diff options
| author |  Rustan Leino <unknown> | 2014-07-14 19:19:28 -0700 |
|---|---|---|
| committer | Rustan Leino <unknown> | 2014-07-14 19:19:28 -0700 |
| commit | 264ce2c58b81f478fc0a42e03423252fdc5a1258 (patch) | |
| tree | d403c17b31665c27a1dcc00bafb933cf12417728 /Test/dafny3 | |
| parent | 975b6ecdb4b69c146b138fa8b35a3e00f29068e3 (diff) | |
Another variation of GenericSort, this time instantiating with "int"
Diffstat (limited to 'Test/dafny3')
| -rw-r--r-- | Test/dafny3/GenericSort.dfy | 50 | ||||
| -rw-r--r-- | Test/dafny3/GenericSort.dfy.expect | 2 |
2 files changed, 50 insertions, 2 deletions
diff --git a/Test/dafny3/GenericSort.dfy b/Test/dafny3/GenericSort.dfy index 53d98bc2..2244f37f 100644 --- a/Test/dafny3/GenericSort.dfy +++ b/Test/dafny3/GenericSort.dfy @@ -129,7 +129,7 @@ module Client { import O = IntOrder
}
import I = IntOrder
- method Main() {
+ static method TheMain() {
var a := new I.T[4];
a[0] := I.T.Int(6); // alternatively, we could have written the RHS as: IntSort.O.T.Int(6)
a[1] := I.T.Int(1);
@@ -148,3 +148,51 @@ module Client { print a[..], "\n";
}
}
+
+// ----- Now for the actual 'int' type -----
+
+module intOrder refines TotalOrder {
+ // Instantiate type T with a datatype wrapper around an integer.
+ type T = int
+ // Define the ordering on these integers
+ static predicate method Leq ...
+ ensures Leq(a, b) ==> a <= b;
+ {
+ a <= b
+ }
+ // The three required properties of the order are proved here as lemmas.
+ // The proofs are automatic and don't require any further assistance.
+ static lemma Antisymmetry ... { }
+ static lemma Transitivity ... { }
+ static lemma Totality ... { }
+}
+
+module AnotherClient {
+ module intSort refines Sort {
+ import O = intOrder
+ }
+ import I = intOrder
+ static method TheMain() {
+ var a := new int[4]; // alternatively, could have written 'new I.T[4]'
+ a[0] := 6;
+ a[1] := 1;
+ a[2] := 0;
+ a[3] := 4;
+ // These are now the elements of the array:
+ assert a[..] == [6, 1, 0, 4];
+ // Call the sorting routine to sort the array
+ intSort.InsertionSort(a);
+ // Check the answer
+ assert intSort.O.Leq(a[0], a[1]); // lemma
+ assert intSort.O.Leq(a[1], a[2]); // lemma
+ assert intSort.O.Leq(a[2], a[3]); // lemma
+ assert a[..] == [0, 1, 4, 6];
+ // why not print out the result!
+ print a[..], "\n";
+ }
+}
+
+method Main() {
+ Client.TheMain();
+ AnotherClient.TheMain();
+}
diff --git a/Test/dafny3/GenericSort.dfy.expect b/Test/dafny3/GenericSort.dfy.expect index f5e3b3dc..53fc8b79 100644 --- a/Test/dafny3/GenericSort.dfy.expect +++ b/Test/dafny3/GenericSort.dfy.expect @@ -1,2 +1,2 @@ -Dafny program verifier finished with 36 verified, 0 errors
+Dafny program verifier finished with 53 verified, 0 errors
|