substrate/primitives/src/validator_sets/mod.rs

use alloc::vec::Vec;

use zeroize::Zeroize;
use borsh::{BorshSerialize, BorshDeserialize};

use ciphersuite::{group::GroupEncoding, GroupIo};
use dalek_ff_group::Ristretto;

use crate::{
  constants::MAX_KEY_SHARES_PER_SET,
  crypto::{Public, KeyPair},
  network_id::{ExternalNetworkId, NetworkId},
};

mod slashes;
pub use slashes::*;

/// The type used to identify a specific session of validators.
#[derive(Clone, Copy, PartialEq, Eq, Hash, Debug, Zeroize, BorshSerialize, BorshDeserialize)]
#[cfg_attr(
  feature = "non_canonical_scale_derivations",
  derive(
    scale::Encode,
    scale::Decode,
    scale::MaxEncodedLen,
    scale::DecodeWithMemTracking,
    scale_info::TypeInfo
  )
)]
pub struct Session(pub u32);

/// The type used to identify a specific set of validators for an external network.
#[derive(Clone, Copy, PartialEq, Eq, Hash, Debug, Zeroize, BorshSerialize, BorshDeserialize)]
#[cfg_attr(
  feature = "non_canonical_scale_derivations",
  derive(
    scale::Encode,
    scale::Decode,
    scale::MaxEncodedLen,
    scale::DecodeWithMemTracking,
    scale_info::TypeInfo
  )
)]
pub struct ExternalValidatorSet {
  /// The network this set of validators are for.
  pub network: ExternalNetworkId,
  /// Which session this set of validators is occuring during.
  pub session: Session,
}

/// The type used to identify a specific set of validators.
#[derive(Clone, Copy, PartialEq, Eq, Hash, Debug, Zeroize, BorshSerialize, BorshDeserialize)]
#[cfg_attr(
  feature = "non_canonical_scale_derivations",
  derive(
    scale::Encode,
    scale::Decode,
    scale::MaxEncodedLen,
    scale::DecodeWithMemTracking,
    scale_info::TypeInfo
  )
)]
pub struct ValidatorSet {
  /// The network this set of validators are for.
  pub network: NetworkId,
  /// Which session this set of validators is occuring during.
  pub session: Session,
}

impl From<ExternalValidatorSet> for ValidatorSet {
  fn from(set: ExternalValidatorSet) -> Self {
    ValidatorSet { network: set.network.into(), session: set.session }
  }
}

impl TryFrom<ValidatorSet> for ExternalValidatorSet {
  type Error = ();

  fn try_from(set: ValidatorSet) -> Result<Self, Self::Error> {
    set.network.try_into().map(|network| ExternalValidatorSet { network, session: set.session })
  }
}

impl ExternalValidatorSet {
  /// The MuSig context for this validator set.
  pub fn musig_context(&self) -> [u8; 32] {
    let mut res = [0; 32];

    const DST: &[u8] = b"ValidatorSets-musig_key";
    res[0] = u8::try_from(DST.len()).unwrap();
    #[allow(clippy::range_plus_one)]
    res[1 .. (1 + DST.len())].copy_from_slice(DST);

    // Check we have room to encode into `res`, using the approximate `size_of` for the max size of
    // the serialization
    const _ASSERT_MORE_BYTES_THAN_SIZE: [();
      32 - (1 + DST.len()) - core::mem::size_of::<ExternalValidatorSet>()] = [(); _];

    let encoded = borsh::to_vec(&self).unwrap();
    res[(1 + DST.len()) .. (1 + DST.len() + encoded.len())].copy_from_slice(&encoded);

    res
  }

  /// The MuSig public key for a validator set.
  ///
  /// This function panics on invalid input, per the definition of `dkg::musig::musig_key`.
  pub fn musig_key(&self, set_keys: &[Public]) -> Public {
    let mut keys = Vec::new();
    for key in set_keys {
      keys.push(
        <Ristretto as GroupIo>::read_G::<&[u8]>(&mut key.0.as_ref()).expect("invalid participant"),
      );
    }
    Public(dkg::musig_key::<Ristretto>(self.musig_context(), &keys).unwrap().to_bytes())
  }

  /// The message for the `set_keys` signature.
  pub fn set_keys_message(&self, key_pair: &KeyPair) -> Vec<u8> {
    borsh::to_vec(&(b"ValidatorSets-set_keys", self, key_pair)).unwrap()
  }
}

