feat(avm): tag checking, raising errors and stop execution #9831
Conversation
jeanmon
force-pushed
the
jm/9745-direct-mem-tag-err
branch
2 times, most recently
from
af823d6
to
c4789cd
Compare
jeanmon
requested review from
fcarreiro,
dbanks12,
IlyasRidhuan and
Maddiaa0
as code owners
jeanmon
force-pushed
the
jm/9745-direct-mem-tag-err
branch
from
c4789cd
to
a482f03
Compare
There was a problem hiding this comment.
Nice work! I commented with some questions and notes.
In general, I think this is a big step closer to what we want. I do wonder if we could avoid having this error return type and instead let opcodes raise a "reverted" field on the TraceBuilder class. This is similar to how in the simulator opcodes raise context.machineState.reverted. And then at the bottom of the execution loop, we check trace_builder.reverted before continuing?
I don't feel strongly that you need to do it this way, especially not as a prerequisite to merge. BUT it would be a much smaller changeset I think.
I'm also surprised that you can change the tag types in a handful of places without changing brillig generation.
barretenberg/cpp/src/barretenberg/vm/avm/tests/execution.test.cpp
Outdated
Show resolved
Hide resolved
| assert(var == EnvironmentVariable::L2GASLEFT || var == EnvironmentVariable::DAGASLEFT); | ||
| ASSERT(var == EnvironmentVariable::L2GASLEFT || var == EnvironmentVariable::DAGASLEFT); |
There was a problem hiding this comment.
I doubt bytecode validation will check that the enum value is right. Same holds true about the runtime error thrown in the switch case statement in op_get_env_var. Both should raise error flag without throwing an exception.
There was a problem hiding this comment.
Related to assert vs. ASSERT: It does not change anything AFAIK, but the latter was usually the adopted style throughout our code base.
It is really an assertion and not error handling because this function is called only from the externally exposed routines: op_l2gasleft() and op_dagasleft
In other words, this is a coding mistake.
Related to op_get_env_var, it is guarded by the first if. the "default" case in the switch is to make the compiler happy but we have the guarantee that it cannot happen. I will add a comment about this.
| memory.set(dstOffset + 2, new Field(dest.equals(Point.ZERO) ? 1 : 0)); | ||
| memory.set(dstOffset + 2, new Uint1(dest.equals(Point.ZERO) ? 1 : 0)); |
There was a problem hiding this comment.
I'm surprised that we don't need to change Brillig for changes to opcodes like this?
There was a problem hiding this comment.
Possibly ECADD has never been used in brillig.
@dbanks12 True, setting the error/revert in trace_builder and having execution loop checking it at the end of the loop would have been less tedious change. The current change which sets the error at each opcode function call could have been avoided. As we plan a big refactoring in any case, I would not revert this now (especially you mentioned you can live with it.) |
jeanmon
force-pushed
the
jm/9745-direct-mem-tag-err
branch
from
a482f03
to
61b07a4
Compare
jeanmon
force-pushed
the
jm/9745-direct-mem-tag-err
branch
from
61b07a4
to
a22da27
Compare
Resolves #9745