Fees are now paid in the same mint as the intent

Author: jeffyanta

go.mod

@@ -6,7 +6,7 @@ require (
 	filippo.io/edwards25519 v1.1.0
 	github.com/aws/aws-sdk-go-v2 v0.17.0
 	github.com/bits-and-blooms/bloom/v3 v3.1.0
-	github.com/code-payments/code-protobuf-api v1.19.1-0.20250929133100-a1ab7623b991
+	github.com/code-payments/code-protobuf-api v1.19.1-0.20251002160322-79d89fadd0fe
 	github.com/code-payments/code-vm-indexer v0.1.11-0.20241028132209-23031e814fba
 	github.com/emirpasic/gods v1.12.0
 	github.com/envoyproxy/protoc-gen-validate v1.2.1

go.sum

@@ -80,8 +80,8 @@ github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnht
 github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
 github.com/cockroachdb/apd v1.1.0 h1:3LFP3629v+1aKXU5Q37mxmRxX/pIu1nijXydLShEq5I=
 github.com/cockroachdb/apd v1.1.0/go.mod h1:8Sl8LxpKi29FqWXR16WEFZRNSz3SoPzUzeMeY4+DwBQ=
-github.com/code-payments/code-protobuf-api v1.19.1-0.20250929133100-a1ab7623b991 h1:PHF+Z13T/RSzXygGLaDhl1ELArncjDnqWYCtlcLjdgw=
-github.com/code-payments/code-protobuf-api v1.19.1-0.20250929133100-a1ab7623b991/go.mod h1:fl4xu32MeNpGZR3wFhwEeKO0qVDuxYBNkqnvuADt6cA=
+github.com/code-payments/code-protobuf-api v1.19.1-0.20251002160322-79d89fadd0fe h1:f/jZbdX74ZNSRY9O+KRPNr3Cr3ukserXuImtsVzq+no=
+github.com/code-payments/code-protobuf-api v1.19.1-0.20251002160322-79d89fadd0fe/go.mod h1:fl4xu32MeNpGZR3wFhwEeKO0qVDuxYBNkqnvuADt6cA=
 github.com/code-payments/code-vm-indexer v0.1.11-0.20241028132209-23031e814fba h1:Bkp+gmeb6Y2PWXfkSCTMBGWkb2P1BujRDSjWeI+0j5I=
 github.com/code-payments/code-vm-indexer v0.1.11-0.20241028132209-23031e814fba/go.mod h1:jSiifpiBpyBQ8q2R0MGEbkSgWC6sbdRTyDBntmW+j1E=
 github.com/containerd/continuity v0.0.0-20190827140505-75bee3e2ccb6 h1:NmTXa/uVnDyp0TY5MKi197+3HWcnYWfnHGyaFthlnGw=

pkg/code/currency/validation.go

@@ -5,57 +5,15 @@ import (
 	"math"
 	"time"
 
-	"github.com/pkg/errors"
-
 	transactionpb "github.com/code-payments/code-protobuf-api/generated/go/transaction/v2"
 
 	"github.com/code-payments/code-server/pkg/code/common"
 	code_data "github.com/code-payments/code-server/pkg/code/data"
 	"github.com/code-payments/code-server/pkg/code/data/currency"
 	currency_lib "github.com/code-payments/code-server/pkg/currency"
-	"github.com/code-payments/code-server/pkg/database/query"
 	"github.com/code-payments/code-server/pkg/solana/currencycreator"
 )
 
