Support SLT, SGT

DavePearce · DavePearce · commit 58abe25070e2 · 2022-07-04T15:54:40.000+12:00
This adds support for the SLT and SGT bytecodes, along with a minimal
number of tests.  To do this required adding a method to convert from a
"word" to a signed 256 integer.

In addition, this fixes a bug related to the ordering of operands for
arithmetic operations (ADD/SUB/MUL/DIV).  The ordering was the wrong way
around!
diff --git a/src/dafny/evm.dfy b/src/dafny/evm.dfy
@@ -269,8 +269,8 @@ module EVM {
     // 0x10
     else if opcode == LT then evalLT(vm')
     else if opcode == GT then evalGT(vm')
-    // else if opcode == SLT then evalSLT(vm')
-    // else if opcode == SGT then evalSGT(vm')
+    else if opcode == SLT then evalSLT(vm')
+    else if opcode == SGT then evalSGT(vm')
     else if opcode == EQ then evalEQ(vm')
     else if opcode == ISZERO then evalISZERO(vm')
       // AND
@@ -312,8 +312,8 @@ module EVM {
   function method evalADD(vm:T) : Result {
     if operands(vm) >= 2
       then
-      var rhs := peek(vm,0) as int;
-      var lhs := peek(vm,1) as int;
+      var lhs := peek(vm,0) as int;
+      var rhs := peek(vm,1) as int;
       var sum := (lhs + rhs) % MAX_UINT256;
       Result.OK(push(pop(pop(vm)),sum as u256))
     else
@@ -326,8 +326,8 @@ module EVM {
   function method evalMUL(vm:T) : Result {
     if operands(vm) >= 2
       then
-      var rhs := peek(vm,0) as int;
-      var lhs := peek(vm,1) as int;
+      var lhs := peek(vm,0) as int;
+      var rhs := peek(vm,1) as int;
       var sum := (lhs * rhs) % MAX_UINT256;
       Result.OK(push(pop(pop(vm)),sum as u256))
     else
@@ -340,8 +340,8 @@ module EVM {
   function method evalSUB(vm:T) : Result {
     if operands(vm) >= 2
       then
-      var rhs := peek(vm,0) as int;
-      var lhs := peek(vm,1) as int;
+      var lhs := peek(vm,0) as int;
+      var rhs := peek(vm,1) as int;
       var sum := (lhs - rhs) % MAX_UINT256;
       Result.OK(push(pop(pop(vm)),sum as u256))
     else
@@ -396,6 +396,40 @@ module EVM {
       Result.INVALID
   }
 
+  /**
+   * Signed less-than comparison.
+   */
+  function method evalSLT(vm:T) : Result {
+    if operands(vm) >= 2
+      then
+      var lhs := Int.wordAsInt256(peek(vm,0));
+      var rhs := Int.wordAsInt256(peek(vm,1));
+      if lhs < rhs
+        then
+        Result.OK(push(pop(pop(vm)),1))
+      else
+        Result.OK(push(pop(pop(vm)),0))
+    else
+      Result.INVALID
+  }
+
+  /**
+   * Signed greater-than comparison.
+   */
+  function method evalSGT(vm:T) : Result {
+    if operands(vm) >= 2
+      then
+      var lhs := Int.wordAsInt256(peek(vm,0));
+      var rhs := Int.wordAsInt256(peek(vm,1));
+      if lhs > rhs
+        then
+        Result.OK(push(pop(pop(vm)),1))
+      else
+        Result.OK(push(pop(pop(vm)),0))
+    else
+      Result.INVALID
+  }
+
   /**
    * Equality comparison.
    */
diff --git a/src/dafny/util/int.dfy b/src/dafny/util/int.dfy
@@ -13,28 +13,40 @@
  */
 module Int {
   // Powers of Two
+  const TWO_7   : int := 0x0_80;
   const TWO_8   : int := 0x1_00;
+  const TWO_15  : int := 0x0_8000;
   const TWO_16  : int := 0x1_0000;
+  const TWO_31  : int := 0x0_8000_0000;
   const TWO_32  : int := 0x1_0000_0000;
+  const TWO_63  : int := 0x0_8000_0000_0000_0000;
   const TWO_64  : int := 0x1_0000_0000_0000_0000;
+  const TWO_127 : int := 0x0_8000_0000_0000_0000_0000_0000_0000_0000;
   const TWO_128 : int := 0x1_0000_0000_0000_0000_0000_0000_0000_0000;
   const TWO_160 : int := 0x1_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000;
+  const TWO_255 : int := 0x0_8000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000;
   const TWO_256 : int := 0x1_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000_0000;
 
