fix: MagicContext's data reset on restart

[taco-paco]

Summary

Fixes MagicContext reset on restart.

Compatibility

• No breaking changes
• Config change (describe):
• Migration needed (describe):

Testing

• tests (or explain)

Checklist

• docs updated (if needed)
• closes bug: MagicContext resets on restart #984

Summary by CodeRabbit

• Refactor

  • Funding now preserves existing account data and only creates accounts when missing, reducing accidental overwrites and improving reliability.
  • Funding context initialization is more robust and sets the correct owner for consistent behavior.

• Documentation

  • Added comprehensive project and committor-service documentation describing architecture, workflows, and developer guidance.

[github-actions]

Manual Deploy Available

You can trigger a manual deploy of this PR branch to testnet:

Deploy to Testnet 🚀

Alternative: Comment /deploy on this PR to trigger deployment directly.

⚠️ Note: Manual deploy requires authorization. Only authorized users can trigger deployments.

Comment updated automatically when the PR is synchronized.

[coderabbitai]

📝 Walkthrough

Walkthrough

The PR changes how the MAGIC_CONTEXT_PUBKEY account is funded and created in magicblock-api/src/fund_account.rs. fund_account_with_data now returns early if the target account already exists instead of overwriting it; when missing, it creates a new AccountSharedData. fund_magic_context introduces a CONTEXT_LAMPORTS constant (used instead of u64::MAX), replaces an unwrap with expect("magic context should have been created"), and explicitly sets the account owner on the created magic context. Function signatures are unchanged.

Assessment against linked issues

Objective	Addressed	Explanation
Prevent MagicContext from resetting on restart by preserving existing account state [#984]	✅

Out-of-scope changes

Code Change	Explanation
Added top-level documentation file CLAUDE.md (CLAUDE.md)	Project documentation addition; unrelated to fixing MagicContext account creation/reset behavior.
Added committor service documentation magicblock-committor-service/CLAUDE.md (magicblock-committor-service/CLAUDE.md)	Documentation for a separate service; not related to the MagicContext restart bug.

Suggested reviewers

• thlorenz
• bmuddha

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch fix/magic-context-reset

Tip

Try Coding Plans. Let us write the prompt for your AI agent so you can ship faster (with fewer bugs).
Share your feedback on Discord.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

magicblock-api/src/fund_account.rs (1)

25-39: 🧹 Nitpick | 🔵 Trivial

fund_account_with_data unconditionally zeros existing account data — the root cause of issue #984.

This function's "exists" branch (line 33) resets data to zeroes even for pre-existing accounts. The PR correctly bypasses it for MagicContext, but any future caller relying on data preservation for a sized account will hit the same trap. Consider either renaming the function to clarify it always resets data, or adding a preserve_data flag / a separate fund_account_preserve_data helper to prevent repeat bugs.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@magicblock-api/src/fund_account.rs` around lines 25 - 39, The function
fund_account_with_data currently overwrites existing account data by calling
set_data(vec![0; size]) in the exists branch (accountsdb.get_account ->
acc.set_data), which causes unintended zeroing; update this function to either
(A) accept a preserve_data: bool parameter and only call acc.set_data when
preserve_data is false or when the existing data length differs from size, or
(B) split into two helpers (fund_account_with_zeroed_data and
fund_account_preserve_data) and move the zeroing behavior into the former;
ensure callers of fund_account_with_data (and any tests) are updated to use the
appropriate new API and keep the insert_account call (accountsdb.insert_account)
unchanged.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@magicblock-api/src/fund_account.rs`:
- Around line 85-89: The AccountSharedData creation for the MagicContext uses
the system program as owner; update the owner argument in the
AccountSharedData::new call that uses CONTEXT_LAMPORTS and MagicContext::SIZE to
pass &magic_program::id() (the magic program ID) instead of &Default::default()
so the account owner matches the tests and the ephemeral vault account.

---

Outside diff comments:
In `@magicblock-api/src/fund_account.rs`:
- Around line 25-39: The function fund_account_with_data currently overwrites
existing account data by calling set_data(vec![0; size]) in the exists branch
(accountsdb.get_account -> acc.set_data), which causes unintended zeroing;
update this function to either (A) accept a preserve_data: bool parameter and
only call acc.set_data when preserve_data is false or when the existing data
length differs from size, or (B) split into two helpers
(fund_account_with_zeroed_data and fund_account_preserve_data) and move the
zeroing behavior into the former; ensure callers of fund_account_with_data (and
any tests) are updated to use the appropriate new API and keep the
insert_account call (accountsdb.insert_account) unchanged.

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@magicblock-api/src/fund_account.rs`:
- Line 82: The code currently calls .expect() in fund_magic_context which can
panic if insert_account failed (its Result was discarded with let _ = ...);
change fund_magic_context(accountsdb: &AccountsDb) to return ApiResult<()> (or
the crate's error type), stop discarding the Result from insert_account (use ?
to propagate errors), and replace the .expect("magic context should have been
created") retrieval with a fallible call that uses ? to return a proper error
instead of panicking; update callers to handle the ApiResult<()> accordingly
(references: function fund_magic_context, the earlier insert_account call, and
the retrieval after fund_account_with_data).

[bmuddha]

I meant performing an early return here, so that we don't modify existing account, for validator authority we ideally need a way to keep the balance intact, e.g. when an account is removed from accountsdb/closed the lamports should be refunded to validator keypair (as it acted as sponsor during account creation), but that's irrelevant to this task, and it's not like it's physically possible to exhaust u64::MAX lamports in any feasable amount of time.

