Debug BLS

blsdata/cancun/generalities/constancy_conditions.lisp

@@ -20,5 +20,5 @@
 
 (defconstraint pair-of-inputs-constancy ()
   (if-not-zero ACC_INPUTS
-               (if (will-remain-constant! ACC_INPUTS)
+               (if-zero (- (next ACC_INPUTS) ACC_INPUTS)
                    (will-remain-constant! NONTRIVIAL_POP_BIT))))

blsdata/prague/generalities/constancy_conditions.lisp

@@ -20,5 +20,5 @@
 
 (defconstraint pair-of-inputs-constancy ()
   (if-not-zero ACC_INPUTS
-               (if (will-remain-constant! ACC_INPUTS)
+               (if-zero (- (next ACC_INPUTS) ACC_INPUTS)
                    (will-remain-constant! NONTRIVIAL_POP_BIT))))

oob/cancun/columns.lisp

@@ -42,7 +42,7 @@
   (ADD_FLAG :binary@prove)
   (MOD_FLAG :binary@prove)
   (BLS_REF_TABLE_FLAG :binary@prove)
-  (OUTGOING_INST :byte :display :opcode)
+  (OUTGOING_INST :i16 :display :opcode)
   (OUTGOING_DATA :i128 :array [4])
   (OUTGOING_RES_LO :i128))
 

oob/cancun/constants.lisp

@@ -26,10 +26,10 @@
   CT_MAX_MODEXP_PRICING        5
   CT_MAX_MODEXP_EXTRACT        3
   CT_MAX_POINT_EVALUATION      3
-  CT_MAX_BLS_G1_ADD             3
-  CT_MAX_BLS_G1_MSM             6
-  CT_MAX_BLS_G2_ADD             3
-  CT_MAX_BLS_G2_MSM             6
+  CT_MAX_BLS_G1_ADD            3
+  CT_MAX_BLS_G1_MSM            7
+  CT_MAX_BLS_G2_ADD            3
+  CT_MAX_BLS_G2_MSM            7
   CT_MAX_BLS_PAIRING_CHECK     4
   CT_MAX_BLS_MAP_FP_TO_G1      3
   CT_MAX_BLS_MAP_FP2_TO_G2     3

oob/cancun/lookups/oob-into-add.lisp

@@ -2,7 +2,7 @@
   oob.ADD_FLAG)
 
 (defclookup
-  oob-into-add
+  (oob-into-add :unchecked)
   ;; target columns
   (
     add.ARG_1

oob/cancun/lookups/oob-into-mod.lisp

@@ -2,7 +2,7 @@
   oob.MOD_FLAG)
 
 (defclookup
-  oob-into-mod
+  (oob-into-mod :unchecked)
   ;; target columns
   (
     mod.ARG_1_HI

oob/cancun/precompiles/common/bls/bls_msm.lisp

@@ -1,35 +1,39 @@
 (module oob)
 
 
-;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;                                             
-;;                                    ;;                                                 
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+;;                                    ;;
 ;;   For BLS_G1_MSM and BLS_G2_MSM    ;;
-;;                                    ;;                                                 
+;;                                    ;;
 ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
 
