Skip to main content

Use a dWallet on Bitcoin

After creating a dWallet we can derive the dWallet's Bitcoin address, create transactions from that address, sign them with the dWallet Network, and broadcast the signed transactions to the Bitcoin network.

Setup

First, we must set up the environment.

import { Ed25519Keypair } from '@dwallet-network/dwallet.js/keypairs/ed25519';
import { DWalletClient } from '@dwallet-network/dwallet.js/client';
import { requestSuiFromFaucetV0 as requestDwltFromFaucetV0 } from '@dwallet-network/dwallet.js/faucet';
import {
    createDWallet,
    createSignMessages,
    approveAndSign,
} from '@dwallet-network/dwallet.js/signature-mpc';

import { sha256 } from "@noble/hashes/sha256";

// Importing the bitcoin lib
import * as bitcoin from 'bitcoinjs-lib';
import * as bscript from "bitcoinjs-lib/src/script";

Create a dWallet

You can follow the steps for creating a dWallet here. For the following steps we'll use the dkg and the keypair we used to create the dWallet on the dWallet Network. Don't forget to fund your address on the dWallet Network.

Get the dWallet's Bitcoin address

To create transactions in the Bitcoin network we need a Bitcoin address.

We used SegWit address format on the Bitcoin Testnet.

const dWalletNodeUrl = 'https://fullnode.alpha.testnet.dwallet.cloud';
const dwalletClient = new DWalletClient({url: dWalletNodeUrl});
// Set the required network.
const TESTNET = bitcoin.networks.testnet;

const {dwalletId, dkgOutput, dwalletCapId} = dkg;

// Get the dWallet object
const dwallet = await dwalletClient.getObject({ id: dwalletId, options: {showContent: true}});
if (dwallet?.data?.content?.dataType == 'moveObject') {
    // Get the dWallet's public key
    // @ts-ignore
    const dWalletPubkey = Buffer.from(dwallet?.data?.content?.fields['public_key']);

    // Getting the Bitcoin Testnet address and the output 
    const address = bitcoin.payments.p2wpkh({pubkey: dWalletPubkey, network: TESTNET}).address!;
    const output = bitcoin.payments.p2wpkh({pubkey: dWalletPubkey, network: TESTNET}).output!;

    console.log("The Bitcoin Testnet address of the dWallet is", address);
    console.log("The Bitcoin Testnet output of the dWallet is", output);


    // The rest of the code will be shown in the next steps 
}

Fund your dWallet's Bitcoin Address

You need to find a faucet if you're using the Bitcoin Testnet or any other test network. For main networks, make sure you have the funds to be able to transfer BTC and pay for gas for broadcasting the signed transaction.

We used Bitcoin Testnet Faucet at https://bitcoinfaucet.uo1.net/.

Create a Bitcoin Transaction

To create a bitcoin transaction we need to provide the input of the funds we want to send and the output which is the target addresses we want to transfer the funds to. The input is the proof of owning the funds we want to send and we get it from the previous transaction that sent funds to our address. In case of running this for the first time and using the testnet, this should be the transaction of the faucet we used.

To get the unspent transactions we are going to use the Blockstream API. There are other APIs if you would like to use something else.

Get UTXOs

// Getting the unspent transaction output for a given address
async function getUTXO(address: string): { utxo: any, txid: string, vout: number, satoshis: number } {
    const utxoUrl = `https://blockstream.info/testnet/api/address/${address}/utxo`;
    const { data: utxos } = await axios.get(utxoUrl);

    if (utxos.length === 0) {
        throw new Error('No UTXOs found for this address');
    }

    // Taking the first unspent transaction. 
    // You can change and return them all and to choose or to use more than one input.
    const utxo = utxos[0];
    const txid = utxo.txid;
    const vout = utxo.vout;
    const satoshis = utxo.value;
    
    return { utxo: utxo, txid: txid, vout: vout, satoshis: satoshis }
}

Create a New Transaction

The following code should be inserted to the if statement in the previous step.

