logos-storage/plonky2
1
0
Fork 0
mirror of https://github.com/logos-storage/plonky2.git synced 2026-01-09 01:03:08 +00:00
Code Issues Packages Projects Releases Wiki Activity

Remove aborts for invalid jumps

Browse Source
This commit is contained in:
4l0n50 2023-12-20 14:13:36 +01:00
parent 829ae64fc4
commit 6ababc96ec
7 changed files with 72 additions and 51 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
evm/src/cpu/kernel/asm/core/call.asm
View File

@ -369,7 +369,7 @@ call_too_deep:
// Perform jumpdest analyis // Perform jumpdest analyis
GET_CONTEXT GET_CONTEXT
// stack: ctx, code_size, retdest // stack: ctx, code_size, retdest
%validate_jumpdest_table %jumpdest_analisys
PUSH 0 // jump dest PUSH 0 // jump dest
EXIT_KERNEL EXIT_KERNEL
// (Old context) stack: new_ctx // (Old context) stack: new_ctx

74
evm/src/cpu/kernel/asm/core/jumpdest_analysis.asm
View File

@ -1,17 +1,14 @@
// Set @SEGMENT_JUMPDEST_BITS to one between positions [init_pos, final_pos], // Set @SEGMENT_JUMPDEST_BITS to one between positions [init_pos, final_pos],
// for the given context's code. Panics if we never hit final_pos // for the given context's code.
// Pre stack: init_pos, ctx, final_pos, retdest // Pre stack: init_pos, ctx, final_pos, retdest
// Post stack: (empty) // Post stack: (empty)
global verify_path: global verify_path_and_write_table:
loop: loop:
// stack: i, ctx, final_pos, retdest // stack: i, ctx, final_pos, retdest
// Ideally we would break if i >= final_pos, but checking i > final_pos is
// cheaper. It doesn't hurt to over-read by 1, since we'll read 0 which is
// a no-op.
DUP3 DUP2 EQ // i == final_pos DUP3 DUP2 EQ // i == final_pos
%jumpi(return) %jumpi(proof_ok)
DUP3 DUP2 GT // i > final_pos DUP3 DUP2 GT // i > final_pos
%jumpi(panic) %jumpi(proof_not_ok)
// stack: i, ctx, final_pos, retdest // stack: i, ctx, final_pos, retdest
%stack (i, ctx) -> (ctx, @SEGMENT_CODE, i, i, ctx) %stack (i, ctx) -> (ctx, @SEGMENT_CODE, i, i, ctx)
@ -22,24 +19,29 @@ loop:
// Slightly more efficient than `%eq_const(0x5b) ISZERO` // Slightly more efficient than `%eq_const(0x5b) ISZERO`
PUSH 0x5b PUSH 0x5b
SUB SUB
// stack: opcode != JUMPDEST, opcode, i, ctx, code_len, retdest // stack: opcode != JUMPDEST, opcode, i, ctx, final_pos, retdest
%jumpi(continue) %jumpi(continue)
// stack: JUMPDEST, i, ctx, code_len, retdest // stack: JUMPDEST, i, ctx, final_pos, retdest
%stack (JUMPDEST, i, ctx) -> (1, ctx, @SEGMENT_JUMPDEST_BITS, i, JUMPDEST, i, ctx) %stack (JUMPDEST, i, ctx) -> (1, ctx, @SEGMENT_JUMPDEST_BITS, i, JUMPDEST, i, ctx)
MSTORE_GENERAL MSTORE_GENERAL
continue: continue:
// stack: opcode, i, ctx, code_len, retdest // stack: opcode, i, ctx, final_pos, retdest
%add_const(code_bytes_to_skip) %add_const(code_bytes_to_skip)
%mload_kernel_code %mload_kernel_code
// stack: bytes_to_skip, i, ctx, code_len, retdest // stack: bytes_to_skip, i, ctx, final_pos, retdest
ADD ADD
// stack: i, ctx, code_len, retdest // stack: i, ctx, final_pos, retdest
%jump(loop) %jump(loop)
return: proof_ok:
// stack: i, ctx, code_len, retdest // stack: i, ctx, final_pos, retdest
// We already know final pos is a jumpdest
%stack (i, ctx, final_pos) -> (1, ctx, @SEGMENT_JUMPDEST_BITS, i)
MSTORE_GENERAL
JUMP
proof_not_ok:
%pop3 %pop3
JUMP JUMP
@ -101,26 +103,21 @@ code_bytes_to_skip:
// - code[jumpdest] = 0x5b. // - code[jumpdest] = 0x5b.
// stack: proof_prefix_addr, jumpdest, ctx, retdest // stack: proof_prefix_addr, jumpdest, ctx, retdest
// stack: (empty) abort if jumpdest is not a valid destination // stack: (empty) abort if jumpdest is not a valid destination
global is_jumpdest: global write_table_if_jumpdest:
// stack: proof_prefix_addr, jumpdest, ctx, retdest // stack: proof_prefix_addr, jumpdest, ctx, retdest
//%stack
// (proof_prefix_addr, jumpdest, ctx) ->
// (ctx, @SEGMENT_JUMPDEST_BITS, jumpdest, proof_prefix_addr, jumpdest, ctx)
//MLOAD_GENERAL
//%jumpi(return_is_jumpdest)
%stack %stack
(proof_prefix_addr, jumpdest, ctx) -> (proof_prefix_addr, jumpdest, ctx) ->
(ctx, @SEGMENT_CODE, jumpdest, jumpdest, ctx, proof_prefix_addr) (ctx, @SEGMENT_CODE, jumpdest, jumpdest, ctx, proof_prefix_addr)
MLOAD_GENERAL MLOAD_GENERAL
// stack: opcode, jumpdest, ctx, proof_prefix_addr, retdest // stack: opcode, jumpdest, ctx, proof_prefix_addr, retdest
