febo
diff --git a/‎Cargo.lock‎
Lines changed: 5 additions & 10 deletions b/‎Cargo.lock‎
Lines changed: 5 additions & 10 deletions
diff --git a/‎Cargo.toml‎
Lines changed: 3 additions & 3 deletions b/‎Cargo.toml‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎README.md‎
Lines changed: 12 additions & 12 deletions b/‎README.md‎
Lines changed: 12 additions & 12 deletions
diff --git a/‎program/Cargo.toml‎
Lines changed: 0 additions & 1 deletion b/‎program/Cargo.toml‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎program/src/processor/amount_to_ui_amount.rs‎
Lines changed: 2 additions & 1 deletion b/‎program/src/processor/amount_to_ui_amount.rs‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎program/src/processor/burn_checked.rs‎
Lines changed: 15 additions & 15 deletions b/‎program/src/processor/burn_checked.rs‎
Lines changed: 15 additions & 15 deletions
diff --git a/‎program/src/processor/close_account.rs‎
Lines changed: 27 additions & 21 deletions b/‎program/src/processor/close_account.rs‎
Lines changed: 27 additions & 21 deletions
diff --git a/‎program/src/processor/get_account_data_size.rs‎
Lines changed: 2 additions & 0 deletions b/‎program/src/processor/get_account_data_size.rs‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎program/src/processor/initialize_account2.rs‎
Lines changed: 14 additions & 2 deletions b/‎program/src/processor/initialize_account2.rs‎
Lines changed: 14 additions & 2 deletions
diff --git a/‎program/src/processor/initialize_account3.rs‎
Lines changed: 14 additions & 2 deletions b/‎program/src/processor/initialize_account3.rs‎
Lines changed: 14 additions & 2 deletions
@@ -15,6 +15,6 @@ license = "Apache-2.0"
 repository = "https://github.com/febo/token"
 
 [workspace.dependencies]
-pinocchio = "0.7.0"
-pinocchio-log = "0.3.0"
-pinocchio-pubkey = "0.2.2"
+pinocchio = { version = "0.7", git = "https://github.com/febo/pinocchio.git", branch = "febo/close-unstable" }
+pinocchio-log = { version = "0.3", git = "https://github.com/febo/pinocchio.git", branch = "febo/close-unstable" }
+pinocchio-pubkey = { version = "0.2", git = "https://github.com/febo/pinocchio.git", branch = "febo/close-unstable" }
@@ -34,30 +34,30 @@ This repository contains a **proof-of-concept** of a reimplementation of the SPL
 | Instruction                | Completed | CU (`p-token`) | CU (`spl-token`) |
 |----------------------------|-----------|----------------|------------------|
 | `InitializeMint`           | ✅        | 100            | 2967             |
-| `InitializeAccount`        | ✅        | 170            | 4527             |
-| `InitializeMultisig`       | ✅        | 190            | 2973             |
-| `Transfer`                 | ✅        | 153            | 4645             |
-| `Approve`                  | ✅        | 124            | 2904             |
+| `InitializeAccount`        | ✅        | 185            | 4527             |
+| `InitializeMultisig`       | ✅        | 204            | 2973             |
+| `Transfer`                 | ✅        | 155            | 4645             |
+| `Approve`                  | ✅        | 122            | 2904             |
 | `Revoke`                   | ✅        |  97            | 2677             |
-| `SetAuthority`             | ✅        | 126            | 3167             |
-| `MintTo`                   | ✅        | 154            | 4538             |
+| `SetAuthority`             | ✅        | 127            | 3167             |
+| `MintTo`                   | ✅        | 155            | 4538             |
 | `Burn`                     | ✅        | 168            | 4753             |
-| `CloseAccount`             | ✅        | 147            | 2916             |
+| `CloseAccount`             | ✅        | 154            | 2916             |
 | `FreezeAccount`            | ✅        | 136            | 4265             |
 | `ThawAccount`              | ✅        | 136            | 4267             |
-| `TransferChecked`          | ✅        | 206            | 6201             |
+| `TransferChecked`          | ✅        | 204            | 6201             |
 | `ApproveChecked`           | ✅        | 162            | 4459             |
 | `MintToChecked`            | ✅        | 164            | 4546             |
-| `BurnChecked`              | ✅        | 170            | 4755             |
-| `InitializeAccount2`       | ✅        | 150            | 4388             |
+| `BurnChecked`              | ✅        | 169            | 4755             |
+| `InitializeAccount2`       | ✅        | 164            | 4388             |
 | `SyncNative`               | ✅        |                |                  |
 | `InitializeAccount3`       | ✅        | 272            | 4240             |
 | `InitializeMultisig2`      | ✅        | 319            | 2826             |
 | `InitializeMint2`          | ✅        | 234            | 2827             |
 | `GetAccountDataSize`       | ✅        |                |                  |
 | `InitializeImmutableOwner` | ✅        |                |                  |
-| `AmountToUiAmount`         | ✅        | 483            | 2501             |
-| `UiAmountToAmount`         | ✅        | 873            | 3161             |
+| `AmountToUiAmount`         | ✅        | 503            | 2501             |
+| `UiAmountToAmount`         | ✅        | 875            | 3161             |
 
