Merge branch 'master' into CECHO-917

TICKET: CECHO-917

Author: bhavesh-prasad

CODEOWNERS

@@ -27,6 +27,7 @@
 /modules/utxo-lib/ @BitGo/btc-team
 /modules/utxo-ord/ @BitGo/btc-team
 /modules/utxo-staking/ @BitGo/btc-team
+/modules/utxo-descriptors/ @BitGo/btc-team @BitGo/ethalt-team
 /modules/babylonlabs-io-btc-staking-ts @BitGo/btc-team
 /modules/bitgo/test/v2/unit/coins/abstractUtxoCoin.ts @BitGo/btc-team
 /modules/bitgo/test/v2/unit/coins/payGoPSBTHexFixture/psbtHexProof.ts @BitGo/btc-team

modules/bitgo/src/v2/coinFactory.ts

@@ -42,6 +42,8 @@ import {
   PolyxTokenConfig,
   JettonTokenConfig,
   CantonTokenConfig,
+  Erc7984TokenConfig,
+  Erc7984Coin,
 } from '@bitgo/statics';
 import {
   Ada,
@@ -82,6 +84,7 @@ import {
   EosToken,
   Erc20Token,
   Erc721Token,
+  Erc7984Token,
   Etc,
   Eth,
   Ethw,
@@ -419,6 +422,13 @@ export function registerCoinConstructors(coinFactory: CoinFactory, coinMap: Coin
     }
   );
 
+  Erc7984Token.createTokenConstructors([
+    ...tokens.bitcoin.eth.confidentialTokens,
+    ...tokens.testnet.eth.confidentialTokens,
+  ]).forEach(({ name, coinConstructor }) => {
+    coinFactory.register(name, coinConstructor);
+  });
+
   StellarToken.createTokenConstructors([...tokens.bitcoin.xlm.tokens, ...tokens.testnet.xlm.tokens]).forEach(
     ({ name, coinConstructor }) => {
       coinFactory.register(name, coinConstructor);
@@ -960,12 +970,16 @@ export function getTokenConstructor(tokenConfig: TokenConfig): CoinConstructor |
 
   switch (tokenConfig.coin) {
     case 'eth':
-    case 'hteth':
-      if (tokenConfig.type.includes('erc721')) {
+    case 'hteth': {
+      const staticCoin = coins.get(tokenConfig.type);
+      if (staticCoin instanceof Erc7984Coin) {
+        return Erc7984Token.createTokenConstructor(tokenConfig as Erc7984TokenConfig);
+      } else if (tokenConfig.type.includes('erc721')) {
         return Erc721Token.createTokenConstructor(tokenConfig as EthLikeTokenConfig);
       } else {
         return Erc20Token.createTokenConstructor(tokenConfig as Erc20TokenConfig);
       }
+    }
     case 'xlm':
     case 'txlm':
       return StellarToken.createTokenConstructor(tokenConfig as StellarTokenConfig);

modules/bitgo/src/v2/coins/index.ts

@@ -30,7 +30,7 @@ import { Doge, Tdoge } from '@bitgo/sdk-coin-doge';
 import { Dot, Tdot } from '@bitgo/sdk-coin-dot';
 import { Eos, EosToken, Teos } from '@bitgo/sdk-coin-eos';
 import { Etc, Tetc } from '@bitgo/sdk-coin-etc';
-import { Erc20Token, Erc721Token, Eth, Gteth, Hteth, Teth } from '@bitgo/sdk-coin-eth';
+import { Erc20Token, Erc721Token, Erc7984Token, Eth, Gteth, Hteth, Teth } from '@bitgo/sdk-coin-eth';
 import { EvmCoin, EthLikeErc20Token, EthLikeErc721Token } from '@bitgo/sdk-coin-evm';
 import { Flr, Tflr, FlrToken } from '@bitgo/sdk-coin-flr';
 import { Flrp } from '@bitgo/sdk-coin-flrp';
@@ -107,7 +107,7 @@ export { Doge, Tdoge };
 export { Dot, Tdot };
 export { Bcha, Tbcha };
 export { Eos, EosToken, Teos };
-export { Erc20Token, Erc721Token, Eth, Gteth, Hteth, Teth };
+export { Erc20Token, Erc721Token, Erc7984Token, Eth, Gteth, Hteth, Teth };
 export { Ethw };
 export { EthLikeCoin, TethLikeCoin };
 export { Etc, Tetc };

modules/bitgo/test/browser/browser.spec.ts

@@ -17,6 +17,7 @@ describe('Coins', () => {
       AdaToken: 1,
       Erc20Token: 1,
       Erc721Token: 1,
+      Erc7984Token: 1,
       EthLikeCoin: 1,
       TethLikeCoin: 1,
       OfcToken: 1,

