64-bit ALU Verification, Part I (#70)

* initial changes

* working build

* finish updating bitwise and jal

* build errors

* revert sail change

* outline mul operation

* import missing

* divRem and lt

* organize files

* fixes

* some add proof

* add ITypeReader

* add AddiChip

* add AddwOperation

* add AddwChip

* add ShiftLeftChip

* add ShiftRightChip

* add SubOperation

* add SubChip

* add SubwOperation

* add SubwChip

* working add op

* fix add chip

* feat: import RV64IM (#48)

* import RV64IM

* revert to regidx from SailM after BitVec instance fix

* basic JAL outline with sailM

* slightly less axiomatic

* break out lemmas

* Sync DivRemChip

* python script to sync constraints

* sync Operations

* sync Compare

* sync Readers

* toStateProp with SailState

* AirInteraction::Program for trusted properties

* sync Reader AirInteraction::program

* Sync JalrChip

* Jalr LHS

* pc valid limbs assumption

* reusable simpM for monad simp

* b_is_u64 from reader_cstrs

* strip some whitespace for vim jumping

* reduction to hash map inserts

* not x0 case map ready except bit access

* not x0 case except bitvec

* fix some is_U64 sorrys

* small cleanup

* is x0 case pending x0 read/write handling

* return 0 when read_reg

* move simpM

* match working case 0 and 1

* SailState.get_reg?_is_rX proof

* correct write when op_a is not x0

* use the correct write behavior

* well actually arg 2 is the match input

* establish wX_bits with regidx_write

* not x0 case correct write behavior

* is x0 case op_a = 0 proof

* op_b + imm divides 4 proof

* incorporate op_b_val_plus_imm and state InteractionKind::Program constraints

* mul4 BB and BitVec helpers

* some sailM lemmas

* working build

* op_a_one case

* most of a full proof

* more general mul4 constraints

* jalr sorry-less proof except misa

* more jal

* missing modulus

* sorry-less AddOperation proof

* remove wrong BitVec lemma

* SailState.sp1_no_misa axiom

* Jalr proof with correct signExtend

* slightly better slightly worse

* slightly better slightly worse

* minor cleanup, partial proofs

* EStateM lemmas

* build error

* proof of insert_insert_insert_cancel

* axiom situation

* working through more jalr cleanup

* setup AddChip proof

* clean jalr

* swap jalr

* proof of AddChip

* ADDW

* project-wide mcp setup for subtrees/workspaces

* i_type Program assumptions

* corrected i_type

* trusted_instr for ADDW

* more Program assumptions

* JAL calculate imm with Nat to prevent BB overflow

* u_type prevent overflow as well with Nat

* no need op_c_(0|1) constraints in ADDIW case

* shift w

* u_type should only constrain op_b

* ECALL and EBREAK

* corrected ADDW

* shift w no redundant op_b

* catch stray LWU

* M extension is just r_type

* ADDW is just r_type or i_type

* correct mixed up w_shift and shift

* correct JAL/j_type

* some commenting

* ADDIW

* streamlining proofs

* streamlining ...W proofs

* modular specifications

* simpler Jalr proof

* simpler Jal proof

* LT opcodes

* SLL

* SLLs with sorried-out proofs

* SR partly working, SL needs fixing

* SL revisited

* SL revisited - correction

* SL revisited - correction

* all SRA opcodes

* full proofs for shifts

* spec_sub

* others_sub

* Bitwise chips and infrastructure

* Bitwise operations

* all proofs except mul and divrem

* initial mul reasoning

* MulOperation

* Restoring powers

* Mul

* bhword and core_mulw

* better MUL proofs

* minor corrections

* mul operation with U64, some grind and aesop

* some further automation and a bit of DivRem

---------

Co-authored-by: Devon Tuma <[email protected]>
Co-authored-by: Gavin Zhao <[email protected]>
Co-authored-by: Petar Maksimovic <[email protected]>

