Update CCryptoKeyStore with Sapling support

[arcalinea]

Sapling crypter overrides for various CCryptoKeyStore functions such as:

• HaveSaplingSpendingKey()
• GetSaplingSpendingKey()

Also includes some changes to prepare for diversified addresses and ZIP 32.

Closes #3389

[str4d]

Also add Sapling support to CCryptoKeyStore::EncryptKeys

[str4d]

We should use the fingerprint defined in ZIP 32, for consistency: BLAKE2b-256("ZcashSaplingFVFP", fvk)

CBLAKE2bWriter ss(SER_GETHASH, 0, ZCASH_SAPLING_FVFP_PERSONALIZATION);
ss << *this;
return ss.GetHash();

[str4d]

This is technically incorrect, because it's the Sprout spending key size. But in practice both Sprout and Sapling spending keys serialize to the same size. If another reviewer wants it changed, I'll support that.

[arcalinea]

Will add const size_t SerializedSaplingSpendingKeySize = 32; and use that, for clarity

[str4d]

This can be removed now.

[zkbot]

☔ The latest upstream changes (presumably #3390) made this pull request unmergeable. Please resolve the merge conflicts.

[arcalinea]

Addressed comments - review needed on Sapling key encryption in CCryptoKeyStore::EncryptKeys

[ebfull]

I'm confused about what this calls, is this not recursing? unconfused

[daira]

No, it's a superclass call.

[str4d]

Update this comment to match the implementation and ZIP 32.

[str4d]

Rename this to GetFingerprint() to match ZIP 32.

[str4d]

I'm taking over this PR, as @arcalinea is away this week.

[str4d]

Rebased on master, addressed my comments, and added a few missing parts.

@zkbot try

[zkbot]

⌛ Trying commit 37de067 with merge 068314e...

[zkbot]

💔 Test failed - pr-try

I've taken over the PR, so I can't review it.

[daira]

Renaming changes requested. (Some of my comments are on individual commits.)

[daira]

nit: if (

[daira]

Is this actually dependent on the network protocol version? That doesn't sound right to me.

[str4d]

It matches what we do in e.g. src/key_io.h. The distinction from upstream, as I understand it, is that anything that might get communicated spatially between nodes is technically part of the protocol, whereas anything that is only communicated temporally between a single node's past and future selves is SER_DISK, CLIENT_VERSION.

[daira]

I think this is questionable because, if we were to substantially change the network protocol, that would have to be versioned and upgraded quite differently from changing the external key formats. In any case, it's ok for this PR.

[daira]

No, it's a superclass call.

[daira]

These should be renamed to SerializedSprout....

[daira]

mapSpendingKeys should be renamed to mapSproutSpendingKeys.

[str4d]

I was hoping to avoid that large rename for now, but I'll go rip off the plaster 😂

[str4d]

Oh, turns out it's not a large rename after all!

[daira]

These methods should be renamed to include Sprout.

[str4d]

Addressed @daira's comments.

[ebfull]

re-ACK

addressed

[daira]

And rename these too (sorry I didn't catch them before):

     //! Add a spending key to the store.
     virtual bool AddSpendingKey(const libzcash::SproutSpendingKey &sk) =0;
 
     //! Check whether a spending key corresponding to a given payment address is present in the store.
     virtual bool HaveSpendingKey(const libzcash::SproutPaymentAddress &address) const =0;
     virtual bool GetSpendingKey(const libzcash::SproutPaymentAddress &address, libzcash::SproutSpendingKey& skOut) const =0;
     virtual void GetPaymentAddresses(std::set<libzcash::SproutPaymentAddress> &setAddress) const =0;

[str4d]

@daira Done (that was the big one).

[daira]

ut(ACK+cov).

[ebfull]

re-ACK

[str4d]

@zkbot r+

[zkbot]

📌 Commit 25d5e80 has been approved by str4d

[zkbot]

⌛ Testing commit 25d5e80 with merge aa32786...

[zkbot]

☀️ Test successful - pr-merge
Approved by: str4d
Pushing aa32786 to master...