-// GetPotentialClientCoreMintExchangeRates gets a set of fiat exchange rates that
-// a client attempting to maintain a latest state could have fetched from the
-// currency server for the core mint.
-func GetPotentialClientCoreMintExchangeRates(ctx context.Context, data code_data.Provider, code currency_lib.Code) ([]*currency.ExchangeRateRecord, error) {
-	exchangeRecords, err := data.GetExchangeRateHistory(
-		ctx,
-		code,
-		query.WithStartTime(time.Now().Add(-30*time.Minute)), // Give enough leeway to allow for 15 minute old rates
-		query.WithEndTime(time.Now().Add(time.Minute)),       // Ensure we pick up recent exchange rates
-		query.WithLimit(32),                   // Try to pick up all records
-		query.WithDirection(query.Descending), // Optimize for most recent records first
-	)
-	if err != nil && err != currency.ErrNotFound {
-		return nil, err
-	}
-
-	// To handle cases where the exchange rate worker might be down, try
-	// loading the latest rate as clients would have and add it to valid
-	// set of comparable records.
-	latestExchangeRecord, err := data.GetExchangeRate(
-		ctx,
-		code,
-		GetLatestExchangeRateTime(),
-	)
-	if err != nil && err != currency.ErrNotFound {
-		return nil, err
-	}
-
-	if latestExchangeRecord != nil {
-		exchangeRecords = append(exchangeRecords, latestExchangeRecord)
-	}
-
-	// This is bad, and means we can't query for any records
-	if len(exchangeRecords) == 0 {
-		return nil, errors.Errorf("found no exchange records for %s currency", code)
-	}
-	return exchangeRecords, nil
-}
-
 // ValidateClientExchangeData validates proto exchange data provided by a client
 func ValidateClientExchangeData(ctx context.Context, data code_data.Provider, proto *transactionpb.ExchangeData) (bool, string, error) {
 	mint, err := common.GetBackwardsCompatMint(proto.Mint)

pkg/code/server/transaction/action_handler.go

@@ -233,7 +233,7 @@ func NewNoPrivacyTransferActionHandler(ctx context.Context, data code_data.Provi
 	}, nil
 }
 
-func NewFeePaymentActionHandler(ctx context.Context, data code_data.Provider, protoAction *transactionpb.FeePaymentAction, feeCollector *common.Account) (CreateActionHandler, error) {
+func NewFeePaymentActionHandler(ctx context.Context, data code_data.Provider, protoAction *transactionpb.FeePaymentAction, feeCollectorOwner *common.Account) (CreateActionHandler, error) {
 	mint, err := common.GetBackwardsCompatMint(protoAction.Mint)
 	if err != nil {
 		return nil, err
@@ -254,9 +254,14 @@ func NewFeePaymentActionHandler(ctx context.Context, data code_data.Provider, pr
 		return nil, err
 	}
 
+	destination, err := feeCollectorOwner.ToAssociatedTokenAccount(mint)
+	if err != nil {
+		return nil, err
+	}
+
 	return &NoPrivacyTransferActionHandler{
 		source:      source,
-		destination: feeCollector,
+		destination: destination,
 		amount:      protoAction.Amount,
 		feeType:     protoAction.Type,
 	}, nil

pkg/code/server/transaction/config.go

@@ -21,7 +21,7 @@ const (
 	ClientReceiveTimeoutConfigEnvName = envConfigPrefix + "CLIENT_RECEIVE_TIMEOUT"
 	defaultClientReceiveTimeout       = time.Second
 
-	FeeCollectorTokenPublicKeyConfigEnvName = envConfigPrefix + "FEE_COLLECTOR_TOKEN_PUBLIC_KEY"
+	FeeCollectorOwnerPublicKeyConfigEnvName = envConfigPrefix + "FEE_COLLECTOR_OWNER_PUBLIC_KEY"
 	defaultFeeCollectorPublicKey            = "invalid" // Ensure something valid is set
 
