@babylonlabs-io/ts-sdk 0.38.0 → 0.38.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/PayoutManager-D29D-K-V.js +250 -0
- package/dist/PayoutManager-D29D-K-V.js.map +1 -0
- package/dist/PayoutManager-DERMRuUU.cjs +2 -0
- package/dist/PayoutManager-DERMRuUU.cjs.map +1 -0
- package/dist/{PeginManager-C1en2vwr.js → PeginManager-Cp2Tn5sH.js} +270 -292
- package/dist/PeginManager-Cp2Tn5sH.js.map +1 -0
- package/dist/PeginManager-DaDs-bGr.cjs +2 -0
- package/dist/PeginManager-DaDs-bGr.cjs.map +1 -0
- package/dist/assertPsbtUnsignedTxMatches-fNkAaZZm.cjs +2 -0
- package/dist/assertPsbtUnsignedTxMatches-fNkAaZZm.cjs.map +1 -0
- package/dist/assertPsbtUnsignedTxMatches-mTAnLhCz.js +340 -0
- package/dist/assertPsbtUnsignedTxMatches-mTAnLhCz.js.map +1 -0
- package/dist/{buildAndBroadcastRefund-vwfVgJeA.js → buildAndBroadcastRefund-B5cOyUzj.js} +138 -132
- package/dist/{buildAndBroadcastRefund-vwfVgJeA.js.map → buildAndBroadcastRefund-B5cOyUzj.js.map} +1 -1
- package/dist/buildAndBroadcastRefund-DVMT-pXQ.cjs +2 -0
- package/dist/{buildAndBroadcastRefund-CEKwFY8l.cjs.map → buildAndBroadcastRefund-DVMT-pXQ.cjs.map} +1 -1
- package/dist/{challengeAssert-D7OCrDIc.js → challengeAssert-CBp4mEs0.js} +2 -2
- package/dist/{challengeAssert-D7OCrDIc.js.map → challengeAssert-CBp4mEs0.js.map} +1 -1
- package/dist/{challengeAssert-CMb7r-je.cjs → challengeAssert-CNRdpCzm.cjs} +2 -2
- package/dist/{challengeAssert-CMb7r-je.cjs.map → challengeAssert-CNRdpCzm.cjs.map} +1 -1
- package/dist/index.cjs +1 -1
- package/dist/index.js +27 -27
- package/dist/noPayout-jtZsoOzY.cjs +2 -0
- package/dist/noPayout-jtZsoOzY.cjs.map +1 -0
- package/dist/noPayout-qbaSEKGC.js +145 -0
- package/dist/noPayout-qbaSEKGC.js.map +1 -0
- package/dist/peginInput-BPRB9tUi.js +104 -0
- package/dist/peginInput-BPRB9tUi.js.map +1 -0
- package/dist/peginInput-DH6X4ITS.cjs +2 -0
- package/dist/peginInput-DH6X4ITS.cjs.map +1 -0
- package/dist/tbv/core/index.cjs +1 -1
- package/dist/tbv/core/index.js +20 -20
- package/dist/tbv/core/managers/index.cjs +1 -1
- package/dist/tbv/core/managers/index.js +2 -2
- package/dist/tbv/core/managers/pegin/assertAuthAnchorOpReturn.d.ts +37 -0
- package/dist/tbv/core/managers/pegin/assertAuthAnchorOpReturn.d.ts.map +1 -1
- package/dist/tbv/core/managers/pegin/index.d.ts +1 -1
- package/dist/tbv/core/managers/pegin/index.d.ts.map +1 -1
- package/dist/tbv/core/primitives/index.cjs +1 -1
- package/dist/tbv/core/primitives/index.js +17 -17
- package/dist/tbv/core/primitives/psbt/__tests__/refund.test.d.ts +12 -0
- package/dist/tbv/core/primitives/psbt/__tests__/refund.test.d.ts.map +1 -0
- package/dist/tbv/core/primitives/psbt/pegin.d.ts +5 -0
- package/dist/tbv/core/primitives/psbt/pegin.d.ts.map +1 -1
- package/dist/tbv/core/primitives/psbt/refund.d.ts.map +1 -1
- package/dist/tbv/core/services/index.cjs +1 -1
- package/dist/tbv/core/services/index.js +2 -2
- package/dist/tbv/core/services/refund/buildAndBroadcastRefund.d.ts.map +1 -1
- package/dist/tbv/index.cjs +1 -1
- package/dist/tbv/index.js +20 -20
- package/package.json +3 -3
- package/dist/PayoutManager-BfT0V-tm.cjs +0 -2
- package/dist/PayoutManager-BfT0V-tm.cjs.map +0 -1
- package/dist/PayoutManager-Cf51DBcu.js +0 -208
- package/dist/PayoutManager-Cf51DBcu.js.map +0 -1
- package/dist/PeginManager-BRHJZYmE.cjs +0 -2
- package/dist/PeginManager-BRHJZYmE.cjs.map +0 -1
- package/dist/PeginManager-C1en2vwr.js.map +0 -1
- package/dist/assertPsbtUnsignedTxMatches-CagW7XqW.cjs +0 -2
- package/dist/assertPsbtUnsignedTxMatches-CagW7XqW.cjs.map +0 -1
- package/dist/assertPsbtUnsignedTxMatches-Dry5dTfl.js +0 -266
- package/dist/assertPsbtUnsignedTxMatches-Dry5dTfl.js.map +0 -1
- package/dist/buildAndBroadcastRefund-CEKwFY8l.cjs +0 -2
- package/dist/noPayout-B6s8vrW6.cjs +0 -2
- package/dist/noPayout-B6s8vrW6.cjs.map +0 -1
- package/dist/noPayout-BhgknZBx.js +0 -141
- package/dist/noPayout-BhgknZBx.js.map +0 -1
- package/dist/peginInput-57FK2O99.cjs +0 -2
- package/dist/peginInput-57FK2O99.cjs.map +0 -1
- package/dist/peginInput-CYJzbuwA.js +0 -177
- package/dist/peginInput-CYJzbuwA.js.map +0 -1
package/dist/tbv/index.cjs
CHANGED
|
@@ -1,2 +1,2 @@
|
|
|
1
|
-
"use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});const
|
|
1
|
+
"use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});const p=require("../challengeAssert-CNRdpCzm.cjs"),c=require("@babylonlabs-io/babylon-tbv-rust-wasm"),n=require("../assertPsbtUnsignedTxMatches-fNkAaZZm.cjs"),S=require("../peginInput-DH6X4ITS.cjs"),E=require("../noPayout-jtZsoOzY.cjs"),r=require("../bitcoin-CHfKAhcI.cjs"),_=require("../signing-Bnsro0hE.cjs"),d=require("../validation-u8W7Lp2x.cjs"),u=require("../PeginManager-DaDs-bGr.cjs"),g=require("../PayoutManager-DERMRuUU.cjs"),R=require("../ProtocolParams.abi-DQhcqsNr.cjs"),m=require("../BTCVaultRegistry.abi-CHFGevwa.cjs"),P=require("../errors-BP73_stm.cjs"),i=require("../waitForTransactionReceiptSmartAware-tv1mtSIY.cjs"),a=require("../fundPeginTransaction-BBE3wTjR.cjs"),l=require("../reservation-hjXStM03.cjs"),s=require("../mempoolApi-YNkKjQCU.cjs"),t=require("../vault-registry-reader-CbJHSxVe.cjs"),o=require("../types-D2jcXfm7.cjs"),A=require("../errors-Bu0H-dZD.cjs"),e=require("../buildAndBroadcastRefund-DVMT-pXQ.cjs"),T=require("../peginState-BijNNT15.cjs");exports.buildChallengeAssertPsbt=p.buildChallengeAssertPsbt;exports.buildDepositorPayoutPsbt=p.buildDepositorPayoutPsbt;exports.computeNumLocalChallengers=p.computeNumLocalChallengers;Object.defineProperty(exports,"computeMinClaimValue",{enumerable:!0,get:()=>c.computeMinClaimValue});Object.defineProperty(exports,"deriveVaultId",{enumerable:!0,get:()=>c.deriveVaultId});Object.defineProperty(exports,"expandAuthAnchor",{enumerable:!0,get:()=>c.expandAuthAnchor});Object.defineProperty(exports,"expandHashlockSecret",{enumerable:!0,get:()=>c.expandHashlockSecret});Object.defineProperty(exports,"expandWotsSeed",{enumerable:!0,get:()=>c.expandWotsSeed});exports.PsbtSubstitutionError=n.PsbtSubstitutionError;exports.assertPayoutOutputMatchesRegistered=n.assertPayoutOutputMatchesRegistered;exports.assertPsbtUnsignedTxMatches=n.assertPsbtUnsignedTxMatches;exports.buildPayoutPsbt=n.buildPayoutPsbt;exports.buildPeginTxFromFundedPrePegin=n.buildPeginTxFromFundedPrePegin;exports.buildPrePeginPsbt=n.buildPrePeginPsbt;exports.createPayoutScript=n.createPayoutScript;exports.extractPayoutSignature=n.extractPayoutSignature;exports.buildPeginInputPsbt=S.buildPeginInputPsbt;exports.extractPeginInputSignature=S.extractPeginInputSignature;exports.finalizePeginInputPsbt=S.finalizePeginInputPsbt;exports.buildNoPayoutPsbt=E.buildNoPayoutPsbt;exports.buildRefundPsbt=E.buildRefundPsbt;exports.deriveBip86ScriptPubKeyHex=r.deriveBip86ScriptPubKeyHex;exports.deriveNativeSegwitAddress=r.deriveNativeSegwitAddress;exports.deriveTaprootAddress=r.deriveTaprootAddress;exports.ensureHexPrefix=r.ensureHexPrefix;exports.formatSatoshisToBtc=r.formatSatoshisToBtc;exports.getNetwork=r.getNetwork;exports.getSortedXOnlyPubkeys=r.getSortedXOnlyPubkeys;exports.hexToUint8Array=r.hexToUint8Array;exports.isAddressFromPublicKey=r.isAddressFromPublicKey;exports.isValidHex=r.isValidHex;exports.processPublicKeyToXOnly=r.processPublicKeyToXOnly;exports.stripHexPrefix=r.stripHexPrefix;exports.toXOnly=r.toXOnly;exports.uint8ArrayToHex=r.uint8ArrayToHex;exports.validateWalletPubkey=r.validateWalletPubkey;exports.createTaprootScriptPathSignOptions=_.createTaprootScriptPathSignOptions;exports.BITCOIN_ADDRESS_RE=d.BITCOIN_ADDRESS_RE;exports.HEX_RE=d.HEX_RE;exports.KNOWN_SCRIPT_PREFIXES=d.KNOWN_SCRIPT_PREFIXES;exports.MAX_REASONABLE_FEE_SATS=d.MAX_REASONABLE_FEE_SATS;exports.TXID_RE=d.TXID_RE;exports.PeginManager=u.PeginManager;exports.VAULT_APP_NAME=u.VAULT_APP_NAME;exports.buildFundingOutpointsCommitment=u.buildFundingOutpointsCommitment;exports.buildVaultContext=u.buildVaultContext;exports.computeWotsBlockPublicKeysHash=u.computeWotsBlockPublicKeysHash;exports.deriveVaultRoot=u.deriveVaultRoot;exports.deriveWotsBlocksFromSeed=u.deriveWotsBlocksFromSeed;exports.PayoutManager=g.PayoutManager;exports.computeHashlock=g.computeHashlock;exports.validateSecretAgainstHashlock=g.validateSecretAgainstHashlock;exports.ApplicationRegistryABI=R.ApplicationRegistryABI;exports.ProtocolParamsABI=R.ProtocolParamsABI;exports.BTCVaultRegistryABI=m.BTCVaultRegistryABI;exports.CONTRACT_ERRORS=P.CONTRACT_ERRORS;exports.extractErrorData=P.extractErrorData;exports.getContractErrorMessage=P.getContractErrorMessage;exports.handleContractError=P.handleContractError;exports.isKnownContractError=P.isKnownContractError;exports.BitcoinScriptType=i.BitcoinScriptType;exports.applyChangeOutputPolicy=i.applyChangeOutputPolicy;exports.calculateBtcTxHash=i.calculateBtcTxHash;exports.computeChangeOutputFeeSats=i.computeChangeOutputFeeSats;exports.computeMaxDeposit=i.computeMaxDeposit;exports.computePeginBaseFeeSats=i.computePeginBaseFeeSats;exports.getDustThreshold=i.getDustThreshold;exports.getPsbtInputFields=i.getPsbtInputFields;exports.getScriptType=i.getScriptType;exports.selectUtxosForPegin=i.selectUtxosForPegin;exports.shouldAddChangeOutput=i.shouldAddChangeOutput;exports.waitForTransactionReceiptSmartAware=i.waitForTransactionReceiptSmartAware;exports.BTC_DUST_SAT=a.BTC_DUST_SAT;exports.DUST_THRESHOLD=a.DUST_THRESHOLD;exports.FEE_SAFETY_MARGIN=a.FEE_SAFETY_MARGIN;exports.LOW_RATE_ESTIMATION_ACCURACY_BUFFER=a.LOW_RATE_ESTIMATION_ACCURACY_BUFFER;exports.MAX_NON_LEGACY_OUTPUT_SIZE=a.MAX_NON_LEGACY_OUTPUT_SIZE;exports.P2TR_INPUT_SIZE=a.P2TR_INPUT_SIZE;exports.PEGIN_AUTH_ANCHOR_OUTPUTS=a.PEGIN_AUTH_ANCHOR_OUTPUTS;exports.PEGIN_FIXED_OUTPUTS=a.PEGIN_FIXED_OUTPUTS;exports.SPLIT_TX_FEE_SAFETY_MULTIPLIER=a.SPLIT_TX_FEE_SAFETY_MULTIPLIER;exports.TX_BUFFER_SIZE_OVERHEAD=a.TX_BUFFER_SIZE_OVERHEAD;exports.WALLET_RELAY_FEE_RATE_THRESHOLD=a.WALLET_RELAY_FEE_RATE_THRESHOLD;exports.fundPeginTransaction=a.fundPeginTransaction;exports.parseUnfundedWasmTransaction=a.parseUnfundedWasmTransaction;exports.peginOutputCount=a.peginOutputCount;exports.rateBasedTxBufferFee=a.rateBasedTxBufferFee;exports.UtxoNotAvailableError=l.UtxoNotAvailableError;exports.assertUtxosAvailable=l.assertUtxosAvailable;exports.collectReservedUtxoRefs=l.collectReservedUtxoRefs;exports.extractInputsFromTransaction=l.extractInputsFromTransaction;exports.selectUtxosForDeposit=l.selectUtxosForDeposit;exports.validateUtxosAvailable=l.validateUtxosAvailable;exports.MEMPOOL_API_URLS=s.MEMPOOL_API_URLS;exports.getAddressTxs=s.getAddressTxs;exports.getAddressUtxos=s.getAddressUtxos;exports.getMempoolApiUrl=s.getMempoolApiUrl;exports.getNetworkFees=s.getNetworkFees;exports.getTxHex=s.getTxHex;exports.getTxInfo=s.getTxInfo;exports.getUtxoInfo=s.getUtxoInfo;exports.pushTx=s.pushTx;exports.ServerIdentityError=t.ServerIdentityError;exports.VaultProviderRpcClient=t.VaultProviderRpcClient;exports.ViemProtocolParamsReader=t.ViemProtocolParamsReader;exports.ViemUniversalChallengerReader=t.ViemUniversalChallengerReader;exports.ViemVaultKeeperReader=t.ViemVaultKeeperReader;exports.ViemVaultRegistryReader=t.ViemVaultRegistryReader;exports.VpResponseValidationError=t.VpResponseValidationError;exports.VpTokenRegistry=t.VpTokenRegistry;exports.batchPollByProvider=t.batchPollByProvider;exports.createAuthenticatedVpClient=t.createAuthenticatedVpClient;exports.primeVpTokenRegistry=t.primeVpTokenRegistry;exports.resolveProtocolAddresses=t.resolveProtocolAddresses;exports.validateOffchainParams=t.validateOffchainParams;exports.validatePegInConfiguration=t.validatePegInConfiguration;exports.validateRequestDepositorClaimerArtifactsResponse=t.validateRequestDepositorClaimerArtifactsResponse;exports.validateTBVProtocolParams=t.validateTBVProtocolParams;exports.verifyServerIdentity=t.verifyServerIdentity;exports.vpTokenRegistry=t.