Skip to content

Jorrit/refactor #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
SwenSchaeferjohann wants to merge 9 commits into
base: main
Choose a base branch
from
Open

Jorrit/refactor #1

SwenSchaeferjohann wants to merge 9 commits into from

Conversation

@SwenSchaeferjohann
Copy link

@SwenSchaeferjohann SwenSchaeferjohann commented Jan 8, 2026

No description provided.

@ananas-block
refactor: convert to lib, switch program id
38d8634
@ananas-block
extensions compat
5d2768b
@ananas-block
chore: make unpack_amount_and_decimals public, add lenght checks
5825b1d
@ananas-block
feat: add AccountType validation for extended accounts
3c5db4f 
Validate AccountType discriminator at byte 165 for accounts larger than
165 bytes to prevent type confusion between Mint and Account types.

- Add ACCOUNT_TYPE_OFFSET, ACCOUNT_TYPE_MINT, ACCOUNT_TYPE_TOKEN_ACCOUNT constants
- Add ACCOUNT_TYPE const to Transmutable trait
- Check byte[165] in load_unchecked and load_mut_unchecked when size > 165
- Account uses ACCOUNT_TYPE = 2, Mint uses ACCOUNT_TYPE = 1
@ananas-block
docs: update README with branch changes and unsupported features
5a78673 
Document signer_is_validated parameter, AccountType validation,
library conversion, and note that multisig is not supported.
@ananas-block
feat: disable wrapped SOL (native mint) transfers
1bf7a9e 
Return NativeNotSupported error for native account transfers.
Lamport transfer logic commented out for reference.
@ananas-block
chore: re-export error module from pinocchio-token-interface
0c55d18
@ananas-block
fix: add AccountType validation to prevent type confusion in load fun…
9ea0456 
…ctions

Fixes vulnerability where Token account (165 bytes) could be loaded as Mint (82 bytes)
because AccountType check was only performed for extended accounts (>165 bytes).

Now accepts only:
- Exact length match (bytes.len() == T::LEN) for standard accounts
- Extended accounts (>165 bytes) with matching AccountType discriminator

Adds unit tests covering all validation scenarios.
@ananas-block
test: account load
f7bee9b
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@SwenSchaeferjohann @ananas-block