Merge remote-tracking branch 'origin/master' into WP-5447-express-migrate-api-v2-coin-wallet-id-state-to-typed-routes

TICKET: WP-5447

Author: danielzhao122

.npmrc

@@ -0,0 +1 @@
+engine-strict=true

CODEOWNERS

@@ -109,10 +109,6 @@
 /modules/sdk-core/src/bitgo/address-book/ @BitGo/prime
 /modules/sdk-core/src/bitgo/trading/ @BitGo/prime
 
-# Asset Metadata Service
-/modules/statics/src/coins/botTokens.ts @BitGo/ams
-/modules/statics/src/coins/botOfcTokens.ts @BitGo/ams
-
 # Core Modules
 /modules/bitgo/ @BitGo/coins @BitGo/web-experience @BitGo/wallet-platform
 /modules/bitgo/test/v2/unit/lightning/ @BitGo/btc-team
@@ -141,6 +137,10 @@
 /types/ @BitGo/coins @BitGo/web-experience @BitGo/wallet-platform
 /webpack/ @BitGo/coins @BitGo/web-experience @BitGo/wallet-platform
 
+# Asset Metadata Service
+/modules/statics/src/coins/botTokens.ts @BitGo/ams
+/modules/statics/src/coins/botOfcTokens.ts @BitGo/ams
+
 /.eslintrc.json @BitGo/coins @BitGo/web-experience @BitGo/wallet-platform @BitGo/developer-experience
 /.prettierrc.yml @BitGo/coins @BitGo/web-experience @BitGo/wallet-platform @BitGo/developer-experience
 /check-package-versions.js @BitGo/coins @BitGo/web-experience @BitGo/wallet-platform @BitGo/developer-experience

modules/abstract-eth/src/ethLikeToken.ts

@@ -43,8 +43,8 @@ export class EthLikeToken extends AbstractEthLikeNewCoins {
   static createTokenConstructors(
     coinNames: CoinNames,
     tokenConfigs: EthLikeTokenConfig[] = [
-      ...tokens.bitcoin[coinNames.Mainnet].tokens,
-      ...tokens.testnet[coinNames.Mainnet].tokens,
+      ...(tokens.bitcoin[coinNames.Mainnet]?.tokens || []),
+      ...(tokens.testnet[coinNames.Mainnet]?.tokens || []),
     ]
   ): NamedCoinConstructor[] {
     const tokensCtors: NamedCoinConstructor[] = [];

modules/abstract-eth/src/lib/transactionBuilder.ts

@@ -49,6 +49,7 @@ import { Transaction } from './transaction';
 import { TransferBuilder } from './transferBuilder';
 
 const DEFAULT_M = 3;
+const RAW_TX_HEX_REGEX = /^(0x)?[0-9a-f]{1,}$/;
 
 /**
  * EthereumLike transaction builder.
@@ -165,7 +166,7 @@ export abstract class TransactionBuilder extends BaseTransactionBuilder {
   /** @inheritdoc */
   protected fromImplementation(rawTransaction: string, isFirstSigner?: boolean): Transaction {
     let tx: Transaction;
-    if (/^0x?[0-9a-f]{1,}$/.test(rawTransaction.toLowerCase())) {
+    if (RAW_TX_HEX_REGEX.test(rawTransaction.toLowerCase())) {
       tx = Transaction.fromSerialized(this._coinConfig, this._common, rawTransaction, isFirstSigner);
       this.loadBuilderInput(tx.toJson(), isFirstSigner);
     } else {
@@ -343,7 +344,7 @@ export abstract class TransactionBuilder extends BaseTransactionBuilder {
       throw new InvalidTransactionError('Raw transaction is empty');
     }
     if (typeof rawTransaction === 'string') {
-      if (/^0x?[0-9a-f]{1,}$/.test(rawTransaction.toLowerCase())) {
+      if (RAW_TX_HEX_REGEX.test(rawTransaction.toLowerCase())) {
         const txBytes = ethUtil.toBuffer(ethUtil.addHexPrefix(rawTransaction.toLowerCase()));
         if (!this.isEip1559Txn(txBytes) && !this.isRLPDecodable(txBytes)) {
           throw new ParseTransactionError('There was error in decoding the hex string');

modules/abstract-lightning/package.json

@@ -43,6 +43,7 @@
     "@bitgo/sdk-core": "^36.8.0",
     "@bitgo/statics": "^57.8.0",
     "@bitgo/utxo-lib": "^11.10.0",
+    "bip174": "npm:@bitgo-forks/[email protected]",
     "bs58check": "^2.1.2",
     "fp-ts": "^2.12.2",
     "io-ts": "npm:@bitgo-forks/[email protected]",