/// For a set of validators whose key shares may exceed the maximum, reduce until they are less
/// than or equal to the maximum.
///
/// This runs in time linear to the exceed key shares and assumes the excess fits within a usize,
/// panicking otherwise.
///
/// Reduction occurs by reducing each validator in a reverse round-robin. This means the worst
/// validators lose their key shares first.
pub fn amortize_excess_key_shares(validators: &mut [(sp_core::sr25519::Public, u64)]) {
  let total_key_shares = validators.iter().map(|(_key, shares)| shares).sum::<u64>();
  for i in 0 .. usize::try_from(total_key_shares.saturating_sub(u64::from(MAX_KEY_SHARES_PER_SET)))
    .unwrap()
  {
    validators[validators.len() - ((i % validators.len()) + 1)].1 -= 1;
  }
}
Redo primitives, abi Consolidates all primitives into a single crate. We didn't benefit from its fragmentation. I'm hesitant to say the new internal-organization is better (it may be just as clunky), but it's at least in a single crate (not spread out over micro-crates). The ABI is the most distinct. We now entirely own it. Block header hashes don't directly commit to any BABE data (avoiding potentially ~4 KB headers upon session changes), and are hashed as borsh (a more widely used codec than SCALE). There are still Substrate variants, using SCALE and with the BABE data, but they're prunable from a protocol design perspective. Defines a transaction as a Vec of Calls, allowing atomic operations. 2025-02-12 03:41:50 -05:00			`use alloc::vec::Vec;`

			`use zeroize::Zeroize;`
			`use borsh::{BorshSerialize, BorshDeserialize};`

Update to the latest `patch-polkadot-sdk` Removes several dependencies. 2025-09-05 06:57:30 -04:00			`use ciphersuite::{group::GroupEncoding, GroupIo};`
Update Cargo.lock after rebase 2025-08-30 19:36:00 -04:00			`use dalek_ff_group::Ristretto;`
Redo primitives, abi Consolidates all primitives into a single crate. We didn't benefit from its fragmentation. I'm hesitant to say the new internal-organization is better (it may be just as clunky), but it's at least in a single crate (not spread out over micro-crates). The ABI is the most distinct. We now entirely own it. Block header hashes don't directly commit to any BABE data (avoiding potentially ~4 KB headers upon session changes), and are hashed as borsh (a more widely used codec than SCALE). There are still Substrate variants, using SCALE and with the BABE data, but they're prunable from a protocol design perspective. Defines a transaction as a Vec of Calls, allowing atomic operations. 2025-02-12 03:41:50 -05:00
			`use crate::{`
Add a dedicated `Allocations` struct for managing validator set allocations Part of the DB abstraction necessary for this spaghetti. 2025-03-06 09:14:20 -05:00			`constants::MAX_KEY_SHARES_PER_SET,`
Redo primitives, abi Consolidates all primitives into a single crate. We didn't benefit from its fragmentation. I'm hesitant to say the new internal-organization is better (it may be just as clunky), but it's at least in a single crate (not spread out over micro-crates). The ABI is the most distinct. We now entirely own it. Block header hashes don't directly commit to any BABE data (avoiding potentially ~4 KB headers upon session changes), and are hashed as borsh (a more widely used codec than SCALE). There are still Substrate variants, using SCALE and with the BABE data, but they're prunable from a protocol design perspective. Defines a transaction as a Vec of Calls, allowing atomic operations. 2025-02-12 03:41:50 -05:00			`crypto::{Public, KeyPair},`
			`network_id::{ExternalNetworkId, NetworkId},`
			`};`

			`mod slashes;`
			`pub use slashes::*;`

			`/// The type used to identify a specific session of validators.`
			`#[derive(Clone, Copy, PartialEq, Eq, Hash, Debug, Zeroize, BorshSerialize, BorshDeserialize)]`
Add a Sessions abstraction for validator-sets storage 2025-03-07 04:02:11 -05:00			`#[cfg_attr(`
			`feature = "non_canonical_scale_derivations",`
Have `serai-runtime` compile again 2025-09-02 00:27:35 -04:00			`derive(`
			`scale::Encode,`
			`scale::Decode,`
			`scale::MaxEncodedLen,`
			`scale::DecodeWithMemTracking,`
			`scale_info::TypeInfo`
			`)`
Add a Sessions abstraction for validator-sets storage 2025-03-07 04:02:11 -05:00			`)]`
Redo primitives, abi Consolidates all primitives into a single crate. We didn't benefit from its fragmentation. I'm hesitant to say the new internal-organization is better (it may be just as clunky), but it's at least in a single crate (not spread out over micro-crates). The ABI is the most distinct. We now entirely own it. Block header hashes don't directly commit to any BABE data (avoiding potentially ~4 KB headers upon session changes), and are hashed as borsh (a more widely used codec than SCALE). There are still Substrate variants, using SCALE and with the BABE data, but they're prunable from a protocol design perspective. Defines a transaction as a Vec of Calls, allowing atomic operations. 2025-02-12 03:41:50 -05:00			`pub struct Session(pub u32);`

			`/// The type used to identify a specific set of validators for an external network.`
			`#[derive(Clone, Copy, PartialEq, Eq, Hash, Debug, Zeroize, BorshSerialize, BorshDeserialize)]`
Add a Sessions abstraction for validator-sets storage 2025-03-07 04:02:11 -05:00			`#[cfg_attr(`
			`feature = "non_canonical_scale_derivations",`
Have `serai-runtime` compile again 2025-09-02 00:27:35 -04:00			`derive(`
			`scale::Encode,`
			`scale::Decode,`
			`scale::MaxEncodedLen,`
			`scale::DecodeWithMemTracking,`
			`scale_info::TypeInfo`
			`)`
Add a Sessions abstraction for validator-sets storage 2025-03-07 04:02:11 -05:00			`)]`
Redo primitives, abi Consolidates all primitives into a single crate. We didn't benefit from its fragmentation. I'm hesitant to say the new internal-organization is better (it may be just as clunky), but it's at least in a single crate (not spread out over micro-crates). The ABI is the most distinct. We now entirely own it. Block header hashes don't directly commit to any BABE data (avoiding potentially ~4 KB headers upon session changes), and are hashed as borsh (a more widely used codec than SCALE). There are still Substrate variants, using SCALE and with the BABE data, but they're prunable from a protocol design perspective. Defines a transaction as a Vec of Calls, allowing atomic operations. 2025-02-12 03:41:50 -05:00			`pub struct ExternalValidatorSet {`
			`/// The network this set of validators are for.`
			`pub network: ExternalNetworkId,`
			`/// Which session this set of validators is occuring during.`
			`pub session: Session,`
			`}`

			`/// The type used to identify a specific set of validators.`
			`#[derive(Clone, Copy, PartialEq, Eq, Hash, Debug, Zeroize, BorshSerialize, BorshDeserialize)]`
Add a Sessions abstraction for validator-sets storage 2025-03-07 04:02:11 -05:00			`#[cfg_attr(`
			`feature = "non_canonical_scale_derivations",`
Have `serai-runtime` compile again 2025-09-02 00:27:35 -04:00			`derive(`
			`scale::Encode,`
			`scale::Decode,`
			`scale::MaxEncodedLen,`
			`scale::DecodeWithMemTracking,`
			`scale_info::TypeInfo`
			`)`
Add a Sessions abstraction for validator-sets storage 2025-03-07 04:02:11 -05:00			`)]`
Redo primitives, abi Consolidates all primitives into a single crate. We didn't benefit from its fragmentation. I'm hesitant to say the new internal-organization is better (it may be just as clunky), but it's at least in a single crate (not spread out over micro-crates). The ABI is the most distinct. We now entirely own it. Block header hashes don't directly commit to any BABE data (avoiding potentially ~4 KB headers upon session changes), and are hashed as borsh (a more widely used codec than SCALE). There are still Substrate variants, using SCALE and with the BABE data, but they're prunable from a protocol design perspective. Defines a transaction as a Vec of Calls, allowing atomic operations. 2025-02-12 03:41:50 -05:00			`pub struct ValidatorSet {`
			`/// The network this set of validators are for.`
			`pub network: NetworkId,`
			`/// Which session this set of validators is occuring during.`
			`pub session: Session,`
			`}`

			`impl From<ExternalValidatorSet> for ValidatorSet {`
			`fn from(set: ExternalValidatorSet) -> Self {`
			`ValidatorSet { network: set.network.into(), session: set.session }`
			`}`
			`}`

			`impl TryFrom<ValidatorSet> for ExternalValidatorSet {`
			`type Error = ();`

			`fn try_from(set: ValidatorSet) -> Result<Self, Self::Error> {`
			`set.network.try_into().map(\|network\| ExternalValidatorSet { network, session: set.session })`
			`}`
			`}`

			`impl ExternalValidatorSet {`
			`/// The MuSig context for this validator set.`
Update `serai-abi`, and dependencies, to patch-polkadot-sdk 2025-09-01 20:02:48 -04:00			`pub fn musig_context(&self) -> [u8; 32] {`
			`let mut res = [0; 32];`

			`const DST: &[u8] = b"ValidatorSets-musig_key";`
			`res[0] = u8::try_from(DST.len()).unwrap();`
			`#[allow(clippy::range_plus_one)]`
			`res[1 .. (1 + DST.len())].copy_from_slice(DST);`