%assert_eq_const(0x5b) %jump_eq_const(0x5b, return)
//stack: jumpdest, ctx, proof_prefix_addr, retdest //stack: jumpdest, ctx, proof_prefix_addr, retdest
SWAP2 DUP1 SWAP2 DUP1
// stack: proof_prefix_addr, proof_prefix_addr, ctx, jumpdest // stack: proof_prefix_addr, proof_prefix_addr, ctx, jumpdest
ISZERO ISZERO
%jumpi(verify_path) %jumpi(verify_path_and_write_table)
// stack: proof_prefix_addr, ctx, jumpdest, retdest // stack: proof_prefix_addr, ctx, jumpdest, retdest
// If we are here we need to check that the next 32 bytes are less // If we are here we need to check that the next 32 bytes are less
// than JUMPXX for XX < 32 - i <=> opcode < 0x7f - i = 127 - i, 0 <= i < 32, // than JUMPXX for XX < 32 - i <=> opcode < 0x7f - i = 127 - i, 0 <= i < 32,
@ -135,9 +132,8 @@ global is_jumpdest:
%check_and_step(99) %check_and_step(98) %check_and_step(97) %check_and_step(96) %check_and_step(99) %check_and_step(98) %check_and_step(97) %check_and_step(96)
// check the remaining path // check the remaining path
%jump(verify_path) %jump(verify_path_and_write_table)
return:
return_is_jumpdest:
// stack: proof_prefix_addr, jumpdest, ctx, retdest // stack: proof_prefix_addr, jumpdest, ctx, retdest
%pop3 %pop3
JUMP JUMP
@ -154,7 +150,7 @@ return_is_jumpdest:
DUP1 DUP1
%gt_const(127) %gt_const(127)
%jumpi(%%ok) %jumpi(%%ok)
%assert_lt_const($max) %jumpi_lt_const($max, return)
// stack: proof_prefix_addr, ctx, jumpdest // stack: proof_prefix_addr, ctx, jumpdest
PUSH 0 // We need something to pop PUSH 0 // We need something to pop
%%ok: %%ok:
@ -162,13 +158,13 @@ return_is_jumpdest:
%increment %increment
%endmacro %endmacro
%macro is_jumpdest %macro write_table_if_jumpdest
%stack (proof, addr, ctx) -> (proof, addr, ctx, %%after) %stack (proof, addr, ctx) -> (proof, addr, ctx, %%after)
%jump(is_jumpdest) %jump(write_table_if_jumpdest)
%%after: %%after:
%endmacro %endmacro
// Check if the jumpdest table is correct. This is done by // Write the jumpdest table. This is done by
// non-deterministically guessing the sequence of jumpdest // non-deterministically guessing the sequence of jumpdest
// addresses used during program execution within the current context. // addresses used during program execution within the current context.
// For each jumpdest address we also non-deterministically guess // For each jumpdest address we also non-deterministically guess
@ -179,7 +175,7 @@ return_is_jumpdest:
// //
// stack: ctx, retdest // stack: ctx, retdest
// stack: (empty) // stack: (empty)
global validate_jumpdest_table: global jumpdest_analisys:
// If address > 0 then address is interpreted as address' + 1 // If address > 0 then address is interpreted as address' + 1
// and the next prover input should contain a proof for address'. // and the next prover input should contain a proof for address'.
PROVER_INPUT(jumpdest_table::next_address) PROVER_INPUT(jumpdest_table::next_address)
@ -189,24 +185,22 @@ global validate_jumpdest_table:
// This is just a hook used for avoiding verification of the jumpdest // This is just a hook used for avoiding verification of the jumpdest
// table in another contexts. It is useful during proof generation, // table in another contexts. It is useful during proof generation,
// allowing the avoidance of table verification when simulating user code. // allowing the avoidance of table verification when simulating user code.
global validate_jumpdest_table_end: global jumpdest_analisys_end:
POP POP
JUMP JUMP
check_proof: check_proof:
%decrement %decrement
DUP2 DUP2 DUP2 SWAP1
// stack: address, ctx, address, ctx // stack: address, ctx, ctx
// We read the proof // We read the proof
PROVER_INPUT(jumpdest_table::next_proof) PROVER_INPUT(jumpdest_table::next_proof)
// stack: proof, address, ctx, address, ctx // stack: proof, address, ctx, ctx
%is_jumpdest %write_table_if_jumpdest
%stack (address, ctx) -> (1, ctx, @SEGMENT_JUMPDEST_BITS, address, ctx)
MSTORE_GENERAL
%jump(validate_jumpdest_table) %jump(jumpdest_analisys)
%macro validate_jumpdest_table %macro jumpdest_analisys
%stack (ctx) -> (ctx, %%after) %stack (ctx) -> (ctx, %%after)
%jump(validate_jumpdest_table) %jump(jumpdest_analisys)
%%after: %%after:
%endmacro %endmacro

