@babylonlabs-io/ts-sdk 0.27.1 → 0.28.1

package/dist/{context-ktqanzXE.js → PeginManager-DzMSIQ0I.js}

@@ -1,20 +1,22 @@
-var te = Object.defineProperty;
-var ee = (e, t, n) => t in e ? te(e, t, { enumerable: !0, configurable: !0, writable: !0, value: n }) : e[t] = n;
-var b = (e, t, n) => ee(e, typeof t != "symbol" ? t + "" : t, n);
-import * as ne from "bitcoinjs-lib";
-import { Transaction as se, Psbt as yt } from "bitcoinjs-lib";
-import { Buffer as it } from "buffer";
-import { isAddressEqual as bt, createPublicClient as q, http as Z, encodeFunctionData as xt, zeroAddress as oe } from "viem";
-import { c as re } from "./signing-BZigafm0.js";
-import { deriveVaultId as Pt } from "@babylonlabs-io/babylon-tbv-rust-wasm";
-import { b as ie, a as ae, d as ce, e as le, f as ue } from "./challengeAssert-j2Vwqo0-.js";
-import { s as v, g as kt, e as I, i as he, p as de } from "./bitcoin-B-Y0DlqR.js";
-import { M as Et } from "./validation-CxqROCno.js";
-import { b as fe, f as G, i as ge } from "./psbtInputFields-DeTFSJOq.js";
-import { p as pe, f as me } from "./fundPeginTransaction-oV-dNJOU.js";
-import { p as we, f as ye } from "./vault-registry-reader-CpCOte7w.js";
-import { B as O, e as ht, f as U, g as S, h as V, i as Ut, H as be, r as F, j as xe, k as C, u as Pe, l as Tt, m as ke, n as Ee, o as Te, p as Ie, q as _e, t as ve, v as Be, w as It, x as Wt, s as W } from "./sha2-ZzfZqQSw.js";
-const H = {
+var Jt = Object.defineProperty;
+var te = (e, t, n) => t in e ? Jt(e, t, { enumerable: !0, configurable: !0, writable: !0, value: n }) : e[t] = n;
+var b = (e, t, n) => te(e, typeof t != "symbol" ? t + "" : t, n);
+import * as ee from "bitcoinjs-lib";
+import { Transaction as ne, Psbt as ft } from "bitcoinjs-lib";
+import { Buffer as et } from "buffer";
+import { isAddressEqual as gt, createPublicClient as j, http as z, encodeFunctionData as pt, zeroAddress as se } from "viem";
+import { deriveVaultId as mt } from "@babylonlabs-io/babylon-tbv-rust-wasm";
+import { b as bt, a as oe, d as re, e as ie, f as ae } from "./challengeAssert-j2Vwqo0-.js";
+import { u as $t, h as nt, e as I, s as _, g as wt, i as ce, p as le } from "./bitcoin-B-Y0DlqR.js";
+import { h as ue } from "./buildAndBroadcastRefund-xWS8frc6.js";
+import { c as he } from "./signing-BZigafm0.js";
+import { M as yt } from "./validation-CxqROCno.js";
+import { a as Rt, b as U, c as A, d as F, e as st, s as L, f as Ut, H as de, r as V, u as fe, g as xt, h as ge } from "./sha2-6wN58S6R.js";
+import { b as pe, f as q, i as me } from "./psbtInputFields-DeTFSJOq.js";
+import { p as be, f as we } from "./fundPeginTransaction-oV-dNJOU.js";
+import { p as ye, f as xe } from "./vault-registry-reader-BywZhqJL.js";
+import { B as C } from "./types-CnG3JsRs.js";
+const S = {
   // VaultAlreadyExists()
   "0x04aabf33": "Vault already exists: This Bitcoin transaction has already been registered. Please select different UTXOs or use a different amount to create a unique transaction.",
   // ScriptPubKeyMismatch() - taproot output doesn't match expected script
@@ -48,7 +50,7 @@ const H = {
   // PeginTransactionAlreadyUsed()
   "0x7ed061c9": "This pegin transaction has already been used to activate another vault."
 };
-function dt(e) {
+function at(e) {
   if (!e || typeof e != "object") return;
   const t = e;
   if (typeof t.data == "string" && t.data.startsWith("0x"))
@@ -67,24 +69,24 @@ function dt(e) {
   if (i)
     return i[1];
 }
-function Fn(e) {
-  const t = dt(e);
+function Ln(e) {
+  const t = at(e);
   if (t) {
     const n = t.substring(0, 10);
-    return H[t] ?? H[n];
+    return S[t] ?? S[n];
   }
 }
-function Mn(e) {
-  const t = dt(e);
+function Vn(e) {
+  const t = at(e);
   if (t === void 0) return !1;
   const n = t.substring(0, 10);
-  return t in H || n in H;
+  return t in S || n in S;
 }
-function A(e) {
+function H(e) {
   console.error("[Contract Error] Raw error:", e);
-  const t = dt(e);
+  const t = at(e);
   if (console.error("[Contract Error] Extracted error data:", t), t) {
-    const s = t.substring(0, 10), o = H[t] ?? H[s];
+    const s = t.substring(0, 10), o = S[t] ?? S[s];
     if (o)
       throw console.error("[Contract Error] Known error:", o), new Error(o);
   }
@@ -102,326 +104,944 @@ function A(e) {
   }
   throw e instanceof Error ? (console.error("[Contract Error] Unhandled error:", e.message), e) : new Error(`Contract call failed: ${String(e)}`);
 }
-const Se = 0, Ae = /^0x[0-9a-f]+$/i, Ce = /^[0-9a-f]+$/i, He = /^[A-Za-z0-9+/]+={0,2}$/;
-function $(e) {
-  if (typeof e != "string" || e.length === 0)
-    throw new Error("BTC wallet returned empty public key");
-  return de(e).toLowerCase();
+const W = /* @__PURE__ */ BigInt(2 ** 32 - 1), Pt = /* @__PURE__ */ BigInt(32);
+function Pe(e, t = !1) {
+  return t ? { h: Number(e & W), l: Number(e >> Pt & W) } : { h: Number(e >> Pt & W) | 0, l: Number(e & W) | 0 };
 }
-function Oe(e) {
-  if (typeof e != "string" || e.length === 0)
-    throw new Error("BTC wallet returned empty BIP-322 signature");
-  if (e.startsWith("0x") || e.startsWith("0X")) {
-    if (!Ae.test(e) || e.length < 4 || e.length % 2 !== 0)
-      throw new Error("BTC wallet returned malformed hex BIP-322 signature");
-    return e.toLowerCase();
+function Ee(e, t = !1) {
+  const n = e.length;
+  let s = new Uint32Array(n), o = new Uint32Array(n);
+  for (let r = 0; r < n; r++) {
+    const { h: i, l: a } = Pe(e[r], t);
+    [s[r], o[r]] = [i, a];
   }
-  if (Ce.test(e)) {
-    if (e.length % 2 !== 0)
-      throw new Error("BTC wallet returned malformed hex BIP-322 signature");
-    return `0x${e.toLowerCase()}`;
+  return [s, o];
+}
+const ke = (e, t, n) => e << n | t >>> 32 - n, Te = (e, t, n) => t << n | e >>> 32 - n, _e = (e, t, n) => t << n - 32 | e >>> 64 - n, ve = (e, t, n) => e << n - 32 | t >>> 64 - n;
+class Lt {
+  constructor(t, n) {
+    b(this, "oHash");
+    b(this, "iHash");
+    b(this, "blockLen");
+    b(this, "outputLen");
+    b(this, "finished", !1);
+    b(this, "destroyed", !1);
+    if (Rt(t), U(n, void 0, "key"), this.iHash = t.create(), typeof this.iHash.update != "function")
+      throw new Error("Expected instance of class which extends utils.Hash");
+    this.blockLen = this.iHash.blockLen, this.outputLen = this.iHash.outputLen;
+    const s = this.blockLen, o = new Uint8Array(s);
+    o.set(n.length > s ? t.create().update(n).digest() : n);
+    for (let r = 0; r < o.length; r++)
+      o[r] ^= 54;
+    this.iHash.update(o), this.oHash = t.create();
+    for (let r = 0; r < o.length; r++)
+      o[r] ^= 106;
+    this.oHash.update(o), A(o);
+  }
+  update(t) {
+    return F(this), this.iHash.update(t), this;
+  }
+  digestInto(t) {
+    F(this), U(t, this.outputLen, "output"), this.finished = !0, this.iHash.digestInto(t), this.oHash.update(t), this.oHash.digestInto(t), this.destroy();
+  }
+  digest() {
+    const t = new Uint8Array(this.oHash.outputLen);
+    return this.digestInto(t), t;
+  }
+  _cloneInto(t) {
+    t || (t = Object.create(Object.getPrototypeOf(this), {}));
+    const { oHash: n, iHash: s, finished: o, destroyed: r, blockLen: i, outputLen: a } = this;
+    return t = t, t.finished = o, t.destroyed = r, t.blockLen = i, t.outputLen = a, t.oHash = n._cloneInto(t.oHash), t.iHash = s._cloneInto(t.iHash), t;
+  }
+  clone() {
+    return this._cloneInto();
+  }
+  destroy() {
+    this.destroyed = !0, this.oHash.destroy(), this.iHash.destroy();
   }
-  if (!He.test(e) || e.length % 4 !== 0)
-    throw new Error("BTC wallet returned malformed base64 BIP-322 signature");
-  const t = it.from(e, "base64");
-  if (t.length === 0 || t.toString("base64") !== e)
-    throw new Error("BTC wallet returned malformed base64 BIP-322 signature");
-  return `0x${t.toString("hex")}`;
 }
-function $e(e, t, n, s) {
-  const o = n == null ? void 0 : n[`${e}:${t}`];
-  return o ? Promise.resolve({
-    txid: e,
-    vout: t,
-    value: o.value,
-    scriptPubKey: o.scriptPubKey
-  }) : ye(e, t, s);
+const Vt = (e, t, n) => new Lt(e, t).update(n).digest();
+Vt.create = (e, t) => new Lt(e, t);
+const G = /* @__PURE__ */ Uint8Array.of(0), Et = /* @__PURE__ */ Uint8Array.of();
+function ct(e, t, n, s = 32) {
+  Rt(e), st(s, "length");
+  const o = e.outputLen;
+  if (s > 255 * o)
+    throw new Error("Length must be <= 255*HashLen");
+  const r = Math.ceil(s / o);
+  n === void 0 ? n = Et : U(n, void 0, "info");
+  const i = new Uint8Array(r * o), a = Vt.create(e, t), l = a._cloneInto(), u = new Uint8Array(a.outputLen);
+  for (let c = 0; c < r; c++)
+    G[0] = c + 1, l.update(c === 0 ? Et : u).update(n).update(G).digestInto(u), i.set(u, o * c), a._cloneInto(l);
+  return a.destroy(), l.destroy(), A(u, G), i.slice(0, s);
 }
-const _t = 12e4;
-class Nn {
-  /**
-   * Creates a new PeginManager instance.
-   *
-   * @param config - Manager configuration including wallets and contract addresses
-   */
-  constructor(t) {
-    b(this, "config");
-    this.config = t;
-  }
-  /**
-   * Prepares a peg-in by building the Pre-PegIn HTLC transaction,
-   * funding it, constructing the PegIn transaction, and signing the PegIn input.
-   *
-   * This method orchestrates the following steps:
-   * 1. Get depositor BTC public key from wallet
-   * 2. Build unfunded Pre-PegIn transaction (HTLC output) using primitives
-   * 3. Select UTXOs to cover the HTLC value
-   * 4. Fund the Pre-PegIn transaction
-   * 5. Derive the PegIn transaction from the funded Pre-PegIn tx
-   * 6. Build PSBT for signing the PegIn input (HTLC leaf 0)
-   * 7. Sign via BTC wallet and extract depositor signature
-   *
-   * The returned `fundedPrePeginTxHex` is funded but unsigned (inputs unsigned).
-   * Use `signAndBroadcast()` AFTER registering on Ethereum to broadcast it.
