Contracts Deployment

Creating a new AVS requires deploying contracts on-chain.

PreviousKey Management NextOperator Registration

Last updated 12 days ago

Contracts Deployment

Creating a new AVS requires deploying contracts on-chain.

Overview

Othentic CLI streamlines the deployment of contracts for a new AVS and allows users to configure various options.

Layer-1 contracts

The following contracts are deployed:

AvsGovernance for managing operators and governance policies.
L1MessageHandler endpoint for broadcasting messages to the L2 contracts.
L1AvsTreasury contract for managing rewards and handling protocol fee.

Layer-2 contracts

The following contracts are deployed:

AttestationCenter for task verification and historical footprint.
OBLS implements Multisig operations.
cryptographic logical contract used by OBLS
L2MessageHandler complementary to l1MessageHandler , used for communicating with L1 components
L2AvsTreasury contract for managing rewards and handling protocol fee.

To minimize costs and availability associated with running your AVS, AvsGovernance and AttestationCenter are being deployed on L1 and L2 (respectively). The Othentic Stack utilizes DVN to exchange messages between the layers. L1MessageHandler interacts directly with AvsGovernance and L2MessageHandler interacts directly with AttestationCenter.

Prerequisites

ERC-20 token to back the network.
Othentic CLI installed. See Quick Start.

Only Supported Networks can be used for deployment.

Deploy AVS Contracts

Configuration

Othentic CLI uses .env files for configuration. For the deployment, you need following variables in your .env file:

PRIVATE_KEY_DEPLOYER=...
L1_CHAIN=17000
L2_CHAIN=80002

The private key should be a 64-character hex string without the "0x" prefix.
Specify L2_CHAIN and L1_CHAIN in the .env file to avoid needing to add --l2-chain to every command. The configuration follows this priority:
- If both --l1-chain (command) and L1_CHAIN (.env) are set, the command flag will override the .env value.
- If neither is provided, the default value of 17000/holesky (or 80002/amoy for L2) is applied.

Using CLI

othentic-cli network deploy

The contract cloning process uses SSH to clone a private github repository. Make sure your SSH keys are configured properly on Github before running the deployment process.

Define the following properties:

Define either: a. --erc20 the address of the token backing the AVS b. --eth to use native ETH to back the AVS
--l1-initial-deposit and --l2-initial-deposit is the initial deposit for messaging tokens from Layers 1 & 2 (in wei)
--avs-governance-multisig-owner the address of the AVS Governance Multisig role (if you don't pass this flag then the deployer is set as AVS Governance Multisig owner by default)
--l2-rewards rewards distribution to operators on L2 instead of L1 (Optional)
--l1-chain and --l2-chain parameters to define the chains.

Refer to the Supported Networks page to learn about all the chains that are supported.

Example using ERC-20 token:

othentic-cli network deploy \
    --l1-chain holesky \
    --l2-chain amoy \
    --erc20 0x94373a4919B3240D86eA41593D5eBa789FEF3848 \
    --l1-initial-deposit 1500000000000000000 \
    --l2-initial-deposit 2500000000000000000 \
    --avs-governance-multisig-owner <OWNER_ADDRESS> \
    --name test-avs-name

Example using native ETH:

othentic-cli network deploy \
    --l1-chain holesky \
    --l2-chain amoy \
    --eth \
    --l1-initial-deposit 1500000000000000000 \
    --l2-initial-deposit 2500000000000000000 \
    --avs-governance-multisig-owner <OWNER_ADDRESS> \
    --name test-avs-name

Example using rewards on L2:

othentic-cli network deploy \
    --l1-chain holesky \
    --l2-chain amoy \
    --eth \
    --l1-initial-deposit 1500000000000000000 \
    --l2-initial-deposit 2500000000000000000 \
    --avs-governance-multisig-owner <OWNER_ADDRESS> \
    --name test-avs-name 
    --l2-rewards

After execution, the deployment output will be stored in the file:

cat .othentic/contracts/script/data/state.output.json

View AVS Deployed Addresses

Use this command to display the deployed addresses associated with the AVS:

othentic-cli network contracts

Managing AVS Flows: Pause/Unpause

The Othentic CLI allows managing AVS network flows through pause-flow and unpause-flow commands. These commands enable AVS governance multi-sig to halt or resume specific flows across Layer 1 and Layer 2.

By default all the flows are unpaused, except the Payments and Batch Payments.

Pause Flow

This command pauses specific AVS operations. It lists all available flows, allowing you to select and pause a specific flow.

othentic-cli network pause-flow

Un-pause Flow

This command resumes previously paused AVS operations. It lists all available flows, allowing you to select and un-pause a specific flow.

othentic-cli network unpause-flow

Usage

othentic-cli network pause-flow

When prompted, enter the private key of the AVS governance multi-sig address and select the flow.

