Unified Addresses support

[cypt4]

Resolves brave/brave-browser#32239

Resolves

Submitter Checklist:

• I confirm that no security/privacy review is needed and no other type of reviews are needed, or that I have requested them
• There is a ticket for my issue
• Used Github auto-closing keywords in the PR description above
• Wrote a good PR/commit description
• Squashed any review feedback or "fixup" commits before merge, so that history is a record of what happened in the repo, not your PR
• Added appropriate labels (QA/Yes or QA/No; release-notes/include or release-notes/exclude; OS/...) to the associated issue
• Checked the PR locally:
  • npm run test -- brave_browser_tests, npm run test -- brave_unit_tests wiki
  • npm run lint, npm run presubmit wiki, npm run gn_check, npm run tslint
• Ran git rebase master (if needed)

Reviewer Checklist:

• A security review is not needed, or a link to one is included in the PR description
• New files have MPL-2.0 license header
• Adequate test coverage exists to prevent regressions
• Major classes, functions and non-trivial code blocks are well-commented
• Changes in component dependencies are properly reflected in gn
• Code follows the style guide
• Test plan is specified in PR before merging

After-merge Checklist:

• The associated issue milestone is set to the smallest version that the
  changes has landed on
• All relevant documentation has been updated, for instance:
  • https://github.com/brave/brave-browser/wiki/Deviations-from-Chromium-(features-we-disable-or-remove)
  • https://github.com/brave/brave-browser/wiki/Proxy-redirected-URLs
  • https://github.com/brave/brave-browser/wiki/Fingerprinting-Protections
  • https://github.com/brave/brave-browser/wiki/Brave%E2%80%99s-Use-of-Referral-Codes
  • https://github.com/brave/brave-browser/wiki/Custom-Headers
  • https://github.com/brave/brave-browser/wiki/Web-Compatibility-Exceptions-in-Brave
  • https://github.com/brave/brave-browser/wiki/QA-Guide
  • https://github.com/brave/brave-browser/wiki/P3A

Test Plan:

[brave-builds]

A Storybook has been deployed to preview UI for the latest push

[brave-builds]

A Storybook has been deployed to preview UI for the latest push

[brave-builds]

A Storybook has been deployed to preview UI for the latest push

[supermassive]

nit: empty line

[cypt4]

Done

[supermassive]

nit: needs formatting

[supermassive]

These two do not need to be public

[cypt4]

They are used in tests

[supermassive]

static_cast<size_t>(kLeftSize)

[cypt4]

Done

[supermassive]

These should return std:array<uint8_t, 16>

[cypt4]

Done

[supermassive]

We need to test Apply + Revert resulting in original input. Also covering corner cases for input sizes.
Something like

std::vector<uint8_t> input(1000, 'a');
auto input_span = make_span(input);
for (int i = 0; i < input_span.size(); ++i) {
  auto d = input_span.subspan(0, i);
  EXPECT_EQ(d, RevertF4Jumble(ApplyF4Jumble(d)));
}

[cypt4]

Done

[supermassive]

Personalizer should be a fixed size span, and this check should become a CHECK or a static assert

[cypt4]

Done

[supermassive]

blake2b_* calls fail only on invalid inputs. We should just CHECK the result and blake2b function should not return an optional

[cypt4]

Done

[supermassive]

blake2b should never fail and always return hash size equal to left.size(). So this method never fails an no optional needed.
Same for g_round

[cypt4]

Done

[supermassive]

The spec does not mention End = 0x04. What is it?

[cypt4]

Just to check whether code is known (less than End)

[supermassive]

false is_testnet ?

[cypt4]

Done

[supermassive]

Needs a comment and a constant for what is 16

[cypt4]

Done

[brave-builds]

A Storybook has been deployed to preview UI for the latest push

[supermassive]

appended

[supermassive]

kPaddedHrpSize

[supermassive]

transparent_part

[supermassive]

this should handle testnet also

[brave-builds]

A Storybook has been deployed to preview UI for the latest push

[mkarolin]

strings++

[brave-builds]

A Storybook has been deployed to preview UI for the latest push

[goodov]

f4_jumble.cc, chromium_src/patches lgtm.

