/krux

Open-source signing device firmware for Bitcoin

Primary LanguagenesCOtherNOASSERTION

downloads codecov calver

Krux is open-source firmware that enables anyone to build their own Bitcoin signing device via off-the-shelf parts. It runs on Kendryte K210 devices such as the M5StickV and Maix Amigo, converting them into airgapped devices that can sign transactions for multisignature and single-sig wallets.


Disclaimer

WARNING: This software has not yet been audited by a third party. Use at your own risk!


Getting Started

Instructions for building and running Krux can now be found on our GitHub Pages site:

https://selfcustody.github.io/krux/

The instructions below are intended for developers who wish to contribute to the project.

Development

Fetch the code

Run the following:

git clone --recurse-submodules https://github.com/selfcustody/krux

This will pull down the Krux source code as well as the code for all its dependencies and put them inside a new krux folder.

Note: When you wish to pull down updates to this repo, you should run the following:

git pull origin main && git submodule update --init --recursive

This will make sure that all submodules (and their submodules, etc.) are pulled down and updated.

Krux (script)

The krux bash script contains commands for common development tasks. It assumes a Linux host, but may work on other systems. For this reason, we suggest you use Vagrant since all dependencies for development will be included. If running outside of Vagrant, you will need to have Docker, openssl, and wget installed at a minimum for the commands to work as expected.

For building and flashing Krux from within Vagrant, please follow the Installing from source guide on the website.

Otherwise, to run the commands on bare metal, remove the vagrant ssh -c 'cd /vagrant; <command>' wrapper from all commands like so:

# build firmware for MaixDock
# vagrant ssh -c 'cd /vagrant; ./krux build maixpy_dock'
./krux build maixpy_dock

# flash the firmware to a MaixDock
# vagrant ssh -c 'cd /vagrant; ./krux flash maixpy_dock'
./krux flash maixpy_dock

Install krux and dev tools

The krux code is a Python package that should be installed with Poetry. To generate a new poetry.lock file use: poetry lock --no-update.

pip install poetry
poetry install

This will also install all development tools so that you can run tests, run pylint, format code with black, etc.

Note that you can run poetry install after making a change to the krux code if you wish to test a change in the interpreter.

Format code

poetry run black ./src
poetry run black ./tests

Run pylint

poetry run pylint ./src

Run tests

poetry run pytest --cache-clear --cov src/krux --cov-report html ./tests

This will run all tests and generate a coverage report you can browse to locally in your browser at file:///path/to/krux/htmlcov/index.html.

For more verbose test output (e.g., to see the output of print statements), run:

poetry run pytest --cache-clear --cov src/krux --cov-report html --show-capture all --capture tee-sys -r A ./tests

To run just a specific test from a specific file, run:

poetry run pytest --cache-clear ./tests/pages/test_login.py -k 'test_load_key_from_hexadecimal'

Use the Python interpreter (REPL)

This can be useful for testing a change to the krux code without having to run a full build and flash:

poetry run python
Python 3.9.1
Type "help", "copyright", "credits" or "license" for more information.
>>> from krux.key import Key
>>> Key("olympic term tissue route sense program under choose bean emerge velvet absurd", False).xpub()
'tpubDCDuqu5HtBX2aD7wxvnHcj1DgFN1UVgzLkA1Ms4Va4P7TpJ3jDknkPLwWT2SqrKXNNAtJBCPcbJ8Tcpm6nLxgFapCZyhKgqwcEGv1BVpD7s'
>>>

Run the simulator

This can be useful for testing a change to the krux code without having to run a full build and flash, visual regression testing, generating screenshots, or even just trying out Krux before purchasing a device. However, the simulator may not behave exactly as the HW device and may not have all features implemented (e.g. scanning via camera a TinySeed currently only works on the HW device)

Before executing the simulator, make sure you have installed the poetry extras:

poetry install --extras simulator

# To install alongside docs extras, use:
poetry install --extras "simulator docs"

Depending on the OS, it may be necessary to install zbar-tools:

sudo apt install zbar-tools

Run the simulator:

# Enter simulator folder
cd simulator

# Run simulator with the touch device amigo, then use mouse to navigate
poetry run python simulator.py --device maixpy_amigo_tft

# Run simulator with sd enabled (you need the folder `simulator/sd`) on the small button-only device m5stick, then use keyboard (arrow keys UP or DOWN and ENTER)
poetry run python simulator.py --device maixpy_m5stickv --sd

# Run simulator with the rotary encoder device dock, then use keyboard (arrow keys UP or DOWN and ENTER)
poetry run python simulator.py --device maixpy_dock

To be able to emulate a SD card, first create a folder called sd inside simulator folder. With emulated SD card it is possible to store settings, encrypted mnemonics, also drop and sign PSBTs.

Simulator error troubleshooting: After some time running, the simulator may become slow. If that happens, just close and open again!

# ImportError: Unable to find zbar shared library
sudo apt install python3-zbar

# ImportError: libGL.so.1: cannot open shared object file: No such file or directory
sudo apt install libgl1

# `pygame.error: No available video device`
# You are trying to run the simulator on an OS without a GUI (some kind of terminal only or WSL). Try one with GUI!