   // Signed Integers
-  const MIN_I8  : int := -0x80;
-  const MAX_I8  : int :=  0x80 - 1;
-  const MIN_I16 : int := -0x8000;
-  const MAX_I16 : int :=  0x8000 - 1;
-  const MIN_I32 : int := -0x80000000;
-  const MAX_I32 : int :=  0x80000000 - 1;
-  const MIN_I64 : int := -0x8000000000000000;
-  const MAX_I64 : int :=  0x8000000000000000 - 1;
+  const MIN_I8   : int := -TWO_7;
+  const MAX_I8   : int :=  TWO_7 - 1;
+  const MIN_I16  : int := -TWO_15;
+  const MAX_I16  : int :=  TWO_15 - 1;
+  const MIN_I32  : int := -TWO_31;
+  const MAX_I32  : int :=  TWO_31 - 1;
+  const MIN_I64  : int := -TWO_63;
+  const MAX_I64  : int :=  TWO_63 - 1;
+  const MIN_I128 : int := -TWO_127;
+  const MAX_I128 : int :=  TWO_127 - 1;
+  const MIN_I256 : int := -TWO_255;
+  const MAX_I256 : int :=  TWO_255 - 1;
 
   newtype{:nativeType "sbyte"} i8 = i:int   | MIN_I8 <= i <= MAX_I8
   newtype{:nativeType "short"} i16 = i:int  | MIN_I16 <= i <= MAX_I16
   newtype{:nativeType "int"}   i32 = i:int  | MIN_I32 <= i <= MAX_I32
   newtype{:nativeType "long"}  i64 = i:int  | MIN_I64 <= i <= MAX_I64
+  newtype i128 = i:int | MIN_I128 <= i <= MAX_I128
+  newtype i256 = i:int | MIN_I256 <= i <= MAX_I256
 
   // Unsigned Integers
   const MAX_U8 : int :=  TWO_8 - 1;
@@ -82,4 +94,34 @@ module Int {
     var b2 := read_u32(bytes, address+4) as u64;
     (b1 * (TWO_32 as u64)) + b2
   }
+
+  // =========================================================
+  // Conversion from words (i.e. raw data) to signed data
+  // =========================================================
+
+  // Convert a 256-bit word to a signed 256bit integer.  Since words
+  // are represented as u256, the parameter has type u256.  However,
+  // its important to note that this does not mean the value in
+  // question represents an unsigned 256 bit integer.  Rather, it is a
+  // signed integer encoded into an unsigned integer.
+  function method wordAsInt256(w: u256) : i256 {
+    if w > (MAX_I256 as u256)
+      then
+      var v := 1 + MAX_UINT256 - (w as int);
+      (-v) as i256
+    else
+      w as i256
+  }
+
+
+  // =========================================================
+  // Sanity Checks
+  // =========================================================
+
+  method test() {
+    assert wordAsInt256(0) == 0;
+    assert wordAsInt256(MAX_UINT256 as u256) == -1;
+    assert wordAsInt256(MAX_I256 as u256) == (MAX_I256 as i256);
+    assert wordAsInt256((MAX_I256 + 1) as u256) == (MIN_I256 as i256);
+  }
 }
diff --git a/src/test/java/dafnyevm/Tests.java b/src/test/java/dafnyevm/Tests.java
@@ -77,19 +77,19 @@ public void test_mstore_01() {
 	@Test
 	public void test_mstore_02() {
 		// Check can return data from memory.
-		runExpecting(new int[] { PUSH1, 0x7b, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x7b));
+		runExpecting(new int[] { PUSH1, 0x7b, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x7b));
 	}
 