 	CreateOnSendWithdrawalUsdFeeConfigEnvName = envConfigPrefix + "CREATE_ON_SEND_WITHDRAWAL_USD_FEE"
@@ -44,7 +44,7 @@ type conf struct {
 	disableBlockchainChecks      config.Bool // To avoid blockchain checks during testing
 	submitIntentTimeout          config.Duration
 	clientReceiveTimeout         config.Duration
-	feeCollectorTokenPublicKey   config.String
+	feeCollectorOwnerPublicKey   config.String
 	createOnSendWithdrawalUsdFee config.Float64
 	enableAirdrops               config.Bool
 	airdropperOwnerPublicKey     config.String
@@ -64,7 +64,7 @@ func WithEnvConfigs() ConfigProvider {
 			disableBlockchainChecks:      wrapper.NewBoolConfig(memory.NewConfig(false), false),
 			submitIntentTimeout:          env.NewDurationConfig(SubmitIntentTimeoutConfigEnvName, defaultSubmitIntentTimeout),
 			clientReceiveTimeout:         env.NewDurationConfig(ClientReceiveTimeoutConfigEnvName, defaultClientReceiveTimeout),
-			feeCollectorTokenPublicKey:   env.NewStringConfig(FeeCollectorTokenPublicKeyConfigEnvName, defaultFeeCollectorPublicKey),
+			feeCollectorOwnerPublicKey:   env.NewStringConfig(FeeCollectorOwnerPublicKeyConfigEnvName, defaultFeeCollectorPublicKey),
 			createOnSendWithdrawalUsdFee: env.NewFloat64Config(CreateOnSendWithdrawalUsdFeeConfigEnvName, defaultCreateOnSendWithdrawalUsdFee),
 			enableAirdrops:               env.NewBoolConfig(EnableAirdropsConfigEnvName, defaultEnableAirdrops),
 			airdropperOwnerPublicKey:     env.NewStringConfig(AirdropperOwnerPublicKeyEnvName, defaultAirdropperOwnerPublicKey),
@@ -79,7 +79,7 @@ type testOverrides struct {
 	enableAmlChecks            bool
 	enableAirdrops             bool
 	clientReceiveTimeout       time.Duration
-	feeCollectorTokenPublicKey string
+	feeCollectorOwnerPublicKey string
 }
 
 func withManualTestOverrides(overrides *testOverrides) ConfigProvider {
@@ -91,7 +91,7 @@ func withManualTestOverrides(overrides *testOverrides) ConfigProvider {
 			disableBlockchainChecks:      wrapper.NewBoolConfig(memory.NewConfig(true), true),
 			submitIntentTimeout:          wrapper.NewDurationConfig(memory.NewConfig(defaultSubmitIntentTimeout), defaultSubmitIntentTimeout),
 			clientReceiveTimeout:         wrapper.NewDurationConfig(memory.NewConfig(overrides.clientReceiveTimeout), defaultClientReceiveTimeout),
-			feeCollectorTokenPublicKey:   wrapper.NewStringConfig(memory.NewConfig(overrides.feeCollectorTokenPublicKey), defaultFeeCollectorPublicKey),
+			feeCollectorOwnerPublicKey:   wrapper.NewStringConfig(memory.NewConfig(overrides.feeCollectorOwnerPublicKey), defaultFeeCollectorPublicKey),
 			createOnSendWithdrawalUsdFee: wrapper.NewFloat64Config(memory.NewConfig(defaultCreateOnSendWithdrawalUsdFee), defaultCreateOnSendWithdrawalUsdFee),
 			enableAirdrops:               wrapper.NewBoolConfig(memory.NewConfig(overrides.enableAirdrops), false),
 			airdropperOwnerPublicKey:     wrapper.NewStringConfig(memory.NewConfig(defaultAirdropperOwnerPublicKey), defaultAirdropperOwnerPublicKey),

pkg/code/server/transaction/intent_handler.go

@@ -521,44 +521,27 @@ func (h *SendPublicPaymentIntentHandler) AllowCreation(ctx context.Context, inte
 	}
 
 	//
-	// Part 3: Exchange data validation
+	// Part 3: Account validation to determine if it's managed by Code
 	//
 
-	if err := validateExchangeDataWithinIntent(ctx, h.data, typedMetadata.Mint, typedMetadata.ExchangeData); err != nil {
+	err = validateAllUserAccountsManagedByCode(ctx, initiatorAccounts)
+	if err != nil {
 		return err
 	}
 
 	//
-	// Part 4: Local simulation
+	// Part 4: Exchange data validation
 	//
 
-	simResult, err := LocalSimulation(ctx, h.data, actions)
-	if err != nil {
+	if err := validateExchangeDataWithinIntent(ctx, h.data, typedMetadata.Mint, typedMetadata.ExchangeData); err != nil {
 		return err
 	}
 