vpTokenRegistry;exports.DaemonStatus=o.DaemonStatus;exports.JSON_RPC_ERROR_CODES=o.JSON_RPC_ERROR_CODES;exports.JsonRpcClient=o.JsonRpcClient;exports.JsonRpcError=o.JsonRpcError;exports.POST_WOTS_STATUSES=o.POST_WOTS_STATUSES;exports.PRE_DEPOSITOR_SIGNATURES_STATES=o.PRE_DEPOSITOR_SIGNATURES_STATES;exports.RpcErrorCode=o.RpcErrorCode;exports.VP_BATCH_MAX_SIZE=o.VP_BATCH_MAX_SIZE;exports.VP_TERMINAL_FAILURE_STATUSES=o.VP_TERMINAL_FAILURE_STATUSES;exports.VP_TRANSIENT_STATUSES=o.VP_TRANSIENT_STATUSES;exports.isWotsMismatchError=A.isWotsMismatchError;exports.parseFundingOutpointsFromTx=A.parseFundingOutpointsFromTx;exports.BIP68NotMatureError=e.BIP68NotMatureError;exports.ClaimerPegoutStatusValue=e.ClaimerPegoutStatusValue;exports.REFUND_VSIZE=e.REFUND_VSIZE;exports.RegisteredVaultVersionMismatchError=e.RegisteredVaultVersionMismatchError;exports.activateVault=e.activateVault;exports.buildAndBroadcastRefund=e.buildAndBroadcastRefund;exports.estimateRefundFeeSats=e.estimateRefundFeeSats;exports.isDepositAmountValid=e.isDepositAmountValid;exports.isPegoutTerminalStatus=e.isPegoutTerminalStatus;exports.isRecognizedPegoutStatus=e.isRecognizedPegoutStatus;exports.isRegisteredVaultVersionMismatchError=e.isRegisteredVaultVersionMismatchError;exports.runDepositorPresignFlow=e.runDepositorPresignFlow;exports.signDepositorGraph=e.signDepositorGraph;exports.submitWotsPublicKey=e.submitWotsPublicKey;exports.validateDepositAmount=e.validateDepositAmount;exports.validateMultiVaultDepositInputs=e.validateMultiVaultDepositInputs;exports.validateOnChainParticipantKeys=e.validateOnChainParticipantKeys;exports.validateProviderSelection=e.validateProviderSelection;exports.validateRemainingCapacity=e.validateRemainingCapacity;exports.validateVaultAmounts=e.validateVaultAmounts;exports.validateVaultProviderPubkey=e.validateVaultProviderPubkey;exports.verifyRegisteredVaultVersions=e.verifyRegisteredVaultVersions;exports.waitForPeginStatus=e.waitForPeginStatus;exports.ContractStatus=T.ContractStatus;exports.PeginAction=T.PeginAction;exports.canPerformAction=T.canPerformAction;exports.getPeginProtocolState=T.getPeginProtocolState;
|
|
2
2
|
//# sourceMappingURL=index.cjs.map
|
package/dist/tbv/index.js
CHANGED
|
@@ -1,13 +1,13 @@
|
|
|
1
|
-
import { a as s, b as t, c as r } from "../challengeAssert-
|
|
1
|
+
import { a as s, b as t, c as r } from "../challengeAssert-CBp4mEs0.js";
|
|
2
2
|
import { computeMinClaimValue as i, deriveVaultId as n, expandAuthAnchor as u, expandHashlockSecret as l, expandWotsSeed as p } from "@babylonlabs-io/babylon-tbv-rust-wasm";
|
|
3
|
-
import { c as
|
|
4
|
-
import {
|
|
5
|
-
import {
|
|
3
|
+
import { P, c, f as T, d as S, a as g, b as E, g as m, e as R } from "../assertPsbtUnsignedTxMatches-mTAnLhCz.js";
|
|
4
|
+
import { b as _, e as x, f } from "../peginInput-BPRB9tUi.js";
|
|
5
|
+
import { a as v, b as I } from "../noPayout-qbaSEKGC.js";
|
|
6
6
|
import { d as V, a as y, b as O, e as h, f as U, j as F, g as B, h as N, i as D, c as M, p as H, s as L, t as k, u as W, v as X } from "../bitcoin-B5aNKtsk.js";
|
|
7
7
|
import { c as K } from "../signing-DaLvGwQe.js";
|
|
8
8
|
import { B as Y, H as Z, K as J, M as j, T as z } from "../validation-CxqROCno.js";
|
|
9
|
-
import { P as Q, V as $, b as aa, a as ea, c as sa, e as ta, d as ra } from "../PeginManager-
|
|
10
|
-
import { P as ia, c as na, v as ua } from "../PayoutManager-
|
|
9
|
+
import { P as Q, V as $, b as aa, a as ea, c as sa, e as ta, d as ra } from "../PeginManager-Cp2Tn5sH.js";
|
|
10
|
+
import { P as ia, c as na, v as ua } from "../PayoutManager-D29D-K-V.js";
|
|
11
11
|
import { A as pa, P as da } from "../ProtocolParams.abi-C2brDWTI.js";
|
|
12
12
|
import { B as ca } from "../BTCVaultRegistry.abi-Cq9-JlqT.js";
|
|
13
13
|
import { C as Sa, e as ga, g as Ea, h as ma, i as Ra } from "../errors-CznAK5NB.js";
|
|
@@ -18,7 +18,7 @@ import { M as te, g as re, a as oe, b as ie, c as ne, d as ue, e as le, f as pe,
|
|
|
18
18
|
import { S as ce, V as Te, j as Se, k as ge, l as Ee, m as me, a as Re, d as Ae, b as _e, f as xe, p as fe, r as be, g as ve, h as Ie, v as Ce, i as Ve, c as ye, e as Oe } from "../vault-registry-reader-BrARgFre.js";
|
|
19
19
|
import { D as Ue, b as Fe, J as Be, a as Ne, d as De, P as Me, R as He, e as Le, c as ke, V as We } from "../types-TOmEvvRy.js";
|
|
20
20
|
import { i as we, p as Ke } from "../errors-9AkghWyk.js";
|
|
21
|
-
import { B as Ye, C as Ze, p as Je, R as je, a as ze, n as qe, o as Qe, i as $e, m as as, l as es, j as ss, r as ts, b as rs, s as os, v as is, g as ns, h as us, d as ls, c as ps, e as ds, f as Ps, k as cs, w as Ts } from "../buildAndBroadcastRefund-
|
|
21
|
+
import { B as Ye, C as Ze, p as Je, R as je, a as ze, n as qe, o as Qe, i as $e, m as as, l as es, j as ss, r as ts, b as rs, s as os, v as is, g as ns, h as us, d as ls, c as ps, e as ds, f as Ps, k as cs, w as Ts } from "../buildAndBroadcastRefund-B5cOyUzj.js";
|
|
22
22
|
import { C as gs, P as Es, c as ms, g as Rs } from "../peginState-CBAlxgXk.js";
|
|
23
23
|
export {
|
|
24
24
|
pa as ApplicationRegistryABI,
|
|
@@ -51,7 +51,7 @@ export {
|
|
|
51
51
|
Es as PeginAction,
|
|
52
52
|
Q as PeginManager,
|
|
53
53
|
da as ProtocolParamsABI,
|
|
54
|
-
|
|
54
|
+
P as PsbtSubstitutionError,
|
|
55
55
|
Je as REFUND_VSIZE,
|
|
56
56
|
je as RegisteredVaultVersionMismatchError,
|
|
57
57
|
He as RpcErrorCode,
|
|
@@ -74,20 +74,20 @@ export {
|
|
|
74
74
|
Ka as WALLET_RELAY_FEE_RATE_THRESHOLD,
|
|
75
75
|
ze as activateVault,
|
|
76
76
|
xa as applyChangeOutputPolicy,
|
|
77
|
-
|
|
78
|
-
|
|
77
|
+
c as assertPayoutOutputMatchesRegistered,
|
|
78
|
+
T as assertPsbtUnsignedTxMatches,
|
|
79
79
|
qa as assertUtxosAvailable,
|
|
80
80
|
_e as batchPollByProvider,
|
|
81
81
|
qe as buildAndBroadcastRefund,
|
|
82
82
|
s as buildChallengeAssertPsbt,
|
|
83
83
|
t as buildDepositorPayoutPsbt,
|
|
84
84
|
aa as buildFundingOutpointsCommitment,
|
|
85
|
-
|
|
86
|
-
|
|
87
|
-
|
|
88
|
-
|
|
89
|
-
|
|
90
|
-
|
|
85
|
+
v as buildNoPayoutPsbt,
|
|
86
|
+
S as buildPayoutPsbt,
|
|
87
|
+
_ as buildPeginInputPsbt,
|
|
88
|
+
g as buildPeginTxFromFundedPrePegin,
|
|
89
|
+
E as buildPrePeginPsbt,
|
|
90
|
+
I as buildRefundPsbt,
|
|
91
91
|
ea as buildVaultContext,
|
|
92
92
|
fa as calculateBtcTxHash,
|
|
93
93
|
ms as canPerformAction,
|
|
@@ -100,7 +100,7 @@ export {
|
|
|
100
100
|
Ia as computePeginBaseFeeSats,
|
|
101
101
|
sa as computeWotsBlockPublicKeysHash,
|
|
102
102
|
xe as createAuthenticatedVpClient,
|
|
103
|
-
|
|
103
|
+
m as createPayoutScript,
|
|
104
104
|
K as createTaprootScriptPathSignOptions,
|
|
105
105
|
V as deriveBip86ScriptPubKeyHex,
|
|
106
106
|
y as deriveNativeSegwitAddress,
|
|
@@ -115,9 +115,9 @@ export {
|
|
|
115
115
|
p as expandWotsSeed,
|
|
116
116
|
ga as extractErrorData,
|
|
117
117
|
$a as extractInputsFromTransaction,
|
|
118
|
-
|
|
119
|
-
|
|
120
|
-
|
|
118
|
+
R as extractPayoutSignature,
|
|
119
|
+
x as extractPeginInputSignature,
|
|
120
|
+
f as finalizePeginInputPsbt,
|
|
121
121
|
U as formatSatoshisToBtc,
|
|
122
122
|
Ga as fundPeginTransaction,
|
|
123
123
|
re as getAddressTxs,
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@babylonlabs-io/ts-sdk",
|
|
3
|
-
"version": "0.38.
|
|
3
|
+
"version": "0.38.1",
|
|
4
4
|
"type": "module",
|
|
5
5
|
"main": "./dist/index.js",
|
|
6
6
|
"types": "./dist/index.d.ts",
|
|
@@ -96,9 +96,9 @@
|
|
|
96
96
|
"license": "ISC",
|
|
97
97
|
"description": "TypeScript SDK for Babylon protocol integrations",
|
|
98
98
|
"dependencies": {
|
|
99
|
-
"@babylonlabs-io/babylon-tbv-rust-wasm": "0.10.0",
|
|
100
99
|
"@noble/hashes": "2.0.1",
|
|
101
|
-
"buffer": "6.0.3"
|
|
100
|
+
"buffer": "6.0.3",
|
|
101
|
+
"@babylonlabs-io/babylon-tbv-rust-wasm": "0.1.0"
|
|
102
102
|
},
|
|
103
103
|
"peerDependencies": {
|
|
104
104
|
"@bitcoin-js/tiny-secp256k1-asmjs": "2.2.3",
|
|
@@ -1,2 +0,0 @@
|
|
|
1
|
-
"use strict";var k=Object.defineProperty;var H=(e,t,s)=>t in e?k(e,t,{enumerable:!0,configurable:!0,writable:!0,value:s}):e[t]=s;var b=(e,t,s)=>H(e,typeof t!="symbol"?t+"":t,s);const w=require("./sha2-DsrLC4NM.cjs"),y=require("./signing-Bnsro0hE.cjs");require("@babylonlabs-io/babylon-tbv-rust-wasm");const i=require("./assertPsbtUnsignedTxMatches-CagW7XqW.cjs"),h=require("./bitcoin-CHfKAhcI.cjs"),x=66;function p(e){if(!e.startsWith("0x")&&!e.startsWith("0X"))throw new Error("Expected 0x-prefixed hex string");const t=e.slice(2);if(t.length%2!==0)throw new Error(`Hex string has odd length: ${t.length}`);if(!/^[0-9a-fA-F]*$/.test(t))throw new Error("Hex string contains non-hex characters");const s=new Uint8Array(t.length/2);for(let o=0;o<s.length;o++)s[o]=parseInt(t.slice(o*2,o*2+2),16);return s}function f(e){return`0x${Array.from(e).map(t=>t.toString(16).padStart(2,"0")).join("")}`}function g(e,t){if(e.length!==x)throw new Error(`${t} must be exactly 32 bytes (${x} hex chars with 0x prefix), got ${e.length}`)}function d(e){g(e,"Secret");const t=p(e),s=w.sha256(t);return f(s)}function T(e,t){return g(e,"Secret"),g(t,"Hashlock"),p(t),d(e).toLowerCase()===t.toLowerCase()}class B{constructor(t){b(this,"config");this.config=t}async signPayoutTransaction(t){this.validatePayoutOutputs(t.payoutTxHex,t.registeredPayoutScriptPubKey);const s=await this.config.btcWallet.getPublicKeyHex(),{depositorPubkey:o}=h.validateWalletPubkey(s,t.depositorBtcPubkey),r=await i.buildPayoutPsbt({payoutTxHex:t.payoutTxHex,peginTxHex:t.peginTxHex,assertTxHex:t.assertTxHex,depositorBtcPubkey:o,vaultProviderBtcPubkey:t.vaultProviderBtcPubkey,vaultKeeperBtcPubkeys:t.vaultKeeperBtcPubkeys,universalChallengerBtcPubkeys:t.universalChallengerBtcPubkeys,timelockPegin:t.timelockPegin,network:this.config.network}),a=await this.config.btcWallet.signPsbt(r.psbtHex,y.createTaprootScriptPathSignOptions(s,1));return i.assertPsbtUnsignedTxMatches({requestedPsbtHex:r.psbtHex,returnedPsbtHex:a}),{signature:i.extractPayoutSignature(a,o),depositorBtcPubkey:o}}getNetwork(){return this.config.network}supportsBatchSigning(){return typeof this.config.btcWallet.signPsbts=="function"}async signPayoutTransactionsBatch(t){if(!this.supportsBatchSigning())throw new Error("Wallet does not support batch signing (signPsbts method not available)");const s=await this.config.btcWallet.getPublicKeyHex(),o=[],r=[],a=[];for(const n of t){this.validatePayoutOutputs(n.payoutTxHex,n.registeredPayoutScriptPubKey);const{depositorPubkey:c}=h.validateWalletPubkey(s,n.depositorBtcPubkey);a.push(c);const l=await i.buildPayoutPsbt({payoutTxHex:n.payoutTxHex,peginTxHex:n.peginTxHex,assertTxHex:n.assertTxHex,depositorBtcPubkey:c,vaultProviderBtcPubkey:n.vaultProviderBtcPubkey,vaultKeeperBtcPubkeys:n.vaultKeeperBtcPubkeys,universalChallengerBtcPubkeys:n.universalChallengerBtcPubkeys,timelockPegin:n.timelockPegin,network:this.config.network});o.push(l.psbtHex),r.push(y.createTaprootScriptPathSignOptions(s,1))}const u=await this.config.btcWallet.signPsbts(o,r);if(u.length!==t.length)throw new Error(`Expected ${t.length} signed PSBTs but received ${u.length}`);const P=[];for(let n=0;n<t.length;n++){const c=a[n];i.assertPsbtUnsignedTxMatches({requestedPsbtHex:o[n],returnedPsbtHex:u[n]});const l=i.extractPayoutSignature(u[n],c);P.push({payoutSignature:l,depositorBtcPubkey:c})}return P}validatePayoutOutputs(t,s){i.assertPayoutOutputMatchesRegistered(t,s)}}exports.PayoutManager=B;exports.computeHashlock=d;exports.validateSecretAgainstHashlock=T;
|
|
2
|
-
