feat(sdk-core): added OFC BitGo signing on wallet and coins object

alextse-bg · alextse-bg · commit 3e4c1a5f8fe9 · 2026-04-23T14:05:20.000-04:00
allow wallet and coins object to sign using the BitGo key if the passphrase is not provided during signing Ticket: WCN-217-2
diff --git a/modules/sdk-core/src/coins/ofc.ts b/modules/sdk-core/src/coins/ofc.ts
@@ -15,6 +15,7 @@ import {
   SignTransactionOptions,
   VerifyAddressOptions,
   VerifyTransactionOptions,
+  Wallet,
 } from '../';
 
 export class Ofc extends BaseCoin {
@@ -104,6 +105,26 @@ export class Ofc extends BaseCoin {
     throw new MethodNotImplementedError();
   }
 
+  /**
+   * Signs a message using a trading wallet's BitGo Key
+   * @param wallet - uses the BitGo key of this trading wallet to sign the message remotely in a KMS
+   * @param message
+   */
+  async signMessage(wallet: Wallet, message: string): Promise<Buffer>;
+  /**
+   * Signs a message using the private key
+   * @param key - uses the private key to sign the message
+   * @param message
+   */
+  async signMessage(key: { prv: string }, message: string): Promise<Buffer>;
+  async signMessage(keyOrWallet: { prv: string } | Wallet, message: string): Promise<Buffer> {
+    if (!(keyOrWallet instanceof Wallet)) {
+      return super.signMessage(keyOrWallet as { prv: string }, message);
+    }
+    const signatureHexString = await (keyOrWallet as Wallet).toTradingAccount().signPayload({ payload: message });
+    return Buffer.from(signatureHexString, 'hex');
+  }
+
   /** @inheritDoc */
   auditDecryptedKey(params: AuditDecryptedKeyParams) {
     throw new MethodNotImplementedError();
diff --git a/modules/sdk-core/src/coins/ofcToken.ts b/modules/sdk-core/src/coins/ofcToken.ts
@@ -9,6 +9,7 @@ import {
   SignTransactionOptions as BaseSignTransactionOptions,
   SignedTransaction,
   ITransactionRecipient,
+  Wallet,
 } from '../';
 import { isBolt11Invoice } from '../lightning';
 
@@ -18,7 +19,8 @@ export interface SignTransactionOptions extends BaseSignTransactionOptions {
   txPrebuild: {
     payload: string;
   };
-  prv: string;
+  prv?: string;
+  wallet?: Wallet;
 }
 
 export { OfcTokenConfig };
@@ -107,15 +109,25 @@ export class OfcToken extends Ofc {
   }
 
   /**
-   * Assemble keychain and half-sign prebuilt transaction
+   * Signs a half-signed OFC transaction.
+   * Signs the transaction remotely using the BitGo key if prv is not provided.
    * @param params
    * @returns {Promise<SignedTransaction>}
    */
   async signTransaction(params: SignTransactionOptions): Promise<SignedTransaction> {
     const txPrebuild = params.txPrebuild;
     const payload = txPrebuild.payload;
-    const signatureBuffer = (await this.signMessage(params, payload)) as any;
-    const signature: string = signatureBuffer.toString('hex');
+
+    let signature: string;
+    if (params.wallet) {
+      signature = await params.wallet.toTradingAccount().signPayload({ payload, walletPassphrase: params.prv });
+    } else if (params.prv) {
+      const signatureBuffer = (await this.signMessage({ prv: params.prv }, payload)) as any;
+      signature = signatureBuffer.toString('hex');
+    } else {
+      throw new Error('You must pass in either one of wallet or prv');
+    }
+
     return { halfSigned: { payload, signature } } as any;
   }
 