If the selected flow is already paused, the system throws: Error: Selected Flow is already paused

List of flows

L1 Flows

Operator Registration: Pausing prevents new operators from registering on the AVS.
Operator Updating Receiver: Pausing disables the ability to update the operator's reward receiver.
Update AVS Strategies: Pausing prevents any updates to the AVS strategies.

L2 Flows

Eigen Payments: Pausing halts Eigen Rewards distribution.
Batch Payments: Pausing disables Batch payments to operators.
Update AVS Logic: Pausing prevents changes to the AVS logic.
Create AVS Task Definition: Pausing disables the creation of new Task Definitions.
Task Submission: Pausing prevents on-chain task submissions.

Set Staking Contracts

The Othentic CLI enables you to configure staking contracts for an AVS. It internally calls setSupportedStakingContracts method on AVSGovernance contract.

Usage

othentic-cli network set-staking-contracts

Follow these steps when prompted:

Provide the private key of the multi-sig address.
Enter the AVS governance address
A list of supported staking contracts will be displayed. Select one or more from the list and confirm your selection.

Set Custom Staking contract

othentic-cli network set-staking-contracts --staking-contracts-address <address1>,<address2>

Use the --staking-contracts-address flag (or -sca) to specify staking contract addresses, separated by commas.

Configure a New Staking Strategy

If you need to deploy a new strategy on shared security provider (e.g., Eigen), follow these steps:

Use the shared security provider's deployNewStrategy method to deploy the strategy for an ERC20 token.
Ensure the newly deployed strategy is whitelisted.
Once whitelisted, run the othentic-cli network set-staking-contracts command to set the new strategy to your AVS.

At the end, the CLI will display the transaction hash.

Set Minimum Stake for a Staking Contract

Othentic CLI enables you to configure minimum stake for a staking contract. It internally calls setMinSharesForStrategy method on the AVS governance contract.

Usage

othentic-cli network set-min-shares

Follow these steps when prompted:

Provide the private key of the multi-sig address.
Enter the AVS governance address
A list of supported staking contracts will be displayed, select a staking contract.
Enter the minimum share value in Wei units. It must be a positive number.

At the end, the CLI will display the transaction hash.

Set Minimum Voting Power

Othentic CLI enables you to set minimum voting power for an AVS. This ensures that only operators with sufficient voting power can influence the consensus. It internally calls setMinVotingPower method on the AVS governance contract. By default, the minimum voting power is set to 0.

Usage

othentic-cli network set-min-voting-power

Follow these steps when prompted:

Provide the private key of the multi-sig address.
Enter the AVS governance address
Enter the minimum voting power value.

At the end, the CLI will display the transaction hash.

Register

Othentic CLI enables you register your AVS to Eigen layer. It internally calls registerAvsToEigenLayer method on the AVS governance contract. The registration details should follow the format specified in the Onboard AVS Dashboard Metadata URI.

Usage

othentic-cli network register

For mainnet, Add --l1-chain mainnet

Follow these steps when prompted:

Provide the private key of the multi-sig address.
Enter the AVS governance address
Select the shared security provider
Enter all the details such as AVS Name, Description, Website, Logo URL, etc.
The CLI will display the transaction hash.

PreviousKey Management NextOperator Registration

Last updated 12 days ago

Overview

Othentic CLI streamlines the deployment of contracts for a new AVS and allows users to configure various options.

Layer-1 contracts

The following contracts are deployed:

AvsGovernance for managing operators and governance policies.
L1MessageHandler endpoint for broadcasting messages to the L2 contracts.
L1AvsTreasury contract for managing rewards and handling protocol fee.

Layer-2 contracts

The following contracts are deployed:

AttestationCenter for task verification and historical footprint.
OBLS implements Multisig operations.
cryptographic logical contract used by OBLS
L2MessageHandler complementary to l1MessageHandler , used for communicating with L1 components
L2AvsTreasury contract for managing rewards and handling protocol fee.

Prerequisites

ERC-20 token to back the network.
Othentic CLI installed. See Quick Start.

Only Supported Networks can be used for deployment.

Deploy AVS Contracts

Configuration

Othentic CLI uses .env files for configuration. For the deployment, you need following variables in your .env file:

PRIVATE_KEY_DEPLOYER=...
L1_CHAIN=17000
L2_CHAIN=80002

The private key should be a 64-character hex string without the "0x" prefix.
Specify L2_CHAIN and L1_CHAIN in the .env file to avoid needing to add --l2-chain to every command. The configuration follows this priority:
- If both --l1-chain (command) and L1_CHAIN (.env) are set, the command flag will override the .env value.
- If neither is provided, the default value of 17000/holesky (or 80002/amoy for L2) is applied.

Using CLI

othentic-cli network deploy

The contract cloning process uses SSH to clone a private github repository. Make sure your SSH keys are configured properly on Github before running the deployment process.