//# sourceMappingURL=PayoutManager-BfT0V-tm.cjs.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"PayoutManager-BfT0V-tm.cjs","sources":["../src/tbv/core/services/htlc/index.ts","../src/tbv/core/managers/PayoutManager.ts"],"sourcesContent":["/**\n * HTLC Secret / Hashlock Utilities\n *\n * Pure functions for computing and validating SHA-256 hashlocks used in the\n * vault deposit protocol's HTLC (Hash Time Lock Contract).\n *\n * The SDK does NOT generate secrets — that is the caller's responsibility.\n * Today callers use `crypto.getRandomValues(32)`; when the `deriveContextHash`\n * wallet API ships, callers will use `wallet.deriveContextHash(\"babylon-btc-vault\", ctx)`.\n * These utilities work identically regardless of how the secret was produced.\n *\n * On-chain contract validation (BTCVaultRegistry.activateVaultWithSecret):\n * if (sha256(abi.encodePacked(s)) != hashlock) revert InvalidSecret();\n *\n * @module htlc\n */\n\nimport { sha256 } from \"@noble/hashes/sha2.js\";\nimport type { Hex } from \"viem\";\n\n/** Expected hex length for a 0x-prefixed bytes32 value. */\nconst HEX_BYTES32_LENGTH = 66; // \"0x\" + 64 hex chars\n\n/**\n * Decode a 0x-prefixed hex string to bytes, with strict validation.\n * @throws if the input is not a valid 0x-prefixed hex string\n */\nfunction hexToBytes(hex: Hex): Uint8Array {\n if (!hex.startsWith(\"0x\") && !hex.startsWith(\"0X\")) {\n throw new Error(\"Expected 0x-prefixed hex string\");\n }\n const clean = hex.slice(2);\n if (clean.length % 2 !== 0) {\n throw new Error(`Hex string has odd length: ${clean.length}`);\n }\n if (!/^[0-9a-fA-F]*$/.test(clean)) {\n throw new Error(\"Hex string contains non-hex characters\");\n }\n const bytes = new Uint8Array(clean.length / 2);\n for (let i = 0; i < bytes.length; i++) {\n bytes[i] = parseInt(clean.slice(i * 2, i * 2 + 2), 16);\n }\n return bytes;\n}\n\n/**\n * Encode a Uint8Array as a 0x-prefixed lowercase hex string.\n */\nfunction bytesToHex(bytes: Uint8Array): Hex {\n return `0x${Array.from(bytes)\n .map((b) => b.toString(16).padStart(2, \"0\"))\n .join(\"\")}`;\n}\n\n/**\n * Validate that a value is a 0x-prefixed bytes32 (exactly 32 bytes).\n * @throws if the value is not exactly 32 bytes\n */\nfunction assertBytes32(value: Hex, label: string): void {\n if (value.length !== HEX_BYTES32_LENGTH) {\n throw new Error(\n `${label} must be exactly 32 bytes (${HEX_BYTES32_LENGTH} hex chars with 0x prefix), got ${value.length}`,\n );\n }\n}\n\n/**\n * Compute the SHA-256 hashlock from a secret preimage.\n *\n * Matches the on-chain validation: `sha256(abi.encodePacked(s))` where `s` is a `bytes32`.\n * `abi.encodePacked(bytes32)` is just the raw 32 bytes — no ABI padding.\n *\n * @param secret - 0x-prefixed bytes32 secret (66 hex chars)\n * @returns 0x-prefixed bytes32 SHA-256 hash\n * @throws if secret is not exactly 32 bytes\n */\nexport function computeHashlock(secret: Hex): Hex {\n assertBytes32(secret, \"Secret\");\n const secretBytes = hexToBytes(secret);\n const hash = sha256(secretBytes);\n return bytesToHex(hash);\n}\n\n/**\n * Validate that a secret's SHA-256 hash matches the expected hashlock.\n *\n * Use this for client-side pre-validation before sending the activation\n * transaction to avoid wasting gas on a contract revert.\n *\n * @param secret - 0x-prefixed bytes32 secret (66 hex chars)\n * @param hashlock - 0x-prefixed bytes32 expected hashlock from the vault\n * @returns true if SHA-256(secret) matches the hashlock\n * @throws if secret or hashlock is not exactly 32 bytes\n */\nexport function validateSecretAgainstHashlock(\n secret: Hex,\n hashlock: Hex,\n): boolean {\n assertBytes32(secret, \"Secret\");\n assertBytes32(hashlock, \"Hashlock\");\n // Validate hashlock is valid hex (secret is validated inside computeHashlock)\n hexToBytes(hashlock);\n\n const computed = computeHashlock(secret);\n return computed.toLowerCase() === hashlock.toLowerCase();\n}\n","/**\n * Payout Manager\n *\n * High-level manager that orchestrates the payout signing flow by coordinating\n * SDK primitives ({@link buildPayoutPsbt}, {@link extractPayoutSignature})\n * with a user-provided Bitcoin wallet.\n *\n * The Payout transaction references the Assert transaction (input 1).\n *\n * @see {@link PeginManager} - For Steps 1–4 of the peg-in flow\n * @see {@link buildPayoutPsbt} - Lower-level primitive for custom implementations\n * @see {@link extractPayoutSignature} - Extract signatures from signed PSBTs\n *\n * @module managers/PayoutManager\n */\n\nimport type {\n BitcoinWallet,\n SignPsbtOptions,\n} from \"../../../shared/wallets\";\nimport { createTaprootScriptPathSignOptions } from \"../utils/signing\";\nimport {\n assertPayoutOutputMatchesRegistered,\n assertPsbtUnsignedTxMatches,\n buildPayoutPsbt,\n extractPayoutSignature,\n validateWalletPubkey,\n type Network,\n} from \"../primitives\";\n\n/**\n * Configuration for the PayoutManager.\n */\nexport interface PayoutManagerConfig {\n /**\n * Bitcoin network to use for transactions.\n */\n network: Network;\n\n /**\n * Bitcoin wallet for signing payout transactions.\n */\n btcWallet: BitcoinWallet;\n}\n\n/**\n * Base parameters shared by both payout transaction types.\n */\ninterface SignPayoutBaseParams {\n /**\n * Peg-in transaction hex.\n * The original transaction that created the vault output being spent.\n */\n peginTxHex: string;\n\n /**\n * Vault provider's BTC public key (x-only, 64-char hex).\n */\n vaultProviderBtcPubkey: string;\n\n /**\n * Vault keeper BTC public keys (x-only, 64-char hex).\n */\n vaultKeeperBtcPubkeys: string[];\n\n /**\n * Universal challenger BTC public keys (x-only, 64-char hex).\n */\n universalChallengerBtcPubkeys: string[];\n\n /**\n * CSV timelock in blocks for the PegIn output.\n */\n timelockPegin: number;\n\n /**\n * Depositor's BTC public key (x-only, 64-char hex). This MUST be the\n * key registered on-chain for the vault — typically read from\n * `BTCVaultRegistry.getBtcVaultBasicInfo(...).depositorBtcPubKey`.\n *\n * Required: omitting it would degrade `validateWalletPubkey` to a\n * self-comparison, allowing the wrong wallet to produce a signature\n * over a script tree that doesn't match the on-chain UTXO.\n */\n depositorBtcPubkey: string;\n\n /**\n * The on-chain registered depositor payout scriptPubKey (hex, with or without 0x prefix).\n * Used to validate that the VP-provided payout transaction actually pays to the\n * correct depositor payout address before signing.\n */\n registeredPayoutScriptPubKey: string;\n}\n\n/**\n * Parameters for signing a Payout transaction.\n *\n * Payout is used in the challenge path after Assert, when the claimer proves validity.\n * Input 1 references the Assert transaction.\n */\nexport interface SignPayoutParams extends SignPayoutBaseParams {\n /**\n * Payout transaction hex (unsigned).\n * This is the transaction from the vault provider that needs depositor signature.\n */\n payoutTxHex: string;\n\n /**\n * Assert transaction hex.\n * Payout input 1 references Assert output 0.\n */\n assertTxHex: string;\n}\n\n/**\n * Result of signing a payout transaction.\n */\nexport interface PayoutSignatureResult {\n /**\n * 64-byte Schnorr signature (128 hex characters).\n */\n signature: string;\n\n /**\n * Depositor's BTC public key used for signing.\n */\n depositorBtcPubkey: string;\n}\n\n/**\n * High-level manager for payout transaction signing.\n *\n * @remarks\n * After registering your peg-in on Ethereum (Step 3), the vault provider prepares\n * claim/payout transaction pairs. You must sign each payout transaction using this\n * manager and submit the signatures to the vault provider's RPC API.\n *\n * **What happens internally:**\n * 1. Validates your wallet's public key matches the vault's depositor\n * 2. Builds an unsigned PSBT with taproot script path spend info\n * 3. Signs input 0 (the vault UTXO) with your wallet\n * 4. Extracts the 64-byte Schnorr signature\n *\n * **Note:** The payout transaction has 2 inputs. PayoutManager only signs input 0\n * (from the peg-in tx). Input 1 (from the assert tx) is signed by the vault provider.\n *\n * @see {@link PeginManager} - For the complete peg-in flow context\n * @see {@link buildPayoutPsbt} - Lower-level primitive used internally\n * @see {@link extractPayoutSignature} - Signature extraction primitive\n */\nexport class PayoutManager {\n private readonly config: PayoutManagerConfig;\n\n /**\n * Creates a new PayoutManager instance.\n *\n * @param config - Manager configuration including wallet\n */\n constructor(config: PayoutManagerConfig) {\n this.config = config;\n }\n\n /**\n * Signs a Payout transaction and extracts the Schnorr signature.\n *\n * Flow:\n * 1. Vault provider submits Claim transaction\n * 2. Claimer submits Assert transaction to prove validity\n * 3. Payout can be executed (references Assert tx)\n *\n * This method orchestrates the following steps:\n * 1. Get wallet's public key and convert to x-only format\n * 2. Validate wallet pubkey matches on-chain depositor pubkey (if provided)\n * 3. Build unsigned PSBT using primitives\n * 4. Sign PSBT via btcWallet.signPsbt()\n * 5. Extract 64-byte Schnorr signature using primitives\n *\n * The returned signature can be submitted to the vault provider API.\n *\n * @param params - Payout signing parameters\n * @returns Signature result with 64-byte Schnorr signature and depositor pubkey\n * @throws Error if wallet pubkey doesn't match depositor pubkey\n * @throws Error if wallet operations fail or signature extraction fails\n */\n async signPayoutTransaction(\n params: SignPayoutParams,\n ): Promise<PayoutSignatureResult> {\n // Validate payout TX outputs pay to the registered depositor payout address\n this.validatePayoutOutputs(\n params.payoutTxHex,\n params.registeredPayoutScriptPubKey,\n );\n\n // Validate wallet pubkey matches depositor and get both formats\n const walletPubkeyRaw = await this.config.btcWallet.getPublicKeyHex();\n const { depositorPubkey } = validateWalletPubkey(\n walletPubkeyRaw,\n params.depositorBtcPubkey,\n );\n\n // Build unsigned PSBT for Payout (uses Assert tx)\n const payoutPsbt = await buildPayoutPsbt({\n payoutTxHex: params.payoutTxHex,\n peginTxHex: params.peginTxHex,\n assertTxHex: params.assertTxHex,\n depositorBtcPubkey: depositorPubkey,\n vaultProviderBtcPubkey: params.vaultProviderBtcPubkey,\n vaultKeeperBtcPubkeys: params.vaultKeeperBtcPubkeys,\n universalChallengerBtcPubkeys: params.universalChallengerBtcPubkeys,\n timelockPegin: params.timelockPegin,\n network: this.config.network,\n });\n\n // Sign PSBT via wallet (Taproot script-path spend, input 0 only)\n const signedPsbtHex = await this.config.btcWallet.signPsbt(\n payoutPsbt.psbtHex,\n createTaprootScriptPathSignOptions(walletPubkeyRaw, 1),\n );\n\n assertPsbtUnsignedTxMatches({\n requestedPsbtHex: payoutPsbt.psbtHex,\n returnedPsbtHex: signedPsbtHex,\n });\n\n // Extract Schnorr signature\n const signature = extractPayoutSignature(signedPsbtHex, depositorPubkey);\n\n return {\n signature,\n depositorBtcPubkey: depositorPubkey,\n };\n }\n\n /**\n * Gets the configured Bitcoin network.\n *\n * @returns The Bitcoin network (mainnet, testnet, signet, regtest)\n */\n getNetwork(): Network {\n return this.config.network;\n }\n\n /**\n * Checks if the wallet supports batch signing (signPsbts).\n *\n * @returns true if batch signing is supported\n */\n supportsBatchSigning(): boolean {\n return typeof this.config.btcWallet.signPsbts === \"function\";\n }\n\n /**\n * Batch signs multiple payout transactions (1 per claimer).\n * This allows signing all transactions with a single wallet interaction.