search
Ctrlk

bridge-suspensionBridge

Error handling conventions: This module uses the canonical SodaxError<BridgeErrorCode> shape (same family as the swap and money market modules). Discriminate on result.error.code (e.g. 'RELAY_TIMEOUT', 'INTENT_CREATION_FAILED'); structured details live on result.error.context (srcChainKey, dstChainKey, phase, relayCode, field). See the Error Handling section below for the full per-method code table and migration notes from the legacy error.message-based pattern.

The BridgeService class, reachable via sodax.bridge, orchestrates cross-chain token transfers within the SODAX hub-and-spoke architecture.

Bridging works by depositing tokens into a spoke vault on the source chain, which triggers a cross-chain message relayed to the Sonic hub. The hub then performs vault transformations (deposit/withdraw) and forwards the tokens to the destination chain via the asset manager.

Three transfer directions are supported:

  • Spoke → Hub — deposit into hub vault

  • Hub → Spoke — withdrawal from hub vault

  • Spoke → Spoke — deposit on source + withdraw on destination

hashtag
Methods

hashtag
isAllowanceValid

Checks whether the caller has sufficient token allowance to execute the bridge.

The required spender varies by chain type:

  • Hub (Sonic): the caller's hub wallet router contract

  • EVM spoke: the spoke chain's asset manager contract

  • Stellar: validated by the Stellar spoke service (no explicit spender needed)

  • All other chain types (e.g. Solana, NEAR, Bitcoin): returns true — approvals are not applicable

Parameters:

  • _params: BridgeParams<S, Raw> — bridge parameters including source chain key, token, amount, and sender address

Returns: Promise<Result<boolean>>

Note: For Stellar-based operations, the allowance system works differently:

  • Source chain (Stellar): this method checks and establishes trustlines automatically via the Stellar spoke service.

  • Destination chain (Stellar): clients must manually check trustlines using StellarSpokeService.hasSufficientTrustline before executing bridge operations.

Example:

hashtag
approve

Grants token spending approval required before executing a bridge.

Approval targets differ by chain:

  • Hub (Sonic): approves the caller's hub wallet router contract.

  • EVM spoke: approves the spoke chain's asset manager contract.

  • Stellar: delegates to the Stellar spoke service for trustline/allowance handling.

  • All other chain types: returns an error — approvals are not supported.

When raw is true, the encoded transaction is returned without broadcasting. When raw is false, the transaction is signed and submitted via the provided wallet provider.

Parameters:

  • _params: BridgeParams<K, Raw> — bridge parameters including source chain key, token, amount, wallet provider, and raw flag

Returns: Promise<Result<TxReturnType<K, Raw>>>

Note: For Stellar-based operations, the approval system works differently:

  • Source chain (Stellar): this method establishes trustlines automatically.

  • Destination chain (Stellar): clients must manually establish trustlines using StellarSpokeService.requestTrustline before executing bridge operations.

Example (signed):

Example (raw):

hashtag
Stellar Trustline Requirements

For Stellar-based bridge operations, trustlines must be handled depending on whether Stellar is the source or destination chain. See the Stellar Trustline Requirementsarrow-up-right doc for detailed information and code examples.

hashtag
bridge

Executes a full end-to-end bridge transfer: spoke deposit → relay → hub settlement.

Internally calls createBridgeIntent() to submit the spoke-side deposit transaction, then waits for the cross-chain relay packet to be confirmed on the hub (Sonic). Use this method for the typical "fire and wait" bridge UX.

This method is signed-execution only (raw: false). For raw transaction building, use createBridgeIntent() directly.

Parameters:

  • _params: BridgeParams<K, false> — bridge parameters including source/destination chain keys, token addresses, amount, recipient, wallet provider, and optional timeout

Returns: Promise<Result<TxHashPair>>{ srcChainTxHash, dstChainTxHash } on success, where srcChainTxHash is the spoke deposit tx and dstChainTxHash is the hub settlement tx.

Example:

hashtag
createBridgeIntent

Submits the spoke-side deposit transaction that initiates a bridge transfer, without waiting for the cross-chain relay to complete.

This is the first step of a bridge operation. After this call succeeds you must relay the returned relayData to the hub (Sonic) via relayTxAndWaitPacket or the intent relay API to complete the transfer. The higher-level bridge() method does this automatically — use createBridgeIntent() only when you need manual relay control.

When raw is true, returns the encoded transaction without broadcasting (useful for simulation or batching). When raw is false, signs and submits the deposit transaction via the provided wallet provider.

Bitcoin note: Bitcoin is only supported with raw: false because it requires the RadFi trading wallet derivation flow.

