From 37bcc7be336b3ceb23f32bde1f3c17d286380da6 Mon Sep 17 00:00:00 2001 From: Minhyuk Kim Date: Tue, 10 Dec 2024 15:24:02 +0900 Subject: [PATCH 1/9] Add 4-byte alignment check on pc in JAL/JALR instructions --- rvgo/fast/vm.go | 14 ++++++++++++-- rvgo/slow/vm.go | 14 ++++++++++++-- rvsol/src/RISCV.sol | 17 ++++++++++++++--- 3 files changed, 38 insertions(+), 7 deletions(-) diff --git a/rvgo/fast/vm.go b/rvgo/fast/vm.go index 3e1755d..710b611 100644 --- a/rvgo/fast/vm.go +++ b/rvgo/fast/vm.go @@ -833,13 +833,23 @@ func (inst *InstrumentedState) riscvStep() (outErr error) { imm := parseImmTypeJ(instr) rdValue := add64(pc, toU64(4)) setRegister(rd, rdValue) - setPC(add64(pc, signExtend64(shl64(toU64(1), imm), toU64(20)))) // signed offset in multiples of 2 bytes (last bit is there, but ignored) + + newPC := add64(pc, signExtend64(shl64(toU64(1), imm), toU64(20))) + if newPC&3 != 0 { // quick target alignment check + revertWithCode(riscv.ErrNotAlignedAddr, fmt.Errorf("pc %d not aligned with 4 bytes", newPC)) + } + setPC(newPC) // signed offset in multiples of 2 bytes (last bit is there, but ignored) case 0x67: // 110_0111: JALR = Jump and link register rs1Value := getRegister(rs1) imm := parseImmTypeI(instr) rdValue := add64(pc, toU64(4)) setRegister(rd, rdValue) - setPC(and64(add64(rs1Value, signExtend64(imm, toU64(11))), xor64(u64Mask(), toU64(1)))) // least significant bit is set to 0 + + newPC := and64(add64(rs1Value, signExtend64(imm, toU64(11))), xor64(u64Mask(), toU64(1))) + if newPC&3 != 0 { // quick addr alignment check + revertWithCode(riscv.ErrNotAlignedAddr, fmt.Errorf("pc %d not aligned with 4 bytes", newPC)) + } + setPC(newPC) // least significant bit is set to 0 case 0x73: // 111_0011: environment things switch funct3 { case 0: // 000 = ECALL/EBREAK diff --git a/rvgo/slow/vm.go b/rvgo/slow/vm.go index 458f00c..78c8004 100644 --- a/rvgo/slow/vm.go +++ b/rvgo/slow/vm.go @@ -1006,13 +1006,23 @@ func Step(calldata []byte, po PreimageOracle) (stateHash common.Hash, outErr err imm := parseImmTypeJ(instr) rdValue := add64(pc, toU64(4)) setRegister(rd, rdValue) - setPC(add64(pc, signExtend64(shl64(toU64(1), imm), toU64(20)))) // signed offset in multiples of 2 bytes (last bit is there, but ignored) + + newPC := add64(pc, signExtend64(shl64(toU64(1), imm), toU64(20))) + if and64(newPC, toU64(3)) != (U64{}) { // quick target alignment check + revertWithCode(riscv.ErrNotAlignedAddr, fmt.Errorf("pc %d not aligned with 4 bytes", newPC)) + } + setPC(newPC) // signed offset in multiples of 2 bytes (last bit is there, but ignored) case 0x67: // 110_0111: JALR = Jump and link register rs1Value := getRegister(rs1) imm := parseImmTypeI(instr) rdValue := add64(pc, toU64(4)) setRegister(rd, rdValue) - setPC(and64(add64(rs1Value, signExtend64(imm, toU64(11))), xor64(u64Mask(), toU64(1)))) // least significant bit is set to 0 + + newPC := and64(add64(rs1Value, signExtend64(imm, toU64(11))), xor64(u64Mask(), toU64(1))) + if and64(newPC, toU64(3)) != (U64{}) { // quick target alignment check + revertWithCode(riscv.ErrNotAlignedAddr, fmt.Errorf("pc %d not aligned with 4 bytes", newPC)) + } + setPC(newPC) // least significant bit is set to 0 case 0x73: // 111_0011: environment things switch funct3.val() { case 0: // 000 = ECALL/EBREAK diff --git a/rvsol/src/RISCV.sol b/rvsol/src/RISCV.sol index 1bbb681..df32d8c 100644 --- a/rvsol/src/RISCV.sol +++ b/rvsol/src/RISCV.sol @@ -1496,7 +1496,13 @@ contract RISCV is IBigStepper { let imm := parseImmTypeJ(instr) let rdValue := add64(_pc, toU64(4)) setRegister(rd, rdValue) - setPC(add64(_pc, signExtend64(shl64(toU64(1), imm), toU64(20)))) // signed offset in multiples of 2 + + let newPC := add64(_pc, signExtend64(shl64(toU64(1), imm), toU64(20))) + if and64(newPC, toU64(3)) { + // quick target alignment check + revertWithCode(0xbad10ad0) // target not aligned with 4 bytes + } + setPC(newPC) // signed offset in multiples of 2 // bytes (last bit is there, but ignored) } case 0x67 { @@ -1505,8 +1511,13 @@ contract RISCV is IBigStepper { let imm := parseImmTypeI(instr) let rdValue := add64(_pc, toU64(4)) setRegister(rd, rdValue) - setPC(and64(add64(rs1Value, signExtend64(imm, toU64(11))), xor64(u64Mask(), toU64(1)))) // least - // significant bit is set to 0 + + let newPC := and64(add64(rs1Value, signExtend64(imm, toU64(11))), xor64(u64Mask(), toU64(1))) + if and64(newPC, toU64(3)) { + // quick target alignment check + revertWithCode(0xbad10ad0) // target not aligned with 4 bytes + } + setPC(newPC) // least significant bit is set to 0 } case 0x73 { // 111_0011: environment things From b4be6af85c2d0bb919c0900dc9faf14c8ac446fa Mon Sep 17 00:00:00 2001 From: Minhyuk Kim Date: Tue, 10 Dec 2024 15:48:27 +0900 Subject: [PATCH 2/9] Check if the storeMem size is greater than 8 for slow / solidity vm --- rvgo/slow/vm.go | 4 ++++ rvsol/src/RISCV.sol | 2 ++ 2 files changed, 6 insertions(+) diff --git a/rvgo/slow/vm.go b/rvgo/slow/vm.go index 458f00c..3876b26 100644 --- a/rvgo/slow/vm.go +++ b/rvgo/slow/vm.go @@ -453,6 +453,10 @@ func Step(calldata []byte, po PreimageOracle) (stateHash common.Hash, outErr err setMemoryB32(rightAddr, beWordAsB32(right), proofIndexR) } storeMem := func(addr U64, size U64, value U64, proofIndexL uint8, proofIndexR uint8) { + if size.val() > 8 { + revertWithCode(riscv.ErrStoreExceeds8Bytes, fmt.Errorf("cannot store more than 8 bytes: %d", size)) + } + storeMemUnaligned(addr, size, u64ToU256(value), proofIndexL, proofIndexR) } diff --git a/rvsol/src/RISCV.sol b/rvsol/src/RISCV.sol index 1bbb681..fb524f2 100644 --- a/rvsol/src/RISCV.sol +++ b/rvsol/src/RISCV.sol @@ -738,6 +738,8 @@ contract RISCV is IBigStepper { } function storeMem(addr, size, value, proofIndexL, proofIndexR) { + if gt(size, 8) { revertWithCode(0xbad512e8) } // cannot store more than 8 bytes + storeMemUnaligned(addr, size, u64ToU256(value), proofIndexL, proofIndexR) } From a54b6ca6650cf238d612a17381eb09d2117c0897 Mon Sep 17 00:00:00 2001 From: Minhyuk Kim Date: Tue, 10 Dec 2024 23:37:51 +0900 Subject: [PATCH 3/9] Fix imm in JAL instruction test to be 4-byte aligned --- rvsol/test/RISCV.t.sol | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/rvsol/test/RISCV.t.sol b/rvsol/test/RISCV.t.sol index 79849ff..067aa1e 100644 --- a/rvsol/test/RISCV.t.sol +++ b/rvsol/test/RISCV.t.sol @@ -2246,7 +2246,7 @@ contract RISCV_Test is CommonTest { /* J Type instructions */ function test_jal_succeeds() public { - uint32 imm = 0xbef054ae; + uint32 imm = 0xbef054ac; uint32 insn = encodeJType(0x6f, 5, imm); // jal x5, imm (State memory state, bytes memory proof) = constructRISCVState(0, insn); bytes memory encodedState = encodeState(state); From 36b7895c12a75ee42d754785047b5680ee4c6a15 Mon Sep 17 00:00:00 2001 From: Minhyuk Kim Date: Thu, 12 Dec 2024 00:09:26 +0900 Subject: [PATCH 4/9] Check size