-   *
-   * @param params - Pegin parameters including amount, HTLC params, UTXOs
-   * @returns Pegin result with funded Pre-PegIn tx, signed PegIn input, and signatures
-   * @throws Error if wallet operations fail or insufficient funds
-   */
-  async preparePegin(t) {
-    const n = await this.config.btcWallet.getPublicKeyHex(), s = $(n), o = v(t.vaultProviderBtcPubkey), r = t.vaultKeeperBtcPubkeys.map(v), i = t.universalChallengerBtcPubkeys.map(v);
-    if (t.hashlocks.length !== t.amounts.length)
+const Z = new TextEncoder().encode("babylonvault"), kt = 255, Tt = 65535, _t = 2, Ie = "hashlock", Be = "auth-anchor", He = "wots-seed";
+function Wt(e) {
+  if (!Number.isInteger(e) || e < 0 || e > 4294967295)
+    throw new Error(`i2osp4: value must be a u32, got ${e}`);
+  const t = new Uint8Array(4);
+  return t[0] = e >>> 24 & 255, t[1] = e >>> 16 & 255, t[2] = e >>> 8 & 255, t[3] = e & 255, t;
+}
+function lt(e, t = new Uint8Array(0)) {
+  const n = new TextEncoder().encode(e);
+  if (n.length === 0 || n.length > kt)
+    throw new Error(
+      `info: label length must be in [1, ${kt}], got ${n.length}`
+    );
+  if (t.length > Tt)
+    throw new Error(
+      `info: ctx length must be in [0, ${Tt}], got ${t.length}`
+    );
+  const s = Z.length + 1 + n.length + _t + t.length, o = new Uint8Array(s);
+  let r = 0;
+  return o.set(Z, r), r += Z.length, o[r] = n.length, r += 1, o.set(n, r), r += n.length, o[r] = t.length >>> 8 & 255, o[r + 1] = t.length & 255, r += _t, o.set(t, r), o;
+}
+const vt = 32, Ae = 32, Se = 32, Ce = 64;
+function ut(e) {
+  if (e.length !== vt)
+    throw new Error(
+      `vault-secrets: root must be exactly ${vt} bytes, got ${e.length}`
+    );
+}
+function Wn(e) {
+  return ut(e), ct(
+    L,
+    e,
+    lt(Be),
+    Ae
+  );
+}
+function Oe(e, t) {
+  return ut(e), ct(
+    L,
+    e,
+    lt(Ie, Wt(t)),
+    Se
+  );
+}
+function $e(e, t) {
+  return ut(e), ct(
+    L,
+    e,
+    lt(He, Wt(t)),
+    Ce
+  );
+}
+const R = 32, Y = 32, ot = 36, Nt = 32, X = 4, Re = X + R + X + Nt;
+function rt(e, t, n) {
+  e[t] = n >>> 24 & 255, e[t + 1] = n >>> 16 & 255, e[t + 2] = n >>> 8 & 255, e[t + 3] = n & 255;
+}
+function Ue(e) {
+  if (e.txid.length !== Y)
+    throw new Error(
+      `outpoint.txid must be exactly ${Y} bytes, got ${e.txid.length}`
+    );
+  if (!Number.isInteger(e.vout) || e.vout < 0 || e.vout > 4294967295)
+    throw new Error(`outpoint.vout must be a u32, got ${e.vout}`);
+  const t = new Uint8Array(ot);
+  return t.set(e.txid, 0), rt(t, Y, e.vout), t;
+}
+function It(e, t) {
+  const n = Math.min(e.length, t.length);
+  for (let s = 0; s < n; s++)
+    if (e[s] !== t[s]) return e[s] - t[s];
+  return e.length - t.length;
+}
+function Le(e) {
+  if (e.length === 0)
+    throw new Error(
+      "buildFundingOutpointsCommitment: outpoints must be non-empty"
+    );
+  const t = e.map(Ue);
+  t.sort(It);
+  for (let s = 1; s < t.length; s++)
+    if (It(t[s - 1], t[s]) === 0)
       throw new Error(
-        `hashlocks.length (${t.hashlocks.length}) must equal amounts.length (${t.amounts.length})`
-      );
-    if (t.hashlocks.length === 0)
-      throw new Error("hashlocks must contain at least one entry");
-    const a = r.length, h = {
-      depositorPubkey: s,
-      vaultProviderPubkey: o,
-      vaultKeeperPubkeys: r,
-      universalChallengerPubkeys: i,
-      hashlocks: t.hashlocks,
-      timelockRefund: t.timelockRefund,
-      pegInAmounts: t.amounts,
-      feeRate: t.protocolFeeRate,
-      numLocalChallengers: a,
-      councilQuorum: t.councilQuorum,
-      councilSize: t.councilSize,
-      network: this.config.btcNetwork
-    }, u = await ie(h), c = fe(
-      [...t.availableUTXOs],
-      u.totalOutputValue,
-      t.mempoolFeeRate,
-      pe(
-        u.htlcValues.length,
-        h.authAnchorHash
-      )
-    ), m = kt(this.config.btcNetwork), l = me({
-      unfundedTxHex: u.psbtHex,
-      selectedUTXOs: c.selectedUTXOs,
-      changeAddress: t.changeAddress,
-      changeAmount: c.changeAmount,
-      network: m
-    }), y = v(G(l)), f = [], x = [], P = [];
-    for (let g = 0; g < t.hashlocks.length; g++) {
-      const p = await ae({
-        prePeginParams: h,
-        timelockPegin: t.timelockPegin,
-        fundedPrePeginTxHex: l,
-        htlcVout: g
-      }), E = await ce({
-        peginTxHex: p.txHex,
-        fundedPrePeginTxHex: l,
-        depositorPubkey: s,
-        vaultProviderPubkey: o,
-        vaultKeeperPubkeys: r,
-        universalChallengerPubkeys: i,
-        hashlock: t.hashlocks[g],
-        timelockRefund: t.timelockRefund,
-        network: this.config.btcNetwork
-      });
-      f.push(p), x.push(E.psbtHex), P.push(
-        re(n, 1)
+        "buildFundingOutpointsCommitment: duplicate outpoint detected"
       );
+  const n = new Uint8Array(t.length * ot);
+  for (let s = 0; s < t.length; s++)
+    n.set(t[s], s * ot);
+  return L(n);
+}
+function Ve(e) {
+  if (e.depositorBtcPubkey.length !== R)
+    throw new Error(
+      `vaultContext: depositorBtcPubkey must be exactly ${R} bytes, got ${e.depositorBtcPubkey.length}`
+    );
+  const t = Le(e.fundingOutpoints), n = new Uint8Array(Re);
+  let s = 0;
+  return rt(n, s, R), s += X, n.set(e.depositorBtcPubkey, s), s += R, rt(n, s, Nt), s += X, n.set(t, s), n;
+}
+const We = "babylon-vault", Mt = 32, Bt = Mt * 2, Ne = /^[0-9a-f]+$/;
+async function Me(e, t) {
+  const n = Ve(t), s = $t(n), o = await e.deriveContextHash(We, s);
+  if (typeof o != "string")
+    throw new Error(
+      `deriveVaultRoot: wallet must return a string, got ${typeof o}`
+    );
+  if (o.length !== Bt)
+    throw new Error(
+      `deriveVaultRoot: wallet must return a ${Bt}-character hex string (${Mt} bytes), got length ${o.length}`
+    );
+  if (!Ne.test(o))
+    throw new Error(
+      "deriveVaultRoot: wallet must return lowercase hex per derive-context-hash.md §2.1; got value with non-lowercase or non-hex characters"
+    );
+  return nt(o);
+}
+const Fe = /* @__PURE__ */ Uint8Array.from([
+  7,
+  4,
+  13,
+  1,
+  10,
+  6,
+  15,
+  3,
+  12,
+  0,
+  9,
+  5,
+  2,
+  14,
+  11,
+  8
+]), Ft = Uint8Array.from(new Array(16).fill(0).map((e, t) => t)), Xe = Ft.map((e) => (9 * e + 5) % 16), Xt = /* @__PURE__ */ (() => {
+  const n = [[Ft], [Xe]];
+  for (let s = 0; s < 4; s++)
+    for (let o of n)
+      o.push(o[s].map((r) => Fe[r]));
+  return n;
+})(), Kt = Xt[0], Dt = Xt[1], jt = /* @__PURE__ */ [
+  [11, 14, 15, 12, 5, 8, 7, 9, 11, 13, 14, 15, 6, 7, 9, 8],
+  [12, 13, 11, 15, 6, 9, 9, 7, 12, 15, 11, 13, 7, 8, 7, 7],
+  [13, 15, 14, 11, 7, 7, 6, 8, 13, 14, 13, 12, 5, 5, 6, 9],
+  [14, 11, 12, 14, 8, 6, 5, 5, 15, 12, 15, 14, 9, 9, 8, 6],
+  [15, 12, 13, 13, 9, 5, 8, 6, 14, 11, 12, 11, 8, 6, 5, 5]
+].map((e) => Uint8Array.from(e)), Ke = /* @__PURE__ */ Kt.map((e, t) => e.map((n) => jt[t][n])), De = /* @__PURE__ */ Dt.map((e, t) => e.map((n) => jt[t][n])), je = /* @__PURE__ */ Uint32Array.from([
+  0,
+  1518500249,
+  1859775393,
+  2400959708,
+  2840853838
+]), ze = /* @__PURE__ */ Uint32Array.from([
+  1352829926,
+  1548603684,
+  1836072691,
+  2053994217,
+  0
+]);
+function Ht(e, t, n, s) {
+  return e === 0 ? t ^ n ^ s : e === 1 ? t & n | ~t & s : e === 2 ? (t | ~n) ^ s : e === 3 ? t & s | n & ~s : t ^ (n | ~s);
+}
+const N = /* @__PURE__ */ new Uint32Array(16);
+class qe extends de {
+  constructor() {
+    super(64, 20, 8, !0);
+    b(this, "h0", 1732584193);
+    b(this, "h1", -271733879);
+    b(this, "h2", -1732584194);
+    b(this, "h3", 271733878);
+    b(this, "h4", -1009589776);
+  }
+  get() {
+    const { h0: n, h1: s, h2: o, h3: r, h4: i } = this;
+    return [n, s, o, r, i];
+  }
+  set(n, s, o, r, i) {
+    this.h0 = n | 0, this.h1 = s | 0, this.h2 = o | 0, this.h3 = r | 0, this.h4 = i | 0;
+  }
+  process(n, s) {
+    for (let p = 0; p < 16; p++, s += 4)
+      N[p] = n.getUint32(s, !0);
+    let o = this.h0 | 0, r = o, i = this.h1 | 0, a = i, l = this.h2 | 0, u = l, c = this.h3 | 0, y = c, g = this.h4 | 0, h = g;
+    for (let p = 0; p < 5; p++) {
+      const T = 4 - p, P = je[p], v = ze[p], d = Kt[p], x = Dt[p], f = Ke[p], m = De[p];
+      for (let w = 0; w < 16; w++) {
+        const E = V(o + Ht(p, i, l, c) + N[d[w]] + P, f[w]) + g | 0;
+        o = g, g = c, c = V(l, 10) | 0, l = i, i = E;
+      }
+      for (let w = 0; w < 16; w++) {
+        const E = V(r + Ht(T, a, u, y) + N[x[w]] + v, m[w]) + h | 0;
+        r = h, h = y, y = V(u, 10) | 0, u = a, a = E;
+      }
     }
-    const w = await this.signPsbtsWithFallback(
-      x,
-      P
-    ), d = [];
-    for (let g = 0; g < w.length; g++) {
-      const p = le(
-        w[g],
-        s
-      ), E = ue(w[g]);
-      d.push({
-        htlcVout: g,
-        htlcValue: u.htlcValues[g],
-        peginTxHex: E,
-        peginTxid: f[g].txid,
-        peginInputSignature: p,
-        vaultScriptPubKey: f[g].vaultScriptPubKey
-      });
-    }
-    return {
-      fundedPrePeginTxHex: l,
-      prePeginTxid: y,
-      perVault: d,
-      selectedUTXOs: c.selectedUTXOs,
-      fee: c.fee,
-      changeAmount: c.changeAmount
-    };
+    this.set(this.h1 + l + y | 0, this.h2 + c + h | 0, this.h3 + g + r | 0, this.h4 + o + a | 0, this.h0 + i + u | 0);
   }
-  /**
-   * Signs multiple PSBTs using batch signing if available, falling back to sequential signing.
