@dynamic-labs-wallet/btc 0.0.235 → 0.0.236

package/index.cjs.js

@@ -122,6 +122,7 @@ let isInitialized = false;
     return address;
 };
 
+// eslint-disable-next-line @nx/enforce-module-boundaries
 /**
  * Converts a public key to a Bitcoin address
  *
@@ -231,6 +232,7 @@ const compressPublicKey = (x, yLastByte)=>{
     ]);
 };
 
+// eslint-disable @nx/enforce-module-boundaries
 /**
  * Normalizes a public key to a standard Buffer format
  * Handles various input types (Uint8Array, Buffer, object with pubKeyAsHex, etc.)
@@ -248,6 +250,7 @@ const compressPublicKey = (x, yLastByte)=>{
     return normalizeForCompressed(buffer);
 };
 
+// eslint-disable-next-line @nx/enforce-module-boundaries
 /**
  * Infers the Bitcoin address type from a BIP-44 derivation path
  *
@@ -447,6 +450,101 @@ initEccLib();
     }
 };
 
+/**
+ * Converts a Bitcoin WIF (Wallet Import Format) private key to hex format
+ * This is the reverse operation of `privateKeyToWIF`
+ *
+ * WIF decoding steps:
+ * 1. Base58 decode the WIF string
+ * 2. Validate network prefix
+ * 3. Validate checksum (double SHA-256, first 4 bytes)
+ * 4. Extract private key bytes (skip prefix, compression flag, and checksum)
+ * 5. Convert to hex string
+ *
+ * @param wif - Private key in WIF format (Base58 encoded)
+ * @param network - Bitcoin network (mainnet, testnet)
+ * @returns Private key as hex string (64 characters, 32 bytes)
+ * @throws Error if WIF format is invalid
+ */ const wifToPrivateKey = (wif, network = 'mainnet')=>{
+    try {
+        // 1. Decode Base58
+        const decoded = bs58.decode(wif);
+        // 2. Validate length (should be 37 bytes: 1 prefix + 32 key + 1 compression + 4 checksum)
+        //    or 38 bytes (with compression flag)
+        if (decoded.length !== 37 && decoded.length !== 38) {
+            throw new Error(`Invalid WIF length: ${decoded.length}, expected 37 or 38 bytes`);
+        }
+        // 3. Get network config to validate prefix
+        const networkConfig = getBitcoinNetwork(network);
+        const expectedPrefix = networkConfig.wif;
+        // 4. Validate network prefix
+        if (decoded[0] !== expectedPrefix) {
+            throw new Error(`Invalid WIF network prefix: expected ${expectedPrefix}, got ${decoded[0]}`);
+        }
+        // 5. Validate checksum
+        const payload = decoded.slice(0, -4);
+        const checksum = decoded.slice(-4);
+        const firstHash = sha256.sha256(payload);
+        const secondHash = sha256.sha256(firstHash);
+        const calculatedChecksum = secondHash.slice(0, 4);
+        if (!calculatedChecksum.every((byte, index)=>byte === checksum[index])) {
+            throw new Error('Invalid WIF checksum');
+        }
+        // 6. Extract private key bytes (skip prefix, skip compression flag if present, skip checksum)
+        // Private key is always 32 bytes, starting at index 1
+        const privateKeyStart = 1;
+        const privateKeyEnd = 33; // 32 bytes of private key
+        const privateKeyBytes = decoded.slice(privateKeyStart, privateKeyEnd);
+        // 7. Convert to hex string
+        return Buffer.from(privateKeyBytes).toString('hex');
+    } catch (error) {
+        throw new Error(`Invalid WIF format: ${error instanceof Error ? error.message : String(error)}. Only WIF format is supported.`);
+    }
+};
+
+/**
+ * Derives a public key from a private key (WIF format) based on address type
+ *
+ * - For NATIVE_SEGWIT (ECDSA): Returns compressed public key (33 bytes)
+ * - For TAPROOT (BIP340): Returns x-only public key (32 bytes)
+ *
+ * @param privateKey - Private key in WIF format (Base58 encoded)
+ * @param addressType - Bitcoin address type (NATIVE_SEGWIT or TAPROOT)
+ * @param network - Bitcoin network (mainnet, testnet)
+ * @returns Public key as Buffer (33 bytes for NATIVE_SEGWIT, 32 bytes for TAPROOT)
+ * @throws Error if private key is invalid or derivation fails
+ */ const getPublicKeyFromPrivateKey = async (privateKey, addressType, network = 'mainnet')=>{
+    initEccLib();
+    try {
+        // 1. Decode WIF to hex
+        const privateKeyHex = wifToPrivateKey(privateKey, network);
+        const privateKeyBytes = new Uint8Array(Buffer.from(privateKeyHex, 'hex'));
+        // 2. Import secp256k1 library
+        const ecc = await import('@bitcoinerlab/secp256k1');
+        // 3. Derive public key based on address type
+        if (addressType === 'taproot') {
+            // BIP340/Taproot: Derive x-only public key (32 bytes)
+            // Get the public key point
+            const publicKeyPoint = ecc.pointFromScalar(privateKeyBytes);
+            if (!publicKeyPoint) {
+                throw new Error('Failed to derive public key from private key');
+            }
+            // For Taproot, we need the 32-byte x-only public key
+            // publicKeyPoint is 33 bytes (0x02/0x03 + 32 bytes x), we take the last 32 bytes
+            return Buffer.from(publicKeyPoint.subarray(1)); // Skip prefix, get x-coordinate
+        } else {
+            // NATIVE_SEGWIT (ECDSA): Derive compressed public key (33 bytes)
+            const publicKeyPoint = ecc.pointFromScalar(privateKeyBytes, true); // compressed = true
+            if (!publicKeyPoint) {
+                throw new Error('Failed to derive public key from private key');
+            }
+            return Buffer.from(publicKeyPoint); // 33 bytes compressed
+        }
+    } catch (error) {
+        throw new Error(`Failed to derive public key from private key: ${error instanceof Error ? error.message : String(error)}`);
+    }
+};
+
 /**
  * Converts an ECDSA signature to DER format
  *
@@ -614,6 +712,48 @@ initEccLib();
     };
 };
 
