Proof-of-concept for evaluator.

Author: chriseth

src/encoder.rs

@@ -1,3 +1,4 @@
+use crate::evaluator::Evaluator;
 use crate::evm_context;
 use crate::execution_position::ExecutionPositionManager;
 use crate::smt::{self, SMTExpr, SMTFormat, SMTSort, SMTStatement, SMTVariable};
@@ -29,6 +30,7 @@ pub struct Encoder<InstructionsType> {
     ssa_tracker: SSATracker,
     output: Vec<SMTStatement>,
     interpreter: InstructionsType,
+    evaluator: Evaluator,
     loop_unroll: u64,
     path_conditions: Vec<SMTExpr>,
     execution_position: ExecutionPositionManager,
@@ -155,11 +157,18 @@ impl<InstructionsType: Instructions> Encoder<InstructionsType> {
     /// Encodes the given function, potentially re-creating copies of all local variables
     /// if called multiple times.
     /// @returns the names of the function parameters and return variables.
-    pub fn encode_function(&mut self, function: &FunctionDefinition) -> FunctionVariables {
-        for param in &function.parameters {
+    pub fn encode_function(
+        &mut self,
+        function: &FunctionDefinition,
+        arguments: &Vec<SMTVariable>,
+    ) -> FunctionVariables {
+        // TODO also equate at this point for SMT, not after the call to encode_function
+        for (i, param) in function.parameters.iter().enumerate() {
             let var = self.ssa_tracker.introduce_variable(param);
+            self.evaluator.define_from_variable(&var, &arguments[i]);
             self.out(smt::declare_const(var))
         }
+
         let parameters = self.ssa_tracker.to_smt_variables(&function.parameters);
         self.encode_variable_declaration(&VariableDeclaration {
             variables: function.returns.clone(),
@@ -344,6 +353,7 @@ impl<InstructionsType: Instructions> Encoder<InstructionsType> {
     fn encode_literal(&mut self, literal: &Literal) -> SMTVariable {
         let sort = SMTSort::BV(256);
         let var = self.new_temporary_variable(sort);
+        self.evaluator.define_from_literal(&var, literal);
         self.out(smt::define_const(
             var.clone(),
             self.encode_literal_value(literal),
@@ -356,7 +366,7 @@ impl<InstructionsType: Instructions> Encoder<InstructionsType> {
     }
 
     fn encode_function_call(&mut self, call: &FunctionCall) -> Vec<SMTVariable> {
-        let arguments = call
+        let arguments: Vec<SMTVariable> = call
             .arguments
             .iter()
             .rev()
@@ -375,6 +385,9 @@ impl<InstructionsType: Instructions> Encoder<InstructionsType> {
                     .map(|_i| self.new_temporary_variable(SMTSort::BV(256)))
                     .collect();
 
+                // TODO call evaluator first or interpreter first?
+                self.evaluator
+                    .builtin_call(builtin, &arguments, &return_vars);
                 let result = self.interpreter.encode_builtin_call(
                     builtin,
                     arguments,
@@ -389,7 +402,7 @@ impl<InstructionsType: Instructions> Encoder<InstructionsType> {
             IdentifierID::Reference(id) => {
                 let fun_def = self.function_definitions[&id].clone();
 
-                let function_vars = self.encode_function(&fun_def);
+                let function_vars = self.encode_function(&fun_def, &arguments);
                 assert!(arguments.len() == function_vars.parameters.len());
                 arguments
                     .into_iter()
@@ -422,6 +435,7 @@ impl<T> Encoder<T> {
 
         for (v, val) in variables.iter().zip(values.into_iter()) {
             let var = self.ssa_tracker.allocate_new_ssa_index(v);
+            self.evaluator.define_from_variable(&var, &val);
             self.out(smt::define_const(var, val.into()));
         }
     }