Define the following properties:

Define either: a. --erc20 the address of the token backing the AVS b. --eth to use native ETH to back the AVS
--l1-initial-deposit and --l2-initial-deposit is the initial deposit for messaging tokens from Layers 1 & 2 (in wei)
--avs-governance-multisig-owner the address of the AVS Governance Multisig role (if you don't pass this flag then the deployer is set as AVS Governance Multisig owner by default)
--l2-rewards rewards distribution to operators on L2 instead of L1 (Optional)
--l1-chain and --l2-chain parameters to define the chains.

Refer to the Supported Networks page to learn about all the chains that are supported.

Example using ERC-20 token:

othentic-cli network deploy \
    --l1-chain holesky \
    --l2-chain amoy \
    --erc20 0x94373a4919B3240D86eA41593D5eBa789FEF3848 \
    --l1-initial-deposit 1500000000000000000 \
    --l2-initial-deposit 2500000000000000000 \
    --avs-governance-multisig-owner <OWNER_ADDRESS> \
    --name test-avs-name

Example using native ETH:

othentic-cli network deploy \
    --l1-chain holesky \
    --l2-chain amoy \
    --eth \
    --l1-initial-deposit 1500000000000000000 \
    --l2-initial-deposit 2500000000000000000 \
    --avs-governance-multisig-owner <OWNER_ADDRESS> \
    --name test-avs-name

Example using rewards on L2:

othentic-cli network deploy \
    --l1-chain holesky \
    --l2-chain amoy \
    --eth \
    --l1-initial-deposit 1500000000000000000 \
    --l2-initial-deposit 2500000000000000000 \
    --avs-governance-multisig-owner <OWNER_ADDRESS> \
    --name test-avs-name 
    --l2-rewards

After execution, the deployment output will be stored in the file:

cat .othentic/contracts/script/data/state.output.json

View AVS Deployed Addresses

Use this command to display the deployed addresses associated with the AVS:

othentic-cli network contracts

Managing AVS Flows: Pause/Unpause

By default all the flows are unpaused, except the Payments and Batch Payments.

Pause Flow

This command pauses specific AVS operations. It lists all available flows, allowing you to select and pause a specific flow.

othentic-cli network pause-flow

Un-pause Flow

This command resumes previously paused AVS operations. It lists all available flows, allowing you to select and un-pause a specific flow.

othentic-cli network unpause-flow

Usage

othentic-cli network pause-flow

When prompted, enter the private key of the AVS governance multi-sig address and select the flow.

If the selected flow is already paused, the system throws: Error: Selected Flow is already paused

List of flows

L1 Flows

Operator Registration: Pausing prevents new operators from registering on the AVS.
Operator Updating Receiver: Pausing disables the ability to update the operator's reward receiver.
Update AVS Strategies: Pausing prevents any updates to the AVS strategies.

L2 Flows

Eigen Payments: Pausing halts Eigen Rewards distribution.
Batch Payments: Pausing disables Batch payments to operators.
Update AVS Logic: Pausing prevents changes to the AVS logic.
Create AVS Task Definition: Pausing disables the creation of new Task Definitions.
Task Submission: Pausing prevents on-chain task submissions.

Set Staking Contracts

The Othentic CLI enables you to configure staking contracts for an AVS. It internally calls setSupportedStakingContracts method on AVSGovernance contract.

Usage

othentic-cli network set-staking-contracts

Follow these steps when prompted:

Provide the private key of the multi-sig address.
Enter the AVS governance address
A list of supported staking contracts will be displayed. Select one or more from the list and confirm your selection.

Set Custom Staking contract

othentic-cli network set-staking-contracts --staking-contracts-address <address1>,<address2>

Use the --staking-contracts-address flag (or -sca) to specify staking contract addresses, separated by commas.

Configure a New Staking Strategy

If you need to deploy a new strategy on shared security provider (e.g., Eigen), follow these steps:

Use the shared security provider's deployNewStrategy method to deploy the strategy for an ERC20 token.
Ensure the newly deployed strategy is whitelisted.
Once whitelisted, run the othentic-cli network set-staking-contracts command to set the new strategy to your AVS.

At the end, the CLI will display the transaction hash.

Set Minimum Stake for a Staking Contract

Othentic CLI enables you to configure minimum stake for a staking contract. It internally calls setMinSharesForStrategy method on the AVS governance contract.

Usage

othentic-cli network set-min-shares

Follow these steps when prompted:

Provide the private key of the multi-sig address.
Enter the AVS governance address
A list of supported staking contracts will be displayed, select a staking contract.
Enter the minimum share value in Wei units. It must be a positive number.

At the end, the CLI will display the transaction hash.

Set Minimum Voting Power

Usage

othentic-cli network set-min-voting-power

Follow these steps when prompted:

Provide the private key of the multi-sig address.
Enter the AVS governance address
Enter the minimum voting power value.

At the end, the CLI will display the transaction hash.

Register

Usage

othentic-cli network register

For mainnet, Add --l1-chain mainnet

Follow these steps when prompted:

Provide the private key of the multi-sig address.
Enter the AVS governance address
Select the shared security provider
Enter all the details such as AVS Name, Description, Website, Logo URL, etc.
The CLI will display the transaction hash.