feat: recovery for eth and other musig2 coins wip

Author: mtexeira-simtlix

mocks/wallet-recovery/eth-recovery-sign-half.json

@@ -0,0 +1,15 @@
+{
+    "halfSigned": {
+        "recipients": [
+            {
+                "address": "0xe7d07af8e3e7472ea8391a3372ab98d04ac4df20",
+                "amount": "1000000000000000000"
+            }
+        ],
+        "expireTime": 1750182870,
+        "contractSequenceId": 1,
+        "operationHash": "0x92d3a28bd75dfa559c60e679b98fddfcb7dcaeb579c25cab3f9442b25fd270e2",
+        "signature": "0x62c594b62ce2fc9f1d2e82a105668ed53528eb02635b8ad73206fe75ed26b26923450ed54b87980296c362fe03c7bc8e156d1ab38bfe9a682ba585e7d92d88e31b",
+        "backupKeyNonce": 0
+    }
+}

mocks/wallet-recovery/musig-eth-recovery-sign-full.json

@@ -0,0 +1,3 @@
+{
+    "txHex": "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"
+}

mocks/wallet-recovery/musig-eth-recovery-unsigned.json

@@ -0,0 +1,24 @@
+{
+    "tx": "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",
+    "userKey": "xpub661MyMwAqRbcFigezGWEYSbCPVuaUmvnp1u7iEpH9YsKU6uYQtPANvudjgAo82QRHXsUieMqKeB1xEj89VUKU1ugtmyAZ3xzNEbHPexxgKK",
+    "backupKey": "xpub661MyMwAqRbcGbCirzmQsUJT2eidt9tFLw2m77w6FiKco6TKu49CP3GkHF88xGCpvqkP93SYMAarfyWAn8UWevQtNT6pDo8xH7xmf6GqK6e",
+    "coin": "hteth",
+    "gasPrice": "20000000000",
+    "gasLimit": "500000",
+    "recipients": [
+        {
+            "address": "0xe7d07af8e3e7472ea8391a3372ab98d04ac4df20",
+            "amount": "1000000000000000000"
+        }
+    ],
+    "walletContractAddress": "0x223fe2adcc8f28d8a46f72f7f355117d2727554d",
+    "amount": "1000000000000000000",
+    "backupKeyNonce": 0,
+    "recipient": {
+        "address": "0xe7d07af8e3e7472ea8391a3372ab98d04ac4df20",
+        "amount": "1000000000000000000"
+    },
+    "expireTime": 1750181523,
+    "contractSequenceId": 1,
+    "nextContractSequenceId": 1
+}

src/masterBitgoExpress/recoveryWallet.ts

@@ -1,67 +1,176 @@
+// TODO: type the handler with something like this
 // export async function handleRecoveryWalletOnPrem(
 //   req: MasterApiSpecRouteRequest<'v1.wallet.recovery', 'post'>,
 // ) {
-//   console.log(req);
 // }
 
-import { AbstractEthLikeNewCoins, RecoverOptions } from '@bitgo/abstract-eth';
+import { SignFinalOptions } from '@bitgo/abstract-eth';
+import { isEosCoin, isEthCoin, isStxCoin, isUtxoCoin, isXtzCoin } from '../shared/coinUtils';
 import { BitGoRequest } from '../types/request';
 import { createEnclavedExpressClient } from './enclavedExpressClient';
 
+// TODO: this is gonna be present on eve so we can remove this
+const userEncryptedPrv = '';
+const backupEncryptedPrv = '';
+const passphrase = '';
+// TODO: ---end remove vars
+
 export async function handleRecoveryWalletOnPrem(req: BitGoRequest) {
   const bitgo = req.bitgo;
   const coin = req.params.coin;
-  // const { rootAddress, recoveryDestinationAddress, userPubKey, backupPubKey, coinSpecificParams } =
-  //   req.body;
 
-  //TODO: delete this part
-  const userPubKey = '';
-  const backupPubKey = '';
-  const apiKey = '';
-  const walletContractAddress = '';
-  const recoveryDestinationAddress = '';
+  const {
+    userPub,
+    backupPub,
+    walletContractAddress,
+    recoveryDestinationAddress,
+    coinSpecificParams,
+  } = req.body;
 
   const baseCoin = bitgo.coin(coin);
-
   const enclavedExpressClient = createEnclavedExpressClient(req.config, coin);
   if (!enclavedExpressClient) {
     throw new Error(
       'Enclaved express client not configured - enclaved express features will be disabled',
     );
   }
 