modules/bitgo/test/v2/unit/internal/tssUtils/eddsa.ts

@@ -15,6 +15,7 @@ import {
   common,
   createSharedDataProof,
   Ed25519BIP32,
+  EDDSAUtils,
   Eddsa,
   EncryptedSignerShareType,
   ExchangeCommitmentResponse,
@@ -1130,11 +1131,24 @@ describe('TSS Utils:', async function () {
       coldWalletTssUtils.supportedTxRequestVersions().should.deepEqual(['full']);
     });
     it('should return full and lite for hot wallets', async function () {
-      const hotWallet = new Wallet(bitgo, baseCoin, { multisigType: 'tss', type: 'hot' });
+      const hotWallet = new Wallet(bitgo, baseCoin, {
+        multisigType: 'tss',
+        multisigTypeVersion: undefined,
+        type: 'hot',
+      });
       const hotTssUtils = new TssUtils(bitgo, baseCoin, hotWallet);
       const supportedTxRequestVersions = hotTssUtils.supportedTxRequestVersions();
       supportedTxRequestVersions.should.deepEqual(['lite', 'full']);
     });
+    it('should return only full for hot MPCv2 wallets', function () {
+      const hotMPCv2Wallet = new Wallet(bitgo, baseCoin, {
+        multisigType: 'tss',
+        multisigTypeVersion: 'MPCv2',
+        type: 'hot',
+      });
+      const mpcv2TssUtils = new EDDSAUtils.EddsaMPCv2Utils(bitgo, baseCoin, hotMPCv2Wallet);
+      mpcv2TssUtils.supportedTxRequestVersions().should.deepEqual(['full']);
+    });
     it('should return empty for trading wallets', function () {
       const tradingWallets = new Wallet(bitgo, baseCoin, { multisigType: 'tss', type: 'trading' });
       const tradingWalletTssUtils = new TssUtils(bitgo, baseCoin, tradingWallets);

modules/bitgo/test/v2/unit/internal/tssUtils/eddsaMPCv2/signTxRequest.ts

@@ -239,6 +239,90 @@ describe('signTxRequest:', function () {
       .should.be.rejectedWith(/Unexpected signature share response/);
   });
 
+  it('should throw if round 2 response has wrong type', async function () {
+    const messageBuffer = Buffer.from(signableHex, 'hex');
+    const bitgoDsg = new EddsaMPSDsg.DSG(MPCv2PartiesEnum.BITGO);
+    bitgoDsg.initDsg(
+      bitgoKeyShare,
+      messageBuffer,
+      txRequest.transactions![0].unsignedTx.derivationPath,
+      MPCv2PartiesEnum.USER
+    );
+    const bitgoMsg1 = bitgoDsg.getFirstMessage();
+
+    // Round 1: return a valid round1Output so the orchestration can proceed
+    nock('https://bitgo.fakeurl')
+      .post(
+        `/api/v2/wallet/${txRequest.walletId}/txrequests/${txRequest.txRequestId}/transactions/0/sign`,
+        (body) =>
+          (JSON.parse(body.signatureShares[0].share) as EddsaMPCv2SignatureShareRound1Input).type === 'round1Input'
+      )
+      .reply(
+        200,
+        async (_uri: string, body: { signatureShares: SignatureShareRecord[]; signerGpgPublicKey: string }) => {
+          const parsedShare = JSON.parse(body.signatureShares[0].share) as EddsaMPCv2SignatureShareRound1Input;
+          const userMsg1Bytes = Buffer.from(parsedShare.data.msg1.message, 'base64');
+          const userDeserializedMsg1: MPSTypes.DeserializedMessage = {
+            from: MPCv2PartiesEnum.USER,
+            payload: new Uint8Array(userMsg1Bytes),
+          };
+          // Advance bitgo session (we don't need bitgoMsg2 for this test)
+          bitgoDsg.handleIncomingMessages([bitgoMsg1, userDeserializedMsg1]);
+          const bitgoSignedMsg1 = await MPSComms.detachSignMpsMessage(Buffer.from(bitgoMsg1.payload), bitgoPrvKeyObj);
+          const round1Output: EddsaMPCv2SignatureShareRound1Output = {
+            type: 'round1Output',
+            data: { msg1: bitgoSignedMsg1 },
+          };
+          return {
+            txRequestId,
+            transactions: [
+              {
+                signatureShares: [
+                  {
+                    from: SignatureShareType.BITGO,
+                    to: SignatureShareType.USER,
+                    share: JSON.stringify(round1Output),
+                  },
+                ],
+              },
+            ],
+          };
+        }
+      );
+
+    // Round 2: return a share with wrong type (round3Output instead of round2Output)
+    nock('https://bitgo.fakeurl')
+      .post(
+        `/api/v2/wallet/${txRequest.walletId}/txrequests/${txRequest.txRequestId}/transactions/0/sign`,
+        (body) =>
+          (JSON.parse(body.signatureShares[0].share) as EddsaMPCv2SignatureShareRound2Input).type === 'round2Input'
+      )
+      .reply(200, {
+        txRequestId,
+        transactions: [
+          {
+            signatureShares: [
+              {
+                from: SignatureShareType.USER,
+                to: SignatureShareType.BITGO,
+                share: 'placeholder',
+              },
+              {
+                from: SignatureShareType.BITGO,
+                to: SignatureShareType.USER,
+                share: JSON.stringify({ type: 'round3Output', data: {} }),
+              },
+            ],
+          },
+        ],
+      });
+
+    const userPrvBase64 = Buffer.from(userKeyShare).toString('base64');
+    await tssUtils
+      .signTxRequest({ txRequest, prv: userPrvBase64, reqId, txParams })
+      .should.be.rejectedWith(/Unexpected signature share response. Unable to parse data./);
+  });
+
   it('successfully signs a txRequest after receiving multiple 429 errors in round 2', async function () {
     const nockPromises = await getNockPromisesForEddsaSigning(txRequest, RequestType.tx, 3);
     await Promise.all(nockPromises);