+/**
+ * Checks if a PSBT input belongs to a specific address
+ * @param input - The PSBT input (from psbt.data.inputs)
+ * @param address - The address to check against
+ * @param network - The Bitcoin network
+ * @returns True if the input belongs to the address, false otherwise
+ */ const doesInputBelongToAddress = (input, address, network)=>{
+    if (!input.witnessUtxo) {
+        return false;
+    }
+    const script = Buffer.isBuffer(input.witnessUtxo.script) ? input.witnessUtxo.script : Buffer.from(input.witnessUtxo.script);
+    const bitcoinNetwork = getBitcoinNetwork(network);
+    try {
+        // Try P2WPKH (Native SegWit) - script is OP_0 <20-byte hash>
+        if (script.length === 22 && script[0] === 0x00 && script[1] === 0x14) {
+            const p2wpkh = bitcoin__namespace.payments.p2wpkh({
+                output: script,
+                network: bitcoinNetwork
+            });
+            return p2wpkh.address === address;
+        }
+        // Try P2TR (Taproot) - script is OP_1 <32-byte x-only pubkey>
+        if (script.length === 34 && script[0] === 0x51 && script[1] === 0x20) {
+            const p2tr = bitcoin__namespace.payments.p2tr({
+                output: script,
+                network: bitcoinNetwork
+            });
+            return p2tr.address === address;
+        }
+        return false;
+    } catch (error) {
+        // eslint-disable-next-line no-console
+        console.log('[doesInputBelongToAddress] Error checking input', {
+            address,
+            network,
+            error: error instanceof Error ? error.message : String(error)
+        });
+        return false;
+    }
+};
+
+// eslint-disable-next-line @nx/enforce-module-boundaries
 class DynamicBtcWalletClient extends browser.DynamicWalletClient {
     /**
    * Creates a Bitcoin wallet account
@@ -914,6 +1054,117 @@ class DynamicBtcWalletClient extends browser.DynamicWalletClient {
         return this.convertPrivateKeyToBitcoinFormat(derivedPrivateKey, browser.BitcoinNetwork.MAINNET);
     }
     /**
+   * Imports a private key and creates a Bitcoin wallet account
+   * @param privateKey - Private key in WIF format (Base58 encoded)
+   * @param chainName - Chain name ('BTC')
+   * @param thresholdSignatureScheme - The threshold signature scheme to use
+   * @param password - Optional password for encrypted backup
+   * @param onError - Optional error callback
+   * @param signedSessionId - The signed session ID
+   * @param publicAddressCheck - Optional address to validate against
+   * @param addressType - Bitcoin address type (NATIVE_SEGWIT or TAPROOT)
+   * @returns The account address, public key hex, and raw public key
+   */ async importPrivateKey({ privateKey, chainName, thresholdSignatureScheme, password = undefined, onError, signedSessionId, publicAddressCheck, addressType }) {
+        try {
+            const network = browser.BitcoinNetwork.MAINNET;
+            if (!addressType) {
+                throw new Error('addressType is required for BTC importPrivateKey');
+            }
+            const bitcoinAddressType = addressType;
+            if (bitcoinAddressType !== browser.BitcoinAddressType.NATIVE_SEGWIT && bitcoinAddressType !== browser.BitcoinAddressType.TAPROOT) {
+                throw new Error(`Invalid addressType: ${addressType}. Must be one of: ${browser.BitcoinAddressType.NATIVE_SEGWIT}, ${browser.BitcoinAddressType.TAPROOT}`);
+            }
+            const addressTypeEnum = bitcoinAddressType;
+            let ceremonyCeremonyCompleteResolver;
+            let ceremonyAccountAddress;
+            const ceremonyCompletePromise = new Promise((resolve)=>{
+                ceremonyCeremonyCompleteResolver = resolve;
+            });
+            const formattedPrivateKey = wifToPrivateKey(privateKey, network);
+            if (publicAddressCheck) {
+                const derivedPublicKey = await getPublicKeyFromPrivateKey(privateKey, addressTypeEnum, network);
+                const { accountAddress } = this.deriveAccountAddress({
+                    rawPublicKey: derivedPublicKey,
+                    addressType: addressTypeEnum,
+                    network
+                });
+                if (accountAddress !== publicAddressCheck) {
+                    throw new Error(`Public address mismatch: derived address ${accountAddress} !== public address ${publicAddressCheck}`);
+                }
+            }
+            const { rawPublicKey, clientKeyShares } = await this.importRawPrivateKey({
+                chainName,
+                privateKey: formattedPrivateKey,
+                thresholdSignatureScheme,
+                bitcoinConfig: {
+                    addressType: addressTypeEnum,
+                    network
+                },
+                onCeremonyComplete: (accountAddress, walletId)=>{
+                    ceremonyAccountAddress = accountAddress;
+                    const chainConfig = browser.getMPCChainConfig(this.chainName, {
+                        addressType: addressTypeEnum,
+                        network
+                    });
+                    this.walletMap[accountAddress] = _extends({}, this.walletMap[accountAddress] || {}, {
+                        accountAddress,
+                        walletId,
+                        chainName: this.chainName,
+                        thresholdSignatureScheme,
+                        derivationPath: JSON.stringify(Object.fromEntries(chainConfig.derivationPath.map((value, index)=>[
+                                index,
+                                value
+                            ]))),
+                        addressType: addressTypeEnum,
+                        clientKeySharesBackupInfo: browser.getClientKeyShareBackupInfo()
+                    });
+                    this.logger.debug('walletMap updated for wallet', {
+                        context: {
+                            accountAddress,
+                            walletId,
+                            walletMap: this.walletMap
+                        }
+                    });
+                    ceremonyCeremonyCompleteResolver(undefined);
+                },
+                onError
+            });
+            await ceremonyCompletePromise;
+            if (!rawPublicKey || !clientKeyShares) {
+                throw new Error(browser.ERROR_IMPORT_PRIVATE_KEY);
+            }
+            const accountAddress = ceremonyAccountAddress || this.deriveAccountAddress({
+                rawPublicKey,
+                addressType: addressTypeEnum,
+                network
+            }).accountAddress;
+            if (publicAddressCheck && accountAddress !== publicAddressCheck) {
+                throw new Error(`Public address mismatch: derived address ${accountAddress} !== public address ${publicAddressCheck}`);
+            }
+            await this.setClientKeySharesToLocalStorage({
+                accountAddress,
+                clientKeyShares,
+                overwriteOrMerge: 'overwrite'
+            });
+            await this.storeEncryptedBackupByWalletWithRetry({
+                accountAddress,
+                clientKeyShares,
+                password,
+                signedSessionId
+            });
+            const publicKeyHex = this.extractPublicKeyHex(rawPublicKey);
+            return {
+                accountAddress,
+                publicKeyHex,
+                rawPublicKey
+            };
+        } catch (error) {
+            this.logger.error(browser.ERROR_IMPORT_PRIVATE_KEY, error);
+            onError == null ? void 0 : onError(error);
+            throw new Error(browser.ERROR_IMPORT_PRIVATE_KEY);
+        }
+    }
+    /**
    * Converts MPC private key to Bitcoin WIF (Wallet Import Format)
    * Uses the utility function from utils.ts for the core conversion logic
    * @param privateKey - The private key to convert to a Bitcoin WIF format
@@ -1000,6 +1251,22 @@ class DynamicBtcWalletClient extends browser.DynamicWalletClient {
             }
             const pubKey = normalizePublicKey(derivedPublicKey, addressType);
             const tx = psbt.__CACHE.__TX;
+            // Filter inputs to only sign those that belong to the current address
+            const inputsToSign = psbt.data.inputs.map((input, i)=>({
+                    input,
+                    index: i
+                })).filter(({ input })=>doesInputBelongToAddress(input, senderAddress, network));
+            this.logger.debug('[BTC Client] signTransaction - Filtering inputs', {
+                totalInputs: psbt.data.inputs.length,
+                inputsToSign: inputsToSign.length,
+                senderAddress
+            });
+            if (inputsToSign.length === 0) {
+                this.logger.warn('[BTC Client] signTransaction - No inputs found for address', {
+                    senderAddress,
+                    totalInputs: psbt.data.inputs.length
+                });
+            }
             if (addressType === browser.BitcoinAddressType.TAPROOT) {
                 const tweak = calculateTaprootTweak(pubKey);
                 const completeBitcoinConfig = _extends({}, bitcoinConfig, {
@@ -1007,7 +1274,7 @@ class DynamicBtcWalletClient extends browser.DynamicWalletClient {
                     tweak
                 });
                 const { prevOutScripts, values } = collectPSBTInputData(psbt);
-                await Promise.all(psbt.data.inputs.map(async (input, i)=>{
+                await Promise.all(inputsToSign.map(async ({ input, index: i })=>{
                     if (!input.witnessUtxo) {
                         throw new Error(`Input ${i} missing witnessUtxo`);
                     }
@@ -1036,17 +1303,16 @@ class DynamicBtcWalletClient extends browser.DynamicWalletClient {
                     addressType: addressType
                 });
                 // Iterate and sign inputs in parallel for better performance
-                await Promise.all(psbt.data.inputs.map(async (input, i)=>{
+                await Promise.all(inputsToSign.map(async ({ input, index: i })=>{
                     if (!input.witnessUtxo) {
                         throw new Error(`Input ${i} missing witnessUtxo`);
                     }
                     const { script, value } = input.witnessUtxo;
-                    // For Native SegWit (P2WPKH), use p2wpkh
-                    const p2wpkh = bitcoin__namespace.payments.p2wpkh({
-                        output: script,
+                    const p2pkh = bitcoin__namespace.payments.p2pkh({
+                        hash: script.slice(2),
                         network: getBitcoinNetwork(network)
                     });
-                    const scriptCode = p2wpkh.output || script;
+                    const scriptCode = p2pkh.output;
                     if (!scriptCode) throw new Error('Failed to generate scriptCode');
                     const hash = tx.hashForWitnessV0(i, scriptCode, value, bitcoin__namespace.Transaction.SIGHASH_ALL);
                     const signature = await this.sign({

