Signer

The Signer module is the cryptographic powerhouse of the OYL SDK, handling all transaction signing operations across different Bitcoin address types. This module is critical for secure transaction handling and requires careful management of private keys.

Overview

The Signer module provides:

Comprehensive PSBT (Partially Signed Bitcoin Transaction) handling
Support for all major Bitcoin address types
Message signing capabilities with multiple protocols
Flexible signature hash type options
Individual and batch input signing

Core Types

walletInit

Configuration for initializing the signer with private keys:

type walletInit = {
  segwitPrivateKey?: string
  taprootPrivateKey?: string
  legacyPrivateKey?: string
  nestedSegwitPrivateKey?: string
}

SighashType

Supported Bitcoin signature hash types:

enum SighashType {
  ALL                 // Sign all inputs and outputs
  NONE               // Sign only inputs
  SINGLE             // Sign inputs and corresponding output
  ANYONECANPAY       // Allow additional inputs
  ALL_ANYONECANPAY
  NONE_ANYONECANPAY
  SINGLE_ANYONECANPAY
}

Class: Signer 🔐

Constructor

constructor(network: bitcoin.Network, keys: walletInit)

Creates a new signer instance with the specified network and private keys.

Key Methods

signAllInputs()

async signAllInputs({
  rawPsbt?: string,
  rawPsbtHex?: string,
  finalize?: boolean
}): Promise<{ signedPsbt: string, signedHexPsbt: string }>

The Swiss Army knife of transaction signing - automatically detects and signs all inputs that match the provided private keys.

signTaprootInput()

async signTaprootInput({
  rawPsbt: string,
  inputNumber: number,
  finalize: boolean
}): Promise<{ signedPsbt: string }>

Signs a specific Taproot input in a PSBT.

signSegwitInput()

async signSegwitInput({
  rawPsbt: string,
  inputNumber: number,
  finalize: boolean
}): Promise<{ signedPsbt: string }>

Signs a specific SegWit input in a PSBT.

signMessage()

async signMessage({
  message: string,
  address?: string,
  keypair: ECPairInterface,
  protocol: 'ecdsa' | 'bip322'
}): Promise<string>

Signs arbitrary messages using either ECDSA or BIP-322 protocols.

Usage Example

import { Signer } from 'oyl-sdk/signer'
import { networks } from 'bitcoinjs-lib'

// Initialize signer with private keys
const signer = new Signer(networks.bitcoin, {
  taprootPrivateKey: "your_taproot_private_key",
  segwitPrivateKey: "your_segwit_private_key"
})

// Sign a PSBT
const result = await signer.signAllInputs({
  rawPsbt: "your_base64_psbt",
  finalize: true
})

console.log(result.signedPsbt) // Your signed transaction

Security Considerations

Private Key Security: Never expose private keys in logs, storage, or code
Key Isolation: Use separate key instances for different operations
Validation: Always validate PSBTs before signing
Network Verification: Ensure correct network configuration to prevent mainnet/testnet confusion
Finalization: Consider implications of automatic finalization

Advanced Features

Batch Operations

signAllTaprootInputs(): Sign all Taproot inputs in one operation
signAllSegwitInputs(): Sign all SegWit inputs in one operation

Multiple Input Types

The signer can handle mixed transactions with different input types:

Taproot (P2TR)
Native SegWit (P2WPKH)
Nested SegWit (P2SH-P2WPKH)
Legacy (P2PKH)

Message Signing Protocols

ECDSA: Traditional Bitcoin message signing
BIP-322: Modern Bitcoin message signing standard

Best Practices

Always verify the transaction details before signing
Use appropriate error handling for signing operations
Implement proper key management and storage
Consider using signAllInputs() for automatic input type detection
Verify network configuration before signing mainnet transactions

Overview​

Core Types​

walletInit​

SighashType​

Class: Signer 🔐​

Constructor​

Key Methods​

signAllInputs()​

signTaprootInput()​

signSegwitInput()​

signMessage()​

Usage Example​

Security Considerations​

Advanced Features​

Batch Operations​

Multiple Input Types​

Message Signing Protocols​

Best Practices​