@babylonlabs-io/ts-sdk 0.28.0 → 0.29.0

package/dist/{deriveVaultRoot-DAMZDqg-.js → PeginManager-Dj6oDaH5.js}

@@ -1,365 +1,1026 @@
-var zt = Object.defineProperty;
-var Yt = (e, t, n) => t in e ? zt(e, t, { enumerable: !0, configurable: !0, writable: !0, value: n }) : e[t] = n;
-var p = (e, t, n) => Yt(e, typeof t != "symbol" ? t + "" : t, n);
-import * as Jt from "bitcoinjs-lib";
-import { Transaction as Qt, Psbt as dt } from "bitcoinjs-lib";
-import { Buffer as et } from "buffer";
-import { isAddressEqual as ft, createPublicClient as j, http as q, encodeFunctionData as gt, zeroAddress as te } from "viem";
-import { c as ee } from "./signing-BZigafm0.js";
-import { deriveVaultId as pt } from "@babylonlabs-io/babylon-tbv-rust-wasm";
-import { b as ne, a as se, d as oe, e as re, f as ie } from "./challengeAssert-j2Vwqo0-.js";
-import { s as v, g as mt, e as _, i as ae, p as ce, u as le, h as he } from "./bitcoin-B-Y0DlqR.js";
-import { M as bt } from "./validation-CxqROCno.js";
-import { b as ue, f as G, i as de } from "./psbtInputFields-DeTFSJOq.js";
-import { p as fe, f as ge } from "./fundPeginTransaction-oV-dNJOU.js";
-import { p as pe, f as me } from "./vault-registry-reader-CshEgmS0.js";
-import { B as S } from "./types-CQ86O7NX.js";
-import { c as St, H as be, r as W, a as H, b as nt, u as we, d as wt, e as F, f as U, g as ye, s as L, h as Ot } from "./sha2-CPdTLk1u.js";
-const C = {
-  // VaultAlreadyExists()
-  "0x04aabf33": "Vault already exists: This Bitcoin transaction has already been registered. Please select different UTXOs or use a different amount to create a unique transaction.",
-  // ScriptPubKeyMismatch() - taproot output doesn't match expected script
-  "0x4fec082d": "Script mismatch: The Bitcoin transaction's taproot output does not match the expected vault script. This may be caused by incorrect vault participants or key configuration.",
-  // InvalidBTCProofOfPossession()
-  "0x6cc363a5": "Invalid BTC proof of possession: The signature could not be verified. Please ensure you're signing with the correct Bitcoin wallet.",
-  // InvalidBTCPublicKey()
-  "0x6c3f2bf6": "Invalid BTC public key: The Bitcoin public key format is invalid.",
-  // InvalidAmount()
-  "0x2c5211c6": "Invalid amount: The deposit amount is invalid or below the minimum required.",
-  // ApplicationNotRegistered()
-  "0x0405f772": "Application not registered: The application controller is not registered in the system.",
-  // InvalidProviderStatus()
-  "0x24e165cc": "Invalid provider status: The vault provider is not in a valid state to accept deposits.",
-  // ZeroAddress()
-  "0xd92e233d": "Zero address: One of the required addresses is the zero address.",
-  // BtcKeyMismatch()
-  "0x65aa7007": "BTC key mismatch: The Bitcoin public key does not match the expected key.",
-  // Unauthorized()
-  "0x82b42900": "Unauthorized: You must be the depositor or vault provider to submit this transaction.",
-  // InvalidSignature() - common signature verification error
-  "0x8baa579f": "Invalid signature: The BTC proof of possession signature could not be verified.",
-  // InvalidBtcTransaction()
-  "0x2f9d01e9": "Invalid BTC transaction: The Bitcoin transaction format is invalid.",
-  // VaultProviderNotRegistered()
-  "0x5a3c6b3e": "Vault provider not registered: The selected vault provider is not registered.",
-  // InvalidPeginFee(uint256,uint256)
-  "0x979f4518": "Invalid pegin fee: The ETH fee sent does not match the required amount. This may indicate a fee rate change during the transaction.",
-  // PrePeginOutputAlreadyUsed()
-  "0x5fad9694": "This pre-pegin output has already been used to activate another vault.",
-  // PeginTransactionAlreadyUsed()
-  "0x7ed061c9": "This pegin transaction has already been used to activate another vault."
-};
-function it(e) {
-  if (!e || typeof e != "object") return;
-  const t = e;
-  if (typeof t.data == "string" && t.data.startsWith("0x"))
-    return t.data;
-  if (typeof t.details == "string" && t.details.startsWith("0x"))
-    return t.details;
-  let n = t.cause, s = 0;
-  const o = 5;
-  for (; n && typeof n == "object" && s < o; ) {
-    const a = n;
-    if (typeof a.data == "string" && a.data.startsWith("0x"))
-      return a.data;
-    n = a.cause, s++;
-  }
-  const i = (typeof t.message == "string" ? t.message : "").match(/\b(0x[a-fA-F0-9]{8})\b/);
-  if (i)
-    return i[1];
+var ne = Object.defineProperty;
+var se = (e, t, n) => t in e ? ne(e, t, { enumerable: !0, configurable: !0, writable: !0, value: n }) : e[t] = n;
+var m = (e, t, n) => se(e, typeof t != "symbol" ? t + "" : t, n);
+import { a as Lt, b as N, c as A, d as K, e as st, s as O, f as Nt, H as oe, r as V, u as re, g as pt, h as ie } from "./sha2-6wN58S6R.js";
+import * as Vt from "bitcoinjs-lib";
+import { Transaction as ae, Psbt as mt } from "bitcoinjs-lib";
+import { Buffer as ot } from "buffer";
+import { isAddressEqual as wt, createPublicClient as G, http as Z, encodeFunctionData as bt, zeroAddress as ce } from "viem";
+import { deriveVaultId as yt } from "@babylonlabs-io/babylon-tbv-rust-wasm";
+import { b as xt, a as le, d as ue, e as he, f as de } from "./challengeAssert-j2Vwqo0-.js";
+import { s as _, u as D, h as rt, e as I, p as fe, g as Pt, i as ge } from "./bitcoin-B-Y0DlqR.js";
+import { c as pe } from "./signing-BZigafm0.js";
+import { M as Et } from "./validation-CxqROCno.js";
+import { h as me } from "./buildAndBroadcastRefund-xWS8frc6.js";
+import { b as we, f as q, i as be } from "./psbtInputFields-DeTFSJOq.js";
+import { p as ye, f as xe } from "./fundPeginTransaction-oV-dNJOU.js";
+import { p as Pe, f as Ee } from "./vault-registry-reader-BywZhqJL.js";
+import { B as R } from "./types-CnG3JsRs.js";
+const W = /* @__PURE__ */ BigInt(2 ** 32 - 1), Tt = /* @__PURE__ */ BigInt(32);
+function Te(e, t = !1) {
+  return t ? { h: Number(e & W), l: Number(e >> Tt & W) } : { h: Number(e >> Tt & W) | 0, l: Number(e & W) | 0 };
 }
-function An(e) {
-  const t = it(e);
-  if (t) {
-    const n = t.substring(0, 10);
-    return C[t] ?? C[n];
+function ke(e, t = !1) {
+  const n = e.length;
+  let s = new Uint32Array(n), o = new Uint32Array(n);
+  for (let r = 0; r < n; r++) {
+    const { h: i, l: a } = Te(e[r], t);
+    [s[r], o[r]] = [i, a];
   }
+  return [s, o];
 }
-function Hn(e) {
-  const t = it(e);
-  if (t === void 0) return !1;
-  const n = t.substring(0, 10);
-  return t in C || n in C;
+const _e = (e, t, n) => e << n | t >>> 32 - n, ve = (e, t, n) => t << n | e >>> 32 - n, Ie = (e, t, n) => t << n - 32 | e >>> 64 - n, He = (e, t, n) => e << n - 32 | t >>> 64 - n, Be = 106, Se = 32, kt = 34;
+function Ae(e, t, n) {
+  const s = _(e), o = Vt.Transaction.fromHex(s);
+  if (o.outs.length <= t)
+    throw new Error(
+      `Pre-PegIn auth-anchor OP_RETURN missing: tx has ${o.outs.length} outputs, expected at least ${t + 1} (vault outputs + OP_RETURN)`
+    );
+  const r = o.outs[t], i = r.script;
+  if (i.length !== kt || i[0] !== Be || i[1] !== Se)
+    throw new Error(
+      `Pre-PegIn auth-anchor OP_RETURN at vout ${t} has unexpected script encoding (got ${i.length}-byte script with prefix 0x${i.slice(0, Math.min(2, i.length)).toString("hex")}; expected ${kt}-byte OP_RETURN + PUSH32 layout)`
+    );
+  const a = i.slice(2).toString("hex").toLowerCase();
+  if (a !== n.toLowerCase())
+    throw new Error(
+      `Pre-PegIn auth-anchor OP_RETURN payload mismatch at vout ${t}: tx pushes ${a}, expected ${n}`
+    );
+  if (r.value !== 0)
+    throw new Error(
+      `Pre-PegIn auth-anchor OP_RETURN at vout ${t} has non-zero value ${r.value}; OP_RETURN outputs must be 0-value`
+    );
 }
-function A(e) {
-  console.error("[Contract Error] Raw error:", e);
-  const t = it(e);
-  if (console.error("[Contract Error] Extracted error data:", t), t) {
-    const s = t.substring(0, 10), o = C[t] ?? C[s];
-    if (o)
-      throw console.error("[Contract Error] Known error:", o), new Error(o);
+class Wt {
+  constructor(t, n) {
+    m(this, "oHash");
+    m(this, "iHash");
+    m(this, "blockLen");
+    m(this, "outputLen");
+    m(this, "finished", !1);
+    m(this, "destroyed", !1);
+    if (Lt(t), N(n, void 0, "key"), this.iHash = t.create(), typeof this.iHash.update != "function")
+      throw new Error("Expected instance of class which extends utils.Hash");
+    this.blockLen = this.iHash.blockLen, this.outputLen = this.iHash.outputLen;
+    const s = this.blockLen, o = new Uint8Array(s);
+    o.set(n.length > s ? t.create().update(n).digest() : n);
+    for (let r = 0; r < o.length; r++)
+      o[r] ^= 54;
+    this.iHash.update(o), this.oHash = t.create();
+    for (let r = 0; r < o.length; r++)
+      o[r] ^= 106;
+    this.oHash.update(o), A(o);
   }
-  const n = (e == null ? void 0 : e.message) || "";
-  if (n.includes("gas limit too high") || n.includes("21000000") || n.includes("Internal JSON-RPC error")) {
-    const s = t ? ` (error code: ${t})` : "";
-    throw console.error(
-      "[Contract Error] Transaction rejected. Error code:",
-      t,
-      "Message:",
-      n
-    ), new Error(
-      `Transaction failed: The contract rejected this transaction${s}. Possible causes: (1) Vault already exists for this transaction, (2) Invalid signature, (3) Unauthorized caller. Please check your transaction parameters and try again.`
-    );
+  update(t) {
+    return K(this), this.iHash.update(t), this;
   }
-  throw e instanceof Error ? (console.error("[Contract Error] Unhandled error:", e.message), e) : new Error(`Contract call failed: ${String(e)}`);
-}
-const xe = 0, Pe = /^0x[0-9a-f]+$/i, Ee = /^[0-9a-f]+$/i, Te = /^[A-Za-z0-9+/]+={0,2}$/;
-function O(e) {
-  if (typeof e != "string" || e.length === 0)
-    throw new Error("BTC wallet returned empty public key");
-  return ce(e).toLowerCase();
-}
-function ke(e) {
-  if (typeof e != "string" || e.length === 0)
-    throw new Error("BTC wallet returned empty BIP-322 signature");
-  if (e.startsWith("0x") || e.startsWith("0X")) {
-    if (!Pe.test(e) || e.length < 4 || e.length % 2 !== 0)
-      throw new Error("BTC wallet returned malformed hex BIP-322 signature");
-    return e.toLowerCase();
+  digestInto(t) {
+    K(this), N(t, this.outputLen, "output"), this.finished = !0, this.iHash.digestInto(t), this.oHash.update(t), this.oHash.digestInto(t), this.destroy();
   }
-  if (Ee.test(e)) {
-    if (e.length % 2 !== 0)
-      throw new Error("BTC wallet returned malformed hex BIP-322 signature");
-    return `0x${e.toLowerCase()}`;
+  digest() {
+    const t = new Uint8Array(this.oHash.outputLen);
+    return this.digestInto(t), t;
   }
-  if (!Te.test(e) || e.length % 4 !== 0)
-    throw new Error("BTC wallet returned malformed base64 BIP-322 signature");
-  const t = et.from(e, "base64");
-  if (t.length === 0 || t.toString("base64") !== e)
-    throw new Error("BTC wallet returned malformed base64 BIP-322 signature");
-  return `0x${t.toString("hex")}`;
-}
-function _e(e, t, n, s) {
-  const o = n == null ? void 0 : n[`${e}:${t}`];
-  return o ? Promise.resolve({
-    txid: e,
-    vout: t,
-    value: o.value,
-    scriptPubKey: o.scriptPubKey
-  }) : me(e, t, s);
-}
-const yt = 12e4;
-class Cn {
-  /**
-   * Creates a new PeginManager instance.