src/evaluator.rs

@@ -0,0 +1,188 @@
+use std::collections::HashMap;
+
+use num_bigint::BigUint;
+use num_traits::{Num, ToPrimitive};
+use yultsur::{dialect::Builtin, yul::Literal};
+
+use crate::smt::SMTVariable;
+
+#[derive(Default)]
+pub struct Evaluator {
+    ssa_values: HashMap<String, BigUint>,
+    storage: HashMap<BigUint, BigUint>,
+}
+
+// TODO
+// As soon as we handle side-effecty things, we might have to include
+// "executing regularly":
+// sstore(0, 1)
+// stop()
+// sload(0)
+//
+// Also, storage needs to take branches into account.
+// if x { sstore(0, 1) }
+// let t := sload(0)
+//
+// If storage is not changed in a branch, its ssa variable is not updated.
+// If all storage writes are to compile-time constant variables,
+// then the Evaluator can deal with the branch joins.
+// Which means we have to have a mechanism to craete a snapshot of the state (like the SSATracker does)
+// and then combine snapshots.
+//
+// Because of packed storage, the values we store should ideally be byte-wise.
+// For now, the following could be OK:
+// It's one of the following:
+//  - unknown
+//  - a symbolic value in the lower 20 bytes (the rest of the bytes are unknown)
+//  - a concrete value
+
+impl Evaluator {
+    pub fn define_from_literal(&mut self, var: &SMTVariable, literal: &Literal) {
+        let value = &literal.literal;
+        //println!("{} := {literal}", var.name);
+        self.ssa_values.insert(
+            var.name.clone(),
+            if let Some(hex) = value.strip_prefix("0x") {
+                BigUint::from_str_radix(hex, 16).unwrap()
+            } else {
+                BigUint::from_str_radix(value, 10).unwrap()
+            },
+        );
+    }
+    pub fn define_from_variable(&mut self, var: &SMTVariable, value: &SMTVariable) {
+        //println!("{} := {}", var.name, value.name);
+        if let Some(value) = self.ssa_values.get(&value.name).cloned() {
+            self.ssa_values.insert(var.name.clone(), value);
+        }
+    }
+    pub fn builtin_call(
+        &mut self,
+        builtin: &Builtin,
+        arguments: &Vec<SMTVariable>,
+        return_vars: &[SMTVariable],
+    ) {
+        if builtin.name == "create" {
+            self.ssa_values
+                .insert(return_vars[0].name.clone(), BigUint::from(1234u64));
+        }
+        if builtin.name == "sstore" {
+            if let (Some(key), Some(value)) = (
+                self.ssa_values.get(&arguments[0].name).cloned(),
+                self.ssa_values.get(&arguments[1].name).cloned(),
+            ) {
+                self.storage.insert(key, value);
+            }
+        }
+        if builtin.name == "sload" {
+            if let Some(key) = self.ssa_values.get(&arguments[0].name).cloned() {
+                if let Some(value) = self.storage.get(&key).cloned() {
+                    self.ssa_values.insert(return_vars[0].name.clone(), value);
+                } else {
+                    // TODO assume unknown storage is some weird value - should use unknown bits later
+                    self.ssa_values.insert(
+                        return_vars[0].name.clone(),
+                        BigUint::from(0x1234567812345678u64),
+                    );
+                }
+            }
+        }
+        if matches!(
+            builtin.name,
+            "add" | "sub" | "mul" | "div" | "shl" | "shr" | "and" | "or"
+        ) {
+            if let (Some(left), Some(right)) = (
+                self.ssa_values.get(&arguments[0].name).cloned(),
+                self.ssa_values.get(&arguments[1].name).cloned(),
+            ) {
+                let two256 = BigUint::from(1u64) << 256;
+                let result = match builtin.name {
+                    "add" => wrap(left + right),
+                    "sub" => wrap(left + two256 - right),
+                    "shl" => {
+                        if left >= 256u64.into() {
+                            BigUint::from(0u64)
+                        } else {
+                            wrap(right << left.to_u64().unwrap())
+                        }
+                    }
+                    "shr" => {
+                        if left >= 256u64.into() {
+                            BigUint::from(0u64)
+                        } else {
+                            wrap(right >> left.to_u64().unwrap())
+                        }
+                    }
+                    "and" => left & right,
+                    "or" => left | right,
+                    _ => panic!(),
+                };
+                self.ssa_values.insert(return_vars[0].name.clone(), result);
+            }
+        }
+        if matches!(builtin.name, "not" | "iszero") {
+            if let Some(arg) = self.ssa_values.get(&arguments[0].name).cloned() {
+                let mask = (BigUint::from(1u64) << 256) - BigUint::from(1u64);
+                let result = match builtin.name {
+                    "not" => arg ^ mask,
+                    "iszero" => {
+                        if arg == BigUint::from(0u64) {
+                            BigUint::from(1u64)
+                        } else {
+                            BigUint::from(0u64)
+                        }
+                    }
+                    _ => panic!(),
+                };
+                self.ssa_values.insert(return_vars[0].name.clone(), result);
+            }
+        }
+        match builtin.name {
+            "create" | "sstore" | "sload" | "call" => {
+                println!(
+                    "{}{}({})",
+                    if return_vars.is_empty() {
+                        String::new()
+                    } else {
+                        format!(
+                            "{} := ",
+                            return_vars
+                                .iter()
+                                .map(|v| v.name.to_owned())
+                                .collect::<Vec<_>>()
+                                .join(", ")
+                        )
+                    },
+                    builtin.name,
+                    arguments
+                        .iter()
+                        .map(|v| v.name.to_owned())
+                        .collect::<Vec<_>>()
+                        .join(", ")
+                );
+                for (name, v) in arguments
+                    .iter()
+                    .map(|v| (v.name.clone(), self.ssa_values.get(&v.name)))
+                {
+                    if let Some(v) = v {
+                        println!("   - {name} = {v}");
+                    }
+                }
+                for (name, v) in return_vars
+                    .iter()
+                    .map(|v| (v.name.clone(), self.ssa_values.get(&v.name)))
+                {
+                    if let Some(v) = v {
+                        println!("   - {name} = {v}");
+                    }
+                }
+            }
+            _ => {}
+        }
+    }
+}
+
+fn wrap(mut x: BigUint) -> BigUint {
+    let mask = (BigUint::from(1u64) << 256) - BigUint::from(1u64);
+    // TODO optimization: work directly on limbs
+    x & mask
+}

