Skip to content

CloseAccount spec corrections (non-multisig) #149

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
dkcumming merged 4 commits into from
Jan 14, 2026
Merged

CloseAccount spec corrections (non-multisig) #149

dkcumming merged 4 commits into from
Jan 14, 2026

Conversation

@dkcumming
Copy link
Collaborator

@dkcumming dkcumming commented Jan 10, 2026
edited
Loading

Adds guard on postcondition check for owner, lamports, and data_len behind a feature flag, specifically target_os = "solana" and target_arch = "bpf". This means that CloseAccount now passes for non-multisig.

However this proof passing is slightly limited in strength since it does not check that the data, lamports, and owner field are zeroed when close_unchecked is called in the implementation.

dkcumming and others added 4 commits January 10, 2026 22:51
@dkcumming
AccountInfo::{data_len,lamports} assertions to cfg block in postcon…
6809365 
…dition

These assertions are checking the effects of `close_unchecked` which
calls a syscall `sol_memset_`. Currently our target is not `solana` so
we are not compiling these syscalls calls, nor their bodies.
@dkcumming
Progagating changes to SPL-Token
38c5bf1
@dkcumming
Added check that src AccountInfo owner is zeroed by CloseAccount
439a0d7
@dkcumming
Merge branch 'proofs' into dc/close-account-correction
796a579
@dkcumming dkcumming marked this pull request as ready for review January 13, 2026 11:02
Stevengre
Stevengre approved these changes Jan 13, 2026
View reviewed changes
Copy link

@Stevengre Stevengre left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@dkcumming dkcumming merged commit c7a8a69 into proofs Jan 14, 2026
1 check passed
@dkcumming dkcumming mentioned this pull request Jan 14, 2026
Draft
dkcumming added a commit that referenced this pull request Jan 21, 2026
@dkcumming
CloseAccount spec corrections (non-multisig) (#149)
259b79c 
Adds guard on postcondition check for `owner`, `lamports`, and
`data_len` behind a feature flag, specifically `target_os = "solana"`
and `target_arch = "bpf"`. This means that `CloseAccount` now passes for
non-multisig.

However this proof passing is slightly limited in strength since it does
not check that the `data`, `lamports`, and `owner` field are zeroed when
`close_unchecked` is called in the implementation.
@jberthold jberthold deleted the dc/close-account-correction branch January 22, 2026 03:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Stevengre Stevengre Stevengre approved these changes

@jberthold jberthold Awaiting requested review from jberthold

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@dkcumming @Stevengre