 	@Test
 	public void test_mstore_03() {
 		// Check can return data from memory.
-		runExpecting(new int[] { PUSH2, 0x4d, 0x7b, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x4d7b));
+		runExpecting(new int[] { PUSH2, 0x4d, 0x7b, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x4d7b));
 	}
 
 	@Test
 	public void test_mload_01() {
 		// Check can read and write data to memory
-		runExpecting(new int[] { PUSH2, 0x4d, 0x7b, PUSH1, 0x00, MSTORE, PUSH1, 0x00, MLOAD, PUSH1, 0x20, MSTORE, PUSH1, 0x20, PUSH1, 0x20, RETURN }, UINT32(0x4d7b));
+		runExpecting(new int[] { PUSH2, 0x4d, 0x7b, PUSH1, 0x00, MSTORE, PUSH1, 0x00, MLOAD, PUSH1, 0x20, MSTORE, PUSH1, 0x20, PUSH1, 0x20, RETURN }, UINT256(0x4d7b));
 	}
 
 	// ========================================================================
@@ -106,14 +106,14 @@ public void test_mstore8_01() {
 	public void test_mstore8_02() {
 		// Check can return data from memory.
 		runExpecting(new int[] { PUSH1, 0x7b, PUSH1, 0x00, MSTORE8, PUSH1, 0x20, PUSH1, 0x00, RETURN },
-				shl(UINT32(0x7b), 31));
+				shl(UINT256(0x7b), 31));
 	}
 
 	@Test
 	public void test_mstore8_03() {
 		// Check can return data from memory.
 		runExpecting(new int[] { PUSH2, 0x4d, 0x7b, PUSH1, 0x00, MSTORE8, PUSH1, 0x20, PUSH1, 0x00, RETURN },
-				shl(UINT32(0x7b), 31));
+				shl(UINT256(0x7b), 31));
 	}
 
 	// ========================================================================
@@ -122,26 +122,26 @@ public void test_mstore8_03() {
 
 	@Test
 	public void test_add_01() {
-		// Check can add!
-		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x2, ADD, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x3));
+		// 2 + 1 => 3
+		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x2, ADD, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x3));
 	}
 
 	@Test
 	public void test_sub_01() {
-		// Check can subtract!
-		runExpecting(new int[] { PUSH1, 0x3, PUSH1, 0x1, SUB, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x2));
+		// 3 - 1 => 2
+		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x3, SUB, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x2));
 	}
 
 	@Test
 	public void test_mul_01() {
-		// Check can multiply!
-		runExpecting(new int[] { PUSH1, 0x3, PUSH1, 0x2, MUL, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x6));
+		// 2 * 3 => 6
+		runExpecting(new int[] { PUSH1, 0x3, PUSH1, 0x2, MUL, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x6));
 	}
 
 	@Test
 	public void test_div_01() {
-		// Check can divide!
-		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x6, DIV, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x3));
+		// 6 / 2 => 3
+		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x6, DIV, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x3));
 	}
 
 	// ========================================================================
@@ -150,62 +150,110 @@ public void test_div_01() {
 
 	@Test
 	public void test_lt_01() {
-		// Check can add!
-		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x2, LT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x0));
+		// 2 < 1 = 0
+		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x2, LT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x0));
 	}
 
 	@Test
 	public void test_lt_02() {
-		// Check can add!
-		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x1, LT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x1));
+		// 1 < 2 = 1
+		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x1, LT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x1));
 	}
 
 	@Test
 	public void test_lt_03() {
-		// Check can add!
-		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x2, LT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x0));
+		// 2 < 2 => 0
+		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x2, LT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x0));
 	}
 
 	@Test
 	public void test_gt_01() {
-		// Check can add!
-		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x2, GT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x1));
+		// 2 > 1 => 1
+		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x2, GT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x1));
 	}
 
