Skip to content

Commit

Permalink
Document review with warning Use Case API
Browse files Browse the repository at this point in the history
  • Loading branch information
nroggeman-ledger committed Jan 15, 2025
1 parent ee526e9 commit ae99ee7
Show file tree
Hide file tree
Showing 5 changed files with 203 additions and 24 deletions.
168 changes: 168 additions & 0 deletions lib_nbgl/doc/nbgl_use_case.dox
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,9 @@ A few APIs are available to draw typical Use-Cases, such as:
- @ref nbgl_useCaseReview() to draw the pages of a regular coin transaction review, when all info are available from the beginning (see @subpage use_case_review)
- @ref nbgl_useCaseReviewLight() to draw the pages of a transaction review with a simple button confirmation, when all info are available from the beginning (see @subpage use_case_review_light)
- @ref nbgl_useCaseReviewStreamingStart() to draw the pages of a regular coin transaction review, when all info are not available from the beginning (see @subpage use_case_review_streaming)
- for reviews with a warning prolog:
- @ref nbgl_useCaseReviewWithWarning() to draw the pages of a regular coin transaction review, when all info are available from the beginning, but with an identified risk requiring a warning prolog (see @subpage use_case_review_with_warning)
- @ref nbgl_useCaseReviewStreamingWithWarningStart() to draw the pages of a regular coin transaction review, when all info are not available from the beginning, but with an identified risk requiring a warning prolog (see @subpage use_case_review_with_warning and @subpage use_case_review_streaming)
- for address verification:
- @ref nbgl_useCaseAddressReview() to draw an address confirmation page, with a possibility to see it as QR Code and some extra tag/value pairs (see @subpage use_case_addr_review)
- for keypad:
Expand Down Expand Up @@ -455,6 +458,171 @@ void staticReview(void) {
}
@endcode

@subsection use_case_review_with_warning Review with warning Use Case

\image{inline} html UseCase-Review-With-Warning.png "caption" height=500

The review itself behaves like in @subpage use_case_review. The main differences are:

- The review itself is preceded by a warning page offering the possibility to cancel the review ("Back to safety") or to start it ("Continue anyway")
- In the first and last pages of the actual review, a top-right button offers the possibility to get more information about the warning

The API to initiate the display of the series of pages is @ref nbgl_useCaseReviewWithWarning(), providing:

- the type of operation to review (transaction, message or generic operation)
- the list of tag/value pairs (or a callback to get them one by one)
- the texts/icon to use in presentation page and in last page
- the configuration to use for the warning (see @ref nbgl_warning_t structure)
- a callback called when the long press button on last page or reject confirmation is used. The callback's param is *true* for confirmation, *false* for rejection.

@note the recommended configuration for warning is the predefined one. In this case, one just has to fill the *predefinedSet* field of @ref nbgl_warning_t with the appropriate warning
causes (bitfield) and the *reportProvider* field with the name of the 3rd party providing the Web3Checks report, if necessary.

Here is the code to display something similar to example picture:

@code
// 4 pairs of tag/value to display
static nbgl_layoutTagValue_t pairs[4];

static const nbgl_contentTagValueList_t pairList = {
.nbMaxLinesForValue = 0,
.nbPairs = 4,
.pairs = (nbgl_layoutTagValue_t*)pairs
};

// warning description (cannot be in call stack)
static nbgl_warning_t warningDesc;

// called when long press button on 3rd page is long-touched or when reject footer is touched
static void onReviewResult(bool confirm) {
// display a status page and go back to main
if (confirm) {
nbgl_useCaseReviewStatus(STATUS_TYPE_TRANSACTION_SIGNED, appMain);
}
else {
nbgl_useCaseReviewStatus(STATUS_TYPE_TRANSACTION_REJECTED, appMain);
}
}

void staticReview(void) {
warningDesc.predefinedSet = (1 << W3C_LOSING_SWAP_WARN) | (1 << BLIND_SIGNING_WARN);
warningDesc.reportProvider = "Blockaid";

// static review, providing the whole list of pairs
nbgl_useCaseReviewWithWarning(TYPE_TRANSACTION, // type of operation
&pairList, // list of tag/value pairs
coinIcon, // icon of the coin
"Review transaction\nto send coin", // title of the first page
NULL, // sub-title of the first page
"Sign transaction to\nsend coin?", // title of the last page
NULL, // no tip-box in first page of review
warningDesc, // description of warning causes
onReviewResult); // callback on result of the review
}
@endcode

Here is another version of the example code, not using predefined text:

@code
// 4 pairs of tag/value to display
static nbgl_layoutTagValue_t pairs[4];

static const nbgl_contentTagValueList_t pairList = {
.nbMaxLinesForValue = 0,
.nbPairs = 4,
.pairs = (nbgl_layoutTagValue_t*)pairs
};

// icons for first level warning details
static const nbgl_icon_details_t *barListIcons[] = {&WARNING_ICON, &INFO_I_ICON};