package/index.esm.js

@@ -1,4 +1,4 @@
-import { BitcoinAddressType, DynamicWalletClient, BitcoinNetwork, getMPCChainConfig, getClientKeyShareBackupInfo, ERROR_CREATE_WALLET_ACCOUNT, WalletOperation, ERROR_ACCOUNT_ADDRESS_REQUIRED, ERROR_SIGN_MESSAGE, AuthMode } from '@dynamic-labs-wallet/browser';
+import { BitcoinAddressType, DynamicWalletClient, BitcoinNetwork, getMPCChainConfig, getClientKeyShareBackupInfo, ERROR_CREATE_WALLET_ACCOUNT, WalletOperation, ERROR_ACCOUNT_ADDRESS_REQUIRED, ERROR_SIGN_MESSAGE, ERROR_IMPORT_PRIVATE_KEY, AuthMode } from '@dynamic-labs-wallet/browser';
 import * as bitcoin from 'bitcoinjs-lib';
 import { payments, initEccLib as initEccLib$1 } from 'bitcoinjs-lib';
 import ecc from '@bitcoinerlab/secp256k1';
@@ -102,6 +102,7 @@ let isInitialized = false;
     return address;
 };
 
+// eslint-disable-next-line @nx/enforce-module-boundaries
 /**
  * Converts a public key to a Bitcoin address
  *
@@ -211,6 +212,7 @@ const compressPublicKey = (x, yLastByte)=>{
     ]);
 };
 
+// eslint-disable @nx/enforce-module-boundaries
 /**
  * Normalizes a public key to a standard Buffer format
  * Handles various input types (Uint8Array, Buffer, object with pubKeyAsHex, etc.)
@@ -228,6 +230,7 @@ const compressPublicKey = (x, yLastByte)=>{
     return normalizeForCompressed(buffer);
 };
 
+// eslint-disable-next-line @nx/enforce-module-boundaries
 /**
  * Infers the Bitcoin address type from a BIP-44 derivation path
  *
@@ -427,6 +430,101 @@ initEccLib();
     }
 };
 
+/**
+ * Converts a Bitcoin WIF (Wallet Import Format) private key to hex format
+ * This is the reverse operation of `privateKeyToWIF`
+ *
+ * WIF decoding steps:
+ * 1. Base58 decode the WIF string
+ * 2. Validate network prefix
+ * 3. Validate checksum (double SHA-256, first 4 bytes)
+ * 4. Extract private key bytes (skip prefix, compression flag, and checksum)
+ * 5. Convert to hex string
+ *
+ * @param wif - Private key in WIF format (Base58 encoded)
+ * @param network - Bitcoin network (mainnet, testnet)
+ * @returns Private key as hex string (64 characters, 32 bytes)
+ * @throws Error if WIF format is invalid
+ */ const wifToPrivateKey = (wif, network = 'mainnet')=>{
+    try {
+        // 1. Decode Base58
+        const decoded = bs58.decode(wif);
+        // 2. Validate length (should be 37 bytes: 1 prefix + 32 key + 1 compression + 4 checksum)
+        //    or 38 bytes (with compression flag)
+        if (decoded.length !== 37 && decoded.length !== 38) {
+            throw new Error(`Invalid WIF length: ${decoded.length}, expected 37 or 38 bytes`);
+        }
+        // 3. Get network config to validate prefix
+        const networkConfig = getBitcoinNetwork(network);
+        const expectedPrefix = networkConfig.wif;
+        // 4. Validate network prefix
+        if (decoded[0] !== expectedPrefix) {
+            throw new Error(`Invalid WIF network prefix: expected ${expectedPrefix}, got ${decoded[0]}`);
+        }
+        // 5. Validate checksum
+        const payload = decoded.slice(0, -4);
+        const checksum = decoded.slice(-4);
+        const firstHash = sha256(payload);
+        const secondHash = sha256(firstHash);
+        const calculatedChecksum = secondHash.slice(0, 4);
+        if (!calculatedChecksum.every((byte, index)=>byte === checksum[index])) {
+            throw new Error('Invalid WIF checksum');
+        }
+        // 6. Extract private key bytes (skip prefix, skip compression flag if present, skip checksum)
+        // Private key is always 32 bytes, starting at index 1
+        const privateKeyStart = 1;
+        const privateKeyEnd = 33; // 32 bytes of private key
+        const privateKeyBytes = decoded.slice(privateKeyStart, privateKeyEnd);
+        // 7. Convert to hex string
+        return Buffer.from(privateKeyBytes).toString('hex');
+    } catch (error) {
+        throw new Error(`Invalid WIF format: ${error instanceof Error ? error.message : String(error)}. Only WIF format is supported.`);
+    }
+};
+
+/**
+ * Derives a public key from a private key (WIF format) based on address type
+ *
+ * - For NATIVE_SEGWIT (ECDSA): Returns compressed public key (33 bytes)
+ * - For TAPROOT (BIP340): Returns x-only public key (32 bytes)
+ *
+ * @param privateKey - Private key in WIF format (Base58 encoded)
+ * @param addressType - Bitcoin address type (NATIVE_SEGWIT or TAPROOT)
+ * @param network - Bitcoin network (mainnet, testnet)
+ * @returns Public key as Buffer (33 bytes for NATIVE_SEGWIT, 32 bytes for TAPROOT)
+ * @throws Error if private key is invalid or derivation fails
+ */ const getPublicKeyFromPrivateKey = async (privateKey, addressType, network = 'mainnet')=>{
+    initEccLib();
+    try {
+        // 1. Decode WIF to hex
+        const privateKeyHex = wifToPrivateKey(privateKey, network);
+        const privateKeyBytes = new Uint8Array(Buffer.from(privateKeyHex, 'hex'));
+        // 2. Import secp256k1 library
+        const ecc = await import('@bitcoinerlab/secp256k1');
+        // 3. Derive public key based on address type
+        if (addressType === 'taproot') {
+            // BIP340/Taproot: Derive x-only public key (32 bytes)
+            // Get the public key point
+            const publicKeyPoint = ecc.pointFromScalar(privateKeyBytes);
+            if (!publicKeyPoint) {
+                throw new Error('Failed to derive public key from private key');
+            }
+            // For Taproot, we need the 32-byte x-only public key
+            // publicKeyPoint is 33 bytes (0x02/0x03 + 32 bytes x), we take the last 32 bytes
+            return Buffer.from(publicKeyPoint.subarray(1)); // Skip prefix, get x-coordinate
+        } else {
+            // NATIVE_SEGWIT (ECDSA): Derive compressed public key (33 bytes)
+            const publicKeyPoint = ecc.pointFromScalar(privateKeyBytes, true); // compressed = true
+            if (!publicKeyPoint) {
+                throw new Error('Failed to derive public key from private key');
+            }
+            return Buffer.from(publicKeyPoint); // 33 bytes compressed
+        }
+    } catch (error) {
+        throw new Error(`Failed to derive public key from private key: ${error instanceof Error ? error.message : String(error)}`);
+    }
+};
+
 /**
  * Converts an ECDSA signature to DER format
  *
@@ -594,6 +692,48 @@ initEccLib();
     };
 };
 
