diff options
author | mikebarnett <unknown> | 2009-07-15 21:03:41 +0000 |
---|---|---|
committer | mikebarnett <unknown> | 2009-07-15 21:03:41 +0000 |
commit | ce1c2de044c91624370411e23acab13b0381949b (patch) | |
tree | 592539996fe08050ead5ee210c973801611dde40 /Test/test21/HeapAxiom.bpl |
Initial set of files.
Diffstat (limited to 'Test/test21/HeapAxiom.bpl')
-rw-r--r-- | Test/test21/HeapAxiom.bpl | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/Test/test21/HeapAxiom.bpl b/Test/test21/HeapAxiom.bpl new file mode 100644 index 00000000..8972c6af --- /dev/null +++ b/Test/test21/HeapAxiom.bpl @@ -0,0 +1,27 @@ +
+
+type Field a, Heap = <a>[ref, Field a]a;
+
+function IsHeap(Heap) returns (bool);
+const alloc : Field bool;
+
+axiom (forall H:Heap, o:ref, f:Field ref ::
+ IsHeap(H) && H[o,alloc] ==> H[H[o,f], alloc]);
+
+procedure P() returns () {
+ var h : Heap, o : ref, g : Field ref, i : Field ref, o2 : ref;
+ assume IsHeap(h) && h[o, alloc];
+
+ o2 := h[o, g];
+ assert h[o2, alloc];
+
+ o2 := h[o2, g];
+ assert h[o2, alloc];
+
+ h[o2, alloc] := false;
+
+ o2 := h[o2, g];
+ assert h[o2, alloc]; // should not be provable
+}
+
+type ref;
|