-   *
-   * @param config - Manager configuration including wallets and contract addresses
-   */
-  constructor(t) {
-    p(this, "config");
-    this.config = t;
+  _cloneInto(t) {
+    t || (t = Object.create(Object.getPrototypeOf(this), {}));
+    const { oHash: n, iHash: s, finished: o, destroyed: r, blockLen: i, outputLen: a } = this;
+    return t = t, t.finished = o, t.destroyed = r, t.blockLen = i, t.outputLen = a, t.oHash = n._cloneInto(t.oHash), t.iHash = s._cloneInto(t.iHash), t;
   }
-  /**
-   * Prepares a peg-in by building the Pre-PegIn HTLC transaction,
-   * funding it, constructing the PegIn transaction, and signing the PegIn input.
-   *
-   * This method orchestrates the following steps:
-   * 1. Get depositor BTC public key from wallet
-   * 2. Build unfunded Pre-PegIn transaction (HTLC output) using primitives
-   * 3. Select UTXOs to cover the HTLC value
-   * 4. Fund the Pre-PegIn transaction
-   * 5. Derive the PegIn transaction from the funded Pre-PegIn tx
-   * 6. Build PSBT for signing the PegIn input (HTLC leaf 0)
-   * 7. Sign via BTC wallet and extract depositor signature
-   *
-   * The returned `fundedPrePeginTxHex` is funded but unsigned (inputs unsigned).
-   * Use `signAndBroadcast()` AFTER registering on Ethereum to broadcast it.
-   *
-   * @param params - Pegin parameters including amount, HTLC params, UTXOs
-   * @returns Pegin result with funded Pre-PegIn tx, signed PegIn input, and signatures
-   * @throws Error if wallet operations fail or insufficient funds
-   */
-  async preparePegin(t) {
-    const n = await this.config.btcWallet.getPublicKeyHex(), s = O(n), o = v(t.vaultProviderBtcPubkey), r = t.vaultKeeperBtcPubkeys.map(v), i = t.universalChallengerBtcPubkeys.map(v);
-    if (t.hashlocks.length !== t.amounts.length)
-      throw new Error(
-        `hashlocks.length (${t.hashlocks.length}) must equal amounts.length (${t.amounts.length})`
-      );
-    if (t.hashlocks.length === 0)
-      throw new Error("hashlocks must contain at least one entry");
-    const a = r.length, l = {
-      depositorPubkey: s,
-      vaultProviderPubkey: o,
-      vaultKeeperPubkeys: r,
-      universalChallengerPubkeys: i,
-      hashlocks: t.hashlocks,
-      timelockRefund: t.timelockRefund,
-      pegInAmounts: t.amounts,
-      feeRate: t.protocolFeeRate,
-      numLocalChallengers: a,
-      councilQuorum: t.councilQuorum,
-      councilSize: t.councilSize,
-      network: this.config.btcNetwork
-    }, h = await ne(l), c = ue(
-      [...t.availableUTXOs],
-      h.totalOutputValue,
-      t.mempoolFeeRate,
-      fe(
-        h.htlcValues.length,
-        l.authAnchorHash
-      )
-    ), b = mt(this.config.btcNetwork), m = ge({
-      unfundedTxHex: h.psbtHex,
-      selectedUTXOs: c.selectedUTXOs,
-      changeAddress: t.changeAddress,
-      changeAmount: c.changeAmount,
-      network: b
-    }), w = v(G(m)), g = [], E = [], P = [];
-    for (let u = 0; u < t.hashlocks.length; u++) {
-      const d = await se({
-        prePeginParams: l,
-        timelockPegin: t.timelockPegin,
-        fundedPrePeginTxHex: m,
-        htlcVout: u
-      }), x = await oe({
-        peginTxHex: d.txHex,
-        fundedPrePeginTxHex: m,
-        depositorPubkey: s,
-        vaultProviderPubkey: o,
-        vaultKeeperPubkeys: r,
-        universalChallengerPubkeys: i,
-        hashlock: t.hashlocks[u],
-        timelockRefund: t.timelockRefund,
-        network: this.config.btcNetwork
-      });
-      g.push(d), E.push(x.psbtHex), P.push(
-        ee(n, 1)
-      );
-    }
-    const k = await this.signPsbtsWithFallback(
-      E,
-      P
-    ), f = [];
-    for (let u = 0; u < k.length; u++) {
-      const d = re(
-        k[u],
-        s
-      ), x = ie(k[u]);
-      f.push({
-        htlcVout: u,
-        htlcValue: h.htlcValues[u],
-        peginTxHex: x,
-        peginTxid: g[u].txid,
-        peginInputSignature: d,
-        vaultScriptPubKey: g[u].vaultScriptPubKey
-      });
-    }
-    return {
-      fundedPrePeginTxHex: m,
-      prePeginTxid: w,
-      perVault: f,
-      selectedUTXOs: c.selectedUTXOs,
-      fee: c.fee,
-      changeAmount: c.changeAmount
-    };
+  clone() {
+    return this._cloneInto();
   }
-  /**
-   * Signs multiple PSBTs using batch signing if available, falling back to sequential signing.
-   *
-   * Wallets that support native batch signing (e.g. UniSat) will sign all PSBTs
-   * in a single interaction. Others (e.g. Ledger, AppKit) implement signPsbts
-   * by looping signPsbt internally, so the UX depends on the wallet adapter.
-   */
-  async signPsbtsWithFallback(t, n) {
-    if (typeof this.config.btcWallet.signPsbts == "function") {
-      const o = await this.config.btcWallet.signPsbts(
-        t,
-        n
-      );
-      if (o.length !== t.length)
-        throw new Error(
-          `Expected ${t.length} signed PSBTs but received ${o.length}`
-        );
-      return o;
-    }
-    const s = [];
-    for (let o = 0; o < t.length; o++) {
-      const r = await this.config.btcWallet.signPsbt(
-        t[o],
-        n[o]
-      );
-      s.push(r);
-    }
-    return s;
+  destroy() {
+    this.destroyed = !0, this.oHash.destroy(), this.iHash.destroy();
   }
-  /**
-   * Signs and broadcasts a funded peg-in transaction to the Bitcoin network.
-   *
-   * This method:
-   * 1. Parses the funded transaction hex
-   * 2. Fetches UTXO data from mempool for each input
-   * 3. Creates a PSBT with proper witnessUtxo/tapInternalKey
-   * 4. Signs via btcWallet.signPsbt()
-   * 5. Finalizes and extracts the transaction
-   * 6. Broadcasts via mempool API
-   *
-   * @param params - Transaction hex and depositor public key
-   * @returns The broadcasted Bitcoin transaction ID
-   * @throws Error if signing or broadcasting fails
-   */
-  async signAndBroadcast(t) {
-    const { fundedPrePeginTxHex: n, depositorBtcPubkey: s } = t, o = n.startsWith("0x") ? n.slice(2) : n, r = Qt.fromHex(o);
-    if (r.ins.length === 0)
-      throw new Error("Transaction has no inputs");
-    const i = new dt();
-    i.setVersion(r.version), i.setLocktime(r.locktime);
-    const a = et.from(
-      O(s),
-      "hex"
-    ), l = this.config.mempoolApiUrl, h = r.ins.map((f) => {
-      const u = et.from(f.hash).reverse().toString("hex"), d = f.index;
-      return _e(u, d, t.localPrevouts, l).then(
-        (x) => ({ input: f, utxoData: x, txid: u, vout: d })
-      );
-    }), c = await Promise.all(h), b = c.reduce(
-      (f, u) => f + BigInt(u.utxoData.value),
-      0n
-    ), m = r.outs.reduce(
-      (f, u) => f + BigInt(u.value),
-      0n
+}
+const Mt = (e, t, n) => new Wt(e, t).update(n).digest();
+Mt.create = (e, t) => new Wt(e, t);
+const Y = /* @__PURE__ */ Uint8Array.of(0), _t = /* @__PURE__ */ Uint8Array.of();
+function lt(e, t, n, s = 32) {
+  Lt(e), st(s, "length");
+  const o = e.outputLen;
+  if (s > 255 * o)
+    throw new Error("Length must be <= 255*HashLen");
+  const r = Math.ceil(s / o);
+  n === void 0 ? n = _t : N(n, void 0, "info");
+  const i = new Uint8Array(r * o), a = Mt.create(e, t), l = a._cloneInto(), u = new Uint8Array(a.outputLen);
+  for (let c = 0; c < r; c++)
+    Y[0] = c + 1, l.update(c === 0 ? _t : u).update(n).update(Y).digestInto(u), i.set(u, o * c), a._cloneInto(l);
+  return a.destroy(), l.destroy(), A(u, Y), i.slice(0, s);
+}
+const Q = new TextEncoder().encode("babylonvault"), vt = 255, It = 65535, Ht = 2, Ce = "hashlock", Oe = "auth-anchor", Re = "wots-seed";
+function Ft(e) {
+  if (!Number.isInteger(e) || e < 0 || e > 4294967295)
+    throw new Error(`i2osp4: value must be a u32, got ${e}`);
+  const t = new Uint8Array(4);
+  return t[0] = e >>> 24 & 255, t[1] = e >>> 16 & 255, t[2] = e >>> 8 & 255, t[3] = e & 255, t;
+}
+function ut(e, t = new Uint8Array(0)) {
+  const n = new TextEncoder().encode(e);
+  if (n.length === 0 || n.length > vt)
+    throw new Error(
+      `info: label length must be in [1, ${vt}], got ${n.length}`
     );
-    if (b < m)
-      throw new Error(
-        `UTXO value mismatch: total input value (${b} sat) is less than total output value (${m} sat). This may indicate the mempool API returned manipulated UTXO data.`
-      );
-    const w = b - m;
-    if (w > bt)
+  if (t.length > It)
+    throw new Error(
+      `info: ctx length must be in [0, ${It}], got ${t.length}`
+    );
+  const s = Q.length + 1 + n.length + Ht + t.length, o = new Uint8Array(s);
+  let r = 0;
+  return o.set(Q, r), r += Q.length, o[r] = n.length, r += 1, o.set(n, r), r += n.length, o[r] = t.length >>> 8 & 255, o[r + 1] = t.length & 255, r += Ht, o.set(t, r), o;
+}
+const Bt = 32, $e = 32, Ue = 32, Le = 64;
+function ht(e) {
+  if (e.length !== Bt)
+    throw new Error(
+      `vault-secrets: root must be exactly ${Bt} bytes, got ${e.length}`
+    );
+}
+function Ne(e) {
+  return ht(e), lt(
+    O,
+    e,
+    ut(Oe),
+    $e
+  );
+}
+function Ve(e, t) {
+  return ht(e), lt(
+    O,
+    e,
+    ut(Ce, Ft(t)),
+    Ue
+  );
+}
+function We(e, t) {
+  return ht(e), lt(
+    O,
+    e,
+    ut(Re, Ft(t)),
+    Le
+  );
+}
+const L = 32, J = 32, it = 36, Xt = 32, z = 4, Me = z + L + z + Xt;
+function at(e, t, n) {
+  e[t] = n >>> 24 & 255, e[t + 1] = n >>> 16 & 255, e[t + 2] = n >>> 8 & 255, e[t + 3] = n & 255;
+}
+function Fe(e) {
+  if (e.txid.length !== J)
+    throw new Error(
+      `outpoint.txid must be exactly ${J} bytes, got ${e.txid.length}`
+    );
+  if (!Number.isInteger(e.vout) || e.vout < 0 || e.vout > 4294967295)
+    throw new Error(`outpoint.vout must be a u32, got ${e.vout}`);
+  const t = new Uint8Array(it);
+  return t.set(e.txid, 0), at(t, J, e.vout), t;
+}
+function St(e, t) {
+  const n = Math.min(e.length, t.length);
+  for (let s = 0; s < n; s++)
+    if (e[s] !== t[s]) return e[s] - t[s];
+  return e.length - t.length;
+}
+function Xe(e) {
+  if (e.length === 0)
+    throw new Error(
+      "buildFundingOutpointsCommitment: outpoints must be non-empty"
+    );
+  const t = e.map(Fe);
+  t.sort(St);
+  for (let s = 1; s < t.length; s++)
+    if (St(t[s - 1], t[s]) === 0)
       throw new Error(
-        `Implied transaction fee (${w} sat) exceeds maximum reasonable fee (${bt} sat). This may indicate manipulated UTXO data.`
-      );
-    for (const { input: f, utxoData: u, txid: d, vout: x } of c) {
-      const y = de(
-        {
-          value: u.value,
-          scriptPubKey: u.scriptPubKey
-        },
-        a
+        "buildFundingOutpointsCommitment: duplicate outpoint detected"
       );
-      i.addInput({
-        hash: f.hash,
-        index: f.index,
-        sequence: f.sequence,
-        ...y
-      });
-    }
-    for (const f of r.outs)
-      i.addOutput({
-        script: f.script,
-        value: f.value
-      });
-    const g = await this.config.btcWallet.signPsbt(i.toHex()), E = dt.fromHex(g);