+/**
+ * Checks if a PSBT input belongs to a specific address
+ * @param input - The PSBT input (from psbt.data.inputs)
+ * @param address - The address to check against
+ * @param network - The Bitcoin network
+ * @returns True if the input belongs to the address, false otherwise
+ */ const doesInputBelongToAddress = (input, address, network)=>{
+    if (!input.witnessUtxo) {
+        return false;
+    }
+    const script = Buffer.isBuffer(input.witnessUtxo.script) ? input.witnessUtxo.script : Buffer.from(input.witnessUtxo.script);
+    const bitcoinNetwork = getBitcoinNetwork(network);
+    try {
+        // Try P2WPKH (Native SegWit) - script is OP_0 <20-byte hash>
+        if (script.length === 22 && script[0] === 0x00 && script[1] === 0x14) {
+            const p2wpkh = bitcoin.payments.p2wpkh({
+                output: script,
+                network: bitcoinNetwork
+            });
+            return p2wpkh.address === address;
+        }
+        // Try P2TR (Taproot) - script is OP_1 <32-byte x-only pubkey>
+        if (script.length === 34 && script[0] === 0x51 && script[1] === 0x20) {
+            const p2tr = bitcoin.payments.p2tr({
+                output: script,
+                network: bitcoinNetwork
+            });
+            return p2tr.address === address;
+        }
+        return false;
+    } catch (error) {
+        // eslint-disable-next-line no-console
+        console.log('[doesInputBelongToAddress] Error checking input', {
+            address,
+            network,
+            error: error instanceof Error ? error.message : String(error)
+        });
+        return false;
+    }
+};
+
+// eslint-disable-next-line @nx/enforce-module-boundaries
 class DynamicBtcWalletClient extends DynamicWalletClient {
     /**
    * Creates a Bitcoin wallet account
@@ -894,6 +1034,117 @@ class DynamicBtcWalletClient extends DynamicWalletClient {
         return this.convertPrivateKeyToBitcoinFormat(derivedPrivateKey, BitcoinNetwork.MAINNET);
     }
     /**
+   * Imports a private key and creates a Bitcoin wallet account
+   * @param privateKey - Private key in WIF format (Base58 encoded)
+   * @param chainName - Chain name ('BTC')
+   * @param thresholdSignatureScheme - The threshold signature scheme to use
+   * @param password - Optional password for encrypted backup
+   * @param onError - Optional error callback
+   * @param signedSessionId - The signed session ID
+   * @param publicAddressCheck - Optional address to validate against
+   * @param addressType - Bitcoin address type (NATIVE_SEGWIT or TAPROOT)
+   * @returns The account address, public key hex, and raw public key
+   */ async importPrivateKey({ privateKey, chainName, thresholdSignatureScheme, password = undefined, onError, signedSessionId, publicAddressCheck, addressType }) {
+        try {
+            const network = BitcoinNetwork.MAINNET;
+            if (!addressType) {
+                throw new Error('addressType is required for BTC importPrivateKey');
+            }
+            const bitcoinAddressType = addressType;
+            if (bitcoinAddressType !== BitcoinAddressType.NATIVE_SEGWIT && bitcoinAddressType !== BitcoinAddressType.TAPROOT) {
+                throw new Error(`Invalid addressType: ${addressType}. Must be one of: ${BitcoinAddressType.NATIVE_SEGWIT}, ${BitcoinAddressType.TAPROOT}`);
+            }
+            const addressTypeEnum = bitcoinAddressType;
+            let ceremonyCeremonyCompleteResolver;
+            let ceremonyAccountAddress;
+            const ceremonyCompletePromise = new Promise((resolve)=>{
+                ceremonyCeremonyCompleteResolver = resolve;
+            });
+            const formattedPrivateKey = wifToPrivateKey(privateKey, network);
+            if (publicAddressCheck) {
+                const derivedPublicKey = await getPublicKeyFromPrivateKey(privateKey, addressTypeEnum, network);
+                const { accountAddress } = this.deriveAccountAddress({
+                    rawPublicKey: derivedPublicKey,
+                    addressType: addressTypeEnum,
+                    network
+                });
+                if (accountAddress !== publicAddressCheck) {
+                    throw new Error(`Public address mismatch: derived address ${accountAddress} !== public address ${publicAddressCheck}`);
+                }
+            }
+            const { rawPublicKey, clientKeyShares } = await this.importRawPrivateKey({
+                chainName,
+                privateKey: formattedPrivateKey,
+                thresholdSignatureScheme,
+                bitcoinConfig: {
+                    addressType: addressTypeEnum,
+                    network
+                },
+                onCeremonyComplete: (accountAddress, walletId)=>{
+                    ceremonyAccountAddress = accountAddress;
+                    const chainConfig = getMPCChainConfig(this.chainName, {
+                        addressType: addressTypeEnum,
+                        network
+                    });
+                    this.walletMap[accountAddress] = _extends({}, this.walletMap[accountAddress] || {}, {
+                        accountAddress,
+                        walletId,
+                        chainName: this.chainName,
+                        thresholdSignatureScheme,
+                        derivationPath: JSON.stringify(Object.fromEntries(chainConfig.derivationPath.map((value, index)=>[
+                                index,
+                                value
+                            ]))),
+                        addressType: addressTypeEnum,
+                        clientKeySharesBackupInfo: getClientKeyShareBackupInfo()
+                    });
+                    this.logger.debug('walletMap updated for wallet', {
+                        context: {
+                            accountAddress,
+                            walletId,
+                            walletMap: this.walletMap
+                        }
+                    });
+                    ceremonyCeremonyCompleteResolver(undefined);
+                },
+                onError
+            });
+            await ceremonyCompletePromise;
+            if (!rawPublicKey || !clientKeyShares) {
+                throw new Error(ERROR_IMPORT_PRIVATE_KEY);
+            }
+            const accountAddress = ceremonyAccountAddress || this.deriveAccountAddress({
+                rawPublicKey,
+                addressType: addressTypeEnum,
+                network
+            }).accountAddress;
+            if (publicAddressCheck && accountAddress !== publicAddressCheck) {
+                throw new Error(`Public address mismatch: derived address ${accountAddress} !== public address ${publicAddressCheck}`);
+            }
+            await this.setClientKeySharesToLocalStorage({
+                accountAddress,
+                clientKeyShares,
+                overwriteOrMerge: 'overwrite'
+            });
+            await this.storeEncryptedBackupByWalletWithRetry({
+                accountAddress,
+                clientKeyShares,
+                password,
+                signedSessionId
+            });
+            const publicKeyHex = this.extractPublicKeyHex(rawPublicKey);
+            return {
+                accountAddress,
+                publicKeyHex,
+                rawPublicKey
+            };
+        } catch (error) {
+            this.logger.error(ERROR_IMPORT_PRIVATE_KEY, error);
+            onError == null ? void 0 : onError(error);
+            throw new Error(ERROR_IMPORT_PRIVATE_KEY);
+        }
+    }
+    /**
    * Converts MPC private key to Bitcoin WIF (Wallet Import Format)
    * Uses the utility function from utils.ts for the core conversion logic
    * @param privateKey - The private key to convert to a Bitcoin WIF format
@@ -980,6 +1231,22 @@ class DynamicBtcWalletClient extends DynamicWalletClient {
             }
             const pubKey = normalizePublicKey(derivedPublicKey, addressType);
             const tx = psbt.__CACHE.__TX;
+            // Filter inputs to only sign those that belong to the current address
+            const inputsToSign = psbt.data.inputs.map((input, i)=>({
+                    input,
+                    index: i
+                })).filter(({ input })=>doesInputBelongToAddress(input, senderAddress, network));
+            this.logger.debug('[BTC Client] signTransaction - Filtering inputs', {
+                totalInputs: psbt.data.inputs.length,
+                inputsToSign: inputsToSign.length,
+                senderAddress
+            });
+            if (inputsToSign.length === 0) {
+                this.logger.warn('[BTC Client] signTransaction - No inputs found for address', {
+                    senderAddress,
+                    totalInputs: psbt.data.inputs.length
+                });
+            }
             if (addressType === BitcoinAddressType.TAPROOT) {
                 const tweak = calculateTaprootTweak(pubKey);
                 const completeBitcoinConfig = _extends({}, bitcoinConfig, {
@@ -987,7 +1254,7 @@ class DynamicBtcWalletClient extends DynamicWalletClient {
                     tweak
                 });
                 const { prevOutScripts, values } = collectPSBTInputData(psbt);
-                await Promise.all(psbt.data.inputs.map(async (input, i)=>{
+                await Promise.all(inputsToSign.map(async ({ input, index: i })=>{
                     if (!input.witnessUtxo) {
                         throw new Error(`Input ${i} missing witnessUtxo`);
                     }
@@ -1016,17 +1283,16 @@ class DynamicBtcWalletClient extends DynamicWalletClient {
                     addressType: addressType
                 });
                 // Iterate and sign inputs in parallel for better performance
-                await Promise.all(psbt.data.inputs.map(async (input, i)=>{
+                await Promise.all(inputsToSign.map(async ({ input, index: i })=>{
                     if (!input.witnessUtxo) {
                         throw new Error(`Input ${i} missing witnessUtxo`);
                     }
                     const { script, value } = input.witnessUtxo;
-                    // For Native SegWit (P2WPKH), use p2wpkh
-                    const p2wpkh = bitcoin.payments.p2wpkh({
-                        output: script,
+                    const p2pkh = bitcoin.payments.p2pkh({
+                        hash: script.slice(2),
                         network: getBitcoinNetwork(network)
                     });
-                    const scriptCode = p2wpkh.output || script;
+                    const scriptCode = p2pkh.output;
                     if (!scriptCode) throw new Error('Failed to generate scriptCode');
                     const hash = tx.hashForWitnessV0(i, scriptCode, value, bitcoin.Transaction.SIGHASH_ALL);
                     const signature = await this.sign({

