mirror of
https://github.com/zama-ai/fhevm-solidity.git
synced 2026-05-09 03:00:27 -04:00
367290f93d
* feat: use latest core contracts, updated lib API, renamed to fhevm and fhe chore: add dummy addresses for CI test: add tests for makePubliclyDecryptable method * chore: update package-lock.json for linux * chore: update package-lock.json * fix: solidity comments (#746) * chore: update oracle version * chore: update fhevm core-contracts version * feat: update fhevm sdk and mocked userDecrypt * chore: fix coverage
385 lines
16 KiB
TypeScript
385 lines
16 KiB
TypeScript
import { HardhatUpgrades } from '@openzeppelin/hardhat-upgrades';
|
|
import dotenv from 'dotenv';
|
|
import { Wallet } from 'ethers';
|
|
import * as fs from 'fs-extra';
|
|
import { task, types } from 'hardhat/config';
|
|
import type { HardhatEthersHelpers, TaskArguments } from 'hardhat/types';
|
|
import path from 'path';
|
|
|
|
import { getRequiredEnvVar } from './utils/loadVariables';
|
|
|
|
task('task:deployAllHostContracts').setAction(async function (_, hre) {
|
|
if (process.env.SOLIDITY_COVERAGE !== 'true') {
|
|
await hre.run('clean');
|
|
}
|
|
await hre.run('compile:specific', { contract: 'examples/' });
|
|
await hre.run('compile:specific', { contract: 'fhevmTemp/contracts/emptyProxy' });
|
|
await hre.run('task:deployEmptyUUPSProxies');
|
|
// It needs to recompile to account for the change in addresses.
|
|
await hre.run('compile:specific', { contract: 'fhevmTemp/contracts/' });
|
|
await hre.run('task:deployACL');
|
|
await hre.run('task:deployFHEVMExecutor');
|
|
await hre.run('task:deployKMSVerifier');
|
|
await hre.run('task:deployInputVerifier');
|
|
await hre.run('task:deployFHEGasLimit');
|
|
await hre.run('task:deployDecryptionOracle');
|
|
console.info('Contract deployment done!');
|
|
});
|
|
async function deployEmptyUUPS(ethers: HardhatEthersHelpers, upgrades: HardhatUpgrades, deployer: Wallet) {
|
|
console.info('Deploying an EmptyUUPS proxy contract...');
|
|
const factory = await ethers.getContractFactory('EmptyUUPSProxy', deployer);
|
|
const UUPSEmpty = await upgrades.deployProxy(factory, [deployer.address], {
|
|
initializer: 'initialize',
|
|
kind: 'uups',
|
|
});
|
|
await UUPSEmpty.waitForDeployment();
|
|
const UUPSEmptyAddress = await UUPSEmpty.getAddress();
|
|
console.info('EmptyUUPS proxy contract successfully deployed!');
|
|
return UUPSEmptyAddress;
|
|
}
|
|
|
|
task('task:deployEmptyUUPSProxies').setAction(async function (
|
|
_taskArguments: TaskArguments,
|
|
{ ethers, upgrades, run },
|
|
) {
|
|
const privateKey = getRequiredEnvVar('DEPLOYER_PRIVATE_KEY');
|
|
const deployer = new ethers.Wallet(privateKey).connect(ethers.provider);
|
|
const aclAddress = await deployEmptyUUPS(ethers, upgrades, deployer);
|
|
await run('task:setACLAddress', {
|
|
address: aclAddress,
|
|
});
|
|
|
|
const fhevmExecutorAddress = await deployEmptyUUPS(ethers, upgrades, deployer);
|
|
await run('task:setFHEVMExecutorAddress', {