-	// Fee payments always operate against the core mint, so we need to add relevant
-	// core mint initiator records
-	if simResult.HasAnyFeePayments() && !common.IsCoreMint(intentMintAccount) {
-		initiatorAccountsByType, ok := initiatorAccountsByMintAndType[common.CoreMintAccount.PublicKey().ToBase58()]
-		if !ok {
-			return errors.New("initiator core mint accounts don't exist")
-		}
-		primaryAccountRecords, ok := initiatorAccountsByType[commonpb.AccountType_PRIMARY]
-		if !ok {
-			return errors.New("initiator core mint primary account doesn't exist")
-		}
-		for _, records := range primaryAccountRecords {
-			initiatorAccounts = append(initiatorAccounts, records)
-			initiatorAccountsByVault[records.General.TokenAccount] = records
-		}
-	}
-
 	//
-	// Part 5: Account validation to determine if it's managed by Code
+	// Part 5: Local simulation
 	//
 
-	err = validateAllUserAccountsManagedByCode(ctx, initiatorAccounts)
+	simResult, err := LocalSimulation(ctx, h.data, actions)
 	if err != nil {
 		return err
 	}
@@ -724,7 +707,7 @@ func (h *SendPublicPaymentIntentHandler) validateActions(
 				return nil
 			}
 
-			// Check whether the destination account is a core mint token account that's
+			// Check whether the destination account is a token account of the same mint that's
 			// been created on the blockchain. If not, a fee is required
 			err = validateExternalTokenAccountWithinIntent(ctx, h.data, destination, intentMint)
 			switch err {
@@ -756,7 +739,7 @@ func (h *SendPublicPaymentIntentHandler) validateActions(
 
 	//
 	// Part 4.1: Check destination account is paid exact quark amount from the deposit account
-	//           minus any fees if we're operating against the core mint
+	//           minus any fees
 	//
 
 	expectedDestinationPayment := int64(metadata.ExchangeData.Quarks)
@@ -768,9 +751,7 @@ func (h *SendPublicPaymentIntentHandler) validateActions(
 		return NewIntentValidationError("expected at most 1 fee payment")
 	}
 	for _, feePayment := range feePayments {
-		if common.IsCoreMint(intentMint) {
-			expectedDestinationPayment += feePayment.DeltaQuarks
-		}
+		expectedDestinationPayment += feePayment.DeltaQuarks
 	}
 
 	destinationSimulation, ok := simResult.SimulationsByAccount[destination.PublicKey().ToBase58()]
@@ -1584,8 +1565,6 @@ func validateMoneyMovementActionUserAccounts(
 				}
 			}
 		case *transactionpb.Action_FeePayment:
-			// Fee payments always come from the core mint primary account
-
 			mint, err = common.GetBackwardsCompatMint(typedAction.FeePayment.Mint)
 			if err != nil {
 				return err
@@ -1602,8 +1581,8 @@ func validateMoneyMovementActionUserAccounts(
 			}
 
 			sourceAccountInfo, ok := initiatorAccountsByVault[source.PublicKey().ToBase58()]
-			if !ok || sourceAccountInfo.General.AccountType != commonpb.AccountType_PRIMARY || sourceAccountInfo.General.MintAccount != common.CoreMintAccount.PublicKey().ToBase58() {
-				return NewActionValidationError(action, "source account must be the core mint primary account")
+			if !ok || sourceAccountInfo.General.AccountType != commonpb.AccountType_PRIMARY {
+				return NewActionValidationError(action, "source account must be the PRMARY account")
 			}
 		default:
 			continue
@@ -1760,11 +1739,6 @@ func validateFeePayments(
 		return err
 	}
 
-	// todo: Probably not always going to be the case, but add a strict validation to start
-	if !common.IsCoreMint(mintAccount) {
-		return NewActionValidationError(feePayment.Action, "fee payment must be made in core mint")
-	}
-
 	if feePaymentAction.Type != expectedFeeType {
 		return NewActionValidationErrorf(feePayment.Action, "expected a %s fee payment", expectedFeeType.String())
 	}
@@ -1783,23 +1757,20 @@ func validateFeePayments(
 	}
 	feeAmount = -feeAmount // Because it's coming out of a user account in this simulation
 
