feat: automate etherscan verification

[kendricktan]

Motivation

This PR includes a way to automate the etherscan verification process.

Summary

To automate the verification process on etherscan, we need to do two additional things:

1. Capture the constructor args during deployment/migrations
2. Save the constructor args into a file.

Details

This PR adds the feature to save constructor args into a separate file (networkid_args.json) in the networks directory. Upon deployment it'll use that those args to verify the contracts on etherscan.

For example:

truffle migrate --reset --network kovan
# There is now a file `42_args.json` in the `networks` directory

# Gets the files prefixed with `42` in the `networks` directory
# and attempts to verify them
npx buidler etherscan-verification --network-id 42

Known Issues
Unable to verify ExpiringMultiPartyLib, DesignatedVotingFactory, TokenFactory, and Governor via the API, however uploading the solc-input.json via the web interface works. A support ticket with etherscan has been made.

Issue(s)

#1807
Fixes #1854.

[nicholaspai]

Drive by comment

Unable to verify ExpiringMultiPartyLib via the API, however uploading the solc-input.json via the web interface works. A support ticket with etherscan has been made.

Does this work without. modifications to solc-input.json?

[nicholaspai]

Can you explain what the null and 4 args passed to JSON.stringfy do and why they're needed? Seems like a bit of a magic number

[kendricktan]

The null and 4 are there to make it human readable, otherwise it'll flatten the whole thing.

The null is the replacer function, which intends to replace key-value pairs.

4 is number of spacing. 4 was chosen as thats the standard number of indented spaces.

[nicholaspai]

I think you should remove all changes to 42.json from this PR, as we already support a set of contracts that are integrated into emp-tools for example. However, were these contracts all verified on Etherscan via your script?

[kendricktan]

Can do, this is more to show-case the automation side of it. I can revert it back to the original contracts.

[kendricktan]

I'll revert the contract addresses once the PR comes to a consensus. I left it here just to showcase how the process works.

[mrice32]

SGTM!

[nicholaspai]

Governor does not look verified

[nicholaspai]

WETH9 is not verified

[nicholaspai]

Actually this might be DesignatedVotingFactory

[nicholaspai]

TokenFactory not verified

[nicholaspai]

This one not verified, but I see you pointed this out in PR description

[nicholaspai]

Looks really useful! A few changes I'd like to see:

• Don't commit changes to 42.json as this is the list of supported Kovan contracts which we've already verified. However, please do post as a comment a list of contracts that were verified via this method
• I noticed that some contracts still were not verified

[daywiss]

im prob not the best to review this, but i will look it over. you might want to get @mrice32 or @chrismaree as a review as well

[kendricktan]

Drive by comment

Unable to verify ExpiringMultiPartyLib via the API, however uploading the solc-input.json via the web interface works. A support ticket with etherscan has been made.

Does this work without. modifications to solc-input.json?

Yeap ExpiringMultiPartyLib can be verified via the web-interface with 0 edits to solc-input.json. The one that needs modification is the ExpiringMultiPartyCreator, which gets automatically verified for some reason...

I noticed that some contracts still were not verified
Some contracts that are not added by the truffle-registry (e.g. WETH) won't automatically get verified as there is no constructor args.

The API feels a bit flaky, its only able to verify SOME contracts through the API. However if you were to manually upload solc-input.json via the web portal, it verifies successfully.

Some contracts that are affected by this as you've discovered (you'll have to manually upload it via the web portal):

1. Governor
2. TokenFactory
3. DesignatedVotingFactory
4. ExpiringMultiPartyLib

I didn't mention 1, 2, and 3 as I presumed the ones that were causing the biggest issues on verification were the Voting, EMPCreator, and EMPLib contracts

[nicholaspai]

Drive by comment

Unable to verify ExpiringMultiPartyLib via the API, however uploading the solc-input.json via the web interface works. A support ticket with etherscan has been made.

Does this work without. modifications to solc-input.json?

Yeap ExpiringMultiPartyLib can be verified via the web-interface with 0 edits to solc-input.json. The one that needs modification is the ExpiringMultiPartyCreator, which gets automatically verified for some reason...

I noticed that some contracts still were not verified
Some contracts that are not added by the truffle-registry (e.g. WETH) won't automatically get verified as there is no constructor args.

The API feels a bit flaky, its only able to verify SOME contracts through the API. However if you were to manually upload solc-input.json via the web portal, it verifies successfully.

Some contracts that are affected by this as you've discovered (you'll have to manually upload it via the web portal):

1. Governor
2. TokenFactory
3. DesignatedVotingFactory
4. ExpiringMultiPartyLib

I didn't mention 1, 2, and 3 as I presumed the ones that were causing the biggest issues on verification were the Voting, EMPCreator, and EMPLib contracts

Why do you think those didn't get auto verified? Is it a buidler issue, since the manual solc.json upload works? Overall I support this approach, my only suggestions are to figure out (if possible) how to auto verify ALL contracts and secondly to auto-detect the user's network so we have fewer .env vars

[kendricktan]

Why do you think those didn't get auto verified? Is it a buidler issue, since the manual solc.json upload works?