\n *\n * @param transactions - Array of payout params to sign\n * @returns Array of signature results matching input order\n * @throws Error if wallet doesn't support batch signing\n * @throws Error if any signing operation fails\n */\n async signPayoutTransactionsBatch(\n transactions: SignPayoutParams[],\n ): Promise<\n Array<{\n payoutSignature: string;\n depositorBtcPubkey: string;\n }>\n > {\n if (!this.supportsBatchSigning()) {\n throw new Error(\n \"Wallet does not support batch signing (signPsbts method not available)\",\n );\n }\n\n // Get wallet pubkey once\n const walletPubkeyRaw = await this.config.btcWallet.getPublicKeyHex();\n\n // Build all PSBTs (1 per claimer)\n const psbtsToSign: string[] = [];\n const signOptions: SignPsbtOptions[] = [];\n const depositorPubkeys: string[] = [];\n\n for (const tx of transactions) {\n // Validate payout TX outputs pay to the registered depositor payout address\n this.validatePayoutOutputs(\n tx.payoutTxHex,\n tx.registeredPayoutScriptPubKey,\n );\n\n // Validate wallet pubkey matches depositor\n const { depositorPubkey } = validateWalletPubkey(\n walletPubkeyRaw,\n tx.depositorBtcPubkey,\n );\n depositorPubkeys.push(depositorPubkey);\n\n // Build Payout PSBT\n const payoutPsbt = await buildPayoutPsbt({\n payoutTxHex: tx.payoutTxHex,\n peginTxHex: tx.peginTxHex,\n assertTxHex: tx.assertTxHex,\n depositorBtcPubkey: depositorPubkey,\n vaultProviderBtcPubkey: tx.vaultProviderBtcPubkey,\n vaultKeeperBtcPubkeys: tx.vaultKeeperBtcPubkeys,\n universalChallengerBtcPubkeys: tx.universalChallengerBtcPubkeys,\n timelockPegin: tx.timelockPegin,\n network: this.config.network,\n });\n psbtsToSign.push(payoutPsbt.psbtHex);\n signOptions.push(createTaprootScriptPathSignOptions(walletPubkeyRaw, 1));\n }\n\n // Batch sign all PSBTs with single wallet interaction\n const signedPsbts = await this.config.btcWallet.signPsbts!(\n psbtsToSign,\n signOptions,\n );\n\n // Validate that wallet returned the expected number of signed PSBTs\n if (signedPsbts.length !== transactions.length) {\n throw new Error(\n `Expected ${transactions.length} signed PSBTs but received ${signedPsbts.length}`,\n );\n }\n\n // Extract signatures from signed PSBTs\n const results: Array<{\n payoutSignature: string;\n depositorBtcPubkey: string;\n }> = [];\n\n for (let i = 0; i < transactions.length; i++) {\n const depositorPubkey = depositorPubkeys[i];\n assertPsbtUnsignedTxMatches({\n requestedPsbtHex: psbtsToSign[i],\n returnedPsbtHex: signedPsbts[i],\n });\n const payoutSignature = extractPayoutSignature(\n signedPsbts[i],\n depositorPubkey,\n );\n\n results.push({\n payoutSignature,\n depositorBtcPubkey: depositorPubkey,\n });\n }\n\n return results;\n }\n\n /**\n * Validates that the payout transaction's largest output pays to the\n * registered depositor payout address (scriptPubKey).\n *\n * This prevents two attack vectors from a malicious vault provider:\n * 1. Substituting a completely different payout address\n * 2. Including a dust output to the correct address while routing\n * the actual funds to an attacker-controlled address\n *\n * @param payoutTxHex - Raw payout transaction hex\n * @param registeredPayoutScriptPubKey - On-chain registered scriptPubKey (hex, with or without 0x prefix)\n * @throws Error if scriptPubKey is invalid hex\n * @throws Error if the largest output does not pay to the registered address\n */\n private validatePayoutOutputs(\n payoutTxHex: string,\n registeredPayoutScriptPubKey: string,\n ): void {\n assertPayoutOutputMatchesRegistered(\n payoutTxHex,\n registeredPayoutScriptPubKey,\n );\n }\n}\n"],"names":["HEX_BYTES32_LENGTH","hexToBytes","hex","clean","bytes","i","bytesToHex","b","assertBytes32","value","label","computeHashlock","secret","secretBytes","hash","sha256","validateSecretAgainstHashlock","hashlock","PayoutManager","config","__publicField","params","walletPubkeyRaw","depositorPubkey","validateWalletPubkey","payoutPsbt","buildPayoutPsbt","signedPsbtHex","createTaprootScriptPathSignOptions","assertPsbtUnsignedTxMatches","extractPayoutSignature","transactions","psbtsToSign","signOptions","depositorPubkeys","tx","signedPsbts","results","payoutSignature","payoutTxHex","registeredPayoutScriptPubKey","assertPayoutOutputMatchesRegistered"],"mappings":"+YAqBMA,EAAqB,GAM3B,SAASC,EAAWC,EAAsB,CACxC,GAAI,CAACA,EAAI,WAAW,IAAI,GAAK,CAACA,EAAI,WAAW,IAAI,EAC/C,MAAM,IAAI,MAAM,iCAAiC,EAEnD,MAAMC,EAAQD,EAAI,MAAM,CAAC,EACzB,GAAIC,EAAM,OAAS,IAAM,EACvB,MAAM,IAAI,MAAM,8BAA8BA,EAAM,MAAM,EAAE,EAE9D,GAAI,CAAC,iBAAiB,KAAKA,CAAK,EAC9B,MAAM,IAAI,MAAM,wCAAwC,EAE1D,MAAMC,EAAQ,IAAI,WAAWD,EAAM,OAAS,CAAC,EAC7C,QAASE,EAAI,EAAGA,EAAID,EAAM,OAAQC,IAChCD,EAAMC,CAAC,EAAI,SAASF,EAAM,MAAME,EAAI,EAAGA,EAAI,EAAI,CAAC,EAAG,EAAE,EAEvD,OAAOD,CACT,CAKA,SAASE,EAAWF,EAAwB,CAC1C,MAAO,KAAK,MAAM,KAAKA,CAAK,EACzB,IAAKG,GAAMA,EAAE,SAAS,EAAE,EAAE,SAAS,EAAG,GAAG,CAAC,EAC1C,KAAK,EAAE,CAAC,EACb,CAMA,SAASC,EAAcC,EAAYC,EAAqB,CACtD,GAAID,EAAM,SAAWT,EACnB,MAAM,IAAI,MACR,GAAGU,CAAK,8BAA8BV,CAAkB,mCAAmCS,EAAM,MAAM,EAAA,CAG7G,CAYO,SAASE,EAAgBC,EAAkB,CAChDJ,EAAcI,EAAQ,QAAQ,EAC9B,MAAMC,EAAcZ,EAAWW,CAAM,EAC/BE,EAAOC,EAAAA,OAAOF,CAAW,EAC/B,OAAOP,EAAWQ,CAAI,CACxB,CAaO,SAASE,EACdJ,EACAK,EACS,CACT,OAAAT,EAAcI,EAAQ,QAAQ,EAC9BJ,EAAcS,EAAU,UAAU,EAElChB,EAAWgB,CAAQ,EAEFN,EAAgBC,CAAM,EACvB,gBAAkBK,EAAS,YAAA,CAC7C,CC6CO,MAAMC,CAAc,CAQzB,YAAYC,EAA6B,CAPxBC,EAAA,eAQf,KAAK,OAASD,CAChB,CAwBA,MAAM,sBACJE,EACgC,CAEhC,KAAK,sBACHA,EAAO,YACPA,EAAO,4BAAA,EAIT,MAAMC,EAAkB,MAAM,KAAK,OAAO,UAAU,gBAAA,EAC9C,CAAE,gBAAAC,GAAoBC,EAAAA,qBAC1BF,EACAD,EAAO,kBAAA,EAIHI,EAAa,MAAMC,kBAAgB,CACvC,YAAaL,EAAO,YACpB,WAAYA,EAAO,WACnB,YAAaA,EAAO,YACpB,mBAAoBE,EACpB,uBAAwBF,EAAO,uBAC/B,sBAAuBA,EAAO,sBAC9B,8BAA+BA,EAAO,8BACtC,cAAeA,EAAO,cACtB,QAAS,KAAK,OAAO,OAAA,CACtB,EAGKM,EAAgB,MAAM,KAAK,OAAO,UAAU,SAChDF,EAAW,QACXG,EAAAA,mCAAmCN,EAAiB,CAAC,CAAA,EAGvDO,OAAAA,8BAA4B,CAC1B,iBAAkBJ,EAAW,QAC7B,gBAAiBE,CAAA,CAClB,EAKM,CACL,UAHgBG,EAAAA,uBAAuBH,EAAeJ,CAAe,EAIrE,mBAAoBA,CAAA,CAExB,CAOA,YAAsB,CACpB,OAAO,KAAK,OAAO,OACrB,CAOA,sBAAgC,CAC9B,OAAO,OAAO,KAAK,OAAO,UAAU,WAAc,UACpD,CAWA,MAAM,4BACJQ,EAMA,CACA,GAAI,CAAC,KAAK,uBACR,MAAM,IAAI,MACR,wEAAA,EAKJ,MAAMT,EAAkB,MAAM,KAAK,OAAO,UAAU,gBAAA,EAG9CU,EAAwB,CAAA,EACxBC,EAAiC,CAAA,EACjCC,EAA6B,CAAA,EAEnC,UAAWC,KAAMJ,EAAc,CAE7B,KAAK,sBACHI,EAAG,YACHA,EAAG,4BAAA,EAIL,KAAM,CAAE,gBAAAZ,GAAoBC,EAAAA,qBAC1BF,EACAa,EAAG,kBAAA,EAELD,EAAiB,KAAKX,CAAe,EAGrC,MAAME,EAAa,MAAMC,kBAAgB,CACvC,YAAaS,EAAG,YAChB,WAAYA,EAAG,WACf,YAAaA,EAAG,YAChB,mBAAoBZ,EACpB,uBAAwBY,EAAG,uBAC3B,sBAAuBA,EAAG,sBAC1B,8BAA+BA,EAAG,8BAClC,cAAeA,EAAG,cAClB,QAAS,KAAK,OAAO,OAAA,CACtB,EACDH,EAAY,KAAKP,EAAW,OAAO,EACnCQ,EAAY,KAAKL,EAAAA,mCAAmCN,EAAiB,CAAC,CAAC,CACzE,CAGA,MAAMc,EAAc,MAAM,KAAK,OAAO,UAAU,UAC9CJ,EACAC,CAAA,EAIF,GAAIG,EAAY,SAAWL,EAAa,OACtC,MAAM,IAAI,MACR,YAAYA,EAAa,MAAM,8BAA8BK,EAAY,MAAM,EAAA,EAKnF,MAAMC,EAGD,CAAA,EAEL,QAAShC,EAAI,EAAGA,EAAI0B,EAAa,OAAQ1B,IAAK,CAC5C,MAAMkB,EAAkBW,EAAiB7B,CAAC,EAC1CwB,8BAA4B,CAC1B,iBAAkBG,EAAY3B,CAAC,EAC/B,gBAAiB+B,EAAY/B,CAAC,CAAA,CAC/B,EACD,MAAMiC,EAAkBR,EAAAA,uBACtBM,EAAY/B,CAAC,EACbkB,CAAA,EAGFc,EAAQ,KAAK,CACX,gBAAAC,EACA,mBAAoBf,CAAA,CACrB,CACH,CAEA,OAAOc,CACT,CAgBQ,sBACNE,EACAC,EACM,CACNC,EAAAA,oCACEF,EACAC,CAAA,CAEJ,CACF"}
|
|
@@ -1,208 +0,0 @@
|
|
|
1
|
-
var f = Object.defineProperty;
|
|
2
|
-
var w = (e, t, s) => t in e ? f(e, t, { enumerable: !0, configurable: !0, writable: !0, value: s }) : e[t] = s;
|
|
3
|
-
var P = (e, t, s) => w(e, typeof t != "symbol" ? t + "" : t, s);
|
|
4
|
-
import { s as H } from "./sha2-BYVxyZzX.js";
|
|
5
|
-
import { c as b } from "./signing-DaLvGwQe.js";
|
|
6
|
-
import "@babylonlabs-io/babylon-tbv-rust-wasm";
|
|
7
|
-
import { b as y, c as p, e as h, a as B } from "./assertPsbtUnsignedTxMatches-Dry5dTfl.js";
|
|
8
|
-
import { v as x } from "./bitcoin-B5aNKtsk.js";
|
|
9
|
-
const d = 66;
|
|
10
|
-
function k(e) {
|
|
11
|
-
if (!e.startsWith("0x") && !e.startsWith("0X"))
|
|
12
|
-
throw new Error("Expected 0x-prefixed hex string");
|
|
13
|
-
const t = e.slice(2);
|
|
14
|
-
if (t.length % 2 !== 0)
|
|
15
|
-
throw new Error(`Hex string has odd length: ${t.length}`);
|
|
16
|
-
if (!/^[0-9a-fA-F]*$/.test(t))
|
|
17
|
-
throw new Error("Hex string contains non-hex characters");
|
|
18
|
-
const s = new Uint8Array(t.length / 2);
|
|
19
|
-
for (let n = 0; n < s.length; n++)
|
|
20
|
-
s[n] = parseInt(t.slice(n * 2, n * 2 + 2), 16);
|
|
21
|
-
return s;
|
|
22
|
-
}
|
|
23
|
-
function v(e) {
|
|
24
|
-
return `0x${Array.from(e).map((t) => t.toString(16).padStart(2, "0")).join("")}`;
|
|
25
|
-
}
|
|
26
|
-
function l(e, t) {
|
|
27
|
-
if (e.length !== d)
|
|
28
|
-
throw new Error(
|
|
29
|
-
`${t} must be exactly 32 bytes (${d} hex chars with 0x prefix), got ${e.length}`
|
|
30
|
-
);
|
|
31
|
-
}
|
|
32
|
-
function T(e) {
|
|
33
|
-
l(e, "Secret");
|
|
34
|
-
const t = k(e), s = H(t);
|
|
35
|
-
return v(s);
|
|
36
|
-
}
|
|
37
|
-
function C(e, t) {
|
|
38
|
-
return l(e, "Secret"), l(t, "Hashlock"), k(t), T(e).toLowerCase() === t.toLowerCase();
|
|
39
|
-
}
|
|
40
|
-
class O {
|
|
41
|
-
/**
|
|
42
|
-
* Creates a new PayoutManager instance.
|
|
43
|
-
*
|
|
44
|
-
* @param config - Manager configuration including wallet
|
|
45
|
-
*/
|
|
46
|
-
constructor(t) {
|
|
47
|
-
P(this, "config");
|
|
48
|
-
this.config = t;
|
|
49
|
-
}
|
|
50
|
-
/**
|
|
51
|
-
* Signs a Payout transaction and extracts the Schnorr signature.
|
|
52
|
-
*
|
|
53
|
-
* Flow:
|
|
54
|
-
* 1. Vault provider submits Claim transaction
|
|
55
|
-
* 2. Claimer submits Assert transaction to prove validity
|
|
56
|
-
* 3. Payout can be executed (references Assert tx)
|
|
57
|
-
*
|
|
58
|
-
* This method orchestrates the following steps:
|
|
59
|
-
* 1. Get wallet's public key and convert to x-only format
|
|
60
|
-
* 2. Validate wallet pubkey matches on-chain depositor pubkey (if provided)
|
|
61
|
-
* 3. Build unsigned PSBT using primitives
|
|
62
|
-
* 4. Sign PSBT via btcWallet.signPsbt()
|
|
63
|
-
* 5. Extract 64-byte Schnorr signature using primitives
|
|
64
|
-
*
|
|
65
|
-
* The returned signature can be submitted to the vault provider API.
|
|
66
|
-
*
|
|
67
|
-
* @param params - Payout signing parameters
|
|
68
|
-
* @returns Signature result with 64-byte Schnorr signature and depositor pubkey
|
|
69
|
-
* @throws Error if wallet pubkey doesn't match depositor pubkey
|
|
70
|
-
* @throws Error if wallet operations fail or signature extraction fails
|
|
71
|
-
*/
|
|
72
|
-
async signPayoutTransaction(t) {
|
|
73
|
-
this.validatePayoutOutputs(
|
|
74
|
-
t.payoutTxHex,
|
|
75
|
-
t.registeredPayoutScriptPubKey
|
|
76
|
-
);
|
|
77
|
-
const s = await this.config.btcWallet.getPublicKeyHex(), { depositorPubkey: n } = x(
|
|
78
|
-
s,
|
|
79
|
-
t.depositorBtcPubkey
|
|
80
|
-
), r = await y({
|
|
81
|
-
payoutTxHex: t.payoutTxHex,
|
|
82
|
-
peginTxHex: t.peginTxHex,
|
|
83
|
-
assertTxHex: t.assertTxHex,
|
|
84
|
-
depositorBtcPubkey: n,
|
|
85
|
-
vaultProviderBtcPubkey: t.vaultProviderBtcPubkey,
|
|
86
|
-
vaultKeeperBtcPubkeys: t.vaultKeeperBtcPubkeys,
|
|
87
|
-
universalChallengerBtcPubkeys: t.universalChallengerBtcPubkeys,
|
|
88
|
-
timelockPegin: t.timelockPegin,
|
|
89
|
-
network: this.config.network
|
|
90
|
-
}), i = await this.config.btcWallet.signPsbt(
|
|
91
|
-
r.psbtHex,
|
|
92
|
-
b(s, 1)
|
|
93
|
-
);
|
|
94
|
-
return p({
|
|
95
|
-
requestedPsbtHex: r.psbtHex,
|
|
96
|
-
returnedPsbtHex: i
|
|
97
|
-
}), {
|
|
98
|
-
signature: h(i, n),
|
|
99
|
-
depositorBtcPubkey: n
|
|
100
|
-
};
|
|
101
|
-
}
|
|
102
|
-
/**
|
|
103
|
-
* Gets the configured Bitcoin network.
|
|
104
|
-
*
|
|
105
|
-
* @returns The Bitcoin network (mainnet, testnet, signet, regtest)
|
|
106
|
-
*/
|
|
107
|
-
getNetwork() {
|
|
108
|
-
return this.config.network;
|
|
109
|
-
}
|
|
110
|
-
/**
|
|
111
|
-
* Checks if the wallet supports batch signing (signPsbts).
|
|
112
|
-
*
|
|
113
|
-
* @returns true if batch signing is supported
|
|
114
|
-
*/
|
|
115
|
-
supportsBatchSigning() {
|
|
116
|
-
return typeof this.config.btcWallet.signPsbts == "function";
|
|
117
|
-
}
|
|
118
|
-
/**
|
|
119
|
-
* Batch signs multiple payout transactions (1 per claimer).
|
|
120
|
-
* This allows signing all transactions with a single wallet interaction.
