Skip to content

Silentpayments refactor#125

Open
Sosthene00 wants to merge 11 commits into
masterfrom
silentpayments_refactor
Open

Silentpayments refactor#125
Sosthene00 wants to merge 11 commits into
masterfrom
silentpayments_refactor

Conversation

@Sosthene00
Copy link
Copy Markdown
Collaborator

@Sosthene00 Sosthene00 commented Apr 30, 2026

Long overdue refactoring of silentpayments crate, some changes were things I wanted to do for a long time, others are made to prepare for the psbt integration.

Most significant ones are:

  • f8a674d and 6714670 that introduces a new input type to streamline the generation of recipient pubkeys
  • ade557b that exposes a public API to "normalize" (i.e. guarantee eveness) of private keys used in inputs spending taproot outputs, which is needed for the psbt workflow. On the same occasion I tried to provide stronger guarantees and guidance for consumer of the library regarding the said normalization of keys after it proved to be a source of confusing bugs while working on psbt.

The rest is mostly incremental improvements that can be discussed case by case.

Sosthene00 added 11 commits April 30, 2026 12:06
@Sosthene00
feat: add SpVersion type and make SilentPaymentAddress creation i…
defbcd1 
…nfaillible
@Sosthene00
feat: add GeneratePubkeysInput
f8a674d
@Sosthene00
refactor(silentpayments): generate_recipient_pubkeys with `Generate…
6714670 
…PubkeysInput`

docs(sending): update docs for generate_recipient_pubkeys
@Sosthene00
refactor(silentpayments): move script templates matching to utils + `…
6c96c30 
…is_eligible`
@Sosthene00
fix(silentpayments): update tests
ca697c0
@Sosthene00
refactor(hash): make calculate_input_hash infaillible
95ed780 
* use bytes array instead of (String, u32)
* enforce at least 1 outpoint passed as argument, prevents empty outpoints error
* also updates calling sites in tests and examples
@Sosthene00
refactor(constants): Define the scan and spend derivation paths as co…
1e76dff 
…nstants
@Sosthene00
feat(sending): deep refactoring of sending logic for a safer user API
ade557b 
* new `TypedSecretKey<State>` type that keep track of changes made to a secret key and help enforce the protocol
* `NonEmptyNormalizedKeys` type prevents empty keys array errors
* taproot key normalization is now accessible as a public API, not buried inside a private function `get_a_sum_secret_key`
* unrelated, but commited for convenience: `calculate_partial_secret` takes a secp context as argument
@Sosthene00
refactor(receiving): calculate_tweak_data takes secp context as arg…
eed3cff 
…ument
@Sosthene00
refactor(receiving): pass secp context as argument to calculate_P_n
42e2c17
@Sosthene00
fix: update SpClient with silentpayments changes
ac386c7
cygnet3
cygnet3 reviewed Apr 30, 2026
View reviewed changes
Comment thread silentpayments/src/utils/common.rs
fn try_from(value: u8) -> std::result::Result<Self, Self::Error> {
match value {
0 => Ok(Self::ZERO),
_ => Err(Error::GenericError("Unknwon silent payment version".to_string()))
Copy link
Copy Markdown
Owner

@cygnet3 cygnet3 Apr 30, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
_ => Err(Error::GenericError("Unknwon silent payment version".to_string()))
_ => Err(Error::GenericError("Unknown silent payment version".to_string()))

cygnet3
cygnet3 reviewed Apr 30, 2026
View reviewed changes
Comment thread silentpayments/src/utils/hash.rs
pub(crate) fn calculate_input_hash(
outpoints_data: &[(String, u32)],
pub fn calculate_input_hash(
outpoint_head: &[u8; OUTPOINTS_LEN],
Copy link
Copy Markdown
Owner

@cygnet3 cygnet3 Apr 30, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

One refactoring change that I've been wanting to make for a long time is to use a custom OutPoint struct for our public api functions where we're expecting an outpoint struct. Maybe we can use that here too?

Copy link
Copy Markdown
Collaborator Author

@Sosthene00 Sosthene00 Apr 30, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We could, I was using bytes array though because that's not making a lot of assumptions but I agree that an ad hoc Outpoint type that acts as a thin wrapper around that bytes array and add some build-time guarantees is a good idea

Copy link
Copy Markdown
Collaborator Author

@Sosthene00 Sosthene00 Apr 30, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The real issue is that we can't rely on rust-bitcoin types so letting the caller the responsibility of using serialize(&outpoint).try_into().unwrap() seemed a good idea to me, maybe just document it better. The only risk I see is caller passing a null outpoint, but is it a real risk though?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cygnet3 cygnet3 cygnet3 left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Sosthene00 @cygnet3