blob: 9130f82ae7a7fc24d68db6df791a965bee8da58c (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
|
interface IntList {
var list: seq[int]
constructor Empty()
ensures list = []
constructor SingletonTwo()
ensures list = [2]
constructor OneTwo()
ensures list = [1 2]
constructor Singleton(p: int)
ensures list = [p]
constructor TwoConsecutive(p: int)
ensures list = [p] + [p+1]
constructor Double(p: int, q: int)
ensures list = [p] + [q]
constructor Sum(p: int, q: int)
ensures list = [p + q]
}
datamodel IntList {
var root: IntNode
frame
root
invariant
root = null ==> |list| = 0
root != null ==> (|list| = |root.succ| + 1 &&
list[0] = root.data &&
(forall i :: i in 1 ... |root.succ| ==> (root.succ[i-1] != null && list[i] = root.succ[i-1].data)))
}
interface IntNode {
var succ: seq[IntNode]
var data: int
constructor Zero()
ensures data = 0
ensures succ = []
constructor OneTwo()
ensures data = 1
ensures |succ| = 1 && succ[0] != null && succ[0].data = 2
constructor Init(p: int)
ensures data = p
constructor InitInc(p: int)
ensures data = p + 1
invariant
!(null in succ)
}
datamodel IntNode {
var next: IntNode
frame
next
invariant
next = null ==> |succ| = 0
next != null ==> (succ = [next] + next.succ)
}
|
