silent_payments_psbt/

error.rs

//! Per-domain error enums for PSBT and DLEQ operations.
//!
//! Two error types cover different failure domains:
//! - [`PsbtError`] -- BIP 375 PSBT field and role operation failures
//! - [`DleqError`] -- BIP 374 DLEQ proof generation and verification failures
//!
//! All enums implement [`std::error::Error`] via `thiserror` and provide
//! wallet-developer-friendly error messages.

use silent_payments_core::CryptoError;
use thiserror::Error;

/// Errors from BIP 375 PSBT operations (field access, role transitions, validation).
#[derive(Debug, Error)]
pub enum PsbtError {
    /// PSBT output is missing the SP_V0_INFO field (scan + spend keys).
    #[error("PSBT output missing scan public key in SP_V0_INFO field")]
    MissingScanKey,

    /// PSBT is missing an ECDH share for a specific scan key.
    #[error("missing ECDH share for scan key {scan_key}")]
    MissingEcdhShare { scan_key: String },

    /// PSBT is missing a DLEQ proof for a specific scan key.
    #[error("missing DLEQ proof for scan key {scan_key}")]
    MissingDleqProof { scan_key: String },

    /// A PSBT field has an unexpected byte length.
    #[error("invalid {field} length: expected {expected}, got {actual}")]
    InvalidFieldLength {
        field: String,
        expected: usize,
        actual: usize,
    },

    /// A public key in a PSBT field is invalid.
    #[error("invalid public key in PSBT field: {reason}")]
    InvalidPublicKey { reason: String },

    /// A DLEQ proof in the PSBT is invalid.
    #[error(transparent)]
    InvalidProof(#[from] DleqError),

    /// A scan key has both global and per-input ECDH shares (BIP 375 violation).
    #[error("scan key {scan_key} has both global and per-input ECDH shares")]
    DuplicateShareType { scan_key: String },

    /// An output index exceeds the number of PSBT outputs.
    #[error("output index {index} out of bounds (PSBT has {count} outputs)")]
    OutputIndexOutOfBounds { index: usize, count: usize },

    /// PSBT has no outputs with Silent Payment fields.
    #[error("PSBT has no Silent Payment output fields")]
    NoSpOutputs,

    /// Not all required ECDH shares and DLEQ proofs are present for extraction.
    #[error("not all required ECDH shares and DLEQ proofs are present")]
    IncompleteSigning,

    /// A cryptographic operation failed.
    #[error("cryptographic error: {0}")]
    Crypto(CryptoError),
}

impl From<CryptoError> for PsbtError {
    fn from(err: CryptoError) -> Self {
        PsbtError::Crypto(err)
    }
}

/// Errors from BIP 374 DLEQ proof operations.
#[derive(Debug, Error)]
pub enum DleqError {
    /// The DLEQ proof bytes are structurally invalid.
    #[error("DLEQ proof is invalid")]
    InvalidProof,

    /// The DLEQ proof verified but returned false (proof does not match keys).
    #[error("DLEQ proof verification returned false")]
    VerificationFailed,

    /// The keys provided for DLEQ proof don't match the expected relationship.
    #[error("key mismatch in DLEQ proof: {reason}")]
    MismatchedKeys { reason: String },

    /// The proof byte array has the wrong length.
    #[error("proof must be {expected} bytes, got {actual}")]
    MalformedProofBytes { expected: usize, actual: usize },

    /// DLEQ proof generation failed.
    #[error("DLEQ proof generation failed: {reason}")]
    GenerationFailed { reason: String },

    /// A secp256k1 operation failed (wraps as string, consistent with CryptoError pattern).
    #[error("secp256k1 error: {0}")]
    Crypto(String),
}

impl From<dleq::DleqError> for DleqError {
    fn from(err: dleq::DleqError) -> Self {
        match err {
            dleq::DleqError::RangeError(e) => DleqError::Crypto(e.to_string()),
            dleq::DleqError::Secp256k1Error(e) => DleqError::Crypto(e.to_string()),
            dleq::DleqError::VerificationFailed => DleqError::VerificationFailed,
        }
    }
}

impl From<bitcoin::secp256k1::Error> for DleqError {
    fn from(err: bitcoin::secp256k1::Error) -> Self {
        DleqError::Crypto(err.to_string())
    }
}