-	var foundUsdExchangeRecord bool
-	usdExchangeRecords, err := currency_util.GetPotentialClientCoreMintExchangeRates(ctx, data, currency_lib.USD)
+	mintQuarksPerUnit := common.GetMintQuarksPerUnit(mintAccount)
+	unitsOfMint := float64(feeAmount) / float64(mintQuarksPerUnit)
+
+	isValid, _, err := currency_util.ValidateClientExchangeData(ctx, data, &transactionpb.ExchangeData{
+		Currency:     string(currency_lib.USD),
+		NativeAmount: expectedUsdValue,
+		ExchangeRate: expectedUsdValue / unitsOfMint,
+		Quarks:       uint64(feeAmount),
+		Mint:         mintAccount.ToProto(),
+	})
 	if err != nil {
 		return err
-	}
-	for _, exchangeRecord := range usdExchangeRecords {
-		usdValue := exchangeRecord.Rate * float64(feeAmount) / float64(common.CoreMintQuarksPerUnit)
-
-		// Allow for some small margin of error
-		if usdValue > expectedUsdValue-0.0001 && usdValue < expectedUsdValue+0.0001 {
-			foundUsdExchangeRecord = true
-			break
-		}
-	}
-
-	if !foundUsdExchangeRecord {
-		return NewActionValidationErrorf(feePayment.Action, "%s fee payment amount must be $%.2f USD", expectedFeeType.String(), expectedUsdValue)
+	} else if !isValid {
+		return NewActionValidationErrorf(feePayment.Action, "%s fee payment amount must be %.2f USD", expectedFeeType.String(), expectedUsdValue)
 	}
 
 	return nil
@@ -1963,7 +1934,6 @@ func validateTimelockUnlockStateDoesntExist(ctx context.Context, data code_data.
 
 func validateIntentAndActionMintsMatch(intentMint *common.Account, actions []*transactionpb.Action) error {
 	for _, action := range actions {
-		var forceCoreMint bool
 		var actionMint *common.Account
 		var err error
 		switch typed := action.Type.(type) {
@@ -1974,23 +1944,16 @@ func validateIntentAndActionMintsMatch(intentMint *common.Account, actions []*tr
 		case *transactionpb.Action_NoPrivacyWithdraw:
 			actionMint, err = common.GetBackwardsCompatMint(typed.NoPrivacyWithdraw.Mint)
 		case *transactionpb.Action_FeePayment:
-			forceCoreMint = true // Fee payments are an exception, since they always operate against the core mint
 			actionMint, err = common.GetBackwardsCompatMint(typed.FeePayment.Mint)
 		default:
 			return errors.New("unsupported action for mint extraction")
 		}
-
 		if err != nil {
 			return err
 		}
-		if forceCoreMint {
-			if !common.IsCoreMint(actionMint) {
-				return NewActionValidationErrorf(action, "mint must be %s", common.CoreMintAccount.PublicKey().ToBase58())
-			}
-		} else {
-			if !bytes.Equal(intentMint.PublicKey().ToBytes(), actionMint.PublicKey().ToBytes()) {
-				return NewActionValidationErrorf(action, "mint must be %s", intentMint.PublicKey().ToBase58())
-			}
+
+		if !bytes.Equal(intentMint.PublicKey().ToBytes(), actionMint.PublicKey().ToBytes()) {
+			return NewActionValidationErrorf(action, "mint must be %s", intentMint.PublicKey().ToBase58())
 		}
 	}
 	return nil

pkg/code/server/transaction/server.go

@@ -87,7 +87,7 @@ func NewTransactionServer(
 		localAccountLocks: make(map[string]*sync.Mutex),
 	}
 
-	s.feeCollector, err = common.NewAccountFromPublicKeyString(s.conf.feeCollectorTokenPublicKey.Get(ctx))
+	s.feeCollector, err = common.NewAccountFromPublicKeyString(s.conf.feeCollectorOwnerPublicKey.Get(ctx))
 	if err != nil {
 		return nil, err
 	}