-    try {
-      E.finalizeAllInputs();
-    } catch (f) {
-      if (!E.data.inputs.every(
-        (d) => d.finalScriptWitness || d.finalScriptSig
+  const n = new Uint8Array(t.length * it);
+  for (let s = 0; s < t.length; s++)
+    n.set(t[s], s * it);
+  return O(n);
+}
+function Ke(e) {
+  if (e.depositorBtcPubkey.length !== L)
+    throw new Error(
+      `vaultContext: depositorBtcPubkey must be exactly ${L} bytes, got ${e.depositorBtcPubkey.length}`
+    );
+  const t = Xe(e.fundingOutpoints), n = new Uint8Array(Me);
+  let s = 0;
+  return at(n, s, L), s += z, n.set(e.depositorBtcPubkey, s), s += L, at(n, s, Xt), s += z, n.set(t, s), n;
+}
+const De = "babylon-vault", Kt = 32, At = Kt * 2, ze = /^[0-9a-f]+$/;
+async function je(e, t) {
+  const n = Ke(t), s = D(n), o = await e.deriveContextHash(De, s);
+  if (typeof o != "string")
+    throw new Error(
+      `deriveVaultRoot: wallet must return a string, got ${typeof o}`
+    );
+  if (o.length !== At)
+    throw new Error(
+      `deriveVaultRoot: wallet must return a ${At}-character hex string (${Kt} bytes), got length ${o.length}`
+    );
+  if (!ze.test(o))
+    throw new Error(
+      "deriveVaultRoot: wallet must return lowercase hex per derive-context-hash.md §2.1; got value with non-lowercase or non-hex characters"
+    );
+  return rt(o);
+}
+const Ge = /* @__PURE__ */ Uint8Array.from([
+  7,
+  4,
+  13,
+  1,
+  10,
+  6,
+  15,
+  3,
+  12,
+  0,
+  9,
+  5,
+  2,
+  14,
+  11,
+  8
+]), Dt = Uint8Array.from(new Array(16).fill(0).map((e, t) => t)), Ze = Dt.map((e) => (9 * e + 5) % 16), zt = /* @__PURE__ */ (() => {
+  const n = [[Dt], [Ze]];
+  for (let s = 0; s < 4; s++)
+    for (let o of n)
+      o.push(o[s].map((r) => Ge[r]));
+  return n;
+})(), jt = zt[0], Gt = zt[1], Zt = /* @__PURE__ */ [
+  [11, 14, 15, 12, 5, 8, 7, 9, 11, 13, 14, 15, 6, 7, 9, 8],
+  [12, 13, 11, 15, 6, 9, 9, 7, 12, 15, 11, 13, 7, 8, 7, 7],
+  [13, 15, 14, 11, 7, 7, 6, 8, 13, 14, 13, 12, 5, 5, 6, 9],
+  [14, 11, 12, 14, 8, 6, 5, 5, 15, 12, 15, 14, 9, 9, 8, 6],
+  [15, 12, 13, 13, 9, 5, 8, 6, 14, 11, 12, 11, 8, 6, 5, 5]
+].map((e) => Uint8Array.from(e)), qe = /* @__PURE__ */ jt.map((e, t) => e.map((n) => Zt[t][n])), Ye = /* @__PURE__ */ Gt.map((e, t) => e.map((n) => Zt[t][n])), Qe = /* @__PURE__ */ Uint32Array.from([
+  0,
+  1518500249,
+  1859775393,
+  2400959708,
+  2840853838
+]), Je = /* @__PURE__ */ Uint32Array.from([
+  1352829926,
+  1548603684,
+  1836072691,
+  2053994217,
+  0
+]);
+function Ct(e, t, n, s) {
+  return e === 0 ? t ^ n ^ s : e === 1 ? t & n | ~t & s : e === 2 ? (t | ~n) ^ s : e === 3 ? t & s | n & ~s : t ^ (n | ~s);
+}
+const M = /* @__PURE__ */ new Uint32Array(16);
+class tn extends oe {
+  constructor() {
+    super(64, 20, 8, !0);
+    m(this, "h0", 1732584193);
+    m(this, "h1", -271733879);
+    m(this, "h2", -1732584194);
+    m(this, "h3", 271733878);
+    m(this, "h4", -1009589776);
+  }
+  get() {
+    const { h0: n, h1: s, h2: o, h3: r, h4: i } = this;
+    return [n, s, o, r, i];
+  }
+  set(n, s, o, r, i) {
+    this.h0 = n | 0, this.h1 = s | 0, this.h2 = o | 0, this.h3 = r | 0, this.h4 = i | 0;
+  }
+  process(n, s) {
+    for (let h = 0; h < 16; h++, s += 4)
+      M[h] = n.getUint32(s, !0);
+    let o = this.h0 | 0, r = o, i = this.h1 | 0, a = i, l = this.h2 | 0, u = l, c = this.h3 | 0, w = c, b = this.h4 | 0, y = b;
+    for (let h = 0; h < 5; h++) {
+      const f = 4 - h, T = Qe[h], H = Je[h], d = jt[h], P = Gt[h], g = qe[h], E = Ye[h];
+      for (let x = 0; x < 16; x++) {
+        const p = V(o + Ct(h, i, l, c) + M[d[x]] + T, g[x]) + b | 0;
+        o = b, b = c, c = V(l, 10) | 0, l = i, i = p;
+      }
+      for (let x = 0; x < 16; x++) {
+        const p = V(r + Ct(f, a, u, w) + M[P[x]] + H, E[x]) + y | 0;
+        r = y, y = w, w = V(u, 10) | 0, u = a, a = p;
+      }
+    }
+    this.set(this.h1 + l + w | 0, this.h2 + c + y | 0, this.h3 + b + r | 0, this.h4 + o + a | 0, this.h0 + i + u | 0);
+  }
+  roundClean() {
+    A(M);
+  }
+  destroy() {
+    this.destroyed = !0, A(this.buffer), this.set(0, 0, 0, 0, 0);
+  }
+}
+const en = /* @__PURE__ */ Nt(() => new tn()), nn = BigInt(0), $ = BigInt(1), sn = BigInt(2), on = BigInt(7), rn = BigInt(256), an = BigInt(113), qt = [], Yt = [], Qt = [];
+for (let e = 0, t = $, n = 1, s = 0; e < 24; e++) {
+  [n, s] = [s, (2 * n + 3 * s) % 5], qt.push(2 * (5 * s + n)), Yt.push((e + 1) * (e + 2) / 2 % 64);
+  let o = nn;
+  for (let r = 0; r < 7; r++)
+    t = (t << $ ^ (t >> on) * an) % rn, t & sn && (o ^= $ << ($ << BigInt(r)) - $);
+  Qt.push(o);
+}
+const Jt = ke(Qt, !0), cn = Jt[0], ln = Jt[1], Ot = (e, t, n) => n > 32 ? Ie(e, t, n) : _e(e, t, n), Rt = (e, t, n) => n > 32 ? He(e, t, n) : ve(e, t, n);
+function un(e, t = 24) {
+  const n = new Uint32Array(10);
+  for (let s = 24 - t; s < 24; s++) {
+    for (let i = 0; i < 10; i++)
+      n[i] = e[i] ^ e[i + 10] ^ e[i + 20] ^ e[i + 30] ^ e[i + 40];
+    for (let i = 0; i < 10; i += 2) {
+      const a = (i + 8) % 10, l = (i + 2) % 10, u = n[l], c = n[l + 1], w = Ot(u, c, 1) ^ n[a], b = Rt(u, c, 1) ^ n[a + 1];
+      for (let y = 0; y < 50; y += 10)
+        e[i + y] ^= w, e[i + y + 1] ^= b;
+    }
+    let o = e[2], r = e[3];
+    for (let i = 0; i < 24; i++) {
+      const a = Yt[i], l = Ot(o, r, a), u = Rt(o, r, a), c = qt[i];
+      o = e[c], r = e[c + 1], e[c] = l, e[c + 1] = u;
+    }
+    for (let i = 0; i < 50; i += 10) {
+      for (let a = 0; a < 10; a++)
+        n[a] = e[i + a];
+      for (let a = 0; a < 10; a++)
+        e[i + a] ^= ~n[(a + 2) % 10] & n[(a + 4) % 10];
+    }
+    e[0] ^= cn[s], e[1] ^= ln[s];
+  }
+  A(n);
+}
+class dt {
+  // NOTE: we accept arguments in bytes instead of bits here.
+  constructor(t, n, s, o = !1, r = 24) {
+    m(this, "state");
+    m(this, "pos", 0);
+    m(this, "posOut", 0);
+    m(this, "finished", !1);
+    m(this, "state32");
+    m(this, "destroyed", !1);
+    m(this, "blockLen");
+    m(this, "suffix");
+    m(this, "outputLen");
+    m(this, "enableXOF", !1);
+    m(this, "rounds");
+    if (this.blockLen = t, this.suffix = n, this.outputLen = s, this.enableXOF = o, this.rounds = r, st(s, "outputLen"), !(0 < t && t < 200))
+      throw new Error("only keccak-f1600 function is supported");
+    this.state = new Uint8Array(200), this.state32 = re(this.state);
+  }
+  clone() {
+    return this._cloneInto();
+  }
+  keccak() {
+    pt(this.state32), un(this.state32, this.rounds), pt(this.state32), this.posOut = 0, this.pos = 0;
+  }
+  update(t) {
+    K(this), N(t);
+    const { blockLen: n, state: s } = this, o = t.length;
+    for (let r = 0; r < o; ) {
+      const i = Math.min(n - this.pos, o - r);
+      for (let a = 0; a < i; a++)
+        s[this.pos++] ^= t[r++];
+      this.pos === n && this.keccak();
+    }
+    return this;
+  }
+  finish() {
+    if (this.finished)
+      return;
+    this.finished = !0;
+    const { state: t, suffix: n, pos: s, blockLen: o } = this;
+    t[s] ^= n, (n & 128) !== 0 && s === o - 1 && this.keccak(), t[o - 1] ^= 128, this.keccak();
+  }
+  writeInto(t) {
+    K(this, !1), N(t), this.finish();
+    const n = this.state, { blockLen: s } = this;
+    for (let o = 0, r = t.length; o < r; ) {
+      this.posOut >= s && this.keccak();
+      const i = Math.min(s - this.posOut, r - o);
+      t.set(n.subarray(this.posOut, this.posOut + i), o), this.posOut += i, o += i;
+    }
+    return t;
+  }
+  xofInto(t) {
+    if (!this.enableXOF)
+      throw new Error("XOF is not possible for this instance");
+    return this.writeInto(t);
+  }
+  xof(t) {
+    return st(t), this.xofInto(new Uint8Array(t));
+  }
+  digestInto(t) {
+    if (ie(t, this), this.finished)
+      throw new Error("digest() was already called");
+    return this.writeInto(t), this.destroy(), t;
+  }
+  digest() {
+    return this.digestInto(new Uint8Array(this.outputLen));
+  }
+  destroy() {
+    this.destroyed = !0, A(this.state);
+  }
+  _cloneInto(t) {
+    const { blockLen: n, suffix: s, outputLen: o, rounds: r, enableXOF: i } = this;
+    return t || (t = new dt(n, s, o, i, r)), t.state32.set(this.state32), t.pos = this.pos, t.posOut = this.posOut, t.finished = this.finished, t.rounds = r, t.suffix = s, t.outputLen = o, t.enableXOF = i, t.destroyed = this.destroyed, t;
+  }
+}
+const hn = (e, t, n, s = {}) => Nt(() => new dt(t, e, n), s), dn = /* @__PURE__ */ hn(1, 136, 32), $t = 64, v = 20, ct = 4, te = 2, fn = 0, gn = 1, F = [64, 64], pn = (e) => Array.from(e).map((t) => t.toString(16).padStart(2, "0")).join("");
+function ft(e) {
+  return en(O(e));
+}
+function ee(e) {
+  return (1 << e) - 1;
+}
+function mn(e) {
+  let t = 1;
+  for (; t * t < e + 1; ) t++;
+  return Math.max(t, 2);
+}
+function wn(e) {
+  const t = ct, n = e * ee(t);
+  return { d: t, n: e, checksum_radix: mn(n) };
+}
+function tt(e, t) {
+  const n = [];
+  let s = t;
+  for (; s > 0; )
+    n.push(s & 255), s >>>= 8;
+  const o = new Uint8Array(e.length + n.length);
+  o.set(e);
+  for (let r = 0; r < n.length; r++)
+    o[e.length + r] = n[r];
+  return ft(o);
+}
+function et(e, t) {
+  let n = e;
+  for (let s = 0; s < t; s++)
+    n = ft(n);
+  return n;
+}
+function bn(e, t) {
+  const n = ee(t.d), s = t.checksum_radix - 1, o = Math.floor(t.n * n / t.checksum_radix), r = [];
+  for (let c = 0; c < t.n; c++) {
+    const w = tt(e, c + te), b = et(w, n);
+    r.push(Array.from(b));
+  }
+  const i = tt(
+    e,
+    fn
+  ), a = et(
+    i,
+    s
+  ), l = tt(
+    e,
+    gn
+  ), u = et(
+    l,
+    o
+  );
+  return {
+    config: t,
+    message_terminals: r,
+    checksum_major_terminal: Array.from(u),
+    checksum_minor_terminal: Array.from(a)
+  };
+}
+async function yn(e) {
+  try {
+    if (e.length !== $t)
+      throw new Error(
+        `WOTS seed must be exactly ${$t} bytes, got ${e.length}`
+      );
+    const t = [];
+    for (let n = 0; n < F.length; n++) {
+      const s = F[n], o = wn(s), r = new Uint8Array(e.length + 1);
+      r.set(e), r[e.length] = n;
+      const i = ft(r);
+      try {
+        const a = bn(i, o);
+        if (a.config.d !== ct)
+          throw new Error(
+            `Block ${n}: expected d=${ct}, got d=${a.config.d}`
+          );
+        if (a.config.n !== s)
+          throw new Error(
+            `Block ${n}: expected n=${s}, got n=${a.config.n}`
+          );
+        if (a.message_terminals.length !== s)
+          throw new Error(
+            `Block ${n}: expected ${s} message terminals, got ${a.message_terminals.length}`
+          );
+        for (let l = 0; l < a.message_terminals.length; l++)
+          if (a.message_terminals[l].length !== v)
+            throw new Error(
+              `Block ${n} terminal ${l}: expected ${v} bytes, got ${a.message_terminals[l].length}`
+            );
+        if (a.checksum_minor_terminal.length !== v)
