logos-storage/plonky2
1
0
Fork 0
mirror of https://github.com/logos-storage/plonky2.git synced 2026-01-03 06:13:07 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #1009 from mir-protocol/expmod_precompile

Browse Source 
expmod precompile calling code
This commit is contained in:
Nicholas Ward 2023-05-02 08:14:19 -07:00 committed by GitHub
commit f0df03f65a
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
7 changed files with 504 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
evm/src/cpu/kernel/aggregator.rs
View File

@ -139,6 +139,7 @@ pub(crate) fn combined_kernel() -> Kernel {
include_str!("asm/util/assertions.asm"),
include_str!("asm/util/basic_macros.asm"),
include_str!("asm/util/keccak.asm"),
include_str!("asm/util/math.asm"),
include_str!("asm/account_code.asm"),
include_str!("asm/balance.asm"),
];

4
evm/src/cpu/kernel/asm/bignum/modexp.asm
View File

@ -8,6 +8,8 @@
// All of scratch_2..scratch_5 must have size 2 * length and be initialized with zeroes.
// Also, scratch_2..scratch_5 must be CONSECUTIVE in memory.
global modexp_bignum:
// stack: len, b_loc, e_loc, m_loc, out_loc, s1, s2, s3, s4, s5, retdest
// Special input cases:
// (1) Modulus is zero (also covers len=0 case).
@ -53,7 +55,7 @@ b_zero_return:
%jump(iszero_bignum)
e_zero_return:
// stack: e==0, b==0, len, b_loc, e_loc, m_loc, out_loc, s1, s2, s3, s4, s5, retdest
MUL // logical and
MUL // logical AND
%jumpi(b_and_e_zero)
// End of special cases.

