tcharding
diff --git a/‎src/macros.rs‎
Lines changed: 39 additions & 0 deletions b/‎src/macros.rs‎
Lines changed: 39 additions & 0 deletions
diff --git a/‎src/serialize.rs‎
Lines changed: 34 additions & 1 deletion b/‎src/serialize.rs‎
Lines changed: 34 additions & 1 deletion
diff --git a/‎src/v2/dleq.rs‎
Lines changed: 141 additions & 0 deletions b/‎src/v2/dleq.rs‎
Lines changed: 141 additions & 0 deletions
diff --git a/‎src/v2/map/global.rs‎
Lines changed: 28 additions & 42 deletions b/‎src/v2/map/global.rs‎
Lines changed: 28 additions & 42 deletions
@@ -128,3 +128,42 @@ macro_rules! v2_impl_psbt_hash_serialize {
         }
     };
 }
+
+/// Macro for inserting BIP-375 silent payment fields with CompressedPublicKey keys.
+#[cfg(feature = "silent-payments")]
+macro_rules! v2_impl_psbt_insert_sp_pair {
+    // For CompressedPublicKey values (ECDH shares)
+    ($map:expr, $raw_key:expr, $raw_value:expr, compressed_pubkey) => {{
+        if $raw_key.key.is_empty() {
+            return Err(InsertPairError::InvalidKeyDataEmpty($raw_key).into());
+        }
+        let scan_key = bitcoin::CompressedPublicKey::from_slice(&$raw_key.key)
+            .map_err(|_| InsertPairError::KeyWrongLength($raw_key.key.len(), 33))?;
+        let value = bitcoin::CompressedPublicKey::from_slice(&$raw_value)
+            .map_err(|_| InsertPairError::ValueWrongLength($raw_value.len(), 33))?;
+        match $map.entry(scan_key) {
+            $crate::prelude::btree_map::Entry::Vacant(empty_key) => {
+                empty_key.insert(value);
+            }
+            $crate::prelude::btree_map::Entry::Occupied(_) =>
+                return Err(InsertPairError::DuplicateKey($raw_key).into()),
+        }
+    }};
+    // For DleqProof values (DLEQ proofs)
+    ($map:expr, $raw_key:expr, $raw_value:expr, dleq_proof) => {{
+        if $raw_key.key.is_empty() {
+            return Err(InsertPairError::InvalidKeyDataEmpty($raw_key).into());
+        }
+        let scan_key = bitcoin::CompressedPublicKey::from_slice(&$raw_key.key)
+            .map_err(|_| InsertPairError::KeyWrongLength($raw_key.key.len(), 33))?;
+        let value = $crate::v2::dleq::DleqProof::try_from($raw_value.as_slice())
+            .map_err(|_| InsertPairError::ValueWrongLength($raw_value.len(), 64))?;
+        match $map.entry(scan_key) {
+            $crate::prelude::btree_map::Entry::Vacant(empty_key) => {
+                empty_key.insert(value);
+            }
+            $crate::prelude::btree_map::Entry::Occupied(_) =>
+                return Err(InsertPairError::DuplicateKey($raw_key).into()),
+        }
+    }};
+}
@@ -413,6 +413,27 @@ pub enum Error {
     LockTime(absolute::ConversionError),
     /// Unsupported PSBT version.
     UnsupportedVersion(version::UnsupportedVersionError),
+    /// Invalid scan key for BIP-375 silent payments (expected 33 bytes).
+    InvalidScanKey {
+        /// The length that was provided.
+        got: usize,
+        /// The expected length.
+        expected: usize,
+    },
+    /// Invalid ECDH share for BIP-375 silent payments (expected 33 bytes).
+    InvalidEcdhShare {
+        /// The length that was provided.
+        got: usize,
+        /// The expected length.
+        expected: usize,
+    },
+    /// Invalid DLEQ proof for BIP-375 silent payments (expected 64 bytes).
+    InvalidDleqProof {
+        /// The length that was provided.
+        got: usize,
+        /// The expected length.
+        expected: usize,
+    },
 }
 