package/package.json

@@ -1,12 +1,12 @@
 {
   "name": "@dynamic-labs-wallet/btc",
-  "version": "0.0.235",
+  "version": "0.0.236",
   "license": "MIT",
   "type": "module",
   "sideEffects": false,
   "dependencies": {
     "@dynamic-labs/sdk-api-core": "^0.0.828",
-    "@dynamic-labs-wallet/browser": "0.0.235",
+    "@dynamic-labs-wallet/browser": "0.0.236",
     "@bitcoinerlab/secp256k1": "^1.2.0",
     "bitcoinjs-lib": "^7.0.0",
     "bip322-js": "^3.0.0",

package/src/client/client.d.ts

@@ -95,6 +95,32 @@ export declare class DynamicBtcWalletClient extends DynamicWalletClient {
         signedSessionId: string;
         mfaToken?: string;
     }): Promise<string>;
+    /**
+     * Imports a private key and creates a Bitcoin wallet account
+     * @param privateKey - Private key in WIF format (Base58 encoded)
+     * @param chainName - Chain name ('BTC')
+     * @param thresholdSignatureScheme - The threshold signature scheme to use
+     * @param password - Optional password for encrypted backup
+     * @param onError - Optional error callback
+     * @param signedSessionId - The signed session ID
+     * @param publicAddressCheck - Optional address to validate against
+     * @param addressType - Bitcoin address type (NATIVE_SEGWIT or TAPROOT)
+     * @returns The account address, public key hex, and raw public key
+     */
+    importPrivateKey({ privateKey, chainName, thresholdSignatureScheme, password, onError, signedSessionId, publicAddressCheck, addressType, }: {
+        privateKey: string;
+        chainName: string;
+        thresholdSignatureScheme: ThresholdSignatureScheme;
+        password?: string;
+        onError?: (error: Error) => void;
+        signedSessionId: string;
+        publicAddressCheck?: string;
+        addressType?: string;
+    }): Promise<{
+        accountAddress: string;
+        publicKeyHex: string;
+        rawPublicKey: EcdsaPublicKey | BIP340KeygenResult | Uint8Array | string | undefined;
+    }>;
     /**
      * Converts MPC private key to Bitcoin WIF (Wallet Import Format)
      * Uses the utility function from utils.ts for the core conversion logic