Author: 4 people

SP1Chips/AddChip.lean

@@ -18,7 +18,7 @@ variable
 
 def spec_add (rs2 rs1 rd : regidx) : SailM Unit := do
   Sail.writeReg Register.nextPC ((← Sail.readReg Register.PC) + 4#64)
-  _ ← execute_RTYPE rs2 rs1 rd rop.ADD
+  _ ← execute (.RTYPE (rs2, rs1, rd, rop.ADD))
   pure ()
 
 def sp1_op_a : BitVec 5 :=
@@ -68,38 +68,40 @@ def sp1_op_c : BitVec 5 :=
 
 def sp1_add : SailM Unit := do
   let op_a := sp1_op_a Main cstrs h_is_real
-  Sail.writeReg Register.nextPC (Word.toBitVec64 #v[Main[3], Main[4], Main[5], 0] + 4)
+  Sail.writeReg Register.nextPC (Word.toBitVec64 #v[Main[3] + 4, Main[4], Main[5], 0])
   Sail.write_reg op_a (Word.toBitVec64 #v[Main[28], Main[29], Main[30], Main[31]])
 
 open Sail
 
-theorem correct
+set_option pp.parens true in
+theorem correct_add
   (state_cstrs : (constraints Main).initialState s) :
   let op_c := sp1_op_c Main cstrs h_is_real
   let op_b := sp1_op_b Main cstrs h_is_real
   let op_a := sp1_op_a Main cstrs h_is_real
   (spec_add (.Regidx op_c) (.Regidx op_b) (.Regidx op_a)).run s = (sp1_add Main cstrs h_is_real).run s
   := by
-    -- Obtain and simplify state and pure constraints
     simp [SP1ConstraintList.initialState, constraints, SP1Constraint.toStateProp, List.Forall, AddOperation.constraints, CPUState.constraints, RTypeReader.constraints, h_is_real] at state_cstrs
     obtain ⟨read_pc, trusted_instr_state, _, read_op_b, read_op_c⟩ := state_cstrs
     simp [constraints] at cstrs
     obtain ⟨add_op_cstrs, cpu_cstrs, reader_cstrs, rest⟩ := cstrs
-    apply AddOperation.correct (h_is_real := h_is_real) at add_op_cstrs
     rw [CPUState.allHold_constraints_iff_is_real h_is_real] at cpu_cstrs
     rw [RTypeReader.allHold_constraints_iff_is_real h_is_real] at reader_cstrs
     obtain ⟨ trusted_instr_prop, _, _, _, _, _, _, ⟨ ⟨ _, _, ⟨ _, is_U64_b, is_U64_c ⟩ ⟩, _ ⟩⟩ := reader_cstrs
     simp [Opcode.ofNat, Nat.ble] at trusted_instr_state trusted_instr_prop
-    specialize add_op_cstrs is_U64_b is_U64_c
+
+    rw [h_is_real] at *
+    apply AddOperation.spec is_U64_b is_U64_c at add_op_cstrs
     obtain ⟨ is_U64_val, is_add ⟩ := add_op_cstrs
     simp at *
 
     -- Now the monadic manipulation
-    simp [spec_add, sp1_add, execute_RTYPE]
+    simp [spec_add, sp1_add, execute, execute_RTYPE']
     rw [run_readReg, read_pc]
     simp [sp1_op_b, read_op_b (by omega)]
     simp [sp1_op_c, read_op_c (by omega)]
     simp [sp1_op_a]
+    rw [BabyBear.add4_into_pc_ofNat (by omega)]
 
     by_cases h_is_op_a_0 : Main[6] = 0 <;> simp_all
     . rw [← is_add]

