feat(common): add PRSSInit and KeyReshareSameSet flows (#1170)

* feat(gateway-contracts): implement exceptional keygen corrective flow

* feat(gateway-contracts): implement exceptional keygen corrective flow

* test(gateway-contracts): add test for exceptional keygen corrective flow

* chore(gateway-contracts): update bindings and selectors

* ci(gateway-contracts): enable upgrade CI test for KMSGeneration contract

* test(gateway-contracts): fix mock contracts tests

* ci(gateway-contracts): fix upgrade CI test for KMSGeneration contract

* refactor(gateway-contracts): remove epoch ID logic from keygen and rename reshare method

* refactor(gateway-contracts): properly mock the epoch ID

* refactor(gateway-contracts): replace epoch mention by keyReshare

* feat(kms-connector): prss_init and retry keygen reshare support (#1151)

* feat(kms-connector): support prss init flow

* feat(kms-connector): support retry keygen reshare flow

* chore(gateway-contracts): implement hardhat tasks for key resharing methods

* feat(gateway-contracts): implement exceptional keygen corrective flow

* feat(gateway-contracts): implement exceptional keygen corrective flow

* test(gateway-contracts): add test for exceptional keygen corrective flow

* chore(gateway-contracts): update bindings and selectors

* ci(gateway-contracts): enable upgrade CI test for KMSGeneration contract

* test(gateway-contracts): fix mock contracts tests

* ci(gateway-contracts): fix upgrade CI test for KMSGeneration contract

* refactor(gateway-contracts): remove epoch ID logic from keygen and rename reshare method

* refactor(gateway-contracts): properly mock the epoch ID

* refactor(gateway-contracts): replace epoch mention by keyReshare

* chore(gateway-contracts): implement hardhat tasks for key resharing methods

* test(gateway-contracts): add key resharing tasks unit tests

* chore(kms-connector): improve error handling

* chore(test-suite): update connector and gateway

* fix(kms-connector): fix prss init encoding

---------

Co-authored-by: eudelins-zama <simon.eudeline@zama.ai>

Author: isaacdecoded

gateway-contracts/contracts/KMSGeneration.sol

@@ -10,7 +10,12 @@ import { Strings } from "@openzeppelin/contracts/utils/Strings.sol";
 import { UUPSUpgradeableEmptyProxy } from "./shared/UUPSUpgradeableEmptyProxy.sol";
 import { GatewayConfigChecks } from "./shared/GatewayConfigChecks.sol";
 import { GatewayOwnable } from "./shared/GatewayOwnable.sol";
-import { PREP_KEYGEN_COUNTER_BASE, KEY_COUNTER_BASE, CRS_COUNTER_BASE } from "./shared/KMSRequestCounters.sol";
+import {
+    PREP_KEYGEN_COUNTER_BASE,
+    KEY_COUNTER_BASE,
+    CRS_COUNTER_BASE,
+    KEY_RESHARE_COUNTER_BASE
+} from "./shared/KMSRequestCounters.sol";
 
 /**
  * @title KMSGeneration contract
@@ -163,6 +168,8 @@ contract KMSGeneration is
         // ----------------------------------------------------------------------------------------------
         /// @notice The parameters type used for the request
         mapping(uint256 requestId => ParamsType paramsType) requestParamsType;
+        /// @notice The number of key resharing, used to generate the keyReshareIds.
+        uint256 keyReshareCounter;
     }
 
     /**
@@ -192,14 +199,19 @@ contract KMSGeneration is
         $.prepKeygenCounter = PREP_KEYGEN_COUNTER_BASE;
         $.keyCounter = KEY_COUNTER_BASE;
         $.crsCounter = CRS_COUNTER_BASE;
+        $.keyReshareCounter = KEY_RESHARE_COUNTER_BASE;
     }
 
     /**
      * @notice Re-initializes the contract from V1.
      */
     /// @custom:oz-upgrades-unsafe-allow missing-initializer-call
     /// @custom:oz-upgrades-validate-as-initializer
-    function reinitializeV2() public virtual reinitializer(REINITIALIZER_VERSION) {}
+    function reinitializeV2() public virtual reinitializer(REINITIALIZER_VERSION) {
+        KMSGenerationStorage storage $ = _getKMSGenerationStorage();
+
+        $.keyReshareCounter = KEY_RESHARE_COUNTER_BASE;
+    }
 
     /**
      * @notice See {IKMSGeneration-keygen}.
@@ -417,6 +429,39 @@ contract KMSGeneration is
         }
     }
 
+    /**
+     * @notice See {IKMSGeneration-prssInit}.
+     */
+    function prssInit() external virtual onlyGatewayOwner {
+        emit PRSSInit();
+    }
+
+    /**
+     * @notice See {IKMSGeneration-keyReshareSameSet}.
+     * @dev ⚠️ This function should only be called under exceptional circumstances.
+     * It is intended for corrective flows when a previous resharing attempt failed.
+     * Use with caution since incorrect usage may cause inconsistent key generation states.
+     */
+    function keyReshareSameSet(uint256 keyId) external virtual onlyGatewayOwner {
+        KMSGenerationStorage storage $ = _getKMSGenerationStorage();
+
+        if (!$.isRequestDone[keyId]) {
+            revert KeyNotGenerated(keyId);
+        }
+
+        // Get the prepKeygenId associated to the keyId and its params type.
+        uint256 prepKeygenId = $.keygenIdPairs[keyId];
+        ParamsType paramsType = $.requestParamsType[prepKeygenId];
+
+        // Generate a globally unique keyReshareId for the key resharing.
+        // The counter is initialized at deployment such that keyReshareId's first byte uniquely
+        // represents a key reshare request, with format: [0000 0110 | counter_1..31]
+        $.keyReshareCounter++;
+        uint256 keyReshareId = $.keyReshareCounter;
+
+        emit KeyReshareSameSet(prepKeygenId, keyId, keyReshareId, paramsType);
+    }
+
     /**
      * @notice See {IKMSGeneration-getKeyParamsType}.
      */