Simulator sequences (automatic testing):

# Enter simulator folder:
cd simulator

# Run all sequences of commands on all devices and in all locales (languages)
./generate-all-screenshots.sh

# Run a specific sequence for a specific device's with sd enabled (you need the folder `simulator/sd`)
poetry run python simulator.py --sequence sequences/about.txt --sd --device maixpy_m5stickv

# Sequence screenshots are scaled to fit in docs. Use --no-screenshot-scale to get full size
poetry run python simulator.py --sequence sequences/home-options.txt --device maixpy_amigo_tft --no-screenshot-scale

Live debug a device

If you've made a fresh build and flashed it to your device, you can connect to the device over serial connection with:

screen /dev/tty.usbserial-device-name 115200

If you see a Resource is busy message, make sure to shut down the Vagrant box and try again:

vagrant halt

If successful, the device should restart and you should see:

K210 bootloader by LoBo v.1.4.1

* Find applications in MAIN parameters
0: '       firmware', @ 0x00080000, size=XXX, app_size=XXX, App ok, ACTIVE
* Loading app from flash at 0x00080000 (XXX B)
* Starting at 0x80000000 ...


[MAIXPY] Pll0:freq:XXX
[MAIXPY] Pll1:freq:XXX
[MAIXPY] Pll2:freq:XXX
[MAIXPY] cpu:freq:XXX
[MAIXPY] kpu:freq:XXX
[MAIXPY] Flash:0xef:0x17
[MaixPy] gc heap=0x8029f430-0x8036f430(851968)
init i2c:2 freq:XXX
[MAIXPY]: find ov7740
[MAIXPY]: find ov sensor

Some devices like Amigo have two serial ports, check the second one if you don't read data from first.

To leave screen serial monitor press Ctrl+a, followed by k, then confirm with y.

Krux makes use of MaixPy's WDT watchdog module, you can see it here. This will reset the device if not fed for some time. To stop the watchdog, when connected through the terminal, run the following:

# This will read the board config file, add the config to disable watchdog, save the new config file and reset the device (in order to make krux read the new file!)

import json, machine

CONF_FILENAME="/flash/config.json"
CONF_NAME="WATCHDOG_DISABLE"

conf_dict = {}
try:
  with open(CONF_FILENAME, "rb") as f:
    conf_dict = json.loads(f.read())
except:
    pass

conf_dict[CONF_NAME] = 1

with open(CONF_FILENAME, "w") as f:
    f.write(json.dumps(conf_dict))
    
machine.reset()

Now, with watchdog disabled, you can use the device normally. So no more automatic resets, and if you added any print statements to the code, they should appear whenever your code is reached.

You can also drop into a live Python REPL at any point by issuing an interrupt with Ctrl-C:

Traceback (most recent call last):
  File "boot.py", line 38, in <module>
  File "krux/pages/__init__.py", line 192, in run
  File "krux/pages/__init__.py", line 207, in run_loop
  File "krux/input.py", line 27, in wait_for_button
KeyboardInterrupt:
MicroPython; Sipeed_M1 with kendryte-k210
Type "help()" for more information.
>>>
>>>

Customizations made to the firmware removed the support to MaixPy IDE (due to size constraints), but you still can use it's terminal (MaixPy IDE menu bar > Tools > Open Terminal).

Create new translations - i18n

The project has lots of translations here, if you add new english messages in code using t() function, you will need to:

# Enter i18n folder:
cd i18n

# Clean unused translations:
poetry run python i18n.py clean

# Create a new translation file in JSON:
poetry run python i18n.py new tr-TR

# Use Google translate to create missing translations, copy them to respective files, review phrases and commas.
poetry run python i18n.py fill

# Create missing translations for a single language. Ex: Brazilian Portuguese
poetry run python i18n.py fill pt-BR.json

# Make sure all files have this new translated message:
poetry run python i18n.py validate

# Format translation files properly:
poetry run python i18n.py prettify

# Create the compiled table for krux translations.py
poetry run python i18n.py bake

Fonts

Learn about how to setup fonts here

Colors

Use this script to generate Maixpy compatible colors from RGB values to customize Krux

Documentation

Before change documentation, and run the mkdocs server, make sure you have installed the poetry extras:

poetry install --extras docs

# To install alongside simulator extras, use:
poetry install --extras "docs simulator"

To change lateral and upper menus on generated documentation, see mkdocs.yml file on nav section.

To create or edit translations on documentation (TODO: need help!), read more here.

Once changes are made, you can run:

poetry run mkdocs serve

Inspired by these similar projects

Powered by

  • embit, a Bitcoin library for Python 3 and Micropython
  • MaixPy, MicroPython for K210 RISC-V
  • MicroPython, a lean and efficient Python implementation for microcontrollers and constrained systems
  • Kboot and ktool

Contributing

Issues and pull requests welcome! Let's make this as good as it can be.

Before opening a pull request for a new feature, please first start a new discussion if the feature is large, is a proposal, or is in need of fleshing out before it can be turned into issue(s) for work. If the pull request you're opening already has an associated issue, please reference it when making your pull request and briefly explain how your PR resolves it. Ideally, each PR should be focused on resolving one issue (exceptions can be made if the work is related or tightly coupled).

Please note: When adding a new feature, please checkout and branch off of the develop branch. When making a PR, please also make sure to explicitly target develop; main is the default branch on GitHub because we want it to be easy for users (who aren't necessarily devs) to download and install Krux from source.

Support

For technical support installing or using Krux, you can join our #krux:matrix.org server or Telegram chat. Make sure to also check out the DIYbitcoin chat on Telegram, a broader community of tinkerers, builders, hackers, etc.

We do not use GitHub issues for support requests, only for bug reports and feature requests.

You can also post a question in our Discussions forum here on GitHub.