 > Tests were run using Solana `v2.1.0`.
 
 
@@ -20,7 +20,6 @@ test-sbf = []
 [dependencies]
 pinocchio = { workspace = true }
 pinocchio-log = { workspace = true }
-pinocchio-pubkey = { workspace = true }
 token-interface = { version = "^0", path = "../interface" }
 
 [dev-dependencies]
 
@@ -23,7 +23,8 @@ pub fn process_amount_to_ui_amount(
 
     let mint_info = accounts.first().ok_or(ProgramError::NotEnoughAccountKeys)?;
     check_account_owner(mint_info)?;
-    // SAFETY: there is a single borrow to the `Mint` account.
+    // SAFETY: single immutable borrow to `mint_info` account data and
+    // `load` validates that the mint is initialized.
     let mint = unsafe {
         load::<Mint>(mint_info.borrow_data_unchecked()).map_err(|_| TokenError::InvalidMint)?
     };
 
@@ -4,20 +4,20 @@ use super::shared;
 
 #[inline(always)]
 pub fn process_burn_checked(accounts: &[AccountInfo], instruction_data: &[u8]) -> ProgramResult {
-    let (amount, decimals) = instruction_data.split_at(core::mem::size_of::<u64>());
-    let amount = u64::from_le_bytes(
-        amount
-            .try_into()
-            .map_err(|_error| ProgramError::InvalidInstructionData)?,
-    );
+    // expected u64 (8) + u8 (1)
+    let (amount, decimals) = if instruction_data.len() == 9 {
+        let (amount, decimals) = instruction_data.split_at(core::mem::size_of::<u64>());
+        (
+            u64::from_le_bytes(
+                amount
+                    .try_into()
+                    .map_err(|_error| ProgramError::InvalidInstructionData)?,
+            ),
+            decimals.first(),
+        )
+    } else {
+        return Err(ProgramError::InvalidInstructionData);
+    };
 
-    shared::burn::process_burn(
-        accounts,
-        amount,
-        Some(
-            *decimals
-                .first()
-                .ok_or(ProgramError::InvalidInstructionData)?,
-        ),
-    )
+    shared::burn::process_burn(accounts, amount, decimals.copied())
 }
@@ -3,14 +3,16 @@ use pinocchio::{
 };
 use token_interface::{
     error::TokenError,
-    state::{account::Account, load_mut},
+    state::{account::Account, load},
 };
 
 use super::validate_owner;
 
-/// Incinerator address.
-const INCINERATOR_ID: Pubkey =
-    pinocchio_pubkey::pubkey!("1nc1nerator11111111111111111111111111111111");
+/// Incinerator (`1nc1nerator11111111111111111111111111111111`) address.
+const INCINERATOR_ID: Pubkey = [
+    0, 51, 144, 114, 141, 52, 17, 96, 121, 189, 201, 17, 191, 255, 0, 219, 212, 77, 46, 205, 204,
+    247, 156, 166, 225, 0, 56, 225, 0, 0, 0, 0,
+];
 