-(defun (prc-g1msm-prc-g2msm---standard-precondition)     
-                                                                    (+ IS_BLS_G1_MSM 
+(defun (prc-g1msm-prc-g2msm---standard-precondition)
+                                                                    (+ IS_BLS_G1_MSM
                                                                        IS_BLS_G2_MSM))
-(defun (msm-pair-size) 
-                                                                    (+  (* PRECOMPILE_CALL_DATA_UNIT_SIZE___BLS_G1_MSM             IS_BLS_G1_MSM)                                                                
+(defun (msm-pair-size)
+                                                                    (+  (* PRECOMPILE_CALL_DATA_UNIT_SIZE___BLS_G1_MSM             IS_BLS_G1_MSM)
                                                                         (* PRECOMPILE_CALL_DATA_UNIT_SIZE___BLS_G2_MSM             IS_BLS_G2_MSM)))
-(defun (max-discount) 
-                                                                    (+  (* PRC_BLS_G1_MSM_MAX_DISCOUNT         IS_BLS_G1_MSM)                                                                
+(defun (max-discount)
+                                                                    (+  (* PRC_BLS_G1_MSM_MAX_DISCOUNT         IS_BLS_G1_MSM)
                                                                         (* PRC_BLS_G2_MSM_MAX_DISCOUNT         IS_BLS_G2_MSM)))
-(defun (msm-multiplication-cost) 
-                                                                    (+  (* PRC_BLS_G1_MSM_MULTIPLICATION_COST  IS_BLS_G1_MSM)                                                                
+(defun (msm-multiplication-cost)
+                                                                    (+  (* PRC_BLS_G1_MSM_MULTIPLICATION_COST  IS_BLS_G1_MSM)
                                                                         (* PRC_BLS_G2_MSM_MULTIPLICATION_COST  IS_BLS_G2_MSM)))
 (defun (prc-g1msm-prc-g2msm---remainder)                                               (shift OUTGOING_RES_LO 2))
-(defun (prc-g1msm-prc-g2msm---cds-is-multiple-of-msm-pair-size)                         (shift OUTGOING_RES_LO 3))
-(defun (prc-g1msm-prc-g2msm---num-inputs_msm-pair-size)                                 (prc---cds))
+(defun (prc-g1msm-prc-g2msm---cds-is-multiple-of-msm-pair-size)                        (shift OUTGOING_RES_LO 3))
+(defun (prc-g1msm-prc-g2msm---num-inputs_msm-pair-size)                                (prc---cds))
 (defun (prc-g1msm-prc-g2msm---num-inputs-gt-128)                                       (shift OUTGOING_RES_LO 4))
 (defun (prc-g1msm-prc-g2msm---num-inputs-leq-128)                                      (- 1 (prc-g1msm-prc-g2msm---num-inputs-gt-128)))
-(defun (prc-g1msm-prc-g2msm---discount)                                                (shift OUTGOING_RES_LO 5))
-(defun (prc-g1msm-prc-g2msm---insufficient-gas)                                        (shift OUTGOING_RES_LO 6))
+(defun (prc-g1msm-prc-g2msm---reference-table-discount)                                (shift OUTGOING_RES_LO 5)) 
+(defun (prc-g1msm-prc-g2msm---discount)                                                
+  (if-not-zero (prc-g1msm-prc-g2msm---num-inputs-leq-128) 
+                  (prc-g1msm-prc-g2msm---reference-table-discount) 
+                  (max-discount)))
+(defun (prc-g1msm-prc-g2msm---msm-cost-numerator_msm-pair-size)                        
+  (* (prc-g1msm-prc-g2msm---num-inputs_msm-pair-size) (msm-multiplication-cost) (prc-g1msm-prc-g2msm---discount)))
+(defun (prc-g1msm-prc-g2msm---precompile-cost)                                         (shift OUTGOING_RES_LO 6))
+(defun (prc-g1msm-prc-g2msm---insufficient-gas)                                        (shift OUTGOING_RES_LO 7))
 (defun (prc-g1msm-prc-g2msm---sufficient-gas)                                          (- 1 (prc-g1msm-prc-g2msm---insufficient-gas)))
-(defun (prc-g1msm-prc-g2msm---precompile-cost_msm-pair-size_PRC_BLS_MULTIPLICATION_MULTIPLIER)       (* (prc-g1msm-prc-g2msm---num-inputs_msm-pair-size) (msm-multiplication-cost) (prc-g1msm-prc-g2msm---discount)))                       
-
-
 
