Skip to main content

Standard Staking/Unstaking Signature Structure

Signature Verification

Staking operations use Core.sol's centralized signature verification via validateAndConsumeNonce(). The signature format follows the universal EVVM pattern with StakingHashUtils for hash generation.

To authorize standard staking operations like presaleStaking or publicStaking, or their corresponding unstaking actions, the user must generate a cryptographic signature compliant with the EIP-191 standard.

Signature Format

Complete Message Structure

{evvmId},{senderExecutor},{hashPayload},{originExecutor},{nonce},{isAsyncExec}

Components:

  • evvmId: Chain ID (e.g., 1 for Ethereum mainnet)
  • senderExecutor: Address that can call via msg.sender (0x0...0 for anyone)
  • hashPayload: Operation hash from StakingHashUtils (bytes32)
  • originExecutor: EOA that can execute via tx.origin (0x0...0 for anyone)
  • nonce: User's Core nonce from Core.sol
  • isAsyncExec: Always true for staking operations

Hash Payload Generation

Presale Staking:

bytes32 hashPayload = StakingHashUtils.hashDataForPresaleStake(
    isStaking,      // true = stake, false = unstake
    1               // Fixed amount: 1 token
);
// Hash: keccak256(abi.encode("presaleStaking", isStaking, 1))

Public Staking:

bytes32 hashPayload = StakingHashUtils.hashDataForPublicStake(
    isStaking,          // true = stake, false = unstake
    amountOfStaking     // Variable amount
);
// Hash: keccak256(abi.encode("publicStaking", isStaking, amountOfStaking))

Examples

Public Staking Example (Stake 1000 tokens)

Scenario: User wants to stake 1000 tokens in public staking

Parameters:

  • evvmId: 11155111 (Sepolia testnet)
  • senderExecutor: 0x0000000000000000000000000000000000000000 (anyone can call)
  • isStaking: true
  • amountOfStaking: 1000
  • originExecutor: 0x0000000000000000000000000000000000000000 (anyone can initiate)
  • nonce: 42

Step 1: Generate hash payload

bytes32 hashPayload = StakingHashUtils.hashDataForPublicStake(true, 1000);
// Result: 0x7a8b9c...def (example hash)

Step 2: Construct message

11155111,0x0000000000000000000000000000000000000000,0x7a8b9c...def,0x0000000000000000000000000000000000000000,42,true

Step 3: Sign with EIP-191

const message = "11155111,0x0000000000000000000000000000000000000000,0x7a8b9c...def,0x0000000000000000000000000000000000000000,42,true";
const signature = await signer.signMessage(message);

Presale Staking Example (Stake 1 token)

Scenario: Presale user wants to stake 1 token (fixed amount)

Parameters:

  • evvmId: 11155111 (Sepolia testnet)
  • senderExecutor: 0x0000000000000000000000000000000000000000 (anyone can call)
  • isStaking: true
  • amountOfStaking: 1 (always 1 for presale)
  • originExecutor: 0x0000000000000000000000000000000000000000 (anyone can initiate)
  • nonce: 7

Step 1: Generate hash payload

bytes32 hashPayload = StakingHashUtils.hashDataForPresaleStake(true, 1);
// Result: 0x3c4d5e...abc (example hash)

Step 2: Construct message

11155111,0x0000000000000000000000000000000000000000,0x3c4d5e...abc,0x0000000000000000000000000000000000000000,7,true

Step 3: Sign with EIP-191

const message = "11155111,0x0000000000000000000000000000000000000000,0x3c4d5e...abc,0x0000000000000000000000000000000000000000,7,true";
const signature = await signer.signMessage(message);

Public Unstaking Example (Unstake 500 tokens)

Scenario: User wants to unstake 500 tokens

Parameters:

  • evvmId: 11155111
  • senderExecutor: 0x0000000000000000000000000000000000000000 (anyone can call)
  • isStaking: false (unstaking)
  • amountOfStaking: 500
  • originExecutor: 0x0000000000000000000000000000000000000000 (anyone can initiate)
  • nonce: 43

Step 1: Generate hash payload

bytes32 hashPayload = StakingHashUtils.hashDataForPublicStake(false, 500);
// Result: 0x9e8f7a...123 (example hash)

Step 2: Construct message

11155111,0x0000000000000000000000000000000000000000,0x9e8f7a...123,0x0000000000000000000000000000000000000000,43,true

Step 3: Sign with EIP-191

const message = "11155111,0x0000000000000000000000000000000000000000,0x9e8f7a...123,0x0000000000000000000000000000000000000000,43,true";
const signature = await signer.signMessage(message);

Verification Process

Core.validateAndConsumeNonce()

All staking operations use Core.sol's centralized verification:

core.validateAndConsumeNonce(
    user,               // Signer address
    senderExecutor,     // Who can call via msg.sender
    hashPayload,        // From StakingHashUtils
    originExecutor,     // Who can initiate via tx.origin
    nonce,              // User's Core nonce
    true,               // Always async execution
    signature           // EIP-191 signature
);

Validation Steps:

  1. Message Construction: Concatenates all components with commas
  2. EIP-191 Formatting: Prepends "\x19Ethereum Signed Message:\n" + length
  3. Hashing: Applies keccak256 to formatted message
  4. Signature Recovery: Uses ecrecover to recover signer address
  5. Verification: Compares recovered address with user
  6. Nonce Check: Ensures nonce hasn't been used
  7. Executor Checks: Verifies executors match msg.sender and tx.origin
  8. Consume Nonce: Marks nonce as used to prevent replay

On Failure:

  • Core__InvalidSignature() - Invalid signature
  • Core__NonceAlreadyUsed() - Nonce already consumed
  • Core__InvalidExecutor() - Executing EOA doesn't match originExecutor
Technical Details
  • Dual-Executor Format: senderExecutor controls msg.sender, originExecutor controls tx.origin
  • Centralized Nonces: Core.sol manages all nonces across services
  • Hash Security: StakingHashUtils generates collision-resistant hashes
  • Hash Independence: Executors NOT included in hash payload (only operation parameters)
  • Always Async: Staking operations always use async execution mode (isAsyncExec: true)
  • Replay Protection: Core.sol's nonce system prevents replay attacks
  • Operation Types: presaleStaking (1 token fixed) vs publicStaking (variable amounts)
  • Executor Flexibility: Both executors at address(0) allows anyone to execute