-   *
-   * Wallets that support native batch signing (e.g. UniSat) will sign all PSBTs
-   * in a single interaction. Others (e.g. Ledger, AppKit) implement signPsbts
-   * by looping signPsbt internally, so the UX depends on the wallet adapter.
-   */
-  async signPsbtsWithFallback(t, n) {
-    if (typeof this.config.btcWallet.signPsbts == "function") {
-      const o = await this.config.btcWallet.signPsbts(
-        t,
-        n
-      );
-      if (o.length !== t.length)
-        throw new Error(
-          `Expected ${t.length} signed PSBTs but received ${o.length}`
-        );
-      return o;
+  roundClean() {
+    A(N);
+  }
+  destroy() {
+    this.destroyed = !0, A(this.buffer), this.set(0, 0, 0, 0, 0);
+  }
+}
+const Ge = /* @__PURE__ */ Ut(() => new qe()), Ze = BigInt(0), O = BigInt(1), Ye = BigInt(2), Qe = BigInt(7), Je = BigInt(256), tn = BigInt(113), zt = [], qt = [], Gt = [];
+for (let e = 0, t = O, n = 1, s = 0; e < 24; e++) {
+  [n, s] = [s, (2 * n + 3 * s) % 5], zt.push(2 * (5 * s + n)), qt.push((e + 1) * (e + 2) / 2 % 64);
+  let o = Ze;
+  for (let r = 0; r < 7; r++)
+    t = (t << O ^ (t >> Qe) * tn) % Je, t & Ye && (o ^= O << (O << BigInt(r)) - O);
+  Gt.push(o);
+}
+const Zt = Ee(Gt, !0), en = Zt[0], nn = Zt[1], At = (e, t, n) => n > 32 ? _e(e, t, n) : ke(e, t, n), St = (e, t, n) => n > 32 ? ve(e, t, n) : Te(e, t, n);
+function sn(e, t = 24) {
+  const n = new Uint32Array(10);
+  for (let s = 24 - t; s < 24; s++) {
+    for (let i = 0; i < 10; i++)
+      n[i] = e[i] ^ e[i + 10] ^ e[i + 20] ^ e[i + 30] ^ e[i + 40];
+    for (let i = 0; i < 10; i += 2) {
+      const a = (i + 8) % 10, l = (i + 2) % 10, u = n[l], c = n[l + 1], y = At(u, c, 1) ^ n[a], g = St(u, c, 1) ^ n[a + 1];
+      for (let h = 0; h < 50; h += 10)
+        e[i + h] ^= y, e[i + h + 1] ^= g;
     }
-    const s = [];
-    for (let o = 0; o < t.length; o++) {
-      const r = await this.config.btcWallet.signPsbt(
-        t[o],
-        n[o]
-      );
-      s.push(r);
+    let o = e[2], r = e[3];
+    for (let i = 0; i < 24; i++) {
+      const a = qt[i], l = At(o, r, a), u = St(o, r, a), c = zt[i];
+      o = e[c], r = e[c + 1], e[c] = l, e[c + 1] = u;
     }
-    return s;
+    for (let i = 0; i < 50; i += 10) {
+      for (let a = 0; a < 10; a++)
+        n[a] = e[i + a];
+      for (let a = 0; a < 10; a++)
+        e[i + a] ^= ~n[(a + 2) % 10] & n[(a + 4) % 10];
+    }
+    e[0] ^= en[s], e[1] ^= nn[s];
   }
-  /**
-   * Signs and broadcasts a funded peg-in transaction to the Bitcoin network.
-   *
-   * This method:
-   * 1. Parses the funded transaction hex
-   * 2. Fetches UTXO data from mempool for each input
-   * 3. Creates a PSBT with proper witnessUtxo/tapInternalKey
-   * 4. Signs via btcWallet.signPsbt()
-   * 5. Finalizes and extracts the transaction
-   * 6. Broadcasts via mempool API
-   *
-   * @param params - Transaction hex and depositor public key
-   * @returns The broadcasted Bitcoin transaction ID
-   * @throws Error if signing or broadcasting fails
-   */
-  async signAndBroadcast(t) {
-    const { fundedPrePeginTxHex: n, depositorBtcPubkey: s } = t, o = n.startsWith("0x") ? n.slice(2) : n, r = se.fromHex(o);
-    if (r.ins.length === 0)
-      throw new Error("Transaction has no inputs");
-    const i = new yt();
-    i.setVersion(r.version), i.setLocktime(r.locktime);
-    const a = it.from(
-      $(s),
-      "hex"
-    ), h = this.config.mempoolApiUrl, u = r.ins.map((d) => {
-      const g = it.from(d.hash).reverse().toString("hex"), p = d.index;
-      return $e(g, p, t.localPrevouts, h).then(
-        (E) => ({ input: d, utxoData: E, txid: g, vout: p })
-      );
-    }), c = await Promise.all(u), m = c.reduce(
-      (d, g) => d + BigInt(g.utxoData.value),
-      0n
-    ), l = r.outs.reduce(
-      (d, g) => d + BigInt(g.value),
-      0n
-    );
-    if (m < l)
+  A(n);
+}
+class ht {
+  // NOTE: we accept arguments in bytes instead of bits here.
+  constructor(t, n, s, o = !1, r = 24) {
+    b(this, "state");
+    b(this, "pos", 0);
+    b(this, "posOut", 0);
+    b(this, "finished", !1);
+    b(this, "state32");
+    b(this, "destroyed", !1);
+    b(this, "blockLen");
+    b(this, "suffix");
+    b(this, "outputLen");
+    b(this, "enableXOF", !1);
+    b(this, "rounds");
+    if (this.blockLen = t, this.suffix = n, this.outputLen = s, this.enableXOF = o, this.rounds = r, st(s, "outputLen"), !(0 < t && t < 200))
+      throw new Error("only keccak-f1600 function is supported");
+    this.state = new Uint8Array(200), this.state32 = fe(this.state);
+  }
+  clone() {
+    return this._cloneInto();
+  }
+  keccak() {
+    xt(this.state32), sn(this.state32, this.rounds), xt(this.state32), this.posOut = 0, this.pos = 0;
+  }
+  update(t) {
+    F(this), U(t);
+    const { blockLen: n, state: s } = this, o = t.length;
+    for (let r = 0; r < o; ) {
+      const i = Math.min(n - this.pos, o - r);
+      for (let a = 0; a < i; a++)
+        s[this.pos++] ^= t[r++];
+      this.pos === n && this.keccak();
+    }
+    return this;
+  }
+  finish() {
+    if (this.finished)
+      return;
+    this.finished = !0;
+    const { state: t, suffix: n, pos: s, blockLen: o } = this;
+    t[s] ^= n, (n & 128) !== 0 && s === o - 1 && this.keccak(), t[o - 1] ^= 128, this.keccak();
+  }
+  writeInto(t) {
+    F(this, !1), U(t), this.finish();
+    const n = this.state, { blockLen: s } = this;
+    for (let o = 0, r = t.length; o < r; ) {
+      this.posOut >= s && this.keccak();
+      const i = Math.min(s - this.posOut, r - o);
+      t.set(n.subarray(this.posOut, this.posOut + i), o), this.posOut += i, o += i;
+    }
+    return t;
+  }
+  xofInto(t) {
+    if (!this.enableXOF)
+      throw new Error("XOF is not possible for this instance");
+    return this.writeInto(t);
+  }
+  xof(t) {
+    return st(t), this.xofInto(new Uint8Array(t));
+  }
+  digestInto(t) {
+    if (ge(t, this), this.finished)
+      throw new Error("digest() was already called");
+    return this.writeInto(t), this.destroy(), t;
+  }
+  digest() {
+    return this.digestInto(new Uint8Array(this.outputLen));
+  }
+  destroy() {
+    this.destroyed = !0, A(this.state);
+  }
+  _cloneInto(t) {
+    const { blockLen: n, suffix: s, outputLen: o, rounds: r, enableXOF: i } = this;
+    return t || (t = new ht(n, s, o, i, r)), t.state32.set(this.state32), t.pos = this.pos, t.posOut = this.posOut, t.finished = this.finished, t.rounds = r, t.suffix = s, t.outputLen = o, t.enableXOF = i, t.destroyed = this.destroyed, t;
+  }
+}
+const on = (e, t, n, s = {}) => Ut(() => new ht(t, e, n), s), rn = /* @__PURE__ */ on(1, 136, 32), Ct = 64, k = 20, it = 4, Yt = 2, an = 0, cn = 1, M = [64, 64], ln = (e) => Array.from(e).map((t) => t.toString(16).padStart(2, "0")).join("");
+function dt(e) {
+  return Ge(L(e));
+}
+function Qt(e) {
+  return (1 << e) - 1;
+}
+function un(e) {
+  let t = 1;
+  for (; t * t < e + 1; ) t++;
+  return Math.max(t, 2);
+}
+function hn(e) {
+  const t = it, n = e * Qt(t);
+  return { d: t, n: e, checksum_radix: un(n) };
+}
+function Q(e, t) {
+  const n = [];
+  let s = t;
+  for (; s > 0; )
+    n.push(s & 255), s >>>= 8;
+  const o = new Uint8Array(e.length + n.length);
+  o.set(e);
+  for (let r = 0; r < n.length; r++)
+    o[e.length + r] = n[r];
+  return dt(o);
+}
+function J(e, t) {
+  let n = e;
+  for (let s = 0; s < t; s++)
+    n = dt(n);
+  return n;
+}
+function dn(e, t) {
+  const n = Qt(t.d), s = t.checksum_radix - 1, o = Math.floor(t.n * n / t.checksum_radix), r = [];
+  for (let c = 0; c < t.n; c++) {
+    const y = Q(e, c + Yt), g = J(y, n);
+    r.push(Array.from(g));
+  }
+  const i = Q(
+    e,
+    an
+  ), a = J(
+    i,
+    s
+  ), l = Q(
+    e,
+    cn
+  ), u = J(
+    l,
+    o
+  );
+  return {
+    config: t,
+    message_terminals: r,
+    checksum_major_terminal: Array.from(u),
+    checksum_minor_terminal: Array.from(a)
+  };
+}
+async function fn(e) {
+  try {
+    if (e.length !== Ct)
       throw new Error(
-        `UTXO value mismatch: total input value (${m} sat) is less than total output value (${l} sat). This may indicate the mempool API returned manipulated UTXO data.`
+        `WOTS seed must be exactly ${Ct} bytes, got ${e.length}`
       );
-    const y = m - l;
-    if (y > Et)
+    const t = [];
+    for (let n = 0; n < M.length; n++) {
+      const s = M[n], o = hn(s), r = new Uint8Array(e.length + 1);
+      r.set(e), r[e.length] = n;
+      const i = dt(r);
+      try {
+        const a = dn(i, o);
+        if (a.config.d !== it)
+          throw new Error(
+            `Block ${n}: expected d=${it}, got d=${a.config.d}`
+          );
+        if (a.config.n !== s)
+          throw new Error(
+            `Block ${n}: expected n=${s}, got n=${a.config.n}`
+          );
+        if (a.message_terminals.length !== s)
+          throw new Error(
+            `Block ${n}: expected ${s} message terminals, got ${a.message_terminals.length}`
+          );
+        for (let l = 0; l < a.message_terminals.length; l++)
+          if (a.message_terminals[l].length !== k)
+            throw new Error(
+              `Block ${n} terminal ${l}: expected ${k} bytes, got ${a.message_terminals[l].length}`
+            );
+        if (a.checksum_minor_terminal.length !== k)
+          throw new Error(
+            `Block ${n} checksum_minor: expected ${k} bytes`
+          );
+        if (a.checksum_major_terminal.length !== k)
+          throw new Error(
+            `Block ${n} checksum_major: expected ${k} bytes`
+          );
+        t.push(a);
+      } finally {
+        r.fill(0), i.fill(0);
+      }
+    }
+    if (t.length !== M.length)
       throw new Error(
-        `Implied transaction fee (${y} sat) exceeds maximum reasonable fee (${Et} sat). This may indicate manipulated UTXO data.`
+        `Expected ${M.length} blocks, got ${t.length}`
       );
-    for (const { input: d, utxoData: g, txid: p, vout: E } of c) {
-      const k = ge(
-        {
-          value: g.value,
-          scriptPubKey: g.scriptPubKey
-        },
-        a
+    return t;
+  } finally {
+    e.fill(0);
+  }
+}
+function tt(e, t, n) {
+  if (e.length !== k)
+    throw new Error(
+      `Block ${t} ${n}: expected ${k} bytes, got ${e.length}`
+    );
+  for (let s = 0; s < e.length; s++) {
+    const o = e[s];
+    if (!Number.isInteger(o) || o < 0 || o > 255)
+      throw new Error(
+        `Block ${t} ${n}[${s}]: invalid byte value ${o}`
       );
-      i.addInput({
-        hash: d.hash,
-        index: d.index,
-        sequence: d.sequence,
-        ...k
-      });
-    }
-    for (const d of r.outs)