410
evm/src/cpu/kernel/asm/core/precompiles/expmod.asm
View File

@ -1,3 +1,409 @@
// Load bytes, packing 16 bytes into each limb, and store limbs on the stack.
// We pass around total_num_limbs and len for conveience, because we can't access them from the stack
// if they're hidden behind the variable number of limbs.
mload_bytes_as_limbs:
// stack: ctx, segment, offset, num_bytes, retdest, total_num_limbs, len, ..limbs
DUP4
// stack: num_bytes, ctx, segment, offset, num_bytes, retdest, total_num_limbs, len, ..limbs
%min_const(16)
// stack: min(16, num_bytes), ctx, segment, offset, num_bytes, retdest, total_num_limbs, len, ..limbs
%stack (len, addr: 3) -> (addr, len, addr)
// stack: ctx, segment, offset, min(16, num_bytes), ctx, segment, offset, num_bytes, retdest, total_num_limbs, len, ..limbs
%mload_packing
// stack: new_limb, ctx, segment, offset, num_bytes, retdest, total_num_limbs, len, ..limbs
%stack (new, addr: 3, numb, ret, tot, len) -> (numb, addr, ret, tot, len, new)
// stack: num_bytes, ctx, segment, offset, retdest, total_num_limbs, len, new_limb, ..limbs
DUP1
%min_const(16)
SWAP1
SUB
// stack: num_bytes_new = num_bytes - min(16, num_bytes), ctx, segment, offset, retdest, total_num_limbs, len, ..limbs
DUP1
ISZERO
%jumpi(mload_bytes_return)
// stack: num_bytes_new, ctx, segment, offset, retdest, total_num_limbs, len, ..limbs
SWAP3
%add_const(16)
SWAP3
// stack: num_bytes_new, ctx, segment, offset + 16, retdest, total_num_limbs, len, ..limbs
%stack (num, addr: 3) -> (addr, num)
%jump(mload_bytes_as_limbs)
mload_bytes_return:
// stack: num_bytes_new, ctx, segment, offset, retdest, total_num_limbs, len, ..limbs
%pop4
// stack: retdest, total_num_limbs, len, ..limbs
JUMP
%macro mload_bytes_as_limbs
%stack (ctx, segment, offset, num_bytes, total_num_limbs) -> (ctx, segment, offset, num_bytes, %%after, total_num_limbs)
%jump(mload_bytes_as_limbs)
%%after:
%endmacro
store_limbs:
// stack: offset, retdest, num_limbs, limb[num_limbs - 1], ..limb[0]
DUP3
// stack: num_limbs, offset, retdest, num_limbs, limb[num_limbs - 1], ..limb[0]
ISZERO
%jumpi(store_limbs_return)
// stack: offset, retdest, num_limbs, limb[num_limbs - 1], ..limb[0]
%stack (offset, ret, num, limb) -> (offset, limb, offset, ret, num)
// stack: offset, limb[num_limbs - 1], offset, retdest, num_limbs, limb[num_limbs - 2], ..limb[0]
%mstore_kernel_general
// stack: offset, retdest, num_limbs, limb[num_limbs - 2], ..limb[0]
%increment
SWAP2
%decrement
SWAP2
// stack: offset + 1, retdest, num_limbs - 1, limb[num_limbs - 2], ..limb[0]
%jump(store_limbs)
store_limbs_return:
// stack: offset, retdest, num_limbs=0
POP
SWAP1
POP
JUMP
%macro store_limbs
%stack (offset, num_limbs) -> (offset, %%after, num_limbs)
%jump(store_limbs)
%%after:
%endmacro
%macro expmod_gas_f
// stack: x
%ceil_div_const(8)
// stack: ceil(x/8)
%square
// stack: ceil(x/8)^2
%endmacro
calculate_l_E_prime:
// stack: l_E, l_B, retdest
DUP1
// stack: l_E, l_E, l_B, retdest
%le_const(32)
// stack: l_E <= 32, l_E, l_B, retdest
%jumpi(case_le_32)
// stack: l_E, l_B, retdest
PUSH 32
// stack: 32, l_E, l_B, retdest
DUP3
// stack: l_B, 32, l_E, l_B, retdest
%add_const(96)
// stack: 96 + l_B, 32, l_E, l_B, retdest
PUSH @SEGMENT_CALLDATA
GET_CONTEXT
%mload_packing
// stack: i[96 + l_B..128 + l_B], l_E, l_B, retdest
%log2_floor
// stack: log2(i[96 + l_B..128 + l_B]), l_E, l_B, retdest
SWAP1
// stack: l_E, log2(i[96 + l_B..128 + l_B]), l_B, retdest
%sub_const(32)
%mul_const(8)
// stack: 8 * (l_E - 32), log2(i[96 + l_B..128 + l_B]), l_B, retdest
ADD
// stack: 8 * (l_E - 32) + log2(i[96 + l_B..128 + l_B]), l_B, retdest
SWAP2
%pop2
// stack: 8 * (l_E - 32) + log2(i[96 + l_B..128 + l_B]), retdest
SWAP1
// stack: retdest, 8 * (l_E - 32) + log2(i[96 + l_B..128 + l_B])
JUMP
case_le_32:
// stack: l_E, l_B, retdest
SWAP1
// stack: l_B, l_E, retdest
%add_const(96)
// stack: 96 + l_B, l_E, retdest
PUSH @SEGMENT_CALLDATA
GET_CONTEXT
%mload_packing
// stack: E, retdest
%log2_floor
// stack: log2(E), retdest
SWAP1
// stack: retdest, log2(E)
JUMP
global precompile_expmod:
// TODO
PANIC
// stack: address, retdest, new_ctx, (old stack)
%pop2