|
|
121
|
-
*
|
|
122
|
-
* @param transactions - Array of payout params to sign
|
|
123
|
-
* @returns Array of signature results matching input order
|
|
124
|
-
* @throws Error if wallet doesn't support batch signing
|
|
125
|
-
* @throws Error if any signing operation fails
|
|
126
|
-
*/
|
|
127
|
-
async signPayoutTransactionsBatch(t) {
|
|
128
|
-
if (!this.supportsBatchSigning())
|
|
129
|
-
throw new Error(
|
|
130
|
-
"Wallet does not support batch signing (signPsbts method not available)"
|
|
131
|
-
);
|
|
132
|
-
const s = await this.config.btcWallet.getPublicKeyHex(), n = [], r = [], i = [];
|
|
133
|
-
for (const o of t) {
|
|
134
|
-
this.validatePayoutOutputs(
|
|
135
|
-
o.payoutTxHex,
|
|
136
|
-
o.registeredPayoutScriptPubKey
|
|
137
|
-
);
|
|
138
|
-
const { depositorPubkey: u } = x(
|
|
139
|
-
s,
|
|
140
|
-
o.depositorBtcPubkey
|
|
141
|
-
);
|
|
142
|
-
i.push(u);
|
|
143
|
-
const c = await y({
|
|
144
|
-
payoutTxHex: o.payoutTxHex,
|
|
145
|
-
peginTxHex: o.peginTxHex,
|
|
146
|
-
assertTxHex: o.assertTxHex,
|
|
147
|
-
depositorBtcPubkey: u,
|
|
148
|
-
vaultProviderBtcPubkey: o.vaultProviderBtcPubkey,
|
|
149
|
-
vaultKeeperBtcPubkeys: o.vaultKeeperBtcPubkeys,
|
|
150
|
-
universalChallengerBtcPubkeys: o.universalChallengerBtcPubkeys,
|
|
151
|
-
timelockPegin: o.timelockPegin,
|
|
152
|
-
network: this.config.network
|
|
153
|
-
});
|
|
154
|
-
n.push(c.psbtHex), r.push(b(s, 1));
|
|
155
|
-
}
|
|
156
|
-
const a = await this.config.btcWallet.signPsbts(
|
|
157
|
-
n,
|
|
158
|
-
r
|
|
159
|
-
);
|
|
160
|
-
if (a.length !== t.length)
|
|
161
|
-
throw new Error(
|
|
162
|
-
`Expected ${t.length} signed PSBTs but received ${a.length}`
|
|
163
|
-
);
|
|
164
|
-
const g = [];
|
|
165
|
-
for (let o = 0; o < t.length; o++) {
|
|
166
|
-
const u = i[o];
|
|
167
|
-
p({
|
|
168
|
-
requestedPsbtHex: n[o],
|
|
169
|
-
returnedPsbtHex: a[o]
|
|
170
|
-
});
|
|
171
|
-
const c = h(
|
|
172
|
-
a[o],
|
|
173
|
-
u
|
|
174
|
-
);
|
|
175
|
-
g.push({
|
|
176
|
-
payoutSignature: c,
|
|
177
|
-
depositorBtcPubkey: u
|
|
178
|
-
});
|
|
179
|
-
}
|
|
180
|
-
return g;
|
|
181
|
-
}
|
|
182
|
-
/**
|
|
183
|
-
* Validates that the payout transaction's largest output pays to the
|
|
184
|
-
* registered depositor payout address (scriptPubKey).
|
|
185
|
-
*
|
|
186
|
-
* This prevents two attack vectors from a malicious vault provider:
|
|
187
|
-
* 1. Substituting a completely different payout address
|
|
188
|
-
* 2. Including a dust output to the correct address while routing
|
|
189
|
-
* the actual funds to an attacker-controlled address
|
|
190
|
-
*
|
|
191
|
-
* @param payoutTxHex - Raw payout transaction hex
|
|
192
|
-
* @param registeredPayoutScriptPubKey - On-chain registered scriptPubKey (hex, with or without 0x prefix)
|
|
193
|
-
* @throws Error if scriptPubKey is invalid hex
|
|
194
|
-
* @throws Error if the largest output does not pay to the registered address
|
|
195
|
-
*/
|
|
196
|
-
validatePayoutOutputs(t, s) {
|
|
197
|
-
B(
|
|
198
|
-
t,
|
|
199
|
-
s
|
|
200
|
-
);
|
|
201
|
-
}
|
|
202
|
-
}
|
|
203
|
-
export {
|
|
204
|
-
O as P,
|
|
205
|
-
T as c,
|
|
206
|
-
C as v
|
|
207
|
-
};
|
|
208
|
-
//# sourceMappingURL=PayoutManager-Cf51DBcu.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"PayoutManager-Cf51DBcu.js","sources":["../src/tbv/core/services/htlc/index.ts","../src/tbv/core/managers/PayoutManager.ts"],"sourcesContent":["/**\n * HTLC Secret / Hashlock Utilities\n *\n * Pure functions for computing and validating SHA-256 hashlocks used in the\n * vault deposit protocol's HTLC (Hash Time Lock Contract).\n *\n * The SDK does NOT generate secrets — that is the caller's responsibility.\n * Today callers use `crypto.getRandomValues(32)`; when the `deriveContextHash`\n * wallet API ships, callers will use `wallet.deriveContextHash(\"babylon-btc-vault\", ctx)`.\n * These utilities work identically regardless of how the secret was produced.\n *\n * On-chain contract validation (BTCVaultRegistry.activateVaultWithSecret):\n * if (sha256(abi.encodePacked(s)) != hashlock) revert InvalidSecret();\n *\n * @module htlc\n */\n\nimport { sha256 } from \"@noble/hashes/sha2.js\";\nimport type { Hex } from \"viem\";\n\n/** Expected hex length for a 0x-prefixed bytes32 value. */\nconst HEX_BYTES32_LENGTH = 66; // \"0x\" + 64 hex chars\n\n/**\n * Decode a 0x-prefixed hex string to bytes, with strict validation.\n * @throws if the input is not a valid 0x-prefixed hex string\n */\nfunction hexToBytes(hex: Hex): Uint8Array {\n if (!hex.startsWith(\"0x\") && !hex.startsWith(\"0X\")) {\n throw new Error(\"Expected 0x-prefixed hex string\");\n }\n const clean = hex.slice(2);\n if (clean.length % 2 !== 0) {\n throw new Error(`Hex string has odd length: ${clean.length}`);\n }\n if (!/^[0-9a-fA-F]*$/.test(clean)) {\n throw new Error(\"Hex string contains non-hex characters\");\n }\n const bytes = new Uint8Array(clean.length / 2);\n for (let i = 0; i < bytes.length; i++) {\n bytes[i] = parseInt(clean.slice(i * 2, i * 2 + 2), 16);\n }\n return bytes;\n}\n\n/**\n * Encode a Uint8Array as a 0x-prefixed lowercase hex string.\n */\nfunction bytesToHex(bytes: Uint8Array): Hex {\n return `0x${Array.from(bytes)\n .map((b) => b.toString(16).padStart(2, \"0\"))\n .join(\"\")}`;\n}\n\n/**\n * Validate that a value is a 0x-prefixed bytes32 (exactly 32 bytes).\n * @throws if the value is not exactly 32 bytes\n */\nfunction assertBytes32(value: Hex, label: string): void {\n if (value.length !== HEX_BYTES32_LENGTH) {\n throw new Error(\n `${label} must be exactly 32 bytes (${HEX_BYTES32_LENGTH} hex chars with 0x prefix), got ${value.length}`,\n );\n }\n}\n\n/**\n * Compute the SHA-256 hashlock from a secret preimage.\n *\n * Matches the on-chain validation: `sha256(abi.encodePacked(s))` where `s` is a `bytes32`.\n * `abi.encodePacked(bytes32)` is just the raw 32 bytes — no ABI padding.\n *\n * @param secret - 0x-prefixed bytes32 secret (66 hex chars)\n * @returns 0x-prefixed bytes32 SHA-256 hash\n * @throws if secret is not exactly 32 bytes\n */\nexport function computeHashlock(secret: Hex): Hex {\n assertBytes32(secret, \"Secret\");\n const secretBytes = hexToBytes(secret);\n const hash = sha256(secretBytes);\n return bytesToHex(hash);\n}\n\n/**\n * Validate that a secret's SHA-256 hash matches the expected hashlock.\n *\n * Use this for client-side pre-validation before sending the activation\n * transaction to avoid wasting gas on a contract revert.\n *\n * @param secret - 0x-prefixed bytes32 secret (66 hex chars)\n * @param hashlock - 0x-prefixed bytes32 expected hashlock from the vault\n * @returns true if SHA-256(secret) matches the hashlock\n * @throws if secret or hashlock is not exactly 32 bytes\n */\nexport function validateSecretAgainstHashlock(\n secret: Hex,\n hashlock: Hex,\n): boolean {\n assertBytes32(secret, \"Secret\");\n assertBytes32(hashlock, \"Hashlock\");\n // Validate hashlock is valid hex (secret is validated inside computeHashlock)\n hexToBytes(hashlock);\n\n const computed = computeHashlock(secret);\n return computed.toLowerCase() === hashlock.toLowerCase();\n}\n","/**\n * Payout Manager\n *\n * High-level manager that orchestrates the payout signing flow by coordinating\n * SDK primitives ({@link buildPayoutPsbt}, {@link extractPayoutSignature})\n * with a user-provided Bitcoin wallet.\n *\n * The Payout transaction references the Assert transaction (input 1).\n *\n * @see {@link PeginManager} - For Steps 1–4 of the peg-in flow\n * @see {@link buildPayoutPsbt} - Lower-level primitive for custom implementations\n * @see {@link extractPayoutSignature} - Extract signatures from signed PSBTs\n *\n * @module managers/PayoutManager\n */\n\nimport type {\n BitcoinWallet,\n SignPsbtOptions,\n} from \"../../../shared/wallets\";\nimport { createTaprootScriptPathSignOptions } from \"../utils/signing\";\nimport {\n assertPayoutOutputMatchesRegistered,\n assertPsbtUnsignedTxMatches,\n buildPayoutPsbt,\n extractPayoutSignature,\n validateWalletPubkey,\n type Network,\n} from \"../primitives\";\n\n/**\n * Configuration for the PayoutManager.\n */\nexport interface PayoutManagerConfig {\n /**\n * Bitcoin network to use for transactions.\n */\n network: Network;\n\n /**\n * Bitcoin wallet for signing payout transactions.\n */\n btcWallet: BitcoinWallet;\n}\n\n/**\n * Base parameters shared by both payout transaction types.\n */\ninterface SignPayoutBaseParams {\n /**\n * Peg-in transaction hex.\n * The original transaction that created the vault output being spent.\n */\n peginTxHex: string;\n\n /**\n * Vault provider's BTC public key (x-only, 64-char hex).\n */\n vaultProviderBtcPubkey: string;\n\n /**\n * Vault keeper BTC public keys (x-only, 64-char hex).\n */\n vaultKeeperBtcPubkeys: string[];\n\n /**\n * Universal challenger BTC public keys (x-only, 64-char hex).\n */\n universalChallengerBtcPubkeys: string[];\n\n /**\n * CSV timelock in blocks for the PegIn output.\n */\n timelockPegin: number;\n\n /**\n * Depositor's BTC public key (x-only, 64-char hex). This MUST be the\n * key registered on-chain for the vault — typically read from\n * `BTCVaultRegistry.getBtcVaultBasicInfo(...).depositorBtcPubKey`.\n *\n * Required: omitting it would degrade `validateWalletPubkey` to a\n * self-comparison, allowing the wrong wallet to produce a signature\n * over a script tree that doesn't match the on-chain UTXO.\n */\n depositorBtcPubkey: string;\n\n /**\n * The on-chain registered depositor payout scriptPubKey (hex, with or without 0x prefix).\n * Used to validate that the VP-provided payout transaction actually pays to the\n * correct depositor payout address before signing.\n */\n registeredPayoutScriptPubKey: string;\n}\n\n/**\n * Parameters for signing a Payout transaction.\n *\n * Payout is used in the challenge path after Assert, when the claimer proves validity.\n * Input 1 references the Assert transaction.\n */\nexport interface SignPayoutParams extends SignPayoutBaseParams {\n /**\n * Payout transaction hex (unsigned).\n * This is the transaction from the vault provider that needs depositor signature.\n */\n payoutTxHex: string;\n\n /**\n * Assert transaction hex.\n * Payout input 1 references Assert output 0.\n */\n assertTxHex: string;\n}\n\n/**\n * Result of signing a payout transaction.\n */\nexport interface PayoutSignatureResult {\n /**\n * 64-byte Schnorr signature (128 hex characters).\n */\n signature: string;\n\n /**\n * Depositor's BTC public key used for signing.\n */\n depositorBtcPubkey: string;\n}\n\n/**\n * High-level manager for payout transaction signing.\n *\n * @remarks\n * After registering your peg-in on Ethereum (Step 3), the vault provider prepares\n * claim/payout transaction pairs. You must sign each payout transaction using this\n * manager and submit the signatures to the vault provider's RPC API.\n *\n * **What happens internally:**\n * 1. Validates your wallet's public key matches the vault's depositor\n * 2. Builds an unsigned PSBT with taproot script path spend info\n * 3. Signs input 0 (the vault UTXO) with your wallet\n * 4. Extracts the 64-byte Schnorr signature\n *\n * **Note:** The payout transaction has 2 inputs. PayoutManager only signs input 0\n * (from the peg-in tx). Input 1 (from the assert tx) is signed by the vault provider.\n *\n * @see {@link PeginManager} - For the complete peg-in flow context\n * @see {@link buildPayoutPsbt} - Lower-level primitive used internally\n * @see {@link extractPayoutSignature} - Signature extraction primitive\n */\nexport class PayoutManager {\n private readonly config: PayoutManagerConfig;\n\n /**\n * Creates a new PayoutManager instance.\n *\n * @param config - Manager configuration including wallet\n */\n constructor(config: PayoutManagerConfig) {\n this.config = config;\n }\n\n /**\n * Signs a Payout transaction and extracts the Schnorr signature.\n *\n * Flow:\n * 1. Vault provider submits Claim transaction\n * 2. Claimer submits Assert transaction to prove validity\n * 3. Payout can be executed (references Assert tx)\n *\n * This method orchestrates the following steps:\n * 1. Get wallet's public key and convert to x-only format\n * 2. Validate wallet pubkey matches on-chain depositor pubkey (if provided)\n * 3. Build unsigned PSBT using primitives\n * 4. Sign PSBT via btcWallet.signPsbt()\n * 5. Extract 64-byte Schnorr signature using primitives\n *\n * The returned signature can be submitted to the vault provider API.