src/evm_builtins.rs

@@ -99,14 +99,14 @@ impl Instructions for EVMInstructions {
             "calldatasize" => single_return(evm_context::calldatasize(ssa).into()),
             "calldatacopy" => panic!("Builtin {} not implemented", builtin.name), // TODO
             "codesize" => single_return(evm_context::codesize(ssa).into()),
-            "codecopy" => panic!("Builtin {} not implemented", builtin.name), // TODO
+            "codecopy" => vec![], //panic!("Builtin {} not implemented", builtin.name), // TODO
             "gasprice" => single_return(evm_context::gasprice(ssa).into()),
-            "extcodesize" => panic!("Builtin {} not implemented", builtin.name), // TODO
+            "extcodesize" => vec![smt::declare_const(return_vars[0].clone())], //panic!("Builtin {} not implemented", builtin.name), // TODO
             "extcodecopy" => panic!("Builtin {} not implemented", builtin.name), // TODO
-            "returndatasize" => panic!("Builtin {} not implemented", builtin.name), // TODO
-            "returndatacopy" => panic!("Builtin {} not implemented", builtin.name), // TODO
+            "returndatasize" => vec![smt::declare_const(return_vars[0].clone())], //panic!("Builtin {} not implemented", builtin.name), // TODO
+            "returndatacopy" => vec![], //panic!("Builtin {} not implemented", builtin.name), // TODO
             "extcodehash" => panic!("Builtin {} not implemented", builtin.name), // TODO
-            "blockhash" => panic!("Builtin {} not implemented", builtin.name),   // TODO
+            "blockhash" => panic!("Builtin {} not implemented", builtin.name), // TODO
             "coinbase" => single_return(evm_context::coinbase(ssa).into()),
             "timestamp" => single_return(evm_context::timestamp(ssa).into()),
             "number" => single_return(evm_context::number(ssa).into()),
@@ -134,12 +134,12 @@ impl Instructions for EVMInstructions {
                 ssa,
             )],
             "msize" => panic!("Builtin {} not implemented", builtin.name), // TODO
-            "gas" => panic!("Builtin {} not implemented", builtin.name),   // TODO
-            "log0" => panic!("Builtin {} not implemented", builtin.name),  // TODO
-            "log1" => panic!("Builtin {} not implemented", builtin.name),  // TODO
-            "log2" => panic!("Builtin {} not implemented", builtin.name),  // TODO
-            "log3" => panic!("Builtin {} not implemented", builtin.name),  // TODO
-            "log4" => panic!("Builtin {} not implemented", builtin.name),  // TODO
+            "gas" => vec![smt::declare_const(return_vars[0].clone())], //panic!("Builtin {} not implemented", builtin.name),   // TODO
+            "log0" => panic!("Builtin {} not implemented", builtin.name), // TODO
+            "log1" => panic!("Builtin {} not implemented", builtin.name), // TODO
+            "log2" => panic!("Builtin {} not implemented", builtin.name), // TODO
+            "log3" => panic!("Builtin {} not implemented", builtin.name), // TODO
+            "log4" => panic!("Builtin {} not implemented", builtin.name), // TODO
             "create" => evm_context::create(
                 arg_0.unwrap().into(),
                 MemoryRange::new(arg_1.unwrap(), arg_2.unwrap()),

src/lib.rs

@@ -1,5 +1,6 @@
 pub mod cfg;
 pub mod encoder;
+pub mod evaluator;
 pub mod evm_builtins;
 pub mod evm_context;
 pub mod execution_position;