-      i.addOutput({
-        script: d.script,
-        value: d.value
-      });
-    const f = await this.config.btcWallet.signPsbt(i.toHex()), x = yt.fromHex(f);
-    try {
-      x.finalizeAllInputs();
-    } catch (d) {
-      if (!x.data.inputs.every(
-        (p) => p.finalScriptWitness || p.finalScriptSig
-      ))
+  }
+}
+function gn(e) {
+  if (e.length === 0)
+    throw new Error("Public keys array must not be empty");
+  for (let r = 0; r < e.length; r++) {
+    const i = e[r];
+    tt(i.checksum_minor_terminal, r, "checksum_minor_terminal"), tt(i.checksum_major_terminal, r, "checksum_major_terminal");
+    for (let a = 0; a < i.message_terminals.length; a++)
+      tt(i.message_terminals[a], r, `message_terminal[${a}]`);
+  }
+  let t = 0;
+  for (const r of e)
+    t += Yt + r.message_terminals.length;
+  const n = new Uint8Array(t * k);
+  let s = 0;
+  for (const r of e) {
+    n.set(r.checksum_minor_terminal, s), s += k, n.set(r.checksum_major_terminal, s), s += k;
+    for (const i of r.message_terminals)
+      n.set(i, s), s += k;
+  }
+  const o = rn(n);
+  return `0x${ln(o)}`;
+}
+function Nn(e) {
+  const t = (e instanceof Error ? e.message : typeof e == "string" ? e : "").toLowerCase();
+  return t.includes("wots") && t.includes("hash") && t.includes("does not match");
+}
+const pn = 0, mn = /^0x[0-9a-f]+$/i, bn = /^[0-9a-f]+$/i, wn = /^[A-Za-z0-9+/]+={0,2}$/, yn = "00".repeat(32);
+function $(e) {
+  if (typeof e != "string" || e.length === 0)
+    throw new Error("BTC wallet returned empty public key");
+  return le(e).toLowerCase();
+}
+function xn(e) {
+  if (typeof e != "string" || e.length === 0)
+    throw new Error("BTC wallet returned empty BIP-322 signature");
+  if (e.startsWith("0x") || e.startsWith("0X")) {
+    if (!mn.test(e) || e.length < 4 || e.length % 2 !== 0)
+      throw new Error("BTC wallet returned malformed hex BIP-322 signature");
+    return e.toLowerCase();
+  }
+  if (bn.test(e)) {
+    if (e.length % 2 !== 0)
+      throw new Error("BTC wallet returned malformed hex BIP-322 signature");
+    return `0x${e.toLowerCase()}`;
+  }
+  if (!wn.test(e) || e.length % 4 !== 0)
+    throw new Error("BTC wallet returned malformed base64 BIP-322 signature");
+  const t = et.from(e, "base64");
+  if (t.length === 0 || t.toString("base64") !== e)
+    throw new Error("BTC wallet returned malformed base64 BIP-322 signature");
+  return `0x${t.toString("hex")}`;
+}
+function Pn(e, t, n, s) {
+  const o = n == null ? void 0 : n[`${e}:${t}`];
+  return o ? Promise.resolve({
+    txid: e,
+    vout: t,
+    value: o.value,
+    scriptPubKey: o.scriptPubKey
+  }) : xe(e, t, s);
+}
+const Ot = 12e4;
+class Mn {
+  /**
+   * Creates a new PeginManager instance.
+   *
+   * @param config - Manager configuration including wallets and contract addresses
+   */
+  constructor(t) {
+    b(this, "config");
+    this.config = t;
+  }
+  /**
+   * Prepare a peg-in: sizing pass → vault-root derivation (one wallet
+   * popup) → per-vault WOTS / hashlock derivation → commit pass with
+   * batch PSBT signing (one popup). Returns broadcast-ready txs, the
+   * pubkey snapshot, and the sensitive derived material.
+   *
+   * @throws If the wallet rejects, insufficient funds, or an internal
+   *         invariant violation.
+   */
+  async preparePegin(t) {
+    if (t.amounts.length === 0)
+      throw new Error("amounts must contain at least one entry");
+    const n = await this.config.btcWallet.getPublicKeyHex(), s = $(n), o = await this.prepareSizing(s, t), r = o.selectedUTXOs.map(
+      (h) => ({
+        txid: nt(h.txid),
+        vout: h.vout
+      })
+    ), i = await Me(this.config.btcWallet, {
+      depositorBtcPubkey: nt(s),
+      fundingOutpoints: r
+    }), a = await this.expandPerVaultSecrets(i, t.amounts.length), { perVaultWotsKeys: l, wotsPkHashes: u, htlcSecretHexes: c, hashlocks: y } = a, g = await this.preparePeginCommit({
+      depositorBtcPubkeyRaw: n,
+      depositorBtcPubkey: s,
+      hashlocks: y,
+      sizing: o,
+      params: t
+    });
+    for (let h = 0; h < g.perVault.length; h++)
+      if (g.perVault[h].htlcVout !== h)
         throw new Error(
-          `PSBT finalization failed and wallet did not auto-finalize: ${d}`
+          `Internal invariant violation: htlcVout/index mismatch at vault ${h} (expected ${h}, got ${g.perVault[h].htlcVout})`
         );
+    return {
+      transaction: {
+        ...g,
+        selectedUTXOs: o.selectedUTXOs,
+        fee: o.fee,
+        changeAmount: o.changeAmount
+      },
+      depositorBtcPubkey: s,
+      derivedSecrets: {
+        perVaultWotsKeys: l,
+        wotsPkHashes: u,
+        htlcSecretHexes: c
+      }
+    };
+  }
+  /**
+   * Derive per-vault WOTS keys + HTLC preimages from the wallet root.
+   * Takes ownership of `root`: zeros the buffer (and per-vault secret
+   * buffers) before returning, regardless of how the caller exits.
+   */
+  async expandPerVaultSecrets(t, n) {
+    const s = [], o = [], r = [], i = [];
+    try {
+      for (let a = 0; a < n; a++) {
+        const l = $e(t, a);
+        try {
+          const c = await fn(l);
+          s.push(c), o.push(gn(c));
+        } finally {
+          l.fill(0);
+        }
+        const u = Oe(t, a);
+        try {
+          const c = $t(u);
+          r.push(c), i.push(
+            ue(I(c)).slice(2)
+          );
+        } finally {
+          u.fill(0);
+        }
+      }
+    } finally {
+      t.fill(0);
     }
-    const P = x.extractTransaction().toHex();
-    return await we(P, h);
+    return { perVaultWotsKeys: s, wotsPkHashes: o, htlcSecretHexes: r, hashlocks: i };
   }
   /**
-   * Registers a peg-in on Ethereum by calling the BTCVaultRegistry contract.
-   *
-   * This method:
-   * 1. Re-verifies the PopSignature against the currently connected ETH
-   *    and BTC wallets — refuses to proceed if either has changed
-   * 2. Derives vault ID and checks if it already exists (pre-flight)
-   * 3. Encodes the contract call using viem
-   * 4. Estimates gas (catches contract errors early with proper revert
-   *    reasons)
-   * 5. Sends transaction with pre-estimated gas via
-   *    ethWallet.sendTransaction()
-   *
-   * The PopSignature must be obtained via
-   * {@link signProofOfPossession} before this call.
+   * Build unfunded Pre-PegIn + select UTXOs. No PSBT signing.
    *
-   * @param params - Registration parameters including the PopSignature
-   *                 and the prepared Pre-PegIn / PegIn transactions
-   * @returns Result containing Ethereum transaction hash and vault ID
-   * @throws Error if the PopSignature does not match the connected wallets
-   * @throws Error if the vault already exists
-   * @throws Error if contract simulation fails (e.g., invalid signature,
-   *         unauthorized)
+   * Returns the full selection result (UTXOs, fee, changeAmount) so the
+   * commit pass funds the broadcast tx with the exact same set used to
+   * build the vault-context funding-outpoints commitment. Re-running
+   * `selectUtxosForPegin` in the commit pass would be deterministic given
+   * the same inputs, but threading the result through guarantees the
+   * domain separator structurally matches the funded tx inputs.
    */
-  async registerPeginOnChain(t) {
+  async prepareSizing(t, n) {
+    const s = n.amounts.map(
+      () => yn
+    ), o = n.vaultKeeperBtcPubkeys.length, r = await bt({
+      depositorPubkey: t,
+      vaultProviderPubkey: _(n.vaultProviderBtcPubkey),
+      vaultKeeperPubkeys: n.vaultKeeperBtcPubkeys.map(_),
+      universalChallengerPubkeys: n.universalChallengerBtcPubkeys.map(_),
+      hashlocks: s,
+      timelockRefund: n.timelockRefund,
+      pegInAmounts: n.amounts,
+      feeRate: n.protocolFeeRate,
+      numLocalChallengers: o,
+      councilQuorum: n.councilQuorum,
+      councilSize: n.councilSize,
+      network: this.config.btcNetwork
+    }), i = pe(
+      [...n.availableUTXOs],
+      r.totalOutputValue,
+      n.mempoolFeeRate,
+      // No auth-anchor OP_RETURN in this PR (deferred to PR5).
+      be(r.htlcValues.length)
+    );
+    return {
+      selectedUTXOs: i.selectedUTXOs,
+      fee: i.fee,
+      changeAmount: i.changeAmount
+    };
+  }
+  /** Build PegIn txs and batch-sign their inputs with real hashlocks. */
+  async preparePeginCommit(t) {
     const {
-      unsignedPrePeginTx: n,
-      depositorSignedPeginTx: s,
+      depositorBtcPubkeyRaw: n,
+      depositorBtcPubkey: s,
+      hashlocks: o,
+      sizing: r,
+      params: i
+    } = t, a = _(i.vaultProviderBtcPubkey), l = i.vaultKeeperBtcPubkeys.map(_), u = i.universalChallengerBtcPubkeys.map(_), c = l.length, y = {
+      depositorPubkey: s,
+      vaultProviderPubkey: a,
+      vaultKeeperPubkeys: l,
+      universalChallengerPubkeys: u,
+      hashlocks: o,
+      timelockRefund: i.timelockRefund,
+      pegInAmounts: i.amounts,
+      feeRate: i.protocolFeeRate,
+      numLocalChallengers: c,
+      councilQuorum: i.councilQuorum,
+      councilSize: i.councilSize,
+      network: this.config.btcNetwork
+    }, g = await bt(y), h = wt(this.config.btcNetwork), p = we({
+      unfundedTxHex: g.psbtHex,
+      selectedUTXOs: r.selectedUTXOs,
+      changeAddress: i.changeAddress,
+      changeAmount: r.changeAmount,
+      network: h
+    }), T = _(q(p)), P = [], v = [], d = [];
+    for (let m = 0; m < o.length; m++) {
+      const w = await oe({
+        prePeginParams: y,
+        timelockPegin: i.timelockPegin,
+        fundedPrePeginTxHex: p,
+        htlcVout: m
+      }), E = await re({
+        peginTxHex: w.txHex,
+        fundedPrePeginTxHex: p,
+        depositorPubkey: s,
+        vaultProviderPubkey: a,
+        vaultKeeperPubkeys: l,
+        universalChallengerPubkeys: u,
+        hashlock: o[m],
+        timelockRefund: i.timelockRefund,
+        network: this.config.btcNetwork
+      });
+      P.push(w), v.push(E.psbtHex), d.push(
+        he(n, 1)
+      );
+    }
+    const x = await this.signPsbtsWithFallback(
+      v,
+      d
+    ), f = [];
+    for (let m = 0; m < x.length; m++) {
+      const w = ie(
+        x[m],
+        s
+      ), E = ae(x[m]);
+      f.push({
+        htlcVout: m,
+        htlcValue: g.htlcValues[m],
+        peginTxHex: E,
+        peginTxid: P[m].txid,
+        peginInputSignature: w,
+        vaultScriptPubKey: P[m].vaultScriptPubKey
+      });
+    }
+    return {
+      fundedPrePeginTxHex: p,
+      prePeginTxid: T,
+      perVault: f
+    };
+  }
+  /**
+   * Signs multiple PSBTs using batch signing if available, falling back to sequential signing.
+   *
+   * Wallets that support native batch signing (e.g. UniSat) will sign all PSBTs
+   * in a single interaction. Others (e.g. Ledger, AppKit) implement signPsbts
+   * by looping signPsbt internally, so the UX depends on the wallet adapter.
+   */
+  async signPsbtsWithFallback(t, n) {
+    if (typeof this.config.btcWallet.signPsbts == "function") {
+      const o = await this.config.btcWallet.signPsbts(
+        t,
+        n
+      );
+      if (o.length !== t.length)
+        throw new Error(
+          `Expected ${t.length} signed PSBTs but received ${o.length}`
+        );
+      return o;
+    }
+    const s = [];
+    for (let o = 0; o < t.length; o++) {
+      const r = await this.config.btcWallet.signPsbt(
+        t[o],
+        n[o]
+      );
+      s.push(r);
+    }
+    return s;
+  }
+  /**
+   * Signs and broadcasts a funded peg-in transaction to the Bitcoin network.
+   *
+   * This method:
+   * 1. Parses the funded transaction hex
+   * 2. Fetches UTXO data from mempool for each input
+   * 3. Creates a PSBT with proper witnessUtxo/tapInternalKey
+   * 4. Signs via btcWallet.signPsbt()
+   * 5. Finalizes and extracts the transaction
+   * 6. Broadcasts via mempool API
+   *
+   * @param params - Transaction hex and depositor public key
+   * @returns The broadcasted Bitcoin transaction ID
+   * @throws Error if signing or broadcasting fails
+   */
+  async signAndBroadcast(t) {
+    const { fundedPrePeginTxHex: n, depositorBtcPubkey: s } = t, o = n.startsWith("0x") ? n.slice(2) : n, r = ne.fromHex(o);
+    if (r.ins.length === 0)
+      throw new Error("Transaction has no inputs");
+    const i = new ft();
+    i.setVersion(r.version), i.setLocktime(r.locktime);
+    const a = et.from(
+      $(s),
+      "hex"
+    ), l = this.config.mempoolApiUrl, u = r.ins.map((d) => {
+      const x = et.from(d.hash).reverse().toString("hex"), f = d.index;
+      return Pn(x, f, t.localPrevouts, l).then(
+        (m) => ({ input: d, utxoData: m, txid: x, vout: f })
+      );
+    }), c = await Promise.all(u), y = c.reduce(
+      (d, x) => d + BigInt(x.utxoData.value),
+      0n
+    ), g = r.outs.reduce(
+      (d, x) => d + BigInt(x.value),
+      0n
+    );
+    if (y < g)
+      throw new Error(
+        `UTXO value mismatch: total input value (${y} sat) is less than total output value (${g} sat). This may indicate the mempool API returned manipulated UTXO data.`
+      );
+    const h = y - g;
+    if (h > yt)
+      throw new Error(
+        `Implied transaction fee (${h} sat) exceeds maximum reasonable fee (${yt} sat). This may indicate manipulated UTXO data.`
+      );
+    for (const { input: d, utxoData: x, txid: f, vout: m } of c) {
+      const w = me(
+        {
+          value: x.value,
+          scriptPubKey: x.scriptPubKey
+        },
+        a
+      );
+      i.addInput({
+        hash: d.hash,
+        index: d.index,
+        sequence: d.sequence,
+        ...w
+      });
+    }
+    for (const d of r.outs)
+      i.addOutput({
+        script: d.script,
+        value: d.value
+      });
+    const p = await this.config.btcWallet.signPsbt(i.toHex()), T = ft.fromHex(p);
+    try {
+      T.finalizeAllInputs();
+    } catch (d) {
+      if (!T.data.inputs.every(
+        (f) => f.finalScriptWitness || f.finalScriptSig
+      ))
+        throw new Error(
+          `PSBT finalization failed and wallet did not auto-finalize: ${d}`
+        );
+    }
+    const P = T.extractTransaction().toHex();
+    return await ye(P, l);
+  }
+  /**
+   * Registers a peg-in on Ethereum by calling the BTCVaultRegistry contract.
+   *
+   * This method:
+   * 1. Re-verifies the PopSignature against the currently connected ETH
+   *    and BTC wallets — refuses to proceed if either has changed
+   * 2. Derives vault ID and checks if it already exists (pre-flight)
+   * 3. Encodes the contract call using viem
+   * 4. Estimates gas (catches contract errors early with proper revert
+   *    reasons)
+   * 5. Sends transaction with pre-estimated gas via
+   *    ethWallet.sendTransaction()
+   *
+   * The PopSignature must be obtained via
+   * {@link signProofOfPossession} before this call.
+   *
+   * @param params - Registration parameters including the PopSignature
+   *                 and the prepared Pre-PegIn / PegIn transactions
+   * @returns Result containing Ethereum transaction hash and vault ID
+   * @throws Error if the PopSignature does not match the connected wallets
+   * @throws Error if the vault already exists
+   * @throws Error if contract simulation fails (e.g., invalid signature,
+   *         unauthorized)
+   */
+  async registerPeginOnChain(t) {
+    const {
+      unsignedPrePeginTx: n,
+      depositorSignedPeginTx: s,
       vaultProvider: o,
       hashlock: r,
       htlcVout: i,
       depositorPayoutBtcAddress: a,
-      depositorWotsPkHash: h,
+      depositorWotsPkHash: l,
       popSignature: u
     } = t;
     if (!this.config.ethWallet.account)
       throw new Error("Ethereum wallet account not found");
     const c = this.config.ethWallet.account.address;
-    if (!bt(u.depositorEthAddress, c))
+    if (!gt(u.depositorEthAddress, c))
       throw new Error(
         `Proof of possession was signed for ${u.depositorEthAddress} but the Ethereum wallet is currently connected to ${c}. Reconnect the original account or call signProofOfPossession() again.`
       );
     await this.assertPopMatchesBtcWallet(u);
-    const m = u.btcPopSignature, l = I(u.depositorBtcPubkey), y = I(n), f = I(s), x = await this.resolvePayoutScriptPubKey(
+    const y = u.btcPopSignature, g = I(u.depositorBtcPubkey), h = I(n), p = I(s), T = await this.resolvePayoutScriptPubKey(
       a
-    ), P = G(f), w = await Pt(
-      v(P),
-      v(c)
-    ), d = I(w);
+    ), P = q(p), v = await mt(
+      _(P),
+      _(c)
+    ), d = I(v);
     if (await this.checkVaultExists(d))
       throw new Error(
         `Vault already exists (ID: ${d}, peginTxHash: ${P}). Vault IDs are derived from the pegin transaction hash and depositor address. To create a new vault, use different UTXOs or a different amount to generate a unique transaction.`
       );
-    const p = q({
+    const f = j({
       chain: this.config.ethChain,
-      transport: Z()
+      transport: z()
     });
-    let E;
+    let m;
     try {
-      E = await p.readContract({
+      m = await f.readContract({
         address: this.config.vaultContracts.btcVaultRegistry,
-        abi: O,
+        abi: C,
         functionName: "getPegInFee",
         args: [o]
       });
@@ -430,56 +1050,56 @@ class Nn {
         "Failed to query pegin fee from the contract. Please check your network connection and that the contract address is correct."
       );
     }
-    const k = xt({
-      abi: O,
+    const w = pt({
+      abi: C,
       functionName: "submitPeginRequest",
       args: [
         c,
-        l,
-        m,
+        g,
         y,
-        f,
+        h,
+        p,
         o,
         r,
         i,
-        x,
-        h
+        T,
+        l
       ]
     });
-    let _;
+    let E;
     try {
-      _ = await p.estimateGas({
+      E = await f.estimateGas({
         to: this.config.vaultContracts.btcVaultRegistry,
-        data: k,
-        value: E,
+        data: w,
+        value: m,
         account: this.config.ethWallet.account.address
       });
-    } catch (j) {
-      A(j);
+    } catch (D) {
+      H(D);
     }
     let B;
     try {
       B = await this.config.ethWallet.sendTransaction({
         to: this.config.vaultContracts.btcVaultRegistry,
-        data: k,
-        value: E,
+        data: w,
+        value: m,
         account: this.config.ethWallet.account,
         chain: this.config.ethChain,
-        gas: _
+        gas: E
       });
-    } catch (j) {
-      A(j);
+    } catch (D) {
+      H(D);
     }
-    const X = await p.waitForTransactionReceipt({
+    const K = await f.waitForTransactionReceipt({
       hash: B,
-      timeout: _t
+      timeout: Ot
     });
-    return X.status === "reverted" && A(
+    return K.status === "reverted" && H(
       new Error(
         `Transaction reverted. Hash: ${B}. Check the transaction on block explorer for details.`
       )
     ), {
-      ethTxHash: X.transactionHash,
+      ethTxHash: K.transactionHash,
       vaultId: d,
       peginTxHash: P
     };
@@ -501,39 +1121,39 @@ class Nn {
     if (!this.config.ethWallet.account)
       throw new Error("Ethereum wallet account not found");
     const i = this.config.ethWallet.account.address;
-    if (!bt(r.depositorEthAddress, i))
+    if (!gt(r.depositorEthAddress, i))
       throw new Error(
         `Proof of possession was signed for ${r.depositorEthAddress} but the Ethereum wallet is currently connected to ${i}. Reconnect the original account or call signProofOfPossession() again.`
       );
     await this.assertPopMatchesBtcWallet(r);
-    const a = r.btcPopSignature, h = [];
-    for (const p of o)
-      h.push(
-        await this.resolvePayoutScriptPubKey(p.depositorPayoutBtcAddress)
+    const a = r.btcPopSignature, l = [];
+    for (const f of o)
+      l.push(
+        await this.resolvePayoutScriptPubKey(f.depositorPayoutBtcAddress)
       );
     const u = [];
-    for (const p of o) {
-      const E = I(
-        p.depositorSignedPeginTx
-      ), k = G(E), _ = await Pt(
-        v(k),
-        v(i)
-      ), B = I(_);
+    for (const f of o) {
+      const m = I(
+        f.depositorSignedPeginTx
+      ), w = q(m), E = await mt(
+        _(w),
+        _(i)
+      ), B = I(E);
       if (await this.checkVaultExists(B))
         throw new Error(
-          `Vault already exists (ID: ${B}, peginTxHash: ${k}). To create a new vault, use different UTXOs or a different amount.`
+          `Vault already exists (ID: ${B}, peginTxHash: ${w}). To create a new vault, use different UTXOs or a different amount.`
         );
-      u.push({ vaultId: B, peginTxHash: k });
+      u.push({ vaultId: B, peginTxHash: w });
     }
-    const c = q({
+    const c = j({
       chain: this.config.ethChain,
-      transport: Z()
+      transport: z()
     });
-    let m;
+    let y;
     try {
-      m = await c.readContract({
+      y = await c.readContract({
         address: this.config.vaultContracts.btcVaultRegistry,
-        abi: O,
+        abi: C,
         functionName: "getPegInFee",
         args: [n]
       });
@@ -542,756 +1162,178 @@ class Nn {
         "Failed to query pegin fee from the contract. Please check your network connection and that the contract address is correct."
       );
     }
-    const l = m * BigInt(o.length), y = I(
+    const g = y * BigInt(o.length), h = I(
       r.depositorBtcPubkey
-    ), f = I(s), x = o.map((p, E) => ({
-      depositorBtcPubKey: y,
+    ), p = I(s), T = o.map((f, m) => ({
+      depositorBtcPubKey: h,
       btcPopSignature: a,
-      unsignedPrePeginTx: f,
+      unsignedPrePeginTx: p,
       depositorSignedPeginTx: I(
-        p.depositorSignedPeginTx
+        f.depositorSignedPeginTx
       ),
-      hashlock: p.hashlock,
-      htlcVout: p.htlcVout,
-      referralCode: Se,
-      depositorPayoutBtcAddress: h[E],
-      depositorWotsPkHash: p.depositorWotsPkHash
-    })), P = xt({
-      abi: O,
+      hashlock: f.hashlock,
+      htlcVout: f.htlcVout,
+      referralCode: pn,
+      depositorPayoutBtcAddress: l[m],
+      depositorWotsPkHash: f.depositorWotsPkHash
+    })), P = pt({
+      abi: C,
       functionName: "submitPeginRequestBatch",
-      args: [i, n, x]
+      args: [i, n, T]
     });
-    let w;
+    let v;
     try {
-      w = await c.estimateGas({
+      v = await c.estimateGas({
         to: this.config.vaultContracts.btcVaultRegistry,
         data: P,
-        value: l,
+        value: g,
         account: this.config.ethWallet.account.address
       });
-    } catch (p) {
-      A(p);
+    } catch (f) {
+      H(f);
     }
     let d;
     try {
       d = await this.config.ethWallet.sendTransaction({
         to: this.config.vaultContracts.btcVaultRegistry,
         data: P,
-        value: l,
+        value: g,
         account: this.config.ethWallet.account,
         chain: this.config.ethChain,
-        gas: w
-      });
-    } catch (p) {
-      A(p);
-    }
-    const g = await c.waitForTransactionReceipt({
-      hash: d,
-      timeout: _t
-    });
-    return g.status === "reverted" && A(
-      new Error(
-        `Batch transaction reverted. Hash: ${d}. Check the transaction on block explorer for details.`
-      )
-    ), {
-      ethTxHash: g.transactionHash,
-      vaults: u
-    };
-  }
-  /**
-   * Check if a vault already exists for a given vault ID.
-   *
-   * @param vaultId - The Bitcoin transaction hash (vault ID)
-   * @returns True if vault exists, false otherwise
-   */
-  async checkVaultExists(t) {
-    try {
-      return (await q({
-        chain: this.config.ethChain,
-        transport: Z()
-      }).readContract({
-        address: this.config.vaultContracts.btcVaultRegistry,
-        abi: O,
-        functionName: "getBtcVaultBasicInfo",
-        args: [t]
-      }))[0] !== oe;
-    } catch {
-      return !1;
-    }
-  }
-  /**
-   * Resolve the BTC payout address to a scriptPubKey hex for the contract.
-   *
-   * If a payout address is provided, converts it directly.
-   * If omitted, uses the wallet's address and validates it against the
-   * wallet's public key to guard against a compromised wallet provider.
-   */
-  async resolvePayoutScriptPubKey(t) {
-    let n;
-    if (t)
-      n = t;
-    else {
-      n = await this.config.btcWallet.getAddress();
-      const o = await this.config.btcWallet.getPublicKeyHex();
-      if (!he(
-        n,
-        o,
-        this.config.btcNetwork
-      ))
-        throw new Error(
-          "The BTC address from your wallet does not match the wallet's public key. Please ensure your wallet is using a supported address type (Taproot or Native SegWit)."
-        );
-    }
-    const s = kt(this.config.btcNetwork);
-    try {
-      return `0x${ne.address.toOutputScript(n, s).toString("hex")}`;
-    } catch {
-      throw new Error(
-        `Invalid BTC payout address: "${n}". Please provide a valid Bitcoin address for the ${this.config.btcNetwork} network.`
-      );
-    }
-  }
-  /**
-   * Sign a BIP-322 BTC Proof-of-Possession binding the connected BTC
-   * wallet to the connected ETH account for this chain and vault
-   * registry. The returned {@link PopSignature} can be reused across
-   * every register call in the same session.
-   */
-  async signProofOfPossession() {
-    if (!this.config.ethWallet.account)
-      throw new Error("Ethereum wallet account not found");
-    const t = this.config.ethWallet.account.address, n = $(
-      await this.config.btcWallet.getPublicKeyHex()
-    ), s = this.config.vaultContracts.btcVaultRegistry, o = `${t.toLowerCase()}:${this.config.ethChain.id}:pegin:${s.toLowerCase()}`, r = await this.config.btcWallet.signMessage(
-      o,
-      "bip322-simple"
-    );
-    return {
-      btcPopSignature: Oe(r),
-      depositorEthAddress: t,
-      depositorBtcPubkey: n
-    };
-  }
-  async assertPopMatchesBtcWallet(t) {
-    const n = $(
-      await this.config.btcWallet.getPublicKeyHex()
-    ), s = $(t.depositorBtcPubkey);
-    if (n !== s)
-      throw new Error(
-        `Proof of possession was signed with BTC pubkey ${s} but the BTC wallet is currently connected to ${n}. Reconnect the original wallet or call signProofOfPossession() again.`
-      );
-  }
-  /**
-   * Gets the configured Bitcoin network.
-   *
-   * @returns The Bitcoin network (mainnet, testnet, signet, regtest)
-   */
-  getNetwork() {
-    return this.config.btcNetwork;
-  }
-  /**
-   * Gets the configured BTCVaultRegistry contract address.
-   *
-   * @returns The Ethereum address of the BTCVaultRegistry contract
-   */
-  getVaultContractAddress() {
-    return this.config.vaultContracts.btcVaultRegistry;
-  }
-}
-class Ft {
-  constructor(t, n) {
-    b(this, "oHash");
-    b(this, "iHash");
-    b(this, "blockLen");
-    b(this, "outputLen");
-    b(this, "finished", !1);
-    b(this, "destroyed", !1);
-    if (ht(t), U(n, void 0, "key"), this.iHash = t.create(), typeof this.iHash.update != "function")
-      throw new Error("Expected instance of class which extends utils.Hash");
-    this.blockLen = this.iHash.blockLen, this.outputLen = this.iHash.outputLen;
-    const s = this.blockLen, o = new Uint8Array(s);
-    o.set(n.length > s ? t.create().update(n).digest() : n);
-    for (let r = 0; r < o.length; r++)
-      o[r] ^= 54;
-    this.iHash.update(o), this.oHash = t.create();
-    for (let r = 0; r < o.length; r++)
-      o[r] ^= 106;
-    this.oHash.update(o), S(o);
-  }
-  update(t) {
-    return V(this), this.iHash.update(t), this;
-  }
-  digestInto(t) {
-    V(this), U(t, this.outputLen, "output"), this.finished = !0, this.iHash.digestInto(t), this.oHash.update(t), this.oHash.digestInto(t), this.destroy();
-  }
-  digest() {
-    const t = new Uint8Array(this.oHash.outputLen);
-    return this.digestInto(t), t;
-  }
-  _cloneInto(t) {
-    t || (t = Object.create(Object.getPrototypeOf(this), {}));
-    const { oHash: n, iHash: s, finished: o, destroyed: r, blockLen: i, outputLen: a } = this;
-    return t = t, t.finished = o, t.destroyed = r, t.blockLen = i, t.outputLen = a, t.oHash = n._cloneInto(t.oHash), t.iHash = s._cloneInto(t.iHash), t;
-  }
-  clone() {
-    return this._cloneInto();
-  }
-  destroy() {
-    this.destroyed = !0, this.oHash.destroy(), this.iHash.destroy();
-  }
-}
-const K = (e, t, n) => new Ft(e, t).update(n).digest();
-K.create = (e, t) => new Ft(e, t);
-const Le = /* @__PURE__ */ Uint8Array.from([
-  7,
-  4,
-  13,
-  1,
-  10,
-  6,
-  15,
-  3,
-  12,
-  0,
-  9,
-  5,
-  2,
-  14,
-  11,
-  8
-]), Mt = Uint8Array.from(new Array(16).fill(0).map((e, t) => t)), Re = Mt.map((e) => (9 * e + 5) % 16), Nt = /* @__PURE__ */ (() => {
-  const n = [[Mt], [Re]];
-  for (let s = 0; s < 4; s++)
-    for (let o of n)
-      o.push(o[s].map((r) => Le[r]));
-  return n;
-})(), Vt = Nt[0], Dt = Nt[1], Kt = /* @__PURE__ */ [
-  [11, 14, 15, 12, 5, 8, 7, 9, 11, 13, 14, 15, 6, 7, 9, 8],
-  [12, 13, 11, 15, 6, 9, 9, 7, 12, 15, 11, 13, 7, 8, 7, 7],
-  [13, 15, 14, 11, 7, 7, 6, 8, 13, 14, 13, 12, 5, 5, 6, 9],
-  [14, 11, 12, 14, 8, 6, 5, 5, 15, 12, 15, 14, 9, 9, 8, 6],
-  [15, 12, 13, 13, 9, 5, 8, 6, 14, 11, 12, 11, 8, 6, 5, 5]
-].map((e) => Uint8Array.from(e)), Ue = /* @__PURE__ */ Vt.map((e, t) => e.map((n) => Kt[t][n])), We = /* @__PURE__ */ Dt.map((e, t) => e.map((n) => Kt[t][n])), Fe = /* @__PURE__ */ Uint32Array.from([
-  0,
-  1518500249,
-  1859775393,
-  2400959708,
-  2840853838
-]), Me = /* @__PURE__ */ Uint32Array.from([
-  1352829926,
-  1548603684,
-  1836072691,
-  2053994217,
-  0
-]);
-function vt(e, t, n, s) {
-  return e === 0 ? t ^ n ^ s : e === 1 ? t & n | ~t & s : e === 2 ? (t | ~n) ^ s : e === 3 ? t & s | n & ~s : t ^ (n | ~s);
-}
-const M = /* @__PURE__ */ new Uint32Array(16);
-class Ne extends be {
-  constructor() {
-    super(64, 20, 8, !0);
-    b(this, "h0", 1732584193);
-    b(this, "h1", -271733879);
-    b(this, "h2", -1732584194);
-    b(this, "h3", 271733878);
-    b(this, "h4", -1009589776);
-  }
-  get() {
-    const { h0: n, h1: s, h2: o, h3: r, h4: i } = this;
-    return [n, s, o, r, i];
-  }
-  set(n, s, o, r, i) {
-    this.h0 = n | 0, this.h1 = s | 0, this.h2 = o | 0, this.h3 = r | 0, this.h4 = i | 0;
-  }
-  process(n, s) {
-    for (let f = 0; f < 16; f++, s += 4)
-      M[f] = n.getUint32(s, !0);
-    let o = this.h0 | 0, r = o, i = this.h1 | 0, a = i, h = this.h2 | 0, u = h, c = this.h3 | 0, m = c, l = this.h4 | 0, y = l;
-    for (let f = 0; f < 5; f++) {
-      const x = 4 - f, P = Fe[f], w = Me[f], d = Vt[f], g = Dt[f], p = Ue[f], E = We[f];
-      for (let k = 0; k < 16; k++) {
-        const _ = F(o + vt(f, i, h, c) + M[d[k]] + P, p[k]) + l | 0;
-        o = l, l = c, c = F(h, 10) | 0, h = i, i = _;
-      }
-      for (let k = 0; k < 16; k++) {
-        const _ = F(r + vt(x, a, u, m) + M[g[k]] + w, E[k]) + y | 0;
-        r = y, y = m, m = F(u, 10) | 0, u = a, a = _;
-      }
-    }
-    this.set(this.h1 + h + m | 0, this.h2 + c + y | 0, this.h3 + l + r | 0, this.h4 + o + a | 0, this.h0 + i + u | 0);
-  }
-  roundClean() {
-    S(M);
-  }
-  destroy() {
-    this.destroyed = !0, S(this.buffer), this.set(0, 0, 0, 0, 0);
-  }
-}
-const Ve = /* @__PURE__ */ Ut(() => new Ne()), De = BigInt(0), L = BigInt(1), Ke = BigInt(2), Xe = BigInt(7), je = BigInt(256), qe = BigInt(113), Xt = [], jt = [], qt = [];
-for (let e = 0, t = L, n = 1, s = 0; e < 24; e++) {
-  [n, s] = [s, (2 * n + 3 * s) % 5], Xt.push(2 * (5 * s + n)), jt.push((e + 1) * (e + 2) / 2 % 64);
-  let o = De;
-  for (let r = 0; r < 7; r++)
-    t = (t << L ^ (t >> Xe) * qe) % je, t & Ke && (o ^= L << (L << BigInt(r)) - L);
-  qt.push(o);
-}
-const Zt = xe(qt, !0), Ze = Zt[0], Ge = Zt[1], Bt = (e, t, n) => n > 32 ? Ie(e, t, n) : Ee(e, t, n), St = (e, t, n) => n > 32 ? _e(e, t, n) : Te(e, t, n);
-function ze(e, t = 24) {
-  const n = new Uint32Array(10);
-  for (let s = 24 - t; s < 24; s++) {
-    for (let i = 0; i < 10; i++)
-      n[i] = e[i] ^ e[i + 10] ^ e[i + 20] ^ e[i + 30] ^ e[i + 40];
-    for (let i = 0; i < 10; i += 2) {
-      const a = (i + 8) % 10, h = (i + 2) % 10, u = n[h], c = n[h + 1], m = Bt(u, c, 1) ^ n[a], l = St(u, c, 1) ^ n[a + 1];
-      for (let y = 0; y < 50; y += 10)
-        e[i + y] ^= m, e[i + y + 1] ^= l;
-    }
-    let o = e[2], r = e[3];
-    for (let i = 0; i < 24; i++) {
-      const a = jt[i], h = Bt(o, r, a), u = St(o, r, a), c = Xt[i];
-      o = e[c], r = e[c + 1], e[c] = h, e[c + 1] = u;
-    }
-    for (let i = 0; i < 50; i += 10) {
-      for (let a = 0; a < 10; a++)
-        n[a] = e[i + a];
-      for (let a = 0; a < 10; a++)
-        e[i + a] ^= ~n[(a + 2) % 10] & n[(a + 4) % 10];
-    }
-    e[0] ^= Ze[s], e[1] ^= Ge[s];
-  }
-  S(n);
-}
-class ft {
-  // NOTE: we accept arguments in bytes instead of bits here.