\n *\n * @param params - Payout signing parameters\n * @returns Signature result with 64-byte Schnorr signature and depositor pubkey\n * @throws Error if wallet pubkey doesn't match depositor pubkey\n * @throws Error if wallet operations fail or signature extraction fails\n */\n async signPayoutTransaction(\n params: SignPayoutParams,\n ): Promise<PayoutSignatureResult> {\n // Validate payout TX outputs pay to the registered depositor payout address\n this.validatePayoutOutputs(\n params.payoutTxHex,\n params.registeredPayoutScriptPubKey,\n );\n\n // Validate wallet pubkey matches depositor and get both formats\n const walletPubkeyRaw = await this.config.btcWallet.getPublicKeyHex();\n const { depositorPubkey } = validateWalletPubkey(\n walletPubkeyRaw,\n params.depositorBtcPubkey,\n );\n\n // Build unsigned PSBT for Payout (uses Assert tx)\n const payoutPsbt = await buildPayoutPsbt({\n payoutTxHex: params.payoutTxHex,\n peginTxHex: params.peginTxHex,\n assertTxHex: params.assertTxHex,\n depositorBtcPubkey: depositorPubkey,\n vaultProviderBtcPubkey: params.vaultProviderBtcPubkey,\n vaultKeeperBtcPubkeys: params.vaultKeeperBtcPubkeys,\n universalChallengerBtcPubkeys: params.universalChallengerBtcPubkeys,\n timelockPegin: params.timelockPegin,\n network: this.config.network,\n });\n\n // Sign PSBT via wallet (Taproot script-path spend, input 0 only)\n const signedPsbtHex = await this.config.btcWallet.signPsbt(\n payoutPsbt.psbtHex,\n createTaprootScriptPathSignOptions(walletPubkeyRaw, 1),\n );\n\n assertPsbtUnsignedTxMatches({\n requestedPsbtHex: payoutPsbt.psbtHex,\n returnedPsbtHex: signedPsbtHex,\n });\n\n // Extract Schnorr signature\n const signature = extractPayoutSignature(signedPsbtHex, depositorPubkey);\n\n return {\n signature,\n depositorBtcPubkey: depositorPubkey,\n };\n }\n\n /**\n * Gets the configured Bitcoin network.\n *\n * @returns The Bitcoin network (mainnet, testnet, signet, regtest)\n */\n getNetwork(): Network {\n return this.config.network;\n }\n\n /**\n * Checks if the wallet supports batch signing (signPsbts).\n *\n * @returns true if batch signing is supported\n */\n supportsBatchSigning(): boolean {\n return typeof this.config.btcWallet.signPsbts === \"function\";\n }\n\n /**\n * Batch signs multiple payout transactions (1 per claimer).\n * This allows signing all transactions with a single wallet interaction.\n *\n * @param transactions - Array of payout params to sign\n * @returns Array of signature results matching input order\n * @throws Error if wallet doesn't support batch signing\n * @throws Error if any signing operation fails\n */\n async signPayoutTransactionsBatch(\n transactions: SignPayoutParams[],\n ): Promise<\n Array<{\n payoutSignature: string;\n depositorBtcPubkey: string;\n }>\n > {\n if (!this.supportsBatchSigning()) {\n throw new Error(\n \"Wallet does not support batch signing (signPsbts method not available)\",\n );\n }\n\n // Get wallet pubkey once\n const walletPubkeyRaw = await this.config.btcWallet.getPublicKeyHex();\n\n // Build all PSBTs (1 per claimer)\n const psbtsToSign: string[] = [];\n const signOptions: SignPsbtOptions[] = [];\n const depositorPubkeys: string[] = [];\n\n for (const tx of transactions) {\n // Validate payout TX outputs pay to the registered depositor payout address\n this.validatePayoutOutputs(\n tx.payoutTxHex,\n tx.registeredPayoutScriptPubKey,\n );\n\n // Validate wallet pubkey matches depositor\n const { depositorPubkey } = validateWalletPubkey(\n walletPubkeyRaw,\n tx.depositorBtcPubkey,\n );\n depositorPubkeys.push(depositorPubkey);\n\n // Build Payout PSBT\n const payoutPsbt = await buildPayoutPsbt({\n payoutTxHex: tx.payoutTxHex,\n peginTxHex: tx.peginTxHex,\n assertTxHex: tx.assertTxHex,\n depositorBtcPubkey: depositorPubkey,\n vaultProviderBtcPubkey: tx.vaultProviderBtcPubkey,\n vaultKeeperBtcPubkeys: tx.vaultKeeperBtcPubkeys,\n universalChallengerBtcPubkeys: tx.universalChallengerBtcPubkeys,\n timelockPegin: tx.timelockPegin,\n network: this.config.network,\n });\n psbtsToSign.push(payoutPsbt.psbtHex);\n signOptions.push(createTaprootScriptPathSignOptions(walletPubkeyRaw, 1));\n }\n\n // Batch sign all PSBTs with single wallet interaction\n const signedPsbts = await this.config.btcWallet.signPsbts!(\n psbtsToSign,\n signOptions,\n );\n\n // Validate that wallet returned the expected number of signed PSBTs\n if (signedPsbts.length !== transactions.length) {\n throw new Error(\n `Expected ${transactions.length} signed PSBTs but received ${signedPsbts.length}`,\n );\n }\n\n // Extract signatures from signed PSBTs\n const results: Array<{\n payoutSignature: string;\n depositorBtcPubkey: string;\n }> = [];\n\n for (let i = 0; i < transactions.length; i++) {\n const depositorPubkey = depositorPubkeys[i];\n assertPsbtUnsignedTxMatches({\n requestedPsbtHex: psbtsToSign[i],\n returnedPsbtHex: signedPsbts[i],\n });\n const payoutSignature = extractPayoutSignature(\n signedPsbts[i],\n depositorPubkey,\n );\n\n results.push({\n payoutSignature,\n depositorBtcPubkey: depositorPubkey,\n });\n }\n\n return results;\n }\n\n /**\n * Validates that the payout transaction's largest output pays to the\n * registered depositor payout address (scriptPubKey).\n *\n * This prevents two attack vectors from a malicious vault provider:\n * 1. Substituting a completely different payout address\n * 2. Including a dust output to the correct address while routing\n * the actual funds to an attacker-controlled address\n *\n * @param payoutTxHex - Raw payout transaction hex\n * @param registeredPayoutScriptPubKey - On-chain registered scriptPubKey (hex, with or without 0x prefix)\n * @throws Error if scriptPubKey is invalid hex\n * @throws Error if the largest output does not pay to the registered address\n */\n private validatePayoutOutputs(\n payoutTxHex: string,\n registeredPayoutScriptPubKey: string,\n ): void {\n assertPayoutOutputMatchesRegistered(\n payoutTxHex,\n registeredPayoutScriptPubKey,\n );\n }\n}\n"],"names":["HEX_BYTES32_LENGTH","hexToBytes","hex","clean","bytes","i","bytesToHex","b","assertBytes32","value","label","computeHashlock","secret","secretBytes","hash","sha256","validateSecretAgainstHashlock","hashlock","PayoutManager","config","__publicField","params","walletPubkeyRaw","depositorPubkey","validateWalletPubkey","payoutPsbt","buildPayoutPsbt","signedPsbtHex","createTaprootScriptPathSignOptions","assertPsbtUnsignedTxMatches","extractPayoutSignature","transactions","psbtsToSign","signOptions","depositorPubkeys","tx","signedPsbts","results","payoutSignature","payoutTxHex","registeredPayoutScriptPubKey","assertPayoutOutputMatchesRegistered"],"mappings":";;;;;;;;AAqBA,MAAMA,IAAqB;AAM3B,SAASC,EAAWC,GAAsB;AACxC,MAAI,CAACA,EAAI,WAAW,IAAI,KAAK,CAACA,EAAI,WAAW,IAAI;AAC/C,UAAM,IAAI,MAAM,iCAAiC;AAEnD,QAAMC,IAAQD,EAAI,MAAM,CAAC;AACzB,MAAIC,EAAM,SAAS,MAAM;AACvB,UAAM,IAAI,MAAM,8BAA8BA,EAAM,MAAM,EAAE;AAE9D,MAAI,CAAC,iBAAiB,KAAKA,CAAK;AAC9B,UAAM,IAAI,MAAM,wCAAwC;AAE1D,QAAMC,IAAQ,IAAI,WAAWD,EAAM,SAAS,CAAC;AAC7C,WAASE,IAAI,GAAGA,IAAID,EAAM,QAAQC;AAChC,IAAAD,EAAMC,CAAC,IAAI,SAASF,EAAM,MAAME,IAAI,GAAGA,IAAI,IAAI,CAAC,GAAG,EAAE;AAEvD,SAAOD;AACT;AAKA,SAASE,EAAWF,GAAwB;AAC1C,SAAO,KAAK,MAAM,KAAKA,CAAK,EACzB,IAAI,CAACG,MAAMA,EAAE,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAC1C,KAAK,EAAE,CAAC;AACb;AAMA,SAASC,EAAcC,GAAYC,GAAqB;AACtD,MAAID,EAAM,WAAWT;AACnB,UAAM,IAAI;AAAA,MACR,GAAGU,CAAK,8BAA8BV,CAAkB,mCAAmCS,EAAM,MAAM;AAAA,IAAA;AAG7G;AAYO,SAASE,EAAgBC,GAAkB;AAChD,EAAAJ,EAAcI,GAAQ,QAAQ;AAC9B,QAAMC,IAAcZ,EAAWW,CAAM,GAC/BE,IAAOC,EAAOF,CAAW;AAC/B,SAAOP,EAAWQ,CAAI;AACxB;AAaO,SAASE,EACdJ,GACAK,GACS;AACT,SAAAT,EAAcI,GAAQ,QAAQ,GAC9BJ,EAAcS,GAAU,UAAU,GAElChB,EAAWgB,CAAQ,GAEFN,EAAgBC,CAAM,EACvB,kBAAkBK,EAAS,YAAA;AAC7C;AC6CO,MAAMC,EAAc;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQzB,YAAYC,GAA6B;AAPxB,IAAAC,EAAA;AAQf,SAAK,SAASD;AAAA,EAChB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAwBA,MAAM,sBACJE,GACgC;AAEhC,SAAK;AAAA,MACHA,EAAO;AAAA,MACPA,EAAO;AAAA,IAAA;AAIT,UAAMC,IAAkB,MAAM,KAAK,OAAO,UAAU,gBAAA,GAC9C,EAAE,iBAAAC,MAAoBC;AAAA,MAC1BF;AAAA,MACAD,EAAO;AAAA,IAAA,GAIHI,IAAa,MAAMC,EAAgB;AAAA,MACvC,aAAaL,EAAO;AAAA,MACpB,YAAYA,EAAO;AAAA,MACnB,aAAaA,EAAO;AAAA,MACpB,oBAAoBE;AAAA,MACpB,wBAAwBF,EAAO;AAAA,MAC/B,uBAAuBA,EAAO;AAAA,MAC9B,+BAA+BA,EAAO;AAAA,MACtC,eAAeA,EAAO;AAAA,MACtB,SAAS,KAAK,OAAO;AAAA,IAAA,CACtB,GAGKM,IAAgB,MAAM,KAAK,OAAO,UAAU;AAAA,MAChDF,EAAW;AAAA,MACXG,EAAmCN,GAAiB,CAAC;AAAA,IAAA;AAGvD,WAAAO,EAA4B;AAAA,MAC1B,kBAAkBJ,EAAW;AAAA,MAC7B,iBAAiBE;AAAA,IAAA,CAClB,GAKM;AAAA,MACL,WAHgBG,EAAuBH,GAAeJ,CAAe;AAAA,MAIrE,oBAAoBA;AAAA,IAAA;AAAA,EAExB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,aAAsB;AACpB,WAAO,KAAK,OAAO;AAAA,EACrB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,uBAAgC;AAC9B,WAAO,OAAO,KAAK,OAAO,UAAU,aAAc;AAAA,EACpD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,4BACJQ,GAMA;AACA,QAAI,CAAC,KAAK;AACR,YAAM,IAAI;AAAA,QACR;AAAA,MAAA;AAKJ,UAAMT,IAAkB,MAAM,KAAK,OAAO,UAAU,gBAAA,GAG9CU,IAAwB,CAAA,GACxBC,IAAiC,CAAA,GACjCC,IAA6B,CAAA;AAEnC,eAAWC,KAAMJ,GAAc;AAE7B,WAAK;AAAA,QACHI,EAAG;AAAA,QACHA,EAAG;AAAA,MAAA;AAIL,YAAM,EAAE,iBAAAZ,MAAoBC;AAAA,QAC1BF;AAAA,QACAa,EAAG;AAAA,MAAA;AAEL,MAAAD,EAAiB,KAAKX,CAAe;AAGrC,YAAME,IAAa,MAAMC,EAAgB;AAAA,QACvC,aAAaS,EAAG;AAAA,QAChB,YAAYA,EAAG;AAAA,QACf,aAAaA,EAAG;AAAA,QAChB,oBAAoBZ;AAAA,QACpB,wBAAwBY,EAAG;AAAA,QAC3B,uBAAuBA,EAAG;AAAA,QAC1B,+BAA+BA,EAAG;AAAA,QAClC,eAAeA,EAAG;AAAA,QAClB,SAAS,KAAK,OAAO;AAAA,MAAA,CACtB;AACD,MAAAH,EAAY,KAAKP,EAAW,OAAO,GACnCQ,EAAY,KAAKL,EAAmCN,GAAiB,CAAC,CAAC;AAAA,IACzE;AAGA,UAAMc,IAAc,MAAM,KAAK,OAAO,UAAU;AAAA,MAC9CJ;AAAA,MACAC;AAAA,IAAA;AAIF,QAAIG,EAAY,WAAWL,EAAa;AACtC,YAAM,IAAI;AAAA,QACR,YAAYA,EAAa,MAAM,8BAA8BK,EAAY,MAAM;AAAA,MAAA;AAKnF,UAAMC,IAGD,CAAA;AAEL,aAAShC,IAAI,GAAGA,IAAI0B,EAAa,QAAQ1B,KAAK;AAC5C,YAAMkB,IAAkBW,EAAiB7B,CAAC;AAC1C,MAAAwB,EAA4B;AAAA,QAC1B,kBAAkBG,EAAY3B,CAAC;AAAA,QAC/B,iBAAiB+B,EAAY/B,CAAC;AAAA,MAAA,CAC/B;AACD,YAAMiC,IAAkBR;AAAA,QACtBM,EAAY/B,CAAC;AAAA,QACbkB;AAAA,MAAA;AAGF,MAAAc,EAAQ,KAAK;AAAA,QACX,iBAAAC;AAAA,QACA,oBAAoBf;AAAA,MAAA,CACrB;AAAA,IACH;AAEA,WAAOc;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgBQ,sBACNE,GACAC,GACM;AACN,IAAAC;AAAA,MACEF;AAAA,MACAC;AAAA,IAAA;AAAA,EAEJ;AACF;"}
|
|
@@ -1,2 +0,0 @@
|
|
|
1
|
-
"use strict";var Lt=Object.defineProperty;var Wt=(n,t,e)=>t in n?Lt(n,t,{enumerable:!0,configurable:!0,writable:!0,value:e}):n[t]=e;var E=(n,t,e)=>Wt(n,typeof t!="symbol"?t+"":t,e);const P=require("./sha2-DsrLC4NM.cjs"),D=require("bitcoinjs-lib"),tt=require("buffer"),U=require("viem"),C=require("./BTCVaultRegistry.abi-CHFGevwa.cjs"),O=require("./errors-BP73_stm.cjs"),L=require("@babylonlabs-io/babylon-tbv-rust-wasm"),R=require("./peginInput-57FK2O99.cjs"),at=require("./assertPsbtUnsignedTxMatches-CagW7XqW.cjs"),c=require("./bitcoin-CHfKAhcI.cjs"),Ft=require("./signing-Bnsro0hE.cjs"),ct=require("./validation-u8W7Lp2x.cjs"),Xt=require("./PayoutManager-BfT0V-tm.cjs"),S=require("./waitForTransactionReceiptSmartAware-tv1mtSIY.cjs"),lt=require("./fundPeginTransaction-BBE3wTjR.cjs"),wt=require("./mempoolApi-YNkKjQCU.cjs");function Kt(n){const t=Object.create(null,{[Symbol.toStringTag]:{value:"Module"}});if(n){for(const e in n)if(e!=="default"){const s=Object.getOwnPropertyDescriptor(n,e);Object.defineProperty(t,e,s.get?s:{enumerable:!0,get:()=>n[e]})}}return t.default=n,Object.freeze(t)}const rt=Kt(D),W=BigInt(2**32-1),ut=BigInt(32);function qt(n,t=!1){return t?{h:Number(n&W),l:Number(n>>ut&W)}:{h:Number(n>>ut&W)|0,l:Number(n&W)|0}}function Dt(n,t=!1){const e=n.length;let s=new Uint32Array(e),r=new Uint32Array(e);for(let o=0;o<e;o++){const{h:i,l:a}=qt(n[o],t);[s[o],r[o]]=[i,a]}return[s,r]}const zt=(n,t,e)=>n<<e|t>>>32-e,jt=(n,t,e)=>t<<e|n>>>32-e,Gt=(n,t,e)=>t<<e-32|n>>>64-e,Zt=(n,t,e)=>n<<e-32|t>>>64-e,Yt=106,Qt=32,ht=34;function Jt(n,t,e){const s=c.stripHexPrefix(n),r=rt.Transaction.fromHex(s);if(r.outs.length<=t)throw new Error(`Pre-PegIn auth-anchor OP_RETURN missing: tx has ${r.outs.length} outputs, expected at least ${t+1} (vault outputs + OP_RETURN)`);const o=r.outs[t],i=o.script;if(i.length!==ht||i[0]!==Yt||i[1]!==Qt)throw new Error(`Pre-PegIn auth-anchor OP_RETURN at vout ${t} has unexpected script encoding (got ${i.length}-byte script with prefix 0x${i.slice(0,Math.min(2,i.length)).toString("hex")}; expected ${ht}-byte OP_RETURN + PUSH32 layout)`);const a=i.slice(2).toString("hex").toLowerCase();if(a!==e.toLowerCase())throw new Error(`Pre-PegIn auth-anchor OP_RETURN payload mismatch at vout ${t}: tx pushes ${a}, expected ${e}`);if(o.value!==0)throw new Error(`Pre-PegIn auth-anchor OP_RETURN at vout ${t} has non-zero value ${o.value}; OP_RETURN outputs must be 0-value`)}const M=32,Z=32,et=36,yt=32,z=4,te=z+M+z+yt;function nt(n,t,e){n[t]=e>>>24&255,n[t+1]=e>>>16&255,n[t+2]=e>>>8&255,n[t+3]=e&255}function ee(n){if(n.txid.length!==Z)throw new Error(`outpoint.txid must be exactly ${Z} bytes, got ${n.txid.length}`);if(!Number.isInteger(n.vout)||n.vout<0||n.vout>4294967295)throw new Error(`outpoint.vout must be a u32, got ${n.vout}`);const t=new Uint8Array(et);return t.set(n.txid,0),nt(t,Z,n.vout),t}function dt(n,t){const e=Math.min(n.length,t.length);for(let s=0;s<e;s++)if(n[s]!