Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Seed recovery process to survive kettle restarts #38

Open
wants to merge 4 commits into
base: main
Choose a base branch
from
Open

Seed recovery process to survive kettle restarts #38

wants to merge 4 commits into from

Conversation

MoeMahhouk
Copy link
Contributor

@MoeMahhouk MoeMahhouk commented Mar 15, 2024
edited
Loading

In this PR we tackle the issue of losing the seed that generates the private key upon a kettle restart.
Here we rely on the bootstraping and onboarding steps to keep the exchanged ciphertext of the seed onchain.
This way, upon deriving the private key, if kettle has restarted, it will be detected that the seed is not there and initiates the recovery process.
A follow up task would be to discover ways to tackle sealing key revocation and renewals.

Note: this PR relies on the refactoring of volatileGet precompile in this PR

This PR adds the following:
1- seed recovery proccess
2- fix a minor bug in the offchain registry function (the address checking was wrongly placed)
3- Add unit tests to check the validity of the seed recovery process
4- Modify the kettle-bootstrap.ts script to do the registration and onboarding to enable seed recovery functionality
5- Refactors the Andromeda interface to use the volatileGet updated version from this PR

@MoeMahhouk
Copy link
Contributor Author

There is still a bug upon restarting the kettle during the Timelock demo.
For some reason the KeyManager won't function anymore and it requires to redeploy the key manager smart contract again for it to work.
Further debugging is currently in process. (This PR won't be merged until this is fixed)

@amiller
Copy link
Collaborator

amiller commented Jun 5, 2024

at first review, this seems redundant because the onboarding process already uses sealing to store the seed. So there isn't need for more flow, we just need to finish automation for the onboarding flow.

@MoeMahhouk
Copy link
Contributor Author

MoeMahhouk commented Jun 7, 2024
edited
Loading

at first review, this seems redundant because the onboarding process already uses sealing to store the seed. So there isn't need for more flow, we just need to finish automation for the onboarding flow.

I don't get what you mean this seems redundant?
This is for the scenario that a kettle restarts and loses its volatile seed that is used for the key derivation.
This way, it will be able to recover it automatically without the need for new onboarding.
It will also not fail for any incoming requests or during execution (timelock demo)

@amiller
Copy link
Collaborator

amiller commented Jul 29, 2024

I'm still opposed to this merge fwiw for the reason of redundancy stated above

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Ruteri Ruteri Ruteri approved these changes

@amiller amiller Awaiting requested review from amiller

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@MoeMahhouk @amiller @Ruteri