feat: acir_formal_proofs

[defkit]

Description

The ACIR formal verification. Combines a test generator in the Noir repository with a formal verifier in Barretenberg to mathematically prove the correctness of ACIR instructions using SMT solving. Verifies range of operations including 127-bit arithmetic (addition, subtraction, multiplication), 126-bit division, bitwise operations (though currently limited to 32-bit for AND/OR/XOR), shift operations, field operations (ADD, MUL, DIV), and comparison operations

Additional Context

aztec-packages PR

Documentation*

Check one:

• No documentation needed.
• Documentation included in this PR.
• [For Experimental Features] Documentation to be submitted in a separate PR.

PR Checklist*

• I have tested the changes locally.
• I have formatted the changes with Prettier and/or cargo fmt on default settings.

[github-actions]

Thank you for your contribution to the Noir language.

Please do not force push to this branch after the Noir team have started review of this PR. Doing so will only delay us merging your PR as we will need to start the review process from scratch.

Thanks for your understanding.

[Rumata888]

Why?

[defkit]

Why?

It was changed in #6807 from pub(crate) to private. I can not use test_new instead, because of #[cfg(test)] attribute. I need Id for function building.

[Rumata888]

Please change how you import dependencies (Cargo.toml) and remove .gitignore

[Rumata888]

Why the question mark?

[defkit]

Why the question mark?

I wasn't sure what the third argument (max_bit_size) of the Truncate opcode does. Fixed.

[aakoshh]

This looks quite specific to the use case you have. Could it live in the new crate you created?

[defkit]

This looks quite specific to the use case you have. Could it live in the new crate you created?

No, InstructionArtifacts needs to stay in noirc_evaluator since its implementation uses internal methods and structs of this crate. I don't know how to move this struct to the new crate without breaking the current architecture, if I understand you correctly

[aakoshh]

Right, I see even FunctionBuilder is only pub(crate). Maybe there is a case for making that public, as a more general purpose SSA related utility, than making InstructionArtifacts part of the public interface, given its limited scope. I could be wrong, just seeing different serialised SSA formats in it seems overly specific to how you are generating the inputs for the verification, not something anyone else will use.

[defkit]

I can try to move the entire ssa_verification crate into the noirc_evaluator crate -- this way we wouldn't need to expose anything. However, I'm not sure if this is the right approach since ssa_verification is very specific.

[aakoshh]

I agree, I don’t think that’s the right approach either. Maybe @TomAFrench can weigh in on how important it is to keep things private to the crate?

[rkarabut]

@aakoshh after looking this over, I wonder if it would be better to expose the SSA parser we use in tests and not FunctionBuilder 🤔 To me it looks like it makes more sense as a public (debugging etc) interface

[aakoshh]

I agree with exposing the parser, it's much easier to get started with if we have an SSA to start off from. I suppose the benefit of the FunctionBuilder is compile time warnings about any breaking change, but the parser is pretty good at pointing out what's wrong with a snippet.

[aakoshh]

I think clap creates these on its own.