			// Check we have room to encode into `res`, using the approximate `size_of` for the max size of
			`// the serialization`
			`const _ASSERT_MORE_BYTES_THAN_SIZE: [();`
Misc clippy fixes 2025-09-03 06:10:54 -04:00			`32 - (1 + DST.len()) - core::mem::size_of::<ExternalValidatorSet>()] = [(); _];`
Update `serai-abi`, and dependencies, to patch-polkadot-sdk 2025-09-01 20:02:48 -04:00
			`let encoded = borsh::to_vec(&self).unwrap();`
			`res[(1 + DST.len()) .. (1 + DST.len() + encoded.len())].copy_from_slice(&encoded);`

			`res`
Redo primitives, abi Consolidates all primitives into a single crate. We didn't benefit from its fragmentation. I'm hesitant to say the new internal-organization is better (it may be just as clunky), but it's at least in a single crate (not spread out over micro-crates). The ABI is the most distinct. We now entirely own it. Block header hashes don't directly commit to any BABE data (avoiding potentially ~4 KB headers upon session changes), and are hashed as borsh (a more widely used codec than SCALE). There are still Substrate variants, using SCALE and with the BABE data, but they're prunable from a protocol design perspective. Defines a transaction as a Vec of Calls, allowing atomic operations. 2025-02-12 03:41:50 -05:00			`}`

			`/// The MuSig public key for a validator set.`
			`///`
			/// This function panics on invalid input, per the definition of `dkg::musig::musig_key`.
			`pub fn musig_key(&self, set_keys: &[Public]) -> Public {`
			`let mut keys = Vec::new();`
			`for key in set_keys {`
			`keys.push(`
Update to the latest `patch-polkadot-sdk` Removes several dependencies. 2025-09-05 06:57:30 -04:00			`<Ristretto as GroupIo>::read_G::<&[u8]>(&mut key.0.as_ref()).expect("invalid participant"),`
Redo primitives, abi Consolidates all primitives into a single crate. We didn't benefit from its fragmentation. I'm hesitant to say the new internal-organization is better (it may be just as clunky), but it's at least in a single crate (not spread out over micro-crates). The ABI is the most distinct. We now entirely own it. Block header hashes don't directly commit to any BABE data (avoiding potentially ~4 KB headers upon session changes), and are hashed as borsh (a more widely used codec than SCALE). There are still Substrate variants, using SCALE and with the BABE data, but they're prunable from a protocol design perspective. Defines a transaction as a Vec of Calls, allowing atomic operations. 2025-02-12 03:41:50 -05:00			`);`
			`}`
Update `serai-abi`, and dependencies, to patch-polkadot-sdk 2025-09-01 20:02:48 -04:00			`Public(dkg::musig_key::<Ristretto>(self.musig_context(), &keys).unwrap().to_bytes())`
Redo primitives, abi Consolidates all primitives into a single crate. We didn't benefit from its fragmentation. I'm hesitant to say the new internal-organization is better (it may be just as clunky), but it's at least in a single crate (not spread out over micro-crates). The ABI is the most distinct. We now entirely own it. Block header hashes don't directly commit to any BABE data (avoiding potentially ~4 KB headers upon session changes), and are hashed as borsh (a more widely used codec than SCALE). There are still Substrate variants, using SCALE and with the BABE data, but they're prunable from a protocol design perspective. Defines a transaction as a Vec of Calls, allowing atomic operations. 2025-02-12 03:41:50 -05:00			`}`

			/// The message for the `set_keys` signature.
			`pub fn set_keys_message(&self, key_pair: &KeyPair) -> Vec<u8> {`
			`borsh::to_vec(&(b"ValidatorSets-set_keys", self, key_pair)).unwrap()`
			`}`
			`}`
Add a dedicated `Allocations` struct for managing validator set allocations Part of the DB abstraction necessary for this spaghetti. 2025-03-06 09:14:20 -05:00
			`/// For a set of validators whose key shares may exceed the maximum, reduce until they are less`
			`/// than or equal to the maximum.`
			`///`
			`/// This runs in time linear to the exceed key shares and assumes the excess fits within a usize,`
			`/// panicking otherwise.`
			`///`
			`/// Reduction occurs by reducing each validator in a reverse round-robin. This means the worst`
			`/// validators lose their key shares first.`
Add a Sessions abstraction for validator-sets storage 2025-03-07 04:02:11 -05:00			`pub fn amortize_excess_key_shares(validators: &mut [(sp_core::sr25519::Public, u64)]) {`
			`let total_key_shares = validators.iter().map(\|(_key, shares)\| shares).sum::<u64>();`
Add a dedicated `Allocations` struct for managing validator set allocations Part of the DB abstraction necessary for this spaghetti. 2025-03-06 09:14:20 -05:00			`for i in 0 .. usize::try_from(total_key_shares.saturating_sub(u64::from(MAX_KEY_SHARES_PER_SET)))`
			`.unwrap()`
			`{`
			`validators[validators.len() - ((i % validators.len()) + 1)].1 -= 1;`
			`}`
			`}`