Parameters:

  • _params: BridgeParams<K, Raw> — bridge parameters including source/destination chain keys, token addresses, amount, recipient, wallet provider, raw flag, and optional skipSimulation

Returns: Promise<Result<IntentTxResult<K, Raw>>> — on success, { tx, relayData } where tx is the spoke deposit tx hash (or encoded call data when raw), and relayData contains the hub wallet address and encoded hub execution payload needed for relay.

Example (signed):

Note: This method only executes the transaction on the spoke chain and creates the bridge intent. To successfully bridge tokens you need to:

  1. Check if the allowance is sufficient using isAllowanceValid

  2. Approve the appropriate contract to spend the tokens using approve

  3. Create the bridge intent using this method

  4. Relay the transaction to the hub and await completion (or use the bridge() method which handles this automatically)

hashtag
getFee

Calculates the partner fee deducted from a given bridge input amount.

Returns 0n when no partner fee is configured. The fee is denominated in the same units as inputAmount (vault token decimals, 18 dp).

Parameters:

  • inputAmount: bigint — gross amount being bridged, in vault token base units

Returns: bigint — fee amount to be deducted, in the same units as inputAmount

Example:

hashtag
getBridgeableAmount

Returns the maximum amount that can currently be bridged between two tokens, taking into account both deposit capacity on the source side and withdrawal liquidity on the destination side.

The limit type depends on the transfer direction:

  • Spoke → Hub: constrained by the source vault's remaining deposit capacity (DEPOSIT_LIMIT).

  • Hub → Spoke: constrained by the asset manager balance on the destination spoke (WITHDRAWAL_LIMIT).

  • Spoke → Spoke: the minimum of the deposit capacity (source) and the asset manager balance (destination), normalised to a common unit. The returned type indicates which side is the binding constraint.

Returns { amount: 0n, type: 'DEPOSIT_LIMIT' } when the source token is not yet supported by the vault.

Parameters:

  • from: XToken — source token (chain key + address) to bridge from

  • to: XToken — destination token (chain key + address) to bridge to

Returns: Promise<Result<BridgeLimit>>{ amount, decimals, type } where amount is the maximum bridgeable quantity in the token's native base units and decimals is its decimal precision.

Example:

hashtag
isBridgeable

Determines whether two tokens (potentially on different chains) can be bridged to each other.

Two tokens are bridgeable if they resolve to the same vault address on the Sonic hub, meaning they represent the same underlying asset across chains (e.g. USDC on Base and USDC on Arbitrum both map to the same hub vault).

Returns false — rather than throwing — on any resolution or validation error.

Parameters:

  • from: XToken — source token to bridge from

  • to: XToken — destination token to bridge to

  • unchecked: boolean (optional, default false) — when true, skips the isValidSpokeChainKey guard. Useful for checking theoretical bridgeability without requiring both chains to be in the active config.

Returns: booleantrue if the tokens share the same hub vault; false otherwise.

Example:

hashtag
getBridgeableTokens

Returns all tokens on the destination chain that can receive a bridge from the given source token. Filters the destination chain's supported tokens to those that share the same hub vault as the source token.

Parameters:

  • from: SpokeChainKey — source chain key

  • to: SpokeChainKey — destination chain key whose supported tokens are searched

  • token: string — source token address on from

Returns: Result<XToken[]> — array of destination-chain tokens bridgeable from the source token; error result if the source token is not found in config.

Example:

hashtag
Types

hashtag
CreateBridgeIntentParams

hashtag
BridgeParams

BridgeParams is an alias for SpokeExecActionParams, which is a discriminated union combining the intent params with the WalletProviderSlot:

The WalletProviderSlot<K, Raw> discriminant enforces at compile time:

  • { raw: true }walletProvider is forbidden; returns raw tx payload

  • { raw: false, walletProvider: GetWalletProviderType<K> }walletProvider is required and chain-narrowed; signs and broadcasts

hashtag
BridgeLimit

hashtag
TxHashPair

hashtag
PartnerFee

hashtag
Error Handling

The Bridge module's user-facing methods return Promise<Result<T, SodaxError<NarrowCode>>>. Discriminate on result.error.code (a string literal) — never on result.error.message. Same canonical shape used by swap and money market.

hashtag
The canonical error: SodaxError<C>

All bridge-module errors are instances of SodaxError, exported from @sodax/sdk:

Rules:

  • Discriminate on error.code — never on error.message (which is human-readable, may change).

  • error.cause walks the underlying error chain (loggers like Sentry/Pino/Datadog walk this automatically).

  • error.context carries structured metadata: srcChainKey, dstChainKey, phase, plus per-code extras (relayCode, field).

  • error.toJSON() is the canonical logger surface; JSON.stringify(error) invokes it automatically and produces a logger-safe payload (bigints in context are coerced to strings, cause walked depth-3, no circular hazards).