// stack: new_ctx, (old stack)
DUP1
SET_CONTEXT
// stack: (empty)
PUSH 0x100000000 // = 2^32 (is_kernel = true)
// stack: kexit_info
// Load l_B from i[0..32].
%stack () -> (@SEGMENT_CALLDATA, 0, 32)
// stack: @SEGMENT_CALLDATA, 0, 32, kexit_info
GET_CONTEXT
// stack: ctx, @SEGMENT_CALLDATA, 0, 32, kexit_info
%mload_packing
// stack: l_B, kexit_info
// Load l_E from i[32..64].
%stack () -> (@SEGMENT_CALLDATA, 32, 32)
GET_CONTEXT
%mload_packing
// stack: l_E, l_B, kexit_info
// Load l_M from i[64..96].
%stack () -> (@SEGMENT_CALLDATA, 64, 32)
GET_CONTEXT
%mload_packing
// stack: l_M, l_E, l_B, kexit_info
%stack (l: 3) -> (l, l)
// stack: l_M, l_E, l_B, l_M, l_E, l_B, kexit_info
%max_3
// stack: max_len, l_M, l_E, l_B, kexit_info
%ceil_div_const(16)
// stack: len=ceil(max_len/16), l_M, l_E, l_B, kexit_info
// Calculate gas costs.
PUSH l_E_prime_return
// stack: l_E_prime_return, len, l_M, l_E, l_B, kexit_info
DUP5
DUP5
// stack: l_E, l_B, l_E_prime_return, len, l_M, l_E, l_B, kexit_info
%jump(calculate_l_E_prime)
l_E_prime_return:
// stack: l_E_prime, len, l_M, l_E, l_B, kexit_info
DUP5
// stack: l_B, l_E_prime, len, l_M, l_E, l_B, kexit_info
DUP4
// stack: l_M, l_B, l_E_prime, len, l_M, l_E, l_B, kexit_info
%max
// stack: max(l_M, l_B), l_E_prime, len, l_M, l_E, l_B, kexit_info
%expmod_gas_f
// stack: f(max(l_M, l_B)), l_E_prime, len, l_M, l_E, l_B, kexit_info
SWAP1
// stack: l_E_prime, f(max(l_M, l_B)), len, l_M, l_E, l_B, kexit_info
%max_const(1)
// stack: max(1, l_E_prime), f(max(l_M, l_B)), len, l_M, l_E, l_B, kexit_info
MUL
// stack: max(1, l_E_prime) * f(max(l_M, l_B)), len, l_M, l_E, l_B, kexit_info
%div_const(3) // G_quaddivisor
// stack: (max(1, l_E_prime) * f(max(l_M, l_B))) / G_quaddivisor, len, l_M, l_E, l_B, kexit_info
%max_const(200)
// stack: g_r, len, l_M, l_E, l_B, kexit_info
%stack (g_r, l: 4, kexit_info) -> (g_r, kexit_info, l)
// stack: g_r, kexit_info, len, l_M, l_E, l_B
%charge_gas
// stack: kexit_info, len, l_M, l_E, l_B
%stack (kexit_info, l: 4) -> (l, kexit_info)
// stack: len, l_M, l_E, l_B, kexit_info
// Copy B to kernel general memory.
// stack: len, l_M, l_E, l_B, kexit_info
DUP1
// stack: len, len, l_M, l_E, l_B, kexit_info
DUP5
// stack: num_bytes=l_B, len, len, l_M, l_E, l_B, kexit_info
DUP1
%ceil_div_const(16)
// stack: num_limbs, num_bytes, len, len, l_M, l_E, l_B, kexit_info
DUP1
ISZERO
%jumpi(copy_b_end)
SWAP1
// stack: num_bytes, num_limbs, len, len, l_M, l_E, l_B, kexit_info
%stack () -> (@SEGMENT_CALLDATA, 96)
GET_CONTEXT
// stack: ctx, @SEGMENT_CALLDATA, 96, num_bytes, num_limbs, len, len, l_M, l_E, l_B, kexit_info
%mload_bytes_as_limbs
// stack: num_limbs, len, limbs[num_limbs-1], .., limbs[0], len, l_M, l_E, l_B, kexit_info
SWAP1
POP
// stack: num_limbs, limbs[num_limbs-1], .., limbs[0], len, l_M, l_E, l_B, kexit_info
PUSH 0
// stack: b_loc=0, num_limbs, limbs[num_limbs-1], .., limbs[0], len, l_M, l_E, l_B, kexit_info
%store_limbs
// stack: len, l_M, l_E, l_B, kexit_info
copy_b_end:
// Copy E to kernel general memory.
// stack: len, l_M, l_E, l_B, kexit_info
DUP1
// stack: len, len, l_M, l_E, l_B, kexit_info
DUP4
// stack: num_bytes=l_E, len, len, l_M, l_E, l_B, kexit_info
DUP1
%ceil_div_const(16)
// stack: num_limbs, num_bytes, len, len, l_M, l_E, l_B, kexit_info
DUP1
ISZERO
%jumpi(copy_e_end)
SWAP1
// stack: num_bytes, num_limbs, len, len, l_M, l_E, l_B, kexit_info
DUP7
%add_const(96)
// stack: 96 + l_B, num_bytes, num_limbs, len, len, l_M, l_E, l_B, kexit_info
PUSH @SEGMENT_CALLDATA
GET_CONTEXT
// stack: ctx, @SEGMENT_CALLDATA, 96 + l_B, num_bytes, num_limbs, len, len, l_M, l_E, l_B, kexit_info
%mload_bytes_as_limbs
// stack: num_limbs, len, limbs[num_limbs-1], .., limbs[0], len, l_M, l_E, l_B, kexit_info
SWAP1
// stack: e_loc=len, num_limbs, limbs[num_limbs-1], .., limbs[0], len, l_M, l_E, l_B, kexit_info
%store_limbs
// stack: len, l_M, l_E, l_B, kexit_info
copy_e_end:
// Copy M to kernel general memory.
// stack: len, l_M, l_E, l_B, kexit_info
DUP1
// stack: len, len, l_M, l_E, l_B, kexit_info
DUP3
// stack: num_bytes=l_M, len, len, l_M, l_E, l_B, kexit_info
DUP1
%ceil_div_const(16)
