feat(mbe): consolidate unspents

Author: cpatino-intive

src/__tests__/api/master/consolidateUnspents.test.ts

@@ -0,0 +1,191 @@
+import 'should';
+import sinon from 'sinon';
+import * as request from 'supertest';
+import nock from 'nock';
+import { app as expressApp } from '../../../masterExpressApp';
+import { AppMode, MasterExpressConfig, TlsMode } from '../../../shared/types';
+import { Environments, Wallet } from '@bitgo/sdk-core';
+
+describe('POST /api/:coin/wallet/:walletId/consolidateunspents', () => {
+  let agent: request.SuperAgentTest;
+  const coin = 'btc';
+  const walletId = 'test-wallet-id';
+  const accessToken = 'test-access-token';
+  const bitgoApiUrl = Environments.test.uri;
+  const enclavedExpressUrl = 'https://test-enclaved-express.com';
+
+  before(() => {
+    nock.disableNetConnect();
+    nock.enableNetConnect('127.0.0.1');
+
+    const config: MasterExpressConfig = {
+      appMode: AppMode.MASTER_EXPRESS,
+      port: 0,
+      bind: 'localhost',
+      timeout: 30000,
+      logFile: '',
+      env: 'test',
+      disableEnvCheck: true,
+      authVersion: 2,
+      enclavedExpressUrl: enclavedExpressUrl,
+      enclavedExpressCert: 'test-cert',
+      tlsMode: TlsMode.DISABLED,
+      mtlsRequestCert: false,
+      allowSelfSigned: true,
+    };
+
+    const app = expressApp(config);
+    agent = request.agent(app);
+  });
+
+  afterEach(() => {
+    nock.cleanAll();
+    sinon.restore();
+  });
+
+  it('should return transfer, txid, tx, and status on success', async () => {
+    const walletGetNock = nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/wallet/${walletId}`)
+      .matchHeader('any', () => true)
+      .reply(200, {
+        id: walletId,
+        type: 'cold',
+        subType: 'onPrem',
+        keys: ['user-key-id', 'backup-key-id', 'bitgo-key-id'],
+      });
+
+    const keychainGetNock = nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('any', () => true)
+      .reply(200, {
+        id: 'user-key-id',
+        pub: 'xpub_user',
+      });
+
+    const mockResult = {
+      transfer: {
+        entries: [
+          { address: 'tb1qu...', value: -4000 },
+          { address: 'tb1qle...', value: -4000 },
+          { address: 'tb1qtw...', value: 2714, isChange: true },
+        ],
+        id: '685ac2f3c2f8a2a5d9cc18d3593f1751',
+        coin: 'tbtc',
+        wallet: '685abbf19ca95b79f88e0b41d9337109',
+        txid: '239d143cdfc6d6c83a935da4f3d610b2364a956c7b6dcdc165eb706f62c4432a',
+        status: 'signed',
+      },
+      txid: '239d143cdfc6d6c83a935da4f3d610b2364a956c7b6dcdc165eb706f62c4432a',
+      tx: '01000000000102580b...',
+      status: 'signed',
+    };
+
+    const consolidateUnspentsStub = sinon
+      .stub(Wallet.prototype, 'consolidateUnspents')
+      .resolves(mockResult);
+
+    const response = await agent
+      .post(`/api/${coin}/wallet/${walletId}/consolidateunspents`)
+      .set('Authorization', `Bearer ${accessToken}`)
+      .send({
+        source: 'user',
+        pubkey: 'xpub_user',
+        feeRate: 1000,
+      });
+
+    response.status.should.equal(200);
+    response.body.should.have.property('transfer');
+    response.body.should.have.property('txid', mockResult.txid);
+    response.body.should.have.property('tx', mockResult.tx);
+    response.body.should.have.property('status', mockResult.status);
+    response.body.transfer.should.have.property('txid', mockResult.transfer.txid);
+    response.body.transfer.should.have.property('status', mockResult.transfer.status);
+    response.body.transfer.should.have.property('entries').which.is.Array();
+
+    walletGetNock.done();
+    keychainGetNock.done();
+    sinon.assert.calledOnce(consolidateUnspentsStub);
+  });
+
+  it('should return error, name, and details on failure', async () => {
+    const walletGetNock = nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/wallet/${walletId}`)
+      .matchHeader('any', () => true)
+      .reply(200, {
+        id: walletId,
+        type: 'cold',
+        subType: 'onPrem',
+        keys: ['user-key-id', 'backup-key-id', 'bitgo-key-id'],
+      });
+
+    const keychainGetNock = nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('any', () => true)
+      .reply(200, {
+        id: 'user-key-id',
+        pub: 'xpub_user',
+      });
+
+    const mockError = {
+      error: 'Internal Server Error',
+      name: 'ApiResponseError',
+      details: 'There are too few unspents that meet the given parameters to consolidate (1 available).',
+    };
+
+    const consolidateUnspentsStub = sinon
+      .stub(Wallet.prototype, 'consolidateUnspents')
+      .throws(Object.assign(new Error(mockError.details), mockError));
+
+    const response = await agent
+      .post(`/api/${coin}/wallet/${walletId}/consolidateunspents`)
+      .set('Authorization', `Bearer ${accessToken}`)
+      .send({
+        source: 'user',
+        pubkey: 'xpub_user',
+        feeRate: 1000,
+      });
+
+    response.status.should.equal(500);
+    response.body.should.have.property('error', mockError.error);
+    response.body.should.have.property('name', mockError.name);
+    response.body.should.have.property('details', mockError.details);
+
+    walletGetNock.done();
+    keychainGetNock.done();
+    sinon.assert.calledOnce(consolidateUnspentsStub);
+  });
+
+  it('should throw error when provided pubkey does not match wallet keychain', async () => {
+    const walletGetNock = nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/wallet/${walletId}`)
+      .matchHeader('any', () => true)
+      .reply(200, {
+        id: walletId,
+        type: 'cold',
+        subType: 'onPrem',
+        keys: ['user-key-id', 'backup-key-id', 'bitgo-key-id'],
+      });
+
+    const keychainGetNock = nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('any', () => true)
+      .reply(200, {
+        id: 'user-key-id',
+        pub: 'xpub_user',
+      });
+
+    const response = await agent
+      .post(`/api/${coin}/wallet/${walletId}/consolidateunspents`)
+      .set('Authorization', `Bearer ${accessToken}`)
+      .send({
+        source: 'user',
+        pubkey: 'wrong_pubkey',
+        feeRate: 1000,
+      });
+
+    response.status.should.equal(500);
+
+    walletGetNock.done();
+    keychainGetNock.done();
+  });
+});

