Closed Unassigned: Dafny infinite loop when using /ironDafny, nativeType, and...
When I run Dafny on the following file with the "/ironDafny" command-line argument, it never terminates:module NativeTypes { newtype{:nativeType "ushort"} uint16 = i:int | 0 <= i < 0x10000}...
View ArticleSource code checked in, #4e11773f662b
Fix issue 132. The formal argument can't be assume to be allocated when a function is invoked inside an "Old" expression.
View ArticleEdited Unassigned: Missing checks for unallocated values inside old...
The well-formedness checks for a Dafny function get to assume that the formal argumentsare of the appropriate type and are allocated in the state in which the function is invoked.In order for this to...
View ArticleClosed Unassigned: Missing checks for unallocated values inside old...
The well-formedness checks for a Dafny function get to assume that the formal argumentsare of the appropriate type and are allocated in the state in which the function is invoked.In order for this to...
View ArticleSource code checked in, #f97d64d55e65
Update the test's .expect file since the fix is merged into boogie.
View ArticleEdited Unassigned: Triggers in DafnyPrelude.bpl axiom [102]
For these two axioms in DafnyPrelude.bpl:```axiom (forall<U, V> u: U ::{ Map#Domain(Map#Empty(): Map U V)[u] }!Map#Domain(Map#Empty(): Map U V)[u]);axiom (forall<U, V> u: U ::{...
View ArticleCommented Unassigned: Triggers in DafnyPrelude.bpl axiom [102]
For these two axioms in DafnyPrelude.bpl:```axiom (forall<U, V> u: U ::{ Map#Domain(Map#Empty(): Map U V)[u] }!Map#Domain(Map#Empty(): Map U V)[u]);axiom (forall<U, V> u: U ::{...
View ArticleClosed Unassigned: Triggers in DafnyPrelude.bpl axiom [102]
For these two axioms in DafnyPrelude.bpl:```axiom (forall<U, V> u: U ::{ Map#Domain(Map#Empty(): Map U V)[u] }!Map#Domain(Map#Empty(): Map U V)[u]);axiom (forall<U, V> u: U ::{...
View ArticleNew Post: Generic traits
Hello, I'm trying to define some abstract data types in Dafny and I have found generic traits interesting for that purpose. As I have read in Automatic Verification of Dafny Programs with...
View ArticleCreated Unassigned: Dafny-generated quantifier missing a trigger [135]
When Dafny translates the `LambdaGenerator` function below:```datatype D = D(b:bool)function LambdaGenerator(x:int) : D -> bool{(d:D) -> d.b && x > 2}```the definition axioms include a...
View ArticleCreated Unassigned: Less aggressive Lit wrapping needed [136]
When Dafny translates this program:```method test(){ assume false;}```the `assume false` is translated into Boogie as `assume Lit(false)`. This can be problematic when debugging timeouts, since Z3 is...
View ArticleNew Post: Quicksort correctness
hello, I'm trying to implement Quicksort partition method, I took the pseudo code from wikipedia, I'm trying to prove the partition of the pivot (meaning elements smaller than the pivot will be from...
View ArticleEdited Unassigned: Dafny-generated quantifier missing a trigger [135]
When Dafny translates the `LambdaGenerator` function below:```datatype D = D(b:bool)function LambdaGenerator(x:int) : D -> bool{(d:D) -> d.b && x > 2}```the definition axioms include a...
View ArticleCommented Unassigned: Dafny-generated quantifier missing a trigger [135]
When Dafny translates the `LambdaGenerator` function below:```datatype D = D(b:bool)function LambdaGenerator(x:int) : D -> bool{(d:D) -> d.b && x > 2}```the definition axioms include a...
View ArticleCreated Unassigned: case with 0-tuple constructor [137]
The Dafny parser does not allow a case pattern to be the 0-ary tuple constructor, `()`.```method P(x: ()) { match x case () =>}```gives```test.dfy(33,8): Error: invalid CasePattern```This seems to...
View ArticleCreated Unassigned: nullary constructor in case not allowed parentheses [138]
Datatype (and co-datatype) constructors in Dafny have parentheses around their arguments, both in declarations of the constructors and in their uses. However, for nullary constructors, the parentheses...
View ArticleCreated Unassigned: Shadowing, nested variable generates duplicate parameter...
Generally, the names of `case`-bound variables are allowed to shadow variables declared outside the enclosing `match`. However, in the case of nested patterns, Dafny generates an error if a bound...
View ArticleNew Post: empty while loops
Dafny allows empty while loops (and from looking at the grammar, not just by accident). The compiler refuses to generate code for them; more alarmingly, the generated Boogie code seems to be "assume...
View ArticleNew Post: empty while loops
Yes, Dafny allows body-less loops. (I'm intrigued that you're looking into the generated Boogie code to get more details. :)) The body-less loops are an experimental feature that hasn't fully been...
View ArticleCreated Unassigned: Tail calls broken in C# code [140]
[Running 1.9.6.21012.]When executed, the main program in the attached file goes into an infinite loop.The generated C# for method ```Print``` suggests why:``` public void @Print(){ TAIL_CALL_START: ;...
View Article