// stack: num_limbs, num_bytes, len, len, l_M, l_E, l_B, kexit_info
DUP1
ISZERO
%jumpi(copy_m_end)
SWAP1
// stack: num_bytes, num_limbs, len, len, l_M, l_E, l_B, kexit_info
DUP7
DUP7
ADD
%add_const(96)
// stack: 96 + l_B + l_E, num_bytes, num_limbs, len, len, l_M, l_E, l_B, kexit_info
PUSH @SEGMENT_CALLDATA
GET_CONTEXT
// stack: ctx, @SEGMENT_CALLDATA, 96 + l_B + l_E, num_bytes, num_limbs, len, len, l_M, l_E, l_B, kexit_info
%mload_bytes_as_limbs
// stack: num_limbs, len, limbs[num_limbs-1], .., limbs[0], len, l_M, l_E, l_B, kexit_info
SWAP1
%mul_const(2)
// stack: m_loc=2*len, num_limbs, limbs[num_limbs-1], .., limbs[0], len, l_M, l_E, l_B, kexit_info
%store_limbs
// stack: len, l_M, l_E, l_B, kexit_info
copy_m_end:
%stack (len, l_M, ls: 2) -> (len, l_M)
// stack: len, l_M, kexit_info
PUSH expmod_contd
// stack: expmod_contd, len, l_M, kexit_info
DUP2
// stack: len, expmod_contd, len, l_M, kexit_info
DUP1
%mul_const(11)
// stack: s5=11*len, len, expmod_contd, len, l_M, kexit_info
SWAP1
// stack: len, s5, expmod_contd, len, l_M, kexit_info
DUP1
%mul_const(9)
// stack: s4=9*len, len, s5, expmod_contd, len, l_M, kexit_info
SWAP1
// stack: len, s4, s5, expmod_contd, len, l_M, kexit_info
DUP1
%mul_const(7)
// stack: s3=7*len, len, s4, s5, expmod_contd, len, l_M, kexit_info
SWAP1
// stack: len, s3, s4, s5, expmod_contd, len, l_M, kexit_info
DUP1
%mul_const(5)
// stack: s2=5*len, len, s3, s4, s5, expmod_contd, len, l_M, kexit_info
SWAP1
// stack: len, s2, s3, s4, s5, expmod_contd, len, l_M, kexit_info
DUP1
%mul_const(4)
// stack: s1=4*len, len, s2, s3, s4, s5, expmod_contd, len, l_M, kexit_info
SWAP1
// stack: len, s1, s2, s3, s4, s5, expmod_contd, len, l_M, kexit_info
DUP1
%mul_const(3)
// stack: out=3*len, len, s1, s2, s3, s4, s5, expmod_contd, len, l_M, kexit_info
SWAP1
// stack: len, out, s1, s2, s3, s4, s5, expmod_contd, len, l_M, kexit_info
DUP1
%mul_const(2)
// stack: m_loc=2*len, len, out, s1, s2, s3, s4, s5, expmod_contd, len, l_M, kexit_info
SWAP1
// stack: len, m_loc, out, s1, s2, s3, s4, s5, expmod_contd, len, l_M, kexit_info
PUSH 0
// stack: b_loc=0, e_loc=len, m_loc, out, s1, s2, s3, s4, s5, expmod_contd, len, l_M, kexit_info
DUP2
// stack: len, b_loc, e_loc, m_loc, out, s1, s2, s3, s4, s5, expmod_contd, len, l_M, kexit_info
%jump(modexp_bignum)
expmod_contd:
// stack: len, l_M, kexit_info
// Copy the result value from kernel general memory to the parent's return data.
// Store return data size: l_M (number of bytes).
SWAP1
// stack: l_M, len, kexit_info
%mstore_parent_context_metadata(@CTX_METADATA_RETURNDATA_SIZE)
// stack: len, kexit_info
DUP1
// stack: len, len, kexit_info
%mul_const(3)
// stack: out=3*len, len, kexit_info
DUP2
DUP2
// stack: out, len, out, len, kexit_info
ADD
%decrement
SWAP1
%decrement
SWAP1
// stack: cur_address=out+len-1, end_address=out-1, len, kexit_info
PUSH 0
// stack: i=0, cur_address, end_address, len, kexit_info
// Store in big-endian format.
expmod_store_loop:
// stack: i, cur_address, end_address, len, kexit_info
DUP2
// stack: cur_address, i, cur_address, end_address, len, kexit_info
%mload_kernel_general
// stack: cur_limb, i, cur_address, end_address, len, kexit_info
DUP2
// stack: i, cur_limb, i, cur_address, end_address, len, kexit_info
%mul_const(16)
// stack: offset=16*i, cur_limb, i, cur_address, end_address, len, kexit_info
%stack (offset, cur_limb) -> (@SEGMENT_RETURNDATA, offset, cur_limb, 16)
// stack: @SEGMENT_RETURNDATA, offset, cur_limb, 16, i, cur_address, end_address, len, kexit_info
%mload_context_metadata(@CTX_METADATA_PARENT_CONTEXT)
// stack: parent_ctx, @SEGMENT_RETURNDATA, offset, cur_limb, 16, i, cur_address, end_address, len, kexit_info
%mstore_unpacking
// stack: offset', i, cur_address, end_address, len, kexit_info
POP
// stack: i, cur_address, end_address, len, kexit_info
%increment
SWAP1
%decrement
SWAP1
// stack: i+1, cur_address-1, end_address, len, kexit_info
DUP3
DUP2
EQ
ISZERO
%jumpi(expmod_store_loop)
expmod_store_end:
// stack: i, cur_address, end_address, len, kexit_info
%pop4
// stack: kexit_info
%leftover_gas
// stack: leftover_gas
PUSH 1 // success
%jump(terminate_common)

