Single Signature
This guide provides a simple example of using a PKP (Programmable Key Pair) to sign a P2SH (Pay-to-Script-Hash) Bitcoin transaction with a single signature.
You can find a result of this example here.
Prerequisites
UTXO Availability
Please make sure the P2SH Bitcoin address derived from your PKP public key has at least one UTXO (Unspent Transaction Output). If you don't know the Bitcoin address derived from your PKP public key, you can run this example and the derived P2SH address will be output to the console. The example will use the first UTXO on your address to send funds to the specified destination address. If there are no UTXOs, the PKP will have no funds to spend, and the example will not run.
Lit-Specific Requirements
- LitNodeClient: Used to initialize connection with the Lit network.
- Session Signatures: Authenticate your session with the Lit network.
- Ownership of a PKP: The PKP must be owned by the Ethereum wallet used to generate the Session Signatures.
Custom Functions Used in This Example
convertSignature: Converts a signature from the standard ECDSA format to the Bitcoin DER format.broadcastTransaction: Broadcasts the signed transaction to the Bitcoin blockchain.litActionCode: The Lit Action code executed to sign the transaction within the Lit network.
Signing with the PKP
After setting up the prerequisites, the singleSig function can be used to sign a Bitcoin transaction.
For an understanding of the steps involved in this example, visit the Detailed Overview Diagram.
import * as bitcoin from "bitcoinjs-lib";
import * as ecc from "tiny-secp256k1";
import mempoolJS from "@mempool/mempool.js";
import { LitNodeClient } from "@lit-protocol/lit-node-client";
bitcoin.initEccLib(ecc);
export async function singleSig(litNodeClient: LitNodeClient, sessionSigs: any, pkpPublicKey: string, destinationAddress: string) {
const network = bitcoin.networks.bitcoin;
const pubKeyBuffer = Buffer.from(pkpPublicKey, "hex");
const redeemScript = bitcoin.script.compile([
pubKeyBuffer,
bitcoin.opcodes.OP_CHECKSIG,
]);
const p2shPayment = bitcoin.payments.p2sh({
redeem: { output: redeemScript },
network: network,
});
const { bitcoin: { addresses, transactions } } = mempoolJS({
hostname: "mempool.space",
network: "mainnet",
});
const addressUtxos = await addresses.getAddressTxsUtxo({
address: p2shPayment.address!,
});
console.log("P2SH Address:", p2shPayment.address);
if (addressUtxos.length === 0) {
console.log("No UTXOs found for address:", p2shPayment.address);
return;
}
const utxo = addressUtxos[0];
const psbt = new bitcoin.Psbt({ network });
const utxoRawTx = await transactions.getTxHex({ txid: utxo.txid });
psbt.addInput({
hash: utxo.txid,
index: utxo.vout,
nonWitnessUtxo: Buffer.from(utxoRawTx, "hex"),
redeemScript: redeemScript,
});
const fee = 1000;
const amountToSend = utxo.value - fee;
psbt.addOutput({
address: destinationAddress,
value: BigInt(amountToSend),
});
//@ts-ignore
const tx = psbt.__CACHE.__TX.clone();
const sighash = tx.hashForSignature(
0,
redeemScript,
bitcoin.Transaction.SIGHASH_ALL
);
const litActionResponse = await litNodeClient.executeJs({
code: litActionCode,
sessionSigs,
jsParams: {
publicKey: pkpPublicKey,
toSign: Buffer.from(sighash, "hex"),
},
});
const signatureWithHashType = await convertSignature(
litActionResponse.signatures.btcSignature
);
psbt.updateInput(0, {
finalScriptSig: bitcoin.script.compile([
signatureWithHashType,
redeemScript,
]),
});
const txHex = psbt.extractTransaction().toHex();
return await broadcastTransaction(txHex);
}
Summary
In this guide, you learned how to use a PKP (Programmable Key Pair) to sign a Bitcoin transaction with a single signature in a P2SH (Pay-to-Script-Hash) context.
If you'd like to see other methods of using PKPs to sign Bitcoin transactions, check out our examples listed here.