is not greater than 8 for RV32A and RV63A --- rvgo/fast/vm.go | 2 +- rvgo/slow/vm.go | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/rvgo/fast/vm.go b/rvgo/fast/vm.go index 3e1755d..fab7f6a 100644 --- a/rvgo/fast/vm.go +++ b/rvgo/fast/vm.go @@ -867,7 +867,7 @@ func (inst *InstrumentedState) riscvStep() (outErr error) { // 0b010 == RV32A W variants // 0b011 == RV64A D variants size := shl64(funct3, toU64(1)) - if lt64(size, toU64(4)) != 0 { + if lt64(size, toU64(4)) != 0 || gt64(size, toU64(8)) != 0 { revertWithCode(riscv.ErrBadAMOSize, fmt.Errorf("bad AMO size: %d", size)) } addr := getRegister(rs1) diff --git a/rvgo/slow/vm.go b/rvgo/slow/vm.go index 458f00c..b464cc7 100644 --- a/rvgo/slow/vm.go +++ b/rvgo/slow/vm.go @@ -1040,7 +1040,7 @@ func Step(calldata []byte, po PreimageOracle) (stateHash common.Hash, outErr err // 0b010 == RV32A W variants // 0b011 == RV64A D variants size := shl64(funct3, toU64(1)) - if lt64(size, toU64(4)) != (U64{}) { + if or64(lt64(size, toU64(4)), gt64(size, toU64(8))) != (U64{}) { revertWithCode(riscv.ErrBadAMOSize, fmt.Errorf("bad AMO size: %d", size)) } addr := getRegister(rs1) From 81ee55117cad1b545ff4d91da4b08b6546805c42 Mon Sep 17 00:00:00 2001 From: Minhyuk Kim Date: Sun, 15 Dec 2024 17:58:20 +0900 Subject: [PATCH 5/9] Add function selector check for slow vm --- rvgo/slow/vm.go | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/rvgo/slow/vm.go b/rvgo/slow/vm.go index 458f00c..6dc1820 100644 --- a/rvgo/slow/vm.go +++ b/rvgo/slow/vm.go @@ -1,6 +1,7 @@ package slow import ( + "bytes" "encoding/binary" "fmt" @@ -121,6 +122,12 @@ func Step(calldata []byte, po PreimageOracle) (stateHash common.Hash, outErr err return } + // First 4 bytes of keccak256("step(bytes,bytes,bytes32)") + expectedSelector := []byte{0xe1, 0x4c, 0xed, 0x32} + if len(calldata) < 4 || !bytes.Equal(calldata[:4], expectedSelector) { + panic("invalid function selector") + } + stateContentOffset := uint8(4 + 32 + 32 + 32 + 32) if iszero(eq(b32asBEWord(calldataload(toU64(4+32*3))), shortToU256(stateSize))) { // user-provided state size must match expected state size From 83efd3a5042d4fa3bb088d4c86ed0f0c2b0eccc4 Mon Sep 17 00:00:00 2001 From: Minhyuk Kim Date: Mon, 16 Dec 2024 11:02:41 +0900 Subject: [PATCH 6/9] Add solidity test for revert case --- rvsol/test/RISCV.t.sol | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/rvsol/test/RISCV.t.sol b/rvsol/test/RISCV.t.sol index 067aa1e..e4b0d1f 100644 --- a/rvsol/test/RISCV.t.sol +++ b/rvsol/test/RISCV.t.sol @@ -2460,6 +2460,17 @@ contract RISCV_Test is CommonTest { riscv.step(encodedState, proof, 0); } + function test_revert_unaligned_jal_instruction() public { + // 0xbef054ae % 4 != 0 + uint32 imm = 0xbef054ae; + uint32 insn = encodeJType(0x6f, 5, imm); // jal x5, imm + (State memory state, bytes memory proof) = constructRISCVState(0, insn); + bytes memory encodedState = encodeState(state); + + vm.expectRevert(hex"00000000000000000000000000000000000000000000000000000000bad10ad0"); + riscv.step(encodedState, proof, 0); + } + /* Helper methods */ function encodeState(State memory state) internal pure returns (bytes memory) { From 3cb6a86b7363cf7c0e3d5619799b068354901e3b Mon Sep 17 00:00:00 2001 From: Cypher Pepe <125112044+cypherpepe@users.noreply.github.com> Date: Thu, 2 Jan 2025 14:38:10 +0300 Subject: [PATCH 7/9] Update broken link riscv.md --- docs/riscv.