modules/abstract-lightning/src/codecs/api/withdraw.ts

@@ -1,6 +1,7 @@
 import * as t from 'io-ts';
 import { LightningOnchainRequest, optionalString } from '@bitgo/public-types';
 import { PendingApprovalData, TxRequestState } from '@bitgo/sdk-core';
+import { Bip32Derivation } from 'bip174/src/lib/interfaces';
 
 export const WithdrawStatusDelivered = 'delivered';
 export const WithdrawStatusFailed = 'failed';
@@ -124,3 +125,10 @@ export const SendPsbtResponse = t.intersection(
   'SendPsbtResponse'
 );
 export type SendPsbtResponse = t.TypeOf<typeof SendPsbtResponse>;
+
+export type WithdrawBaseOutputUTXO<TNumber extends number | bigint = number> = {
+  value: TNumber;
+  change: boolean;
+  address: string;
+  bip32Derivation?: Bip32Derivation;
+};

modules/abstract-lightning/src/lightning/index.ts

@@ -1,3 +1,4 @@
 export * from './signableJson';
 export * from './signature';
 export * from './lightningUtils';
+export * from './parseWithdrawPsbt';

modules/abstract-lightning/src/lightning/parseWithdrawPsbt.ts

@@ -0,0 +1,145 @@
+import * as utxolib from '@bitgo/utxo-lib';
+import { Psbt } from '@bitgo/utxo-lib';
+import { WatchOnlyAccount, WithdrawBaseOutputUTXO } from '../codecs';
+import { LightningOnchainRecipient } from '@bitgo/public-types';
+import { Bip32Derivation } from 'bip174/src/lib/interfaces';
+
+function parseDerivationPath(derivationPath: string): {
+  purpose: number;
+  change: number;
+  addressIndex: number;
+} {
+  const pathSegments = derivationPath.split('/');
+  const purpose = Number(pathSegments[1].replace(/'/g, ''));
+  const change = Number(pathSegments[pathSegments.length - 2]);
+  const addressIndex = Number(pathSegments[pathSegments.length - 1]);
+  return { purpose, change, addressIndex };
+}
+
+function parsePsbtOutputs(psbt: Psbt, network: utxolib.Network): WithdrawBaseOutputUTXO<bigint>[] {
+  const parsedOutputs: WithdrawBaseOutputUTXO<bigint>[] = [];
+  let bip32Derivation: Bip32Derivation | undefined;
+
+  for (let i = 0; i < psbt.data.outputs.length; i++) {
+    const output = psbt.data.outputs[i];
+    const txOutput = psbt.txOutputs[i];
+
+    let address = '';
+    const value = txOutput.value;
+    let isChange = false;
+
+    if (output.bip32Derivation && output.bip32Derivation.length > 0) {
+      isChange = true;
+      bip32Derivation = output.bip32Derivation[0];
+    }
+    if (txOutput.script) {
+      address = utxolib.address.fromOutputScript(txOutput.script, network);
+    }
+    const valueBigInt = BigInt(value);
+
+    parsedOutputs.push({
+      address,
+      value: valueBigInt,
+      change: isChange,
+      bip32Derivation,
+    });
+  }
+
+  return parsedOutputs;
+}
+
+function verifyChangeAddress(
+  output: WithdrawBaseOutputUTXO<bigint>,
+  accounts: WatchOnlyAccount[],
+  network: utxolib.Network
+): void {
+  if (!output.bip32Derivation || !output.bip32Derivation.path) {
+    throw new Error(`bip32Derivation path not found for change address`);
+  }
+  // derivation path example: m/84'/0'/0'/1/0
+  const { purpose, change, addressIndex } = parseDerivationPath(output.bip32Derivation.path);
+
+  // Find the corresponding account using the purpose
+  const account = accounts.find((acc) => acc.purpose === purpose);
+  if (!account) {
+    throw new Error(`Account not found for purpose: ${purpose}`);
+  }
+
+  // Create a BIP32 node from the xpub
+  const xpubNode = utxolib.bip32.fromBase58(account.xpub, network);
+
+  // Derive the public key from the xpub using the change and address index
+  const derivedPubkey = xpubNode.derive(change).derive(addressIndex).publicKey;
+
+  if (derivedPubkey.toString('hex') !== output.bip32Derivation.pubkey.toString('hex')) {
+    throw new Error(
+      `Derived pubkey does not match for address: ${output.address}, derived: ${derivedPubkey.toString(
+        'hex'
+      )}, expected: ${output.bip32Derivation.pubkey.toString('hex')}`
+    );
+  }
+
+  // Determine the correct payment type based on the purpose
+  let derivedAddress: string | undefined;
+  switch (purpose) {
+    case 49: // P2SH-P2WPKH (Nested SegWit)
+      derivedAddress = utxolib.payments.p2sh({
+        redeem: utxolib.payments.p2wpkh({
+          pubkey: derivedPubkey,
+          network,
+        }),
+        network,
+      }).address;
+      break;
+    case 84: // P2WPKH (Native SegWit)
+      derivedAddress = utxolib.payments.p2wpkh({
+        pubkey: derivedPubkey,
+        network,
+      }).address;
+      break;
+    case 86: // P2TR (Taproot)
+      derivedAddress = utxolib.payments.p2tr({
+        pubkey: derivedPubkey,
+        network,
+      }).address;
+      break;
+    default:
+      throw new Error(`Unsupported purpose: ${purpose}`);
+  }
+
+  if (derivedAddress !== output.address) {
+    throw new Error(`invalid change address: expected ${derivedAddress}, got ${output.address}`);
+  }
+}
+
+/**
+ * Validates the funded psbt before creating the signatures for withdraw.
+ */
+export function validatePsbtForWithdraw(
+  psbtHex: string,
+  network: utxolib.Network,
+  recipients: LightningOnchainRecipient[],
+  accounts: WatchOnlyAccount[]
+): void {
+  const parsedPsbt = Psbt.fromHex(psbtHex, { network: network });
+  const outputs = parsePsbtOutputs(parsedPsbt, network);
+  outputs.forEach((output) => {
+    if (output.change) {
+      try {
+        verifyChangeAddress(output, accounts, network);
+      } catch (e: any) {
+        throw new Error(`Unable to verify change address: ${e}`);
+      }
+    } else {
+      let match = false;
+      recipients.forEach((recipient) => {
+        if (recipient.address === output.address && BigInt(recipient.amountSat) === output.value) {
+          match = true;
+        }
+      });
+      if (!match) {
+        throw new Error(`PSBT output ${output.address} with value ${output.value} does not match any recipient`);
+      }
+    }
+  });
+}

