Add PDA seed automation and runtime validation

Author: DaviRain-Su

.gitignore

@@ -1,6 +1,7 @@
 .vscode/
 .direnv/
 .envrc
+.claude/
 
 solana-zig/
 zig-cache/

anchor/src/context.zig

@@ -21,6 +21,7 @@
 
 const std = @import("std");
 const seeds_mod = @import("seeds.zig");
+const pda_mod = @import("pda.zig");
 const sol = @import("solana_program_sdk");
 
 // Import from parent SDK
@@ -56,6 +57,28 @@ fn validateSeedAccountRef(comptime Accounts: type, seed: SeedSpec) void {
     }
 }
 
+/// Validate seedField references against account DataType
+fn validateSeedFieldRef(comptime DataType: type, comptime field_name: []const u8) void {
+    if (!@hasField(DataType, field_name)) {
+        @compileError("seedField references unknown data field: " ++ field_name ++ " in " ++ @typeName(DataType));
+    }
+
+    // Verify the field type is valid for seeds (PublicKey or byte array)
+    const field_type = @TypeOf(@field(@as(DataType, undefined), field_name));
+    const is_valid_type = comptime blk: {
+        if (field_type == PublicKey) break :blk true;
+        const info = @typeInfo(field_type);
+        if (info == .array) {
+            if (info.array.child == u8) break :blk true;
+        }
+        break :blk false;
+    };
+
+    if (!is_valid_type) {
+        @compileError("seedField '" ++ field_name ++ "' must be PublicKey or [N]u8, found " ++ @typeName(field_type));
+    }
+}
+
 fn validateAccountRefs(comptime Accounts: type) void {
     const fields = @typeInfo(Accounts).@"struct".fields;
 
@@ -93,6 +116,15 @@ fn validateAccountRefs(comptime Accounts: type) void {
         if (FieldType.SEEDS) |seeds| {
             inline for (seeds) |seed| {
                 validateSeedAccountRef(Accounts, seed);
+                // Validate seedField references against account DataType
+                switch (seed) {
+                    .field => |field_name| {
+                        if (@hasDecl(FieldType, "DataType")) {
+                            validateSeedFieldRef(FieldType.DataType, field_name);
+                        }
+                    },
+                    else => {},
+                }
             }
         }
         if (FieldType.SEEDS_PROGRAM) |seed| {
@@ -471,6 +503,176 @@ pub fn loadAccountsWithPda(
     return .{ .accounts = accounts, .bumps = bumps };
 }
 
