paxosglobal · zpetersen-paxos · Oct 31, 2024 · Oct 31, 2024 · Oct 31, 2024
diff --git a/programs/minter-controller/src/instructions/add_minter.rs b/programs/minter-controller/src/instructions/add_minter.rs
@@ -9,6 +9,10 @@ pub struct AddMinter<'info> {
     #[account(mut)]
     pub payer: Signer<'info>,
 
+    //The admin signature prevents a minter from being accidentally created with an incorrect admin
+    #[account(mut)]
+    pub admin: Signer<'info>,
+
     #[account()]
     pub minter_authority: Signer<'info>,
 
@@ -19,19 +23,19 @@ pub struct AddMinter<'info> {
     #[account(
         init, 
         payer = payer, 
-        space = 8 + 32 + 32 + 32 + 33 + 8 + 8 + 8 + 8 + 1, //8 discriminator + 32 minter_authority + 32 mint account + 32 admin + 33 optional pending admin + 8 capacity + 8 tokens + 8 refill_per_second + 8 last_refill_time + 1 bump
+        space = 8 + Minter::INIT_SPACE,
         seeds = [b"minter", minter_authority.key().as_ref(), mint_account.key().as_ref()], 
         bump
     )]
     pub minter: Account<'info, Minter>,
     pub system_program: Program<'info, System>,
 }
 
-pub fn add_minter(ctx: Context<AddMinter>, capacity: u64, refill_per_second: u64, admin: Pubkey) -> Result<()> {
+pub fn add_minter(ctx: Context<AddMinter>, capacity: u64, refill_per_second: u64) -> Result<()> {
     ctx.accounts.minter.minter_authority = ctx.accounts.minter_authority.key();
     ctx.accounts.minter.mint_account = ctx.accounts.mint_account.key();
     ctx.accounts.minter.bump = ctx.bumps.minter;
-    ctx.accounts.minter.admin = admin;
+    ctx.accounts.minter.admin = ctx.accounts.admin.key();
     ctx.accounts.minter.pending_admin = None;
     ctx.accounts.minter.rate_limit.capacity = capacity;
     ctx.accounts.minter.rate_limit.refill_per_second = refill_per_second;
@@ -40,7 +44,7 @@ pub fn add_minter(ctx: Context<AddMinter>, capacity: u64, refill_per_second: u64
         mint_account: ctx.accounts.minter.mint_account, 
         capacity: capacity, 
         refill_per_second: refill_per_second, 
-        admin: admin
+        admin: ctx.accounts.minter.admin
     });
     Ok(())
 }

diff --git a/programs/minter-controller/src/instructions/add_whitelisted_address.rs b/programs/minter-controller/src/instructions/add_whitelisted_address.rs
@@ -36,7 +36,7 @@ pub struct AddWhitelistedAddress<'info> {
     #[account(
         init,
         payer = payer,
-        space = 8 + 32 + 32 + 32 + 1, ////8 discriminator + 32 minter_authority + 32 mint account + 32 to address + 1 bump
+        space = 8 + WhitelistedAddress::INIT_SPACE,
         seeds = [b"mint-whitelist", minter_authority.key().as_ref(), mint_account.key().as_ref(), to_address.key().as_ref()], 
         bump
     )]

diff --git a/programs/minter-controller/src/lib.rs b/programs/minter-controller/src/lib.rs
@@ -17,8 +17,8 @@ pub mod minter_controller {
         accept_admin_transfer::accept_admin_transfer(ctx)
     }
 
-    pub fn add_minter(ctx: Context<AddMinter>, capacity: u64, refill_per_second: u64, admin: Pubkey) -> Result<()> {
-        add_minter::add_minter(ctx, capacity, refill_per_second, admin)
+    pub fn add_minter(ctx: Context<AddMinter>, capacity: u64, refill_per_second: u64) -> Result<()> {
+        add_minter::add_minter(ctx, capacity, refill_per_second)
     }
 
     pub fn add_whitelisted_address(ctx: Context<AddWhitelistedAddress>) -> Result<()> {

diff --git a/programs/minter-controller/src/state/minter.rs b/programs/minter-controller/src/state/minter.rs
@@ -3,6 +3,7 @@ use {
 };
 
 #[account]
+#[derive(InitSpace)]
 pub struct Minter {
     pub minter_authority: Pubkey,
     pub mint_account: Pubkey,
@@ -13,6 +14,7 @@ pub struct Minter {
 }
 
 #[account]
+#[derive(InitSpace)]
 pub struct RateLimit {
     pub capacity: u64,
     pub remaining_amount: u64,

diff --git a/programs/minter-controller/src/state/whitelisted_address.rs b/programs/minter-controller/src/state/whitelisted_address.rs
@@ -3,6 +3,7 @@ use {
 };
 