|
|
address: fhevmExecutorAddress,
|
|
});
|
|
|
|
const kmsVerifierAddress = await deployEmptyUUPS(ethers, upgrades, deployer);
|
|
await run('task:setKMSVerifierAddress', {
|
|
address: kmsVerifierAddress,
|
|
});
|
|
|
|
const inputVerifierAddress = await deployEmptyUUPS(ethers, upgrades, deployer);
|
|
await run('task:setInputVerifierAddress', {
|
|
address: inputVerifierAddress,
|
|
});
|
|
|
|
const fheGasLimitAddress = await deployEmptyUUPS(ethers, upgrades, deployer);
|
|
await run('task:setFHEGasLimitAddress', {
|
|
address: fheGasLimitAddress,
|
|
});
|
|
|
|
const decryptionOracleAddress = await deployEmptyUUPS(ethers, upgrades, deployer);
|
|
await run('task:setDecryptionOracleAddress', {
|
|
address: decryptionOracleAddress,
|
|
});
|
|
});
|
|
|
|
task('task:deployDecryptionOracle').setAction(async function (_taskArguments: TaskArguments, { ethers, upgrades }) {
|
|
const privateKey = getRequiredEnvVar('DEPLOYER_PRIVATE_KEY');
|
|
|
|
const deployer = new ethers.Wallet(privateKey).connect(ethers.provider);
|
|
const currentImplementation = await ethers.getContractFactory(
|
|
'fhevmTemp/contracts/emptyProxy/EmptyUUPSProxy.sol:EmptyUUPSProxy',
|
|
deployer,
|
|
);
|
|
const newImplem = await ethers.getContractFactory('DecryptionOracle', deployer);
|
|
const parsedEnv = dotenv.parse(fs.readFileSync('fhevmTemp/addresses/.env.decryptionoracle'));
|
|
const proxyAddress = parsedEnv.DECRYPTION_ORACLE_ADDRESS;
|
|
const proxy = await upgrades.forceImport(proxyAddress, currentImplementation);
|
|
await upgrades.upgradeProxy(proxy, newImplem);
|
|
console.info('DecryptionOracle code set successfully at address:', proxyAddress);
|
|
});
|
|
|
|
task('task:deployACL').setAction(async function (_taskArguments: TaskArguments, { ethers, upgrades }) {
|
|
const privateKey = getRequiredEnvVar('DEPLOYER_PRIVATE_KEY');
|
|
const deployer = new ethers.Wallet(privateKey).connect(ethers.provider);
|
|
const currentImplementation = await ethers.getContractFactory(
|
|
'fhevmTemp/contracts/emptyProxy/EmptyUUPSProxy.sol:EmptyUUPSProxy',
|
|
deployer,
|
|
);
|
|
const newImplem = await ethers.getContractFactory('ACL', deployer);
|
|
const parsedEnv = dotenv.parse(fs.readFileSync('fhevmTemp/addresses/.env.acl'));
|
|
const proxyAddress = parsedEnv.ACL_CONTRACT_ADDRESS;
|
|
const proxy = await upgrades.forceImport(proxyAddress, currentImplementation);
|
|
await upgrades.upgradeProxy(proxy, newImplem);
|
|
console.info('ACL code set successfully at address:', proxyAddress);
|
|
});
|
|
|
|
task('task:deployFHEVMExecutor').setAction(async function (_taskArguments: TaskArguments, { ethers, upgrades }) {
|
|
const privateKey = getRequiredEnvVar('DEPLOYER_PRIVATE_KEY');
|
|
const deployer = new ethers.Wallet(privateKey).connect(ethers.provider);
|
|
const currentImplementation = await ethers.getContractFactory(
|
|
'fhevmTemp/contracts/emptyProxy/EmptyUUPSProxy.sol:EmptyUUPSProxy',
|
|
deployer,
|
|
);
|
|
let newImplem;
|
|