+          throw new Error(
+            `Block ${n} checksum_minor: expected ${v} bytes`
+          );
+        if (a.checksum_major_terminal.length !== v)
+          throw new Error(
+            `Block ${n} checksum_major: expected ${v} bytes`
+          );
+        t.push(a);
+      } finally {
+        r.fill(0), i.fill(0);
+      }
+    }
+    if (t.length !== F.length)
+      throw new Error(
+        `Expected ${F.length} blocks, got ${t.length}`
+      );
+    return t;
+  } finally {
+    e.fill(0);
+  }
+}
+function nt(e, t, n) {
+  if (e.length !== v)
+    throw new Error(
+      `Block ${t} ${n}: expected ${v} bytes, got ${e.length}`
+    );
+  for (let s = 0; s < e.length; s++) {
+    const o = e[s];
+    if (!Number.isInteger(o) || o < 0 || o > 255)
+      throw new Error(
+        `Block ${t} ${n}[${s}]: invalid byte value ${o}`
+      );
+  }
+}
+function xn(e) {
+  if (e.length === 0)
+    throw new Error("Public keys array must not be empty");
+  for (let r = 0; r < e.length; r++) {
+    const i = e[r];
+    nt(i.checksum_minor_terminal, r, "checksum_minor_terminal"), nt(i.checksum_major_terminal, r, "checksum_major_terminal");
+    for (let a = 0; a < i.message_terminals.length; a++)
+      nt(i.message_terminals[a], r, `message_terminal[${a}]`);
+  }
+  let t = 0;
+  for (const r of e)
+    t += te + r.message_terminals.length;
+  const n = new Uint8Array(t * v);
+  let s = 0;
+  for (const r of e) {
+    n.set(r.checksum_minor_terminal, s), s += v, n.set(r.checksum_major_terminal, s), s += v;
+    for (const i of r.message_terminals)
+      n.set(i, s), s += v;
+  }
+  const o = dn(n);
+  return `0x${pn(o)}`;
+}
+function Kn(e) {
+  const t = (e instanceof Error ? e.message : typeof e == "string" ? e : "").toLowerCase();
+  return t.includes("wots") && t.includes("hash") && t.includes("does not match");
+}
+async function Pn(e, t) {
+  const n = [], s = [], o = [], r = [];
+  try {
+    for (let i = 0; i < t; i++) {
+      const a = We(e, i);
+      try {
+        const u = await yn(a);
+        n.push(u), s.push(xn(u));
+      } finally {
+        a.fill(0);
+      }
+      const l = Ve(e, i);
+      try {
+        const u = D(l);
+        o.push(u), r.push(me(I(u)).slice(2));
+      } finally {
+        l.fill(0);
+      }
+    }
+  } finally {
+    e.fill(0);
+  }
+  return { perVaultWotsKeys: n, wotsPkHashes: s, htlcSecretHexes: o, hashlocks: r };
+}
+const En = /^0x[0-9a-f]+$/i, Tn = /^[0-9a-f]+$/i, kn = /^[A-Za-z0-9+/]+={0,2}$/;
+function U(e) {
+  if (typeof e != "string" || e.length === 0)
+    throw new Error("BTC wallet returned empty public key");
+  return fe(e).toLowerCase();
+}
+function _n(e) {
+  if (typeof e != "string" || e.length === 0)
+    throw new Error("BTC wallet returned empty BIP-322 signature");
+  if (e.startsWith("0x") || e.startsWith("0X")) {
+    if (!En.test(e) || e.length < 4 || e.length % 2 !== 0)
+      throw new Error("BTC wallet returned malformed hex BIP-322 signature");
+    return e.toLowerCase();
+  }
+  if (Tn.test(e)) {
+    if (e.length % 2 !== 0)
+      throw new Error("BTC wallet returned malformed hex BIP-322 signature");
+    return `0x${e.toLowerCase()}`;
+  }
+  if (!kn.test(e) || e.length % 4 !== 0)
+    throw new Error("BTC wallet returned malformed base64 BIP-322 signature");
+  const t = ot.from(e, "base64");
+  if (t.length === 0 || t.toString("base64") !== e)
+    throw new Error("BTC wallet returned malformed base64 BIP-322 signature");
+  return `0x${t.toString("hex")}`;
+}
+async function vn(e, t, n) {
+  if (typeof e.signPsbts == "function") {
+    const o = await e.signPsbts(t, n);
+    if (o.length !== t.length)
+      throw new Error(
+        `Expected ${t.length} signed PSBTs but received ${o.length}`
+      );
+    return o;
+  }
+  const s = [];
+  for (let o = 0; o < t.length; o++) {
+    const r = await e.signPsbt(t[o], n[o]);
+    s.push(r);
+  }
+  return s;
+}
+const C = {
+  // VaultAlreadyExists()
+  "0x04aabf33": "Vault already exists: This Bitcoin transaction has already been registered. Please select different UTXOs or use a different amount to create a unique transaction.",
+  // ScriptPubKeyMismatch() - taproot output doesn't match expected script
+  "0x4fec082d": "Script mismatch: The Bitcoin transaction's taproot output does not match the expected vault script. This may be caused by incorrect vault participants or key configuration.",
+  // InvalidBTCProofOfPossession()
+  "0x6cc363a5": "Invalid BTC proof of possession: The signature could not be verified. Please ensure you're signing with the correct Bitcoin wallet.",
+  // InvalidBTCPublicKey()
+  "0x6c3f2bf6": "Invalid BTC public key: The Bitcoin public key format is invalid.",
+  // InvalidAmount()
+  "0x2c5211c6": "Invalid amount: The deposit amount is invalid or below the minimum required.",
+  // ApplicationNotRegistered()
+  "0x0405f772": "Application not registered: The application controller is not registered in the system.",
+  // InvalidProviderStatus()
+  "0x24e165cc": "Invalid provider status: The vault provider is not in a valid state to accept deposits.",
+  // ZeroAddress()
+  "0xd92e233d": "Zero address: One of the required addresses is the zero address.",
+  // BtcKeyMismatch()
+  "0x65aa7007": "BTC key mismatch: The Bitcoin public key does not match the expected key.",
+  // Unauthorized()
+  "0x82b42900": "Unauthorized: You must be the depositor or vault provider to submit this transaction.",
+  // InvalidSignature() - common signature verification error
+  "0x8baa579f": "Invalid signature: The BTC proof of possession signature could not be verified.",
+  // InvalidBtcTransaction()
+  "0x2f9d01e9": "Invalid BTC transaction: The Bitcoin transaction format is invalid.",
+  // VaultProviderNotRegistered()
+  "0x5a3c6b3e": "Vault provider not registered: The selected vault provider is not registered.",
+  // InvalidPeginFee(uint256,uint256)
+  "0x979f4518": "Invalid pegin fee: The ETH fee sent does not match the required amount. This may indicate a fee rate change during the transaction.",
+  // PrePeginOutputAlreadyUsed()
+  "0x5fad9694": "This pre-pegin output has already been used to activate another vault.",
+  // PeginTransactionAlreadyUsed()
+  "0x7ed061c9": "This pegin transaction has already been used to activate another vault."
+};
+function gt(e) {
+  if (!e || typeof e != "object") return;
+  const t = e;
+  if (typeof t.data == "string" && t.data.startsWith("0x"))
+    return t.data;
+  if (typeof t.details == "string" && t.details.startsWith("0x"))
+    return t.details;
+  let n = t.cause, s = 0;
+  const o = 5;
+  for (; n && typeof n == "object" && s < o; ) {
+    const a = n;
+    if (typeof a.data == "string" && a.data.startsWith("0x"))
+      return a.data;
+    n = a.cause, s++;
+  }
+  const i = (typeof t.message == "string" ? t.message : "").match(/\b(0x[a-fA-F0-9]{8})\b/);
+  if (i)
+    return i[1];
+}
+function Dn(e) {
+  const t = gt(e);
+  if (t) {
+    const n = t.substring(0, 10);
+    return C[t] ?? C[n];
+  }
+}
+function zn(e) {
+  const t = gt(e);
+  if (t === void 0) return !1;
+  const n = t.substring(0, 10);
+  return t in C || n in C;
+}
+function S(e) {
+  console.error("[Contract Error] Raw error:", e);
+  const t = gt(e);
+  if (console.error("[Contract Error] Extracted error data:", t), t) {
+    const s = t.substring(0, 10), o = C[t] ?? C[s];
+    if (o)
+      throw console.error("[Contract Error] Known error:", o), new Error(o);
+  }
+  const n = (e == null ? void 0 : e.message) || "";
+  if (n.includes("gas limit too high") || n.includes("21000000") || n.includes("Internal JSON-RPC error")) {
+    const s = t ? ` (error code: ${t})` : "";
+    throw console.error(
+      "[Contract Error] Transaction rejected. Error code:",
+      t,
+      "Message:",
+      n
+    ), new Error(
+      `Transaction failed: The contract rejected this transaction${s}. Possible causes: (1) Vault already exists for this transaction, (2) Invalid signature, (3) Unauthorized caller. Please check your transaction parameters and try again.`
+    );
+  }
+  throw e instanceof Error ? (console.error("[Contract Error] Unhandled error:", e.message), e) : new Error(`Contract call failed: ${String(e)}`);
+}
+const In = 0, X = "00".repeat(32);
+function Hn(e, t, n, s) {
+  const o = n == null ? void 0 : n[`${e}:${t}`];
+  return o ? Promise.resolve({
+    txid: e,
+    vout: t,
+    value: o.value,
+    scriptPubKey: o.scriptPubKey
+  }) : Ee(e, t, s);
+}
+const Ut = 12e4;
+class jn {
+  /**
+   * Creates a new PeginManager instance.
+   *
+   * @param config - Manager configuration including wallets and contract addresses
+   */
+  constructor(t) {
+    m(this, "config");
+    this.config = t;
+  }
+  /**
+   * Prepare a peg-in: sizing pass → vault-root derivation (one wallet
+   * popup) → per-vault WOTS / hashlock derivation → commit pass with
+   * batch PSBT signing (one popup). Returns broadcast-ready txs, the
+   * pubkey snapshot, and the sensitive derived material.
+   *
+   * @throws If the wallet rejects, insufficient funds, or an internal
+   *         invariant violation.
+   */
+  async preparePegin(t) {
+    if (t.amounts.length === 0)
+      throw new Error("amounts must contain at least one entry");
+    const n = await this.config.btcWallet.getPublicKeyHex(), s = U(n), o = await this.prepareSizing(s, t), r = o.selectedUTXOs.map(
+      (f) => ({
+        txid: rt(f.txid),
+        vout: f.vout
+      })
+    ), i = await je(this.config.btcWallet, {
+      depositorBtcPubkey: rt(s),
+      fundingOutpoints: r
+    });
+    let a, l;
+    try {
+      const f = Ne(i);
+      try {
+        a = D(f), l = D(O(f));
+      } finally {
+        f.fill(0);
+      }
+    } catch (f) {
+      throw i.fill(0), f;
+    }
+    const u = await Pn(i, t.amounts.length), { perVaultWotsKeys: c, wotsPkHashes: w, htlcSecretHexes: b, hashlocks: y } = u, h = await this.preparePeginCommit({
+      depositorBtcPubkeyRaw: n,
+      depositorBtcPubkey: s,
+      hashlocks: y,
+      authAnchorHash: l,
+      sizing: o,
+      params: t
+    });
+    for (let f = 0; f < h.perVault.length; f++)
+      if (h.perVault[f].htlcVout !== f)
+        throw new Error(
+          `Internal invariant violation: htlcVout/index mismatch at vault ${f} (expected ${f}, got ${h.perVault[f].htlcVout})`
+        );
+    return Ae(
+      h.fundedPrePeginTxHex,
+      t.amounts.length,
+      l
+    ), {
+      transaction: {
+        ...h,
+        selectedUTXOs: o.selectedUTXOs,
+        fee: o.fee,
+        changeAmount: o.changeAmount
+      },
+      depositorBtcPubkey: s,
+      derivedSecrets: {
+        perVaultWotsKeys: c,
+        wotsPkHashes: w,
+        htlcSecretHexes: b,
+        authAnchorHex: a
+      }
+    };
+  }
+  /**
+   * Build unfunded Pre-PegIn + select UTXOs. No PSBT signing.