 #[inline(always)]
 pub fn process_close_account(accounts: &[AccountInfo]) -> ProgramResult {
@@ -24,26 +26,30 @@ pub fn process_close_account(accounts: &[AccountInfo]) -> ProgramResult {
     // raw pointer.
     if source_account_info == destination_account_info {
         return Err(ProgramError::InvalidAccountData);
-    }
-
-    let source_account =
-        unsafe { load_mut::<Account>(source_account_info.borrow_mut_data_unchecked())? };
-
-    if !source_account.is_native() && source_account.amount() != 0 {
-        return Err(TokenError::NonNativeHasBalance.into());
-    }
-
-    let authority = source_account
-        .close_authority()
-        .unwrap_or(&source_account.owner);
-
-    if !source_account.is_owned_by_system_program_or_incinerator() {
-        validate_owner(authority, authority_info, remaining)?;
-    } else if destination_account_info.key() != &INCINERATOR_ID {
-        return Err(ProgramError::InvalidAccountData);
+    } else {
+        // SAFETY: scoped immutable borrow to `source_account_info` account data and
+        // `load` validates that the account is initialized.
+        let source_account =
+            unsafe { load::<Account>(source_account_info.borrow_data_unchecked())? };
+
+        if !source_account.is_native() && source_account.amount() != 0 {
+            return Err(TokenError::NonNativeHasBalance.into());
+        }
+
+        let authority = source_account
+            .close_authority()
+            .unwrap_or(&source_account.owner);
+
+        if !source_account.is_owned_by_system_program_or_incinerator() {
+            validate_owner(authority, authority_info, remaining)?;
+        } else if destination_account_info.key() != &INCINERATOR_ID {
+            return Err(ProgramError::InvalidAccountData);
+        }
     }
 
     let destination_starting_lamports = destination_account_info.lamports();
+    // SAFETY: single mutable borrow to `destination_account_info` lamports and
+    // there are no "active" borrows of `source_account_info` account data.
     unsafe {
         // Moves the lamports to the destination account.
         *destination_account_info.borrow_mut_lamports_unchecked() = destination_starting_lamports
 
@@ -17,6 +17,8 @@ pub fn process_get_account_data_size(accounts: &[AccountInfo]) -> ProgramResult
     // Make sure the mint is valid.
     check_account_owner(mint_info)?;
 
+    // SAFETY: single immutable borrow to `mint_info` account data and
+    // `load` validates that the mint is initialized.
     let _ = unsafe {
         load::<Mint>(mint_info.borrow_data_unchecked()).map_err(|_| TokenError::InvalidMint)?
     };
 
@@ -1,4 +1,9 @@
-use pinocchio::{account_info::AccountInfo, pubkey::Pubkey, ProgramResult};
+use pinocchio::{
+    account_info::AccountInfo,
+    program_error::ProgramError,
+    pubkey::{Pubkey, PUBKEY_BYTES},
+    ProgramResult,
+};
 
 use super::shared;
 
@@ -7,6 +12,13 @@ pub fn process_initialize_account2(
     accounts: &[AccountInfo],
     instruction_data: &[u8],
 ) -> ProgramResult {
-    let owner = unsafe { &*(instruction_data.as_ptr() as *const Pubkey) };
+    // SAFETY: validate `instruction_data` length.
+    let owner = unsafe {
+        if instruction_data.len() != PUBKEY_BYTES {
+            return Err(ProgramError::InvalidInstructionData);
+        } else {
+            &*(instruction_data.as_ptr() as *const Pubkey)
+        }
+    };
     shared::initialize_account::process_initialize_account(accounts, Some(owner), true)
 }
@@ -1,4 +1,9 @@
-use pinocchio::{account_info::AccountInfo, pubkey::Pubkey, ProgramResult};
+use pinocchio::{
+    account_info::AccountInfo,
+    program_error::ProgramError,
+    pubkey::{Pubkey, PUBKEY_BYTES},
+    ProgramResult,
+};
 
 use super::shared;
 
@@ -7,6 +12,13 @@ pub fn process_initialize_account3(
     accounts: &[AccountInfo],
     instruction_data: &[u8],
 ) -> ProgramResult {
-    let owner = unsafe { &*(instruction_data.as_ptr() as *const Pubkey) };
+    // SAFETY: validate `instruction_data` length.
+    let owner = unsafe {
+        if instruction_data.len() != PUBKEY_BYTES {
+            return Err(ProgramError::InvalidInstructionData);
+        } else {
+            &*(instruction_data.as_ptr() as *const Pubkey)
+        }
+    };
     shared::initialize_account::process_initialize_account(accounts, Some(owner), false)
 }