13
evm/src/cpu/kernel/asm/util/basic_macros.asm
View File

@ -8,6 +8,19 @@
jumpi jumpi
%endmacro %endmacro
%macro jump_eq_const(c, jumpdest)
PUSH $c
SUB
%jumpi($jumpdest)
%endmacro
%macro jumpi_lt_const(c, jumpdest)
// %assert_zero is cheaper than %assert_nonzero, so we will leverage the
// fact that (x < c) == !(x >= c).
%ge_const($c)
%jumpi($jumpdest)
%endmacro
%macro pop2 %macro pop2
%rep 2 %rep 2
POP POP

6
evm/src/cpu/kernel/tests/core/jumpdest_analysis.rs
View File

@ -5,8 +5,8 @@ use crate::cpu::kernel::interpreter::Interpreter;
use crate::cpu::kernel::opcodes::{get_opcode, get_push_opcode}; use crate::cpu::kernel::opcodes::{get_opcode, get_push_opcode};
#[test] #[test]
fn test_validate_jumpdest_table() -> Result<()> { fn test_jumpdest_analisys() -> Result<()> {
let validate_jumpdest_table = KERNEL.global_labels["validate_jumpdest_table"]; let jumpdest_analisys = KERNEL.global_labels["jumpdest_analisys"];
const CONTEXT: usize = 3; // arbitrary const CONTEXT: usize = 3; // arbitrary
let add = get_opcode("ADD"); let add = get_opcode("ADD");
@ -29,7 +29,7 @@ fn test_validate_jumpdest_table() -> Result<()> {
// Contract creation transaction. // Contract creation transaction.
let initial_stack = vec![0xDEADBEEFu32.into(), CONTEXT.into()]; let initial_stack = vec![0xDEADBEEFu32.into(), CONTEXT.into()];
let mut interpreter = Interpreter::new_with_kernel(validate_jumpdest_table, initial_stack); let mut interpreter = Interpreter::new_with_kernel(jumpdest_analisys, initial_stack);
interpreter.set_code(CONTEXT, code); interpreter.set_code(CONTEXT, code);
interpreter.set_jumpdest_bits(CONTEXT, jumpdest_bits); interpreter.set_jumpdest_bits(CONTEXT, jumpdest_bits);