  • Use isBridgeError(e) (broad) or one of the narrow guards isBridgeOrchestrationError(e) / isBridgeCreateIntentError(e) / isBridgeApproveError(e) / isBridgeAllowanceCheckError(e) / isBridgeLookupError(e) from @sodax/sdk instead of instanceof SodaxError in dapp/app code (bundle-safe).

hashtag
Per-method error code unions

Method
Codes

bridge

VALIDATION_FAILED, INTENT_CREATION_FAILED, TX_VERIFICATION_FAILED, TX_SUBMIT_FAILED, RELAY_TIMEOUT, RELAY_FAILED, EXECUTION_FAILED, UNKNOWN

createBridgeIntent

VALIDATION_FAILED, INTENT_CREATION_FAILED, UNKNOWN

approve

VALIDATION_FAILED, APPROVE_FAILED, UNKNOWN

isAllowanceValid

VALIDATION_FAILED, ALLOWANCE_CHECK_FAILED, UNKNOWN

getBridgeableAmount

VALIDATION_FAILED, LOOKUP_FAILED, UNKNOWN

getBridgeableTokens

VALIDATION_FAILED, LOOKUP_FAILED, UNKNOWN

The exported narrow types are BridgeOrchestrationError (for bridge), BridgeCreateIntentError (for createBridgeIntent), BridgeApproveError, BridgeAllowanceCheckError, and a single BridgeLookupError shared by getBridgeableAmount and getBridgeableTokens (discriminate them at runtime via error.context.method). Each has a matching narrow guard listed above.

hashtag
Standard context fields

hashtag
Discrimination example

hashtag
Migration from the legacy pattern

If you were on the previous CODE-on-error.message pattern (or the older BridgeError<Code> typed shape that the published docs at https://docs.sodax.com/developers/packages/foundation/sdk/functional-modules/bridge#error-handlingarrow-up-right document), here are the mappings:

Before
After

error.message === 'RELAY_TIMEOUT'

error.code === 'RELAY_TIMEOUT'

error.message === 'SUBMIT_TX_FAILED'

error.code === 'TX_SUBMIT_FAILED'

error.message === 'CREATE_BRIDGE_INTENT_FAILED'

error.code === 'INTENT_CREATION_FAILED'

error.message === 'EXECUTION_FAILED'

error.code === 'EXECUTION_FAILED' (now narrow-typed)

error.message === 'ALLOWANCE_CHECK_FAILED'

error.code === 'ALLOWANCE_CHECK_FAILED'

error.message === 'APPROVAL_FAILED'

error.code === 'APPROVE_FAILED'

Prose error.message for invariants

error.code === 'VALIDATION_FAILED'; the prose stays on error.message

hashtag
Best practices

  1. Always handle TX_SUBMIT_FAILED. Critical — the spoke tx landed but the relay submission failed. Funds may be in flight; persist the user's input and retry.

  2. Handle RELAY_TIMEOUT gracefully. The spoke tx succeeded; the relay just didn't deliver in time. Check on-chain status before retrying.

  3. Discriminate RELAY_FAILED via context.relayCode. 'RELAY_POLLING_FAILED' (polling outage — packet status unknown) needs different UX from generic 'UNKNOWN'.

  4. Use error.cause for forensics. Every wrapped error preserves the original on cause. Loggers walk it automatically.

  5. Use JSON.stringify(error) for logging. The toJSON() method handles bigint coercion + cause-chain truncation safely.

  6. Type-guard, don't as-cast. Use is<Op>Error(error) to narrow; an as <Op>Error cast after a generic isSodaxError check would silently widen the contract.

hashtag
Usage Flow

The typical bridge operation follows this sequence:

  1. Check allowance using isAllowanceValid()

  2. Approve tokens using approve() if needed

  3. For Stellar destination chains: check and establish trustlines (see Stellar Trustline Requirementsarrow-up-right)

  4. Execute bridge using bridge() for the full lifecycle, or createBridgeIntent() for manual relay control

  5. Monitor progress using the returned transaction hashes

hashtag
Chain Keys

Use ChainKeys.* constants from @sodax/sdk instead of raw string chain IDs:

The chain key in the request payload (e.g. srcChainKey) drives both TypeScript narrowing — so walletProvider is automatically typed to the correct interface — and runtime routing inside the SDK.

hashtag
Supported Chains

The service supports all 20 chains in the SODAX network:

  • EVM (12): Sonic (hub), Ethereum, Arbitrum, Base, BSC, Optimism, Polygon, Avalanche, HyperEVM, Lightlink, Redbelly, Kaia

  • Non-EVM (8): Solana, Sui, Stellar, ICON, Injective, NEAR, Stacks, Bitcoin

hashtag
Partner Fees

Partner fees are configured at Sodax construction time via config.bridge.partnerFee. They are automatically applied inside bridge() and createBridgeIntent(). Use getFee() to preview the fee amount for a given input:

Fees are denominated in vault token decimals (18 dp).

PreviousLend / Borrow (Money Market)NextStaking

Last updated