 impl fmt::Display for Error {
@@ -440,6 +461,15 @@ impl fmt::Display for Error {
                 f.write_str("data not consumed entirely when explicitly deserializing"),
             LockTime(ref e) => write_err!(f, "parsed locktime invalid"; e),
             UnsupportedVersion(ref e) => write_err!(f, "unsupported version"; e),
+            InvalidScanKey { got, expected } => {
+                write!(f, "invalid scan key: got {} bytes, expected {}", got, expected)
+            }
+            InvalidEcdhShare { got, expected } => {
+                write!(f, "invalid ECDH share: got {} bytes, expected {}", got, expected)
+            }
+            InvalidDleqProof { got, expected } => {
+                write!(f, "invalid DLEQ proof: got {} bytes, expected {}", got, expected)
+            }
         }
     }
 }
@@ -467,7 +497,10 @@ impl std::error::Error for Error {
             | InvalidLeafVersion
             | Taproot(_)
             | TapTree(_)
-            | PartialDataConsumption => None,
+            | PartialDataConsumption
+            | InvalidScanKey { .. }
+            | InvalidEcdhShare { .. }
+            | InvalidDleqProof { .. } => None,
         }
     }
 }
 
@@ -0,0 +1,141 @@
+// SPDX-License-Identifier: CC0-1.0
+
+//! BIP-375: Support for silent payments in PSBTs.
+//!
+//! This module provides type-safe wrapper for BIP-374 dleq proof field.
+
+use core::fmt;
+
+use crate::prelude::*;
+use crate::serialize::{Deserialize, Serialize};
+
+/// A 64-byte DLEQ proof (BIP-374).
+#[derive(Debug, Clone, Copy, PartialEq, Eq, PartialOrd, Ord, Hash)]
+pub struct DleqProof(pub [u8; 64]);
+
+#[cfg(feature = "serde")]
+impl actual_serde::Serialize for DleqProof {
+    fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
+    where
+        S: actual_serde::Serializer,
+    {
+        if serializer.is_human_readable() {
+            serializer.serialize_str(&bitcoin::hex::DisplayHex::to_lower_hex_string(&self.0[..]))
+        } else {
+            serializer.serialize_bytes(&self.0[..])
+        }
+    }
+}
+
+#[cfg(feature = "serde")]
+impl<'de> actual_serde::Deserialize<'de> for DleqProof {
+    fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
+    where
+        D: actual_serde::Deserializer<'de>,
+    {
+        if deserializer.is_human_readable() {
+            struct HexVisitor;
+            impl<'de> actual_serde::de::Visitor<'de> for HexVisitor {
+                type Value = DleqProof;
+
+                fn expecting(&self, f: &mut core::fmt::Formatter) -> core::fmt::Result {
+                    f.write_str("a 64-byte hex string")
+                }
+
+                fn visit_str<E>(self, s: &str) -> Result<Self::Value, E>
+                where
+                    E: actual_serde::de::Error,
+                {
+                    use bitcoin::hex::FromHex;
+                    let vec = Vec::<u8>::from_hex(s).map_err(E::custom)?;
+                    DleqProof::try_from(vec).map_err(|e| {
+                        E::custom(format!("expected {} bytes, got {}", e.expected, e.got))
+                    })
+                }
+            }
+            deserializer.deserialize_str(HexVisitor)
+        } else {
+            struct BytesVisitor;
+            impl<'de> actual_serde::de::Visitor<'de> for BytesVisitor {
+                type Value = DleqProof;
+
+                fn expecting(&self, f: &mut core::fmt::Formatter) -> core::fmt::Result {
+                    f.write_str("64 bytes")
+                }
+
+                fn visit_bytes<E>(self, v: &[u8]) -> Result<Self::Value, E>
+                where
+                    E: actual_serde::de::Error,
+                {
+                    DleqProof::try_from(v).map_err(|e| {
+                        E::custom(format!("expected {} bytes, got {}", e.expected, e.got))
+                    })
+                }
+            }
+            deserializer.deserialize_bytes(BytesVisitor)
+        }
+    }
+}
+
+impl DleqProof {
+    /// Creates a new [`DleqProof`] from a 64-byte array.
+    pub fn new(bytes: [u8; 64]) -> Self { DleqProof(bytes) }
+
+    /// Returns the inner 64-byte array.
+    pub fn as_bytes(&self) -> &[u8; 64] { &self.0 }
+}
+
+impl From<[u8; 64]> for DleqProof {
+    fn from(bytes: [u8; 64]) -> Self { DleqProof(bytes) }
+}
+
+impl AsRef<[u8]> for DleqProof {
+    fn as_ref(&self) -> &[u8] { &self.0 }
+}
+
+impl TryFrom<&[u8]> for DleqProof {
+    type Error = InvalidLengthError;
+
+    fn try_from(slice: &[u8]) -> Result<Self, Self::Error> {
+        <[u8; 64]>::try_from(slice)
+            .map(DleqProof)
+            .map_err(|_| InvalidLengthError { got: slice.len(), expected: 64 })
+    }
+}
+
+impl TryFrom<Vec<u8>> for DleqProof {
+    type Error = InvalidLengthError;
+
+    fn try_from(v: Vec<u8>) -> Result<Self, Self::Error> { Self::try_from(v.as_slice()) }
+}
+
+impl Serialize for DleqProof {
+    fn serialize(&self) -> Vec<u8> { self.0.to_vec() }
+}
+
+impl Deserialize for DleqProof {
+    fn deserialize(bytes: &[u8]) -> Result<Self, crate::serialize::Error> {
+        DleqProof::try_from(bytes).map_err(|e| crate::serialize::Error::InvalidDleqProof {
+            got: e.got,
+            expected: e.expected,
+        })
+    }
+}
+
+/// Error returned when a byte array has an invalid length for a dleq proof.
+#[derive(Debug, Clone, Copy, PartialEq, Eq)]
+pub struct InvalidLengthError {
+    /// The length that was provided.
+    pub got: usize,
+    /// The expected length.
+    pub expected: usize,
+}
+
+impl fmt::Display for InvalidLengthError {
+    fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
+        write!(f, "invalid length for BIP-375 type: got {}, expected {}", self.got, self.expected)
+    }
+}
+
+#[cfg(feature = "std")]
+impl std::error::Error for InvalidLengthError {}
@@ -6,6 +6,8 @@ use core::fmt;
 use bitcoin::bip32::{ChildNumber, DerivationPath, Fingerprint, KeySource, Xpub};
 use bitcoin::consensus::{encode as consensus, Decodable};
 use bitcoin::locktime::absolute;
+#[cfg(feature = "silent-payments")]
+use bitcoin::CompressedPublicKey;
 use bitcoin::{bip32, transaction, VarInt};
 