5
evm/src/cpu/kernel/asm/hash/blake2/blake2b.asm
View File

@ -2,9 +2,8 @@ global blake2b:
// stack: virt, num_bytes, retdest
DUP2
// stack: num_bytes, virt, num_bytes, retdest
%add_const(127)
%div_const(128)
// stack: num_blocks = ceil(num_bytes / 128), virt, num_bytes, retdest
%ceil_div_const(128)
// stack: num_blocks, virt, num_bytes, retdest
DUP2
// stack: virt, num_blocks, virt, num_bytes, retdest
%mstore_kernel_general

6
evm/src/cpu/kernel/asm/memory/memcpy.asm
View File

@ -47,3 +47,9 @@ memcpy_finish:
%pop7
// stack: retdest
JUMP
%macro memcpy
%stack (dst: 3, src: 3, count) -> (dst, src, count, %%after)
%jump(memcpy)
%%after:
%endmacro

47
evm/src/cpu/kernel/asm/util/basic_macros.asm
View File

@ -243,6 +243,53 @@
// stack: max
%endmacro
%macro max_3
// stack: x, y, z
%max
// stack: max(x, y), z
SWAP1
// stack: z, max(x, y)
%max
// stack: max(x, y, z)
%endmacro
%macro max_const(c)
// stack: input, ...
PUSH $c
// stack: c, input, ...
%max
// stack: max(input, c), ...
%endmacro
%macro min_const(c)
// stack: input, ...
PUSH $c
// stack: c, input, ...
%min
// stack: min(input, c), ...
%endmacro
%macro ceil_div
// stack: x, y
DUP2
// stack: y, x, y
%decrement
// stack: y - 1, x, y
ADD
DIV
// stack: ceil(x / y)
%endmacro
%macro ceil_div_const(c)
// stack: x, ...
PUSH $c
// stack: c, x, ...
SWAP1
// stack: x, c, ...
%ceil_div
// stack: ceil(x / c), ...
%endmacro
%macro as_u32
%and_const(0xffffffff)
%endmacro

37
evm/src/cpu/kernel/asm/util/math.asm Normal file
View File

@ -0,0 +1,37 @@
log2_floor_helper:
// stack: val, counter, retdest
DUP1
// stack: val, val, counter, retdest
ISZERO
%jumpi(end)
// stack: val, counter, retdest
%div_const(2)
// stack: val/2, counter, retdest
SWAP1
%increment
SWAP1
// stack: val/2, counter + 1, retdest
%jump(log2_floor_helper)
end:
// stack: val, counter, retdest
POP
// stack: counter, retdest
SWAP1
// stack: retdest, counter
JUMP
global log2_floor:
// stack: val, retdest
%div_const(2)
// stack: val/2, retdest
PUSH 0
// stack: 0, val/2, retdest
SWAP1
// stack: val/2, 0, retdest
%jump(log2_floor_helper)
%macro log2_floor
%stack (val) -> (val, %%after)
%jump(log2_floor)
%%after:
%endmacro