+/// Load accounts with automatic PDA seed resolution for all seed types
+///
+/// Unlike `loadAccountsWithPda` which only handles literal-only seeds,
+/// this function automatically resolves seedAccount and seedField references
+/// by first loading all accounts, then resolving seeds and validating PDAs.
+///
+/// Seed resolution order:
+/// 1. Load all accounts (without PDA validation)
+/// 2. For each account with seeds:
+///    - Resolve literal seeds directly
+///    - Resolve seedAccount by getting the referenced account's public key
+///    - Resolve seedField by reading the field from the account's data
+///    - Resolve seedBump from previously validated PDAs
+/// 3. Validate PDA addresses and store bumps
+/// 4. Run Phase 3 constraint validation
+///
+/// Note: seedField resolution requires the referenced data to already be deserialized,
+/// which means the account must be loaded before the field can be accessed.
+///
+/// Example:
+/// ```zig
+/// const result = try loadAccountsWithDependencies(MyAccounts, &program_id, account_infos);
+/// const accounts = result.accounts;
+/// const bumps = result.bumps;
+/// ```
+pub fn loadAccountsWithDependencies(
+    comptime Accounts: type,
+    program_id: *const PublicKey,
+    infos: []const AccountInfo,
+) !struct { accounts: Accounts, bumps: Bumps } {
+    const fields = @typeInfo(Accounts).@"struct".fields;
+
+    if (infos.len < fields.len) {
+        return error.AccountNotEnoughAccountKeys;
+    }
+
+    // Phase 1: Load all accounts without PDA validation
+    var accounts: Accounts = undefined;
+
+    inline for (fields, 0..) |field, i| {
+        const FieldType = field.type;
+        const info = &infos[i];
+
+        if (@hasDecl(FieldType, "load")) {
+            @field(accounts, field.name) = try FieldType.load(info);
+        } else {
+            @field(accounts, field.name) = info;
+        }
+    }
+
+    // Phase 2: Resolve seeds and validate PDAs
+    var bumps = Bumps{};
+
+    inline for (fields, 0..) |field, i| {
+        const FieldType = field.type;
+        const info = &infos[i];
+
+        // Skip if no PDA seeds
+        if (!@hasDecl(FieldType, "HAS_SEEDS") or !FieldType.HAS_SEEDS) continue;
+        if (!@hasDecl(FieldType, "SEEDS")) continue;
+
+        const seed_specs = FieldType.SEEDS orelse continue;
+
+        // If all seeds are literals, we can resolve at comptime
+        if (seeds_mod.areAllLiteralSeeds(seed_specs)) {
+            const resolved_seeds = seeds_mod.resolveComptimeSeeds(seed_specs);
+
+            if (@hasDecl(FieldType, "loadWithPda")) {
+                const result = try FieldType.loadWithPda(info, resolved_seeds, program_id);
+                @field(accounts, field.name) = result.account;
+                bumps.set(field.name, result.bump);
+            }
+        } else {
+            // Runtime seed resolution required
+            var seed_buffer = seeds_mod.SeedBuffer{};
+
+            inline for (seed_specs) |spec| {
+                switch (spec) {
+                    .literal => |lit| {
+                        try seeds_mod.appendSeed(&seed_buffer, lit);
+                    },
+                    .account => |account_name| {
+                        // Get public key from referenced account
+                        const ref_account = @field(accounts, account_name);
+                        const RefType = @TypeOf(ref_account);
+
+                        // Check if it's an Account wrapper with key() method
+                        if (@hasDecl(RefType, "key")) {
+                            const key_ptr = ref_account.key();
+                            try seeds_mod.appendSeed(&seed_buffer, &key_ptr.*.bytes);
+                        } else {
+                            // Handle AccountInfo or *AccountInfo
+                            const ActualType = if (@typeInfo(RefType) == .pointer)
+                                @typeInfo(RefType).pointer.child
+                            else
+                                RefType;
+
+                            if (@hasField(ActualType, "id")) {
+                                // AccountInfo has id field (which is *PublicKey)
+                                const info_ptr = if (@typeInfo(RefType) == .pointer)
+                                    ref_account
+                                else
+                                    &ref_account;
+                                try seeds_mod.appendSeed(&seed_buffer, &info_ptr.id.*.bytes);
+                            } else {
+                                return error.AccountNotFound;
+                            }
+                        }
+                    },
+                    .field => |field_name| {
+                        // Get field value from account data
+                        const account = @field(accounts, field.name);
+                        if (@hasDecl(@TypeOf(account), "data")) {
+                            const data = account.data;
+                            const DataType = @TypeOf(data);
+                            const ActualDataType = if (@typeInfo(DataType) == .pointer)
+                                @typeInfo(DataType).pointer.child
+                            else
+                                DataType;
+
+                            if (@hasField(ActualDataType, field_name)) {
+                                const data_ptr = if (@typeInfo(DataType) == .pointer) &data.* else &data;
+                                const field_ptr = &@field(data_ptr.*, field_name);
+                                const SeedFieldType = @TypeOf(field_ptr.*);
+
+                                if (SeedFieldType == PublicKey) {
+                                    try seeds_mod.appendSeed(&seed_buffer, &field_ptr.*.bytes);
+                                } else {
+                                    const seed_field_info = @typeInfo(SeedFieldType);
+                                    if (seed_field_info == .array and seed_field_info.array.child == u8) {
+                                        try seeds_mod.appendSeed(&seed_buffer, field_ptr.*);
+                                    } else {
+                                        return error.FieldNotFound;
+                                    }
+                                }
+                            } else {
+                                return error.FieldNotFound;
+                            }
+                        } else {
+                            return error.FieldNotFound;
+                        }
+                    },
+                    .bump => |bump_name| {
+                        // Get bump from previously validated PDA
+                        const bump_value = bumps.get(bump_name) orelse return error.BumpNotFound;
+                        try seeds_mod.appendBumpSeed(&seed_buffer, bump_value);
+                    },
+                }
+            }
+
+            // Validate PDA with resolved seeds using pda module
+            const bump_value = pda_mod.validatePdaRuntime(
+                info.id,
+                seed_buffer.asSlice(),
+                program_id,
+            ) catch {
+                return error.ConstraintSeeds;
+            };
+            bumps.set(field.name, bump_value);
+        }
+    }
+
+    try validateDuplicateMutableAccounts(Accounts, &accounts);
+
+    // Phase 3: Validate constraints after all accounts are loaded
+    try validatePhase3Constraints(Accounts, &accounts);
+
+    return .{ .accounts = accounts, .bumps = bumps };
+}
+
 fn validateDuplicateMutableAccounts(comptime Accounts: type, accounts: *const Accounts) !void {
     const fields = @typeInfo(Accounts).@"struct".fields;
 

