solmail_program/instructions/credits/

withdraw.rs

use pinocchio::{
    account_info::AccountInfo,
    program_error::ProgramError,
    pubkey::{find_program_address, Pubkey},
    ProgramResult,
};

use crate::{
    constants::{CREDITS_SEED, CREDITS_VAULT_SOL_SEED},
    error::SolMailError,
    state::credits::UserCredits,
};

/// Withdraw unused credits
///
/// Accounts:
/// 0. `[signer, writable]` User - credits owner
/// 1. `[writable]` User credits account (PDA)
/// 2. `[writable]` Credits vault (PDA)
/// 3. `[]` System program
///
/// Data:
/// - amount: u64 (8 bytes)
/// - is_usdc: bool (1 byte)
pub fn process(program_id: &Pubkey, accounts: &[AccountInfo], data: &[u8]) -> ProgramResult {
    // Parse instruction data
    if data.len() < 9 {
        return Err(ProgramError::InvalidInstructionData);
    }

    let amount = u64::from_le_bytes(data[0..8].try_into().unwrap());
    let is_usdc = data[8] != 0;

    // Parse accounts
    let [user, user_credits, credits_vault, _system_program] = accounts else {
        return Err(ProgramError::NotEnoughAccountKeys);
    };

    // Verify user is signer
    if !user.is_signer() {
        return Err(SolMailError::MissingRequiredSignature.into());
    }

    // Derive and verify user credits PDA
    let (credits_pda, _) =
        find_program_address(&[CREDITS_SEED, user.key().as_ref()], program_id);

    if user_credits.key() != &credits_pda {
        return Err(SolMailError::InvalidPda.into());
    }

    // Derive and verify credits vault PDA
    let (vault_pda, _vault_bump) =
        find_program_address(&[CREDITS_VAULT_SOL_SEED], program_id);

    if credits_vault.key() != &vault_pda {
        return Err(SolMailError::InvalidPda.into());
    }

    // Update user credits balance
    let credits_data = unsafe { user_credits.borrow_mut_data_unchecked() };
    let credits = UserCredits::from_bytes_mut(credits_data)?;

    // Verify owner matches
    if credits.owner != user.key().as_ref() {
        return Err(SolMailError::InvalidPayer.into());
    }

    // Deduct credits
    if is_usdc {
        credits.sub_usdc(amount)?;
    } else {
        credits.sub_sol(amount)?;
    }

    // Transfer SOL from vault to user (if SOL withdrawal)
    if !is_usdc {
        let vault_balance = credits_vault.lamports();
        if vault_balance < amount {
            return Err(SolMailError::InsufficientFunds.into());
        }
        unsafe {
            *credits_vault.borrow_mut_lamports_unchecked() -= amount;
            *user.borrow_mut_lamports_unchecked() += amount;
        }
    }
    // Note: USDC transfers would use pinocchio_token here

    Ok(())
}