newImplem = await ethers.getContractFactory('fhevmTemp/contracts/FHEVMExecutor.sol:FHEVMExecutor', deployer);
|
|
const parsedEnv = dotenv.parse(fs.readFileSync('fhevmTemp/addresses/.env.exec'));
|
|
const proxyAddress = parsedEnv.FHEVM_EXECUTOR_CONTRACT_ADDRESS;
|
|
const proxy = await upgrades.forceImport(proxyAddress, currentImplementation);
|
|
await upgrades.upgradeProxy(proxy, newImplem);
|
|
console.info('FHEVMExecutor code set successfully at address:', proxyAddress);
|
|
});
|
|
|
|
task('task:deployKMSVerifier').setAction(async function (taskArguments: TaskArguments, { ethers, upgrades }) {
|
|
const privateKey = getRequiredEnvVar('DEPLOYER_PRIVATE_KEY');
|
|
const deployer = new ethers.Wallet(privateKey).connect(ethers.provider);
|
|
const currentImplementation = await ethers.getContractFactory(
|
|
'fhevmTemp/contracts/emptyProxy/EmptyUUPSProxy.sol:EmptyUUPSProxy',
|
|
deployer,
|
|
);
|
|
const newImplem = await ethers.getContractFactory('fhevmTemp/contracts/KMSVerifier.sol:KMSVerifier', deployer);
|
|
const parsedEnv = dotenv.parse(fs.readFileSync('fhevmTemp/addresses/.env.kmsverifier'));
|
|
const proxyAddress = parsedEnv.KMS_VERIFIER_CONTRACT_ADDRESS;
|
|
const proxy = await upgrades.forceImport(proxyAddress, currentImplementation);
|
|
|
|
const verifyingContractSource = process.env.DECRYPTION_MANAGER_ADDRESS!;
|
|
const chainIDSource = +process.env.CHAIN_ID_GATEWAY!;
|
|
const initialThreshold = +process.env.KMS_THRESHOLD!;
|
|
let initialSigners: string[] = [];
|
|
const numSigners = getRequiredEnvVar('NUM_KMS_NODES');
|
|
|
|
for (let idx = 0; idx < +numSigners; idx++) {
|
|
const kmsSignerAddress = getRequiredEnvVar(`KMS_SIGNER_ADDRESS_${idx}`);
|
|
initialSigners.push(kmsSignerAddress);
|
|
}
|
|
await upgrades.upgradeProxy(proxy, newImplem, {
|
|
call: { fn: 'reinitialize', args: [verifyingContractSource, chainIDSource, initialSigners, initialThreshold] },
|
|
});
|
|
console.info('KMSVerifier code set successfully at address:', proxyAddress);
|
|
console.info(`${numSigners} KMS signers were added to KMSVerifier at initialization`);
|
|
});
|
|
|
|
task('task:deployInputVerifier')
|
|
.addOptionalParam(
|
|
'useAddress',
|
|
'Use addresses instead of private keys env variables for kms signers',
|
|
true,
|
|
types.boolean,
|
|
)
|
|
.setAction(async function (taskArguments: TaskArguments, { ethers, upgrades }) {
|
|
const privateKey = getRequiredEnvVar('DEPLOYER_PRIVATE_KEY');
|
|
const deployer = new ethers.Wallet(privateKey).connect(ethers.provider);
|
|
const currentImplementation = await ethers.getContractFactory(
|
|
'fhevmTemp/contracts/emptyProxy/EmptyUUPSProxy.sol:EmptyUUPSProxy',
|
|
deployer,
|
|
);
|
|
const newImplem = await ethers.getContractFactory('fhevmTemp/contracts/InputVerifier.sol:InputVerifier', deployer);
|
|
const parsedEnv = dotenv.parse(fs.readFileSync('fhevmTemp/addresses/.env.inputverifier'));
|
|
|
|
const proxyAddress = parsedEnv.INPUT_VERIFIER_CONTRACT_ADDRESS;
|
|
