feat: allow unlimited number of gen4 nodes

[NikolaMilosa]

This pull request allows node providers to add more type4.x nodes (excluding type4.5 for now see #10393).

This is needed to allow for provisioning on-demand nodes in the cloud and registering them with the network.

[Copilot]

Pull request overview

This PR modifies the registry canister’s node-add flow to relax max_rewardable_nodes enforcement for certain Gen4 node reward types, enabling node providers to register more cloud/on-demand nodes (while explicitly keeping type4.5 subject to the existing quota rule).

Changes:

• Bypasses the max_rewardable_nodes quota check when adding nodes of reward types type4.1–type4.4.
• Keeps the quota check enforced for type4.5.
• Adds unit tests covering the bypass behavior for type4.1–type4.4 and continued enforcement for type4.5.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[NikolaMilosa]

We don't want to do it for type4 nodes. They were a one-off and won't be used for this feature.

[NikolaMilosa]

On the reward canister side, these aren't considered anyways. So if they exist they are skipped.

[github-actions]

This pull request changes code owned by the Governance team. Therefore, make sure that
you have considered the following (for Governance-owned code):

1. Update unreleased_changelog.md (if there are behavior changes, even if they are
   non-breaking).

2. Are there BREAKING changes?

3. Is a data migration needed?

4. Security review?

How to Satisfy This Automatic Review

1. Go to the bottom of the pull request page.

2. Look for where it says this bot is requesting changes.

3. Click the three dots to the right.

4. Select "Dismiss review".

5. In the text entry box, respond to each of the numbered items in the previous
   section, declare one of the following:

• Done.

• $REASON_WHY_NO_NEED. E.g. for unreleased_changelog.md, "No
  canister behavior changes.", or for item 2, "Existing APIs
  behave as before.".

Brief Guide to "Externally Visible" Changes

"Externally visible behavior change" is very often due to some NEW canister API.

Changes to EXISTING APIs are more likely to be "breaking".

If these changes are breaking, make sure that clients know how to migrate, how to
maintain their continuity of operations.

If your changes are behind a feature flag, then, do NOT add entrie(s) to
unreleased_changelog.md in this PR! But rather, add entrie(s) later, in the PR
that enables these changes in production.

Reference(s)

For a more comprehensive checklist, see here.

GOVERNANCE_CHECKLIST_REMINDER_DEDUP

[zeropath-ai]

✅ No security or compliance issues detected. Reviewed everything up to 8934f9f.

Security Overview

• 🔎 Scanned files: 2 changed file(s)
• 🔗 Scan Link: https://zeropath.com/app/repositories/f975f1a5-0a47-4a3b-b7f0-a55609e90390?scanId=a1f46cff-9d76-4ca1-8327-4acf4f15dbc6&codeScanTypes=PrScan&tab=issues

Detected Code Changes

Change Type	Relevant files
Enhancement	► rs/registry/canister/src/mutations/node_management/do_add_node.rs     Temporarily bypass max_rewardable_nodes quota check for specific node reward types.     Add test to verify arbitrary node additions for types 4.1-4.4.     Add test to ensure max_rewardable_nodes quota is still enforced for type 4.5.
Other	► rs/registry/canister/unreleased_changelog.md     Document temporary bypass of max_rewardable_nodes quota check.

[daniel-wong-dfinity-org-twin]

Seems like, this could cause problems space problems in the Registry canister... I mean, an alternative is just to have a very large (but finite!) limit, right??

[daniel-wong-dfinity-org-twin]

Do as you see fit.

Alternatively, you can just say that there must be < EXCESSIVE_NUMBER_OF_TYPE_4_NODES type 4.x nodes. That way, they do not need to be treated specially.

When it is possible to not treat something specially, it is better to treat it like everything else. Since the improvement here is marginal, I leave it up to you.

[daniel-wong-dfinity-org-twin]

I know it was like this before already, but why <= ?

Suggestion:

Suggested change

	if max_rewardable_nodes_same_type
	<= num_in_registry_same_type.saturating_sub(num_removed_same_ip_same_type)
	let num_remaining_nodes = num_in_registry_same_type.saturating_sub(num_removed_same_ip_same_type);
	if num_remaining_nodes > max_rewardable_nodes_same_type {

Note that my suggestion is not equivalent, because > is used. Seems like the original code has an off by one bug? Equal to max should be fine, right??

The most important change in my suggestion is swapping the order of operands, putting the reference value on the right hand side of the comparison operator, because we pretty much always do it that way.

The dummy variable in my suggestion is less important. It helps because multi-line if expressions should be avoided (and in this case, it can be avoided pretty easily), but this is not something that we particularly follow; hence, lower importance.

[NikolaMilosa]

I can address this, but this is the question for @pietrodimarco-dfinity, I assume that this isn't an array and is actually how many nodes you have vs how many you are allowed. If you have 5 and you are allowed 5 it is fine, right?

[daniel-wong-dfinity-org-twin]

Maybe, comment here that the next test shows that for other node reward types, this would fail. Otherwise, even if this test passes, it could be simply due to panic NEVER occurs, regardless of node reward type.

[daniel-wong-dfinity-org-twin]

Can you maybe explain the motivation?