Sync v2

[darkdh]

Resolves brave/brave-browser#9989
Resolves brave/brave-browser#9241

This PR

1. Removes all sync v1 codes
2. Sync V2 UI
   2.1. Setup flow concept inherited from v1 will be in brave:///settings/braveSync as subpage
   2.2. Brings back about:sync-internals
   2.3. brave://sync will be redirect to brave:///settings/braveSync
   2.4. Client encryption is enforced in UI using bip39 seed.
3. Sync V2 Engine
   3.1. Seed is encrypted using OSCrypt when stored in prefs
   3.2. ProfileSyncService monitor seed changes to decide reset sync chain or tell SyncAuthManger to derive signing key
   3.3. BraveSyncAuthManager will have a dummy SyncAccountInfo and create access tokenbase64(timestamp_hex|signed_timestamp_hex|public_key_hex), timestamp is from network time, if network time is not available, local time will be used. Each server response will update the network time by header Sane-Time-Millis
4. Migration
   4.1. Strip off bookmark meta info used by v1 in BookmarkModel
   4.2 Stop engine to have a clean engine state in ProfileSyncService
5. Tests
   5.1. upstream sync_auth_manager_unittest.cc
   5.2 brave_sync_auth_manager_unittest.cc
6. Sync v2 will only be available on Nightly channel and development build

Submitter Checklist:

• Submitted a ticket for my issue if one did not already exist.
• Used Github auto-closing keywords in the commit message.
• Added/updated tests for this change (for new code or code which already has tests).
• Verified that these changes build without errors on
  • Android
  • iOS
  • Linux
  • macOS
  • Windows
• Verified that these changes pass automated tests (unit, browser, security tests) on
  • iOS
  • Linux
  • macOS
  • Windows
• Verified that all lint errors/warnings are resolved (npm run lint)
• Ran git rebase master (if needed).
• Ran git rebase -i to squash commits (if needed).
• Tagged reviewers and labelled the pull request as needed.
• Request a security/privacy review as needed.
• Add appropriate QA labels (QA/Yes or QA/No) to include the closed issue in milestone
• Public documentation has been updated as necessary. For instance:
  • https://github.com/brave/brave-browser/wiki/Deviations-from-Chromium-(features-we-disable-or-remove)
  • https://github.com/brave/brave-browser/wiki/Proxy-redirected-URLs
  • https://github.com/brave/brave-browser/wiki/Fingerprinting-Protections
  • https://github.com/brave/brave-browser/wiki/Brave%E2%80%99s-Use-of-Referral-Codes
  • https://github.com/brave/brave-browser/wiki/Custom-Headers
  • https://github.com/brave/brave-browser/wiki/Web-compatibility-issues-with-tracking-protection
  • https://github.com/brave/brave-browser/wiki/QA-Guide

Test Plan:

Note that Sync v1 and v2 are incompatible so DONOT try to connect v1 and v2 devices, it won't work

Upgrade from v1

Migration

1. Have v1 enabled profile and sync some bookmarks
2. Upgrade to v2, we should be able to create sync chain
3. Check profile/Default/Bookmarks and each bookmark will no longer have sync v1 meta info
4. All the bookmarks are still there

Feature flag

1. Disable brave://flags/#brave-sync in v1
2. Upgrade to v2 and go to brave:///settings/braveSync
3. We should see sync entry
4. Go to brave://flags and there will only be brave://flags/#brave-sync-v2 and brave://flags/#brave-sync is gone

Infobar

#5804 (comment)

v2 test

Single device

1. Enable sync v2 using fresh profile (brave:///settings/braveSync)
2. Open about:sync-internals
   2.1. Make sure Passphrase Type is PassphraseType::kCustomPassphrase
   2.2. Encrypted Types include every types we support
   2.3. Has Token is true
3. Check profile/Default/Preferences
   3.1. seed in brave_sync_v2 should not be your sync code (it is encrypted)
   3.2. v1_meta_info_cleared is true
   3.3. v1_migrated is true
4. Type brave://sync/ in URL bar should take you to brave:///settings/braveSync
5. Leave sync chain
6. Open about:sync-internals, sync engine should stop