diff --git a/modules/sdk-core/test/unit/bitgo/wallet/ofcWalletSignTransaction.ts b/modules/sdk-core/test/unit/bitgo/wallet/ofcWalletSignTransaction.ts
@@ -0,0 +1,79 @@
+/**
+ * @prettier
+ */
+import sinon from 'sinon';
+import 'should';
+import { Wallet } from '../../../../src';
+
+describe('Wallet - OFC signTransaction', function () {
+  let wallet: Wallet;
+  let mockBitGo: any;
+  let mockBaseCoin: any;
+  let mockWalletData: any;
+
+  beforeEach(function () {
+    mockBitGo = {
+      url: sinon.stub().returns('https://test.bitgo.com'),
+      post: sinon.stub(),
+      get: sinon.stub(),
+      setRequestTracer: sinon.stub(),
+    };
+
+    mockBaseCoin = {
+      getFamily: sinon.stub().returns('ofc'),
+      url: sinon.stub().returns('https://test.bitgo.com/wallet'),
+      keychains: sinon.stub(),
+      supportsTss: sinon.stub().returns(false),
+      getMPCAlgorithm: sinon.stub(),
+      presignTransaction: sinon.stub().resolvesArg(0),
+      keyIdsForSigning: sinon.stub().returns([0]),
+      signTransaction: sinon.stub().resolves({ halfSigned: { payload: 'test', signature: 'aabbcc' } }),
+    };
+
+    mockWalletData = {
+      id: 'test-wallet-id',
+      coin: 'ofcusdt',
+      keys: ['user-key', 'backup-key', 'bitgo-key'],
+      multisigType: 'onchain',
+      enterprise: 'ent-id',
+    };
+
+    wallet = new Wallet(mockBitGo, mockBaseCoin, mockWalletData);
+  });
+
+  afterEach(function () {
+    sinon.restore();
+  });
+
+  it('should pass wallet instance to baseCoin.signTransaction', async function () {
+    const txPrebuild = { txInfo: { payload: '{"amount":"100"}' } } as any;
+    const prv = 'test-prv';
+
+    await wallet.signTransaction({ txPrebuild, prv });
+
+    mockBaseCoin.signTransaction.calledOnce.should.be.true();
+    const callArgs = mockBaseCoin.signTransaction.getCall(0).args[0];
+    callArgs.wallet.should.equal(wallet);
+  });
+
+  it('should pass prv to baseCoin.signTransaction when provided directly', async function () {
+    const txPrebuild = { txInfo: { payload: '{"amount":"100"}' } } as any;
+    const prv = 'test-prv';
+
+    await wallet.signTransaction({ txPrebuild, prv });
+
+    const callArgs = mockBaseCoin.signTransaction.getCall(0).args[0];
+    callArgs.prv.should.equal(prv);
+  });
+
+  it('should pass wallet instance to baseCoin.signTransaction even when no prv is available', async function () {
+    sinon.stub(wallet, 'getUserPrv').returns(undefined as any);
+    const txPrebuild = { txInfo: { payload: '{"amount":"100"}' } } as any;
+
+    await wallet.signTransaction({ txPrebuild });
+
+    mockBaseCoin.signTransaction.calledOnce.should.be.true();
+    const callArgs = mockBaseCoin.signTransaction.getCall(0).args[0];
+    callArgs.wallet.should.equal(wallet);
+  });
+});
diff --git a/modules/sdk-core/test/unit/coins/ofc.ts b/modules/sdk-core/test/unit/coins/ofc.ts
@@ -0,0 +1,146 @@
+/**
+ * @prettier
+ */
+import sinon from 'sinon';
+import 'should';
+import { Ofc } from '../../../src/coins/ofc';
+import { OfcToken } from '../../../src/coins/ofcToken';
+import { BaseCoin } from '../../../src/bitgo/baseCoin/baseCoin';
+import { Wallet } from '../../../src';
+
+const TEST_TOKEN_CONFIG = {
+  coin: 'ofcusdt',
+  decimalPlaces: 6,
+  name: 'OFCUSDT',
+  type: 'ofcusdt',
+  backingCoin: 'usdt',
+  isFiat: false,
+};
+
+describe('Ofc / OfcToken', function () {
+  let mockBitGo: any;
+
+  beforeEach(function () {
+    mockBitGo = { url: sinon.stub().returns('https://test.bitgo.com') };
+  });
+
+  afterEach(function () {
+    sinon.restore();
+  });
+
+  describe('signMessage', function () {
+    let ofc: Ofc;
+
+    beforeEach(function () {
+      ofc = new Ofc(mockBitGo);
+    });
+
+    describe('with a Wallet instance', function () {
+      it('should delegate to wallet.toTradingAccount().signPayload() and return a Buffer', async function () {
+        const hexSignature = 'deadbeef';
+        const signPayloadStub = sinon.stub().resolves(hexSignature);
+
+        const mockBaseCoin = { supportsTss: sinon.stub().returns(false), getMPCAlgorithm: sinon.stub() };
+        const walletData = {
+          id: 'wallet-id',
+          keys: ['key1', 'key2', 'key3'],
+          multisigType: 'onchain',
+          enterprise: 'ent-id',
+        };