// first level warning details
static const char *const barListTexts[] = {"Blind signing", "Risk detected"};
static const char *const barListSubTexts[] = {"This transaction cannot be fully decoded.", "Web3 Checks found a risk:\nLosing swap"};
// second level warning details in prolog
static const struct nbgl_warningDetails_s barListIntroDetails[] = {
{.title = "Back",
.type = QRCODE_WARNING,
.qrCode = {.url = "ledger.com/e8", .text1 = "ledger.com/e8", .text2 = "Scan to learn about the risks of blind signing.", .centered = true}},
{.title = "Back",
.type = QRCODE_WARNING,
.qrCode = {.url = "url.com/od24xz", .text1 = "url.com/od24xz", .text2 = "Scan to view the risk report from Blockaid.", .centered = true}}
};

// second level warning details in review
static const struct nbgl_warningDetails_s barListIntroDetails[] = {
{.title = "Back",
.type = CENTERED_INFO_WARNING,
.centeredInfo = {.icon = &C_Warning_64px, .title = "Blind signing", .description = "This transaction’s details are not fully verifiable. If you sign it, you could lose all your assets.\n\nLearn about blind signing:
ledger.com/e8"}},
{.title = "Back",
.type = CENTERED_INFO_WARNING,
.centeredInfo = {.icon = &C_Warning_64px, .title = "Risk detected", .description = "This transaction was scanned as risky by Web3 Checks.\n\nView full Blockaid report:url.com/od24xz"}}
};

// info in main warning page
static const nbgl_contentCenter_t warningInfo = {
.icon = &C_Warning_64px,
.title = "Dangerous transaction",
.description = "This transaction cannot be fully decoded, and was marked risky by Web3 Checks."
};

// first level warning details in prolog
static const nbgl_warningDetails_t warningIntroDetails = {
.title = "Security report",
.type = BAR_LIST_WARNING,
.barList.nbBars = 2,
.barList.icons = barListIcons,
.texts = barListTexts,
.subTexts = barListSubTexts,
.barList.details = barListIntroDetails
};

// first level warning details in review (when pressing top-right from first and last pages)
static const nbgl_warningDetails_t warningReviewDetails = {
.title = "Security report",
.type = BAR_LIST_WARNING,
.barList.nbBars = 2,
.barList.icons = barListIcons,
.texts = barListTexts,
.subTexts = barListSubTexts,
.barList.details = barListReviewDetails
};

// warning description (cannot be in call stack)
static const nbgl_warning_t warningDesc = {
.info = &warningInfo,
.introTopRightIcon = &PRIVACY_ICON,
.reviewTopRightIcon = &WARNING_ICON,
.introDetails = &warningIntroDetails,
.reviewDetails = &warningReviewDetails
};

// called when long press button on 3rd page is long-touched or when reject footer is touched
static void onReviewResult(bool confirm) {
// display a status page and go back to main
if (confirm) {
nbgl_useCaseReviewStatus(STATUS_TYPE_TRANSACTION_SIGNED, appMain);
}
else {
nbgl_useCaseReviewStatus(STATUS_TYPE_TRANSACTION_REJECTED, appMain);
}
}

void staticReview(void) {
// static review, providing the whole list of pairs
nbgl_useCaseReviewWithWarning(TYPE_TRANSACTION, // type of operation
&pairList, // list of tag/value pairs
coinIcon, // icon of the coin
"Review transaction\nto send coin", // title of the first page
NULL, // sub-title of the first page
"Sign transaction to\nsend coin?", // title of the last page
NULL, // no tip-box in first page of review
warningDesc, // description of warning causes
onReviewResult); // callback on result of the review
}
@endcode

@subsection use_case_addr_review Address Review Use Case

\image{inline} html UseCase-AddressReview.png "caption" height=500
Expand Down
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
1 change: 1 addition & 0 deletions lib_nbgl/include/nbgl_step.h
Original file line number Diff line number Diff line change
Expand Up @@ -51,6 +51,7 @@ typedef void (*nbgl_stepMenuListCallback_t)(uint8_t choiceIndex);

/**
* @brief prototype of function to be called when buttons are touched on a screen
* @param stepCtx context returned by the nbgl_stepDrawXXX function
* @param event type of button event
*/
typedef void (*nbgl_stepButtonCallback_t)(nbgl_step_t stepCtx, nbgl_buttonEvent_t event);
Expand Down
6 changes: 3 additions & 3 deletions lib_nbgl/include/nbgl_use_case.h
Original file line number Diff line number Diff line change
Expand Up @@ -130,10 +130,10 @@ typedef void (*nbgl_actionCallback_t)(uint8_t page);

/**
* @brief prototype of pin validation callback function
* @param content pin value
* @param length pin length
* @param pin pin value
* @param pinLen pin length
*/
typedef void (*nbgl_pinValidCallback_t)(const uint8_t *content, uint8_t page);
typedef void (*nbgl_pinValidCallback_t)(const uint8_t *pin, uint8_t pinLen);