 use crate::consts::{
@@ -19,6 +21,8 @@ use crate::error::{write_err, InconsistentKeySourcesError};
 use crate::io::{BufRead, Cursor, Read};
 use crate::prelude::*;
 use crate::serialize::Serialize;
+#[cfg(feature = "silent-payments")]
+use crate::v2::dleq::DleqProof;
 use crate::v2::map::Map;
 use crate::version::Version;
 use crate::{consts, raw, serialize, V2};
@@ -60,13 +64,13 @@ pub struct Global {
 
     /// BIP-375: Map from scan public key to ECDH share (33 bytes each).
     #[cfg(feature = "silent-payments")]
-    #[cfg_attr(feature = "serde", serde(with = "crate::serde_utils::btreemap_as_seq_byte_values"))]
-    pub sp_ecdh_shares: BTreeMap<Vec<u8>, Vec<u8>>,
+    #[cfg_attr(feature = "serde", serde(with = "crate::serde_utils::btreemap_as_seq"))]
+    pub sp_ecdh_shares: BTreeMap<CompressedPublicKey, CompressedPublicKey>,
 
     /// BIP-375: Map from scan public key to DLEQ proof (64 bytes each).
     #[cfg(feature = "silent-payments")]
-    #[cfg_attr(feature = "serde", serde(with = "crate::serde_utils::btreemap_as_seq_byte_values"))]
-    pub sp_dleq_proofs: BTreeMap<Vec<u8>, Vec<u8>>,
+    #[cfg_attr(feature = "serde", serde(with = "crate::serde_utils::btreemap_as_seq"))]
+    pub sp_dleq_proofs: BTreeMap<CompressedPublicKey, DleqProof>,
 