 (defconstraint prc-g1msm-prc-g2msm---mod-cds-by-msm-pair-size (:guard (* (assumption---fresh-new-stamp) (prc-g1msm-prc-g2msm---standard-precondition)))
   (call-to-MOD 2 0 (prc---cds) 0 (msm-pair-size)))
@@ -63,27 +67,38 @@
                            (vanishes! (shift [OUTGOING_DATA 2] 5))
                            (vanishes! (shift [OUTGOING_DATA 3] 5))
                            (vanishes! (shift [OUTGOING_DATA 4] 5)))
-                    (begin (noCall 5)
-                           (eq! (prc-g1msm-prc-g2msm---discount) (max-discount)))))) 
-
-(defconstraint prc-g1msm-prc-g2msm---compare-call-gas-against-precompile-cost (:guard (* (assumption---fresh-new-stamp) (prc-g1msm-prc-g2msm---standard-precondition)))
+                    (begin (noCall 5)))))
+
+(defconstraint prc-g1msm-prc-g2msm---compute-precompile-cost-integer-division (:guard (* (assumption---fresh-new-stamp) (prc-g1msm-prc-g2msm---standard-precondition)))
   (if-zero (prc-g1msm-prc-g2msm---cds-is-multiple-of-msm-pair-size)
            (noCall 6)
            (begin (vanishes! (shift ADD_FLAG 6))
-                  (vanishes! (shift MOD_FLAG 6))
-                  (eq! (shift WCP_FLAG 6) 1)
+                  (eq! (shift MOD_FLAG 6) 1)
+                  (vanishes! (shift WCP_FLAG 6))
                   (vanishes! (shift BLS_REF_TABLE_FLAG 6))
-                  (eq! (shift OUTGOING_INST 6) EVM_INST_LT)
+                  (eq! (shift OUTGOING_INST 6) EVM_INST_DIV)
                   (vanishes! (shift [OUTGOING_DATA 1] 6))
-                  (eq! (shift [OUTGOING_DATA 2] 6) (prc---callee-gas))
+                  (eq! (* (shift [OUTGOING_DATA 2] 6) (msm-pair-size)) (prc-g1msm-prc-g2msm---msm-cost-numerator_msm-pair-size))
                   (vanishes! (shift [OUTGOING_DATA 3] 6))
-                  (eq! (* (shift [OUTGOING_DATA 4] 6) (msm-pair-size) PRC_BLS_MULTIPLICATION_MULTIPLIER)
-                       (prc-g1msm-prc-g2msm---precompile-cost_msm-pair-size_PRC_BLS_MULTIPLICATION_MULTIPLIER)))))
+                  (eq! (shift [OUTGOING_DATA 4] 6) PRC_BLS_MULTIPLICATION_MULTIPLIER))))
+
+(defconstraint prc-g1msm-prc-g2msm---compare-call-gas-against-precompile-cost (:guard (* (assumption---fresh-new-stamp) (prc-g1msm-prc-g2msm---standard-precondition)))
+  (if-zero (prc-g1msm-prc-g2msm---cds-is-multiple-of-msm-pair-size)
+           (noCall 7)
+           (begin (vanishes! (shift ADD_FLAG 7))
+                  (vanishes! (shift MOD_FLAG 7))
+                  (eq! (shift WCP_FLAG 7) 1)
+                  (vanishes! (shift BLS_REF_TABLE_FLAG 7))
+                  (eq! (shift OUTGOING_INST 7) EVM_INST_LT)
+                  (vanishes! (shift [OUTGOING_DATA 1] 7))
+                  (eq! (shift [OUTGOING_DATA 2] 7) (prc---callee-gas))
+                  (vanishes! (shift [OUTGOING_DATA 3] 7))
+                  (eq! (shift [OUTGOING_DATA 4] 7) (prc-g1msm-prc-g2msm---precompile-cost)))))
 
 (defconstraint prc-g1msm-prc-g2msm---justify-hub-predictions (:guard (* (assumption---fresh-new-stamp) (prc-g1msm-prc-g2msm---standard-precondition)))
   (begin (eq! (prc---hub-success)
               (* (prc---cds-is-non-zero) (prc-g1msm-prc-g2msm---cds-is-multiple-of-msm-pair-size) (prc-g1msm-prc-g2msm---sufficient-gas)))
          (if-zero (prc---hub-success)
                   (vanishes! (prc---return-gas))
-                  (eq! (* (prc---return-gas) (msm-pair-size) PRC_BLS_MULTIPLICATION_MULTIPLIER)
-                       (- (* (prc---callee-gas) (msm-pair-size) PRC_BLS_MULTIPLICATION_MULTIPLIER) (prc-g1msm-prc-g2msm---precompile-cost_msm-pair-size_PRC_BLS_MULTIPLICATION_MULTIPLIER))))))
+                  (eq! (prc---return-gas) 
+                       (- (prc---callee-gas) (prc-g1msm-prc-g2msm---precompile-cost))))))

oob/prague/columns.lisp

@@ -42,7 +42,7 @@
   (ADD_FLAG :binary@prove)
   (MOD_FLAG :binary@prove)
   (BLS_REF_TABLE_FLAG :binary@prove)
-  (OUTGOING_INST :byte :display :opcode)
+  (OUTGOING_INST :i16 :display :opcode)
   (OUTGOING_DATA :i128 :array [4])
   (OUTGOING_RES_LO :i128))
 

oob/prague/constants.lisp

@@ -26,10 +26,10 @@
   CT_MAX_MODEXP_PRICING        5
   CT_MAX_MODEXP_EXTRACT        3
   CT_MAX_POINT_EVALUATION      3
-  CT_MAX_BLS_G1_ADD             3
-  CT_MAX_BLS_G1_MSM             6
-  CT_MAX_BLS_G2_ADD             3
-  CT_MAX_BLS_G2_MSM             6
+  CT_MAX_BLS_G1_ADD            3
+  CT_MAX_BLS_G1_MSM            7
+  CT_MAX_BLS_G2_ADD            3
+  CT_MAX_BLS_G2_MSM            7
   CT_MAX_BLS_PAIRING_CHECK     4
   CT_MAX_BLS_MAP_FP_TO_G1      3
   CT_MAX_BLS_MAP_FP2_TO_G2     3

oob/prague/lookups/oob-into-add.lisp

@@ -2,7 +2,7 @@
   oob.ADD_FLAG)
 