[taco-paco]

Makes sense, done

[coderabbitai]

♻️ Duplicate comments (1)

magicblock-api/src/fund_account.rs (1)

78-85: ⚠️ Potential issue | 🟠 Major

.expect() in production code remains a MAJOR issue — changing from .unwrap() to .expect() is insufficient.

Although the .expect() is logically unreachable after the new fund_account_with_data (the account is guaranteed to exist), the panic is still a silent discard of any storage failure from insert_account on line 35. If that insert fails, get_account returns None and this panics at startup. The function should return ApiResult<()> and propagate errors.

As per coding guidelines: "Treat any usage of .unwrap() or .expect() in production Rust code as a MAJOR issue."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@magicblock-api/src/fund_account.rs` around lines 78 - 85, The code in
fund_account.rs panics via accountsdb.get_account(...).expect(...) which must be
replaced with proper error propagation: change the surrounding function (e.g.,
fund_account_with_data or its caller) to return ApiResult<()>, replace the
expect on accountsdb.get_account(&magic_program::MAGIC_CONTEXT_PUBKEY) with
pattern matching or .ok_or(...) to return a descriptive ApiError if the account
is missing, and handle the result of accountsdb.insert_account(...) by
propagating any insertion error instead of discarding it; update uses of
magic_context.set_delegated and set_owner accordingly after successful retrieval
and ensure failures return Err(...) rather than panicking.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Duplicate comments:
In `@magicblock-api/src/fund_account.rs`:
- Around line 78-85: The code in fund_account.rs panics via
accountsdb.get_account(...).expect(...) which must be replaced with proper error
propagation: change the surrounding function (e.g., fund_account_with_data or
its caller) to return ApiResult<()>, replace the expect on
accountsdb.get_account(&magic_program::MAGIC_CONTEXT_PUBKEY) with pattern
matching or .ok_or(...) to return a descriptive ApiError if the account is
missing, and handle the result of accountsdb.insert_account(...) by propagating
any insertion error instead of discarding it; update uses of
magic_context.set_delegated and set_owner accordingly after successful retrieval
and ensure failures return Err(...) rather than panicking.

---

ℹ️ Review info

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between c0fbbde and 8e85535.

📒 Files selected for processing (1)

• magicblock-api/src/fund_account.rs

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@magicblock-committor-service/CLAUDE.md`:
- Around line 24-31: The fenced code block in CLAUDE.md showing the
CommitDelivery tree is missing a language specifier; update the opening fence
(```) to include a language such as rust (e.g., ```rust) so the block has proper
syntax highlighting and consistency with other docs, ensuring only the opening
fence is changed and the block content (CommitDelivery, StateInArgs,
StateInBuffer, DiffInArgs, DiffInBuffer) remains untouched.
- Around line 10-16: The fenced code block showing the BaseTaskImpl hierarchy
lacks a language specifier; update the opening fence to include a language
(e.g., add "rust" so it becomes ```rust) so the block containing BaseTaskImpl
and its entries (Commit(CommitTask), Finalize(FinalizeTask),
Undelegate(UndelegateTask), BaseAction(BaseActionTask)) gets proper syntax
highlighting and consistent formatting.

---

ℹ️ Review info

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 8e85535 and 0f9e3d5.

📒 Files selected for processing (2)

• CLAUDE.md
• magicblock-committor-service/CLAUDE.md

[coderabbitai]

🧹 Nitpick | 🔵 Trivial

Add language specifier to fenced code block.

For consistency and proper syntax highlighting, add a language specifier to the fenced code block.

📝 Proposed fix

 `BaseTaskImpl` is the central enum representing all task types:
-```
+```rust
 BaseTaskImpl
 ├── Commit(CommitTask)       — commit account state/diff to base layer
 ├── Finalize(FinalizeTask)   — finalize a committed account

🧰 Tools

🪛 markdownlint-cli2 (0.21.0)

[warning] 10-10: Fenced code blocks should be surrounded by blank lines

(MD031, blanks-around-fences)

---

[warning] 10-10: Fenced code blocks should have a language specified

(MD040, fenced-code-language)

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@magicblock-committor-service/CLAUDE.md` around lines 10 - 16, The fenced code
block showing the BaseTaskImpl hierarchy lacks a language specifier; update the
opening fence to include a language (e.g., add "rust" so it becomes ```rust) so
the block containing BaseTaskImpl and its entries (Commit(CommitTask),
Finalize(FinalizeTask), Undelegate(UndelegateTask), BaseAction(BaseActionTask))
gets proper syntax highlighting and consistent formatting.

[coderabbitai]

🧹 Nitpick | 🔵 Trivial

Add language specifier to fenced code block.

For consistency and proper syntax highlighting, add a language specifier to the fenced code block.

📝 Proposed fix

 Delivery strategy is an enum:
-```
+```rust
 CommitDelivery
 ├── StateInArgs         — full account data in instruction args
 ├── StateInBuffer { stage } — data in on-chain buffer

🧰 Tools

🪛 markdownlint-cli2 (0.21.0)

[warning] 24-24: Fenced code blocks should be surrounded by blank lines

(MD031, blanks-around-fences)

---

[warning] 24-24: Fenced code blocks should have a language specified

(MD040, fenced-code-language)

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@magicblock-committor-service/CLAUDE.md` around lines 24 - 31, The fenced code
block in CLAUDE.md showing the CommitDelivery tree is missing a language
specifier; update the opening fence (```) to include a language such as rust
(e.g., ```rust) so the block has proper syntax highlighting and consistency with
other docs, ensuring only the opening fence is changed and the block content
(CommitDelivery, StateInArgs, StateInBuffer, DiffInArgs, DiffInBuffer) remains
untouched.