Merge pull request #200 from BitGo/pranavjain/wcn-447-fix-wallet-pubs-consolidate-accelerate

fix(master-express): forward walletPubs in consolidateUnspents and accelerate

Author: pranavjain97

src/__tests__/api/master/accelerate.test.ts

@@ -34,6 +34,12 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/accelerate', () => {
     type: 'independent',
   };
 
+  const mockBitgoKeychain = {
+    id: 'bitgo-key-id',
+    pub: 'xpub661MyMwAqRbcHtYNxRNuEtDFmPMRzBVPDfBXNu2RUBVFNz8MnWQgkrMZCNB',
+    type: 'bitgo',
+  };
+
   before(() => {
     nock.disableNetConnect();
     nock.enableNetConnect('127.0.0.1');
@@ -68,11 +74,26 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/accelerate', () => {
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockWalletData);
 
+    // Signing keychain fetched by getWalletAndSigningKeychain
     const keychainGetNock = nock(bitgoApiUrl)
       .get(`/api/v2/${coin}/key/user-key-id`)
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockUserKeychain);
 
+    // All 3 keychains fetched for walletPubs
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBackupKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
     const accelerateTransactionStub = sinon
       .stub(Wallet.prototype, 'accelerateTransaction')
       .resolves({
@@ -117,11 +138,26 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/accelerate', () => {
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockWalletData);
 
+    // Signing keychain fetched by getWalletAndSigningKeychain
     const keychainGetNock = nock(bitgoApiUrl)
       .get(`/api/v2/${coin}/key/backup-key-id`)
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockBackupKeychain);
 
+    // All 3 keychains fetched for walletPubs
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBackupKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
     const accelerateTransactionStub = sinon
       .stub(Wallet.prototype, 'accelerateTransaction')
       .resolves({
@@ -157,11 +193,26 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/accelerate', () => {
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockWalletData);
 
+    // Signing keychain fetched by getWalletAndSigningKeychain
     const keychainGetNock = nock(bitgoApiUrl)
       .get(`/api/v2/${coin}/key/user-key-id`)
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockUserKeychain);
 
+    // All 3 keychains fetched for walletPubs
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBackupKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
     const accelerateTransactionStub = sinon
       .stub(Wallet.prototype, 'accelerateTransaction')
       .resolves({
@@ -324,11 +375,26 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/accelerate', () => {
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockWalletData);
 
+    // Signing keychain fetched by getWalletAndSigningKeychain
     const keychainGetNock = nock(bitgoApiUrl)
       .get(`/api/v2/${coin}/key/user-key-id`)
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockUserKeychain);
 
+    // All 3 keychains fetched for walletPubs
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBackupKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
     const accelerateTransactionStub = sinon
       .stub(Wallet.prototype, 'accelerateTransaction')
       .rejects(new Error('Insufficient funds for acceleration'));
@@ -408,4 +474,128 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/accelerate', () => {
     response.body.should.have.property('error', 'Internal Server Error');
     response.body.should.have.property('details');
   });
+
+  it('should pass walletPubs (all 3 xpubs) to AWM for UTXO signing', async () => {
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/wallet/${walletId}`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockWalletData);
+
+    // Signing keychain (user) — fetched once by getWalletAndSigningKeychain
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+
+    // All 3 keychains fetched for walletPubs
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBackupKeychain);
+
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
+    let capturedSignBody: any;
+    const awmSignNock = nock(advancedWalletManagerUrl)
+      .post(`/api/${coin}/multisig/sign`, (body) => {
+        capturedSignBody = body;
+        return true;
+      })
+      .reply(200, {
+        halfSigned: { txHex: 'signed-tx-hex' },
+        source: 'user',
+        pub: mockUserKeychain.pub,
+      });
+
+    // Stub accelerateTransaction to call customSigningFunction so the AWM request is made
+    sinon.stub(Wallet.prototype, 'accelerateTransaction').callsFake(async (params: any) => {
+      await params.customSigningFunction({ txPrebuild: { txHex: 'prebuilt-tx' } });
+      return { txid: 'accelerated-tx-id', tx: '0100000001abcdef...', status: 'signed' };
+    });
+
+    const response = await agent
+      .post(`/api/v1/${coin}/advancedwallet/${walletId}/accelerate`)
+      .set('Authorization', `Bearer ${accessToken}`)
+      .send({
+        pubkey: mockUserKeychain.pub,
+        source: 'user',
+        cpfpTxIds: ['b8a828b98dbf32d9fd1875cbace9640ceb8c82626716b4a64203fdc79bb46d26'],
+        cpfpFeeRate: 50,
+      });
+
+    response.status.should.equal(200);
+    awmSignNock.done();
+    capturedSignBody.should.have.property('walletPubs');
+    capturedSignBody.walletPubs.should.deepEqual([
+      mockUserKeychain.pub,
+      mockBackupKeychain.pub,
+      mockBitgoKeychain.pub,
+    ]);
+  });
+
+  it('should omit walletPubs from AWM request when any keychain is missing a pub', async () => {
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/wallet/${walletId}`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockWalletData);
+
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, { id: 'backup-key-id' }); // no pub
+
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
+    let capturedSignBody: any;
+    const awmSignNock = nock(advancedWalletManagerUrl)
+      .post(`/api/${coin}/multisig/sign`, (body) => {
+        capturedSignBody = body;
+        return true;
+      })
+      .reply(200, {
+        halfSigned: { txHex: 'signed-tx-hex' },
+        source: 'user',
+        pub: mockUserKeychain.pub,
+      });
+
+    sinon.stub(Wallet.prototype, 'accelerateTransaction').callsFake(async (params: any) => {
+      await params.customSigningFunction({ txPrebuild: { txHex: 'prebuilt-tx' } });
+      return { txid: 'accelerated-tx-id', tx: '0100000001abcdef...', status: 'signed' };
+    });
+
+    const response = await agent
+      .post(`/api/v1/${coin}/advancedwallet/${walletId}/accelerate`)
+      .set('Authorization', `Bearer ${accessToken}`)
+      .send({
+        pubkey: mockUserKeychain.pub,
+        source: 'user',
+        cpfpTxIds: ['b8a828b98dbf32d9fd1875cbace9640ceb8c82626716b4a64203fdc79bb46d26'],
+        cpfpFeeRate: 50,
+      });
+
+    response.status.should.equal(200);
+    awmSignNock.done();
+    capturedSignBody.should.not.have.property('walletPubs');
+  });
 });

