Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

EXPMOD fixes #28

Merged
merged 2 commits into from
Sep 9, 2020
Merged

EXPMOD fixes #28

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
05d7ea9
Fix overflow in expmod_gas
yperbasis Sep 9, 2020
21b934c
Fix modexp_modsize0_returndatasize
yperbasis Sep 9, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 0 additions & 4 deletions cmd/consensus.cpp
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -34,11 +34,7 @@ static const fs::path kRootDir{SILKWORM_CONSENSUS_TEST_DIR};

static const fs::path kBlockchainDir{kRootDir / "BlockchainTests"};

// TODO[Issue #23] make the excluded tests pass
static const std::set<fs::path> kExcludedTests{
kBlockchainDir / "GeneralStateTests" / "stPreCompiledContracts2" / "modexpRandomInput.json",
kBlockchainDir / "GeneralStateTests" / "stReturnDataTest" /
"modexp_modsize0_returndatasize.json",
kBlockchainDir / "GeneralStateTests" / "stTimeConsuming",
};

Expand Down
46 changes: 25 additions & 21 deletions silkworm/execution/precompiled.cpp
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -98,7 +98,7 @@ uint64_t id_gas(ByteView input, evmc_revision) noexcept {

std::optional<Bytes> id_run(ByteView input) noexcept { return Bytes{input}; }

static uint64_t mult_complexity(uint64_t x) {
static intx::uint256 mult_complexity(const intx::uint256& x) {
if (x <= 64) {
return x * x;
} else if (x <= 1024) {
Expand All @@ -111,40 +111,39 @@ static uint64_t mult_complexity(uint64_t x) {
uint64_t expmod_gas(ByteView input, evmc_revision) noexcept {
input = right_pad(input, 3 * 32);

intx::uint256 base_length{intx::be::unsafe::load<intx::uint256>(&input[0])};
intx::uint256 exponent_length{intx::be::unsafe::load<intx::uint256>(&input[32])};
intx::uint256 modulus_length{intx::be::unsafe::load<intx::uint256>(&input[64])};
intx::uint256 base_len256{intx::be::unsafe::load<intx::uint256>(&input[0])};
intx::uint256 exp_len256{intx::be::unsafe::load<intx::uint256>(&input[32])};
intx::uint256 mod_len256{intx::be::unsafe::load<intx::uint256>(&input[64])};

if (base_length == 0 && modulus_length == 0) {
if (base_len256 == 0 && mod_len256 == 0) {
return 0;
}

if (intx::count_significant_words<uint32_t>(base_length) > 1 ||
intx::count_significant_words<uint32_t>(exponent_length) > 1 ||
intx::count_significant_words<uint32_t>(modulus_length) > 1) {
if (intx::count_significant_words<uint64_t>(base_len256) > 1 ||
intx::count_significant_words<uint64_t>(exp_len256) > 1 ||
intx::count_significant_words<uint64_t>(mod_len256) > 1) {
return UINT64_MAX;
}

uint64_t base_len{intx::narrow_cast<uint64_t>(base_length)};
uint64_t exponent_len{intx::narrow_cast<uint64_t>(exponent_length)};
uint64_t modulus_len{intx::narrow_cast<uint64_t>(modulus_length)};
uint64_t base_len64{intx::narrow_cast<uint64_t>(base_len256)};
uint64_t exp_len64{intx::narrow_cast<uint64_t>(exp_len256)};

input.remove_prefix(3 * 32);

intx::uint256 exp_head{0}; // first 32 bytes of the exponent
if (input.length() > base_len) {
ByteView exp_input{right_pad(input.substr(base_len), 32)};
if (exponent_len < 32) {
exp_input = exp_input.substr(0, exponent_len);
if (input.length() > base_len64) {
ByteView exp_input{right_pad(input.substr(base_len64), 32)};
if (exp_len64 < 32) {
exp_input = exp_input.substr(0, exp_len64);
exp_input = left_pad(exp_input, 32);
}
exp_head = intx::be::unsafe::load<intx::uint256>(exp_input.data());
}
unsigned bit_len{256 - clz(exp_head)};

uint64_t adjusted_exponent_len{0};
if (exponent_len > 32) {
adjusted_exponent_len = 8 * (exponent_len - 32);
intx::uint256 adjusted_exponent_len{0};
if (exp_len256 > 32) {
adjusted_exponent_len = 8 * (exp_len256 - 32);
}
if (bit_len > 1) {
adjusted_exponent_len += bit_len - 1;
Expand All @@ -154,8 +153,13 @@ uint64_t expmod_gas(ByteView input, evmc_revision) noexcept {
adjusted_exponent_len = 1;
}

return mult_complexity(std::max(modulus_len, base_len)) * adjusted_exponent_len /
fee::kGQuadDivisor;
intx::uint256 gas{mult_complexity(std::max(mod_len256, base_len256)) * adjusted_exponent_len /
fee::kGQuadDivisor};
if (intx::count_significant_words<uint64_t>(gas) > 1) {
return UINT64_MAX;
} else {
return intx::narrow_cast<uint64_t>(gas);
}
}

std::optional<Bytes> expmod_run(ByteView input) noexcept {
Expand Down Expand Up @@ -194,7 +198,7 @@ std::optional<Bytes> expmod_run(ByteView input) noexcept {
}

if (modulus == 0) {
return Bytes{};
return Bytes(modulus_len, '\0');
}

boost::multiprecision::cpp_int result{boost::multiprecision::powm(base, exponent, modulus)};
Expand Down