+   *
+   * Returns the full selection result (UTXOs, fee, changeAmount) so the
+   * commit pass funds the broadcast tx with the exact same set used to
+   * build the vault-context funding-outpoints commitment. Re-running
+   * `selectUtxosForPegin` in the commit pass would be deterministic given
+   * the same inputs, but threading the result through guarantees the
+   * domain separator structurally matches the funded tx inputs.
+   *
+   * Sizing runs before the wallet popup, so neither the real per-vault
+   * hashlocks nor the real `authAnchorHash` are known yet. Both slots
+   * are filled with a 32-byte placeholder; the commit pass swaps in the
+   * real values. Output budget is identical (32-byte push regardless of
+   * content), so UTXO selection is invariant under substitution.
+   */
+  async prepareSizing(t, n) {
+    const s = n.amounts.map(
+      () => X
+    ), o = n.vaultKeeperBtcPubkeys.length, r = await xt({
+      depositorPubkey: t,
+      vaultProviderPubkey: _(n.vaultProviderBtcPubkey),
+      vaultKeeperPubkeys: n.vaultKeeperBtcPubkeys.map(_),
+      universalChallengerPubkeys: n.universalChallengerBtcPubkeys.map(_),
+      hashlocks: s,
+      timelockRefund: n.timelockRefund,
+      pegInAmounts: n.amounts,
+      feeRate: n.protocolFeeRate,
+      numLocalChallengers: o,
+      councilQuorum: n.councilQuorum,
+      councilSize: n.councilSize,
+      network: this.config.btcNetwork,
+      authAnchorHash: X
+    }), i = we(
+      [...n.availableUTXOs],
+      r.totalOutputValue,
+      n.mempoolFeeRate,
+      ye(
+        r.htlcValues.length,
+        X
+      )
+    );
+    return {
+      selectedUTXOs: i.selectedUTXOs,
+      fee: i.fee,
+      changeAmount: i.changeAmount
+    };
+  }
+  /** Build PegIn txs and batch-sign their inputs with real hashlocks. */
+  async preparePeginCommit(t) {
+    const {
+      depositorBtcPubkeyRaw: n,
+      depositorBtcPubkey: s,
+      hashlocks: o,
+      authAnchorHash: r,
+      sizing: i,
+      params: a
+    } = t, l = X.toLowerCase();
+    for (let p = 0; p < o.length; p++)
+      if (o[p].toLowerCase() === l)
+        throw new Error(
+          `preparePeginCommit refusing to build with sizing-pass placeholder hashlock at vault ${p} — internal substitution bug`
+        );
+    if (r.toLowerCase() === l)
+      throw new Error(
+        "preparePeginCommit refusing to build with sizing-pass placeholder auth-anchor hash — internal substitution bug"
+      );
+    const u = _(a.vaultProviderBtcPubkey), c = a.vaultKeeperBtcPubkeys.map(_), w = a.universalChallengerBtcPubkeys.map(_), b = c.length, y = {
+      depositorPubkey: s,
+      vaultProviderPubkey: u,
+      vaultKeeperPubkeys: c,
+      universalChallengerPubkeys: w,
+      hashlocks: o,
+      timelockRefund: a.timelockRefund,
+      pegInAmounts: a.amounts,
+      feeRate: a.protocolFeeRate,
+      numLocalChallengers: b,
+      councilQuorum: a.councilQuorum,
+      councilSize: a.councilSize,
+      network: this.config.btcNetwork,
+      authAnchorHash: r
+    }, h = await xt(y), f = Pt(this.config.btcNetwork), T = xe({
+      unfundedTxHex: h.psbtHex,
+      selectedUTXOs: i.selectedUTXOs,
+      changeAddress: a.changeAddress,
+      changeAmount: i.changeAmount,
+      network: f
+    }), H = _(q(T)), d = [], P = [], g = [];
+    for (let p = 0; p < o.length; p++) {
+      const k = await le({
+        prePeginParams: y,
+        timelockPegin: a.timelockPegin,
+        fundedPrePeginTxHex: T,
+        htlcVout: p
+      }), B = await ue({
+        peginTxHex: k.txHex,
+        fundedPrePeginTxHex: T,
+        depositorPubkey: s,
+        vaultProviderPubkey: u,
+        vaultKeeperPubkeys: c,
+        universalChallengerPubkeys: w,
+        hashlock: o[p],
+        timelockRefund: a.timelockRefund,
+        network: this.config.btcNetwork
+      });
+      d.push(k), P.push(B.psbtHex), g.push(
+        pe(n, 1)
+      );
+    }
+    const E = await vn(
+      this.config.btcWallet,
+      P,
+      g
+    ), x = [];
+    for (let p = 0; p < E.length; p++) {
+      const k = he(
+        E[p],
+        s
+      ), B = de(E[p]);
+      x.push({
+        htlcVout: p,
+        htlcValue: h.htlcValues[p],
+        peginTxHex: B,
+        peginTxid: d[p].txid,
+        peginInputSignature: k,
+        vaultScriptPubKey: d[p].vaultScriptPubKey
+      });
+    }
+    return {
+      fundedPrePeginTxHex: T,
+      prePeginTxid: H,
+      perVault: x
+    };
+  }
+  /**
+   * Signs and broadcasts a funded peg-in transaction to the Bitcoin network.
+   *
+   * This method:
+   * 1. Parses the funded transaction hex
+   * 2. Fetches UTXO data from mempool for each input
+   * 3. Creates a PSBT with proper witnessUtxo/tapInternalKey
+   * 4. Signs via btcWallet.signPsbt()
+   * 5. Finalizes and extracts the transaction
+   * 6. Broadcasts via mempool API
+   *
+   * @param params - Transaction hex and depositor public key
+   * @returns The broadcasted Bitcoin transaction ID
+   * @throws Error if signing or broadcasting fails
+   */
+  async signAndBroadcast(t) {
+    const { fundedPrePeginTxHex: n, depositorBtcPubkey: s } = t, o = n.startsWith("0x") ? n.slice(2) : n, r = ae.fromHex(o);
+    if (r.ins.length === 0)
+      throw new Error("Transaction has no inputs");
+    const i = new mt();
+    i.setVersion(r.version), i.setLocktime(r.locktime);
+    const a = ot.from(
+      U(s),
+      "hex"
+    ), l = this.config.mempoolApiUrl, u = r.ins.map((d) => {
+      const P = ot.from(d.hash).reverse().toString("hex"), g = d.index;
+      return Hn(P, g, t.localPrevouts, l).then(
+        (E) => ({ input: d, utxoData: E, txid: P, vout: g })
+      );
+    }), c = await Promise.all(u), w = c.reduce(
+      (d, P) => d + BigInt(P.utxoData.value),
+      0n
+    ), b = r.outs.reduce(
+      (d, P) => d + BigInt(P.value),
+      0n
+    );
+    if (w < b)
+      throw new Error(
+        `UTXO value mismatch: total input value (${w} sat) is less than total output value (${b} sat). This may indicate the mempool API returned manipulated UTXO data.`
+      );
+    const y = w - b;
+    if (y > Et)
+      throw new Error(
+        `Implied transaction fee (${y} sat) exceeds maximum reasonable fee (${Et} sat). This may indicate manipulated UTXO data.`
+      );
+    for (const { input: d, utxoData: P, txid: g, vout: E } of c) {
+      const x = be(
+        {
+          value: P.value,
+          scriptPubKey: P.scriptPubKey
+        },
+        a
+      );
+      i.addInput({
+        hash: d.hash,
+        index: d.index,
+        sequence: d.sequence,
+        ...x
+      });
+    }
+    for (const d of r.outs)
+      i.addOutput({
+        script: d.script,
+        value: d.value
+      });
+    const h = await this.config.btcWallet.signPsbt(i.toHex()), f = mt.fromHex(h);
+    try {
+      f.finalizeAllInputs();
+    } catch (d) {
+      if (!f.data.inputs.every(
+        (g) => g.finalScriptWitness || g.finalScriptSig
       ))
         throw new Error(
-          `PSBT finalization failed and wallet did not auto-finalize: ${f}`
+          `PSBT finalization failed and wallet did not auto-finalize: ${d}`
         );
     }
-    const P = E.extractTransaction().toHex();
-    return await pe(P, l);
+    const T = f.extractTransaction().toHex();
+    return await Pe(T, l);
   }
   /**
    * Registers a peg-in on Ethereum by calling the BTCVaultRegistry contract.
@@ -394,35 +1055,35 @@ class Cn {
       htlcVout: i,
       depositorPayoutBtcAddress: a,
       depositorWotsPkHash: l,
-      popSignature: h
+      popSignature: u
     } = t;
     if (!this.config.ethWallet.account)
       throw new Error("Ethereum wallet account not found");
     const c = this.config.ethWallet.account.address;
-    if (!ft(h.depositorEthAddress, c))
+    if (!wt(u.depositorEthAddress, c))
       throw new Error(
-        `Proof of possession was signed for ${h.depositorEthAddress} but the Ethereum wallet is currently connected to ${c}. Reconnect the original account or call signProofOfPossession() again.`
+        `Proof of possession was signed for ${u.depositorEthAddress} but the Ethereum wallet is currently connected to ${c}. Reconnect the original account or call signProofOfPossession() again.`
       );
-    await this.assertPopMatchesBtcWallet(h);
-    const b = h.btcPopSignature, m = _(h.depositorBtcPubkey), w = _(n), g = _(s), E = await this.resolvePayoutScriptPubKey(
+    await this.assertPopMatchesBtcWallet(u);
+    const w = u.btcPopSignature, b = I(u.depositorBtcPubkey), y = I(n), h = I(s), f = await this.resolvePayoutScriptPubKey(
       a
-    ), P = G(g), k = await pt(
-      v(P),
-      v(c)
-    ), f = _(k);
-    if (await this.checkVaultExists(f))
+    ), T = q(h), H = await yt(
+      _(T),
+      _(c)
+    ), d = I(H);
+    if (await this.checkVaultExists(d))
       throw new Error(
-        `Vault already exists (ID: ${f}, peginTxHash: ${P}). Vault IDs are derived from the pegin transaction hash and depositor address. To create a new vault, use different UTXOs or a different amount to generate a unique transaction.`
+        `Vault already exists (ID: ${d}, peginTxHash: ${T}). Vault IDs are derived from the pegin transaction hash and depositor address. To create a new vault, use different UTXOs or a different amount to generate a unique transaction.`
       );
-    const d = j({
+    const g = G({
       chain: this.config.ethChain,
-      transport: q()
+      transport: Z()
     });
-    let x;
+    let E;
     try {
-      x = await d.readContract({
+      E = await g.readContract({
         address: this.config.vaultContracts.btcVaultRegistry,
-        abi: S,
+        abi: R,
         functionName: "getPegInFee",
         args: [o]
       });
@@ -431,821 +1092,290 @@ class Cn {
         "Failed to query pegin fee from the contract. Please check your network connection and that the contract address is correct."
       );
     }
-    const y = gt({
-      abi: S,
+    const x = bt({
+      abi: R,
       functionName: "submitPeginRequest",
       args: [
         c,
-        m,
         b,
         w,
-        g,
+        y,
+        h,
         o,
         r,
-        i,
-        E,
-        l
-      ]
-    });
-    let I;
-    try {
-      I = await d.estimateGas({
-        to: this.config.vaultContracts.btcVaultRegistry,
-        data: y,
-        value: x,
-        account: this.config.ethWallet.account.address
-      });
-    } catch (K) {
-      A(K);
-    }
-    let B;
-    try {
-      B = await this.config.ethWallet.sendTransaction({
-        to: this.config.vaultContracts.btcVaultRegistry,
-        data: y,
-        value: x,
-        account: this.config.ethWallet.account,
-        chain: this.config.ethChain,
-        gas: I
-      });
-    } catch (K) {
-      A(K);
-    }
-    const D = await d.waitForTransactionReceipt({
-      hash: B,
-      timeout: yt
-    });
-    return D.status === "reverted" && A(
-      new Error(
-        `Transaction reverted. Hash: ${B}. Check the transaction on block explorer for details.`
-      )
-    ), {
-      ethTxHash: D.transactionHash,
-      vaultId: f,
-      peginTxHash: P
-    };
-  }
-  /**
-   * Register multiple pegins on Ethereum in a single transaction.
-   *
-   * Uses the contract's submitPeginRequestBatch() to submit all vault
-   * registrations atomically. All vaults must share the same vault provider.
-   * The PoP signature is signed once and included in each request.
