Source code checked in, #3abd0f4ae979
Fix issue89. Copy the out param to a local before use it in an anonymous method that is generated by LetExpr. Change the compiler so that each stmt writes to its own buffer before add it to the...
View ArticleSource code checked in, #b954fb8ab983
Fix issue 104. Use ResolvedExpression to compute subexpressions for DatatypeUpdateExpr if ResovedExpression is not null.
View ArticleClosed Unassigned: Can't update ghost fields with new update notation [104]
The new notation for updating fields (the dot-parenthesis notation) can't be used to update ghost fields of non-ghost variables. The old, deprecated notation (brackets) still supports updating such...
View ArticleClosed Unassigned: Dafny compiler generates illegal C# code for some let...
For the Dafny code below, the Dafny compiler generates illegal C# code:``method F() returns(x:int) ensures x == 6;{ x := 5; x := (var y := 1; y + x);}method Main(){ var x := F(); print x;}``The C#...
View ArticleSource code checked in, #4e9a66e11466
Fix issue 99. When annotate a quantifier expr that has a SplitQuantifier, we need exclude the private terms (the ones that includes the quantifier expr's bv) from it exported terms.
View ArticleClosed Unassigned: Internal translation error using /autoTriggers:1 [99]
The following code gives an internal translation error when using /autoTriggers:1```predicate P(e:int, p:int) { true }predicate Q(i:int, t:int)lemma Tester(x:int){ assert forall i :: Q(i, x) ==>...
View ArticleEdited Issue: Looping behavior with strings [97]
Something weird is going on with strings (and perhaps other sequences, too) where a seemingly immaterial change in the input causes Z3 to loop.Repro: The following two runs show the behavior. Note the...
View ArticleCommented Unassigned: /autoTriggers vs. higher-order functions [100]
If you run Dafny with /autoTriggers:1 in the example below, the assertion fails, even though it is just repeating the body of the quantifier in the lemma's ensures clause. The problem is specific to...
View ArticleCommented Unassigned: Soundness issue with
The following code proves false:```predicate P(i:int) { true }lemma Tester(){// forall i ensures false ==> P(i) {} forall i ensures P(i) <== false {} assert forall i :: P(i) ==> false; assert...
View ArticleCommented Unassigned: Triggers in DafnyPrelude.bpl axiom [102]
For these two axioms in DafnyPrelude.bpl:```axiom (forall<U, V> u: U ::{ Map#Domain(Map#Empty(): Map U V)[u] }!Map#Domain(Map#Empty(): Map U V)[u]);axiom (forall<U, V> u: U ::{...
View ArticleCommented Unassigned: Feature request: Auto-triggers on forall statements [103]
Dafny's new auto-trigger feature is quite useful, but it leaves out a useful case: forall statements. In the attached file, no trigger is generated for the forall statement, even though there's a...
View ArticleSource code checked in, #efaea5faa192
Fix issue 101. Instead of swapping operands for Exp opcode in BinaryExpr, swap them when the expr is first created in parser or for calcstmt. This avoids problems of operands being swapped again when...
View ArticleClosed Unassigned: Soundness issue with
The following code proves false:```predicate P(i:int) { true }lemma Tester(){// forall i ensures false ==> P(i) {} forall i ensures P(i) <== false {} assert forall i :: P(i) ==> false; assert...
View ArticleNew Post: A program with dynamic frames that verifies but gives an execution...
You can find the program herehttp://rise4fun.com/Dafny/4whY Please, some help? Paqui
View ArticleCommented Unassigned: /autoTriggers vs. higher-order functions [100]
If you run Dafny with /autoTriggers:1 in the example below, the assertion fails, even though it is just repeating the body of the quantifier in the lemma's ensures clause. The problem is specific to...
View ArticleCommented Unassigned: Triggers in DafnyPrelude.bpl axiom [102]
For these two axioms in DafnyPrelude.bpl:```axiom (forall<U, V> u: U ::{ Map#Domain(Map#Empty(): Map U V)[u] }!Map#Domain(Map#Empty(): Map U V)[u]);axiom (forall<U, V> u: U ::{...
View ArticleCommented Unassigned: Feature request: Auto-triggers on forall statements [103]
Dafny's new auto-trigger feature is quite useful, but it leaves out a useful case: forall statements. In the attached file, no trigger is generated for the forall statement, even though there's a...
View ArticleNew Post: A program with dynamic frames that verifies but gives an execution...
Thanks for the bug report. It was a problem in the compiler, which had generated .Equals instead of ==. I checked in a fix (in the sources). Rustan
View Article