gateway-contracts/contracts/interfaces/IKMSGeneration.sol

@@ -73,6 +73,22 @@ interface IKMSGeneration {
      */
     event ActivateCrs(uint256 crsId, string[] kmsNodeStorageUrls, bytes crsDigest);
 
+    /**
+     * @notice Emitted to trigger the initialization of the PRSS (Pseudo-Random Secret Sharing).
+     * @dev This is a temporary event to initialize PRSS until implementation of a proper key resharing.
+     */
+    event PRSSInit();
+
+    /**
+     * @notice Emitted to trigger the reshare of the specified key ID.
+     * @dev This is a temporary event to reshare the specified key ID until implementation of a proper key resharing.
+     * @param prepKeygenId The ID of the preprocessing keygen request.
+     * @param keyId The ID of the key to reshare.
+     * @param keyReshareId The ID of the key reshare request.
+     * @param paramsType The type of FHE parameters to use.
+     */
+    event KeyReshareSameSet(uint256 prepKeygenId, uint256 keyId, uint256 keyReshareId, ParamsType paramsType);
+
     /**
      * @notice Error thrown when a KMS node has already signed for a preprocessing keygen response.
      * @param prepKeygenId The ID of the preprocessing keygen request.
@@ -142,6 +158,19 @@ interface IKMSGeneration {
      */
     function crsgenResponse(uint256 crsId, bytes calldata crsDigest, bytes calldata signature) external;
 
+    /**
+     * @notice Trigger the initialization of the PRSS (Pseudo-Random Secret Sharing).
+     * @dev This is a temporary method to initialize PRSS until implementation of a proper key resharing.
+     */
+    function prssInit() external;
+
+    /**
+     * @notice Trigger the reshare of the given key ID.
+     * @dev This is a temporary method to reshare the specified key ID until implementation of a proper key resharing.
+     * @param keyId The ID of the key to reshare.
+     */
+    function keyReshareSameSet(uint256 keyId) external;
+
     /**
      * @notice Get the parameters type used for the key generation.
      * @param keyId The ID of the key.

gateway-contracts/contracts/mocks/KMSGenerationMock.sol

@@ -27,9 +27,14 @@ contract KMSGenerationMock {
 
     event ActivateCrs(uint256 crsId, string[] kmsNodeStorageUrls, bytes crsDigest);
 
+    event PRSSInit();
+
+    event KeyReshareSameSet(uint256 prepKeygenId, uint256 keyId, uint256 keyReshareId, ParamsType paramsType);
+
     uint256 prepKeygenCounter = 3 << 248;
     uint256 keyCounter = 4 << 248;
     uint256 crsCounter = 5 << 248;
+    uint256 keyReshareCounter = 6 << 248;
 
     function keygen(ParamsType paramsType) external {
         prepKeygenCounter++;
@@ -64,4 +69,18 @@ contract KMSGenerationMock {
 
         emit ActivateCrs(crsId, kmsNodeStorageUrls, crsDigest);
     }
+
+    function prssInit() external {
+        emit PRSSInit();
+    }
+
+    function keyReshareSameSet(uint256 keyId) external {
+        prepKeygenCounter++;
+        uint256 prepKeygenId = prepKeygenCounter;
+        keyReshareCounter++;
+        uint256 keyReshareId = keyReshareCounter;
+        ParamsType paramsType;
+
+        emit KeyReshareSameSet(prepKeygenId, keyId, keyReshareId, paramsType);
+    }
 }

gateway-contracts/contracts/shared/KMSRequestCounters.sol

@@ -12,7 +12,8 @@ enum RequestType {
     UserDecrypt, // 2
     PrepKeygen, // 3
     Keygen, // 4
-    Crsgen // 5
+    Crsgen, // 5
+    KeyReshare // 6
 }
 
 // Bit position to left shift for initializing the counters
@@ -35,3 +36,6 @@ uint256 constant KEY_COUNTER_BASE = uint256(RequestType.Keygen) << REQUEST_TYPE_
 
 // CRS generation requestId format in bytes: [0000 0101 | counter_1..31]
 uint256 constant CRS_COUNTER_BASE = uint256(RequestType.Crsgen) << REQUEST_TYPE_SHIFT;
+
+// Key resharing requestId format in bytes: [0000 0110 | counter_1..31]
+uint256 constant KEY_RESHARE_COUNTER_BASE = uint256(RequestType.KeyReshare) << REQUEST_TYPE_SHIFT;

gateway-contracts/hardhat.config.ts

@@ -19,6 +19,7 @@ import "./tasks/generateKmsMaterials";
 import "./tasks/getters";
 import "./tasks/ownership";
 import "./tasks/pauseContracts";
+import "./tasks/reshareKeys";
 import "./tasks/safeSmartAccounts";
 import "./tasks/upgradeContracts";