feat(abstract-utxo): add BIP322 message verification functionality

davidkaplanbitgo · davidkaplanbitgo · commit 531a83c16d9b · 2025-09-03T11:41:20.000-04:00
Add functions to verify BIP322 message signatures in transaction proofs. Implement support for both PSBT and regular transaction formats, with verification against provided message information. Co-authored-by: llm-git <llm-git@ttll.de> TICKET: BTC-2375
diff --git a/modules/abstract-utxo/src/transaction/bip322.ts b/modules/abstract-utxo/src/transaction/bip322.ts
@@ -1,4 +1,6 @@
 import { decodeOrElse } from '@bitgo/sdk-core';
+import { bip322 } from '@bitgo/utxo-core';
+import { bitgo, networks, Network } from '@bitgo/utxo-lib';
 import * as t from 'io-ts';
 
 const BIP322MessageInfo = t.type({
@@ -33,3 +35,63 @@ export function deserializeBIP322BroadcastableMessage(hex: string): BIP322Messag
     throw new Error(`Failed to decode ${BIP322MessageBroadcastable.name}: ${error}`);
   });
 }
+
+export function verifyTransactionFromBroadcastableMessage(
+  message: BIP322MessageBroadcastable,
+  coinName: string
+): boolean {
+  let network: Network = networks.bitcoin;
+  if (coinName === 'tbtc4') {
+    network = networks.bitcoinTestnet4;
+  } else if (coinName !== 'btc') {
+    throw new Error('Only tbtc4 or btc coinNames are supported.');
+  }
+  if (bitgo.isPsbt(message.txHex)) {
+    const psbt = bitgo.createPsbtFromBuffer(Buffer.from(message.txHex, 'hex'), network);
+    try {
+      bip322.assertBip322PsbtProof(psbt, message.messageInfo);
+      return true;
+    } catch (error) {
+      return false;
+    }
+  } else {
+    const tx = bitgo.createTransactionFromBuffer(Buffer.from(message.txHex, 'hex'), network, { amountType: 'bigint' });
+    try {
+      bip322.assertBip322TxProof(tx, message.messageInfo);
+      return true;
+    } catch (error) {
+      return false;
+    }
+  }
+}
+
+export function generateBIP322MessageListAndVerifyFromMessageBroadcastable(
+  messageBroadcastables: BIP322MessageBroadcastable[],
+  coinName: string
+): { address: string; message: string }[] {
+  // Map from the address to the message. If there are duplicates of the address, make sure that the
+  // message is the same. If there are duplicate addresses and the messages are not the same, throw an error.
+  const addressMap = new Map<string, string>();
+
+  messageBroadcastables.forEach((message, index) => {
+    if (verifyTransactionFromBroadcastableMessage(message, coinName)) {
+      message.messageInfo.forEach((info) => {
+        const { address, message: msg } = info;
+        if (addressMap.has(address)) {
+          if (addressMap.get(address) !== msg) {
+            throw new Error(`Duplicate address ${address} has different messages`);
+          }
+        } else {
+          addressMap.set(address, msg);
+        }
+      });
+    } else {
+      throw new Error(`Message Broadcastable ${index} did not have a successful validation`);
+    }
+  });
+
+  return Array.from(addressMap.entries()).map(([address, message]) => ({
+    address,
+    message,
+  }));
+}