modules/abstract-lightning/src/wallet/lightning.ts

@@ -10,7 +10,12 @@ import {
   decodeOrElse,
 } from '@bitgo/sdk-core';
 import * as t from 'io-ts';
-import { createMessageSignature, unwrapLightningCoinSpecific } from '../lightning';
+import {
+  createMessageSignature,
+  getUtxolibNetwork,
+  unwrapLightningCoinSpecific,
+  validatePsbtForWithdraw,
+} from '../lightning';
 import {
   CreateInvoiceBody,
   Invoice,
@@ -28,6 +33,7 @@ import {
   ListInvoicesResponse,
   ListPaymentsResponse,
   LndCreateWithdrawResponse,
+  WatchOnly,
 } from '../codecs';
 import { LightningPaymentIntent, LightningPaymentRequest } from '@bitgo/public-types';
 
@@ -364,6 +370,32 @@ export class LightningWallet implements ILightningWallet {
       throw new Error(`serialized txHex is missing`);
     }
 
+    const walletData = this.wallet.toJSON();
+    if (!walletData.coinSpecific.watchOnlyAccounts) {
+      throw new Error(`wallet is missing watch only accounts`);
+    }
+
+    const watchOnlyAccountDetails = decodeOrElse(
+      WatchOnly.name,
+      WatchOnly,
+      walletData.coinSpecific.watchOnlyAccounts,
+      (errors) => {
+        throw new Error(`invalid watch only accounts, error: ${errors}`);
+      }
+    );
+    const network = getUtxolibNetwork(this.wallet.coin());
+
+    try {
+      validatePsbtForWithdraw(
+        transactionRequestCreate.transactions[0].unsignedTx.serializedTxHex,
+        network,
+        params.recipients,
+        watchOnlyAccountDetails.accounts
+      );
+    } catch (err: any) {
+      throw new Error(`error validating withdraw psbt: ${err}`);
+    }
+
     const { userAuthKey } = await getLightningAuthKeychains(this.wallet);
     const userAuthKeyEncryptedPrv = userAuthKey.encryptedPrv;
     if (!userAuthKeyEncryptedPrv) {