==t[s])return n[s]-t[s];return n.length-t.length}function kt(n){if(n.length===0)throw new Error("buildFundingOutpointsCommitment: outpoints must be non-empty");const t=n.map(ee);t.sort(dt);for(let s=1;s<t.length;s++)if(dt(t[s-1],t[s])===0)throw new Error("buildFundingOutpointsCommitment: duplicate outpoint detected");const e=new Uint8Array(t.length*et);for(let s=0;s<t.length;s++)e.set(t[s],s*et);return P.sha256(e)}function Et(n){if(n.depositorBtcPubkey.length!==M)throw new Error(`vaultContext: depositorBtcPubkey must be exactly ${M} bytes, got ${n.depositorBtcPubkey.length}`);const t=kt(n.fundingOutpoints),e=new Uint8Array(te);let s=0;return nt(e,s,M),s+=z,e.set(n.depositorBtcPubkey,s),s+=M,nt(e,s,yt),s+=z,e.set(t,s),e}const Tt="babylon-btc-vault",_t=32,gt=_t*2,ne=/^[0-9a-f]+$/;async function Bt(n,t){const e=Et(t),s=c.uint8ArrayToHex(e),r=await n.deriveContextHash(Tt,s);if(typeof r!="string")throw new Error(`deriveVaultRoot: wallet must return a string, got ${typeof r}`);if(r.length!==gt)throw new Error(`deriveVaultRoot: wallet must return a ${gt}-character hex string (${_t} bytes), got length ${r.length}`);if(!ne.test(r))throw new Error("deriveVaultRoot: wallet must return lowercase hex per derive-context-hash.md §2.1; got value with non-lowercase or non-hex characters");return c.hexToUint8Array(r)}const se=Uint8Array.from([7,4,13,1,10,6,15,3,12,0,9,5,2,14,11,8]),At=Uint8Array.from(new Array(16).fill(0).map((n,t)=>t)),re=At.map(n=>(9*n+5)%16),vt=(()=>{const e=[[At],[re]];for(let s=0;s<4;s++)for(let r of e)r.push(r[s].map(o=>se[o]));return e})(),Ht=vt[0],St=vt[1],It=[[11,14,15,12,5,8,7,9,11,13,14,15,6,7,9,8],[12,13,11,15,6,9,9,7,12,15,11,13,7,8,7,7],[13,15,14,11,7,7,6,8,13,14,13,12,5,5,6,9],[14,11,12,14,8,6,5,5,15,12,15,14,9,9,8,6],[15,12,13,13,9,5,8,6,14,11,12,11,8,6,5,5]].map(n=>Uint8Array.from(n)),oe=Ht.map((n,t)=>n.map(e=>It[t][e])),ie=St.map((n,t)=>n.map(e=>It[t][e])),ae=Uint32Array.from([0,1518500249,1859775393,2400959708,2840853838]),ce=Uint32Array.from([1352829926,1548603684,1836072691,2053994217,0]);function ft(n,t,e,s){return n===0?t^e^s:n===1?t&e|~t&s:n===2?(t|~e)^s:n===3?t&s|e&~s:t^(e|~s)}const F=new Uint32Array(16);class le extends P.HashMD{constructor(){super(64,20,8,!0);E(this,"h0",1732584193);E(this,"h1",-271733879);E(this,"h2",-1732584194);E(this,"h3",271733878);E(this,"h4",-1009589776)}get(){const{h0:e,h1:s,h2:r,h3:o,h4:i}=this;return[e,s,r,o,i]}set(e,s,r,o,i){this.h0=e|0,this.h1=s|0,this.h2=r|0,this.h3=o|0,this.h4=i|0}process(e,s){for(let f=0;f<16;f++,s+=4)F[f]=e.getUint32(s,!0);let r=this.h0|0,o=r,i=this.h1|0,a=i,l=this.h2|0,g=l,u=this.h3|0,x=u,b=this.h4|0,w=b;for(let f=0;f<5;f++){const p=4-f,T=ae[f],v=ce[f],_=Ht[f],m=St[f],y=oe[f],k=ie[f];for(let h=0;h<16;h++){const d=P.rotl(r+ft(f,i,l,u)+F[_[h]]+T,y[h])+b|0;r=b,b=u,u=P.rotl(l,10)|0,l=i,i=d}for(let h=0;h<16;h++){const d=P.rotl(o+ft(p,a,g,x)+F[m[h]]+v,k[h])+w|0;o=w,w=x,x=P.rotl(g,10)|0,g=a,a=d}}this.set(this.h1+l+x|0,this.h2+u+w|0,this.h3+b+o|0,this.h4+r+a|0,this.h0+i+g|0)}roundClean(){P.clean(F)}destroy(){this.destroyed=!0,P.clean(this.buffer),this.set(0,0,0,0,0)}}const ue=P.createHasher(()=>new le),he=BigInt(0),N=BigInt(1),de=BigInt(2),ge=BigInt(7),fe=BigInt(256),pe=BigInt(113),Ct=[],Ot=[],Rt=[];for(let n=0,t=N,e=1,s=0;n<24;n++){[e,s]=[s,(2*e+3*s)%5],Ct.push(2*(5*s+e)),Ot.push((n+1)*(n+2)/2%64);let r=he;for(let o=0;o<7;o++)t=(t<<N^(t>>ge)*pe)%fe,t&de&&(r^=N<<(N<<BigInt(o))-N);Rt.push(r)}const $t=Dt(Rt,!0),me=$t[0],Pe=$t[1],pt=(n,t,e)=>e>32?Gt(n,t,e):zt(n,t,e),mt=(n,t,e)=>e>32?Zt(n,t,e):jt(n,t,e);function xe(n,t=24){const e=new Uint32Array(10);for(let s=24-t;s<24;s++){for(let i=0;i<10;i++)e[i]=n[i]^n[i+10]^n[i+20]^n[i+30]^n[i+40];for(let i=0;i<10;i+=2){const a=(i+8)%10,l=(i+2)%10,g=e[l],u=e[l+1],x=pt(g,u,1)^e[a],b=mt(g,u,1)^e[a+1];for(let w=0;w<50;w+=10)n[i+w]^=x,n[i+w+1]^=b}let r=n[2],o=n[3];for(let i=0;i<24;i++){const a=Ot[i],l=pt(r,o,a),g=mt(r,o,a),u=Ct[i];r=n[u],o=n[u+1],n[u]=l,n[u+1]=g}for(let i=0;i<50;i+=10){for(let a=0;a<10;a++)e[a]=n[i+a];for(let a=0;a<10;a++)n[i+a]^=~e[(a+2)%10]&e[(a+4)%10]}n[0]^=me[s],n[1]^=Pe[s]}P.clean(e)}class ot{constructor(t,e,s,r=!1,o=24){E(this,"state");E(this,"pos",0);E(this,"posOut",0);E(this,"finished",!1);E(this,"state32");E(this,"destroyed",!1);E(this,"blockLen");E(this,"suffix");E(this,"outputLen");E(this,"enableXOF",!1);E(this,"rounds");if(this.blockLen=t,this.suffix=e,this.outputLen=s,this.enableXOF=r,this.rounds=o,P.anumber(s,"outputLen"),!(0<t&&t<200))throw new Error("only keccak-f1600 function is supported");this.state=new Uint8Array(200),this.state32=P.u32(this.state)}clone(){return this._cloneInto()}keccak(){P.swap32IfBE(this.state32),xe(this.state32,this.rounds),P.swap32IfBE(this.state32),this.posOut=0,this.pos=0}update(t){P.aexists(this),P.abytes(t);const{blockLen:e,state:s}=this,r=t.length;for(let o=0;o<r;){const i=Math.min(e-this.pos,r-o);for(let a=0;a<i;a++)s[this.pos++]^=t[o++];this.pos===e&&this.keccak()}return this}finish(){if(this.finished)return;this.finished=!0;const{state:t,suffix:e,pos:s,blockLen:r}=this;t[s]^=e,(e&128)!==0&&s===r-1&&this.keccak(),t[r-1]^=128,this.keccak()}writeInto(t){P.aexists(this,!1),P.abytes(t),this.finish();const e=this.state,{blockLen:s}=this;for(let r=0,o=t.length;r<o;){this.posOut>=s&&this.keccak();const i=Math.min(s-this.posOut,o-r);t.set(e.subarray(this.posOut,this.posOut+i),r),this.posOut+=i,r+=i}return t}xofInto(t){if(!this.enableXOF)throw new Error("XOF is not possible for this instance");return this.writeInto(t)}xof(t){return P.anumber(t),this.xofInto(new Uint8Array(t))}digestInto(t){if(P.aoutput(t,this),this.finished)throw new Error("digest() was already called");return this.writeInto(t),this.destroy(),t}digest(){return this.digestInto(new Uint8Array(this.outputLen))}destroy(){this.destroyed=!0,P.clean(this.state)}_cloneInto(t){const{blockLen:e,suffix:s,outputLen:r,rounds:o,enableXOF:i}=this;return t||(t=new ot(e,s,r,i,o)),t.state32.set(this.state32),t.pos=this.pos,t.posOut=this.posOut,t.finished=this.finished,t.rounds=o,t.suffix=s,t.outputLen=r,t.enableXOF=i,t.destroyed=this.destroyed,t}}const be=(n,t,e,s={})=>P.createHasher(()=>new ot(t,n,e),s),we=be(1,136,32),Pt=64,B=20,st=4,Ut=2,ye=0,ke=1,X=[64,64],Ee=n=>Array.from(n).map(t=>t.toString(16).padStart(2,"0")).join("");function it(n){return ue(P.sha256(n))}function Nt(n){return(1<<n)-1}function Te(n){let t=1;for(;t*t<n+1;)t++;return Math.max(t,2)}function _e(n){const t=st,e=n*Nt(t);return{d:t,n,checksum_radix:Te(e)}}function Y(n,t){const e=[];let s=t;for(;s>0;)e.push(s&255),s>>>=8;const r=new Uint8Array(n.length+e.length);r.set(n);for(let o=0;o<e.length;o++)r[n.length+o]=e[o];return it(r)}function Q(n,t){let e=n;for(let s=0;s<t;s++)e=it(e);return e}function Be(n,t){const e=Nt(t.d),s=t.checksum_radix-1,r=Math.floor(t.n*e/t.checksum_radix),o=[];for(let u=0;u<t.n;u++){const x=Y(n,u+Ut),b=Q(x,e);o.push(Array.from(b))}const i=Y(n,ye),a=Q(i,s),l=Y(n,ke),g=Q(l,r);return{config:t,message_terminals:o,checksum_major_terminal:Array.from(g),checksum_minor_terminal:Array.from(a)}}async function Vt(n){try{if(n.length!==Pt)throw new Error(`WOTS seed must be exactly ${Pt} bytes, got ${n.length}`);const t=[];for(let e=0;e<X.length;e++){const s=X[e],r=_e(s),o=new Uint8Array(n.length+1);o.set(n),o[n.length]=e;const i=it(o);try{const a=Be(i,r);if(a.config.d!==st)throw new Error(`Block ${e}: expected d=${st}, got d=${a.config.d}`);if(a.config.n!==s)throw new Error(`Block ${e}: expected n=${s}, got n=${a.config.n}`);if(a.message_terminals.length!==s)throw new Error(`Block ${e}: expected ${s} message terminals, got ${a.message_terminals.length}`);for(let l=0;l<a.message_terminals.length;l++)if(a.message_terminals[l].length!==B)throw new Error(`Block ${e} terminal ${l}: expected ${B} bytes, got ${a.message_terminals[l].length}`);if(a.checksum_minor_terminal.length!==B)throw new Error(`Block ${e} checksum_minor: expected ${B} bytes`);if(a.checksum_major_terminal.length!==B)throw new Error(`Block ${e} checksum_major: expected ${B} bytes`);t.push(a)}finally{o.fill(0),i.fill(0)}}if(t.length!==X.length)throw new Error(`Expected ${X.length} blocks, got ${t.length}`);return t}finally{n.fill(0)}}function J(n,t,e){if(n.length!==B)throw new Error(`Block ${t} ${e}: expected ${B} bytes, got ${n.length}`);for(let s=0;s<n.length;s++){const r=n[s];if(!Number.isInteger(r)||r<0||r>255)throw new Error(`Block ${t} ${e}[${s}]: invalid byte value ${r}`)}}function Mt(n){if(n.length===0)throw new Error("Public keys array must not be empty");for(let o=0;o<n.length;o++){const i=n[o];J(i.checksum_minor_terminal,o,"checksum_minor_terminal"),J(i.checksum_major_terminal,o,"checksum_major_terminal");for(let a=0;a<i.message_terminals.length;a++)J(i.message_terminals[a],o,`message_terminal[${a}]`)}let t=0;for(const o of n)t+=Ut+o.message_terminals.length;const e=new Uint8Array(t*B);let s=0;for(const o of n){e.set(o.checksum_minor_terminal,s),s+=B,e.set(o.checksum_major_terminal,s),s+=B;for(const i of o.message_terminals)e.set(i,s),s+=B}const r=we(e);return`0x${Ee(r)}`}async function Ae(n,t){const e=[],s=[],r=[],o=[];try{for(let i=0;i<t;i++){const a=await L.expandWotsSeed(n,i);try{const g=await Vt(a);e.push(g),s.push(Mt(g))}finally{a.fill(0)}const l=await L.expandHashlockSecret(n,i);try{const g=c.uint8ArrayToHex(l);r.push(g),o.push(Xt.computeHashlock(c.ensureHexPrefix(g)).slice(2))}finally{l.fill(0)}}}finally{n.fill(0)}return{perVaultWotsKeys:e,wotsPkHashes:s,htlcSecretHexes:r,hashlocks:o}}const ve=/^0x[0-9a-f]+$/i,He=/^[0-9a-f]+$/i,Se=/^[A-Za-z0-9+/]+={0,2}$/;function V(n){if(typeof n!="string"||n.length===0)throw new Error("BTC wallet returned empty public key");return c.processPublicKeyToXOnly(n).toLowerCase()}function Ie(n){if(typeof n!="string"||n.length===0)throw new Error("BTC wallet returned empty BIP-322 signature");if(n.startsWith("0x")||n.startsWith("0X")){if(!ve.test(n)||n.length<4||n.length%2!==0)throw new Error("BTC wallet returned malformed hex BIP-322 signature");return n.toLowerCase()}if(He.test(n)){if(n.length%2!==0)throw new Error("BTC wallet returned malformed hex BIP-322 signature");return`0x${n.toLowerCase()}`}if(!Se.test(n)||n.length%4!==0)throw new Error("BTC wallet returned malformed base64 BIP-322 signature");const t=tt.Buffer.from(n,"base64");if(t.length===0||t.toString("base64")!==n)throw new Error("BTC wallet returned malformed base64 BIP-322 signature");return`0x${t.toString("hex")}`}async function Ce(n,t,e){if(typeof n.signPsbts=="function"){const r=await n.signPsbts(t,e);if(r.length!==t.length)throw new Error(`Expected ${t.length} signed PSBTs but received ${r.length}`);return r}const s=[];for(let r=0;r<t.length;r++){const o=await n.signPsbt(t[r],e[r]);s.push(o)}return s}const Oe=0,K=25,xt=9999,q="00".repeat(32);function Re(n,t){const e={bitcoin:"bc",testnet:"tb",signet:"tb",regtest:"bcrt"};try{const s=rt.address.fromBech32(n);return s.prefix===e[t]&&s.version===0&&s.data.length===20}catch{return!1}}function $e(n,t,e,s){const r=e==null?void 0:e[`${n}:${t}`];return r?Promise.resolve({txid:n,vout:t,value:r.value,scriptPubKey:r.scriptPubKey}):wt.getUtxoInfo(n,t,s)}const bt=12e4;class Ue{constructor(t){E(this,"config");this.config=t}async preparePegin(t){if(t.amounts.length===0)throw new Error("amounts must contain at least one entry");const e=await this.config.btcWallet.getPublicKeyHex(),s=V(e);if(!c.isAddressFromPublicKey(t.changeAddress,e,this.config.btcNetwork))throw new Error(`Pre-PegIn changeAddress "${t.changeAddress}" is not derived from the connected wallet's public key. Refusing to build a tx that would send change to an address the signing key doesn't control.`);const r=await this.prepareSizing(s,t),o=r.selectedUTXOs.map(p=>({txid:c.hexToUint8Array(p.txid),vout:p.vout})),i=await Bt(this.config.btcWallet,{depositorBtcPubkey:c.hexToUint8Array(s),fundingOutpoints:o});let a,l;try{const p=await L.expandAuthAnchor(i);try{a=c.uint8ArrayToHex(p),l=c.uint8ArrayToHex(P.sha256(p))}finally{p.fill(0)}}catch(p){throw i.fill(0),p}const g=await Ae(i,t.amounts.length),{perVaultWotsKeys:u,wotsPkHashes:x,htlcSecretHexes:b,hashlocks:w}=g,f=await this.preparePeginCommit({depositorBtcPubkeyRaw:e,depositorBtcPubkey:s,hashlocks:w,authAnchorHash:l,sizing:r,params:t});for(let p=0;p<f.perVault.length;p++)if(f.perVault[p].htlcVout!