const proxy = await upgrades.forceImport(proxyAddress, currentImplementation);
|
|
const verifyingContractSource = process.env.ZKPOK_MANAGER_ADDRESS!;
|
|
const chainIDSource = +process.env.CHAIN_ID_GATEWAY!;
|
|
|
|
let initialSigners: string[] = [];
|
|
const numSigners = +process.env.NUM_KMS_NODES!;
|
|
for (let idx = 0; idx < numSigners; idx++) {
|
|
if (!taskArguments.useAddress) {
|
|
const privKeySigner = getRequiredEnvVar(`PRIVATE_KEY_COPROCESSOR_ACCOUNT_${idx}`);
|
|
const inputSigner = new ethers.Wallet(privKeySigner).connect(ethers.provider);
|
|
initialSigners.push(inputSigner.address);
|
|
} else {
|
|
const inputSignerAddress = getRequiredEnvVar(`COPROCESSOR_SIGNER_ADDRESS_${idx}`);
|
|
initialSigners.push(inputSignerAddress);
|
|
}
|
|
}
|
|
|
|
await upgrades.upgradeProxy(proxy, newImplem, {
|
|
call: { fn: 'reinitialize', args: [verifyingContractSource, chainIDSource, initialSigners] },
|
|
});
|
|
console.info('InputVerifier code set successfully at address:', proxyAddress);
|
|
});
|
|
|
|
task('task:deployFHEGasLimit').setAction(async function (_taskArguments: TaskArguments, { ethers, upgrades }) {
|
|
const privateKey = getRequiredEnvVar('DEPLOYER_PRIVATE_KEY');
|
|
const deployer = new ethers.Wallet(privateKey).connect(ethers.provider);
|
|
const currentImplementation = await ethers.getContractFactory(
|
|
'fhevmTemp/contracts/emptyProxy/EmptyUUPSProxy.sol:EmptyUUPSProxy',
|
|
deployer,
|
|
);
|
|
const newImplem = await ethers.getContractFactory('FHEGasLimit', deployer);
|
|
const parsedEnv = dotenv.parse(fs.readFileSync('fhevmTemp/addresses/.env.fhegaslimit'));
|
|
const proxyAddress = parsedEnv.FHE_GASLIMIT_CONTRACT_ADDRESS;
|
|
const proxy = await upgrades.forceImport(proxyAddress, currentImplementation);
|
|
await upgrades.upgradeProxy(proxy, newImplem);
|
|
console.info('FHEGasLimit code set successfully at address:', proxyAddress);
|
|
});
|
|
|
|
task('task:setACLAddress')
|
|
.addParam('address', 'The address of the contract')
|
|
.setAction(async function (taskArguments: TaskArguments, { ethers }) {
|
|
const envFilePath = path.join(__dirname, '../fhevmTemp/addresses/.env.acl');
|
|
const content = `ACL_CONTRACT_ADDRESS=${taskArguments.address}\n`;
|
|
try {
|
|
fs.writeFileSync(envFilePath, content, { flag: 'w' });
|
|
console.info(`ACL address ${taskArguments.address} written successfully!`);
|
|
} catch (err) {
|
|
console.error('Failed to write ACL address:', err);
|
|
}
|
|
|
|
const solidityTemplate = `// SPDX-License-Identifier: BSD-3-Clause-Clear
|
|
|
|
pragma solidity ^0.8.24;
|
|
|
|
address constant aclAdd = ${taskArguments.address};\n`;
|
|
|
|
try {
|
|
fs.writeFileSync('./fhevmTemp/addresses/ACLAddress.sol', solidityTemplate, {
|
|
encoding: 'utf8',
|
|
flag: 'w',
|
|
});
|
|
console.info('./fhevmTemp/addresses/ACLAddress.sol file generated successfully!');
|
|
} catch (error) {
|
|
console.error('Failed to write ./fhevmTemp/addresses/ACLAddress.sol', error);
|
|
}
|
|
});
|