modules/abstract-lightning/test/unit/lightning/parseWithdrawPsbt.ts

@@ -0,0 +1,88 @@
+import { validatePsbtForWithdraw } from '../../../src';
+import * as utxolib from '@bitgo/utxo-lib';
+import assert from 'assert';
+
+describe('parseWithdrawPsbt', () => {
+  const unsignedPsbtHex =
+    '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';
+  const network = utxolib.networks.testnet;
+  const recipients = [
+    {
+      amountSat: 100000n,
+      address: 'tb1px7du3rxpt5mqtmvauxmpl7xk2qsmv5xmz9g7w5drpzzuelx869dqwape7k',
+    },
+  ];
+  const accounts = [
+    {
+      xpub: 'tpubDCmiWMkTJrZ24t1Z6ECR3HyynCyZ9zGsWqhcLh6H4yFK2CDozSszD1pP2Li4Nx1YYtRcvmNbdb3nD1SzFejYtPFfTocTv2EaAgJCg4zpJpA',
+      purpose: 49,
+      coin_type: 0,
+      account: 0,
+    },
+    {
+      xpub: 'tpubDCFN7bsxR9UTKggdH2pmv5HeHGQNiDrJwa1EZFtP9sH5PF28i37FHpoYSYARQkKZ6Mi98pkp7oypDcxFmE4dQGq8jV8Gv3L6gmWBeRwPxkP',
+      purpose: 84,
+      coin_type: 0,
+      account: 0,
+    },
+  ];
+  it('should parse a valid withdraw PSBT', () => {
+    validatePsbtForWithdraw(unsignedPsbtHex, network, recipients, accounts);
+  });
+  it('should throw for invalid PSBT', () => {
+    assert.throws(() => {
+      validatePsbtForWithdraw('asdasd', network, recipients, accounts);
+    }, /ERR_BUFFER_OUT_OF_BOUNDS/);
+  });
+  it('should throw for invalid recipient address', () => {
+    const differentRecipients = [
+      {
+        ...recipients[0],
+        address: 'tb1qxyzxyzxyzxyzxyzxyzxyzxyzxyzxyzxyzxyzxyzxyzxyzxyzxyz',
+      },
+    ];
+    assert.throws(() => {
+      validatePsbtForWithdraw(unsignedPsbtHex, network, differentRecipients, accounts);
+    }, /PSBT output tb1px7du3rxpt5mqtmvauxmpl7xk2qsmv5xmz9g7w5drpzzuelx869dqwape7k with value 100000 does not match any recipient/);
+  });
+  it('should throw for invalid recipient value', () => {
+    const differentRecipients = [
+      {
+        ...recipients[0],
+        amountSat: 99999n,
+      },
+    ];
+    assert.throws(() => {
+      validatePsbtForWithdraw(unsignedPsbtHex, network, differentRecipients, accounts);
+    }, /PSBT output tb1px7du3rxpt5mqtmvauxmpl7xk2qsmv5xmz9g7w5drpzzuelx869dqwape7k with value 100000 does not match any recipient/);
+  });
+  it('should throw for account not found', () => {
+    const incompatibleAccounts = [];
+    assert.throws(() => {
+      validatePsbtForWithdraw(unsignedPsbtHex, network, recipients, incompatibleAccounts);
+    }, /Account not found for purpose/);
+  });
+  it('should throw for invalid pubkey', () => {
+    const incompatibleAccounts = [
+      {
+        ...accounts[1],
+        xpub: 'tpubDCmiWMkTJrZ24t1Z6ECR3HyynCyZ9zGsWqhcLh6H4yFK2CDozSszD1pP2Li4Nx1YYtRcvmNbdb3nD1SzFejYtPFfTocTv2EaAgJCg4zpJpA',
+      },
+    ];
+    assert.throws(() => {
+      validatePsbtForWithdraw(unsignedPsbtHex, network, recipients, incompatibleAccounts);
+    }, /Derived pubkey does not match for address/);
+  });
+  it('should throw for invalid purpose', () => {
+    const incompatibleAccounts = [
+      {
+        ...accounts[1],
+        purpose: 1017,
+      },
+    ];
+    const incompatiblePsbt = `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`;
+    assert.throws(() => {
+      validatePsbtForWithdraw(incompatiblePsbt, network, recipients, incompatibleAccounts);
+    }, /Unsupported purpose/);
+  });
+});