Merge pull request #2628 from GaloisInc/w4-rme

Add w4_unint_rme proof script

Author: glguy

CHANGES.md

@@ -98,6 +98,9 @@ This release supports [version
   configuring the solver result cache's timeout for database lookups and
   inserts.
 
+* Adds `w4_unint_rme` proof script for using RME extended with uninterpreted
+  functions to resolve goals.
+
 # Version 1.4 -- date still TBD
 
 This release supports [version

deps/rme

@@ -0,0 +1,61 @@
+module Code where
+
+type constraint ValidRnd rnd = rnd <= 16
+
+Ascon_p : {rnd} (ValidRnd rnd) => State -> State
+Ascon_p S = foldl round S (drop`{back=rnd} Const)
+
+round : State -> [64] -> State
+round S ci = pL (pS (pC S ci))
+
+type State = [5][64]
+
+pC : State -> [64] -> State
+pC [S0, S1, S2, S3, S4] ci = [S0, S1, S2 ^ ci, S3, S4]
+
+Const : [16][64]
+Const =
+    [ 0x000000000000003c
+    , 0x000000000000002d
+    , 0x000000000000001e
+    , 0x000000000000000f
+    , 0x00000000000000f0
+    , 0x00000000000000e1
+    , 0x00000000000000d2
+    , 0x00000000000000c3
+    , 0x00000000000000b4
+    , 0x00000000000000a5
+    , 0x0000000000000096
+    , 0x0000000000000087
+    , 0x0000000000000078
+    , 0x0000000000000069
+    , 0x000000000000005a
+    , 0x000000000000004b
+    ]
+
+pS : State -> State
+pS S = transpose (map SBox (transpose S))
+
+SBox : [5] -> [5]
+SBox i = SBoxTable@i
+
+SBoxTable : [32][5]
+SBoxTable =
+    map drop
+    [ 0x04, 0x0b, 0x1f, 0x14, 0x1a, 0x15, 0x09, 0x02
+    , 0x1b, 0x05, 0x08, 0x12, 0x1d, 0x03, 0x06, 0x1c
+    , 0x1e, 0x13, 0x07, 0x0e, 0x00, 0x0d, 0x11, 0x18
+    , 0x10, 0x0c, 0x01, 0x19, 0x16, 0x0a, 0x0f, 0x17
+    ]
+
+pL : State -> State
+pL [S0, S1, S2, S3, S4] =
+    [ sigma S0 19 28
+    , sigma S1 61 39
+    , sigma S2  1  6
+    , sigma S3 10 17
+    , sigma S4  7 41
+    ]
+    where
+        sigma : [64] -> [6] -> [6] -> [64]
+        sigma x i j = x ^ x>>>i ^ x>>>j

intTests/test_w4_unint_rme/Code.cry

@@ -0,0 +1,121 @@
+print "Bitwise operations &&";
+prove_print (w4_unint_rme []) {{ (0x0F && 131) == 3 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (0x0F || 131) == 143 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (0x0F ^ 0xFF) == 240 }};
+print ".";
+prove_print (w4_unint_rme []) {{ ~0x0F == 240 }};
+
+
+print "Arithmetic +";
+prove_print (w4_unint_rme []) {{ (12:[8]) + 32 == 44 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (252:[8]) + 32 == 28 }};
+
+print "Arithmetic -";
+prove_print (w4_unint_rme []) {{ (12:[8]) - 3 == 9 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (12:[8]) - 32 == 236 }};
+
+print "Arithmetic *";
+prove_print (w4_unint_rme []) {{ (12:[8]) * 3 == 36 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (12:[8]) * 200 == 96 }};
+
+print "Arithmetic /";
+prove_print (w4_unint_rme []) {{ (12:[4]) / 3 == 4 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (12:[4]) / -3 == 0 }};
+
+print "Arithmetic %";
+prove_print (w4_unint_rme []) {{ (19:[8]) % 3 == 1 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (-19:[8]) % 3 == 0 }};
+
+print "Arithmetic lg2";
+prove_print (w4_unint_rme []) {{ lg2 (8:[8]) == 3 }};
+print ".";
+prove_print (w4_unint_rme []) {{ lg2 (-8:[8]) == 8 }};
+
+print "Sequences";
+
+prove_print (w4_unint_rme []) {{ (4:[4]) # (4:[4]) == (68:[8]) }};
+print ".";
+prove_print (w4_unint_rme []) {{ \(x:[2]) (y:[3]) -> take (x # y) == x }};
+print ".";
+prove_print (w4_unint_rme []) {{ \(x:[2]) (y:[3]) -> drop (x # y) == y }};
+print ".";
+prove_print (w4_unint_rme []) {{ \(x:[4]) (y:[1]) -> tail (y # x) == x }};
+print ".";
+prove_print (w4_unint_rme []) {{ join [2:[2],3:[2]] == 11 }};
+print ".";
+prove_print (w4_unint_rme []) {{ split 0xFFFF == [15, 15, 15, 15] }};
+print ".";
+prove_print (w4_unint_rme []) {{ \(x:[7]) -> reverse (reverse x) == x }};
+
+print "Sequences @";
+
+prove_print (w4_unint_rme []) {{ [1,2,3:[8]]@ 0 == 1 }};
+print ".";
+prove_print (w4_unint_rme []) {{ [1,2,3:[8]]@ 1 == 2 }};
+print ".";
+prove_print (w4_unint_rme []) {{ [1,2,3:[8]]@ (2:[2]) == 3 }};
+print ".";
+prove_print (w4_unint_rme []) {{ [1,2,3:[8]]@ (2:[8]) == 3 }};
+print ".";
+fails (prove_print (w4_unint_rme []) {{ [1,2,3:[8]]@ 5 == 3 }});
+
+print "Sequences !";
+
+prove_print (w4_unint_rme []) {{ [1,2,3:[8]]! 0 == 3 }};
+print ".";
+prove_print (w4_unint_rme []) {{ [1,2,3:[8]]! 1 == 2 }};
+print ".";
+prove_print (w4_unint_rme []) {{ [1,2,3:[8]]! (2:[2]) == 1 }};
+print ".";
+prove_print (w4_unint_rme []) {{ [1,2,3:[8]]! (2:[8]) == 1 }};
+print ".";
+fails (prove_print (w4_unint_rme []) {{ [1,2,3:[8]]! 5 == 1 }});
+
+print "Shifting, rotating";
+
+prove_print (w4_unint_rme []) {{ (16:[8]) >> 3 == 2 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (15:[8]) >> 3 == 1 }};
+print ".";
+prove_print (w4_unint_rme []) {{ 0xF0 >> 4 == 15 }};
+print ".";
+prove_print (w4_unint_rme []) {{ 0xF0 >> 8 == 0 }};
+
+prove_print (w4_unint_rme []) {{ (15:[8]) << 3 == 120 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (15:[8]) << 7 == 128 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (1:[8]) << 8 == 0 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (128:[8]) <<< 2 == 2 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (2:[8]) >>> 2 == 128 }};
+print ".";
+prove_print (w4_unint_rme []) {{ (4:[8]) >>> 3 == 128 }};
+
+
+print "Misc";
+prove_print (w4_unint_rme []) {{ min (4:[8]) 5 == 4 }};
+print ".";
+prove_print (w4_unint_rme []) {{ max (4:[8]) 5 == 5 }};
+
+
+print "Unint";
+import "Code.cry";
+print ".";
+prove_print (w4_unint_rme ["round"])
+    {{ \x ->
+        Ascon_p`{16} x
+        ==
+        foldl (\x y -> round x (zext y)) x
+            [0x3c,0x2d,0x1e,0x0f,0xf0,0xe1,0xd2,0xc3,0xb4,0xa5,0x96,0x87,0x78,0x69,0x5a,0x4b]
+    }};
+
+print "Done";