-   *
-   * @param params - Batch registration parameters
-   * @returns Batch result with per-vault IDs and single ETH tx hash
-   */
-  async registerPeginBatchOnChain(t) {
-    const { vaultProvider: n, unsignedPrePeginTx: s, requests: o, popSignature: r } = t;
-    if (o.length === 0)
-      throw new Error("Batch pegin requires at least one request");
-    if (!this.config.ethWallet.account)
-      throw new Error("Ethereum wallet account not found");
-    const i = this.config.ethWallet.account.address;
-    if (!ft(r.depositorEthAddress, i))
-      throw new Error(
-        `Proof of possession was signed for ${r.depositorEthAddress} but the Ethereum wallet is currently connected to ${i}. Reconnect the original account or call signProofOfPossession() again.`
-      );
-    await this.assertPopMatchesBtcWallet(r);
-    const a = r.btcPopSignature, l = [];
-    for (const d of o)
-      l.push(
-        await this.resolvePayoutScriptPubKey(d.depositorPayoutBtcAddress)
-      );
-    const h = [];
-    for (const d of o) {
-      const x = _(
-        d.depositorSignedPeginTx
-      ), y = G(x), I = await pt(
-        v(y),
-        v(i)
-      ), B = _(I);
-      if (await this.checkVaultExists(B))
-        throw new Error(
-          `Vault already exists (ID: ${B}, peginTxHash: ${y}). To create a new vault, use different UTXOs or a different amount.`
-        );
-      h.push({ vaultId: B, peginTxHash: y });
-    }
-    const c = j({
-      chain: this.config.ethChain,
-      transport: q()
-    });
-    let b;
-    try {
-      b = await c.readContract({
-        address: this.config.vaultContracts.btcVaultRegistry,
-        abi: S,
-        functionName: "getPegInFee",
-        args: [n]
-      });
-    } catch {
-      throw new Error(
-        "Failed to query pegin fee from the contract. Please check your network connection and that the contract address is correct."
-      );
-    }
-    const m = b * BigInt(o.length), w = _(
-      r.depositorBtcPubkey
-    ), g = _(s), E = o.map((d, x) => ({
-      depositorBtcPubKey: w,
-      btcPopSignature: a,
-      unsignedPrePeginTx: g,
-      depositorSignedPeginTx: _(
-        d.depositorSignedPeginTx
-      ),
-      hashlock: d.hashlock,
-      htlcVout: d.htlcVout,
-      referralCode: xe,
-      depositorPayoutBtcAddress: l[x],
-      depositorWotsPkHash: d.depositorWotsPkHash
-    })), P = gt({
-      abi: S,
-      functionName: "submitPeginRequestBatch",
-      args: [i, n, E]
-    });
-    let k;
-    try {
-      k = await c.estimateGas({
-        to: this.config.vaultContracts.btcVaultRegistry,
-        data: P,
-        value: m,
-        account: this.config.ethWallet.account.address
-      });
-    } catch (d) {
-      A(d);
-    }
-    let f;
-    try {
-      f = await this.config.ethWallet.sendTransaction({
-        to: this.config.vaultContracts.btcVaultRegistry,
-        data: P,
-        value: m,
-        account: this.config.ethWallet.account,
-        chain: this.config.ethChain,
-        gas: k
-      });
-    } catch (d) {
-      A(d);
-    }
-    const u = await c.waitForTransactionReceipt({
-      hash: f,
-      timeout: yt
-    });
-    return u.status === "reverted" && A(
-      new Error(
-        `Batch transaction reverted. Hash: ${f}. Check the transaction on block explorer for details.`
-      )
-    ), {
-      ethTxHash: u.transactionHash,
-      vaults: h
-    };
-  }
-  /**
-   * Check if a vault already exists for a given vault ID.
-   *
-   * @param vaultId - The Bitcoin transaction hash (vault ID)
-   * @returns True if vault exists, false otherwise
-   */
-  async checkVaultExists(t) {
-    try {
-      return (await j({
-        chain: this.config.ethChain,
-        transport: q()
-      }).readContract({
-        address: this.config.vaultContracts.btcVaultRegistry,
-        abi: S,
-        functionName: "getBtcVaultBasicInfo",
-        args: [t]
-      }))[0] !== te;
-    } catch {
-      return !1;
-    }
-  }
-  /**
-   * Resolve the BTC payout address to a scriptPubKey hex for the contract.
-   *
-   * If a payout address is provided, converts it directly.
-   * If omitted, uses the wallet's address and validates it against the
-   * wallet's public key to guard against a compromised wallet provider.
-   */
-  async resolvePayoutScriptPubKey(t) {
-    let n;
-    if (t)
-      n = t;
-    else {
-      n = await this.config.btcWallet.getAddress();
-      const o = await this.config.btcWallet.getPublicKeyHex();
-      if (!ae(
-        n,
-        o,
-        this.config.btcNetwork
-      ))
-        throw new Error(
-          "The BTC address from your wallet does not match the wallet's public key. Please ensure your wallet is using a supported address type (Taproot or Native SegWit)."
-        );
+        i,
+        f,
+        l
+      ]
+    });
+    let p;
+    try {
+      p = await g.estimateGas({
+        to: this.config.vaultContracts.btcVaultRegistry,
+        data: x,
+        value: E,
+        account: this.config.ethWallet.account.address
+      });
+    } catch (j) {
+      S(j);
     }
-    const s = mt(this.config.btcNetwork);
+    let k;
     try {
-      return `0x${Jt.address.toOutputScript(n, s).toString("hex")}`;
-    } catch {
-      throw new Error(
-        `Invalid BTC payout address: "${n}". Please provide a valid Bitcoin address for the ${this.config.btcNetwork} network.`
-      );
+      k = await this.config.ethWallet.sendTransaction({
+        to: this.config.vaultContracts.btcVaultRegistry,
+        data: x,
+        value: E,
+        account: this.config.ethWallet.account,
+        chain: this.config.ethChain,
+        gas: p
+      });
+    } catch (j) {
+      S(j);
     }
+    const B = await g.waitForTransactionReceipt({
+      hash: k,
+      timeout: Ut
+    });
+    return B.status === "reverted" && S(
+      new Error(
+        `Transaction reverted. Hash: ${k}. Check the transaction on block explorer for details.`
+      )
+    ), {
+      ethTxHash: B.transactionHash,
+      vaultId: d,
+      peginTxHash: T
+    };
   }
   /**
-   * Sign a BIP-322 BTC Proof-of-Possession binding the connected BTC
-   * wallet to the connected ETH account for this chain and vault
-   * registry. The returned {@link PopSignature} can be reused across
-   * every register call in the same session.
+   * Register multiple pegins on Ethereum in a single transaction.
+   *
+   * Uses the contract's submitPeginRequestBatch() to submit all vault
+   * registrations atomically. All vaults must share the same vault provider.
+   * The PoP signature is signed once and included in each request.
+   *
+   * @param params - Batch registration parameters
+   * @returns Batch result with per-vault IDs and single ETH tx hash
    */
-  async signProofOfPossession() {
+  async registerPeginBatchOnChain(t) {
+    const { vaultProvider: n, unsignedPrePeginTx: s, requests: o, popSignature: r } = t;
+    if (o.length === 0)
+      throw new Error("Batch pegin requires at least one request");
     if (!this.config.ethWallet.account)
       throw new Error("Ethereum wallet account not found");
-    const t = this.config.ethWallet.account.address, n = O(
-      await this.config.btcWallet.getPublicKeyHex()
-    ), s = this.config.vaultContracts.btcVaultRegistry, o = `${t.toLowerCase()}:${this.config.ethChain.id}:pegin:${s.toLowerCase()}`, r = await this.config.btcWallet.signMessage(
-      o,
-      "bip322-simple"
-    );
-    return {
-      btcPopSignature: ke(r),
-      depositorEthAddress: t,
-      depositorBtcPubkey: n
-    };
-  }
-  async assertPopMatchesBtcWallet(t) {
-    const n = O(
-      await this.config.btcWallet.getPublicKeyHex()
-    ), s = O(t.depositorBtcPubkey);
-    if (n !== s)
+    const i = this.config.ethWallet.account.address;
+    if (!wt(r.depositorEthAddress, i))
       throw new Error(
-        `Proof of possession was signed with BTC pubkey ${s} but the BTC wallet is currently connected to ${n}. Reconnect the original wallet or call signProofOfPossession() again.`
+        `Proof of possession was signed for ${r.depositorEthAddress} but the Ethereum wallet is currently connected to ${i}. Reconnect the original account or call signProofOfPossession() again.`
       );
-  }
-  /**
-   * Gets the configured Bitcoin network.
-   *
-   * @returns The Bitcoin network (mainnet, testnet, signet, regtest)
-   */
-  getNetwork() {
-    return this.config.btcNetwork;
-  }
-  /**
-   * Gets the configured BTCVaultRegistry contract address.
-   *
-   * @returns The Ethereum address of the BTCVaultRegistry contract
-   */
-  getVaultContractAddress() {
-    return this.config.vaultContracts.btcVaultRegistry;
-  }
-}
-const M = /* @__PURE__ */ BigInt(2 ** 32 - 1), xt = /* @__PURE__ */ BigInt(32);
-function Ie(e, t = !1) {
-  return t ? { h: Number(e & M), l: Number(e >> xt & M) } : { h: Number(e >> xt & M) | 0, l: Number(e & M) | 0 };
-}
-function ve(e, t = !1) {
-  const n = e.length;
-  let s = new Uint32Array(n), o = new Uint32Array(n);
-  for (let r = 0; r < n; r++) {
-    const { h: i, l: a } = Ie(e[r], t);
-    [s[r], o[r]] = [i, a];
-  }
-  return [s, o];
-}
-const Be = (e, t, n) => e << n | t >>> 32 - n, Ae = (e, t, n) => t << n | e >>> 32 - n, He = (e, t, n) => t << n - 32 | e >>> 64 - n, Ce = (e, t, n) => e << n - 32 | t >>> 64 - n, Se = /* @__PURE__ */ Uint8Array.from([
-  7,
-  4,
-  13,
-  1,
-  10,
-  6,
-  15,
-  3,
-  12,
-  0,
-  9,
-  5,
-  2,
-  14,
-  11,
-  8
-]), $t = Uint8Array.from(new Array(16).fill(0).map((e, t) => t)), Oe = $t.map((e) => (9 * e + 5) % 16), Rt = /* @__PURE__ */ (() => {
-  const n = [[$t], [Oe]];
-  for (let s = 0; s < 4; s++)
-    for (let o of n)
-      o.push(o[s].map((r) => Se[r]));
-  return n;
-})(), Ut = Rt[0], Lt = Rt[1], Wt = /* @__PURE__ */ [
-  [11, 14, 15, 12, 5, 8, 7, 9, 11, 13, 14, 15, 6, 7, 9, 8],
-  [12, 13, 11, 15, 6, 9, 9, 7, 12, 15, 11, 13, 7, 8, 7, 7],
-  [13, 15, 14, 11, 7, 7, 6, 8, 13, 14, 13, 12, 5, 5, 6, 9],
-  [14, 11, 12, 14, 8, 6, 5, 5, 15, 12, 15, 14, 9, 9, 8, 6],
-  [15, 12, 13, 13, 9, 5, 8, 6, 14, 11, 12, 11, 8, 6, 5, 5]
-].map((e) => Uint8Array.from(e)), $e = /* @__PURE__ */ Ut.map((e, t) => e.map((n) => Wt[t][n])), Re = /* @__PURE__ */ Lt.map((e, t) => e.map((n) => Wt[t][n])), Ue = /* @__PURE__ */ Uint32Array.from([
-  0,
-  1518500249,
-  1859775393,
-  2400959708,
-  2840853838
-]), Le = /* @__PURE__ */ Uint32Array.from([
-  1352829926,
-  1548603684,
-  1836072691,
-  2053994217,
-  0
-]);
-function Pt(e, t, n, s) {
-  return e === 0 ? t ^ n ^ s : e === 1 ? t & n | ~t & s : e === 2 ? (t | ~n) ^ s : e === 3 ? t & s | n & ~s : t ^ (n | ~s);
-}
-const N = /* @__PURE__ */ new Uint32Array(16);
-class We extends be {
-  constructor() {
-    super(64, 20, 8, !0);
-    p(this, "h0", 1732584193);
-    p(this, "h1", -271733879);
-    p(this, "h2", -1732584194);
-    p(this, "h3", 271733878);
-    p(this, "h4", -1009589776);
-  }
-  get() {
-    const { h0: n, h1: s, h2: o, h3: r, h4: i } = this;
-    return [n, s, o, r, i];
-  }
-  set(n, s, o, r, i) {
-    this.h0 = n | 0, this.h1 = s | 0, this.h2 = o | 0, this.h3 = r | 0, this.h4 = i | 0;
-  }
-  process(n, s) {
-    for (let g = 0; g < 16; g++, s += 4)
-      N[g] = n.getUint32(s, !0);
-    let o = this.h0 | 0, r = o, i = this.h1 | 0, a = i, l = this.h2 | 0, h = l, c = this.h3 | 0, b = c, m = this.h4 | 0, w = m;
-    for (let g = 0; g < 5; g++) {
-      const E = 4 - g, P = Ue[g], k = Le[g], f = Ut[g], u = Lt[g], d = $e[g], x = Re[g];
-      for (let y = 0; y < 16; y++) {
-        const I = W(o + Pt(g, i, l, c) + N[f[y]] + P, d[y]) + m | 0;
-        o = m, m = c, c = W(l, 10) | 0, l = i, i = I;
-      }
-      for (let y = 0; y < 16; y++) {
-        const I = W(r + Pt(E, a, h, b) + N[u[y]] + k, x[y]) + w | 0;
-        r = w, w = b, b = W(h, 10) | 0, h = a, a = I;
-      }
-    }
-    this.set(this.h1 + l + b | 0, this.h2 + c + w | 0, this.h3 + m + r | 0, this.h4 + o + a | 0, this.h0 + i + h | 0);
-  }
-  roundClean() {
-    H(N);
-  }
-  destroy() {
-    this.destroyed = !0, H(this.buffer), this.set(0, 0, 0, 0, 0);
-  }
-}
-const Me = /* @__PURE__ */ St(() => new We()), Ne = BigInt(0), $ = BigInt(1), Ve = BigInt(2), Fe = BigInt(7), Xe = BigInt(256), De = BigInt(113), Mt = [], Nt = [], Vt = [];
-for (let e = 0, t = $, n = 1, s = 0; e < 24; e++) {
-  [n, s] = [s, (2 * n + 3 * s) % 5], Mt.push(2 * (5 * s + n)), Nt.push((e + 1) * (e + 2) / 2 % 64);
-  let o = Ne;
-  for (let r = 0; r < 7; r++)
-    t = (t << $ ^ (t >> Fe) * De) % Xe, t & Ve && (o ^= $ << ($ << BigInt(r)) - $);
-  Vt.push(o);
-}
-const Ft = ve(Vt, !0), Ke = Ft[0], je = Ft[1], Et = (e, t, n) => n > 32 ? He(e, t, n) : Be(e, t, n), Tt = (e, t, n) => n > 32 ? Ce(e, t, n) : Ae(e, t, n);
-function qe(e, t = 24) {
-  const n = new Uint32Array(10);
-  for (let s = 24 - t; s < 24; s++) {
-    for (let i = 0; i < 10; i++)
-      n[i] = e[i] ^ e[i + 10] ^ e[i + 20] ^ e[i + 30] ^ e[i + 40];
-    for (let i = 0; i < 10; i += 2) {
-      const a = (i + 8) % 10, l = (i + 2) % 10, h = n[l], c = n[l + 1], b = Et(h, c, 1) ^ n[a], m = Tt(h, c, 1) ^ n[a + 1];
-      for (let w = 0; w < 50; w += 10)
-        e[i + w] ^= b, e[i + w + 1] ^= m;
-    }
-    let o = e[2], r = e[3];
-    for (let i = 0; i < 24; i++) {
-      const a = Nt[i], l = Et(o, r, a), h = Tt(o, r, a), c = Mt[i];
-      o = e[c], r = e[c + 1], e[c] = l, e[c + 1] = h;
-    }
-    for (let i = 0; i < 50; i += 10) {
-      for (let a = 0; a < 10; a++)
-        n[a] = e[i + a];
-      for (let a = 0; a < 10; a++)
-        e[i + a] ^= ~n[(a + 2) % 10] & n[(a + 4) % 10];
-    }
-    e[0] ^= Ke[s], e[1] ^= je[s];
-  }
-  H(n);
-}
-class at {
-  // NOTE: we accept arguments in bytes instead of bits here.
-  constructor(t, n, s, o = !1, r = 24) {
-    p(this, "state");
-    p(this, "pos", 0);
-    p(this, "posOut", 0);
-    p(this, "finished", !1);
-    p(this, "state32");
-    p(this, "destroyed", !1);
-    p(this, "blockLen");
-    p(this, "suffix");
-    p(this, "outputLen");
-    p(this, "enableXOF", !1);
-    p(this, "rounds");
-    if (this.blockLen = t, this.suffix = n, this.outputLen = s, this.enableXOF = o, this.rounds = r, nt(s, "outputLen"), !(0 < t && t < 200))
-      throw new Error("only keccak-f1600 function is supported");
-    this.state = new Uint8Array(200), this.state32 = we(this.state);
-  }
-  clone() {
-    return this._cloneInto();
-  }
-  keccak() {
-    wt(this.state32), qe(this.state32, this.rounds), wt(this.state32), this.posOut = 0, this.pos = 0;
-  }
-  update(t) {
-    F(this), U(t);
-    const { blockLen: n, state: s } = this, o = t.length;
-    for (let r = 0; r < o; ) {
-      const i = Math.min(n - this.pos, o - r);
-      for (let a = 0; a < i; a++)
-        s[this.pos++] ^= t[r++];
-      this.pos === n && this.keccak();
-    }
-    return this;
-  }
-  finish() {
-    if (this.finished)
-      return;
-    this.finished = !0;
-    const { state: t, suffix: n, pos: s, blockLen: o } = this;
-    t[s] ^= n, (n & 128) !== 0 && s === o - 1 && this.keccak(), t[o - 1] ^= 128, this.keccak();
-  }
-  writeInto(t) {
-    F(this, !1), U(t), this.finish();
-    const n = this.state, { blockLen: s } = this;
-    for (let o = 0, r = t.length; o < r; ) {
-      this.posOut >= s && this.keccak();
-      const i = Math.min(s - this.posOut, r - o);
-      t.set(n.subarray(this.posOut, this.posOut + i), o), this.posOut += i, o += i;
-    }
-    return t;
-  }
-  xofInto(t) {
-    if (!this.enableXOF)
-      throw new Error("XOF is not possible for this instance");
-    return this.writeInto(t);
-  }
-  xof(t) {
-    return nt(t), this.xofInto(new Uint8Array(t));
-  }
-  digestInto(t) {
-    if (ye(t, this), this.finished)
-      throw new Error("digest() was already called");
-    return this.writeInto(t), this.destroy(), t;
-  }
-  digest() {
-    return this.digestInto(new Uint8Array(this.outputLen));
-  }
-  destroy() {
-    this.destroyed = !0, H(this.state);
-  }
-  _cloneInto(t) {
-    const { blockLen: n, suffix: s, outputLen: o, rounds: r, enableXOF: i } = this;
-    return t || (t = new at(n, s, o, i, r)), t.state32.set(this.state32), t.pos = this.pos, t.posOut = this.posOut, t.finished = this.finished, t.rounds = r, t.suffix = s, t.outputLen = o, t.enableXOF = i, t.destroyed = this.destroyed, t;
-  }
-}
-const Ge = (e, t, n, s = {}) => St(() => new at(t, e, n), s), Ze = /* @__PURE__ */ Ge(1, 136, 32), kt = 64, T = 20, st = 4, Xt = 2, ze = 0, Ye = 1, V = [64, 64], Je = (e) => Array.from(e).map((t) => t.toString(16).padStart(2, "0")).join("");
-function ct(e) {
-  return Me(L(e));
-}
-function Dt(e) {
-  return (1 << e) - 1;
-}
-function Qe(e) {
-  let t = 1;
-  for (; t * t < e + 1; ) t++;
-  return Math.max(t, 2);
-}
-function tn(e) {
-  const t = st, n = e * Dt(t);
-  return { d: t, n: e, checksum_radix: Qe(n) };
-}
-function Z(e, t) {
-  const n = [];
-  let s = t;
-  for (; s > 0; )
-    n.push(s & 255), s >>>= 8;
-  const o = new Uint8Array(e.length + n.length);
-  o.set(e);
-  for (let r = 0; r < n.length; r++)
-    o[e.length + r] = n[r];
-  return ct(o);
-}
-function z(e, t) {
-  let n = e;
-  for (let s = 0; s < t; s++)
-    n = ct(n);
-  return n;
-}
-function en(e, t) {
-  const n = Dt(t.d), s = t.checksum_radix - 1, o = Math.floor(t.n * n / t.checksum_radix), r = [];
-  for (let c = 0; c < t.n; c++) {
-    const b = Z(e, c + Xt), m = z(b, n);
-    r.push(Array.from(m));
-  }
-  const i = Z(
-    e,
-    ze
-  ), a = z(
-    i,
-    s
-  ), l = Z(
-    e,
-    Ye
-  ), h = z(
-    l,
-    o
-  );
-  return {
-    config: t,
-    message_terminals: r,
-    checksum_major_terminal: Array.from(h),
-    checksum_minor_terminal: Array.from(a)
-  };
-}
-async function Sn(e) {
-  try {
-    if (e.length !== kt)
+    await this.assertPopMatchesBtcWallet(r);
+    const a = r.btcPopSignature, l = [];
+    for (const g of o)
+      l.push(
+        await this.resolvePayoutScriptPubKey(g.depositorPayoutBtcAddress)
+      );
+    const u = [];
+    for (const g of o) {
+      const E = I(
+        g.depositorSignedPeginTx
+      ), x = q(E), p = await yt(
+        _(x),
+        _(i)
+      ), k = I(p);
+      if (await this.checkVaultExists(k))
+        throw new Error(
+          `Vault already exists (ID: ${k}, peginTxHash: ${x}). To create a new vault, use different UTXOs or a different amount.`
+        );
+      u.push({ vaultId: k, peginTxHash: x });
+    }
+    const c = G({
+      chain: this.config.ethChain,
+      transport: Z()
+    });
+    let w;
+    try {
+      w = await c.readContract({
+        address: this.config.vaultContracts.btcVaultRegistry,
+        abi: R,
+        functionName: "getPegInFee",
+        args: [n]
+      });
+    } catch {
       throw new Error(
-        `WOTS seed must be exactly ${kt} bytes, got ${e.length}`
+        "Failed to query pegin fee from the contract. Please check your network connection and that the contract address is correct."
       );
-    const t = [];
-    for (let n = 0; n < V.length; n++) {
-      const s = V[n], o = tn(s), r = new Uint8Array(e.length + 1);
-      r.set(e), r[e.length] = n;
-      const i = ct(r);
-      try {
-        const a = en(i, o);
-        if (a.config.d !== st)
-          throw new Error(
-            `Block ${n}: expected d=${st}, got d=${a.config.d}`
-          );
-        if (a.config.n !== s)
-          throw new Error(
-            `Block ${n}: expected n=${s}, got n=${a.config.n}`
-          );
-        if (a.message_terminals.length !== s)
-          throw new Error(
-            `Block ${n}: expected ${s} message terminals, got ${a.message_terminals.length}`
-          );
-        for (let l = 0; l < a.message_terminals.length; l++)
-          if (a.message_terminals[l].length !== T)
-            throw new Error(
-              `Block ${n} terminal ${l}: expected ${T} bytes, got ${a.message_terminals[l].length}`
-            );
-        if (a.checksum_minor_terminal.length !== T)
-          throw new Error(
-            `Block ${n} checksum_minor: expected ${T} bytes`
-          );
-        if (a.checksum_major_terminal.length !== T)
-          throw new Error(
-            `Block ${n} checksum_major: expected ${T} bytes`
-          );
-        t.push(a);
-      } finally {
-        r.fill(0), i.fill(0);
-      }
     }
-    if (t.length !== V.length)
+    const b = w * BigInt(o.length), y = I(
+      r.depositorBtcPubkey
+    ), h = I(s), f = o.map((g, E) => ({
+      depositorBtcPubKey: y,
+      btcPopSignature: a,
+      unsignedPrePeginTx: h,
+      depositorSignedPeginTx: I(
+        g.depositorSignedPeginTx
+      ),
+      hashlock: g.hashlock,
+      htlcVout: g.htlcVout,
+      referralCode: In,
+      depositorPayoutBtcAddress: l[E],
+      depositorWotsPkHash: g.depositorWotsPkHash
+    })), T = bt({
+      abi: R,
+      functionName: "submitPeginRequestBatch",
+      args: [i, n, f]
+    });
+    let H;
+    try {
+      H = await c.estimateGas({
+        to: this.config.vaultContracts.btcVaultRegistry,
+        data: T,
+        value: b,
+        account: this.config.ethWallet.account.address
+      });
+    } catch (g) {
+      S(g);
+    }
+    let d;
+    try {
+      d = await this.config.ethWallet.sendTransaction({
+        to: this.config.vaultContracts.btcVaultRegistry,
+        data: T,
+        value: b,
+        account: this.config.ethWallet.account,
+        chain: this.config.ethChain,
+        gas: H
+      });
+    } catch (g) {
+      S(g);
+    }
+    const P = await c.waitForTransactionReceipt({
+      hash: d,
+      timeout: Ut
+    });
+    return P.status === "reverted" && S(
+      new Error(
+        `Batch transaction reverted. Hash: ${d}. Check the transaction on block explorer for details.`
+      )
+    ), {
+      ethTxHash: P.transactionHash,
+      vaults: u
+    };
+  }
+  /**
+   * Check if a vault already exists for a given vault ID.
+   *
+   * @param vaultId - The Bitcoin transaction hash (vault ID)
+   * @returns True if vault exists, false otherwise
+   */
+  async checkVaultExists(t) {
+    try {
+      return (await G({
+        chain: this.config.ethChain,
+        transport: Z()
+      }).readContract({
+        address: this.config.vaultContracts.btcVaultRegistry,
+        abi: R,
+        functionName: "getBtcVaultBasicInfo",
+        args: [t]
+      })).depositor !== ce;
+    } catch {
+      return !1;
+    }
+  }
+  /**
+   * Resolve the BTC payout address to a scriptPubKey hex for the contract.
+   *
+   * If a payout address is provided, converts it directly.
+   * If omitted, uses the wallet's address and validates it against the
+   * wallet's public key to guard against a compromised wallet provider.
+   */
+  async resolvePayoutScriptPubKey(t) {
+    let n;
+    if (t)
+      n = t;
+    else {
+      n = await this.config.btcWallet.getAddress();
+      const o = await this.config.btcWallet.getPublicKeyHex();
+      if (!ge(
+        n,
+        o,
+        this.config.btcNetwork
+      ))
+        throw new Error(
+          "The BTC address from your wallet does not match the wallet's public key. Please ensure your wallet is using a supported address type (Taproot or Native SegWit)."
+        );
+    }
+    const s = Pt(this.config.btcNetwork);
+    try {
+      return `0x${Vt.address.toOutputScript(n, s).toString("hex")}`;
+    } catch {
       throw new Error(
-        `Expected ${V.length} blocks, got ${t.length}`
+        `Invalid BTC payout address: "${n}". Please provide a valid Bitcoin address for the ${this.config.btcNetwork} network.`
       );
-    return t;
-  } finally {
-    e.fill(0);
+    }
   }
-}
-function Y(e, t, n) {
-  if (e.length !== T)
-    throw new Error(
-      `Block ${t} ${n}: expected ${T} bytes, got ${e.length}`
+  /**
+   * Sign a BIP-322 BTC Proof-of-Possession binding the connected BTC
+   * wallet to the connected ETH account for this chain and vault
+   * registry. The returned {@link PopSignature} can be reused across
+   * every register call in the same session.
+   */
+  async signProofOfPossession() {
+    if (!this.config.ethWallet.account)
+      throw new Error("Ethereum wallet account not found");
+    const t = this.config.ethWallet.account.address, n = U(
+      await this.config.btcWallet.getPublicKeyHex()
+    ), s = this.config.vaultContracts.btcVaultRegistry, o = `${t.toLowerCase()}:${this.config.ethChain.id}:pegin:${s.toLowerCase()}`, r = await this.config.btcWallet.signMessage(
+      o,
+      "bip322-simple"
     );
-  for (let s = 0; s < e.length; s++) {
-    const o = e[s];
-    if (!Number.isInteger(o) || o < 0 || o > 255)
+    return {
+      btcPopSignature: _n(r),
+      depositorEthAddress: t,
+      depositorBtcPubkey: n
+    };
+  }
+  async assertPopMatchesBtcWallet(t) {
+    const n = U(
+      await this.config.btcWallet.getPublicKeyHex()
+    ), s = U(t.depositorBtcPubkey);
+    if (n !== s)
       throw new Error(
-        `Block ${t} ${n}[${s}]: invalid byte value ${o}`
+        `Proof of possession was signed with BTC pubkey ${s} but the BTC wallet is currently connected to ${n}. Reconnect the original wallet or call signProofOfPossession() again.`
       );
   }
-}
-function On(e) {
-  if (e.length === 0)
-    throw new Error("Public keys array must not be empty");
-  for (let r = 0; r < e.length; r++) {
-    const i = e[r];
-    Y(i.checksum_minor_terminal, r, "checksum_minor_terminal"), Y(i.checksum_major_terminal, r, "checksum_major_terminal");
-    for (let a = 0; a < i.message_terminals.length; a++)
-      Y(i.message_terminals[a], r, `message_terminal[${a}]`);
-  }
-  let t = 0;
-  for (const r of e)
-    t += Xt + r.message_terminals.length;
-  const n = new Uint8Array(t * T);
-  let s = 0;
-  for (const r of e) {
-    n.set(r.checksum_minor_terminal, s), s += T, n.set(r.checksum_major_terminal, s), s += T;
-    for (const i of r.message_terminals)
-      n.set(i, s), s += T;
-  }
-  const o = Ze(n);
-  return `0x${Je(o)}`;
-}
-function $n(e) {
-  const t = (e instanceof Error ? e.message : typeof e == "string" ? e : "").toLowerCase();
-  return t.includes("wots") && t.includes("hash") && t.includes("does not match");
-}
-class Kt {
-  constructor(t, n) {
-    p(this, "oHash");
-    p(this, "iHash");
-    p(this, "blockLen");
-    p(this, "outputLen");
-    p(this, "finished", !1);
-    p(this, "destroyed", !1);
-    if (Ot(t), U(n, void 0, "key"), this.iHash = t.create(), typeof this.iHash.update != "function")
-      throw new Error("Expected instance of class which extends utils.Hash");
-    this.blockLen = this.iHash.blockLen, this.outputLen = this.iHash.outputLen;
-    const s = this.blockLen, o = new Uint8Array(s);
-    o.set(n.length > s ? t.create().update(n).digest() : n);
-    for (let r = 0; r < o.length; r++)
-      o[r] ^= 54;
-    this.iHash.update(o), this.oHash = t.create();
-    for (let r = 0; r < o.length; r++)
-      o[r] ^= 106;
-    this.oHash.update(o), H(o);
-  }
-  update(t) {
-    return F(this), this.iHash.update(t), this;
-  }
-  digestInto(t) {
-    F(this), U(t, this.outputLen, "output"), this.finished = !0, this.iHash.digestInto(t), this.oHash.update(t), this.oHash.digestInto(t), this.destroy();
-  }
-  digest() {
-    const t = new Uint8Array(this.oHash.outputLen);
-    return this.digestInto(t), t;
-  }
-  _cloneInto(t) {
-    t || (t = Object.create(Object.getPrototypeOf(this), {}));
-    const { oHash: n, iHash: s, finished: o, destroyed: r, blockLen: i, outputLen: a } = this;
-    return t = t, t.finished = o, t.destroyed = r, t.blockLen = i, t.outputLen = a, t.oHash = n._cloneInto(t.oHash), t.iHash = s._cloneInto(t.iHash), t;
-  }
-  clone() {
-    return this._cloneInto();
+  /**
+   * Gets the configured Bitcoin network.
+   *
+   * @returns The Bitcoin network (mainnet, testnet, signet, regtest)
+   */
+  getNetwork() {
+    return this.config.btcNetwork;
   }
-  destroy() {
-    this.destroyed = !0, this.oHash.destroy(), this.iHash.destroy();
+  /**
+   * Gets the configured BTCVaultRegistry contract address.
+   *
+   * @returns The Ethereum address of the BTCVaultRegistry contract
+   */
+  getVaultContractAddress() {
+    return this.config.vaultContracts.btcVaultRegistry;
   }
 }
-const jt = (e, t, n) => new Kt(e, t).update(n).digest();
-jt.create = (e, t) => new Kt(e, t);
-const J = /* @__PURE__ */ Uint8Array.of(0), _t = /* @__PURE__ */ Uint8Array.of();
-function lt(e, t, n, s = 32) {
-  Ot(e), nt(s, "length");
-  const o = e.outputLen;
-  if (s > 255 * o)
-    throw new Error("Length must be <= 255*HashLen");
-  const r = Math.ceil(s / o);
-  n === void 0 ? n = _t : U(n, void 0, "info");
-  const i = new Uint8Array(r * o), a = jt.create(e, t), l = a._cloneInto(), h = new Uint8Array(a.outputLen);
-  for (let c = 0; c < r; c++)
-    J[0] = c + 1, l.update(c === 0 ? _t : h).update(n).update(J).digestInto(h), i.set(h, o * c), a._cloneInto(l);
-  return a.destroy(), l.destroy(), H(h, J), i.slice(0, s);
-}
-const Q = new TextEncoder().encode("babylonvault"), It = 255, vt = 65535, Bt = 2, nn = "hashlock", sn = "auth-anchor", on = "wots-seed";
-function qt(e) {
-  if (!Number.isInteger(e) || e < 0 || e > 4294967295)
-    throw new Error(`i2osp4: value must be a u32, got ${e}`);
-  const t = new Uint8Array(4);
-  return t[0] = e >>> 24 & 255, t[1] = e >>> 16 & 255, t[2] = e >>> 8 & 255, t[3] = e & 255, t;
-}
-function ht(e, t = new Uint8Array(0)) {
-  const n = new TextEncoder().encode(e);
-  if (n.length === 0 || n.length > It)
-    throw new Error(
-      `info: label length must be in [1, ${It}], got ${n.length}`
-    );
-  if (t.length > vt)
-    throw new Error(
-      `info: ctx length must be in [0, ${vt}], got ${t.length}`
-    );
-  const s = Q.length + 1 + n.length + Bt + t.length, o = new Uint8Array(s);
-  let r = 0;
-  return o.set(Q, r), r += Q.length, o[r] = n.length, r += 1, o.set(n, r), r += n.length, o[r] = t.length >>> 8 & 255, o[r + 1] = t.length & 255, r += Bt, o.set(t, r), o;
-}
-const At = 32, rn = 32, an = 32, cn = 64;
-function ut(e) {
-  if (e.length !== At)
-    throw new Error(
-      `vault-secrets: root must be exactly ${At} bytes, got ${e.length}`
-    );
-}
-function Rn(e) {
-  return ut(e), lt(
-    L,
-    e,
-    ht(sn),
-    rn
-  );
-}
-function Un(e, t) {
-  return ut(e), lt(
-    L,
-    e,
-    ht(nn, qt(t)),
-    an
-  );
-}
-function Ln(e, t) {
-  return ut(e), lt(
-    L,
-    e,
-    ht(on, qt(t)),
-    cn
-  );
-}
-const R = 32, tt = 32, ot = 36, Gt = 32, X = 4, ln = X + R + X + Gt;
-function rt(e, t, n) {
-  e[t] = n >>> 24 & 255, e[t + 1] = n >>> 16 & 255, e[t + 2] = n >>> 8 & 255, e[t + 3] = n & 255;
-}
-function hn(e) {
-  if (e.txid.length !== tt)
-    throw new Error(
-      `outpoint.txid must be exactly ${tt} bytes, got ${e.txid.length}`
-    );
-  if (!Number.isInteger(e.vout) || e.vout < 0 || e.vout > 4294967295)
-    throw new Error(`outpoint.vout must be a u32, got ${e.vout}`);
-  const t = new Uint8Array(ot);
-  return t.set(e.txid, 0), rt(t, tt, e.vout), t;
-}
-function Ht(e, t) {
-  const n = Math.min(e.length, t.length);
-  for (let s = 0; s < n; s++)
-    if (e[s] !== t[s]) return e[s] - t[s];
-  return e.length - t.length;
-}
-function un(e) {
-  if (e.length === 0)
-    throw new Error(
-      "buildFundingOutpointsCommitment: outpoints must be non-empty"
-    );
-  const t = e.map(hn);
-  t.sort(Ht);
-  for (let s = 1; s < t.length; s++)
-    if (Ht(t[s - 1], t[s]) === 0)
-      throw new Error(
-        "buildFundingOutpointsCommitment: duplicate outpoint detected"
-      );
-  const n = new Uint8Array(t.length * ot);
-  for (let s = 0; s < t.length; s++)
-    n.set(t[s], s * ot);
-  return L(n);
-}
-function dn(e) {
-  if (e.depositorBtcPubkey.length !== R)
-    throw new Error(
-      `vaultContext: depositorBtcPubkey must be exactly ${R} bytes, got ${e.depositorBtcPubkey.length}`
-    );
-  const t = un(e.fundingOutpoints), n = new Uint8Array(ln);
-  let s = 0;
-  return rt(n, s, R), s += X, n.set(e.depositorBtcPubkey, s), s += R, rt(n, s, Gt), s += X, n.set(t, s), n;
-}
-const fn = "babylon-vault", Zt = 32, Ct = Zt * 2, gn = /^[0-9a-f]+$/;
-async function Wn(e, t) {
-  const n = dn(t), s = le(n), o = await e.deriveContextHash(fn, s);
-  if (typeof o != "string")
-    throw new Error(
-      `deriveVaultRoot: wallet must return a string, got ${typeof o}`
-    );
-  if (o.length !== Ct)
-    throw new Error(
-      `deriveVaultRoot: wallet must return a ${Ct}-character hex string (${Zt} bytes), got length ${o.length}`
-    );
-  if (!gn.test(o))
-    throw new Error(
-      "deriveVaultRoot: wallet must return lowercase hex per derive-context-hash.md §2.1; got value with non-lowercase or non-hex characters"
-    );
-  return he(o);
-}
 export {
   C,
-  Cn as P,
-  fn as V,
-  $n as a,
-  Rn as b,
-  On as c,
-  Sn as d,
-  it as e,
-  Un as f,
-  An as g,
-  A as h,
-  Hn as i,
-  Ln as j,
-  un as k,
-  dn as l,
-  Wn as m
+  jn as P,
+  De as V,
+  Kn as a,
+  Ne as b,
+  xn as c,
+  yn as d,
+  gt as e,
+  Ve as f,
+  Dn as g,
+  S as h,
+  zn as i,
+  We as j,
+  Xe as k,
+  Ke as l,
+  je as m
 };
-//# sourceMappingURL=deriveVaultRoot-DAMZDqg-.js.map
+//# sourceMappingURL=PeginManager-Dj6oDaH5.js.map