package/src/client/client.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/client/client.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,wBAAwB,EAC7B,KAAK,kBAAkB,EACvB,KAAK,cAAc,EACnB,KAAK,wBAAwB,EAG7B,mBAAmB,EAInB,KAAK,aAAa,EAIlB,kBAAkB,EAClB,cAAc,EACf,MAAM,8BAA8B,CAAC;AAiBtC,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,4BAA4B,CAAC;AAIrE,qBAAa,sBAAuB,SAAQ,mBAAmB;IAC7D,QAAQ,CAAC,SAAS,SAAS;IAE3B;;;OAGG;gBACS,EACV,aAAa,EACb,SAAS,EACT,UAAU,EACV,kBAAkB,EAClB,UAAU,EACV,KAAK,EACL,YAAY,EACZ,QAA0B,EAC1B,UAAU,EACV,gBAAgB,GACjB,EAAE,wBAAwB;IAe3B;;;;;;;;OAQG;IACG,mBAAmB,CAAC,EACxB,wBAAwB,EACxB,QAAoB,EACpB,OAAO,EACP,eAAe,EACf,aAAa,GACd,EAAE;QACD,wBAAwB,EAAE,wBAAwB,CAAC;QACnD,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;QACjC,eAAe,EAAE,MAAM,CAAC;QACxB,aAAa,EAAE,aAAa,CAAC;KAC9B,GAAG,OAAO,CAAC;QACV,cAAc,EAAE,MAAM,CAAC;QACvB,YAAY,EAAE,MAAM,CAAC;QACrB,YAAY,EACR,cAAc,GACd,kBAAkB,GAClB,UAAU,GACV,MAAM,GACN,SAAS,CAAC;KACf,CAAC;IAwHF;;;;OAIG;IACH,OAAO,CAAC,mBAAmB;IAoB3B;;;;;;;;;OASG;IACH,oBAAoB,CAAC,EACnB,YAAY,EACZ,WAAW,EACX,OAAO,GACR,EAAE;QACD,YAAY,EAAE,GAAG,CAAC;QAClB,WAAW,EAAE,kBAAkB,CAAC;QAChC,OAAO,EAAE,cAAc,CAAC;KACzB,GAAG;QAAE,cAAc,EAAE,MAAM,CAAA;KAAE;IAY9B;;;;;;;;;;;OAWG;IACG,WAAW,CAAC,EAChB,OAAO,EACP,cAAc,EACd,OAAO,EACP,QAAoB,EACpB,eAAe,EACf,QAAQ,EACR,OAAO,EACP,OAAO,GACR,EAAE;QACD,OAAO,EAAE,MAAM,CAAC;QAChB,cAAc,EAAE,MAAM,CAAC;QACvB,OAAO,EAAE,cAAc,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,eAAe,EAAE,MAAM,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,OAAO,CAAC,EAAE,kBAAkB,CAAC;QAC7B,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;KAClC;IA8HD;;;;;;OAMG;IACH,OAAO,CAAC,mBAAmB;IAoB3B;;;;;;;;OAQG;IACG,gBAAgB,CAAC,EACrB,cAAc,EACd,QAAoB,EACpB,eAAe,EACf,QAAQ,GACT,EAAE;QACD,cAAc,EAAE,MAAM,CAAC;QACvB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,eAAe,EAAE,MAAM,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,GAAG,OAAO,CAAC,MAAM,CAAC;IA0DnB;;;;;;OAMG;IACH,OAAO,CAAC,gCAAgC;IA0CxC;;;;;;;;;;;;OAYG;IACG,eAAe,CAAC,EACpB,WAAW,EACX,aAAa,EACb,OAAO,EACP,QAAQ,EACR,eAAe,EACf,QAAQ,EACR,OAAO,EACP,OAAO,GACR,EAAE;QACD,WAAW,EAAE,MAAM,CAAC;QACpB,aAAa,EAAE,MAAM,CAAC;QACtB,OAAO,EAAE,cAAc,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,eAAe,EAAE,MAAM,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,OAAO,CAAC,EAAE,kBAAkB,CAAC;QAC7B,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;KAClC,GAAG,OAAO,CAAC,MAAM,CAAC;IA0LnB;;;;;;;;OAQG;IACG,iBAAiB,CAAC,EACtB,eAAe,EACf,MAAM,EACN,aAAa,EACb,OAAO,EACP,YAAuB,GACxB,EAAE;QACD,eAAe,EAAE,MAAM,CAAC;QACxB,MAAM,EAAE,MAAM,CAAC;QACf,aAAa,EAAE,MAAM,CAAC;QACtB,OAAO,EAAE,cAAc,CAAC;QACxB,YAAY,CAAC,EAAE,MAAM,GAAG,QAAQ,GAAG,MAAM,CAAC;KAC3C,GAAG,OAAO,CAAC,MAAM,CAAC;IA6GnB;;;;;OAKG;YACW,QAAQ;IActB;;;OAGG;IACG,iBAAiB;CAOxB"}
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/client/client.ts"],"names":[],"mappings":"AACA,OAAO,EACL,KAAK,wBAAwB,EAC7B,KAAK,kBAAkB,EACvB,KAAK,cAAc,EACnB,KAAK,wBAAwB,EAG7B,mBAAmB,EAKnB,KAAK,aAAa,EAIlB,kBAAkB,EAClB,cAAc,EACf,MAAM,8BAA8B,CAAC;AAoBtC,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,4BAA4B,CAAC;AAIrE,qBAAa,sBAAuB,SAAQ,mBAAmB;IAC7D,QAAQ,CAAC,SAAS,SAAS;IAE3B;;;OAGG;gBACS,EACV,aAAa,EACb,SAAS,EACT,UAAU,EACV,kBAAkB,EAClB,UAAU,EACV,KAAK,EACL,YAAY,EACZ,QAA0B,EAC1B,UAAU,EACV,gBAAgB,GACjB,EAAE,wBAAwB;IAe3B;;;;;;;;OAQG;IACG,mBAAmB,CAAC,EACxB,wBAAwB,EACxB,QAAoB,EACpB,OAAO,EACP,eAAe,EACf,aAAa,GACd,EAAE;QACD,wBAAwB,EAAE,wBAAwB,CAAC;QACnD,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;QACjC,eAAe,EAAE,MAAM,CAAC;QACxB,aAAa,EAAE,aAAa,CAAC;KAC9B,GAAG,OAAO,CAAC;QACV,cAAc,EAAE,MAAM,CAAC;QACvB,YAAY,EAAE,MAAM,CAAC;QACrB,YAAY,EACR,cAAc,GACd,kBAAkB,GAClB,UAAU,GACV,MAAM,GACN,SAAS,CAAC;KACf,CAAC;IAwHF;;;;OAIG;IACH,OAAO,CAAC,mBAAmB;IAoB3B;;;;;;;;;OASG;IACH,oBAAoB,CAAC,EACnB,YAAY,EACZ,WAAW,EACX,OAAO,GACR,EAAE;QACD,YAAY,EAAE,GAAG,CAAC;QAClB,WAAW,EAAE,kBAAkB,CAAC;QAChC,OAAO,EAAE,cAAc,CAAC;KACzB,GAAG;QAAE,cAAc,EAAE,MAAM,CAAA;KAAE;IAY9B;;;;;;;;;;;OAWG;IACG,WAAW,CAAC,EAChB,OAAO,EACP,cAAc,EACd,OAAO,EACP,QAAoB,EACpB,eAAe,EACf,QAAQ,EACR,OAAO,EACP,OAAO,GACR,EAAE;QACD,OAAO,EAAE,MAAM,CAAC;QAChB,cAAc,EAAE,MAAM,CAAC;QACvB,OAAO,EAAE,cAAc,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,eAAe,EAAE,MAAM,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,OAAO,CAAC,EAAE,kBAAkB,CAAC;QAC7B,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;KAClC;IA8HD;;;;;;OAMG;IACH,OAAO,CAAC,mBAAmB;IAoB3B;;;;;;;;OAQG;IACG,gBAAgB,CAAC,EACrB,cAAc,EACd,QAAoB,EACpB,eAAe,EACf,QAAQ,GACT,EAAE;QACD,cAAc,EAAE,MAAM,CAAC;QACvB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,eAAe,EAAE,MAAM,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,GAAG,OAAO,CAAC,MAAM,CAAC;IA0DnB;;;;;;;;;;;OAWG;IACG,gBAAgB,CAAC,EACrB,UAAU,EACV,SAAS,EACT,wBAAwB,EACxB,QAAoB,EACpB,OAAO,EACP,eAAe,EACf,kBAAkB,EAClB,WAAW,GACZ,EAAE;QACD,UAAU,EAAE,MAAM,CAAC;QACnB,SAAS,EAAE,MAAM,CAAC;QAClB,wBAAwB,EAAE,wBAAwB,CAAC;QACnD,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;QACjC,eAAe,EAAE,MAAM,CAAC;QACxB,kBAAkB,CAAC,EAAE,MAAM,CAAC;QAC5B,WAAW,CAAC,EAAE,MAAM,CAAC;KACtB,GAAG,OAAO,CAAC;QACV,cAAc,EAAE,MAAM,CAAC;QACvB,YAAY,EAAE,MAAM,CAAC;QACrB,YAAY,EACR,cAAc,GACd,kBAAkB,GAClB,UAAU,GACV,MAAM,GACN,SAAS,CAAC;KACf,CAAC;IAoIF;;;;;;OAMG;IACH,OAAO,CAAC,gCAAgC;IA0CxC;;;;;;;;;;;;OAYG;IACG,eAAe,CAAC,EACpB,WAAW,EACX,aAAa,EACb,OAAO,EACP,QAAQ,EACR,eAAe,EACf,QAAQ,EACR,OAAO,EACP,OAAO,GACR,EAAE;QACD,WAAW,EAAE,MAAM,CAAC;QACpB,aAAa,EAAE,MAAM,CAAC;QACtB,OAAO,EAAE,cAAc,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,eAAe,EAAE,MAAM,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,OAAO,CAAC,EAAE,kBAAkB,CAAC;QAC7B,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;KAClC,GAAG,OAAO,CAAC,MAAM,CAAC;IA6MnB;;;;;;;;OAQG;IACG,iBAAiB,CAAC,EACtB,eAAe,EACf,MAAM,EACN,aAAa,EACb,OAAO,EACP,YAAuB,GACxB,EAAE;QACD,eAAe,EAAE,MAAM,CAAC;QACxB,MAAM,EAAE,MAAM,CAAC;QACf,aAAa,EAAE,MAAM,CAAC;QACtB,OAAO,EAAE,cAAc,CAAC;QACxB,YAAY,CAAC,EAAE,MAAM,GAAG,QAAQ,GAAG,MAAM,CAAC;KAC3C,GAAG,OAAO,CAAC,MAAM,CAAC;IA6GnB;;;;;OAKG;YACW,QAAQ;IActB;;;OAGG;IACG,iBAAiB;CAOxB"}

