Incorporate check a validator won't prevent ever not having a single point of failure

2025-12-08 12:19:24 +00:00 · 2025-09-20 01:58:39 -04:00
parent 7b46477ca0
commit 28aea8a442
2 changed files with 37 additions and 44 deletions
--- a/substrate/validator-sets/src/lib.rs
+++ b/substrate/validator-sets/src/lib.rs
@@ -319,21 +319,6 @@ mod pallet {
    }

    /*
-    fn increase_allocation(
-      network: NetworkId,
-      account: T::AccountId,
-      amount: Amount,
-      block_reward: bool,
-    ) -> DispatchResult {
-      /* TODO
-      // The above is_bft calls are only used to check a BFT net doesn't become non-BFT
-      // Check here if this call would prevent a non-BFT net from *ever* becoming BFT
-      if (new_allocation / allocation_per_key_share) >= (MAX_KEY_SHARES_PER_SET_U32 / 3).into() {
-        Err(Error::<T>::AllocationWouldPreventFaultTolerance)?;
-      }
-      */
-    }
-
    fn session_to_unlock_on_for_current_set(network: NetworkId) -> Option<Session> {
      let mut to_unlock_on = Self::session(network)?;
      // Move to the next session, as deallocating currently in-use stake is obviously invalid
--- a/substrate/validator-sets/src/sessions.rs
+++ b/substrate/validator-sets/src/sessions.rs
@@ -366,6 +366,15 @@ impl<Storage: SessionsStorage> Sessions for Storage {
      Err(AllocationError::AllocationLessThanKeyShare)?
    }

+    {
+      let new_key_shares =
+        KeySharesStruct::from_allocation(new_allocation, allocation_per_key_share);
+
+      // If this would guarantee this validator will be a single point of failure, error
+      if ((3 * new_key_shares.0) + 1) > KeySharesStruct::MAX_PER_SET {
+        Err(AllocationError::IntroducesSinglePointOfFailure)?;
+      }
+
      /*
        If the validator set has a single point of failure, the following does nothing. If the
        validator set has decentralized and doesn't have a single point of failure, the following
@@ -388,15 +397,14 @@ impl<Storage: SessionsStorage> Sessions for Storage {
        if currently_tolerates_single_point_of_failure {
          let old_key_shares =
            KeySharesStruct::from_allocation(old_allocation, allocation_per_key_share);
-        let new_key_shares =
-          KeySharesStruct::from_allocation(new_allocation, allocation_per_key_share);
          // Update the amount of expected key shares per the key shares added
          let expected_key_shares = KeySharesStruct::saturating_from(
            expected_key_shares.0 + (new_key_shares.0 - old_key_shares.0),
          );
          // If the new key shares exceeds the fault tolerance, don't allow the allocation
          if new_key_shares.0 > (expected_key_shares.0 / 3) {
-          Err(AllocationError::IntroducesSinglePointOfFailure)?
+            Err(AllocationError::IntroducesSinglePointOfFailure)?;
+          }
        }
      }
    }