#1084 follow up: verifier check on dynamic init table#1223
Merged
kunxian-xia merged 16 commits intomasterfrom Apr 22, 2026
Merged
#1084 follow up: verifier check on dynamic init table#1223kunxian-xia merged 16 commits intomasterfrom
kunxian-xia merged 16 commits intomasterfrom
Conversation
…/ceno into feat/dynamic_heap_hint_check
hero78119
commented
Jan 13, 2026
| "HeapTable" | ||
| } | ||
|
|
||
| fn max_len(params: &ProgramParams) -> usize { |
Collaborator
Author
There was a problem hiding this comment.
no logic change, just make function impl order follow trait
| "HintsTable" | ||
| } | ||
|
|
||
| fn max_len(params: &ProgramParams) -> usize { |
Collaborator
Author
There was a problem hiding this comment.
no logic change, just make function impl order follow trait
| name_fn: N, | ||
| assert_zero_expr: Expression<E>, | ||
| ) -> Result<(), CircuitBuilderError> { | ||
| assert!( |
Collaborator
Author
There was a problem hiding this comment.
To check assert_eq(public_value[i], public_value[j]) within constrain, both are scalar thus degree is 0
hero78119
commented
Jan 13, 2026
| let chip_proofs = | ||
| builder.get(&zkvm_proof_input.chip_proofs, num_chips_verified.get_var()); | ||
|
|
||
| let chip_proofs_len = chip_proofs.len(); |
Collaborator
Author
There was a problem hiding this comment.
Soundness fix: this logic present in rust verifier but not in recursion verifier
hero78119
commented
Jan 13, 2026
| .then(|builder| { | ||
| builder.assert_usize_eq(chip_proofs_len.clone(), Usize::from(1)); | ||
| }); | ||
| } else if circuit_vk.get_cs().with_omc_init_dyn() { |
Collaborator
Author
There was a problem hiding this comment.
dynamic init table only allow 1 chip proof per shard
hero78119
force-pushed
the
feat/dynamic_heap_hint_check
branch
from
97f5680 to
d87ea19
Compare
Resolve the merge by combining PR 1223's memory-layout swap with master's removal of the PUBLIC I/O linker term. Keep the PR's dynamic heap/hint init and shard continuation verification semantics, preserve the ISA-extensible mem-state verifier generic with an RV32 default, and align benches with the current e2e API.
Bring in master changes from PR 1318 for single-shard e2e verification, keep the shard mem-state verification work on this branch, and fix the debug single-shard verifier to derive halt expectation from the selected shard proof rather than the full program exit code. Also take master's ceno-gpu dependency update.
Collaborator
Author
|
Update on the two merge follow-ups now on this PR head (7da2e88):
Net result: this PR is rebased onto current master semantics, keeps the shard continuation / dynamic-init verification work, and now also retains the newer single-shard debug verification flow. |
kunxian-xia
approved these changes
Apr 22, 2026
kunxian-xia
added a commit
that referenced
this pull request
Apr 23, 2026
…t/verifier-crypto-contract Conflict in ceno_zkvm/src/scheme/verifier.rs: master's PR #1223 introduced validate_mem_state covering both heap and hint continuation against the new mem_state_verifier; took master's version since it subsumes this branch's heap-only check and already returns ZKVMError rather than panicking, which matches this branch's verifier-error contract.
3 tasks
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Problem
Dynamic heap/hint init tables need verifier-side checks so shard continuation and dynamic-length constraints cannot be bypassed. This PR also needs to stay compatible with current master after the linker/public-io cleanup and the later single-shard debug verification support.
Design Rationale
Keep the memory-state verifier ISA-extensible by carrying RV32-specific heap/hint bounds in RV32imMemStateConfig, while enforcing continuation and dynamic-init checks in the native and recursion verifier paths. Merge on top of master instead of reverting master-only changes.
Change Highlights
Benchmark / Performance Impact
No intended performance change beyond verifier-side checks. Previous measurements on this work showed negligible overhead; no new benchmark run was needed for the merge-only follow-ups.
Benchmark command(s): not rerun for the merge-only follow-ups.
Environment (CPU/GPU, core count, rust toolchain, commit hash): validated on local dev environment at head 7da2e88.
raw data:
Testing
Risks and Rollout
Main risk is verifier semantic drift between full-trace verification and single-shard debug verification. This branch keeps them separate: full-trace verification still owns entry/continuation checks, while single-shard debug verification checks only the selected shard segment.
Follow-ups (optional)
Copilot Reviewer Directive (keep this section)
When Copilot reviews this PR, apply .github/copilot-instructions.md strictly.