token/pinocchio/program/src/processor/shared/burn.rs at 118b4eea3e6c03eaf75a4e11dbb3acbd5ac3aed7 · solana-program/token · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
use {
    crate::processor::{check_account_owner, validate_owner},
    pinocchio::{
        account_info::AccountInfo,
        hint::{likely, unlikely},
        program_error::ProgramError,
        pubkey::pubkey_eq,
        ProgramResult,
    },
    pinocchio_token_interface::{
        error::TokenError,
        state::{account::Account, load_mut, mint::Mint},
    },
};

#[inline(always)]
#[allow(clippy::arithmetic_side_effects)]
pub fn process_burn(
    accounts: &[AccountInfo],
    amount: u64,
    expected_decimals: Option<u8>,
) -> ProgramResult {
    let [source_account_info, mint_info, authority_info, remaining @ ..] = accounts else {
        return Err(ProgramError::NotEnoughAccountKeys);
    };

    // SAFETY: single mutable borrow to `source_account_info` account data and
    // `load_mut` validates that the account is initialized.
    let source_account =
        unsafe { load_mut::<Account>(source_account_info.borrow_mut_data_unchecked())? };
    // SAFETY: single mutable borrow to `mint_info` account data and
    // `load_mut` validates that the mint is initialized; additionally, an
    // account cannot be both a token account and a mint, so if duplicates are
    // passed in, one of them will fail the `load_mut` check.
    let mint = unsafe { load_mut::<Mint>(mint_info.borrow_mut_data_unchecked())? };

    if unlikely(source_account.is_frozen()?) {
        return Err(TokenError::AccountFrozen.into());
    }

    if unlikely(source_account.is_native()) {
        return Err(TokenError::NativeNotSupported.into());
    }

    // Ensure the source account has the sufficient amount. This is done before
    // the value is updated on the account.
    let updated_source_amount = source_account
        .amount()
        .checked_sub(amount)
        .ok_or(TokenError::InsufficientFunds)?;

    if unlikely(!pubkey_eq(mint_info.key(), &source_account.mint)) {
        return Err(TokenError::MintMismatch.into());
    }

    if let Some(expected_decimals) = expected_decimals {
        if unlikely(expected_decimals != mint.decimals) {
            return Err(TokenError::MintDecimalsMismatch.into());
        }
    }

    if likely(!source_account.is_owned_by_system_program_or_incinerator()) {
        match source_account.delegate() {
            Some(delegate) if pubkey_eq(authority_info.key(), delegate) => {
                // SAFETY: `authority_info` is not currently borrowed.
                unsafe { validate_owner(delegate, authority_info, remaining)? };

                let delegated_amount = source_account
                    .delegated_amount()
                    .checked_sub(amount)
                    .ok_or(TokenError::InsufficientFunds)?;
                source_account.set_delegated_amount(delegated_amount);

                if delegated_amount == 0 {
                    source_account.clear_delegate();
                }
            }
            _ => {
                // SAFETY: `authority_info` is not currently borrowed.
                unsafe { validate_owner(&source_account.owner, authority_info, remaining)? };
            }
        }
    }

    // Updates the source account and mint supply.

    if unlikely(amount == 0) {
        check_account_owner(source_account_info)?;
        check_account_owner(mint_info)?;
    } else {
        source_account.set_amount(updated_source_amount);
        // Note: The amount of a token account is always within the range of the
        // mint supply (`u64`).
        mint.set_supply(mint.supply() - amount);
    }

    Ok(())
}