I don't think its a buidler issue, technically speaking, I'm only writing it as a builder plugin because I need buidler to generate solc-input.json. Apart from using builder to generate solc-input.json, everything else is API calls.

It is likely an issue on etherscan's end as:

1. Files are identical
2. The only difference is that files are uploaded via the API instead of the web UI
   • They're using a different processes for verification via the web ui and verification via the API

[kendricktan]

@mrice32 @nicholaspai @chrismaree @daywiss I'm changing the coverage to use truffle run converage instead of buidler as it keeps hanging, PR can't be merged unless all the checks passes.

[coveralls]

Coverage remained the same at 92.71% when pulling 5f9989e on feat/etherscan-automate-verification into c210f03 on master.

[nicholaspai]

Why do you think those didn't get auto verified? Is it a buidler issue, since the manual solc.json upload works?

I don't think its a buidler issue, technically speaking, I'm only writing it as a builder plugin because I need buidler to generate solc-input.json. Apart from using builder to generate solc-input.json, everything else is API calls.

It is likely an issue on etherscan's end as:

1. Files are identical

2. The only difference is that files are uploaded via the API instead of the web UI

   • They're using a different processes for verification via the web ui and verification via the API

Ok, I think before approving this let's revert the changes in 42.json and 42.args.json, and then can you try to figure out a way to automate the remaining contract verifications? Otherwise you should make a note somewhere which contracts get verified and which do not (or maybe console.log each successful verified contract) so the user knows which ones to manually verify.

[kendricktan]

Ok, I think before approving this let's revert the changes in 42.json and 42.args.json, and then can you try to figure out a way to automate the remaining contract verifications? Otherwise you should make a note somewhere which contracts get verified and which do not (or maybe console.log each successful verified contract) so the user knows which ones to manually verify.

It console.logs the whole process (success, failed, in-progress), with color coding 😛

[nicholaspai]

Ok, I think before approving this let's revert the changes in 42.json and 42.args.json, and then can you try to figure out a way to automate the remaining contract verifications? Otherwise you should make a note somewhere which contracts get verified and which do not (or maybe console.log each successful verified contract) so the user knows which ones to manually verify.

It console.logs the whole process (success, failed, in-progress), with color coding 😛

Beautiful. Just revert the 42.json files then LGTM

[nicholaspai]

Should you change the networks config to the user's connected network?

[kendricktan]

This networks is a config when buidler runs tests, e.g. npx buidler test --network localhost/buidlerevm.

What do you mean by "user connected network"?

[nicholaspai]

what if I want to use Kovan or Mainnet network would it work for that? Sorry I don't have much familiarity with buidler

[kendricktan]

If you'd like to run tests for the kovan network, you'll need to add the network config to the "networks" section. This PR is about a separate topic - verifying contracts, please keep it at that.

To verify the contracts, you need to files to be saved in the truffle-registry (i.e. in networks/ directory). So for example, if you've deployed the kovan contracts, it will appear as networks/42.json. This PR also captures the constructor args for each deployed contract, and saves them into networks/42_args.json.

To verify the deployed contracts for kovan you'll run npx buidler verify-etherscan --network-id 42. It'll try and find the files 42.json and 42_args.json in the network directory, and combined them with solc-input.json before uploading them to etherscan.

[nicholaspai]

If you'd like to run tests for the kovan network, you'll need to add the network config to the "networks" section. This PR is about a separate topic - verifying contracts, please keep it at that.

Sorry I think i am confused. You're saying that the networks object has no impact on verification? Only affects the tests?

[kendricktan]

Yeap!

For verification, you supply the network-id to the cli here, https://github.com/UMAprotocol/protocol/blob/feat/etherscan-automate-verification/packages/core/buidler.config.js#L48

[mrice32]

Just to tie this thread off, I think what you're saying @kendricktan is that the verification does not require buidler to have any non-test networks set up (like we have for truffle). The verification task is independent of (and doesn't rely on) the declared networks in the buidler config. All it needs is to be able to compile (network agnostic) and see the networks/ files.

SGTM!

[nicholaspai]

Looks great! 2 things:

• Would like a second set of eyes from this so I've requested @mrice32 @daywiss and @chrismaree
• Is your networks param in the buidler.config.js meant to be pointed at localHost?

[mrice32]

This LGTM!

Two PR nits:

Title should be feat: automate etherscan verification to conform to conventional commits.

And I think this PR should fix #1854, so please add Fixes #1854 to the issues section of the description.

[mrice32]

Just to tie this thread off, I think what you're saying @kendricktan is that the verification does not require buidler to have any non-test networks set up (like we have for truffle). The verification task is independent of (and doesn't rely on) the declared networks in the buidler config. All it needs is to be able to compile (network agnostic) and see the networks/ files.

SGTM!

[chrismaree]

This is pretty awesome. pitty it does not work in all cases but seeing we can upload the output file directly to the Etherscan UI it's still a massive step up.