From 58337c61c5c41e497a9e92f77e961ecaaa3a1493 Mon Sep 17 00:00:00 2001
From: Peter Chen <ychen@ripple.com>
Date: Thu, 30 Apr 2026 14:36:19 -0400
Subject: [PATCH] Fix comments

---
 src/libxrpl/tx/invariants/MPTInvariant.cpp | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/src/libxrpl/tx/invariants/MPTInvariant.cpp b/src/libxrpl/tx/invariants/MPTInvariant.cpp
index 7633b6e45d..184fa9fbf6 100644
--- a/src/libxrpl/tx/invariants/MPTInvariant.cpp
+++ b/src/libxrpl/tx/invariants/MPTInvariant.cpp
@@ -450,10 +450,7 @@ ValidConfidentialMPToken::visitEntry(
 
         // sfIssuerEncryptedBalance, sfConfidentialBalanceInbox, and sfConfidentialBalanceSpending
         // must all exist or not exist same time.
-        if (hasHolderInbox != hasHolderSpending)
-            changes_[id].badConsistency = true;
-
-        if (hasHolderInbox != hasIssuerBalance)
+        if (hasHolderInbox != hasHolderSpending || hasHolderInbox != hasIssuerBalance)
             changes_[id].badConsistency = true;
 
         // Privacy flag consistency
@@ -599,8 +596,10 @@ ValidConfidentialMPToken::finalize(
             std::ranges::find(confidentialMPTTxTypes, tx.getTxnType()) !=
             confidentialMPTTxTypes.end())
         {
-            // Only Send and MergeInbox does not change coaDelta, so encrypted balances between
-            // holders must never modify sfOutstandingAmount.
+            // Among confidential MPT transactions, only ConfidentialMPTSend and
+            // ConfidentialMPTMergeInbox leave coaDelta unmodified. Therefore, if a confidential MPT
+            // transaction reaches here, it must be one of these two types, neither of which will
+            // modify sfOutstandingAmount
             if (checks.outstandingDelta != 0)
             {
                 JLOG(j.fatal()) << "Invariant failed: OutstandingAmount changed "