 (defclookup
-  oob-into-add
+  (oob-into-add :unchecked)
   ;; target columns
   (
     add.ARG_1

oob/prague/lookups/oob-into-mod.lisp

@@ -2,7 +2,7 @@
   oob.MOD_FLAG)
 
 (defclookup
-  oob-into-mod
+  (oob-into-mod :unchecked)
   ;; target columns
   (
     mod.ARG_1_HI

oob/prague/precompiles/common/bls/bls_msm.lisp

@@ -20,16 +20,20 @@
                                                                     (+  (* PRC_BLS_G1_MSM_MULTIPLICATION_COST  IS_BLS_G1_MSM)
                                                                         (* PRC_BLS_G2_MSM_MULTIPLICATION_COST  IS_BLS_G2_MSM)))
 (defun (prc-g1msm-prc-g2msm---remainder)                                               (shift OUTGOING_RES_LO 2))
-(defun (prc-g1msm-prc-g2msm---cds-is-multiple-of-msm-pair-size)                         (shift OUTGOING_RES_LO 3))
-(defun (prc-g1msm-prc-g2msm---num-inputs_msm-pair-size)                                 (prc---cds))
+(defun (prc-g1msm-prc-g2msm---cds-is-multiple-of-msm-pair-size)                        (shift OUTGOING_RES_LO 3))
+(defun (prc-g1msm-prc-g2msm---num-inputs_msm-pair-size)                                (prc---cds))
 (defun (prc-g1msm-prc-g2msm---num-inputs-gt-128)                                       (shift OUTGOING_RES_LO 4))
 (defun (prc-g1msm-prc-g2msm---num-inputs-leq-128)                                      (- 1 (prc-g1msm-prc-g2msm---num-inputs-gt-128)))
-(defun (prc-g1msm-prc-g2msm---discount)                                                (shift OUTGOING_RES_LO 5))
-(defun (prc-g1msm-prc-g2msm---insufficient-gas)                                        (shift OUTGOING_RES_LO 6))
+(defun (prc-g1msm-prc-g2msm---reference-table-discount)                                (shift OUTGOING_RES_LO 5)) 
+(defun (prc-g1msm-prc-g2msm---discount)                                                
+  (if-not-zero (prc-g1msm-prc-g2msm---num-inputs-leq-128) 
+                  (prc-g1msm-prc-g2msm---reference-table-discount) 
+                  (max-discount)))
+(defun (prc-g1msm-prc-g2msm---msm-cost-numerator_msm-pair-size)                        
+  (* (prc-g1msm-prc-g2msm---num-inputs_msm-pair-size) (msm-multiplication-cost) (prc-g1msm-prc-g2msm---discount)))
+(defun (prc-g1msm-prc-g2msm---precompile-cost)                                         (shift OUTGOING_RES_LO 6))
+(defun (prc-g1msm-prc-g2msm---insufficient-gas)                                        (shift OUTGOING_RES_LO 7))
 (defun (prc-g1msm-prc-g2msm---sufficient-gas)                                          (- 1 (prc-g1msm-prc-g2msm---insufficient-gas)))
-(defun (prc-g1msm-prc-g2msm---precompile-cost_msm-pair-size_PRC_BLS_MULTIPLICATION_MULTIPLIER)       (* (prc-g1msm-prc-g2msm---num-inputs_msm-pair-size) (msm-multiplication-cost) (prc-g1msm-prc-g2msm---discount)))
-
-
 
 (defconstraint prc-g1msm-prc-g2msm---mod-cds-by-msm-pair-size (:guard (* (assumption---fresh-new-stamp) (prc-g1msm-prc-g2msm---standard-precondition)))
   (call-to-MOD 2 0 (prc---cds) 0 (msm-pair-size)))
@@ -63,27 +67,38 @@
                            (vanishes! (shift [OUTGOING_DATA 2] 5))
                            (vanishes! (shift [OUTGOING_DATA 3] 5))
                            (vanishes! (shift [OUTGOING_DATA 4] 5)))
-                    (begin (noCall 5)
-                           (eq! (prc-g1msm-prc-g2msm---discount) (max-discount))))))
+                    (begin (noCall 5)))))
 