anchor/src/pda.zig

@@ -126,6 +126,41 @@ pub fn derivePda(
     };
 }
 
+/// Validate PDA using runtime-resolved seeds (slice-based)
+///
+/// Use this when seeds are resolved at runtime (e.g., seedAccount, seedField).
+/// Unlike `validatePda`, this function accepts a slice of seed byte slices.
+///
+/// Example:
+/// ```zig
+/// var seed_buffer = SeedBuffer{};
+/// try seeds_mod.appendSeed(&seed_buffer, "counter");
+/// try seeds_mod.appendSeed(&seed_buffer, &authority_key.bytes);
+///
+/// const bump = try validatePdaRuntime(
+///     counter_account.key(),
+///     seed_buffer.asSlice(),
+///     program_id,
+/// );
+/// ```
+pub fn validatePdaRuntime(
+    account_key: *const PublicKey,
+    seeds: []const []const u8,
+    program_id: *const PublicKey,
+) PdaError!u8 {
+    // Use SDK's slice-based findProgramAddress
+    const pda = PublicKey.findProgramAddressSlice(seeds, program_id.*) catch {
+        return PdaError.DerivationFailed;
+    };
+
+    // Compare addresses
+    if (!account_key.equals(pda.address)) {
+        return PdaError.InvalidPda;
+    }
+
+    return pda.bump_seed[0];
+}
+
 /// Create a PDA address with known bump (no search)
 ///
 /// Use this when you already know the bump seed to avoid
@@ -252,3 +287,60 @@ test "validatePda with multiple seeds" {
 
     try std.testing.expectEqual(pda.bump_seed[0], bump);
 }
+
+test "validatePdaRuntime succeeds for valid PDA" {
+    const program_id = comptime PublicKey.comptimeFromBase58("BPFLoaderUpgradeab1e11111111111111111111111");
+
+    // Derive PDA using comptime seeds
+    const pda = try derivePda(.{"runtime_test"}, &program_id);
+
+    // Validate using runtime slice
+    const runtime_seeds: []const []const u8 = &.{"runtime_test"};
+    const bump = try validatePdaRuntime(&pda.address, runtime_seeds, &program_id);
+
+    try std.testing.expectEqual(pda.bump_seed[0], bump);
+}
+
+test "validatePdaRuntime with multiple seeds" {
+    const program_id = comptime PublicKey.comptimeFromBase58("BPFLoaderUpgradeab1e11111111111111111111111");
+    const authority = comptime PublicKey.comptimeFromBase58("TokenkegQfeZyiNwAJbNbGKPFXCWuBvf9Ss623VQ5DA");
+
+    // Derive PDA
+    const pda = try derivePda(.{ "counter", &authority.bytes }, &program_id);
+
+    // Validate using runtime slice (simulating seedAccount resolution)
+    const runtime_seeds: []const []const u8 = &.{ "counter", &authority.bytes };
+    const bump = try validatePdaRuntime(&pda.address, runtime_seeds, &program_id);
+
+    try std.testing.expectEqual(pda.bump_seed[0], bump);
+}
+
+test "validatePdaRuntime fails for wrong address" {
+    const program_id = comptime PublicKey.comptimeFromBase58("BPFLoaderUpgradeab1e11111111111111111111111");
+
+    // Use a random address that's not the PDA
+    var wrong_address = PublicKey.default();
+    wrong_address.bytes[0] = 0xFF;
+
+    const runtime_seeds: []const []const u8 = &.{"test_seed"};
+    const result = validatePdaRuntime(&wrong_address, runtime_seeds, &program_id);
+    try std.testing.expectError(PdaError.InvalidPda, result);
+}
+
+test "validatePdaRuntime with SeedBuffer" {
+    const program_id = comptime PublicKey.comptimeFromBase58("BPFLoaderUpgradeab1e11111111111111111111111");
+    const user = comptime PublicKey.comptimeFromBase58("TokenkegQfeZyiNwAJbNbGKPFXCWuBvf9Ss623VQ5DA");
+
+    // Derive PDA using comptime
+    const pda = try derivePda(.{ "user_data", &user.bytes }, &program_id);
+
+    // Build seeds using SeedBuffer (simulating runtime resolution)
+    var buffer = SeedBuffer{};
+    try seeds_mod.appendSeed(&buffer, "user_data");
+    try seeds_mod.appendSeed(&buffer, &user.bytes);
+
+    // Validate using buffer's slice
+    const bump = try validatePdaRuntime(&pda.address, buffer.asSlice(), &program_id);
+
+    try std.testing.expectEqual(pda.bump_seed[0], bump);
+}