package/src/utils/calculateBip322Hash/calculateBip322Hash.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"calculateBip322Hash.d.ts","sourceRoot":"","sources":["../../../src/utils/calculateBip322Hash/calculateBip322Hash.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAGlE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAE3D;;;;;;;;GAQG;AACH,eAAO,MAAM,mBAAmB,YACrB,MAAM,UACP,GAAG,eACE,kBAAkB,WACtB,cAAc,KACtB;IAAE,gBAAgB,EAAE,UAAU,CAAC;IAAC,UAAU,EAAE,GAAG,CAAA;CAoEjD,CAAC"}
+{"version":3,"file":"calculateBip322Hash.d.ts","sourceRoot":"","sources":["../../../src/utils/calculateBip322Hash/calculateBip322Hash.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAGlE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAE3D;;;;;;;;GAQG;AACH,eAAO,MAAM,mBAAmB,YACrB,MAAM,UACP,GAAG,eACE,kBAAkB,WACtB,cAAc,KACtB;IAAE,gBAAgB,EAAE,UAAU,CAAC;IAAC,UAAU,EAAE,GAAG,CAAA;CAoEjD,CAAC"}

package/src/utils/doesInputBelongToAddress/doesInputBelongToAddress.d.ts

@@ -0,0 +1,11 @@
+import type { Psbt } from 'bitcoinjs-lib';
+import type { BitcoinNetwork } from '../../types/index.js';
+/**
+ * Checks if a PSBT input belongs to a specific address
+ * @param input - The PSBT input (from psbt.data.inputs)
+ * @param address - The address to check against
+ * @param network - The Bitcoin network
+ * @returns True if the input belongs to the address, false otherwise
+ */
+export declare const doesInputBelongToAddress: (input: Psbt["data"]["inputs"][number], address: string, network: BitcoinNetwork) => boolean;
+//# sourceMappingURL=doesInputBelongToAddress.d.ts.map

package/src/utils/doesInputBelongToAddress/doesInputBelongToAddress.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"doesInputBelongToAddress.d.ts","sourceRoot":"","sources":["../../../src/utils/doesInputBelongToAddress/doesInputBelongToAddress.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,eAAe,CAAC;AAC1C,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAG3D;;;;;;GAMG;AACH,eAAO,MAAM,wBAAwB,UAC5B,IAAI,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,WAC5B,MAAM,WACN,cAAc,KACtB,OAwCF,CAAC"}

package/src/utils/doesInputBelongToAddress/index.d.ts

@@ -0,0 +1,2 @@
+export { doesInputBelongToAddress } from './doesInputBelongToAddress.js';
+//# sourceMappingURL=index.d.ts.map

package/src/utils/doesInputBelongToAddress/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/utils/doesInputBelongToAddress/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,wBAAwB,EAAE,MAAM,+BAA+B,CAAC"}

package/src/utils/encodeBip322Signature/encodeBip322Signature.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"encodeBip322Signature.d.ts","sourceRoot":"","sources":["../../../src/utils/encodeBip322Signature/encodeBip322Signature.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAElE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAEnE;;;;;;;;GAQG;AACH,eAAO,MAAM,qBAAqB,eACpB,GAAG,UACP,GAAG,aACA,cAAc,GAAG,UAAU,eACzB,kBAAkB,KAC9B,MAgDF,CAAC"}
+{"version":3,"file":"encodeBip322Signature.d.ts","sourceRoot":"","sources":["../../../src/utils/encodeBip322Signature/encodeBip322Signature.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAElE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAEnE;;;;;;;;GAQG;AACH,eAAO,MAAM,qBAAqB,eACpB,GAAG,UACP,GAAG,aACA,cAAc,GAAG,UAAU,eACzB,kBAAkB,KAC9B,MAgDF,CAAC"}

package/src/utils/getAddressTypeFromDerivationPath/getAddressTypeFromDerivationPath.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"getAddressTypeFromDerivationPath.d.ts","sourceRoot":"","sources":["../../../src/utils/getAddressTypeFromDerivationPath/getAddressTypeFromDerivationPath.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAElE;;;;;GAKG;AACH,eAAO,MAAM,gCAAgC,sBACxB,MAAM,KACxB,kBAyBF,CAAC"}
+{"version":3,"file":"getAddressTypeFromDerivationPath.d.ts","sourceRoot":"","sources":["../../../src/utils/getAddressTypeFromDerivationPath/getAddressTypeFromDerivationPath.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAElE;;;;;GAKG;AACH,eAAO,MAAM,gCAAgC,sBACxB,MAAM,KACxB,kBAyBF,CAAC"}

package/src/utils/getPublicKeyFromPrivateKey/getPublicKeyFromPrivateKey.d.ts

@@ -0,0 +1,16 @@
+import type { BitcoinAddressType } from '@dynamic-labs-wallet/browser';
+import type { BitcoinNetwork } from '../../types/index.js';
+/**
+ * Derives a public key from a private key (WIF format) based on address type
+ *
+ * - For NATIVE_SEGWIT (ECDSA): Returns compressed public key (33 bytes)
+ * - For TAPROOT (BIP340): Returns x-only public key (32 bytes)
+ *
+ * @param privateKey - Private key in WIF format (Base58 encoded)
+ * @param addressType - Bitcoin address type (NATIVE_SEGWIT or TAPROOT)
+ * @param network - Bitcoin network (mainnet, testnet)
+ * @returns Public key as Buffer (33 bytes for NATIVE_SEGWIT, 32 bytes for TAPROOT)
+ * @throws Error if private key is invalid or derivation fails
+ */
+export declare const getPublicKeyFromPrivateKey: (privateKey: string, addressType: BitcoinAddressType, network?: BitcoinNetwork) => Promise<Buffer>;
+//# sourceMappingURL=getPublicKeyFromPrivateKey.d.ts.map

package/src/utils/getPublicKeyFromPrivateKey/getPublicKeyFromPrivateKey.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"getPublicKeyFromPrivateKey.d.ts","sourceRoot":"","sources":["../../../src/utils/getPublicKeyFromPrivateKey/getPublicKeyFromPrivateKey.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AACvE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAI3D;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,0BAA0B,eACzB,MAAM,eACL,kBAAkB,YACtB,cAAc,KACtB,OAAO,CAAC,MAAM,CAsChB,CAAC"}

package/src/utils/getPublicKeyFromPrivateKey/index.d.ts

@@ -0,0 +1,2 @@
+export { getPublicKeyFromPrivateKey } from './getPublicKeyFromPrivateKey.js';
+//# sourceMappingURL=index.d.ts.map

package/src/utils/getPublicKeyFromPrivateKey/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/utils/getPublicKeyFromPrivateKey/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,0BAA0B,EAAE,MAAM,iCAAiC,CAAC"}

package/src/utils/index.d.ts

@@ -4,6 +4,8 @@ export { getAddressTypeFromDerivationPath } from './getAddressTypeFromDerivation
 export { calculateBip322Hash } from './calculateBip322Hash/index.js';
 export { encodeBip322Signature } from './encodeBip322Signature/index.js';
 export { privateKeyToWIF } from './privateKeyToWIF/index.js';
+export { wifToPrivateKey } from './wifToPrivateKey/index.js';
+export { getPublicKeyFromPrivateKey } from './getPublicKeyFromPrivateKey/index.js';
 export { convertSignatureToDER } from './convertSignatureToDER/index.js';
 export { getUTXOs } from './getUTXOs/index.js';
 export { selectUTXOs } from './selectUTXOs/index.js';
@@ -12,4 +14,5 @@ export { getDefaultRpcUrl } from './getDefaultRpcUrl/index.js';
 export { calculateTaprootTweak } from './calculateTaprootTweak/index.js';
 export { convertSignatureToTaprootBuffer } from './convertSignatureToTaprootBuffer/index.js';
 export { collectPSBTInputData } from './collectPSBTInputData/index.js';
+export { doesInputBelongToAddress } from './doesInputBelongToAddress/index.js';
 //# sourceMappingURL=index.d.ts.map