SP1Chips/AddiChip.lean

@@ -2,3 +2,101 @@ import SP1Operations.Operation.AddOperation
 import SP1Operations.Reader.CPUState
 import SP1Operations.Reader.ITypeReader
 import SP1Chips.Addi.Constraints
+
+import SP1Chips.Add.Constraints
+
+open LeanRV64IM.Functions BitVec
+
+namespace Addi
+
+variable
+  (Main : Vector (Fin BB) 30)
+  (s : SailState)
+  (cstrs : (constraints Main).allHold)
+  (h_is_real : Main[29] = 1)
+
+def spec_addi (imm : BitVec 12) (rs1 rd : regidx) : SailM Unit := do
+  Sail.writeReg Register.nextPC ((← Sail.readReg Register.PC) + 4#64)
+  _ ← execute (.ITYPE (imm, rs1, rd, iop.ADDI))
+  pure ()
+
+def sp1_op_a : BitVec 5 :=
+  by
+    refine BitVec.ofNatLT Main[6] ?_
+    simp
+    show Main[6] < 32
+
+    have reader_cstrs := by
+      simp [SP1ConstraintList.allHold, constraints, SP1Constraint.toProp] at cstrs
+      exact cstrs.2.2.1
+
+    clear cstrs
+    simp [ITypeReader.constraints, h_is_real, Opcode.ofNat, Nat.ble, Nat.beq, SP1Constraint.toProp] at reader_cstrs
+
+    exact reader_cstrs.1.2.1
+
+def sp1_op_b : BitVec 5 :=
+  by
+    refine BitVec.ofNatLT Main[14] ?_
+    simp
+    show Main[14] < 32
+
+    have reader_cstrs := by
+      simp [SP1ConstraintList.allHold, constraints, SP1Constraint.toProp] at cstrs
+      exact cstrs.2.2.1
+
+    clear cstrs
+    simp [ITypeReader.constraints, h_is_real, Opcode.ofNat, Nat.ble, Nat.beq, SP1Constraint.toProp] at reader_cstrs
+
+    exact reader_cstrs.1.1.1
+
+def sp1_op_c : BitVec 12 := BitVec.ofNat 12 Main[21].val
+
+def sp1_addi : SailM Unit := do
+  let op_a := sp1_op_a Main cstrs h_is_real
+  Sail.writeReg Register.nextPC (Word.toBitVec64 #v[Main[3] + 4, Main[4], Main[5], 0])
+  Sail.write_reg op_a (Word.toBitVec64 #v[Main[25], Main[26], Main[27], Main[28]])
+
+open Sail
+
+theorem correct_addi
+  (state_cstrs : (constraints Main).initialState s) :
+  let op_c := sp1_op_c Main
+  let op_b := sp1_op_b Main cstrs h_is_real
+  let op_a := sp1_op_a Main cstrs h_is_real
+  (spec_addi op_c (.Regidx op_b) (.Regidx op_a)).run s = (sp1_addi Main cstrs h_is_real).run s
+  := by
+    -- Obtain and simplify state and pure constraints
+    simp [SP1ConstraintList.initialState, constraints, SP1Constraint.toStateProp, List.Forall, AddOperation.constraints, CPUState.constraints, ITypeReader.constraints, h_is_real] at state_cstrs
+    obtain ⟨read_pc, trusted_instr_state, read_op_b, read_op_c⟩ := state_cstrs
+    simp [constraints] at cstrs
+    obtain ⟨add_op_cstrs, cpu_cstrs, reader_cstrs, rest⟩ := cstrs
+    rw [CPUState.allHold_constraints_iff_is_real h_is_real] at cpu_cstrs
+    rw [ITypeReader.allHold_constraints_iff_is_real h_is_real] at reader_cstrs
+    obtain ⟨ trusted_instr_prop, _, _, c0, c1, c2, c3, _, _, _, _, _, _, _, _, _, _, ⟨ is_U64_a, is_U64_b, _ ⟩⟩ := reader_cstrs
+    simp_all [Opcode.ofNat, Nat.ble]
+    have is_U64_c : Word.isU64 #v[Main[21], Main[22], Main[23], Main[24]]
+      := by apply Word.isU64_of_cases c0 c1 c2 c3
+
+    rw [h_is_real] at *
+    apply AddOperation.spec is_U64_b is_U64_c at add_op_cstrs
+    obtain ⟨ is_U64_val, is_add ⟩ := add_op_cstrs
+    simp at *
+
+    -- Now the monadic manipulation
+    simp [spec_addi, sp1_addi, execute, execute_ITYPE]
+    rw [run_readReg, read_pc]
+    simp [sp1_op_b, read_op_b]
+    simp [sp1_op_c, read_op_c]
+    simp [sp1_op_a]
+    rw [BabyBear.add4_into_pc_ofNat (by omega)]
+
+    by_cases h_is_op_a_0 : Main[6] = 0 <;> simp_all
+    . rw [← is_add]
+      simp [Word.toBitVec64, Word.toNat]
+    . rw [if_neg (by simpa [← BitVec.toNat_inj])]
+      rw [if_neg (by simpa [← BitVec.toNat_inj])]
+      simp [Word.toBitVec64, Word.toNat]
+      rfl
+
+end Addi

