Merge pull request #1188 from dfinity/kristofer/bitcoin_assets

add: Bitcoin asset support to basic_bitcoin example: Ordinals, BRC-20, Runes

Author: kristoferlund

rust/basic_bitcoin/Cargo.lock

@@ -15,3 +15,4 @@ candid = "0.10.13"
 ic-cdk = "0.18.0"
 serde = "1.0.132"
 serde_bytes = "0.11.15"
+leb128 = "0.2.5"

rust/basic_bitcoin/Cargo.toml

@@ -1,6 +1,25 @@
 # Basic Bitcoin
 
-This example demonstrates how to deploy a smart contract on the Internet Computer that can receive and send Bitcoin, including support for legacy (P2PKH), SegWit (P2WPKH), and Taproot (P2TR) address types.
+This example demonstrates how to deploy a smart contract on the Internet Computer that can receive and send bitcoin, including support for legacy (P2PKH), SegWit (P2WPKH), and Taproot (P2TR) address types.
+
+This example also includes examples of how to work with Bitcoin assets such as Ordinals, Runes, and BRC-20 tokens.
+
+## Table of contents
+
+- [Architecture](#architecture)
+- [Prerequisites](#prerequisites)
+- [Building and deploying the smart contract](#building-and-deploying-the-smart-contract)
+- [Generating Bitcoin addresses](#generating-bitcoin-addresses)
+- [Receiving bitcoin](#receiving-bitcoin)
+- [Checking balance](#checking-balance)
+- [Sending bitcoin](#sending-bitcoin)
+- [Retrieving block headers](#retrieving-block-headers)
+- [Bitcoin assets](#bitcoin-assets)
+- [Inscribe an Ordinal](#inscribe-an-ordinal)
+- [Etch a Rune](#etch-a-rune)
+- [Deploy a BRC-20 token](#deploy-a-brc-20-token)
+- [Notes on implementation](#notes-on-implementation)
+- [Security considerations and best practices](#security-considerations-and-best-practices)
 
 ## Architecture
 
@@ -16,8 +35,8 @@ For background on the ICP<>BTC integration, refer to the [Learn Hub](https://lea
 
 - [x] [Rust toolchain](https://www.rust-lang.org/tools/install)
 - [x] [Internet Computer SDK](https://internetcomputer.org/docs/building-apps/getting-started/install)
-- [x] [Local Bitcoin testnet (regtest)](https://internetcomputer.org/docs/build-on-btc/btc-dev-env#create-a-local-bitcoin-testnet-regtest-with-bitcoind) 
-- [x] On macOS, an `llvm` version that supports the `wasm32-unknown-unknown` target is required. This is because the Rust `bitcoin` library relies on the `secp256k1-sys` crate, which requires `llvm` to build. The default `llvm` version provided by XCode does not meet this requirement. Instead, install the [Homebrew version](https://formulae.brew.sh/formula/llvm), using `brew install llvm`. 
+- [x] [Local Bitcoin testnet (regtest)](https://internetcomputer.org/docs/build-on-btc/btc-dev-env#create-a-local-bitcoin-testnet-regtest-with-bitcoind)
+- [x] On macOS, an `llvm` version that supports the `wasm32-unknown-unknown` target is required. This is because the Rust `bitcoin` library relies on the `secp256k1-sys` crate, which requires `llvm` to build. The default `llvm` version provided by XCode does not meet this requirement. Instead, install the [Homebrew version](https://formulae.brew.sh/formula/llvm), using `brew install llvm`.
 
 ## Building and deploying the smart contract
 
@@ -30,20 +49,24 @@ cd examples/rust/basic_bitcoin
 
 ### 2. Start the ICP execution environment
 
+Open a terminal window (terminal 1) and run the following:
 ```bash
-dfx start --clean --background
+dfx start --enable-bitcoin --bitcoin-node 127.0.0.1:18444
 ```
+This starts a local canister execution environment with Bitcoin support enabled.
 
 ### 3. Start the Bitcoin testnet (regtest)
 
-In a separate terminal window, run the following: 
+Open another terminal window (terminal 2) and run the following to start the local Bitcoin testnet:
 
 ```bash
 bitcoind -conf=$(pwd)/bitcoin.conf -datadir=$(pwd)/bitcoin_data --port=18444
 ```
 
 ### 4. Deploy the smart contract
 
+Open a third terminal (terminal 3) and run the following to deploy the smart contract:
+
 ```bash
 dfx deploy basic_bitcoin --argument '(variant { regtest })'
 ```
@@ -53,12 +76,11 @@ What this does:
 - `dfx deploy` tells the command line interface to `deploy` the smart contract.
 - `--argument '(variant { regtest })'` passes the argument `regtest` to initialize the smart contract, telling it to connect to the local Bitcoin regtest network.
 