/**
* @brief prototype of content navigation callback function
Expand Down
52 changes: 31 additions & 21 deletions lib_nbgl/src/nbgl_use_case.c
Original file line number Diff line number Diff line change
Expand Up @@ -1865,9 +1865,11 @@ static void displaySecurityReport(uint32_t set)
.backAndText.token = DISMISS_WARNING_TOKEN};
uint8_t i;
uint8_t nbWarnings = 0;
const char *provider;

reviewWithWarnCtx.modalLayout = nbgl_layoutGet(&layoutDescription);

// count the number of warnings
for (i = 0; i < NB_WARNING_TYPES; i++) {
if (set & (1 << i)) {
nbWarnings++;
Expand Down Expand Up @@ -1897,6 +1899,12 @@ static void displaySecurityReport(uint32_t set)
nbgl_refresh();
return;
}
if (reviewWithWarnCtx.warning && reviewWithWarnCtx.warning->reportProvider) {
provider = reviewWithWarnCtx.warning->reportProvider;
}
else {
provider = "[unknown]";
}
if (set & (1 << BLIND_SIGNING_WARN)) {
if (reviewWithWarnCtx.isIntro) {
#ifdef NBGL_QRCODE
Expand Down Expand Up @@ -1924,7 +1932,7 @@ static void displaySecurityReport(uint32_t set)
headerDesc.separationLine = false;
}
}
if (set & (1 << W3C_ISSUE_WARN)) {
else if (set & (1 << W3C_ISSUE_WARN)) {
// if W3 Checks issue, display a centered info
nbgl_contentCenter_t info = {0};
info.icon = &C_Important_Circle_64px;
Expand All @@ -1937,25 +1945,26 @@ static void displaySecurityReport(uint32_t set)
if (reviewWithWarnCtx.isIntro) {
#ifdef NBGL_QRCODE
// display a QR Code if in intro
nbgl_layoutQRCode_t qrCode = {.url = "url.com/od24xz",
.text1 = "url.com/od24xz",
.text2 = "Scan to view the threat report from Blockaid.",
nbgl_layoutQRCode_t qrCode = {.url = "url.com/od24xz",
.text1 = "url.com/od24xz",
.text2 = tmpString,
.centered = true,
.offsetY = 0};
snprintf(tmpString,
W3C_DESCRIPTION_MAX_LEN,
"Scan to view the threat report from %s.",
provider);
nbgl_layoutAddQRCode(reviewWithWarnCtx.modalLayout, &qrCode);
#endif // NBGL_QRCODE
headerDesc.backAndText.text = "Web3 Checks threat report";
}
else {
// display a centered if in review
nbgl_contentCenter_t info = {0};
const char *provider = reviewWithWarnCtx.warning->reportProvider
? reviewWithWarnCtx.warning->reportProvider
: "[unknown]";
info.icon = &C_Warning_64px;
info.title = "Threat detected";
info.smallTitle = "Known drainer contract";
info.description = tmpString;
nbgl_contentCenter_t info = {0};
info.icon = &C_Warning_64px;
info.title = "Threat detected";
info.smallTitle = "Known drainer contract";
info.description = tmpString;
snprintf(tmpString,
W3C_DESCRIPTION_MAX_LEN,
"This transaction was scanned as malicious by Web3 Checks.\n\nView full %s "
Expand All @@ -1971,23 +1980,24 @@ static void displaySecurityReport(uint32_t set)
// display a QR Code if in intro
nbgl_layoutQRCode_t qrCode = {.url = "url.com/od24xz",
.text1 = "url.com/od24xz",
.text2 = "Scan to view the risk report from Blockaid.",
.text2 = tmpString,
.centered = true,
.offsetY = 0};
snprintf(tmpString,
W3C_DESCRIPTION_MAX_LEN,
"Scan to view the risk report from %s.",
provider);
nbgl_layoutAddQRCode(reviewWithWarnCtx.modalLayout, &qrCode);
#endif // NBGL_QRCODE
headerDesc.backAndText.text = "Web3 Checks risk report";
}
else {
// display a centered if in review
nbgl_contentCenter_t info = {0};
const char *provider = reviewWithWarnCtx.warning->reportProvider
? reviewWithWarnCtx.warning->reportProvider
: "[unknown]";
info.icon = &C_Warning_64px;
info.title = "Risk detected";
info.smallTitle = "Losing swap";
info.description = tmpString;
nbgl_contentCenter_t info = {0};
info.icon = &C_Warning_64px;
info.title = "Risk detected";
info.smallTitle = "Losing swap";
info.description = tmpString;
snprintf(tmpString,
W3C_DESCRIPTION_MAX_LEN,
"This transaction was scanned as risky by Web3 Checks.\n\n"
Expand Down

0 comments on commit ae99ee7

Please sign in to comment.