-(defconstraint prc-g1msm-prc-g2msm---compare-call-gas-against-precompile-cost (:guard (* (assumption---fresh-new-stamp) (prc-g1msm-prc-g2msm---standard-precondition)))
+(defconstraint prc-g1msm-prc-g2msm---compute-precompile-cost-integer-division (:guard (* (assumption---fresh-new-stamp) (prc-g1msm-prc-g2msm---standard-precondition)))
   (if-zero (prc-g1msm-prc-g2msm---cds-is-multiple-of-msm-pair-size)
            (noCall 6)
            (begin (vanishes! (shift ADD_FLAG 6))
-                  (vanishes! (shift MOD_FLAG 6))
-                  (eq! (shift WCP_FLAG 6) 1)
+                  (eq! (shift MOD_FLAG 6) 1)
+                  (vanishes! (shift WCP_FLAG 6))
                   (vanishes! (shift BLS_REF_TABLE_FLAG 6))
-                  (eq! (shift OUTGOING_INST 6) EVM_INST_LT)
+                  (eq! (shift OUTGOING_INST 6) EVM_INST_DIV)
                   (vanishes! (shift [OUTGOING_DATA 1] 6))
-                  (eq! (shift [OUTGOING_DATA 2] 6) (prc---callee-gas))
+                  (eq! (* (shift [OUTGOING_DATA 2] 6) (msm-pair-size)) (prc-g1msm-prc-g2msm---msm-cost-numerator_msm-pair-size))
                   (vanishes! (shift [OUTGOING_DATA 3] 6))
-                  (eq! (* (shift [OUTGOING_DATA 4] 6) (msm-pair-size) PRC_BLS_MULTIPLICATION_MULTIPLIER)
-                       (prc-g1msm-prc-g2msm---precompile-cost_msm-pair-size_PRC_BLS_MULTIPLICATION_MULTIPLIER)))))
+                  (eq! (shift [OUTGOING_DATA 4] 6) PRC_BLS_MULTIPLICATION_MULTIPLIER))))
+
+(defconstraint prc-g1msm-prc-g2msm---compare-call-gas-against-precompile-cost (:guard (* (assumption---fresh-new-stamp) (prc-g1msm-prc-g2msm---standard-precondition)))
+  (if-zero (prc-g1msm-prc-g2msm---cds-is-multiple-of-msm-pair-size)
+           (noCall 7)
+           (begin (vanishes! (shift ADD_FLAG 7))
+                  (vanishes! (shift MOD_FLAG 7))
+                  (eq! (shift WCP_FLAG 7) 1)
+                  (vanishes! (shift BLS_REF_TABLE_FLAG 7))
+                  (eq! (shift OUTGOING_INST 7) EVM_INST_LT)
+                  (vanishes! (shift [OUTGOING_DATA 1] 7))
+                  (eq! (shift [OUTGOING_DATA 2] 7) (prc---callee-gas))
+                  (vanishes! (shift [OUTGOING_DATA 3] 7))
+                  (eq! (shift [OUTGOING_DATA 4] 7) (prc-g1msm-prc-g2msm---precompile-cost)))))
 
 (defconstraint prc-g1msm-prc-g2msm---justify-hub-predictions (:guard (* (assumption---fresh-new-stamp) (prc-g1msm-prc-g2msm---standard-precondition)))
   (begin (eq! (prc---hub-success)
               (* (prc---cds-is-non-zero) (prc-g1msm-prc-g2msm---cds-is-multiple-of-msm-pair-size) (prc-g1msm-prc-g2msm---sufficient-gas)))
          (if-zero (prc---hub-success)
                   (vanishes! (prc---return-gas))
-                  (eq! (* (prc---return-gas) (msm-pair-size) PRC_BLS_MULTIPLICATION_MULTIPLIER)
-                       (- (* (prc---callee-gas) (msm-pair-size) PRC_BLS_MULTIPLICATION_MULTIPLIER) (prc-g1msm-prc-g2msm---precompile-cost_msm-pair-size_PRC_BLS_MULTIPLICATION_MULTIPLIER))))))
+                  (eq! (prc---return-gas) 
+                       (- (prc---callee-gas) (prc-g1msm-prc-g2msm---precompile-cost))))))

reftables/prague/bls_reftable.lisp

@@ -1,7 +1,7 @@
 (module blsreftable)
 
 (defcolumns
-    (PRC_NAME   :byte)
+    (PRC_NAME   :i16)
     (NUM_INPUTS :i8) ;; greatest value is 128
     (DISCOUNT   :i10) ;; greatest value is 1000
 )