Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add storage bounds for pallet staking and clean up deprecated non paged exposure storages #6445

Open
wants to merge 148 commits into
base: master
Choose a base branch
from
Open

Add storage bounds for pallet staking and clean up deprecated non paged exposure storages #6445

wants to merge 148 commits into from
+728 −790

Conversation

re-gius
Copy link
Contributor

@re-gius re-gius commented Nov 11, 2024
edited
Loading

This is part of #6289 and necessary for the Asset Hub migration.

Building on the observations and suggestions from #255 .

Changes

  • Add MaxInvulnerables to bound Invulnerables Vec -> BoundedVec.
    • Set to constant 20 in the pallet (must be >= 17 for backward compatibility of runtime westend).
  • Add MaxDisabledValidators to bound DisabledValidators Vec -> BoundedVec
    • Set to constant 100 in the pallet (it should be <= 1/3 * MaxValidatorsCount according to the current disabling strategy)
  • Remove ErasStakers and ErasStakersClipped (see Tracker issue for cleaning up old non-paged exposure logic in staking pallet #433 )
  • Use MaxExposurePageSize to bound ErasStakersPaged mapping to exposure pages: each ExposurePage.others Vec is turned into a WeakBoundedVec to allow easy and quick changes to this bound
  • Add MaxBondedEras to bound BondedEras Vec -> BoundedVec
    • Set to BondingDuration::get() + 1 everywhere to include both time interval endpoints in [current_era - BondingDuration::get(), current_era]. Notice that this was done manually in every test and runtime, so I wonder if there is a better way to ensure that MaxBondedEras::get() == BondingDuration::get() + 1 everywhere.
  • Add MaxRewardPagesPerValidator to bound ClaimedRewards Vec of pages -> WeakBoundedVec
    • Set to constant 20 in the pallet. The vector of pages is now a WeakBoundedVec to allow easy and quick changes to this parameter
  • Remove MaxValidatorsCount optional storage item to add MaxValidatorsCount mandatory config parameter
    • Using it to to bound EraRewardPoints.individual BTreeMap -> BoundedBTreeMap;
    • Set to dynamic parameter in runtime westend so that changing it should not require migrations for it

TO DO
Slashing storage items will be bounded in another PR.

  • UnappliedSlashes
  • SlashingSpans

@re-gius re-gius added the T2-pallets This PR/Issue is related to a particular pallet. label Nov 11, 2024
@re-gius re-gius self-assigned this Nov 11, 2024
This was referenced Nov 11, 2024
Closed
Open
Open
re-gius added 23 commits November 13, 2024 14:51
@re-gius
add MaxActiveValidators
1b18bb1
@re-gius
Merge branch 'master' into re-gius/staking/add-storage-bounds
0ac60af
@re-gius
fix + start working on migrations
4edb8e1
@re-gius
nit (typo)
65c7de6
@re-gius
fix migrations for BoundedVec
35069c9
@re-gius
Merge branch 'master' into re-gius/staking/add-storage-bounds
d4b15af
@re-gius
Migrate ErasRewardPoints
eb93a70
@re-gius
small fixes - BoundedBTreeMap
58cf45d
@re-gius
Merge branch 'master' into re-gius/staking/add-storage-bounds
292c5d0
@re-gius
fix
74f2055
@re-gius
Merge branch 'master' into re-gius/staking/add-storage-bounds
63f2c5e
@re-gius
Merge branch 'master' into re-gius/staking/add-storage-bounds
b249a67
@re-gius
Adapt to new recent DisabledValidators change
362f505
@re-gius
Change MaxActiveValidators to MaxWinners
4f21d53
@re-gius
undo change from another PR
e258baf
@re-gius
Merge branch 'master' into re-gius/staking/add-storage-bounds
4b7d896
@re-gius
small fix for MaxWinners
01e2233
@re-gius
small fixes
243bec8
@re-gius
Merge branch 'master' into re-gius/staking/add-storage-bounds
a599afc
@re-gius
Remove deprecated ErasStakers and ErasStakersClipped
9a25fbc
@re-gius
Fixes from #5986
98daabc
@re-gius
nit
aec5087
@re-gius
remove unused import
36204da
@re-gius re-gius mentioned this pull request Dec 20, 2024
Open
seadanda
seadanda reviewed Jan 16, 2025
View reviewed changes
polkadot/runtime/test-runtime/src/lib.rs Outdated
@@ -400,7 +401,7 @@ impl pallet_staking::Config for Runtime {
type DisablingStrategy = pallet_staking::UpToLimitWithReEnablingDisablingStrategy;
type MaxInvulnerables = ConstU32<20>;
type MaxRewardPagesPerValidator = ConstU32<20>;
type MaxValidatorsCount = ConstU32<300>;
type MaxValidatorsCount = MaxAuthorities;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is a huge jump, is there a reason why the MaxAuthorities is so big in the test runtime?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oh, right! Then it's probably better to revert the change in that case, adding also a comment: 6c9806c

gui1117
gui1117 reviewed Jan 17, 2025
View reviewed changes
Copy link
Contributor

@gui1117 gui1117 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Overall looks good, but there is still some comments to resolve.

substrate/frame/staking/src/lib.rs Outdated
Comment on lines 763 to 766
pub fn from_clipped(exposure: Exposure<AccountId, Balance>) -> Result<Self, ()> {
let old_exposures = exposure.others.len();
let others = WeakBoundedVec::try_from(exposure.others).unwrap_or_default();
defensive_assert!(old_exposures == others.len(), "Too many exposures for a page");
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This function is not used, we can make it better or remove it.