-
-Your smart contract is live and ready to use! You can interact with it using either the command line or using the Candid UI, which is the link you see in the terminal.
+Your smart contract is live and ready to use! You can interact with it using either the command line or the Candid UI (the link you see in the terminal).
 
 > [!NOTE]
 > You can also interact with a pre-deployed version of the `basic_bitcoin` example running on the IC mainnet and configured to interact with Bitcoin **testnet4**.
-> 
+>
 > Access the Candid UI of the example: https://a4gq6-oaaaa-aaaab-qaa4q-cai.raw.icp0.io/?id=vvha6-7qaaa-aaaap-ahodq-cai
 
 ## Generating Bitcoin addresses
@@ -77,9 +99,9 @@ dfx canister call basic_bitcoin get_p2pkh_address
 # or get_p2wpkh_address, get_p2tr_key_path_only_address, get_p2tr_script_path_enabled_address
 ```
 
-## Receiving Bitcoin
+## Receiving bitcoin
 
-Use the `bitcoin-cli` to mine a Bitcoin block and send the block reward in the form of local testnet BTC to one of the smart contract addresses.
+Use the `bitcoin-cli` to mine a Bitcoin block and send the block reward in the form of local testnet bitcoin to one of the smart contract addresses.
 
 ```bash
 bitcoin-cli -conf=$(pwd)/bitcoin.conf generatetoaddress 1 <bitcoin_address>
@@ -93,11 +115,11 @@ Check the balance of any Bitcoin address:
 dfx canister call basic_bitcoin get_balance '("<bitcoin_address>")'
 ```
 
-This uses `bitcoin_get_balance` and works for any supported address type. Requires at least one confirmation to be reflected.
+This uses `bitcoin_get_balance` and works for any supported address type. The balance requires at least one confirmation to be reflected.
 
-## Sending Bitcoin
+## Sending bitcoin
 
-You can send BTC using the following endpoints:
+You can send bitcoin using the following endpoints:
 
 - `send_from_p2pkh_address`
 - `send_from_p2wpkh_address`
@@ -123,8 +145,8 @@ dfx canister call basic_bitcoin send_from_p2pkh_address '(record {
 ```
 