 	@Test
 	public void test_gt_02() {
-		// Check can add!
-		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x1, GT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x0));
+		// 1 > 2 => 0
+		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x1, GT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x0));
 	}
 
 	@Test
 	public void test_gt_03() {
-		// Check can add!
-		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x2, GT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x0));
+		// 2 > 2 => 0
+		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x2, GT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x0));
+	}
+
+	@Test
+	public void test_slt_01() {
+		// -2 < 1 => 1
+		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x2, PUSH1, 0x0, SUB, SLT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x1));
+	}
+
+	@Test
+	public void test_slt_02() {
+		// 1 < -2 => 0
+		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x0, SUB, PUSH1, 0x1, SLT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x0));
+	}
+
+	@Test
+	public void test_slt_03() {
+		// -2 < -1 => 1
+		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x0, SUB, PUSH1, 0x2, PUSH1, 0x0, SUB, SLT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x1));
+	}
+
+	@Test
+	public void test_slt_04() {
+		// -1 < -2 => 0
+		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x0, SUB, PUSH1, 0x1, PUSH1, 0x0, SUB, SLT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x0));
+	}
+
+	@Test
+	public void test_sgt_01() {
+		// -2 > 1 => 0
+		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x2, PUSH1, 0x0, SUB, SGT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x0));
+	}
+
+	@Test
+	public void test_sgt_02() {
+		// 1 > -2 => 1
+		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x0, SUB, PUSH1, 0x1, SGT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x1));
+	}
+
+	@Test
+	public void test_sgt_03() {
+		// -2 > -1 => 0
+		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x0, SUB, PUSH1, 0x2, PUSH1, 0x0, SUB, SGT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x0));
+	}
+
+	@Test
+	public void test_sgt_04() {
+		// -1 > -2 => 1
+		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x0, SUB, PUSH1, 0x1, PUSH1, 0x0, SUB, SGT, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x1));
 	}
 
 	@Test
 	public void test_eq_01() {
-		// Check can add!
-		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x2, EQ, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x0));
+		// 2 = 1 => 0
+		runExpecting(new int[] { PUSH1, 0x1, PUSH1, 0x2, EQ, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x0));
 	}
 
 	@Test
 	public void test_eq_02() {
-		// Check can add!
-		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x2, EQ, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x1));
+		// 2 = 2 => 1
+		runExpecting(new int[] { PUSH1, 0x2, PUSH1, 0x2, EQ, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x1));
 	}
 
 	@Test
 	public void test_iszero_01() {
-		// Check can add!
-		runExpecting(new int[] { PUSH1, 0x2, ISZERO, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x0));
+		// 2 = 0 => 0
+		runExpecting(new int[] { PUSH1, 0x2, ISZERO, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x0));
 	}
 
 	@Test
 	public void test_iszero_02() {
-		// Check can add!
-		runExpecting(new int[] { PUSH1, 0x0, ISZERO, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x1));
+		// 0 = 0 => 1
+		runExpecting(new int[] { PUSH1, 0x0, ISZERO, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x1));
 	}
 
 	// ========================================================================
@@ -221,7 +269,7 @@ public void test_sstore_01() {
 
 	@Test
 	public void test_sstore_02() {
-		runExpecting(new int[] { PUSH2, 0x4d, 0x7b, PUSH1, 0x00, SSTORE, PUSH1, 0x00, SLOAD, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT32(0x4d7b));
+		runExpecting(new int[] { PUSH2, 0x4d, 0x7b, PUSH1, 0x00, SSTORE, PUSH1, 0x00, SLOAD, PUSH1, 0x00, MSTORE, PUSH1, 0x20, PUSH1, 0x00, RETURN }, UINT256(0x4d7b));
 	}
 
 	// ========================================================================
@@ -330,7 +378,7 @@ private byte[] toBytes(int... words) {
 	 * @param x
 	 * @return
 	 */
-	private byte[] UINT32(int x) {
+	private byte[] UINT256(int x) {
 		if(x < 0) {
 			throw new IllegalArgumentException("Argument cannot be negative");
 		}