+        const wallet = new Wallet(mockBitGo, mockBaseCoin as any, walletData);
+        sinon.stub(wallet, 'toTradingAccount').returns({ signPayload: signPayloadStub } as any);
+
+        const message = 'test message';
+        const result = await ofc.signMessage(wallet, message);
+
+        signPayloadStub.calledOnceWith({ payload: message }).should.be.true();
+        result.should.deepEqual(Buffer.from(hexSignature, 'hex'));
+      });
+    });
+
+    describe('with a prv key', function () {
+      it('should delegate to the base class signMessage', async function () {
+        const expectedResult = Buffer.from('basesignature', 'hex');
+        const superSignMessageStub = sinon.stub(BaseCoin.prototype, 'signMessage').resolves(expectedResult);
+
+        const key = {
+          prv: 'xprv9s21ZrQH143K3QTDL4LXw2F7HEK3wJUD2nW2nRk4stbPy6cq3jPPqhuCo36EkzGH6qiT9mJHBvuPKtLRYD4NxFb5hgXMQBB2LLT6mxLDHHo',
+        };
+        const message = 'test message';
+        const result = await ofc.signMessage(key, message);
+
+        superSignMessageStub.calledOnceWith(key, message).should.be.true();
+        result.should.equal(expectedResult);
+      });
+    });
+  });
+
+  describe('signTransaction (OfcToken)', function () {
+    let ofcToken: OfcToken;
+    const payload = '{"amount":"100","from":"alice","to":"bob"}';
+
+    beforeEach(function () {
+      ofcToken = new OfcToken(mockBitGo, TEST_TOKEN_CONFIG);
+    });
+
+    describe('with wallet and no prv (BitGo remote signing)', function () {
+      it('should call wallet.toTradingAccount().signPayload() without a passphrase', async function () {
+        const hexSignature = 'aabbccdd';
+        const signPayloadStub = sinon.stub().resolves(hexSignature);
+        const mockWallet = { toTradingAccount: sinon.stub().returns({ signPayload: signPayloadStub }) };
+
+        const result = await ofcToken.signTransaction({ txPrebuild: { payload }, wallet: mockWallet as any });
+
+        signPayloadStub.calledOnceWith({ payload, walletPassphrase: undefined }).should.be.true();
+        result.should.deepEqual({ halfSigned: { payload, signature: hexSignature } });
+      });
+    });
+
+    describe('with wallet and prv (local signing routed through wallet)', function () {
+      it('should call wallet.toTradingAccount().signPayload() with the wallet passphrase', async function () {
+        const hexSignature = 'aabbccdd';
+        const passphrase = 'test-passphrase';
+        const signPayloadStub = sinon.stub().resolves(hexSignature);
+        const mockWallet = { toTradingAccount: sinon.stub().returns({ signPayload: signPayloadStub }) };
+
+        const result = await ofcToken.signTransaction({
+          txPrebuild: { payload },
+          wallet: mockWallet as any,
+          prv: passphrase,
+        });
+
+        signPayloadStub.calledOnceWith({ payload, walletPassphrase: passphrase }).should.be.true();
+        result.should.deepEqual({ halfSigned: { payload, signature: hexSignature } });
+      });
+    });
+
+    describe('with prv only (local signing without wallet)', function () {
+      it('should sign locally and return the correct halfSigned result', async function () {
+        const signatureBytes = Buffer.from('ccddee', 'hex');
+        sinon.stub(BaseCoin.prototype, 'signMessage').resolves(signatureBytes);
+
+        const result = await ofcToken.signTransaction({ txPrebuild: { payload }, prv: 'test-prv' });
+
+        result.should.deepEqual({ halfSigned: { payload, signature: signatureBytes.toString('hex') } });
+      });
+
+      it('should pass the prv to signMessage', async function () {
+        const signatureBytes = Buffer.from('ccddee', 'hex');
+        const superSignMessageStub = sinon.stub(BaseCoin.prototype, 'signMessage').resolves(signatureBytes);
+        const prv = 'test-prv';
+
+        await ofcToken.signTransaction({ txPrebuild: { payload }, prv });
+
+        superSignMessageStub.calledOnceWith({ prv }, payload).should.be.true();
+      });
+    });
+
+    describe('with neither wallet nor prv', function () {
+      it('should throw an error', async function () {
+        await ofcToken
+          .signTransaction({ txPrebuild: { payload } })
+          .should.be.rejectedWith('You must pass in either one of wallet or prv');
+      });
+    });
+  });
+});