[brave-builds]

A Storybook has been deployed to preview UI for the latest push

[bridiver]

util.js changes ok

[github-actions]

[puLL-Merge] - brave/brave-core@21460

Description

The pull request appears to be integrating Bitcoin Core support into Brave by adding patching capabilities and updating utility functions for ZCash addresses. It includes the proper patching for the new bitcoin-core directory, modification to the patching scripts, replacing absl::nullopt with std::nullopt, adding internationalization/localization improvements, and adding new functionalities related with F4 jumbling for unified addresses in ZCash.

Changes

Changes

Patch Updates

• build/commands/lib/util.js

  • Added support for the patching of Bitcoin Core dependencies.

• build/commands/scripts/updatePatches.js

  • Updated the script to handle patching of Bitcoin Core related sources.

• components/brave_wallet/browser/keyring_service.cc

  • Replaced absl::nullopt with std::nullopt.

ZCash Address Handling

• components/brave_wallet/browser/zcash/zcash_rpc.cc

  • Improved error handling by replacing generic error strings with localized string identifiers.

• components/brave_wallet/browser/zcash/zcash_wallet_service.cc

  • Made similar improvements for error messages and implemented unified address extraction logic for ZCash.

• components/brave_wallet/browser/zcash/zcash_wallet_service_tasks.cc

  • Updated error message handling in transaction tasks.

New Features (F4 Jumble)

• components/brave_wallet/common/BUILD.gn

  • Added new sources for the F4 jumble implementation.

• components/brave_wallet/common/DEPS

  • Included new third-party dependencies used in the F4 jumble implementation.

• components/brave_wallet/common/f4_jumble.cc

  • New implementation file providing logic for F4 jumbling (a form of encryption/obfuscation).

• components/brave_wallet/common/f4_jumble.h

  • Header file for F4 jumble utilities.

• components/brave_wallet/common/f4_jumble_unittest.cc

  • Unit tests covering the F4 jumble functionalities.

• components/brave_wallet/common/zcash_utils.cc

  • Additional utility functions to handle parsing and interaction with unified ZCash addresses.

• components/brave_wallet/common/zcash_utils.h

  • Headers for the new ZCash utility functions.

• components/brave_wallet/common/zcash_utils_unittest.cc

  • Unit tests for the ZCash utility functions.

• components/brave_wallet_ui/utils/address-utils.ts

  • Updates to utility functions to accommodate unified ZCash addresses.

Localization

• components/resources/wallet_strings.grdp
  • Added a new string definition for unified address error messaging.

Dependency Patching

• a/patches/brave/third_party/bitcoin-core/src/src-bech32.cpp.patch
  • New patch file needed for Bitcoin Core dependency.

Build Script

• script/brave_license_helper.py
  • Adjustment to the licensing helper script to cover the new patch directory structure.

Security Hotspots

• components/brave_wallet/common/f4_jumble.cc

  • Introduction of new cryptographic utility, which should be reviewed for potential vulnerabilities in its implementation, such as information leakage or improper usage.

• components/brave_wallet/browser/zcash/zcash_wallet_service_tasks.cc / components/brave_wallet/browser/zcash/zcash_wallet_service.cc / components/brave_wallet/common/zcash_utils.cc

  • For all the files related to ZCash address handling, there is a risk of mishandling the addresses, leading to potentially leaking user information or sending funds to incorrect addresses due to parsing and handling errors.

• Dependency Patching (a/patches/brave/third_party/bitcoin-core/src/src-bech32.cpp.patch)

  • Any new patch introduces a risk of vulnerability if not properly reviewed. This specific patch should be checked for changes aligning with best practices for cryptographic algorithm modifications or potential introduction of weaknesses.

[brave-builds]

A Storybook has been deployed to preview UI for the latest push