|
|
|
task('task:setFHEVMExecutorAddress')
|
|
.addParam('address', 'The address of the contract')
|
|
.setAction(async function (taskArguments: TaskArguments, { ethers }) {
|
|
const envFilePath = path.join(__dirname, '../fhevmTemp/addresses/.env.exec');
|
|
const content = `FHEVM_EXECUTOR_CONTRACT_ADDRESS=${taskArguments.address}\n`;
|
|
try {
|
|
fs.writeFileSync(envFilePath, content, { flag: 'w' });
|
|
console.info(`FHEVMExecutor address ${taskArguments.address} written successfully!`);
|
|
} catch (err) {
|
|
console.error('Failed to write FHEVMExecutor address:', err);
|
|
}
|
|
|
|
const solidityTemplateCoprocessor = `// SPDX-License-Identifier: BSD-3-Clause-Clear
|
|
|
|
pragma solidity ^0.8.24;
|
|
|
|
address constant fhevmExecutorAdd = ${taskArguments.address};\n`;
|
|
|
|
try {
|
|
fs.writeFileSync('./fhevmTemp/addresses/FHEVMExecutorAddress.sol', solidityTemplateCoprocessor, {
|
|
encoding: 'utf8',
|
|
flag: 'w',
|
|
});
|
|
console.info('./fhevmTemp/addresses/FHEVMExecutorAddress.sol file generated successfully!');
|
|
} catch (error) {
|
|
console.error('Failed to write ./fhevmTemp/addresses/FHEVMExecutorAddress.sol', error);
|
|
}
|
|
});
|
|
|
|
task('task:setKMSVerifierAddress')
|
|
.addParam('address', 'The address of the contract')
|
|
.setAction(async function (taskArguments: TaskArguments, { ethers }) {
|
|
const envFilePath = path.join(__dirname, '../fhevmTemp/addresses/.env.kmsverifier');
|
|
const content = `KMS_VERIFIER_CONTRACT_ADDRESS=${taskArguments.address}\n`;
|
|
try {
|
|
fs.writeFileSync(envFilePath, content, { flag: 'w' });
|
|
console.info(`KMSVerifier address ${taskArguments.address} written successfully!`);
|
|
} catch (err) {
|
|
console.error('Failed to write KMSVerifier address:', err);
|
|
}
|
|
|
|
const solidityTemplate = `// SPDX-License-Identifier: BSD-3-Clause-Clear
|
|
|
|
pragma solidity ^0.8.24;
|
|
|
|
address constant kmsVerifierAdd = ${taskArguments.address};\n`;
|
|
|
|
try {
|
|
fs.writeFileSync('./fhevmTemp/addresses/KMSVerifierAddress.sol', solidityTemplate, {
|
|
encoding: 'utf8',
|
|
flag: 'w',
|
|
});
|
|
console.info('./fhevmTemp/addresses/KMSVerifierAddress.sol file generated successfully!');
|
|
} catch (error) {
|
|
console.error('Failed to write ./fhevmTemp/addresses/KMSVerifierAddress.sol', error);
|
|
}
|
|
});
|
|
|
|
task('task:setInputVerifierAddress')
|
|
.addParam('address', 'The address of the contract')
|
|
.setAction(async function (taskArguments: TaskArguments, { ethers }) {
|
|
// this script also computes the coprocessor address from its private key
|
|
const envFilePath = path.join(__dirname, '../fhevmTemp/addresses/.env.inputverifier');
|
|
const content = `INPUT_VERIFIER_CONTRACT_ADDRESS=${taskArguments.address}\n`;
|
|
try {
|
|
fs.writeFileSync(envFilePath, content, { flag: 'w' });
|
|
console.log(`InputVerifier address ${taskArguments.address} written successfully!`);
|
|
} catch (err) {
|
|
console.error('Failed to write InputVerifier address:', err);