Suggested change
pub fn from_clipped(exposure: Exposure<AccountId, Balance>) -> Result<Self, ()> {
let old_exposures = exposure.others.len();
let others = WeakBoundedVec::try_from(exposure.others).unwrap_or_default();
defensive_assert!(old_exposures == others.len(), "Too many exposures for a page");
pub fn try_from_clipped(exposure: Exposure<AccountId, Balance>) -> Result<Self, ()> {
let others = WeakBoundedVec::try_from(exposure.others).map_err(|_| ())?;

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changed in 3b7bc95

substrate/frame/staking/src/lib.rs Outdated Show resolved Hide resolved
substrate/frame/staking/src/lib.rs Outdated Show resolved Hide resolved
substrate/frame/staking/src/lib.rs Outdated Show resolved Hide resolved
substrate/frame/staking/src/lib.rs
claimed_pages.push(page);
// try to add page to claimed entries
if claimed_pages.try_push(page).is_err() {
defensive!("Limit reached for maximum number of pages.");
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The proof should be more precise. In what circumstance can this limit be reached, why is it impossible in practice.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What do you mean by "the proof"?

substrate/frame/staking/src/migrations.rs
Comment on lines +75 to +88
let mut eras_stakers_keys =
v16::ErasStakers::<T>::iter_keys().map(|(k1, _k2)| k1).collect::<Vec<_>>();
eras_stakers_keys.dedup();
for k in eras_stakers_keys {
let mut removal_result =
v16::ErasStakers::<T>::clear_prefix(k, u32::max_value(), None);
while let Some(next_cursor) = removal_result.maybe_cursor {
removal_result = v16::ErasStakers::<T>::clear_prefix(
k,
u32::max_value(),
Some(&next_cursor[..]),
);
}
}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This seems to try to remove all keys in one time, if we don't need multi-block migration and we are sure it is ok then we can do:

Suggested change
let mut eras_stakers_keys =
v16::ErasStakers::<T>::iter_keys().map(|(k1, _k2)| k1).collect::<Vec<_>>();
eras_stakers_keys.dedup();
for k in eras_stakers_keys {
let mut removal_result =
v16::ErasStakers::<T>::clear_prefix(k, u32::max_value(), None);
while let Some(next_cursor) = removal_result.maybe_cursor {
removal_result = v16::ErasStakers::<T>::clear_prefix(
k,
u32::max_value(),
Some(&next_cursor[..]),
);
}
}
v16::ErasStakers::<T>::clear(u32::max_value(), None);

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We can be sure for Polkadot or Kusama but how can we be sure for every other chain? Maybe there are some limits I'm not aware of

substrate/frame/staking/src/migrations.rs
Comment on lines +90 to +104
let mut eras_stakers_clipped_keys = v16::ErasStakersClipped::<T>::iter_keys()
.map(|(k1, _k2)| k1)
.collect::<Vec<_>>();
eras_stakers_clipped_keys.dedup();
for k in eras_stakers_clipped_keys {
let mut removal_result =
v16::ErasStakersClipped::<T>::clear_prefix(k, u32::max_value(), None);
while let Some(next_cursor) = removal_result.maybe_cursor {
removal_result = v16::ErasStakersClipped::<T>::clear_prefix(
k,
u32::max_value(),
Some(&next_cursor[..]),
);
}
}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
let mut eras_stakers_clipped_keys = v16::ErasStakersClipped::<T>::iter_keys()
.map(|(k1, _k2)| k1)
.collect::<Vec<_>>();
eras_stakers_clipped_keys.dedup();
for k in eras_stakers_clipped_keys {
let mut removal_result =
v16::ErasStakersClipped::<T>::clear_prefix(k, u32::max_value(), None);
while let Some(next_cursor) = removal_result.maybe_cursor {
removal_result = v16::ErasStakersClipped::<T>::clear_prefix(
k,
u32::max_value(),
Some(&next_cursor[..]),
);
}
}
v16::ErasStakersClipped::<T>::clear(u32::max_value(), None);

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same here, are we assuming that this is safe?

substrate/frame/staking/src/migrations.rs
} else {
log!(info, "v17 applied successfully.");
}
T::DbWeight::get().reads_writes(1, 1)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we can count the number of operation as we do them.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

How can we do that?

@paritytech-review-bot paritytech-review-bot bot requested a review from a team January 21, 2025 16:22
@paritytech-workflow-stopper
Copy link

All GitHub workflows were cancelled due to failure one of the required jobs.
Failed workflow url: https://github.com/paritytech/polkadot-sdk/actions/runs/12891905705
Failed job name: fmt

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@seadanda seadanda seadanda left review comments

@gui1117 gui1117 gui1117 left review comments

@Ank4n Ank4n Ank4n left review comments

@bkchr bkchr bkchr left review comments

@kianenigma kianenigma kianenigma left review comments

@acatangiu acatangiu Awaiting requested review from acatangiu acatangiu is a code owner

At least 2 approving reviews are required to merge this pull request.

Assignees

@re-gius re-gius

Labels
T1-FRAME This PR/Issue is related to core FRAME, the framework. T2-pallets This PR/Issue is related to a particular pallet.
Projects
AHM
Status: In review
Security Audit (PRs) - SRLabs
Status: Scheduled
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@re-gius @kianenigma @bkchr @Ank4n @gui1117 @seadanda