Read symbolic value at symbolic address #152
Conversation
…WB operations. Update test data to include symbolic index value handling in storeBytes. Adjust formatting for clarity.
…ing a boolean wrapper for symbolic writes. This update includes detailed explanations of termination control, reordering for optimization, and write consolidation strategies. Adjusted comments for clarity and improved documentation.
Stevengre
force-pushed
the
jh/sym-read-mem
branch
from
20bd897 to
8c9abdd
Compare
src/kriscv/kdist/riscv-semantics/lemmas/sparse-bytes-simplifications.md
Outdated
Show resolved
Hide resolved
| rule dropFront(DROP, #WB(FLAG, I, V, NUM, B:SparseBytes)) => #WB(FLAG, I -Int DROP, V, NUM, dropFront(DROP, B)) | ||
| [simplification(45)] |
There was a problem hiding this comment.
Consider DROP > I. In that case, WriteBytes(I -Int DROP, ...) is .SparseBytes.
There was a problem hiding this comment.
WriteBytes and #WB have different behaviors. #WB currently doesn't handle index < 0.
I'll be adding a rule to #WB so that I < 0 acts as a no-op (only written bytes are kept).
There was a problem hiding this comment.
That doesn't seem to be sufficient. Consider a case where I <Int DROP <Int I +Int NUM:
I = 0
NUM = 2
DROP = 1
V = 65535
B = b"=\x00\x00" // I will treat SparseBytes as Bytes for simplicity
FLAG = true
LHS:
dropFront(DROP, #WB(FLAG, I, V, NUM, B)) =>
dropFront(1, #WB(true, 0, 65535, 2, b"\x00\x00")) =>
dropFront(1, b"\xff\xff") =>
b"\xff"
RHS:
#WB(FLAG, I -Int DROP, V, NUM, dropFront(DROP, B)) =>
#WB(true, 0 -Int 1, 65535, 2, dropFront(1, b"\x00\x00")) =>
#WB(true, -1, 65535, 2, b"x00")) =>
b"x00"
src/kriscv/kdist/riscv-semantics/lemmas/sparse-bytes-simplifications.md
Outdated
Show resolved
Hide resolved
src/kriscv/kdist/riscv-semantics/lemmas/sparse-bytes-simplifications.md
Outdated
Show resolved
Hide resolved
…erations and symbolic write blocks. Added a rule for 16-bit integer simplification and improved handling of pickFront and dropFront operations on symbolic write blocks. Updated test cases to reflect changes in symbolic index handling.
|
|
||
| ## Right Shift Operations | ||
|
|
||
| The `>>SparseBytes` operator performs a right shift operation on SparseBytes, effectively dropping the first N bytes from the sparse byte structure while maintaining the integer value semantics of the remaining bytes. Unlike `dropFront`, which simply removes N bytes from the beginning, `>>SparseBytes` performs a byte-level right shift that preserves the underlying integer representation of the data. |
There was a problem hiding this comment.
effectively dropping the first N bytes from the sparse byte structure while maintaining the integer value semantics of the remaining bytes
Can you give an example? E.g., using syntax somewhat freely, given a bytes value
0x01 0x02 0x03 0x04
dropFront 1 gives
0x02 0x03 0x04
What does >>SparseBytes 1 evaluate to? Is it
0x00 0x01 0x02 0x03
There was a problem hiding this comment.
On concrete, dropFront and >>SparseBytes behave identically. The only difference arises during symbolic writes to the queue, specifically for #WB. This distinction is crucial for the pickFront rule, which handles cases like writing a small num followed by a large num (e.g., as seen in our test specs: 5 |->).
There was a problem hiding this comment.
So this is an alias for dropFront used in simplification rules? I want to rule out the case that the symbolic and concrete semantics of >>SparseBytes differ.
There was a problem hiding this comment.
Yes, you can understand >>Sparse as being specifically for handling a special case of #WB under pickFront that the previous dropFront simplification rule couldn't handle. And the dropFront simplification rule is indeed correct.
src/kriscv/kdist/riscv-semantics/lemmas/sparse-bytes-simplifications.md
Outdated
Show resolved
Hide resolved
| rule dropFront(DROP, #WB(FLAG, I, V, NUM, B:SparseBytes)) => #WB(FLAG, I -Int DROP, V, NUM, dropFront(DROP, B)) | ||
| [simplification(45)] |
There was a problem hiding this comment.
That doesn't seem to be sufficient. Consider a case where I <Int DROP <Int I +Int NUM:
I = 0
NUM = 2
DROP = 1
V = 65535
B = b"=\x00\x00" // I will treat SparseBytes as Bytes for simplicity
FLAG = true
LHS:
dropFront(DROP, #WB(FLAG, I, V, NUM, B)) =>
dropFront(1, #WB(true, 0, 65535, 2, b"\x00\x00")) =>
dropFront(1, b"\xff\xff") =>
b"\xff"
RHS:
#WB(FLAG, I -Int DROP, V, NUM, dropFront(DROP, B)) =>
#WB(true, 0 -Int 1, 65535, 2, dropFront(1, b"\x00\x00")) =>
#WB(true, -1, 65535, 2, b"x00")) =>
b"x00"
| rule #WB(FLAG, I, V, NUM, B:SparseBytes) >>SparseBytes SHIFT => #WB(FLAG, maxInt(0, I -Int SHIFT), V >>Int (SHIFT *Int 8), NUM, B >>SparseBytes SHIFT) | ||
| requires SHIFT >=Int 0 [simplification(45), preserves-definedness] |
There was a problem hiding this comment.
I think there is a similar counterexample here for the I <Int SHIFT <Int I +Int NUM case.
There was a problem hiding this comment.
In fact, these two simplifications look analogous on the LHS but differ on the RHS:
LHS
dropFront(DROP, #WB(FLAG, I, V, NUM, B:SparseBytes))
vs
#WB(FLAG, I, V, NUM, B:SparseBytes) >>SparseBytes SHIFT
RHS
#WB(FLAG, I -Int DROP, V, NUM, dropFront(DROP, B))
vs
#WB(FLAG, maxInt(0, I -Int SHIFT), V >>Int (SHIFT *Int 8), NUM, B >>SparseBytes SHIFT)
If B >>SparseBytes X and dropFront(X, B) are the same, what's the reason for this discrepancy? If they are not, I still would like to see an example for >>SparseBytes applied on concrete values.
There was a problem hiding this comment.
rule dropFront(DROP, #WB(FLAG, I, V, NUM, B:SparseBytes)) => #WB(FLAG, maxInt(0, I -Int SHIFT), V >>Int (SHIFT *Int 8), NUM -Int DROP, dropFront(DROP, B))
[simplification(45)]
Found that the dropFront and >>SparseBytes should be the same, so why I provide >>SparseBytes is that the previous simp rule for dropFront is wrong.
Quick idea to fix this issue:
- provide a correct simp rule for
dropFront - delete the
>>SparseBytes - check if the
#WBhave the correct implementation whenindex <=0 && num <=0. - Verifying the implementation's correctness using a decision tree with a truth table.
…ations.md Co-authored-by: Tamás Tóth <[email protected]>
No description provided.