modules/sdk-coin-canton/src/canton.ts

@@ -114,6 +114,8 @@ export class Canton extends BaseCoin {
       case TransactionType.TransferReject:
       case TransactionType.TransferAcknowledge:
       case TransactionType.TransferOfferWithdrawn:
+      case TransactionType.CosignDelegationAccept:
+      case TransactionType.CosignDelegationProposal:
         // There is no input for these type of transactions, so always return true.
         return true;
       case TransactionType.OneStepPreApproval:

modules/sdk-coin-canton/src/lib/cosignDelegationAcceptBuilder.ts

@@ -0,0 +1,120 @@
+import { InvalidTransactionError, PublicKey, TransactionType } from '@bitgo/sdk-core';
+import { BaseCoin as CoinConfig } from '@bitgo/statics';
+import { CantonPrepareCommandResponse, CantonTransferAcceptRejectRequest } from './iface';
+import { TransactionBuilder } from './transactionBuilder';
+import { Transaction } from './transaction/transaction';
+import utils from './utils';
+
+export class CosignDelegationAcceptBuilder extends TransactionBuilder {
+  private _commandId: string;
+  private _contractId: string;
+  private _actAsPartyId: string;
+
+  constructor(_coinConfig: Readonly<CoinConfig>) {
+    super(_coinConfig);
+  }
+
+  initBuilder(tx: Transaction): void {
+    super.initBuilder(tx);
+    this.setTransactionType();
+  }
+
+  get transactionType(): TransactionType {
+    return TransactionType.CosignDelegationAccept;
+  }
+
+  setTransactionType(): void {
+    this.transaction.transactionType = TransactionType.CosignDelegationAccept;
+  }
+
+  setTransaction(transaction: CantonPrepareCommandResponse): void {
+    this.transaction.prepareCommand = transaction;
+  }
+
+  /** @inheritDoc */
+  addSignature(publicKey: PublicKey, signature: Buffer): void {
+    if (!this.transaction) {
+      throw new InvalidTransactionError('transaction is empty!');
+    }
+    this._signatures.push({ publicKey, signature });
+    const pubKeyBase64 = utils.getBase64FromHex(publicKey.pub);
+    this.transaction.signerFingerprint = utils.getAddressFromPublicKey(pubKeyBase64);
+    this.transaction.signatures = signature.toString('base64');
+  }
+
+  /**
+   * Sets the unique command id for the cosign delegation accept
+   * Also sets the _id of the transaction
+   *
+   * @param id - A uuid
+   * @returns The current builder instance for chaining.
+   * @throws Error if id is empty.
+   */
+  commandId(id: string): this {
+    if (!id || !id.trim()) {
+      throw new Error('commandId must be a non-empty string');
+    }
+    this._commandId = id.trim();
+    this.transaction.id = id.trim();
+    return this;
+  }
+
+  /**
+   * Sets the contract id of the delegation proposal to accept
+   * @param id - canton contract id
+   * @returns The current builder instance for chaining.
+   * @throws Error if id is empty.
+   */
+  contractId(id: string): this {
+    if (!id || !id.trim()) {
+      throw new Error('contractId must be a non-empty string');
+    }
+    this._contractId = id.trim();
+    return this;
+  }
+
+  /**
+   * Sets the party acting as the acceptor
+   *
+   * @param id - the actor party id (address)
+   * @returns The current builder instance for chaining.
+   * @throws Error if id is empty.
+   */
+  actAs(id: string): this {
+    if (!id || !id.trim()) {
+      throw new Error('actAsPartyId must be a non-empty string');
+    }
+    this._actAsPartyId = id.trim();
+    return this;
+  }
+
+  /**
+   * Builds and returns the CantonTransferAcceptRejectRequest object from the builder's internal state.
+   *
+   * @returns {CantonTransferAcceptRejectRequest} - A fully constructed and validated request object.
+   * @throws {Error} If any required field is missing or fails validation.
+   */
+  toRequestObject(): CantonTransferAcceptRejectRequest {
+    this.validate();
+
+    return {
+      commandId: this._commandId,
+      contractId: this._contractId,
+      verboseHashing: false,
+      actAs: [this._actAsPartyId],
+      readAs: [],
+    };
+  }
+
+  /**
+   * Validates the internal state of the builder before building the request object.
+   *
+   * @private
+   * @throws {Error} If any required field is missing or invalid.
+   */
+  private validate(): void {
+    if (!this._commandId) throw new Error('commandId is missing');
+    if (!this._contractId) throw new Error('contractId is missing');
+    if (!this._actAsPartyId) throw new Error('actAs partyId is missing');
+  }
+}