 > [!IMPORTANT]
-> Newly mined bitcoin, like those you created with the above `bitcoin-cli` command cannot be spent until 100 additional blocks have been added to the chain. To make your bitcoin spendable, create 100 additional blocks. Choose one of the smart contract addresses as receiver of the block reward or use any valid bitcoin dummy address.
-> 
+> Newly mined bitcoin, like those you created with the above `bitcoin-cli` command, cannot be spent until 100 additional blocks have been added to the chain. To make your bitcoin spendable, create 100 additional blocks. Choose one of the smart contract addresses as receiver of the block reward or use any valid Bitcoin dummy address.
+>
 > ```bash
 > bitcoin-cli -conf=$(pwd)/bitcoin.conf generatetoaddress 100 <bitcoin_address>
 > ```
@@ -141,17 +163,164 @@ dfx canister call basic_bitcoin get_block_headers '(10: nat32)'
 dfx canister call basic_bitcoin get_block_headers '(0: nat32, 11: nat32)'
 ```
 
-This calls `bitcoin_get_block_headers`, useful for validating blockchains or light client logic.
+This calls `bitcoin_get_block_headers`, which is useful for blockchain validation or light client logic.
+
+## Bitcoin assets
+
+Bitcoin's scripting capabilities enable various digital assets beyond simple transfers. This example demonstrates how to create and interact with three major Bitcoin asset protocols from an ICP smart contract:
+
+- **Ordinals**: Inscribe arbitrary data onto individual satoshis
+- **Runes**: Create fungible tokens using `OP_RETURN` outputs
+- **BRC-20**: Build fungible tokens on top of Ordinals using JSON
+
+### Prerequisites for Bitcoin assets
+
+All Bitcoin assets rely on off-chain indexing since the Bitcoin protocol doesn't natively support querying these assets. The `ord` CLI tool is the standard indexer for Bitcoin assets like Ordinals and Runes.
+
+Install `ord` using a package manager. For example, on macOS:
+
+```bash
+brew install ord
+```
+
+For other platforms, see the [ord repository](https://github.com/ordinals/ord) for installation instructions.
+
+> [!NOTE]
+> This repository includes a [default ord config file](./ord.yaml) that matches the also provided [bitcoin config file](./bitcoin.conf).
+
+> [!IMPORTANT]
+> **Bitcoin Configuration**: To work with Bitcoin assets, make sure bitcoind is configured to accept non-standard transactions by including this setting in your `bitcoin.conf`:
+>
+> ```
+> acceptnonstdtxn=1
+> ```
+
+## Inscribe an Ordinal
+
+[Ordinals](https://ordinals.com) is a protocol that allows inscribing arbitrary data (text, images, etc.) onto individual satoshis, creating unique digital artifacts on Bitcoin. Each inscription is permanently stored in the Bitcoin blockchain using a two-transaction commit/reveal process.
+
+### Step-by-step process:
+
+1. **Start the ord server** to index transactions:
+   ```bash
+   ord --config-dir . server
+   ```
+
+2. **Get a Taproot address** for funding the inscription:
+   ```bash
+   dfx canister call basic_bitcoin get_p2tr_key_path_only_address '()'
+   ```
+
+3. **Fund the address** with sufficient bitcoin (100 blocks ensures spendability):
+   ```bash
+   bitcoin-cli -conf=$(pwd)/bitcoin.conf generatetoaddress 100 <p2tr_key_path_only_address>
+   ```
+
+4. **Create the inscription** with your desired text:
+   ```bash
+   dfx canister call basic_bitcoin inscribe_ordinal '("Hello Bitcoin")'
+   ```
+
+5. **Mine a block** to confirm the transactions:
+   ```bash
+   bitcoin-cli -conf=$(pwd)/bitcoin.conf generatetoaddress 1 <p2tr_key_path_only_address>
+   ```
+
+The function returns the reveal transaction ID. Your inscription is now permanently stored on Bitcoin and can be viewed using ord or other Ordinals explorers. The default address of the local `ord` server is `http://127.0.0.1:80/`.
+
+## Etch a Rune
+
+[Runes](https://docs.ordinals.com/runes.html) is a fungible token protocol that embeds token metadata directly into Bitcoin transactions using `OP_RETURN` outputs. Unlike Ordinals, Runes are created in a single transaction and support standard fungible token operations.
+
+### Step-by-step process:
+
+1. **Start the ord server** to track Rune balances:
+   ```bash
+   ord --config-dir . server
+   ```
+
+2. **Get a Taproot address** for the Rune etching:
+   ```bash
+   dfx canister call basic_bitcoin get_p2tr_key_path_only_address '()'
+   ```
+
+3. **Fund the address** with bitcoin to pay for the etching:
+   ```bash
+   bitcoin-cli -conf=$(pwd)/bitcoin.conf generatetoaddress 100 <p2tr_key_path_only_address>
+   ```
+
+4. **Etch the Rune** with an uppercase name (maximum 28 characters):
+   ```bash
+   dfx canister call basic_bitcoin etch_rune '("ICPRUNE")'
+   ```
+
+5. **Mine a block** to confirm the etching:
+   ```bash
+   bitcoin-cli -conf=$(pwd)/bitcoin.conf generatetoaddress 1 <p2tr_key_path_only_address>
+   ```
+
+6. **Decode the Runestone** to verify the etching:
+   ```bash
+   ord --config-dir . decode --txid <transaction_id>
+   ```
+