     /// Global proprietary key-value pairs.
     #[cfg_attr(feature = "serde", serde(with = "crate::serde_utils::btreemap_as_seq_byte_values"))]
@@ -148,9 +152,10 @@ impl Global {
         let mut output_count: Option<u64> = None;
         let mut xpubs: BTreeMap<Xpub, (Fingerprint, DerivationPath)> = Default::default();
         #[cfg(feature = "silent-payments")]
-        let mut sp_ecdh_shares: BTreeMap<Vec<u8>, Vec<u8>> = Default::default();
+        let mut sp_ecdh_shares: BTreeMap<CompressedPublicKey, CompressedPublicKey> =
+            Default::default();
         #[cfg(feature = "silent-payments")]
-        let mut sp_dleq_proofs: BTreeMap<Vec<u8>, Vec<u8>> = Default::default();
+        let mut sp_dleq_proofs: BTreeMap<CompressedPublicKey, DleqProof> = Default::default();
         let mut proprietaries: BTreeMap<raw::ProprietaryKey, Vec<u8>> = Default::default();
         let mut unknowns: BTreeMap<raw::Key, Vec<u8>> = Default::default();
 
@@ -310,41 +315,16 @@ impl Global {
                     },
                 #[cfg(feature = "silent-payments")]
                 PSBT_GLOBAL_SP_ECDH_SHARE => {
-                    if pair.key.key.is_empty() {
-                        return Err(InsertPairError::InvalidKeyDataEmpty(pair.key));
-                    }
-                    if pair.key.key.len() != 33 {
-                        return Err(InsertPairError::KeyWrongLength(pair.key.key.len(), 33));
-                    }
-                    if pair.value.len() != 33 {
-                        return Err(InsertPairError::ValueWrongLength(pair.value.len(), 33));
-                    }
-                    match sp_ecdh_shares.entry(pair.key.key.clone()) {
-                        btree_map::Entry::Vacant(empty_key) => {
-                            empty_key.insert(pair.value);
-                        }
-                        btree_map::Entry::Occupied(_) =>
-                            return Err(InsertPairError::DuplicateKey(pair.key)),
-                    }
+                    v2_impl_psbt_insert_sp_pair!(
+                        sp_ecdh_shares,
+                        pair.key,
+                        pair.value,
+                        compressed_pubkey
+                    );
                 }
                 #[cfg(feature = "silent-payments")]
                 PSBT_GLOBAL_SP_DLEQ => {
-                    if pair.key.key.is_empty() {
-                        return Err(InsertPairError::InvalidKeyDataEmpty(pair.key));
-                    }
-                    if pair.key.key.len() != 33 {
-                        return Err(InsertPairError::KeyWrongLength(pair.key.key.len(), 33));
-                    }
-                    if pair.value.len() != 64 {
-                        return Err(InsertPairError::ValueWrongLength(pair.value.len(), 64));
-                    }
-                    match sp_dleq_proofs.entry(pair.key.key.clone()) {
-                        btree_map::Entry::Vacant(empty_key) => {
-                            empty_key.insert(pair.value);
-                        }
-                        btree_map::Entry::Occupied(_) =>
-                            return Err(InsertPairError::DuplicateKey(pair.key)),
-                    }
+                    v2_impl_psbt_insert_sp_pair!(sp_dleq_proofs, pair.key, pair.value, dleq_proof);
                 }
                 v if v == PSBT_GLOBAL_UNSIGNED_TX =>
                     return Err(InsertPairError::ExcludedKey { key_type_value: v }),
@@ -527,16 +507,22 @@ impl Map for Global {
         #[cfg(feature = "silent-payments")]
         for (scan_key, ecdh_share) in &self.sp_ecdh_shares {
             rv.push(raw::Pair {
-                key: raw::Key { type_value: PSBT_GLOBAL_SP_ECDH_SHARE, key: scan_key.clone() },
-                value: ecdh_share.clone(),
+                key: raw::Key {
+                    type_value: PSBT_GLOBAL_SP_ECDH_SHARE,
+                    key: scan_key.to_bytes().to_vec(),
+                },
+                value: ecdh_share.to_bytes().to_vec(),
             });
         }
 
         #[cfg(feature = "silent-payments")]
         for (scan_key, dleq_proof) in &self.sp_dleq_proofs {
             rv.push(raw::Pair {
-                key: raw::Key { type_value: PSBT_GLOBAL_SP_DLEQ, key: scan_key.clone() },
-                value: dleq_proof.clone(),
+                key: raw::Key {
+                    type_value: PSBT_GLOBAL_SP_DLEQ,
+                    key: scan_key.to_bytes().to_vec(),
+                },
+                value: dleq_proof.as_bytes().to_vec(),
             });
         }