feat(account-lib): verify encoded message

TICKET: COIN-4769

Author: bhavidhingra

modules/abstract-eth/src/lib/messages/eip191/eip191Message.ts

@@ -15,10 +15,8 @@ export class EIP191Message extends BaseMessage {
    * Returns the hash of the EIP-191 prefixed message
    */
   async getSignablePayload(): Promise<string | Buffer> {
-    if (!this.signablePayload) {
-      const prefix = `\u0019Ethereum Signed Message:\n${this.payload.length}`;
-      this.signablePayload = Buffer.from(prefix.concat(this.payload)).toString('hex');
-    }
+    const prefix = `\u0019Ethereum Signed Message:\n${this.payload.length}`;
+    this.signablePayload = Buffer.from(prefix.concat(this.payload)).toString('hex');
     return this.signablePayload;
   }
 }

modules/abstract-eth/test/unit/messages/eip191/eip191Message.ts

@@ -61,17 +61,6 @@ describe('EIP191 Message', () => {
     signablePayload.should.equal(expectedPayload);
   });
 
-  it('should reuse existing signable payload if already set', async () => {
-    const message = new EIP191Message({
-      coinConfig: fixtures.coin,
-      payload: fixtures.messages.validMessage,
-      signablePayload: 'predefined-payload',
-    });
-
-    const signablePayload = await message.getSignablePayload();
-    signablePayload.should.equal('predefined-payload');
-  });
-
   it('should maintain signatures and signers correctly', () => {
     const message = new EIP191Message({
       coinConfig: fixtures.coin,
@@ -132,7 +121,6 @@ describe('EIP191 Message', () => {
         signatures: [fixtures.eip191.signature],
         signers: [fixtures.eip191.signer],
         metadata: fixtures.eip191.metadata,
-        signablePayload: 'test-signable-payload',
       });
 
       const broadcastFormat = await message.toBroadcastFormat();
@@ -143,7 +131,9 @@ describe('EIP191 Message', () => {
       broadcastFormat.serializedSignatures?.should.deepEqual(expectedSerializedSignatures);
       broadcastFormat.signers?.should.deepEqual([fixtures.eip191.signer]);
       broadcastFormat.metadata!.should.deepEqual(fixtures.eip191.metadata);
-      broadcastFormat.signablePayload!.should.equal('dGVzdC1zaWduYWJsZS1wYXlsb2Fk');
+      broadcastFormat.signablePayload!.should.equal(
+        'MTk0NTc0Njg2NTcyNjU3NTZkMjA1MzY5Njc2ZTY1NjQyMDRkNjU3MzczNjE2NzY1M2EwYTMxMzM0ODY1NmM2YzZmMmMyMDc3NmY3MjZjNjQyMQ=='
+      );
     });
 
     it('should convert to broadcast string correctly', async () => {

modules/account-lib/src/index.ts

@@ -9,6 +9,7 @@ import {
   acountLibCrypto,
   BaseMessageBuilderFactory,
   BuildMessageError,
+  MessageStandardType,
 } from '@bitgo/sdk-core';
 import { BaseCoin as CoinConfig, CoinFeature, coins } from '@bitgo/statics';
 export { Ed25519BIP32, Eddsa };
@@ -202,6 +203,8 @@ export { Soneium };
 import * as Vet from '@bitgo/sdk-coin-vet';
 export { Vet };
 
+import { validateAgainstMessageTemplates } from './utils';
+
 const coinBuilderMap = {
   trx: Trx.WrappedBuilder,
   ttrx: Trx.WrappedBuilder,
@@ -393,3 +396,36 @@ export function registerMessageBuilderFactory<T extends BaseMessageBuilderFactor
   coinMessageBuilderFactoryMap[coinName] = messageBuilderFactory;
   return factory;
 }
+
+/**
+ * Verify a message against the given encoded payload.
+ *
+ * @param {string} coinName - The name of the coin.
+ * @param {string} messageRaw - The raw message to verify.
+ * @param {string} messageEncoded - The encoded message to verify against.
+ * @param {MessageStandardType} messageStandardType - The type of message standard.
+ * @param {Record<string, unknown>} [metadata] - Optional metadata for verification.
+ * @returns {Promise<boolean>} - Returns true if the verification is successful, false otherwise.
+ */
+export async function verifyMessage(
+  coinName: string,
+  messageRaw: string,
+  messageEncoded: string,
+  messageStandardType: MessageStandardType,
+  metadata?: Record<string, unknown>,
+): Promise<boolean> {
+  try {
+    const messageBuilderFactory = getMessageBuilderFactory(coinName);
+    const messageBuilder = messageBuilderFactory.getMessageBuilder(messageStandardType);
+    messageBuilder.setPayload(messageRaw);
+    const message = await messageBuilder.build();
+    const isValidMessageEncoded = await message.verifyEncodedPayload(messageEncoded, metadata);
+    if (!isValidMessageEncoded) {
+      return false;
+    }
+    return validateAgainstMessageTemplates(messageRaw);
+  } catch (e) {
+    console.error(`Error verifying message for coin ${coinName}:`, e);
+    return false;
+  }
+}

modules/account-lib/src/utils/index.ts

@@ -18,3 +18,5 @@ export function register(coinName: string): BaseUtils {
   }
   throw new NotSupported(`${coinName} util factory not supported`);
 }
+
+export * from './messages';

modules/account-lib/src/utils/messages/index.ts

@@ -0,0 +1,29 @@
+export const MIDNIGHT_TNC_HASH =
+  '6bf2adf825baa496729e2eac1e895ebc77973744bce67f44276bf6006f5c21de863ed121e11828d8fc0241773191e26dc1134803a681a9a98ba0ae812553db24';
+
+/*
+ * matches a message that starts with "STAR ", followed by a number,
+ * then " to addr" or " to addr_test1", followed by a 50+ character alphanumeric address,
+ * and ends with the midnight TnC hash
+ */
+const MIDNIGHT_GLACIER_DROP_CLAIM_MESSAGE_TEMPLATE = `STAR \\d+ to addr(?:1|_test1)[a-z0-9]{50,} ${MIDNIGHT_TNC_HASH}`;
+
+/**
+ * @file Utility functions for validating messages against whitelisted templates.
+ * This is used to ensure that only specific message formats are accepted.
+ */
+const whitelistedMessageTemplates = [MIDNIGHT_GLACIER_DROP_CLAIM_MESSAGE_TEMPLATE];
+
+/**
+ * Validates a message against a set of whitelisted templates.
+ * The templates can contain placeholders like {{variable}} which will be replaced with a wildcard in the regex.
+ *
+ * @param {string} messageRaw - The raw message to validate.
+ * @returns {boolean} - Returns true if the message matches any of the whitelisted templates, false otherwise.
+ */
+export function validateAgainstMessageTemplates(messageRaw: string): boolean {
+  return whitelistedMessageTemplates.some((template) => {
+    const regex = new RegExp(`^${template}$`, 's'); // 's' flag to match newlines
+    return regex.test(messageRaw);
+  });
+}

modules/account-lib/test/unit/fixtures.ts

@@ -46,9 +46,7 @@ export class MockMessage extends BaseMessage {
   }
 
   async getSignablePayload(): Promise<string | Buffer> {
-    if (this.signablePayload) {
-      return this.signablePayload;
-    }
-    return Buffer.from(this.payload);
+    this.signablePayload = Buffer.from(this.payload);
+    return this.signablePayload;
   }
 }

modules/account-lib/test/unit/utils/messages/index.ts

@@ -0,0 +1,68 @@
+import should from 'should';
+import { MIDNIGHT_TNC_HASH, validateAgainstMessageTemplates } from '../../../../src/utils';
+
+describe('Message validation', () => {
+  describe('validateAgainstMessageTemplates', () => {
+    const adaTestnetDestinationAddress = 'addr_test1vz7xs7ceu4xx9n5xn57lfe86vrwddqpp77vjwq5ptlkh49cqy3wur';
+    const adaMainnetDestinationAddress =
+      'addr1q9k6u7lhf467y2f8skr2dafldx2npsd8fymq0mslnj0t44nd4ealwnt4ug5j0pvx5m6n76v4xrq6wjfkqlhpl8y7httq2m9cmu';
+
+    it('should validate testnet message matching the Midnight glacier drop claim template', () => {
+      const messageRaw = `STAR 100 to ${adaTestnetDestinationAddress} ${MIDNIGHT_TNC_HASH}`;
+
+      const result = validateAgainstMessageTemplates(messageRaw);
+
+      should.equal(result, true);
+    });
+
+    it('should validate mainnet message matching the Midnight glacier drop claim template', () => {
+      const messageRaw = `STAR 100 to ${adaMainnetDestinationAddress} ${MIDNIGHT_TNC_HASH}`;
+
+      const result = validateAgainstMessageTemplates(messageRaw);
+
+      should.equal(result, true);
+    });
+
+    it('should not validate message with incorrect format', () => {
+      const messageRaw = `INCORRECT 100 to ${adaTestnetDestinationAddress} ${MIDNIGHT_TNC_HASH}`;
+
+      const result = validateAgainstMessageTemplates(messageRaw);
+
+      should.equal(result, false);
+    });
+
+    it('should not validate message with missing parts', () => {
+      // Missing "to addr" part
+      const messageRaw = `STAR 100 ${MIDNIGHT_TNC_HASH}`;
+
+      const result = validateAgainstMessageTemplates(messageRaw);
+
+      should.equal(result, false);
+    });
+
+    it('should not validate message with incorrect hash', () => {
+      // Different hash
+      const incorrectHash =
+        '5af1adf825baa496729e2eac1e895ebc77973744bce67f44276bf6006f5c21de863ed121e11828d8fc0241773191e26dc1134803a681a9a98ba0ae812553db24';
+      const messageRaw = `STAR 100 to ${adaTestnetDestinationAddress} ${incorrectHash}`;
+
+      const result = validateAgainstMessageTemplates(messageRaw);
+
+      should.equal(result, false);
+    });
+
+    it('should handle empty message', () => {
+      const result = validateAgainstMessageTemplates('');
+
+      should.equal(result, false);
+    });
+
+    it('should not validate message with special regex characters', () => {
+      const messageRaw = `STAR shade.with+special*chars to addr.with[special]chars ${MIDNIGHT_TNC_HASH}`;
+
+      const result = validateAgainstMessageTemplates(messageRaw);
+
+      should.equal(result, false);
+    });
+  });
+});

modules/account-lib/test/unit/verifyMessage.ts

@@ -0,0 +1,90 @@
+import should from 'should';
+import * as accountLib from '../../src';
+import { MessageStandardType } from '@bitgo/sdk-core';
+import { MIDNIGHT_TNC_HASH } from '../../src/utils';
+
+describe('verifyMessage', () => {
+  const adaTestnetOriginAddress = 'addr_test1wz4h6068hs93n8j5ar88fgzz6sfnw8krng09xx0mmf36m8c7j9yap';
+  const adaTestnetDestinationAddress = 'addr_test1vz7xs7ceu4xx9n5xn57lfe86vrwddqpp77vjwq5ptlkh49cqy3wur';
+  const testnetMessageRaw = `STAR 100 to ${adaTestnetDestinationAddress} ${MIDNIGHT_TNC_HASH}`;
+
+  describe('EIP191 Message', function () {
+    const eip191MessageBuilder = accountLib
+      .getMessageBuilderFactory('eth')
+      .getMessageBuilder(MessageStandardType.EIP191);
+
+    it('should throw error if coin is not supported', async () => {
+      const coinName = 'unsupportedCoin';
+      const messageRaw = 'test message';
+      const messageEncoded = 'encoded message';
+      const messageStandardType = MessageStandardType.EIP191;
+
+      const result = await accountLib.verifyMessage(coinName, messageRaw, messageEncoded, messageStandardType);
+      should.equal(result, false);
+    });
+
+    it('should verify EIP191 message successfully when both checks pass', async () => {
+      const coinName = 'eth';
+      eip191MessageBuilder.setPayload(testnetMessageRaw);
+      const message = await eip191MessageBuilder.build();
+      const messageEncodedHex = (await message.getSignablePayload()).toString('hex');
+
+      const result = await accountLib.verifyMessage(
+        coinName,
+        testnetMessageRaw,
+        messageEncodedHex,
+        MessageStandardType.EIP191,
+      );
+      should.equal(result, true);
+    });
+
+    it('should return false if template validation fails', async () => {
+      const coinName = 'eth';
+      const messageRaw = 'Invalid message format'; // Doesn't match the template
+      eip191MessageBuilder.setPayload(messageRaw);
+      const message = await eip191MessageBuilder.build();
+      const messageEncodedHex = (await message.getSignablePayload()).toString('hex');
+
+      const result = await accountLib.verifyMessage(
+        coinName,
+        testnetMessageRaw,
+        messageEncodedHex,
+        MessageStandardType.EIP191,
+      );
+      should.equal(result, false);
+    });
+  });
+
+  describe('CIP8 Message', function () {
+    const cip8MessageBuilder = accountLib.getMessageBuilderFactory('ada').getMessageBuilder(MessageStandardType.CIP8);
+
+    it('should check metadata for verifying CIP8 message', async () => {
+      const coinName = 'ada';
+      cip8MessageBuilder.setPayload(testnetMessageRaw);
+      cip8MessageBuilder.addSigner(adaTestnetOriginAddress);
+      const message = await cip8MessageBuilder.build();
+      const messageEncodedHex = (await message.getSignablePayload()).toString('hex');
+
+      // metadata is required for CIP8 message verification
+      let result = await accountLib.verifyMessage(
+        coinName,
+        testnetMessageRaw,
+        messageEncodedHex,
+        MessageStandardType.CIP8,
+      );
+      should.equal(result, false);
+
+      const metadata = {
+        signers: [adaTestnetOriginAddress],
+      };
+      result = await accountLib.verifyMessage(
+        coinName,
+        testnetMessageRaw,
+        messageEncodedHex,
+        MessageStandardType.CIP8,
+        metadata,
+      );
+      should.equal(result, true);
+    });
+  });
+});

modules/sdk-coin-ada/src/lib/messages/cip8/cip8Message.ts

@@ -17,11 +17,9 @@ export class Cip8Message extends BaseMessage {
    * Returns the hash of the CIP-8 prefixed message
    */
   async getSignablePayload(): Promise<string | Buffer> {
-    if (!this.signablePayload) {
-      const { addressCborBytes } = this.validateAndGetCommonSetup();
-      const { sigStructureCborBytes } = createCSLSigStructure(addressCborBytes, this.payload);
-      this.signablePayload = Buffer.from(sigStructureCborBytes);
-    }
+    const { addressCborBytes } = this.validateAndGetCommonSetup();
+    const { sigStructureCborBytes } = createCSLSigStructure(addressCborBytes, this.payload);
+    this.signablePayload = Buffer.from(sigStructureCborBytes);
     return this.signablePayload;
   }
 
@@ -63,6 +61,31 @@ export class Cip8Message extends BaseMessage {
     ];
   }
 
+  /**
+   * Verifies the encoded payload against the provided metadata
+   * @param messageEncodedHex The hex-encoded message to verify
+   * @param metadata Metadata containing signer addresses
+   * @returns True if the encoded payload matches the expected format, false otherwise
+   */
+  async verifyEncodedPayload(messageEncodedHex: string, metadata?: Record<string, unknown>): Promise<boolean> {
+    if (!metadata) {
+      throw new Error('Metadata is required for verifying the encoded payload');
+    }
+    const signers = metadata.signers as string[];
+    if (signers.length === 0) {
+      throw new Error('At least one signer address is required in metadata for verification');
+    }
+    this.addSigner(signers[0]);
+    const signablePayload = await this.getSignablePayload();
+    let signablePayloadHex: string;
+    if (Buffer.isBuffer(signablePayload)) {
+      signablePayloadHex = signablePayload.toString('hex');
+    } else {
+      signablePayloadHex = signablePayload;
+    }
+    return signablePayloadHex === messageEncodedHex;
+  }
+
   /**
    * Validates required fields and returns common setup objects
    * @private

modules/sdk-coin-ada/test/unit/messages/cip8/cip8Message.ts

@@ -90,7 +90,6 @@ describe('Cip8Message', function () {
 
       should.exist(result);
       should.exist(result.addressCborBytes);
-      should.ok(Buffer.isBuffer(result.addressCborBytes) || result.addressCborBytes instanceof Uint8Array);
     });
   });
 
@@ -102,19 +101,6 @@ describe('Cip8Message', function () {
       should.exist(payload);
       should.ok(Buffer.isBuffer(payload));
     });
-
-    it('should cache signable payload', async function () {
-      const message = new Cip8Message(createDefaultMessageOptions());
-
-      const payload1 = await message.getSignablePayload();
-      const payload2 = await message.getSignablePayload();
-
-      should.exist(payload1);
-      should.exist(payload2);
-
-      // Payloads should be the same
-      should.equal(payload1, payload2);
-    });
   });
 
   describe('getBroadcastableSignatures', function () {