SP1Chips/AddwChip.lean

@@ -2,3 +2,227 @@ import SP1Operations.Operation.AddwOperation
 import SP1Operations.Reader.CPUState
 import SP1Operations.Reader.ALUTypeReader
 import SP1Chips.Addw.Constraints
+
+open LeanRV64IM.Functions
+open BitVec
+
+namespace Addw
+
+variable
+  (Main : Vector (Fin BB) 37)
+  (s : SailState)
+  (cstrs : (constraints Main).allHold)
+  (h_is_real : Main[35] = 1)
+  (h_is_addw : Main[31] = 0)
+
+def spec_addw (rs2 rs1 rd : regidx) : SailM Unit := do
+  Sail.writeReg Register.nextPC ((← Sail.readReg Register.PC) + 4#64)
+  _ ← execute_RTYPEW rs2 rs1 rd ropw.ADDW
+  pure ()
+
+def sp1_op_a : BitVec 5 :=
+  by
+    refine BitVec.ofNatLT Main[6] ?_
+    simp
+    show Main[6] < 32
+
+    have alu_cstrs := by
+      simp [SP1ConstraintList.allHold, constraints, SP1Constraint.toProp] at cstrs
+      exact cstrs.2.2.1
+
+    clear cstrs
+    simp [ALUTypeReader.constraints, h_is_real, Opcode.ofNat, Nat.ble, Nat.beq, SP1Constraint.toProp] at alu_cstrs
+
+    exact alu_cstrs.1.2.1
+
+def sp1_op_b : BitVec 5 :=
+  by
+    refine BitVec.ofNatLT Main[14] ?_
+    simp
+    show Main[14] < 32
+
+    have alu_cstrs := by
+      simp [SP1ConstraintList.allHold, constraints, SP1Constraint.toProp] at cstrs
+      exact cstrs.2.2.1
+
+    clear cstrs
+    have : (Main[31] = 0 ∨ Main[31] = 1) := by
+      simp [ALUTypeReader.allHold_constraints_iff_is_real (h := h_is_real), Opcode.ofNat, Nat.ble] at alu_cstrs
+      aesop
+
+    simp [ALUTypeReader.allHold_constraints_iff_is_real (h := h_is_real), Opcode.ofNat, Nat.ble] at alu_cstrs
+    rcases this <;> simp_all
+
+def sp1_op_c : BitVec 5 :=
+  by
+    refine BitVec.ofNatLT Main[21] ?_
+    simp
+    show Main[21] < 32
+
+    have alu_cstrs := by
+      simp [SP1ConstraintList.allHold, constraints, SP1Constraint.toProp] at cstrs
+      exact cstrs.2.2.1
+
+    clear cstrs
+    simp [ALUTypeReader.allHold_constraints_iff_is_real (h := h_is_real), Opcode.ofNat, Nat.ble, h_is_addw] at alu_cstrs
+
+    exact alu_cstrs.1.2.1
+
+def sp1_addw : SailM Unit := do
+  let op_a := sp1_op_a Main cstrs h_is_real
+  Sail.writeReg Register.nextPC (Word.toBitVec64 #v[Main[3] + 4, Main[4], Main[5], 0])
+  Sail.write_reg op_a (Word.toBitVec64 #v[Main[32], Main[33], Main[34] * 65535, Main[34] * 65535])
+
+set_option maxHeartbeats 1000000 in
+theorem correct_addw
+  (state_cstrs : (constraints Main).initialState s)
+  (h_is_addw : Main[31] = 0) :
+  let op_c := sp1_op_c Main cstrs h_is_real h_is_addw
+  let op_b := sp1_op_b Main cstrs h_is_real h_is_addw
+  let op_a := sp1_op_a Main cstrs h_is_real
+  (spec_addw (.Regidx op_c) (.Regidx op_b) (.Regidx op_a)).run s = (sp1_addw Main cstrs h_is_real).run s
+  := by
+    simp [SP1ConstraintList.initialState, constraints, SP1Constraint.toStateProp, List.Forall, AddwOperation.constraints, CPUState.constraints, ALUTypeReader.constraints, U16MSBOperation.constraints, h_is_real] at state_cstrs