|
|
}
|
|
|
|
const solidityTemplate = `// SPDX-License-Identifier: BSD-3-Clause-Clear
|
|
|
|
pragma solidity ^0.8.24;
|
|
|
|
address constant inputVerifierAdd = ${taskArguments.address};\n`;
|
|
|
|
try {
|
|
fs.writeFileSync('./fhevmTemp/addresses/InputVerifierAddress.sol', solidityTemplate, {
|
|
encoding: 'utf8',
|
|
flag: 'w',
|
|
});
|
|
console.log('./fhevmTemp/addresses/InputVerifierAddress.sol file generated successfully!');
|
|
} catch (error) {
|
|
console.error('Failed to write ./fhevmTemp/addresses/InputVerifierAddress.sol', error);
|
|
}
|
|
});
|
|
|
|
task('task:setFHEGasLimitAddress')
|
|
.addParam('address', 'The address of the contract')
|
|
.setAction(async function (taskArguments: TaskArguments, { ethers }) {
|
|
const envFilePath = path.join(__dirname, '../fhevmTemp/addresses/.env.fhegaslimit');
|
|
const content = `FHE_GASLIMIT_CONTRACT_ADDRESS=${taskArguments.address}\n`;
|
|
try {
|
|
fs.writeFileSync(envFilePath, content, { flag: 'w' });
|
|
console.info(`FHEGasLimit address ${taskArguments.address} written successfully!`);
|
|
} catch (err) {
|
|
console.error('Failed to write FHEGasLimit address:', err);
|
|
}
|
|
|
|
const solidityTemplate = `// SPDX-License-Identifier: BSD-3-Clause-Clear
|
|
|
|
pragma solidity ^0.8.24;
|
|
|
|
address constant fheGasLimitAdd = ${taskArguments.address};\n`;
|
|
|
|
try {
|
|
fs.writeFileSync('./fhevmTemp/addresses/FHEGasLimitAddress.sol', solidityTemplate, {
|
|
encoding: 'utf8',
|
|
flag: 'w',
|
|
});
|
|
console.info('./fhevmTemp/addresses/FHEGasLimitAddress.sol file generated successfully!');
|
|
} catch (error) {
|
|
console.error('Failed to write ./fhevmTemp/addresses/FHEGasLimitAddress.sol', error);
|
|
}
|
|
});
|
|
|
|
task('task:setDecryptionOracleAddress')
|
|
.addParam('address', 'The address of the contract')
|
|
.setAction(async function (taskArguments: TaskArguments, { ethers }) {
|
|
const envFilePath = path.join(__dirname, '../fhevmTemp/addresses/.env.decryptionoracle');
|
|
const content = `DECRYPTION_ORACLE_ADDRESS=${taskArguments.address}`;
|
|
try {
|
|
fs.writeFileSync(envFilePath, content, { flag: 'w' });
|
|
console.log('decryptionOracleAddress written to ./fhevmTemp/addresses/.env.decryptionoracle successfully!');
|
|
} catch (err) {
|
|
console.error('Failed to write to ./fhevmTemp/addresses/.env.decryptionoracle:', err);
|
|
}
|
|
|
|
const solidityTemplate = `// SPDX-License-Identifier: BSD-3-Clause-Clear
|
|
|
|
pragma solidity ^0.8.24;
|
|
|
|
address constant DECRYPTION_ORACLE_ADDRESS = ${taskArguments.address};
|
|
`;
|
|
|
|
try {
|
|
fs.writeFileSync('./fhevmTemp/addresses/DecryptionOracleAddress.sol', solidityTemplate, {
|
|
encoding: 'utf8',
|
|
flag: 'w',
|
|
});
|
|
console.log('./fhevmTemp/addresses/DecryptionOracleAddress.sol file has been generated successfully.');
|
|
} catch (error) {
|
|
console.error('Failed to write ./fhevmTemp/addresses/DecryptionOracleAddress.sol', error);
|
|
}
|
|
});
|