-  // what's this? isEVM
+  const sdkCoin = baseCoin;
+  const commonRecoverParams = {
+    userKey: userPub,
+    backupKey: backupPub,
+    walletContractAddress,
+    recoveryDestination: recoveryDestinationAddress,
+    // TODO: add api key here, currently configured on bitgo obj
+    // apiKey,
+  };
   if (baseCoin.isEVM()) {
-    let sdkCoin;
-    //TODO: do we need this cast to call recover?
-    if (true) {
-      sdkCoin = baseCoin as unknown as AbstractEthLikeNewCoins;
-      // } else if (isStxCoin(baseCoin)) {
-      //   //TODO: what's the abstract coin class for stx, eos, btc, etc?
-      //   sdkCoin = baseCoin as unknown as AbstractStxCoin;
+    if (isEthCoin(sdkCoin)) {
+      try {
+        // TODO: populate coinSpecificParams with things like replayProtectionOptions
+        // coinSpecificParams type could be "recoverOptions"
+        const unsignedTx = await sdkCoin.recover({
+          ...commonRecoverParams,
+          walletPassphrase: passphrase,
+        });
+
+        const halfSignedTx = await sdkCoin.signTransaction({
+          txPrebuild: { ...unsignedTx } as unknown as SignFinalOptions,
+          prv: bitgo.decrypt({ password: passphrase, input: userEncryptedPrv }),
+        });
+
+        const { halfSigned } = halfSignedTx as any;
+        const fullSignedTx = await sdkCoin.signTransaction({
+          isLastSignature: true,
+          signingKeyNonce: halfSigned.signingKeyNonce ?? 0,
+          backupKeyNonce: halfSigned.backupKeyNonce ?? 0,
+          txPrebuild: {
+            ...halfSigned,
+            txHex: halfSigned.signatures,
+            halfSigned,
+          } as unknown as SignFinalOptions,
+          prv: bitgo.decrypt({ password: passphrase, input: backupEncryptedPrv }),
+          recipients: halfSigned.recipients ?? [],
+          walletContractAddress: walletContractAddress,
+        });
+      } catch (err) {
+        console.log(err);
+        throw err;
+      }
     } else {
       throw new Error('Unsupported coin type for recovery: ' + coin);
     }
+  } else {
+    // TODO (can't advance): XTZ throws a method not implemented on recover.
+    if (isXtzCoin(sdkCoin)) {
+      try {
+        const unsignedTx = await sdkCoin.recover({
+          ...commonRecoverParams,
+        });
+
+        //TODO: fill this fields, check output from recover when recover implemented on sdk for xtz
+        const txHex = '';
+        const txInfo = 'txInfo' in unsignedTx ? unsignedTx.txInfo : undefined;
+        const addressInfo = 'addressInfo' in unsignedTx ? unsignedTx.addressInfo : undefined;
+        const feeInfo = 'feeInfo' in unsignedTx ? unsignedTx.feeInfo : undefined;
+        const source = '';
+        const dataToSign = '';
 
-    // Is the other class for xtz, eos, btc ==> AbstractUtxoCoin or do we have more specialization than that?
+        const halfSignedTx = await sdkCoin.signTransaction({
+          txPrebuild: {
+            txHex,
+            txInfo,
+            addressInfo,
+            feeInfo,
+            source,
+            dataToSign,
+          },
+          prv: bitgo.decrypt({ password: passphrase, input: userEncryptedPrv }),
+        });
+      } catch (err) {
+        console.log(err);
+        throw err;
+      }
+    } else if (isStxCoin(sdkCoin)) {
+      //TODO: (implementation untested): prioritize eth and btc instead of stc, when the other couple finished, go back to STX
+      try {
+        const unsignedTx = await sdkCoin.recover({
+          ...commonRecoverParams,
+          rootAddress: walletContractAddress, // TODO: is a root address the same as wallet contract address? where does root address comes from if not?
+        });
+      } catch (err) {
+        console.log(err);
+        throw err;
+      }
+    } else if (isEosCoin(sdkCoin)) {
+      // TODO (implementation untested): we need some funds but faucets not working
+      try {
+        const unsignedTx = await sdkCoin.recover({
+          ...commonRecoverParams,
+        });
+      } catch (err) {
+        console.log(err);
+        throw err;
+      }
+    } else if (isUtxoCoin(sdkCoin)) {
+      //TODO (implementation untested): we need an API key to complete/test btc flow
+      //TODO: do we need a special case for BTC or is another UTXO-based coin?
 