-  constructor(t, n, s, o = !1, r = 24) {
-    b(this, "state");
-    b(this, "pos", 0);
-    b(this, "posOut", 0);
-    b(this, "finished", !1);
-    b(this, "state32");
-    b(this, "destroyed", !1);
-    b(this, "blockLen");
-    b(this, "suffix");
-    b(this, "outputLen");
-    b(this, "enableXOF", !1);
-    b(this, "rounds");
-    if (this.blockLen = t, this.suffix = n, this.outputLen = s, this.enableXOF = o, this.rounds = r, C(s, "outputLen"), !(0 < t && t < 200))
-      throw new Error("only keccak-f1600 function is supported");
-    this.state = new Uint8Array(200), this.state32 = Pe(this.state);
-  }
-  clone() {
-    return this._cloneInto();
-  }
-  keccak() {
-    Tt(this.state32), ze(this.state32, this.rounds), Tt(this.state32), this.posOut = 0, this.pos = 0;
-  }
-  update(t) {
-    V(this), U(t);
-    const { blockLen: n, state: s } = this, o = t.length;
-    for (let r = 0; r < o; ) {
-      const i = Math.min(n - this.pos, o - r);
-      for (let a = 0; a < i; a++)
-        s[this.pos++] ^= t[r++];
-      this.pos === n && this.keccak();
-    }
-    return this;
-  }
-  finish() {
-    if (this.finished)
-      return;
-    this.finished = !0;
-    const { state: t, suffix: n, pos: s, blockLen: o } = this;
-    t[s] ^= n, (n & 128) !== 0 && s === o - 1 && this.keccak(), t[o - 1] ^= 128, this.keccak();
-  }
-  writeInto(t) {
-    V(this, !1), U(t), this.finish();
-    const n = this.state, { blockLen: s } = this;
-    for (let o = 0, r = t.length; o < r; ) {
-      this.posOut >= s && this.keccak();
-      const i = Math.min(s - this.posOut, r - o);
-      t.set(n.subarray(this.posOut, this.posOut + i), o), this.posOut += i, o += i;
+        gas: v
+      });
+    } catch (f) {
+      H(f);
     }
-    return t;
-  }
-  xofInto(t) {
-    if (!this.enableXOF)
-      throw new Error("XOF is not possible for this instance");
-    return this.writeInto(t);
-  }
-  xof(t) {
-    return C(t), this.xofInto(new Uint8Array(t));
-  }
-  digestInto(t) {
-    if (ke(t, this), this.finished)
-      throw new Error("digest() was already called");
-    return this.writeInto(t), this.destroy(), t;
-  }
-  digest() {
-    return this.digestInto(new Uint8Array(this.outputLen));
-  }
-  destroy() {
-    this.destroyed = !0, S(this.state);
-  }
-  _cloneInto(t) {
-    const { blockLen: n, suffix: s, outputLen: o, rounds: r, enableXOF: i } = this;
-    return t || (t = new ft(n, s, o, i, r)), t.state32.set(this.state32), t.pos = this.pos, t.posOut = this.posOut, t.finished = this.finished, t.rounds = r, t.suffix = s, t.outputLen = o, t.enableXOF = i, t.destroyed = this.destroyed, t;
+    const x = await c.waitForTransactionReceipt({
+      hash: d,
+      timeout: Ot
+    });
+    return x.status === "reverted" && H(
+      new Error(
+        `Batch transaction reverted. Hash: ${d}. Check the transaction on block explorer for details.`
+      )
+    ), {
+      ethTxHash: x.transactionHash,
+      vaults: u
+    };
   }
-}
-const Ye = (e, t, n, s = {}) => Ut(() => new ft(t, e, n), s), Je = /* @__PURE__ */ Ye(1, 136, 32);
-function Qe(e, t, n, s) {
-  ht(e);
-  const o = Be({ dkLen: 32, asyncTick: 10 }, s), { c: r, dkLen: i, asyncTick: a } = o;
-  if (C(r, "c"), C(i, "dkLen"), C(a, "asyncTick"), r < 1)
-    throw new Error("iterations (c) must be >= 1");
-  const h = It(t, "password"), u = It(n, "salt"), c = new Uint8Array(i), m = K.create(e, h), l = m._cloneInto().update(u);
-  return { c: r, dkLen: i, asyncTick: a, DK: c, PRF: m, PRFSalt: l };
-}
-function tn(e, t, n, s, o) {
-  return e.destroy(), t.destroy(), s && s.destroy(), S(o), n;
-}
-function en(e, t, n, s) {
-  const { c: o, dkLen: r, DK: i, PRF: a, PRFSalt: h } = Qe(e, t, n, s);
-  let u;
-  const c = new Uint8Array(4), m = ve(c), l = new Uint8Array(a.outputLen);
-  for (let y = 1, f = 0; f < r; y++, f += a.outputLen) {
-    const x = i.subarray(f, f + a.outputLen);
-    m.setInt32(0, y, !1), (u = h._cloneInto(u)).update(c).digestInto(l), x.set(l.subarray(0, x.length));
-    for (let P = 1; P < o; P++) {
-      a._cloneInto(u).update(l).digestInto(l);
-      for (let w = 0; w < x.length; w++)
-        x[w] ^= l[w];
+  /**
+   * Check if a vault already exists for a given vault ID.
+   *
+   * @param vaultId - The Bitcoin transaction hash (vault ID)
+   * @returns True if vault exists, false otherwise
+   */
+  async checkVaultExists(t) {
+    try {
+      return (await j({
+        chain: this.config.ethChain,
+        transport: z()
+      }).readContract({
+        address: this.config.vaultContracts.btcVaultRegistry,
+        abi: C,
+        functionName: "getBtcVaultBasicInfo",
+        args: [t]
+      })).depositor !== se;
+    } catch {
+      return !1;
     }
   }
-  return tn(a, h, i, u, l);
-}
-function Gt(e) {
-  if (typeof e != "string")
-    throw new TypeError("invalid mnemonic type: " + typeof e);
-  return e.normalize("NFKD");
-}
-function nn(e) {
-  const t = Gt(e), n = t.split(" ");
-  if (![12, 15, 18, 21, 24].includes(n.length))
-    throw new Error("Invalid mnemonic");
-  return { nfkd: t, words: n };
-}
-const sn = (e) => Gt("mnemonic" + e);
-function on(e, t = "") {
-  return en(Wt, nn(e).nfkd, sn(t), { c: 2048, dkLen: 64 });
-}
-const z = 32, Y = 64, rn = 4, T = 20, at = 4, zt = 2, an = 0, cn = 1, N = [64, 64];
-function ct(...e) {
-  const t = e.reduce((o, r) => o + r.length, 0), n = new Uint8Array(t);
-  let s = 0;
-  for (const o of e)
-    n.set(o, s), s += o.length;
-  return n;
-}
-function J(e) {
-  return new TextEncoder().encode(e);
-}
-function Q(e) {
-  const t = new Uint8Array(rn);
-  return new DataView(t.buffer).setUint32(0, e.length, !1), ct(t, e);
-}
-function At(e) {
-  return e.startsWith("0x") || e.startsWith("0X") ? e.slice(2) : e;
-}
-const ln = (e) => Array.from(e).map((t) => t.toString(16).padStart(2, "0")).join("");
-function un(e, t) {
-  return K(Wt, e, t);
-}
-function gt(e) {
-  return Ve(W(e));
-}
-function Yt(e) {
-  return (1 << e) - 1;
-}
-function hn(e) {
-  let t = 1;
-  for (; t * t < e + 1; ) t++;
-  return Math.max(t, 2);
-}
-function dn(e) {
-  const t = at, n = Yt(t), s = e * n;
-  return { d: t, n: e, checksum_radix: hn(s) };
-}
-function tt(e, t) {
-  const n = [];
-  let s = t;
-  for (; s > 0; )
-    n.push(s & 255), s >>>= 8;
-  const o = new Uint8Array(e.length + n.length);
-  o.set(e);
-  for (let r = 0; r < n.length; r++)
-    o[e.length + r] = n[r];
-  return gt(o);
-}
-function et(e, t) {
-  let n = e;
-  for (let s = 0; s < t; s++)
-    n = gt(n);
-  return n;
-}
-function fn(e, t) {
-  const n = Yt(t.d), s = t.checksum_radix - 1, o = Math.floor(t.n * n / t.checksum_radix), r = [];
-  for (let c = 0; c < t.n; c++) {
-    const m = tt(e, c + zt), l = et(m, n);
-    r.push(Array.from(l));
-  }
-  const i = tt(
-    e,
-    an
-  ), a = et(
-    i,
-    s
-  ), h = tt(
-    e,
-    cn
-  ), u = et(
-    h,
-    o
-  );
-  return {
-    config: t,
-    message_terminals: r,
-    checksum_major_terminal: Array.from(u),
-    checksum_minor_terminal: Array.from(a)
-  };
-}
-function gn(e) {
-  const t = on(e), n = new Uint8Array(t);
-  return t.fill(0), n;
-}
-async function pn(e, t, n, s) {
-  if (e.length !== Y)
-    throw new Error(
-      `WOTS seed must be exactly ${Y} bytes, got ${e.length}`
-    );
-  const o = At(t).toLowerCase(), r = At(n).toLowerCase(), i = e.slice(z, Y), a = e.slice(0, z), h = ct(
-    a,
-    ct(
-      Q(J(o)),
-      Q(J(r)),
-      Q(J(s.toLowerCase()))
-    )
-  ), u = un(i, h), c = u.slice(0, z);
-  try {
-    const m = [];
-    for (let l = 0; l < N.length; l++) {
-      const y = N[l], f = dn(y), x = new Uint8Array(c.length + 1);
-      x.set(c), x[c.length] = l;
-      const P = gt(x);
-      try {
-        const w = fn(P, f);
-        if (w.config.d !== at)
-          throw new Error(`Block ${l}: expected d=${at}, got d=${w.config.d}`);
-        if (w.config.n !== y)
-          throw new Error(`Block ${l}: expected n=${y}, got n=${w.config.n}`);
-        if (w.message_terminals.length !== y)
-          throw new Error(`Block ${l}: expected ${y} message terminals, got ${w.message_terminals.length}`);
-        for (let d = 0; d < w.message_terminals.length; d++)
-          if (w.message_terminals[d].length !== T)
-            throw new Error(`Block ${l} terminal ${d}: expected ${T} bytes, got ${w.message_terminals[d].length}`);
-        if (w.checksum_minor_terminal.length !== T)
-          throw new Error(`Block ${l} checksum_minor: expected ${T} bytes`);
-        if (w.checksum_major_terminal.length !== T)
-          throw new Error(`Block ${l} checksum_major: expected ${T} bytes`);
-        m.push(w);
-      } finally {
-        x.fill(0), P.fill(0);
-      }
+  /**
+   * Resolve the BTC payout address to a scriptPubKey hex for the contract.