src/api/master/handlers/handleConsolidateUnspents.ts

@@ -0,0 +1,60 @@
+import { RequestTracer, KeyIndices } from '@bitgo/sdk-core';
+import logger from '../../../logger';
+import { MasterApiSpecRouteRequest } from '../routers/masterApiSpec';
+
+export async function handleConsolidateUnspents(
+  req: MasterApiSpecRouteRequest<'v1.wallet.consolidateUnspents', 'post'>,
+) {
+  const enclavedExpressClient = req.enclavedExpressClient;
+  const reqId = new RequestTracer();
+  const bitgo = req.bitgo;
+  const baseCoin = bitgo.coin((req as any).params.coin);
+  const params = (req as any).decoded;
+  const walletId = (req as any).params.walletId;
+  const wallet = await baseCoin.wallets().get({ id: walletId, reqId });
+
+  if (!wallet) {
+    throw new Error(`Wallet ${walletId} not found`);
+  }
+
+  // Get the signing keychain based on source
+  const keyIdIndex = params.source === 'user' ? KeyIndices.USER : KeyIndices.BACKUP;
+  const signingKeychain = await baseCoin.keychains().get({
+    id: wallet.keyIds()[keyIdIndex],
+  });
+
+  if (!signingKeychain || !signingKeychain.pub) {
+    throw new Error(`Signing keychain for ${params.source} not found`);
+  }
+
+  if (params.pubkey && params.pubkey !== signingKeychain.pub) {
+    throw new Error(`Pub provided does not match the keychain on wallet for ${params.source}`);
+  }
+
+  try {
+    // Create custom signing function that delegates to EBE
+    const customSigningFunction = async (signParams: any) => {
+      const signedTx = await enclavedExpressClient.signMultisig({
+        txPrebuild: signParams.txPrebuild,
+        source: params.source,
+        pub: signingKeychain.pub!,
+      });
+      return signedTx;
+    };
+
+    // Prepare consolidation parameters
+    const consolidationParams = {
+      ...params,
+      customSigningFunction,
+      reqId,
+    };
+
+    // Send consolidate unspents
+    const result = await wallet.consolidateUnspents(consolidationParams);
+    return result;
+  } catch (error) {
+    const err = error as Error;
+    logger.error('Failed to consolidate unspents: %s', err.message);
+    throw err;
+  }
+} 

src/api/master/routers/masterApiSpec.ts

@@ -23,6 +23,7 @@ import { validateMasterExpressConfig } from '../middleware/middleware';
 import { handleRecoveryWalletOnPrem } from '../handlers/recoveryWallet';
 import { handleConsolidate } from '../handlers/handleConsolidate';
 import { handleAccelerate } from '../handlers/handleAccelerate';
+import { handleConsolidateUnspents } from '../handlers/handleConsolidateUnspents';
 
 // Middleware functions
 export function parseBody(req: express.Request, res: express.Response, next: express.NextFunction) {
@@ -188,6 +189,42 @@ const RecoveryWalletRequest = {
 
 export type RecoveryWalletRequest = typeof RecoveryWalletRequest;
 
+export const ConsolidateUnspentsRequest = {
+  pubkey: t.string,
+  source: t.union([t.literal('user'), t.literal('backup')]),
+  walletPassphrase: t.union([t.undefined, t.string]),
+  xprv: t.union([t.undefined, t.string]),
+  feeRate: t.union([t.undefined, t.union([t.string, t.number])]),
+  maxFeeRate: t.union([t.undefined, t.union([t.string, t.number])]),
+  maxFeePercentage: t.union([t.undefined, t.number]),
+  feeTxConfirmTarget: t.union([t.undefined, t.number]),
+  bulk: t.union([t.undefined, t.boolean]),
+  minValue: t.union([t.undefined, t.union([t.string, t.number])]),
+  maxValue: t.union([t.undefined, t.union([t.string, t.number])]),
+  minHeight: t.union([t.undefined, t.number]),
+  minConfirms: t.union([t.undefined, t.number]),
+  enforceMinConfirmsForChange: t.union([t.undefined, t.boolean]),
+  limit: t.union([t.undefined, t.number]),
+  numUnspentsToMake: t.union([t.undefined, t.number]),
+  targetAddress: t.union([t.undefined, t.string]),
+  txFormat: t.union([
+    t.undefined,
+    t.literal('legacy'),
+    t.literal('psbt'),
+    t.literal('psbt-lite'),
+  ]),
+};
+
+const ConsolidateUnspentsResponse: HttpResponse = {
+  200: t.any,
+  202: t.any,
+  400: t.any,
+  500: t.type({
+    error: t.string,
+    details: t.string,
+  }),
+};
+
 // API Specification
 export const MasterApiSpec = apiSpec({
   'v1.wallet.generate': {