarily stored (encryption and decryption keys, nonces, synchronization bits, channel id). Optionally, Trezor can issue a long-term pairing credential to avoid repeated pairing.Brief description of the new protocol
Handshake, encryption:
trezor_masked_static_pubkey = X25519(SHA-256(trezor_static_pubkey || trezor_ephemeral_pubkey), trezor_static_pubkey).Pairing:
trezorlib.Pairing credential:
cc: @matejcik
The text was updated successfully, but these errors were encountered: