feat(sdk-core): add EdDSA MPCv2 offline signing helper utils by vibhavgo · Pull Request #8793 · BitGo/BitGoJS

vibhavgo · 2026-05-18T10:21:28Z

Adds shared private utility methods to EddsaMPCv2Utils that will be used across all three createOfflineRound1/2/3Share methods. These are prerequisite helpers that centralize transaction payload extraction, GPG key handling, and authenticated data validation to prevent code duplication.

Add domain-separator constant MPS_DSG_SIGNING_USER_GPG_KEY for adata prefixes
Add getSignableHexAndDerivationPath() to extract signableHex and derivationPath from txRequest
Add getBitgoAndUserGpgKeys() to decrypt user GPG keys with v1 (SJCL) and v2 (Argon2id) envelope support
Add validateAdata() to validate authenticated data matches cyphertext adata
Import isV2Envelope from baseTypes for envelope version detection
Add comprehensive test coverage for all three helper methods in createKeychains.ts

Ticket: WCI-386

linear-code · 2026-05-18T10:21:32Z

WCI-386

Marzooqa · 2026-05-19T08:57:43Z

+   * @returns void
+   * @throws {Error} if the adata or cyphertext is invalid
+   */
+  private validateAdata(adata: string, cyphertext: string, roundDomainSeparator: string): void {


This is byte-for-byte identical to EcdsaMPCv2Utils.validateAdata. Both classes share the same baseTSSUtils<KeyShare> ancestor, so this should be lifted there to eliminate the duplication. This is the most straightforward extraction — same signature, same body, no ECDSA/EdDSA differences.

Marzooqa · 2026-05-20T09:21:58Z

    });
  });

+  describe('External Signing Helpers', function () {


These utility helper tests (getSignableHexAndDerivationPath, validateAdata, getBitgoAndUserGpgKeys) do not belong in createKeychains.ts — this file is for testing the keychain creation flow.

More importantly, these methods now live on baseTSSUtils in sdk-core, so they should be tested there, not through an EdDSA subclass in the bitgo module. The right place is a new dedicated file: modules/sdk-core/test/unit/bitgo/utils/tss/baseTSSUtils.ts, consistent with how addressVerification.ts, ecdsaMPCv2.ts, and eddsaMPCv2.ts each have their own focused files in that directory.

Ticket: WCI-386 Centralizes shared MPCv2 helper logic in BaseTssUtils for reuse across ECDSA and EdDSA, and moves misplaced helper tests from the EdDSA keychain creation test to a dedicated BaseTssUtils test file in sdk-core. - Move getSignableHexAndDerivationPath() into BaseTssUtils for shared ECDSA and EdDSA MPCv2 transaction extraction - Move validateAdata() into BaseTssUtils to eliminate duplicated authenticated data validation - Move getBitgoAndUserGpgKeys() into BaseTssUtils with v1 (SJCL) and v2 (Argon2id) envelope support; accepts a userGpgKeyDomainSeparator arg - Remove redundant private getBitgoAndUserGpgKeys() from EcdsaMPCv2Utils and EddsaMPCv2Utils; delegate to base class - Remove unused MPS_DSG_SIGNING_USER_GPG_KEY constant and isV2Envelope import from EddsaMPCv2Utils - Remove misplaced External Signing Helpers tests from createKeychains.ts - Add sdk-core/test/unit/bitgo/utils/tss/baseTSSUtils.ts with lean, strictly typed tests for all extracted helpers and ECDSA delegation Co-authored-by: Cursor <cursoragent@cursor.com>

vibhavgo changed the title ~~feat(sdk-core): add EdDSA MPCv2 offline signing helper infrastructure~~ feat(sdk-core): add EdDSA MPCv2 offline signing helper util May 18, 2026

vibhavgo changed the title ~~feat(sdk-core): add EdDSA MPCv2 offline signing helper util~~ feat(sdk-core): add EdDSA MPCv2 offline signing helper utils May 18, 2026

vibhavgo force-pushed the WCI-386/eddsa-util-helper branch from 73179bb to f4ebbae Compare May 18, 2026 10:40

vibhavgo marked this pull request as ready for review May 18, 2026 11:04

vibhavgo requested review from a team as code owners May 18, 2026 11:04

vibhavgo requested review from Marzooqa and bdesoky May 18, 2026 11:04