diff options
| author |  Rustan Leino <unknown> | 2013-04-24 16:52:24 -0700 |
|---|---|---|
| committer | Rustan Leino <unknown> | 2013-04-24 16:52:24 -0700 |
| commit | 0d82065407651936d44897a290f64b1eaa879e00 (patch) | |
| tree | 68c39698c4a35a53640ce60e31dca283b60000bd /Test/dafny0/TypeParameters.dfy | |
| parent | dd99220a03dbb74d1191b68a9f8b0a6eb30b32ae (diff) | |
When inlining the body of a predicate (in a proof obligation--via TrSplitExpr),
use the instantiated types of the predicate's type parameters. This delays the
introduction of some boxes in the translation, which for some useful examples
gives rise to better proving.
Diffstat (limited to 'Test/dafny0/TypeParameters.dfy')
| -rw-r--r-- | Test/dafny0/TypeParameters.dfy | 50 |
1 files changed, 50 insertions, 0 deletions
diff --git a/Test/dafny0/TypeParameters.dfy b/Test/dafny0/TypeParameters.dfy index 278c4c6f..705961a0 100644 --- a/Test/dafny0/TypeParameters.dfy +++ b/Test/dafny0/TypeParameters.dfy @@ -131,6 +131,21 @@ function Cool(b: bool): bool b
}
+function Rockin'<G>(g: G): G
+{
+ var h := g;
+ h
+}
+
+function Groovy<G>(g: G, x: int): G
+{
+ var h := g;
+ if x == 80 then
+ RogerThat(h)
+ else
+ [h][0]
+}
+
method IsRogerCool(n: int)
requires RogerThat(true); // once upon a time, this caused the translator to produce bad Boogie
{
@@ -138,6 +153,12 @@ method IsRogerCool(n: int) assert Cool(2 < 3 && n < n && n < n+1); // the error message here will peek into the argument of Cool
} else if (*) {
assert RogerThat(2 < 3 && n < n && n < n+1); // same here; cool, huh?
+ } else if (*) {
+ assert Rockin'(false); // error
+ } else if (*) {
+ assert Groovy(n < n, 80); // error
+ } else if (*) {
+ assert Groovy(n + 1 <= n, 81); // error
}
}
@@ -217,3 +238,32 @@ module TwoLayers w.get
}
}
+
+// ---------------------------------------------------------------------
+
+datatype List<T> = Nil | Cons(T, List)
+predicate InList<T>(x: T, xs: List<T>)
+predicate Subset(xs: List, ys: List)
+{
+ forall x :: InList(x, xs) ==> InList(x, ys)
+}
+ghost method ListLemma_T(xs: List, ys: List)
+ requires forall x :: InList(x, xs) ==> InList(x, ys);
+{
+ assert Subset(xs, ys);
+}
+ghost method ammeLtsiL_T(xs: List, ys: List)
+ requires Subset(xs, ys);
+{
+ assert forall x :: InList(x, xs) ==> InList(x, ys);
+}
+ghost method ListLemma_int(xs: List<int>, ys: List<int>)
+ requires forall x :: InList(x, xs) ==> InList(x, ys);
+{
+ assert Subset(xs, ys);
+}
+ghost method ammeLtsiL_int(xs: List<int>, ys: List<int>)
+ requires Subset(xs, ys);
+{
+ assert forall x :: InList(x, xs) ==> InList(x, ys);
+}
|