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/riscv.md b/docs/riscv.md index 54740ac..40bff5f 100644 --- a/docs/riscv.md +++ b/docs/riscv.md @@ -3,7 +3,7 @@ ## Helpful learning resources - rv32 instruction set cheat sheet: http://blog.translusion.com/images/posts/RISC-V-cheatsheet-RV32I-4-3.pdf -- rv32: reference card: https://github.com/jameslzhu/riscv-card/blob/master/riscv-card.pdf +- rv32: reference card: https://github.com/jameslzhu/riscv-card/releases/download/latest/riscv-card.pdf - online riscv32 interpreter: https://www.cs.cornell.edu/courses/cs3410/2019sp/riscv/interpreter/# - specs: https://riscv.org/technical/specifications/ - Berkely riscv card: https://inst.eecs.berkeley.edu/~cs61c/fa18/img/riscvcard.pdf From 0546f18eeee315713a45ca2a42c176f88adf55da Mon Sep 17 00:00:00 2001 From: Minhyuk Kim Date: Tue, 7 Jan 2025 11:59:46 +0900 Subject: [PATCH 8/9] Correctly write over the page boundary in SetUnaligned --- rvgo/fast/memory.go | 2 +- rvgo/fast/memory_test.go | 9 +++++++++ 2 files changed, 10 insertions(+), 1 deletion(-) diff --git a/rvgo/fast/memory.go b/rvgo/fast/memory.go index e239fcd..0b65aa7 100644 --- a/rvgo/fast/memory.go +++ b/rvgo/fast/memory.go @@ -128,7 +128,7 @@ func (m *Memory) SetUnaligned(addr uint64, dat []byte) { m.Invalidate(addr) // invalidate this branch of memory, now that the value changed } - copy(p.Data[pageAddr:], dat) + copy(p.Data[pageAddr:], dat[d:]) } func (m *Memory) GetUnaligned(addr uint64, dest []byte) { diff --git a/rvgo/fast/memory_test.go b/rvgo/fast/memory_test.go index 8653a6f..9829ab9 100644 --- a/rvgo/fast/memory_test.go +++ b/rvgo/fast/memory_test.go @@ -412,3 +412,12 @@ func TestMemoryBinary(t *testing.T) { m.GetUnaligned(8, dest[:]) require.Equal(t, uint8(123), dest[0]) } + +func TestMemoryInvalidSetUnaligned(t *testing.T) { + t.Run("SetUnaligned incorrectly writes to next page", func(t *testing.T) { + m := NewMemory() + m.SetUnaligned(0x0FFE, []byte{0xaa, 0xbb, 0xcc, 0xdd}) + require.Equal(t, m.pages[0].Data[4094:], []byte{0xaa, 0xbb}) + require.Equal(t, m.pages[1].Data[0:2], []byte{0xcc, 0xdd}) + }) +} From 7274885091eae159dc3a862ba43a779346cfac8f Mon Sep 17 00:00:00 2001 From: Vini murafa <06.poems_races@icloud.com> Date: Tue, 7 Jan 2025 23:08:02 +0100 Subject: [PATCH 9/9] fix typo Update README.md --- rvsol/README.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/rvsol/README.md b/rvsol/README.md index 24c8abc..f6cf70a 100644 --- a/rvsol/README.md +++ b/rvsol/README.md @@ -40,7 +40,7 @@ forge test -vvv --ffi - There are few issues with Foundry. - Run script directly without manual build does not work with the current version of Foundry (2024-03-15 `3fa0270`). You **must run** `make build` **before** running the deploy script. ([issue](https://github.com/foundry-rs/foundry/issues/6572)) - - Some older version(2024-02-01 `2f4b5db`) of Foundry makes a dependency error reproted above issue. + - Some older version(2024-02-01 `2f4b5db`) of Foundry makes a dependency error reported above issue. Use the **latest version** of Foundry! - The deploy script can be run only once on the devnet because of the `create2` salt. - To rerun the script for dev purpose, you must restart the devnet with `make devnet-clean && make devnet-up` command on the monorepo. \ No newline at end of file + To rerun the script for dev purpose, you must restart the devnet with `make devnet-clean && make devnet-up` command on the monorepo.