16
evm/src/generation/mod.rs
View File

@ -299,15 +299,15 @@ fn simulate_cpu_between_labels_and_get_user_jumps<F: Field>(
let mut jumpdest_addresses: HashMap<_, BTreeSet<usize>> = HashMap::new(); let mut jumpdest_addresses: HashMap<_, BTreeSet<usize>> = HashMap::new();
state.registers.program_counter = KERNEL.global_labels[initial_label]; state.registers.program_counter = KERNEL.global_labels[initial_label];
let initial_clock = state.traces.clock();
let initial_context = state.registers.context; let initial_context = state.registers.context;
log::debug!("Simulating CPU for jumpdest analysis."); log::debug!("Simulating CPU for jumpdest analysis.");
loop { loop {
// skip jumdest table validations in simulations // skip jumdest table validations in simulations
if state.registers.program_counter == KERNEL.global_labels["validate_jumpdest_table"] { if state.registers.program_counter == KERNEL.global_labels["jumpdest_analisys"] {
state.registers.program_counter = state.registers.program_counter = KERNEL.global_labels["jumpdest_analisys_end"]
KERNEL.global_labels["validate_jumpdest_table_end"]
} }
let pc = state.registers.program_counter; let pc = state.registers.program_counter;
let context = state.registers.context; let context = state.registers.context;
@ -337,6 +337,11 @@ fn simulate_cpu_between_labels_and_get_user_jumps<F: Field>(
}, },
U256::one(), U256::one(),
); );
let jumpdest_opcode = state.memory.get(MemoryAddress {
context,
segment: Segment::Code as usize,
virt: jumpdest,
});
if let Some(ctx_addresses) = jumpdest_addresses.get_mut(&context) { if let Some(ctx_addresses) = jumpdest_addresses.get_mut(&context) {
ctx_addresses.insert(jumpdest); ctx_addresses.insert(jumpdest);
} else { } else {
@ -344,7 +349,10 @@ fn simulate_cpu_between_labels_and_get_user_jumps<F: Field>(
} }
} }
if halt { if halt {
log::debug!("Simulated CPU halted after {} cycles", state.traces.clock()); log::debug!(
"Simulated CPU halted after {} cycles",
state.traces.clock() - initial_clock
);
return Ok(Some(jumpdest_addresses)); return Ok(Some(jumpdest_addresses));
} }
transition(state).map_err(|_| { transition(state).map_err(|_| {

5
evm/src/generation/prover_input.rs
View File

@ -306,7 +306,7 @@ impl<F: Field> GenerationState<F> {
// Simulate the user's code and (unnecessarily) part of the kernel code, skipping the validate table call // Simulate the user's code and (unnecessarily) part of the kernel code, skipping the validate table call
let Some(jumpdest_table) = simulate_cpu_between_labels_and_get_user_jumps( let Some(jumpdest_table) = simulate_cpu_between_labels_and_get_user_jumps(
"validate_jumpdest_table_end", "jumpdest_analisys_end",
"terminate_common", "terminate_common",
self, self,
)? )?
@ -385,7 +385,8 @@ impl<F: Field> GenerationState<F> {
} }
} }
/// For each address in `jumpdest_table` it search a proof, that is the closest address /// For each address in `jumpdest_table`, each bounded by larges_address,
/// this function searches for a proof. A proof is the closest address
/// for which none of the previous 32 bytes in the code (including opcodes /// for which none of the previous 32 bytes in the code (including opcodes
/// and pushed bytes are PUSHXX and the address is in its range. It returns /// and pushed bytes are PUSHXX and the address is in its range. It returns
/// a vector of even size containing proofs followed by their addresses /// a vector of even size containing proofs followed by their addresses

7
evm/src/witness/transition.rs
View File

@ -395,7 +395,12 @@ fn try_perform_instruction<F: Field>(
if state.registers.is_kernel { if state.registers.is_kernel {
log_kernel_instruction(state, op); log_kernel_instruction(state, op);
} else { } else {
log::debug!("User instruction: {:?}", op); log::debug!(
"User instruction: {:?}, ctx = {:?}, stack = {:?}",
op,
state.registers.context,
state.stack()
);
} }
fill_op_flag(op, &mut row); fill_op_flag(op, &mut row);