// The recipient address is also a bitcoin testnet address. 
// You can generate it in the same way we created the dWallet's 
// address by providing it's own key pair.
const recipientAddress = 'put the recipient address here';
const amount = 500; // Put any number you want to send in satoshis

// Get the UTXO for the sender address
const { utxo, txid, vout, satoshis } = await GetUTXO(address);

const psbt = new bitcoin.Psbt({ network: TESTNET });

// Add the input UTXO
psbt.addInput({
    hash: txid,
    index: vout,
    witnessUtxo: {
        script: output,
        value: satoshis,
    },
});

// Add the recipient output
psbt.addOutput({
    address: recipientAddress,
    value: amount,
});

// Calculate change and add change output if necessary
const fee = 150; // 1000 satoshis is a simple fee. Choose the value you want to spend
const change = satoshis - amount - fee;

// Sending the rest to the back to the sender
if (change > 0) {
    psbt.addOutput({
        address,
        value: change,
    });
}

const tx = bitcoin.Transaction.fromBuffer(psbt.data.getTransaction());

Sign the transaction with your dWallet

First of all, in order to sign the transaction, we copied the inner function of Transaction hashForWitnessV0 and modified its output. We do it because the bitcoin hashes the bytes of a message twice using sha256.

We want to allow seeing the message to be signed before it's hashed.

For Bitcoin transactions, the message should be hashed using the SHA-256d algorithm which is just twice sha256. The dWallet Network doesn't support this hashing algorithm yet, but does support SHA256 once. Therefore, we will hash the message one time and the dWallet Network will do the second time. We have an open issue for adding this support: https://github.com/dwallet-labs/dwallet-network/issues/161.

Please copy these functions as-is in order to use them to generate the bytes to sign.

function varSliceSize(someScript: Buffer): number {
    const length = someScript.length;

    return varuint.encodingLength(length) + length;
}

function txBytesToSign(
    tx: bitcoin.Transaction,
    inIndex: number,
    prevOutScript: Buffer,
    value: number,
    hashType: number,
): Buffer {
    const ZERO: Buffer = Buffer.from(
        '0000000000000000000000000000000000000000000000000000000000000000',
        'hex',
    );

    let tbuffer: Buffer = Buffer.from([]);
    let bufferWriter: BufferWriter;

    let hashOutputs = ZERO;
    let hashPrevouts = ZERO;
    let hashSequence = ZERO;

    if (!(hashType & bitcoin.Transaction.SIGHASH_ANYONECANPAY)) {
        tbuffer = Buffer.allocUnsafe(36 * tx.ins.length);
        bufferWriter = new BufferWriter(tbuffer, 0);

        tx.ins.forEach(txIn => {
            bufferWriter.writeSlice(txIn.hash);
            bufferWriter.writeUInt32(txIn.index);
        });

        hashPrevouts = Buffer.from(sha256(sha256(tbuffer)));
    }

    if (
        !(hashType & bitcoin.Transaction.SIGHASH_ANYONECANPAY) &&
        (hashType & 0x1f) !== bitcoin.Transaction.SIGHASH_SINGLE &&
        (hashType & 0x1f) !== bitcoin.Transaction.SIGHASH_NONE
    ) {
        tbuffer = Buffer.allocUnsafe(4 * tx.ins.length);
        bufferWriter = new BufferWriter(tbuffer, 0);

        tx.ins.forEach(txIn => {
            bufferWriter.writeUInt32(txIn.sequence);
        });

        hashSequence = Buffer.from(sha256(sha256(tbuffer)));
    }

    if (
        (hashType & 0x1f) !== bitcoin.Transaction.SIGHASH_SINGLE &&
        (hashType & 0x1f) !== bitcoin.Transaction.SIGHASH_NONE
    ) {
        const txOutsSize = tx.outs.reduce((sum, output) => {
            return sum + 8 + varSliceSize(output.script);
        }, 0);