src/__tests__/api/master/consolidate.test.ts

@@ -38,6 +38,12 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/consolidate', () => {
     type: 'independent',
   };
 
+  const mockBitgoKeychain = {
+    id: 'bitgo-key-id',
+    pub: 'xpub661MyMwAqRbcHtYNxRNuEtDFmPMRzBVPDfBXNu2RUBVFNz8MnWQgkrMZCNB',
+    type: 'bitgo',
+  };
+
   before(() => {
     nock.disableNetConnect();
     nock.enableNetConnect('127.0.0.1');
@@ -77,6 +83,20 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/consolidate', () => {
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockUserKeychain);
 
+    // All 3 keychains fetched for walletPubs
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBackupKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
     const mockBuilds = [
       {
         walletId,
@@ -147,6 +167,20 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/consolidate', () => {
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, { ...mockUserKeychain, commonKeychain: 'user-common-key' });
 
+    // All 3 keychains fetched for walletPubs
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, { ...mockUserKeychain, commonKeychain: 'user-common-key' });
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBackupKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
     const mockMpcBuild = {
       walletId,
       txHex: 'unsigned-mpc-tx-hex-1',
@@ -234,6 +268,20 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/consolidate', () => {
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockBackupKeychain);
 
+    // All 3 keychains fetched for walletPubs
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBackupKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
     const mockBuild = {
       walletId,
       txHex: 'unsigned-tx-hex-backup',
@@ -365,6 +413,20 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/consolidate', () => {
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockUserKeychain);
 
+    // All 3 keychains fetched for walletPubs
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBackupKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
     const allowsConsolidationsStub = sinon
       .stub(Hteth.prototype, 'allowsAccountConsolidations')
       .returns(false);
@@ -458,6 +520,20 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/consolidate', () => {
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockUserKeychain);
 
+    // All 3 keychains fetched for walletPubs
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBackupKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
     const mockBuilds = [
       { walletId, txHex: 'unsigned-tx-hex-1' },
       { walletId, txHex: 'unsigned-tx-hex-2' },
@@ -516,6 +592,20 @@ describe('POST /api/v1/:coin/advancedwallet/:walletId/consolidate', () => {
       .matchHeader('authorization', `Bearer ${accessToken}`)
       .reply(200, mockUserKeychain);
 
+    // All 3 keychains fetched for walletPubs
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/user-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockUserKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/backup-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBackupKeychain);
+    nock(bitgoApiUrl)
+      .get(`/api/v2/${coin}/key/bitgo-key-id`)
+      .matchHeader('authorization', `Bearer ${accessToken}`)
+      .reply(200, mockBitgoKeychain);
+
     const mockBuilds = [
       { walletId, txHex: 'unsigned-tx-hex-1' },
       { walletId, txHex: 'unsigned-tx-hex-2' },