+    obtain ⟨read_pc, trusted_instr_state, read_op_a, read_op_b, read_op_c⟩ := state_cstrs
+    simp [constraints] at cstrs
+    obtain ⟨addw_op_cstrs, cpu_cstrs, alu_cstrs, _, _⟩ := cstrs
+    rw [CPUState.allHold_constraints_iff_is_real h_is_real] at cpu_cstrs
+    rw [ALUTypeReader.allHold_constraints_iff_is_real h_is_real] at alu_cstrs
+    obtain ⟨ trusted_instr_prop, _, _, _, _, _, _, _, _, _, _, _, _, _, _, is_U64_a, is_U64_b, is_U64_c , _, _ ⟩ := alu_cstrs
+    simp [Opcode.ofNat, Nat.ble] at *
+    simp_all
+    obtain ⟨ _, _, is_U64_c ⟩ := is_U64_c
+
+    rw [h_is_real] at *
+    apply AddwOperation.spec is_U64_b is_U64_c at addw_op_cstrs
+    obtain ⟨ is_U32_val, is_addw, is_msb ⟩ := addw_op_cstrs
+    simp_all
+
+    -- Now the monadic manipulation
+    simp [spec_addw, sp1_addw, execute, execute_RTYPEW']
+    rw [Sail.run_readReg, read_pc]
+    simp [sp1_op_a, sp1_op_b, sp1_op_c, read_op_b, read_op_c]
+    rw [exec_RTYPEW_pure_bv_to_w _ _ _ (by omega) (by omega)]
+    simp [execute_RTYPEW_pure_w]
+    rw [← is_addw] at is_msb
+    rw [BabyBear.add4_into_pc_ofNat (by omega)]
+
+    by_cases h_is_op_a_0 : Main[6] = 0 <;> simp_all
+    . simp [Word.toBitVec64, Word.toNat]
+    . rw [if_neg (by simpa [← BitVec.toNat_inj])]
+      rw [if_neg (by simpa [← BitVec.toNat_inj])]
+      simp [Word.toBitVec64, Word.toNat]
+      rw [← is_addw]; congr
+      rw [HWord.sign_extend_32_to_64_msb is_U32_val]
+      simp [Word.toBitVec64, Word.toNat]
+
+end Addw
+
+namespace Addiw
+
+open Addw
+
+variable
+  (Main : Vector (Fin BB) 37)
+  (s : SailState)
+  (cstrs : (constraints Main).allHold)
+  (h_is_real : Main[35] = 1)
+  (h_is_addiw : Main[31] = 1)
+
+def spec_addiw (imm : BitVec 12) (rs1 rd : regidx) : SailM Unit := do
+  Sail.writeReg Register.nextPC ((← Sail.readReg Register.PC) + 4#64)
+  _ ← execute_ADDIW imm rs1 rd
+  pure ()
+
+def sp1_op_a : BitVec 5 :=
+  by
+    refine BitVec.ofNatLT Main[6] ?_
+    simp
+    show Main[6] < 32
+
+    have alu_cstrs := by
+      simp [SP1ConstraintList.allHold, constraints, SP1Constraint.toProp] at cstrs
+      exact cstrs.2.2.1
+
+    clear cstrs
+    simp [ALUTypeReader.constraints, h_is_real, Opcode.ofNat, Nat.ble, Nat.beq, SP1Constraint.toProp] at alu_cstrs
+
+    exact alu_cstrs.1.2.1
+
+def sp1_op_b : BitVec 5 :=
+  by
+    refine BitVec.ofNatLT Main[14] ?_
+    simp
+    show Main[14] < 32
+
+    have alu_cstrs := by
+      simp [SP1ConstraintList.allHold, constraints, SP1Constraint.toProp] at cstrs
+      exact cstrs.2.2.1
+
+    clear cstrs
+    have : (Main[31] = 0 ∨ Main[31] = 1) := by
+      simp [ALUTypeReader.allHold_constraints_iff_is_real (h := h_is_real), Opcode.ofNat, Nat.ble] at alu_cstrs
+      aesop
+
+    simp [ALUTypeReader.allHold_constraints_iff_is_real (h := h_is_real), Opcode.ofNat, Nat.ble] at alu_cstrs