+   *
+   * If a payout address is provided, converts it directly.
+   * If omitted, uses the wallet's address and validates it against the
+   * wallet's public key to guard against a compromised wallet provider.
+   */
+  async resolvePayoutScriptPubKey(t) {
+    let n;
+    if (t)
+      n = t;
+    else {
+      n = await this.config.btcWallet.getAddress();
+      const o = await this.config.btcWallet.getPublicKeyHex();
+      if (!ce(
+        n,
+        o,
+        this.config.btcNetwork
+      ))
+        throw new Error(
+          "The BTC address from your wallet does not match the wallet's public key. Please ensure your wallet is using a supported address type (Taproot or Native SegWit)."
+        );
     }
-    if (m.length !== N.length)
+    const s = wt(this.config.btcNetwork);
+    try {
+      return `0x${ee.address.toOutputScript(n, s).toString("hex")}`;
+    } catch {
       throw new Error(
-        `Expected ${N.length} blocks, got ${m.length}`
+        `Invalid BTC payout address: "${n}". Please provide a valid Bitcoin address for the ${this.config.btcNetwork} network.`
       );
-    return m;
-  } finally {
-    h.fill(0), i.fill(0), a.fill(0), u.fill(0), c.fill(0), e.fill(0);
+    }
   }
-}
-function nt(e, t, n) {
-  if (e.length !== T)
-    throw new Error(
-      `Block ${t} ${n}: expected ${T} bytes, got ${e.length}`
+  /**
+   * Sign a BIP-322 BTC Proof-of-Possession binding the connected BTC
+   * wallet to the connected ETH account for this chain and vault
+   * registry. The returned {@link PopSignature} can be reused across
+   * every register call in the same session.
+   */
+  async signProofOfPossession() {
+    if (!this.config.ethWallet.account)
+      throw new Error("Ethereum wallet account not found");
+    const t = this.config.ethWallet.account.address, n = $(
+      await this.config.btcWallet.getPublicKeyHex()
+    ), s = this.config.vaultContracts.btcVaultRegistry, o = `${t.toLowerCase()}:${this.config.ethChain.id}:pegin:${s.toLowerCase()}`, r = await this.config.btcWallet.signMessage(
+      o,
+      "bip322-simple"
     );
-  for (let s = 0; s < e.length; s++) {
-    const o = e[s];
-    if (!Number.isInteger(o) || o < 0 || o > 255)
+    return {
+      btcPopSignature: xn(r),
+      depositorEthAddress: t,
+      depositorBtcPubkey: n
+    };
+  }
+  async assertPopMatchesBtcWallet(t) {
+    const n = $(
+      await this.config.btcWallet.getPublicKeyHex()
+    ), s = $(t.depositorBtcPubkey);
+    if (n !== s)
       throw new Error(
-        `Block ${t} ${n}[${s}]: invalid byte value ${o}`
+        `Proof of possession was signed with BTC pubkey ${s} but the BTC wallet is currently connected to ${n}. Reconnect the original wallet or call signProofOfPossession() again.`
       );
   }
-}
-function mn(e) {
-  if (e.length === 0)
-    throw new Error("Public keys array must not be empty");
-  for (let r = 0; r < e.length; r++) {
-    const i = e[r];
-    nt(i.checksum_minor_terminal, r, "checksum_minor_terminal"), nt(i.checksum_major_terminal, r, "checksum_major_terminal");
-    for (let a = 0; a < i.message_terminals.length; a++)
-      nt(i.message_terminals[a], r, `message_terminal[${a}]`);
-  }
-  let t = 0;
-  for (const r of e)
-    t += zt + r.message_terminals.length;
-  const n = new Uint8Array(t * T);
-  let s = 0;
-  for (const r of e) {
-    n.set(r.checksum_minor_terminal, s), s += T, n.set(r.checksum_major_terminal, s), s += T;
-    for (const i of r.message_terminals)
-      n.set(i, s), s += T;
+  /**
+   * Gets the configured Bitcoin network.
+   *
+   * @returns The Bitcoin network (mainnet, testnet, signet, regtest)
+   */
+  getNetwork() {
+    return this.config.btcNetwork;
   }
-  const o = Je(n);
-  return `0x${ln(o)}`;
-}
-async function Vn(e, t, n, s) {
-  const o = gn(e);
-  try {
-    const r = await pn(
-      o,
-      t,
-      n,
-      s
-    );
-    return mn(r);
-  } finally {
-    o.fill(0);
+  /**
+   * Gets the configured BTCVaultRegistry contract address.
+   *
+   * @returns The Ethereum address of the BTCVaultRegistry contract
+   */
+  getVaultContractAddress() {
+    return this.config.vaultContracts.btcVaultRegistry;
   }
 }
-function Dn(e) {
-  const t = (e instanceof Error ? e.message : typeof e == "string" ? e : "").toLowerCase();
-  return t.includes("wots") && t.includes("hash") && t.includes("does not match");
-}
-const st = /* @__PURE__ */ Uint8Array.of(0), Ct = /* @__PURE__ */ Uint8Array.of();
-function pt(e, t, n, s = 32) {
-  ht(e), C(s, "length");
-  const o = e.outputLen;
-  if (s > 255 * o)
-    throw new Error("Length must be <= 255*HashLen");
-  const r = Math.ceil(s / o);
-  n === void 0 ? n = Ct : U(n, void 0, "info");
-  const i = new Uint8Array(r * o), a = K.create(e, t), h = a._cloneInto(), u = new Uint8Array(a.outputLen);
-  for (let c = 0; c < r; c++)
-    st[0] = c + 1, h.update(c === 0 ? Ct : u).update(n).update(st).digestInto(u), i.set(u, o * c), a._cloneInto(h);
-  return a.destroy(), h.destroy(), S(u, st), i.slice(0, s);
-}
-const ot = new TextEncoder().encode("babylonvault"), Ht = 255, Ot = 65535, $t = 2, wn = "hashlock", yn = "auth-anchor", bn = "wots-seed";
-function Jt(e) {
-  if (!Number.isInteger(e) || e < 0 || e > 4294967295)
-    throw new Error(`i2osp4: value must be a u32, got ${e}`);
-  const t = new Uint8Array(4);
-  return t[0] = e >>> 24 & 255, t[1] = e >>> 16 & 255, t[2] = e >>> 8 & 255, t[3] = e & 255, t;
-}
-function mt(e, t = new Uint8Array(0)) {
-  const n = new TextEncoder().encode(e);
-  if (n.length === 0 || n.length > Ht)
-    throw new Error(
-      `info: label length must be in [1, ${Ht}], got ${n.length}`
-    );
-  if (t.length > Ot)
-    throw new Error(
-      `info: ctx length must be in [0, ${Ot}], got ${t.length}`
-    );
-  const s = ot.length + 1 + n.length + $t + t.length, o = new Uint8Array(s);
-  let r = 0;
-  return o.set(ot, r), r += ot.length, o[r] = n.length, r += 1, o.set(n, r), r += n.length, o[r] = t.length >>> 8 & 255, o[r + 1] = t.length & 255, r += $t, o.set(t, r), o;
-}
-const Lt = 32, xn = 32, Pn = 32, kn = 64;
-function wt(e) {
-  if (e.length !== Lt)
-    throw new Error(
-      `vault-secrets: root must be exactly ${Lt} bytes, got ${e.length}`
-    );
-}
-function Kn(e) {
-  return wt(e), pt(
-    W,
-    e,
-    mt(yn),
-    xn
-  );
-}
-function Xn(e, t) {
-  return wt(e), pt(
-    W,
-    e,
-    mt(wn, Jt(t)),
-    Pn
-  );
-}
-function jn(e, t) {
-  return wt(e), pt(
-    W,
-    e,
-    mt(bn, Jt(t)),
-    kn
-  );
-}
-const R = 32, rt = 32, lt = 36, Qt = 32, D = 4, En = D + R + D + Qt;
-function ut(e, t, n) {
-  e[t] = n >>> 24 & 255, e[t + 1] = n >>> 16 & 255, e[t + 2] = n >>> 8 & 255, e[t + 3] = n & 255;
-}
-function Tn(e) {
-  if (e.txid.length !== rt)
-    throw new Error(
-      `outpoint.txid must be exactly ${rt} bytes, got ${e.txid.length}`
-    );
-  if (!Number.isInteger(e.vout) || e.vout < 0 || e.vout > 4294967295)
-    throw new Error(`outpoint.vout must be a u32, got ${e.vout}`);
-  const t = new Uint8Array(lt);
-  return t.set(e.txid, 0), ut(t, rt, e.vout), t;
-}
-function Rt(e, t) {
-  const n = Math.min(e.length, t.length);
-  for (let s = 0; s < n; s++)
-    if (e[s] !== t[s]) return e[s] - t[s];
-  return e.length - t.length;
-}
-function In(e) {
-  if (e.length === 0)
-    throw new Error(
-      "buildFundingOutpointsCommitment: outpoints must be non-empty"
-    );
-  const t = e.map(Tn);
-  t.sort(Rt);
-  for (let s = 1; s < t.length; s++)
-    if (Rt(t[s - 1], t[s]) === 0)
-      throw new Error(
-        "buildFundingOutpointsCommitment: duplicate outpoint detected"
-      );
-  const n = new Uint8Array(t.length * lt);
-  for (let s = 0; s < t.length; s++)
-    n.set(t[s], s * lt);
-  return W(n);
-}
-function qn(e) {
-  if (e.depositorBtcPubkey.length !== R)
-    throw new Error(
-      `vaultContext: depositorBtcPubkey must be exactly ${R} bytes, got ${e.depositorBtcPubkey.length}`
-    );
-  const t = In(e.fundingOutpoints), n = new Uint8Array(En);
-  let s = 0;
-  return ut(n, s, R), s += D, n.set(e.depositorBtcPubkey, s), s += R, ut(n, s, Qt), s += D, n.set(t, s), n;
-}
 export {
-  H as C,
-  Nn as P,
-  Vn as a,
-  Dn as b,
-  mn as c,
-  pn as d,
-  dt as e,
-  Kn as f,
-  Fn as g,
-  A as h,
-  Mn as i,
-  Xn as j,
-  jn as k,
-  In as l,
-  gn as m,
-  qn as n
+  S as C,
+  Mn as P,
+  We as V,
+  Nn as a,
+  Wn as b,
+  gn as c,
+  fn as d,
+  at as e,
+  Oe as f,
+  Ln as g,
+  H as h,
+  Vn as i,
+  $e as j,
+  Le as k,
+  Ve as l,
+  Me as m
 };
-//# sourceMappingURL=context-ktqanzXE.js.map
+//# sourceMappingURL=PeginManager-DzMSIQ0I.js.map