+The Rune is now etched with 1_000_000 tokens minted to your address. The tokens can be transferred using standard Bitcoin transactions with Runestone data.
+
+## Deploy a BRC-20 token
+
+[BRC-20](https://domo-2.gitbook.io/brc-20-experiment/) is a token standard built on top of Ordinals that uses structured JSON payloads to create fungible tokens. BRC-20 tokens follow the same inscription process as Ordinals but with standardized JSON formats.
+
+### Step-by-step process:
+
+1. **Start the ord server** to index BRC-20 inscriptions:
+   ```bash
+   ord --config-dir . server
+   ```
+
+2. **Get a Taproot address** for the token deployment:
+   ```bash
+   dfx canister call basic_bitcoin get_p2tr_key_path_only_address '()'
+   ```
+
+3. **Fund the address** with bitcoin:
+   ```bash
+   bitcoin-cli -conf=$(pwd)/bitcoin.conf generatetoaddress 100 <p2tr_key_path_only_address>
+   ```
+
+4. **Deploy the BRC-20 token** with a 4-character ticker:
+   ```bash
+   dfx canister call basic_bitcoin inscribe_brc20 '("DEMO")'
+   ```
+
+5. **Mine a block** to confirm the deployment:
+   ```bash
+   bitcoin-cli -conf=$(pwd)/bitcoin.conf generatetoaddress 1 <p2tr_key_path_only_address>
+   ```
+
+This creates a BRC-20 token with:
+- Ticker: "DEMO"
+- Max supply: 21_000_000 tokens
+- Mint limit: 1_000 tokens per mint
+
+The deployment inscription contains JSON metadata that BRC-20 indexers use to track token balances and transfers. Additional mint and transfer operations require separate inscriptions following the BRC-20 protocol.
+
+To view the deployed BRC-20 token, use the local `ord` explorer at `http://127.0.0.1:80/`.
+
 
 ## Notes on implementation
 
-- Keys are derived using structured derivation paths according to BIP-32.
-- Key caching is used to avoid repeated calls to `get_ecdsa_public_key` and `get_schnorr_public_key`.
-- Transactions are assembled and signed manually, ensuring maximum flexibility in construction and fee estimation.
-- When _testing_ on mainnet, the [chain-key testing canister](https://github.com/dfinity/chainkey-testing-canister) can be used to save on costs for calling the threshold signing APIs for signing the BTC transactions.
+This example implements several important patterns for Bitcoin integration:
+
+- **Derivation paths**: Keys are derived using structured derivation paths according to BIP-32, ensuring reproducible key generation.
+- **Key caching**: Optimization is used to avoid repeated calls to `get_ecdsa_public_key` and `get_schnorr_public_key`.
+- **Manual transaction construction**: Transactions are assembled and signed manually, ensuring maximum flexibility in construction and fee estimation.
+- **Cost optimization**: When testing on mainnet, the [chain-key testing canister](https://github.com/dfinity/chainkey-testing-canister) can be used to save on costs for calling the threshold signing APIs.
+- **Asset protocols**: Bitcoin assets (Ordinals, Runes, BRC-20) demonstrate advanced scripting capabilities and witness data usage.
 
 ## Security considerations and best practices
 
+This example is provided for educational purposes and is not production-ready. It is important to consider security implications when developing applications that interact with Bitcoin or other cryptocurrencies. The code has **not been audited** and may contain vulnerabilities or security issues.
+
 If you base your application on this example, we recommend you familiarize yourself with and adhere to the [security best practices](https://internetcomputer.org/docs/current/references/security/) for developing on the Internet Computer. This example may not implement all the best practices.
 
 For example, the following aspects are particularly relevant for this app:

rust/basic_bitcoin/README.md

@@ -41,8 +41,10 @@ type get_block_headers_response = record {
 };
 
 service : (network) -> {
+  "etch_rune" : (ticker: text) -> (transaction_id);
+
   "get_p2pkh_address" : () -> (bitcoin_address);
-  
+
   "get_p2wpkh_address" : () -> (bitcoin_address);
 
   "get_p2tr_script_path_enabled_address" : () -> (bitcoin_address);
@@ -57,6 +59,10 @@ service : (network) -> {
 
   "get_current_fee_percentiles" : () -> (vec millisatoshi_per_vbyte);
 
+  "inscribe_brc20": (ticker: text) -> (transaction_id);
+
+  "inscribe_ordinal": (text: text) -> (transaction_id);
+
   "send_from_p2pkh_address" : (
     record {
       destination_address : bitcoin_address;

rust/basic_bitcoin/basic_bitcoin.did

@@ -1,5 +1,5 @@
 regtest=1
+acceptnonstdtxn=1
 txindex=1
 rpcuser=ic-btc-integration
 rpcpassword=QPQiNaph19FqUsCrBRN0FII7lyM26B51fAMeBQzCb-E=
-rpcauth=ic-btc-integration:cdf2741387f3a12438f69092f0fdad8e$62081498c98bee09a0dce2b30671123fa561932992ce377585e8e08bb0c11dfa

rust/basic_bitcoin/bitcoin.conf

@@ -0,0 +1,9 @@
+bitcoin_data_dir: ./bitcoin_data
+bitcoin_rpc_password: QPQiNaph19FqUsCrBRN0FII7lyM26B51fAMeBQzCb-E=
+bitcoin_rpc_url: http://127.0.0.1:18443
+bitcoin_rpc_username: ic-btc-integration
+chain: regtest
+index_addresses: true
+index_runes: true
+index_sats: true
+index_transactions: true