 #[account]
+#[derive(InitSpace)]
 pub struct WhitelistedAddress{
     pub minter_authority: Pubkey,
     pub mint_account: Pubkey,

diff --git a/tests/minter_controller.ts b/tests/minter_controller.ts
@@ -174,14 +174,15 @@ describe('minter_controller', () => {
       let foundEvent = false
       try {
         const tx = await minterControllerProgram.methods
-          .addMinter(capacity, refillPerSecond, adminKeypair.publicKey)
+          .addMinter(capacity, refillPerSecond)
           .accounts({
             minter: minterPDA,
             payer: provider.wallet.publicKey,
             minterAuthority: minterAuthorityKeypair.publicKey,
-            mintAccount: mintPDA
+            mintAccount: mintPDA,
+            admin: adminKeypair.publicKey
           })
-          .signers([minterAuthorityKeypair])
+          .signers([minterAuthorityKeypair, adminKeypair])
           .rpc()
 
         const events = await getEvents(provider, minterControllerProgram, tx)
@@ -208,14 +209,15 @@ describe('minter_controller', () => {
 
     it('Can add second minter', async () => {
       await minterControllerProgram.methods
-        .addMinter(capacity, refillPerSecond, adminKeypair.publicKey)
+        .addMinter(capacity, refillPerSecond)
         .accounts({
           minter: minterPDA2,
           payer: provider.wallet.publicKey,
           minterAuthority: minterAuthorityKeypair2.publicKey,
-          mintAccount: mintPDA
+          mintAccount: mintPDA,
+          admin: adminKeypair.publicKey
         })
-        .signers([minterAuthorityKeypair2])
+        .signers([minterAuthorityKeypair2, adminKeypair])
         .rpc()
 
       expect(
@@ -234,14 +236,15 @@ describe('minter_controller', () => {
 
     it('Can add minter for second token', async () => {
       await minterControllerProgram.methods
-        .addMinter(capacity, refillPerSecond, adminKeypair.publicKey)
+        .addMinter(capacity, refillPerSecond)
         .accounts({
           minter: minterPDAToken2,
           payer: provider.wallet.publicKey,
           minterAuthority: minterAuthorityKeypair.publicKey,
-          mintAccount: mintPDAToken2
+          mintAccount: mintPDAToken2,
+          admin: adminKeypair.publicKey
         })
-        .signers([minterAuthorityKeypair])
+        .signers([minterAuthorityKeypair, adminKeypair])
         .rpc()
 
       expect(
@@ -254,14 +257,15 @@ describe('minter_controller', () => {
     it('Cannot add duplicate minter', async () => {
       try {
       await minterControllerProgram.methods
-        .addMinter(capacity, refillPerSecond, adminKeypair.publicKey)
+        .addMinter(capacity, refillPerSecond)
         .accounts({
           minter: minterPDA,
           payer: provider.wallet.publicKey,
           minterAuthority: minterAuthorityKeypair.publicKey,
-          mintAccount: mintPDA
+          mintAccount: mintPDA,
+          admin: adminKeypair.publicKey
         })
-        .signers([minterAuthorityKeypair])
+        .signers([minterAuthorityKeypair, adminKeypair])
         .rpc()
         assert.fail('Expected adding duplicate minter to fail')
 
@@ -270,36 +274,58 @@ describe('minter_controller', () => {
       }
     })
 
-    it('Cannot add minter without signature', async () => {
+    it('Cannot add minter without minterAuthority signature', async () => {
       try {
-        await minterControllerProgram.methods
-        .addMinter(capacity, refillPerSecond, adminKeypair.publicKey)
+        const tx = await minterControllerProgram.methods
+        .addMinter(capacity, refillPerSecond)
         .accounts({
           minter: badMinterPDA,
           payer: provider.wallet.publicKey,
           minterAuthority: badMinterAuthorityKeypair.publicKey,
-          mintAccount: mintPDA
+          mintAccount: mintPDA,
+          admin: adminKeypair.publicKey
         })
+        .signers([adminKeypair])
         .rpc();
 
         assert.fail('Should throw an error')
       } catch (err) {
         assert.isTrue(err.toString().includes('Missing signature for public key'))
       }
+    })
 
+    it('Cannot add minter without admin signature', async () => {
+      try {
+        await minterControllerProgram.methods
+        .addMinter(capacity, refillPerSecond)
+        .accounts({
+          minter: badMinterPDA,
+          payer: provider.wallet.publicKey,
+          minterAuthority: badMinterAuthorityKeypair.publicKey,
+          mintAccount: mintPDA,
+          admin: adminKeypair.publicKey
+        })
+        .signers([badMinterAuthorityKeypair])
+        .rpc();
+
+        assert.fail('Should throw an error')
+      } catch (err) {
+        assert.isTrue(err.toString().includes('Missing signature for public key'))
+      }
     })
 
     it('Cannot add minter with mismatched signature', async () => {
       try {
         await minterControllerProgram.methods
-          .addMinter(capacity, refillPerSecond, adminKeypair.publicKey)
+          .addMinter(capacity, refillPerSecond)
           .accounts({
             minter: badMinterPDA,
             payer: provider.wallet.publicKey,
             minterAuthority: badMinterAuthorityKeypair.publicKey,
-            mintAccount: mintPDA
+            mintAccount: mintPDA,
+            admin: adminKeypair.publicKey
           })
-          .signers([minterAuthorityKeypair])
+          .signers([minterAuthorityKeypair, adminKeypair])
           .rpc()
           assert.fail('Expected adding duplicate minter to fail')
       } catch (err) {