-    try {
-      // const { apiKey, walletContractAddress } = coinSpecificParams;
+      const { bitgoPub } = coinSpecificParams || '';
+      try {
+        const unsignedTx = await sdkCoin.recover({
+          ...commonRecoverParams,
+          bitgoKey: bitgoPub,
+          ignoreAddressTypes: coinSpecificParams?.ignoreAddressTypes || [],
+        });
 
-      // recover also ask for gasPrice, gasLimit, replayProtectionOptions, etc
-      // should we bring those from the coinSpecificParams or just let them empty?
-      const unsignedTx = await sdkCoin.recover({
-        userKey: userPubKey,
-        backupKey: backupPubKey,
-        walletContractAddress,
-        recoveryDestination: recoveryDestinationAddress,
-        apiKey,
-        walletPassphrase: '^.u0UWaTI;cIx!xi9Ya1',
-      } as any as RecoverOptions);
-      console.log('unsigned tx payload');
-      console.log(JSON.stringify(unsignedTx));
-    } catch (err) {
-      console.log(err);
+        // some guards as the types have some imcompatibilities issues
+        const txInfo = 'txInfo' in unsignedTx ? unsignedTx.txInfo : undefined;
+        const txHex = 'txHex' in unsignedTx ? unsignedTx.txHex : '';
+
+        const halfSignedTx = await sdkCoin.signTransaction({
+          txPrebuild: {
+            txHex,
+            txInfo,
+          },
+          prv: bitgo.decrypt({ password: passphrase, input: userEncryptedPrv }),
+        });
+
+        const fullSignedTx = await sdkCoin.signTransaction({
+          //TODO: check the body of this based on halfSignedTx output
+          isLastSignature: true,
+          txPrebuild: {
+            txHex,
+            txInfo,
+          },
+          signingStep: 'cosignerNonce',
+        });
+      } catch (err) {
+        console.log(err);
+        throw err;
+      }
+    } else {
+      throw new Error('Unsupported coin type for recovery: ' + coin);
     }
   }
 }

src/shared/coinUtils.ts

@@ -0,0 +1,66 @@
+import { AbstractEthLikeNewCoins } from '@bitgo/abstract-eth';
+import { BaseCoin } from 'bitgo';
+import { AbstractUtxoCoin, Eos, Stx, Xtz } from 'bitgo/dist/types/src/v2/coins';
+
+export function isEthCoin(coin: BaseCoin): coin is AbstractEthLikeNewCoins {
+  const isEthPure =
+    isFamily(coin, 'eth', 'gteth') ||
+    isFamily(coin, 'eth', 'hteth') ||
+    isFamily(coin, 'ethw', 'tethw');
+
+  const isEthLike =
+    isFamily(coin, 'rbtc', 'trbtc') ||
+    isFamily(coin, 'etc', 'tetc') ||
+    isFamily(coin, 'avaxc', 'tavaxc') ||
+    isFamily(coin, 'polygon', 'tpolygon') ||
+    isFamily(coin, 'arbeth', 'tarbeth') ||
+    isFamily(coin, 'opeth', 'topeth') ||
+    isFamily(coin, 'bsc', 'tbsc') ||
+    isFamily(coin, 'baseeth', 'tbaseeth') ||
+    isFamily(coin, 'coredao', 'tcoredao') ||
+    isFamily(coin, 'oas', 'toas') ||
+    isFamily(coin, 'flr', 'tflr') ||
+    isFamily(coin, 'sgb', 'tsgb') ||
+    isFamily(coin, 'wemix', 'twemix') ||
+    isFamily(coin, 'xdc', 'txdc');
+
+  return isEthPure || isEthLike;
+}
+
+export function isUtxoCoin(coin: BaseCoin): coin is AbstractUtxoCoin {
+  // how to check if coin is UTXO? so many families
+  const isBtc = isFamily(coin, 'btc', 'tbtc');
+
+  const isBtcLike =
+    isFamily(coin, 'ltc', 'tltc') ||
+    isFamily(coin, 'bch', 'tbch') ||
+    isFamily(coin, 'zec', 'tzec') ||
+    isFamily(coin, 'dash', 'tdash') ||
+    isFamily(coin, 'doge', 'tdoge') ||
+    isFamily(coin, 'btg', 'tbtg');
+
+  return isBtc || isBtcLike;
+}
+
+//look for those on OVC repo
+//https://github.com/BitGo/offline-vault-console/blob/7f850cdd10c89ceb850c69759349b9e0bbfb56db/frontend/src/pkg/bitgo/transaction-utils.ts#L595
+export function isEosCoin(coin: BaseCoin): coin is Eos {
+  return isFamily(coin, 'eos', 'teos');
+}
+
+export function isStxCoin(coin: BaseCoin): coin is Stx {
+  return isFamily(coin, 'stx', 'tstx');
+}
+
+export function isXtzCoin(coin: BaseCoin): coin is Xtz {
+  // Tezos faucet: https://faucet.ghostnet.teztnets.com/
+  return isFamily(coin, 'xtz', 'txtz');
+}
+
+function isFamily(coin: BaseCoin, coinFamily: string, testFamily: string) {
+  if (!coin) {
+    return false;
+  }
+  const family = coin.getFamily();
+  return family === coinFamily || family === testFamily;
+}