+    rcases this <;> simp_all
+
+def sp1_op_c : BitVec 12 := BitVec.ofNat 12 Main[21].val
+
+def sp1_addiw : SailM Unit := do
+  let op_a := sp1_op_a Main cstrs h_is_real
+  -- TODO(gzgz): we can obtain this from the constraint compiler
+  -- This comes from the Interaction.state in CPUState
+  Sail.writeReg Register.nextPC (Word.toBitVec64 #v[Main[3] + 4, Main[4], Main[5], 0])
+  Sail.write_reg op_a (Word.toBitVec64 #v[Main[32], Main[33], Main[34] * 65535, Main[34] * 65535])
+
+set_option maxHeartbeats 1000000 in
+theorem correct_addw
+  (state_cstrs : (constraints Main).initialState s) :
+  let op_c := sp1_op_c Main
+  let op_b := sp1_op_b Main cstrs h_is_real h_is_addiw
+  let op_a := sp1_op_a Main cstrs h_is_real
+  (spec_addiw op_c (.Regidx op_b) (.Regidx op_a)).run s = (sp1_addiw Main cstrs h_is_real).run s
+  := by
+    -- Obtain and simplify state and pure constraints
+    simp [SP1ConstraintList.initialState, constraints, SP1Constraint.toStateProp, List.Forall, AddwOperation.constraints, CPUState.constraints, ALUTypeReader.constraints, U16MSBOperation.constraints, h_is_real] at state_cstrs
+    obtain ⟨read_pc, trusted_instr_state, read_op_a, read_op_b, read_op_c⟩ := state_cstrs
+    simp [constraints] at cstrs
+    obtain ⟨addw_op_cstrs, cpu_cstrs, alu_cstrs, _, _⟩ := cstrs
+    rw [CPUState.allHold_constraints_iff_is_real h_is_real] at cpu_cstrs
+    rw [ALUTypeReader.allHold_constraints_iff_is_real h_is_real] at alu_cstrs
+    obtain ⟨ trusted_instr_prop, _, _, ⟨ c0, c1, c2, c3 ⟩, _, _, _, _, _, _, _, _, _, _, _, is_U64_a, is_U64_b, _, _, _ ⟩ := alu_cstrs
+    simp [Opcode.ofNat, Nat.ble] at *
+    simp_all
+    have is_U64_c : Word.isU64 #v[Main[21], Main[22], Main[23], Main[24]]
+      := by apply Word.isU64_of_cases c0 c1 c2 c3
+
+    rw [h_is_real] at *
+    apply AddwOperation.spec is_U64_b is_U64_c at addw_op_cstrs
+    obtain ⟨ is_U32_val, is_addw, is_msb ⟩ := addw_op_cstrs
+    simp_all
+
+    obtain ⟨ h_f, h_imm_c ⟩ := trusted_instr_prop
+    simp [h_is_addiw] at h_f h_imm_c
+    obtain ⟨ h_c, h_is_imm_c ⟩ := h_imm_c
+
+    -- Now the monadic manipulation
+    simp [spec_addiw, sp1_addiw, execute, execute_ADDIW']
+    rw [Sail.run_readReg, read_pc]
+    simp [sp1_op_a, sp1_op_b, sp1_op_c, read_op_b]
+    rw [← h_is_imm_c]
+    rw [exec_RTYPEW_pure_bv_to_w _ _ _ (by omega) (by omega)]
+    simp [execute_RTYPEW_pure_w]
+    rw [← is_addw] at is_msb
+    rw [BabyBear.add4_into_pc_ofNat (by omega)]
+
+    by_cases h_is_op_a_0 : Main[6] = 0 <;> simp_all
+    . simp [Word.toBitVec64, Word.toNat]
+    . rw [if_neg (by simpa [← BitVec.toNat_inj])]
+      rw [if_neg (by simpa [← BitVec.toNat_inj])]
+      simp [Word.toBitVec64, Word.toNat]
+      rw [← is_addw]; congr
+      rw [HWord.sign_extend_32_to_64_msb is_U32_val]
+      simp [Word.toBitVec64, Word.toNat]
+
+end Addiw