intTests/test_w4_unint_rme/prims.saw

@@ -0,0 +1 @@
+$SAW prims.saw

intTests/test_w4_unint_rme/test.sh

@@ -1126,6 +1126,9 @@ w4_yices = wrapW4Prover Yices [] Prover.proveWhat4_yices []
 w4_unint_bitwuzla :: [Text] -> ProofScript ()
 w4_unint_bitwuzla = wrapW4Prover Bitwuzla [] Prover.proveWhat4_bitwuzla
 
+w4_unint_rme :: [Text] -> ProofScript ()
+w4_unint_rme = wrapW4Prover RME [] Prover.proveWhat4_rme
+
 w4_unint_boolector :: [Text] -> ProofScript ()
 w4_unint_boolector = wrapW4Prover Boolector [] Prover.proveWhat4_boolector
 

saw-central/src/SAWCentral/Builtins.hs

@@ -36,6 +36,7 @@ import           What4.ProblemFeatures
 import qualified SAWCoreWhat4.What4 as W
 import           SAWCoreWhat4.FirstOrder
 import qualified What4.Expr.Builder as B
+import           Data.RME.What4 (rmeAdapter)
 
 
 ----------------------------------------------------------------
@@ -128,13 +129,14 @@ proveWhat4_z3,
   proveWhat4_bitwuzla, proveWhat4_boolector,
   proveWhat4_cvc4, proveWhat4_cvc5,
   proveWhat4_dreal, proveWhat4_stp, proveWhat4_yices,
-  proveWhat4_abc ::
+  proveWhat4_abc, proveWhat4_rme ::
   Bool          {- ^ Hash-consing of What4 terms -}->
   SATQuery      {- ^ The query to be proved -} ->
   TopLevel (Maybe CEX, Text)
 
 proveWhat4_z3        = proveWhat4_sym z3Adapter
 proveWhat4_bitwuzla  = proveWhat4_sym bitwuzlaAdapter
+proveWhat4_rme       = proveWhat4_sym rmeAdapter
 proveWhat4_boolector = proveWhat4_sym boolectorAdapter
 proveWhat4_cvc4      = proveWhat4_sym cvc4Adapter
 proveWhat4_cvc5      = proveWhat4_sym cvc5Adapter

saw-central/src/SAWCentral/Prover/What4.hs

@@ -3917,6 +3917,13 @@ primitives = Map.fromList
     [ "Prove the current goal using What4 (Bitwuzla backend). Leave the"
     , "given list of names as uninterpreted."
     ]
+  
+  , prim "w4_unint_rme" "[String] -> ProofScript ()"
+    (pureVal w4_unint_rme)
+    Current
+    [ "Prove the current goal using What4 (RME backend). Leave the"
+    , "given list of names as uninterpreted."
+    ]
 
   , prim "w4_unint_z3"         "[String] -> ProofScript ()"
     (pureVal w4_unint_z3)

saw-script/src/SAWScript/Interpreter.hs

@@ -484,6 +484,7 @@ library saw-central
     macaw-x86-symbolic,
     parameterized-utils,
     rme,
+    rme-what4,
     what4 >= 0.4,
     what4-transition-system,
     -- apparently no longer used: