Expand utility of secondary shared secrets

When encrypting errors, we currently have the ability to use two shared
secrets for Phantom Node payments.

Trampoline also requires the re-encryption of encrypted errors, first
using the Trampoline shared secret, and then using the outer one.

Given these two cryptographically equivalent use cases, we're renaming
the phantom_shared_secret parameter to secondary_shared_secret, and
explaining the now two contexts in which it will be applicable.

Author: arik-so

lightning/src/ln/onion_utils.rs

@@ -1329,12 +1329,17 @@ impl HTLCFailReason {
 		Self(HTLCFailReasonRepr::LightningError { err: msg.reason.clone() })
 	}
 
+	/// Encrypted a failure packet using a shared secret.
+	///
+	/// For phantom nodes or inner Trampoline onions, a secondary_shared_secret can be passed, which
+	/// will be used to encrypt the failure packet before applying the outer encryption step using
+	/// incoming_packet_shared_secret.
 	pub(super) fn get_encrypted_failure_packet(
-		&self, incoming_packet_shared_secret: &[u8; 32], phantom_shared_secret: &Option<[u8; 32]>,
+		&self, incoming_packet_shared_secret: &[u8; 32], secondary_shared_secret: &Option<[u8; 32]>,
 	) -> msgs::OnionErrorPacket {
 		match self.0 {
 			HTLCFailReasonRepr::Reason { ref failure_code, ref data } => {
-				if let Some(phantom_ss) = phantom_shared_secret {
+				if let Some(phantom_ss) = secondary_shared_secret {
 					let phantom_packet =
 						build_failure_packet(phantom_ss, *failure_code, &data[..]).encode();
 					let encrypted_phantom_packet =