        tbuffer = Buffer.allocUnsafe(txOutsSize);
        bufferWriter = new BufferWriter(tbuffer, 0);

        tx.outs.forEach(out => {
            bufferWriter.writeUInt64(out.value);
            bufferWriter.writeVarSlice(out.script);
        });

        hashOutputs = Buffer.from(sha256(sha256(tbuffer)));
    } else if (
        (hashType & 0x1f) === bitcoin.Transaction.SIGHASH_SINGLE &&
        inIndex < tx.outs.length
    ) {
        const output = tx.outs[inIndex];

        tbuffer = Buffer.allocUnsafe(8 + varSliceSize(output.script));
        bufferWriter = new BufferWriter(tbuffer, 0);
        bufferWriter.writeUInt64(output.value);
        bufferWriter.writeVarSlice(output.script);

        hashOutputs = Buffer.from(sha256(sha256(tbuffer)));
    }

    tbuffer = Buffer.allocUnsafe(156 + varSliceSize(prevOutScript));
    bufferWriter = new BufferWriter(tbuffer, 0);

    const input = tx.ins[inIndex];
    bufferWriter.writeInt32(tx.version);
    bufferWriter.writeSlice(hashPrevouts);
    bufferWriter.writeSlice(hashSequence);
    bufferWriter.writeSlice(input.hash);
    bufferWriter.writeUInt32(input.index);
    bufferWriter.writeVarSlice(prevOutScript);
    bufferWriter.writeUInt64(value);
    bufferWriter.writeUInt32(input.sequence);
    bufferWriter.writeSlice(hashOutputs);
    bufferWriter.writeUInt32(tx.locktime);
    bufferWriter.writeUInt32(hashType);
    
    return tbuffer;
}

Now, we can generate the bytes for signing, and we can use the dWallet Network to sign our transaction.

const signingScript = bitcoin.payments.p2pkh({ hash: output.slice(2) }).output!;
console.log("Signing script:", signingScript.toString('hex'));

const bytesToSign = txBytesToSign(txFromPsbt, 0, signingScript, satoshis, bitcoin.Transaction.SIGHASH_ALL);

// We calculate the hash to sign manually because the dWallet Network doesn't support this bitcoin hashing algorithm yet.
// This will be fixed in the following issue: https://github.com/dwallet-labs/dwallet-network/issues/161.
const hashToSign = sha256(bytesToSign);
const signMessagesIdSHA256 = await createSignMessages(dkg?.dwalletId!, dkg?.dkgOutput, [hashToSign], "SHA256", keypair, dwalletClient);
const sigSHA256 = await approveAndSign(dkg?.dwalletCapId!, signMessagesIdSHA256!, [hashToSign], keypair, dwalletClient);

const dWalletSig = Buffer.from(sigSHA256?.signatures[0]!);

// To put the signature in the transaction, we get the calculated witness and set it as the input witness
const witness = bitcoin.payments.p2wpkh({
        output: output,
        pubkey: dWalletPubkey,
        signature: bscript.signature.encode(dWalletSig, bitcoin.Transaction.SIGHASH_ALL),
    }).witness!;

// Set the witness of the first input (in our case we only have one)
tx.setWitness(0, witness);

const txHex = tx.toHex();

Broadcast the signed Transaction

After we got the transaction hex, we can broadcast it to the Bitcoin Testnet. Again, we will do it using the Blockstream API.

// Broadcast the transaction
const broadcastUrl = `https://blockstream.info/testnet/api/tx`;
try {
    const response = await axios.post(broadcastUrl, txHex);
    console.log('Transaction Broadcasted:', response.data);
} catch (error) {
    console.error('Error broadcasting transaction:', error);
}

The transaction is now sent!

You can view the transaction at https://blockstream.info/ by searching the tx hash printed to the console.