metadata: encryption version migration

[mroz22]

Based on #8646 which is a PR that introduces changes to metadata data model in reducers. That PR is basically ready to be merged but as it does not bring any new features I am hesitant to do it. Also I dont want to bloat it with more changes so I decided to build on it instead. I am also stealing some ideas from #8567

Commits

• 1st commit - is basically fixup for chore(metadata): new data structure in suite #8646 I realized that device.metadata.key should also be versioned as it determines account.metadata.aesKey and account.metadata.fileName. This fixup is incomplete, there are also some changes in the second commit that should go here.
• 2nd commit -implements metadata migration and resolves Don't ask Trezor for enable labelling every session #6304
• 3rd commit does not exist yet. I would definitely add at least e2e test from here feat(suite): labeling improvements #8567 and whatevere else might be useful

Todos:

• unit tests
• e2e tests
• couple of todos and areas for improvements

How does it work

1. user tries to add a label, initation process kicks in as usual
2. once data provider is connected and metadata keys (for the latest encryption version) are derived we fetch list of all files from data provider
3. if all labelable entities (currently discovered) have associated file in what we fetchted in 2 no further action is needed
4. else we separate labelable entities that don't have their counterpart in dataprovider and derive legacy keys for them
5. then we fetch legacy files from data provider
6. we decrypt legacy files using legacy keys, load them into application memory and encrypt them using new keys and upload them to data provider.
7. if there was no legacy file match in 5, we create dummy files and upload them as well. this ensures that next time metadata is initiated, we are likely to be able to stop at point 3 (unless user created a new account in the meantime somewhere else)

Testing tips

1. create an empty account on dropbox
2. go to https://suite.trezor.io/web
3. create some labels
4. open build of this branch
5. enable labeling
6. labels should be there
7. forget device, enable labeling again. you should not be prompted on device. labels should still be there

Drawbacks

• we can not migrate all labels at once because we simply can't be sure we know them. Labels are bound to 'labelable entities' which are now accounts and wallets. So whenever user adds a labelable entity, we must run "metadata discovery" including migration if needed. So it is very well possible that user might migrate his data on day, they might be using suite without "enable labeling prompt" for years, and then, after adding some long unused passphrase or account, user will need to confirm labeling on device again.
• possibility of mismatch between versions of suite. after this is release user opens updated version of suite, migrates data, then opens outdated version of suite and works with labeling. Under current implementation labels added in the outdated version will be lost.

[mroz22]

why this? sometimes not fetch?

[dahaca]

this is for TS. but basically, what would you fetch if you don't have metadata enabled? 🤔

[mroz22]

this makes me think "what does entityData mean?"
what about just?

if (!entity[encryptionVersion]) return

[dahaca]

but then there is const { fileName, aesKey } = entityData; on the next line anyways

[mroz22]

just a nitpick to think about. I think we are already defining this on a couple of places, maybe it could go to some single point of definition

[dahaca]

3d81d0d

[mroz22]

nitpick according to m personal taste

!filesToMigrate?.length

[dahaca]

3d81d0d