package/src/utils/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,yBAAyB,EAAE,MAAM,sCAAsC,CAAC;AACjF,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AACnE,OAAO,EAAE,gCAAgC,EAAE,MAAM,6CAA6C,CAAC;AAC/F,OAAO,EAAE,mBAAmB,EAAE,MAAM,gCAAgC,CAAC;AACrE,OAAO,EAAE,qBAAqB,EAAE,MAAM,kCAAkC,CAAC;AACzE,OAAO,EAAE,eAAe,EAAE,MAAM,4BAA4B,CAAC;AAC7D,OAAO,EAAE,qBAAqB,EAAE,MAAM,kCAAkC,CAAC;AACzE,OAAO,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AAC/C,OAAO,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AACrD,OAAO,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AACrD,OAAO,EAAE,gBAAgB,EAAE,MAAM,6BAA6B,CAAC;AAC/D,OAAO,EAAE,qBAAqB,EAAE,MAAM,kCAAkC,CAAC;AACzE,OAAO,EAAE,+BAA+B,EAAE,MAAM,4CAA4C,CAAC;AAC7F,OAAO,EAAE,oBAAoB,EAAE,MAAM,iCAAiC,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,yBAAyB,EAAE,MAAM,sCAAsC,CAAC;AACjF,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AACnE,OAAO,EAAE,gCAAgC,EAAE,MAAM,6CAA6C,CAAC;AAC/F,OAAO,EAAE,mBAAmB,EAAE,MAAM,gCAAgC,CAAC;AACrE,OAAO,EAAE,qBAAqB,EAAE,MAAM,kCAAkC,CAAC;AACzE,OAAO,EAAE,eAAe,EAAE,MAAM,4BAA4B,CAAC;AAC7D,OAAO,EAAE,eAAe,EAAE,MAAM,4BAA4B,CAAC;AAC7D,OAAO,EAAE,0BAA0B,EAAE,MAAM,uCAAuC,CAAC;AACnF,OAAO,EAAE,qBAAqB,EAAE,MAAM,kCAAkC,CAAC;AACzE,OAAO,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AAC/C,OAAO,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AACrD,OAAO,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AACrD,OAAO,EAAE,gBAAgB,EAAE,MAAM,6BAA6B,CAAC;AAC/D,OAAO,EAAE,qBAAqB,EAAE,MAAM,kCAAkC,CAAC;AACzE,OAAO,EAAE,+BAA+B,EAAE,MAAM,4CAA4C,CAAC;AAC7F,OAAO,EAAE,oBAAoB,EAAE,MAAM,iCAAiC,CAAC;AACvE,OAAO,EAAE,wBAAwB,EAAE,MAAM,qCAAqC,CAAC"}

package/src/utils/normalizePublicKey/normalizePublicKey.d.ts

@@ -1,5 +1,4 @@
-import type { EcdsaPublicKey } from '@dynamic-labs-wallet/browser';
-import { BitcoinAddressType } from '@dynamic-labs-wallet/browser';
+import { type EcdsaPublicKey, BitcoinAddressType } from '@dynamic-labs-wallet/browser';
 /**
  * Normalizes a public key to a standard Buffer format
  * Handles various input types (Uint8Array, Buffer, object with pubKeyAsHex, etc.)

package/src/utils/normalizePublicKey/normalizePublicKey.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"normalizePublicKey.d.ts","sourceRoot":"","sources":["../../../src/utils/normalizePublicKey/normalizePublicKey.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AACnE,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAKlE;;;;;;;;;GASG;AACH,eAAO,MAAM,kBAAkB,WACrB,cAAc,GAAG,UAAU,GAAG,MAAM,GAAG,MAAM,gBACvC,kBAAkB,KAC/B,MAQF,CAAC"}
+{"version":3,"file":"normalizePublicKey.d.ts","sourceRoot":"","sources":["../../../src/utils/normalizePublicKey/normalizePublicKey.ts"],"names":[],"mappings":"AACA,OAAO,EACL,KAAK,cAAc,EACnB,kBAAkB,EACnB,MAAM,8BAA8B,CAAC;AAMtC;;;;;;;;;GASG;AACH,eAAO,MAAM,kBAAkB,WACrB,cAAc,GAAG,UAAU,GAAG,MAAM,GAAG,MAAM,gBACvC,kBAAkB,KAC/B,MAQF,CAAC"}

package/src/utils/publicKeyToBitcoinAddress/publicKeyToBitcoinAddress.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"publicKeyToBitcoinAddress.d.ts","sourceRoot":"","sources":["../../../src/utils/publicKeyToBitcoinAddress/publicKeyToBitcoinAddress.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAClE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAM3D;;;;;;;GAOG;AACH,eAAO,MAAM,yBAAyB,cACzB,MAAM,GAAG,UAAU,gBACjB,kBAAkB,YACtB,cAAc,KACtB,MAeF,CAAC"}
+{"version":3,"file":"publicKeyToBitcoinAddress.d.ts","sourceRoot":"","sources":["../../../src/utils/publicKeyToBitcoinAddress/publicKeyToBitcoinAddress.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAClE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAM3D;;;;;;;GAOG;AACH,eAAO,MAAM,yBAAyB,cACzB,MAAM,GAAG,UAAU,gBACjB,kBAAkB,YACtB,cAAc,KACtB,MAeF,CAAC"}

package/src/utils/wifToPrivateKey/index.d.ts

@@ -0,0 +1,2 @@
+export { wifToPrivateKey } from './wifToPrivateKey.js';
+//# sourceMappingURL=index.d.ts.map

package/src/utils/wifToPrivateKey/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/utils/wifToPrivateKey/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC"}

package/src/utils/wifToPrivateKey/wifToPrivateKey.d.ts

@@ -0,0 +1,19 @@
+import type { BitcoinNetwork } from '../../types/index.js';
+/**
+ * Converts a Bitcoin WIF (Wallet Import Format) private key to hex format
+ * This is the reverse operation of `privateKeyToWIF`
+ *
+ * WIF decoding steps:
+ * 1. Base58 decode the WIF string
+ * 2. Validate network prefix
+ * 3. Validate checksum (double SHA-256, first 4 bytes)
+ * 4. Extract private key bytes (skip prefix, compression flag, and checksum)
+ * 5. Convert to hex string
+ *
+ * @param wif - Private key in WIF format (Base58 encoded)
+ * @param network - Bitcoin network (mainnet, testnet)
+ * @returns Private key as hex string (64 characters, 32 bytes)
+ * @throws Error if WIF format is invalid
+ */
+export declare const wifToPrivateKey: (wif: string, network?: BitcoinNetwork) => string;
+//# sourceMappingURL=wifToPrivateKey.d.ts.map

package/src/utils/wifToPrivateKey/wifToPrivateKey.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"wifToPrivateKey.d.ts","sourceRoot":"","sources":["../../../src/utils/wifToPrivateKey/wifToPrivateKey.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAG3D;;;;;;;;;;;;;;;GAeG;AACH,eAAO,MAAM,eAAe,QACrB,MAAM,YACF,cAAc,KACtB,MAkDF,CAAC"}