Skip to main content

How Signing Works

The SDK uses EIP-712 typed data signing for all exchange actions. Here’s what happens under the hood:
  1. Action Encoding: The action payload is encoded using MessagePack
  2. Hashing: The encoded bytes are hashed with keccak256
  3. EIP-712 Signing: The hash is signed using EIP-712 typed data with the following structure:
const domain = {
  name: "HotstuffCore",
  version: "1",
  chainId: 1,
  verifyingContract: "0x1234567890123456789012345678901234567890",
};

const types = {
  Action: [
    { name: "source", type: "string" }, // "Testnet" or "Mainnet"
    { name: "hash", type: "bytes32" }, // keccak256 of msgpack-encoded action
    { name: "txType", type: "uint16" }, // Tx Op Code
  ],
};

Action types & Opcodes

ActionTx Type**Tx Op Codes **
Account Actions
Add AgentaddAgent1201
Revoke AgentrevokeAgent1211
Update Perp Instrument LeverageupdatePerpLeverage1203
Approve Broker FeeapproveBrokerFee1207
Create Referral CodecreateReferralCode1208
Set ReferrersetReferrer1209
Claim Referral RewardsclaimReferralRewards1210
Trading Actions
Place OrderplaceOrder1301
Cancel Order by OIDcancelByOid1302
Cancel AllcancelAll1311
Cancel by CloidcancelByCloid1312
Cancel by InstrumentcancelByInstrument1313
Collateral Actions
Spot Withdraw RequestspotWithdrawRequest1002
Derivative Withdraw RequestderivativeWithdrawRequest1003
Spot Balance Transfer RequestspotBalanceTransferRequest1051
Derivative Balance Transfer RequestderivativeBalanceTransferRequest1052
Internal Balance Transfer RequestinternalBalanceTransferRequest1053

SDK Implementation

import { encode } from "@msgpack/msgpack";
import { keccak256 } from "viem";

export async function signAction(
  args: {
    wallet: any;
    action: unknown;
    txType: number;
  },
  options?: {
    isTestnet: boolean;
  },
) {
  const isTestnet = options?.isTestnet ?? false;

  const actionBytes = encode(args.action);

  const payloadHash = keccak256(actionBytes);

  const domain = {
    name: "HotstuffCore",
    version: "1",
    chainId: 1,
    verifyingContract:
      "0x1234567890123456789012345678901234567890" as `0x${string}`,
  };

  const types = {
    Action: [
      { name: "source", type: "string" },
      { name: "hash", type: "bytes32" },
      { name: "txType", type: "uint16" },
    ],
  };

  const eip712Message = {
    source: isTestnet ? "Testnet" : "Mainnet",
    hash: payloadHash,
    txType: args.txType,
  };

  const signature = await args.wallet.signTypedData({
    domain,
    types,
    primaryType: "Action",
    message: eip712Message,
  });

  return signature;
}

Debugging Signature Issues

It is recommended to use an existing SDK instead of manually generating signatures. There are many potential ways in which signatures can be wrong. An incorrect signature results in recovering a different signer based on the signature and payload and results in one of the following errors: 
"Error: account does not exist."

"invalid order signer"
where the returned address does not match the public address of the wallet you are signing with. The returned address also changes for different inputs. An incorrect signature does not indicate why it is incorrect which makes debugging more challenging. To debug this it is recommended to read through the SDK carefully and make sure the implementation matches exactly. If that doesn’t work, add logging to find where the output diverges.