==p)throw new Error(`Internal invariant violation: htlcVout/index mismatch at vault ${p} (expected ${p}, got ${f.perVault[p].htlcVout})`);return Jt(f.fundedPrePeginTxHex,t.amounts.length,l),{transaction:{...f,selectedUTXOs:r.selectedUTXOs,fee:r.fee,changeAmount:r.changeAmount},depositorBtcPubkey:s,derivedSecrets:{perVaultWotsKeys:u,wotsPkHashes:x,htlcSecretHexes:b,authAnchorHex:a}}}async prepareSizing(t,e){const s=e.amounts.map(()=>q),r=e.vaultKeeperBtcPubkeys.length,o=await R.buildPrePeginPsbt({depositorPubkey:t,vaultProviderPubkey:c.stripHexPrefix(e.vaultProviderBtcPubkey),vaultKeeperPubkeys:e.vaultKeeperBtcPubkeys.map(c.stripHexPrefix),universalChallengerPubkeys:e.universalChallengerBtcPubkeys.map(c.stripHexPrefix),hashlocks:s,timelockRefund:e.timelockRefund,pegInAmounts:e.amounts,feeRate:e.protocolFeeRate,numLocalChallengers:r,councilQuorum:e.councilQuorum,councilSize:e.councilSize,network:this.config.btcNetwork,authAnchorHash:q}),i=S.selectUtxosForPegin([...e.availableUTXOs],o.totalOutputValue,e.mempoolFeeRate,lt.peginOutputCount(o.htlcValues.length,q));return{selectedUTXOs:i.selectedUTXOs,fee:i.fee,changeAmount:i.changeAmount}}async preparePeginCommit(t){const{depositorBtcPubkeyRaw:e,depositorBtcPubkey:s,hashlocks:r,authAnchorHash:o,sizing:i,params:a}=t,l=q.toLowerCase();for(let d=0;d<r.length;d++)if(r[d].toLowerCase()===l)throw new Error(`preparePeginCommit refusing to build with sizing-pass placeholder hashlock at vault ${d} — internal substitution bug`);if(o.toLowerCase()===l)throw new Error("preparePeginCommit refusing to build with sizing-pass placeholder auth-anchor hash — internal substitution bug");const g=c.stripHexPrefix(a.vaultProviderBtcPubkey),u=a.vaultKeeperBtcPubkeys.map(c.stripHexPrefix),x=a.universalChallengerBtcPubkeys.map(c.stripHexPrefix),b=u.length,w={depositorPubkey:s,vaultProviderPubkey:g,vaultKeeperPubkeys:u,universalChallengerPubkeys:x,hashlocks:r,timelockRefund:a.timelockRefund,pegInAmounts:a.amounts,feeRate:a.protocolFeeRate,numLocalChallengers:b,councilQuorum:a.councilQuorum,councilSize:a.councilSize,network:this.config.btcNetwork,authAnchorHash:o},f=await R.buildPrePeginPsbt(w),p=c.getNetwork(this.config.btcNetwork),T=lt.fundPeginTransaction({unfundedTxHex:f.psbtHex,selectedUTXOs:i.selectedUTXOs,changeAddress:a.changeAddress,changeAmount:i.changeAmount,network:p}),v=c.stripHexPrefix(S.calculateBtcTxHash(T)),_=[],m=[],y=[];for(let d=0;d<r.length;d++){const A=await R.buildPeginTxFromFundedPrePegin({prePeginParams:w,timelockPegin:a.timelockPegin,fundedPrePeginTxHex:T,htlcVout:d}),H=await R.buildPeginInputPsbt({peginTxHex:A.txHex,fundedPrePeginTxHex:T,depositorPubkey:s,vaultProviderPubkey:g,vaultKeeperPubkeys:u,universalChallengerPubkeys:x,hashlock:r[d],timelockRefund:a.timelockRefund,network:this.config.btcNetwork});_.push(A),m.push(H.psbtHex),y.push(Ft.createTaprootScriptPathSignOptions(e,1))}const k=await Ce(this.config.btcWallet,m,y),h=[];for(let d=0;d<k.length;d++){at.assertPsbtUnsignedTxMatches({requestedPsbtHex:m[d],returnedPsbtHex:k[d]});const A=R.extractPeginInputSignature(k[d],s),H=R.finalizePeginInputPsbt(k[d]);h.push({htlcVout:d,htlcValue:f.htlcValues[d],peginTxHex:H,peginTxid:_[d].txid,peginInputSignature:A,vaultScriptPubKey:_[d].vaultScriptPubKey})}return{fundedPrePeginTxHex:T,prePeginTxid:v,perVault:h}}async signAndBroadcast(t){const{fundedPrePeginTxHex:e,depositorBtcPubkey:s}=t,r=e.startsWith("0x")?e.slice(2):e,o=D.Transaction.fromHex(r);if(o.ins.length===0)throw new Error("Transaction has no inputs");const i=new D.Psbt;i.setVersion(o.version),i.setLocktime(o.locktime);const a=tt.Buffer.from(V(s),"hex"),l=this.config.mempoolApiUrl,g=o.ins.map(m=>{const y=tt.Buffer.from(m.hash).reverse().toString("hex"),k=m.index;return $e(y,k,t.localPrevouts,l).then(h=>({input:m,utxoData:h,txid:y,vout:k}))}),u=await Promise.all(g),x=u.reduce((m,y)=>m+BigInt(y.utxoData.value),0n),b=o.outs.reduce((m,y)=>m+BigInt(y.value),0n);if(x<b)throw new Error(`UTXO value mismatch: total input value (${x} sat) is less than total output value (${b} sat). This may indicate the mempool API returned manipulated UTXO data.`);const w=x-b;if(w>ct.MAX_REASONABLE_FEE_SATS)throw new Error(`Implied transaction fee (${w} sat) exceeds maximum reasonable fee (${ct.MAX_REASONABLE_FEE_SATS} sat). This may indicate manipulated UTXO data.`);for(const{input:m,utxoData:y,txid:k,vout:h}of u){const d=S.getPsbtInputFields({value:y.value,scriptPubKey:y.scriptPubKey},a);i.addInput({hash:m.hash,index:m.index,sequence:m.sequence,...d})}for(const m of o.outs)i.addOutput({script:m.script,value:m.value});const f=i.toHex(),p=await this.config.btcWallet.signPsbt(f);at.assertPsbtUnsignedTxMatches({requestedPsbtHex:f,returnedPsbtHex:p});const T=D.Psbt.fromHex(p);try{T.finalizeAllInputs()}catch(m){if(!T.data.inputs.every(k=>k.finalScriptWitness||k.finalScriptSig))throw new Error(`PSBT finalization failed and wallet did not auto-finalize: ${m}`)}const v=T.extractTransaction().toHex();return await wt.pushTx(v,l)}async registerPeginOnChain(t){const{unsignedPrePeginTx:e,depositorSignedPeginTx:s,vaultProvider:r,hashlock:o,htlcVout:i,depositorPayoutBtcAddress:a,depositorWotsPkHash:l,popSignature:g}=t;if(!this.config.ethWallet.account)throw new Error("Ethereum wallet account not found");const u=this.config.ethWallet.account.address;if(!U.isAddressEqual(g.depositorEthAddress,u))throw new Error(`Proof of possession was signed for ${g.depositorEthAddress} but the Ethereum wallet is currently connected to ${u}. Reconnect the original account or call signProofOfPossession() again.`);const x=await this.assertPopMatchesBtcWallet(g),b=g.btcPopSignature,w=c.ensureHexPrefix(g.depositorBtcPubkey),f=c.ensureHexPrefix(e),p=c.ensureHexPrefix(s),T=a??await this.config.btcWallet.getAddress(),v=this.resolvePayoutScriptPubKey(x,T),_=S.calculateBtcTxHash(p),m=await L.deriveVaultId(c.stripHexPrefix(_),c.stripHexPrefix(u)),y=c.ensureHexPrefix(m);if(await this.checkVaultExists(y))throw new Error(`Vault already exists (ID: ${y}, peginTxHash: ${_}). Vault IDs are derived from the pegin transaction hash and depositor address. To create a new vault, use different UTXOs or a different amount to generate a unique transaction.`);const h=this.config.publicClient;let d;try{d=await h.readContract({address:this.config.vaultContracts.btcVaultRegistry,abi:C.BTCVaultRegistryABI,functionName:"getPegInFee",args:[r]})}catch($){throw new Error("Failed to query pegin fee from the contract. Please check your network connection and that the contract address is correct.",{cause:$})}const A=await this.resolveMaxAcceptableCommissionBps(r,t.quotedCommissionBps),H=U.encodeFunctionData({abi:C.BTCVaultRegistryABI,functionName:"submitPeginRequest",args:[u,w,b,f,p,r,A,o,i,v,l]});let I;try{I=await h.estimateGas({to:this.config.vaultContracts.btcVaultRegistry,data:H,value:d,account:this.config.ethWallet.account.address})}catch($){O.handleContractError($)}let j;try{j=await this.config.ethWallet.sendTransaction({to:this.config.vaultContracts.btcVaultRegistry,data:H,value:d,account:this.config.ethWallet.account,chain:this.config.ethChain,gas:I})}catch($){O.handleContractError($)}const G=await S.waitForTransactionReceiptSmartAware({publicClient:h,walletAddress:this.config.ethWallet.account.address,hash:j,timeout:bt});return G.status==="reverted"&&O.handleContractError(new Error(`Transaction reverted. Hash: ${G.transactionHash}. Check the transaction on block explorer for details.`)),{ethTxHash:G.transactionHash,vaultId:y,peginTxHash:_}}async registerPeginBatchOnChain(t){const{vaultProvider:e,unsignedPrePeginTx:s,requests:r,popSignature:o}=t;if(r.length===0)throw new Error("Batch pegin requires at least one request");if(!this.config.ethWallet.account)throw new Error("Ethereum wallet account not found");const i=this.config.ethWallet.account.address;if(!U.isAddressEqual(o.depositorEthAddress,i))throw new Error(`Proof of possession was signed for ${o.depositorEthAddress} but the Ethereum wallet is currently connected to ${i}. Reconnect the original account or call signProofOfPossession() again.`);const a=await this.assertPopMatchesBtcWallet(o),l=o.btcPopSignature,g=r.map(h=>this.resolvePayoutScriptPubKey(a,h.depositorPayoutBtcAddress)),u=[];for(const h of r){const d=c.ensureHexPrefix(h.depositorSignedPeginTx),A=S.calculateBtcTxHash(d),H=await L.deriveVaultId(c.stripHexPrefix(A),c.stripHexPrefix(i)),I=c.ensureHexPrefix(H);if(await this.checkVaultExists(I))throw new Error(`Vault already exists (ID: ${I}, peginTxHash: ${A}). To create a new vault, use different UTXOs or a different amount.`);u.push({vaultId:I,peginTxHash:A})}const x=this.config.publicClient;let b;try{b=await x.readContract({address:this.config.vaultContracts.btcVaultRegistry,abi:C.BTCVaultRegistryABI,functionName:"getPegInFee",args:[e]})}catch(h){throw new Error("Failed to query pegin fee from the contract. Please check your network connection and that the contract address is correct.",{cause:h})}const w=b*BigInt(r.length),f=await this.resolveMaxAcceptableCommissionBps(e,t.quotedCommissionBps),p=c.ensureHexPrefix(o.depositorBtcPubkey),T=c.ensureHexPrefix(s),v=r.map((h,d)=>({depositorBtcPubKey:p,btcPopSignature:l,unsignedPrePeginTx:T,depositorSignedPeginTx:c.ensureHexPrefix(h.depositorSignedPeginTx),hashlock:h.hashlock,htlcVout:h.htlcVout,referralCode:Oe,depositorPayoutBtcAddress:g[d],depositorWotsPkHash:h.depositorWotsPkHash})),_=U.encodeFunctionData({abi:C.BTCVaultRegistryABI,functionName:"submitPeginRequestBatch",args:[i,e,f,v]});let m;try{m=await x.estimateGas({to:this.config.vaultContracts.btcVaultRegistry,data:_,value:w,account:this.config.ethWallet.account.address})}catch(h){O.handleContractError(h)}let y;try{y=await this.config.ethWallet.sendTransaction({to:this.config.vaultContracts.btcVaultRegistry,data:_,value:w,account:this.config.ethWallet.account,chain:this.config.ethChain,gas:m})}catch(h){O.handleContractError(h)}const k=await S.waitForTransactionReceiptSmartAware({publicClient:x,walletAddress:this.config.ethWallet.account.address,hash:y,timeout:bt});return k.status==="reverted"&&O.handleContractError(new Error(`Batch transaction reverted. Hash: ${k.transactionHash}. Check the transaction on block explorer for details.`)),{ethTxHash:k.transactionHash,vaults:u}}async resolveMaxAcceptableCommissionBps(t,e){let s;try{s=await this.config.publicClient.readContract({address:this.config.vaultContracts.btcVaultRegistry,abi:C.BTCVaultRegistryABI,functionName:"getVaultProviderCommission",args:[t]})}catch(r){throw new Error("Failed to query vault provider commission from the contract. Please check your network connection and that the contract address is correct.",{cause:r})}if(e!==void 0){if(s>e+K)throw new Error(`Vault provider commission changed since quote: quoted ${e} bps, chain currently reports ${s} bps (allowed drift ${K} bps). Please refresh to see the new commission and try again.`);return Math.min(e+K,xt)}return Math.min(s+K,xt)}async checkVaultExists(t){return(await this.config.publicClient.readContract({address:this.config.vaultContracts.btcVaultRegistry,abi:C.BTCVaultRegistryABI,functionName:"getBtcVaultBasicInfo",args:[t]})).depositor!==U.zeroAddress}resolvePayoutScriptPubKey(t,e){if(!c.isAddressFromPublicKey(e,t,this.config.btcNetwork))throw c.stripHexPrefix(t).length===c.X_ONLY_PUBKEY_HEX_LEN&&Re(e,this.config.btcNetwork)?new Error(`BTC payout address "${e}" is a P2WPKH (Native SegWit) address, but the connected wallet only exposes an x-only public key. P2WPKH validation requires a compressed key with known y-parity. Use a P2TR (Taproot) payout address instead.`):new Error(`BTC payout address "${e}" is not derived from the connected wallet's public key. The payout sink must be controlled by the same key that signs the pegin; refusing to register a mismatched address.`);const s=c.getNetwork(this.config.btcNetwork);try{return`0x${rt.address.toOutputScript(e,s).toString("hex")}`}catch{throw new Error(`Invalid BTC payout address: "${e}". Please provide a valid Bitcoin address for the ${this.config.btcNetwork} network.`)}}async signProofOfPossession(){if(!this.config.ethWallet.account)throw new Error("Ethereum wallet account not found");const t=this.config.ethWallet.account.address,e=V(await this.config.btcWallet.getPublicKeyHex()),s=this.config.vaultContracts.btcVaultRegistry,r=`${t.toLowerCase()}:${this.config.ethChain.id}:pegin:${s.toLowerCase()}`,o=await this.config.btcWallet.signMessage(r,"bip322-simple");return{btcPopSignature:Ie(o),depositorEthAddress:t,depositorBtcPubkey:e}}async assertPopMatchesBtcWallet(t){const e=await this.config.btcWallet.getPublicKeyHex(),s=V(e),r=V(t.depositorBtcPubkey);if(s!==r)throw new Error(`Proof of possession was signed with BTC pubkey ${r} but the BTC wallet is currently connected to ${s}. Reconnect the original wallet or call signProofOfPossession() again.`);return e}getNetwork(){return this.config.btcNetwork}getVaultContractAddress(){return this.config.vaultContracts.btcVaultRegistry}}exports.PeginManager=Ue;exports.VAULT_APP_NAME=Tt;exports.buildFundingOutpointsCommitment=kt;exports.buildVaultContext=Et;exports.computeWotsBlockPublicKeysHash=Mt;exports.deriveVaultRoot=Bt;exports.deriveWotsBlocksFromSeed=Vt;
|
|
2
|
-
//# sourceMappingURL=PeginManager-BRHJZYmE.cjs.map
|