Multiple devices

1. Create sync chain on A and make device B joined
2. Check sync engines are running in both about:sync-internals
3. Add a bookmark on A and toggle Always show bookmarks (Type Bookmarks & Preferences)
4. device B should see the same thing in about 1 minute

Offline sync chain creation

1. Turn off network
2. Create sync chain
3. Open about:sync-internals
4. Turn network back on
5. It should be able to connect to server in few retry

Client clock out of date

1. Turn client clock to be at least 24 hours ahead of behind
2. Create sync chain
3. Open about:sync-internals
4. It should be able to connect to server in few retry

Feature flag

1. Enable sync v2
2. Open about:sync-internals and make sure sync engine is running
3. Go to brave://flags/#brave-sync-v2 and disable it
4. After relaunch about:sync-internals should show Transport State is Sync service does not exist
5. There should be no sync entry in brave:///settings/
6. Go to brave://flags/#brave-sync-v2 and enable it
7. After relaunch about:sync-internals will show sync engine is running

UI test

• Test bad sync code
• Test empty sync code
• Test enable/disable different data types
  • Note that change will be saved only when you leave sync page
• Close sync page when in the middle of sync setup

Reviewer Checklist:

• New files have MPL-2.0 license header.
• Request a security/privacy review as needed.
• Adequate test coverage exists to prevent regressions
• Verify test plan is specified in PR before merging to source

After-merge Checklist:

• The associated issue milestone is set to the smallest version that the
  changes has landed on.
• All relevant documentation has been updated.

[bridiver]

GetSettingsUrl looks like something we could easily override

[darkdh]

fixed in b2fdf8c

[bridiver]

see https://github.com/brave/brave-browser/wiki/Patching-Chromium#making-methods-virtual for adding a method without patching

[darkdh]

fixed b2fdf8c

[bridiver]

I believe the technique in https://github.com/brave/brave-browser/wiki/Patching-Chromium#making-methods-virtual can also be used here

[darkdh]

fixed b2fdf8c

[bridiver]

don't add extra newlines in patches

[darkdh]

fixed in b2fdf8c

[bridiver]

won't this leak the passphrase into the console (and potentially the log)?

[darkdh]

cc @petemill

[darkdh]

fixed in 247a37c

[bridiver]

I don't think we should be outputting this kind of data on the console (and potentially logging to disk)

[darkdh]

fixed in 247a37c

[bridiver]

this is only logging invalid codes, but a user might just be using the wrong sync chain or something so we probably should log this

[diracdeltas]

yea i think this could be sensitive info and shouldn't be logged

[darkdh]

fixed in 247a37c

[bridiver]

same as above

[darkdh]

fixed in 247a37c

[bridiver]

this seems like it should be a vlog

[darkdh]

fixed in b2fdf8c

[bridiver]

seems like all of these should be VLOG

[petemill]

This one I think should stay as error since our code doesn't supply the wrong number of parameters so if it errors it will be a one off dev error when making a change

[darkdh]

@petemill there are some html checks failed in sonar cloud
https://github.com/brave/brave-core/pull/5294/checks?check_run_id=755297176

[diracdeltas]

affect not effect

[darkdh]

fixed in 4f4fa65

[diracdeltas]

i think synced instead of sync'd looks more correct?

[darkdh]

fixed in 4f4fa65

[petemill]

FYI @bradleyrichter sync'd -> synced

[diracdeltas]

did you mean to keep this VLOG? (access token is sensitive info)

[darkdh]

fixed in 5e3cc37

[bridiver]

we should check to make sure the sync url is empty before setting it, otherwise you can't override

[darkdh]

void BraveCommandLineHelper::AppendSwitch(const char* switch_key) {
  if (!command_line_.HasSwitch(switch_key))
    command_line_.AppendSwitch(switch_key);
}

our BraveCommandLineHelper already checks it

[darkdh]

@petemill mentioned we can ignore the only error from SonarCloud
https://sonarcloud.io/organizations/brave/rules?languages=css&open=css%3AS4670
which will be disabled soon because it doesn't play nicely with Web Components