Commented Unassigned: Crash with cached version of :fuel [143]
The following produces a crash in Dafny: Put the following program into a file:```function pred(i:int):int { i - 1 }predicate f(a:int, s:int) { a <= 0 || exists s0 :: f(pred(a), s0) }lemma...
View ArticleCreated Unassigned: existentials not preserved across method calls [144]
The following fails:```predicate p(i:int)method m1()method m2(){ assume exists i :: p(i); assert exists i :: p(i); m1(); assert exists i :: p(i); // FAILS}```The trigger in the frame axiom for p may be...
View ArticleCommented Unassigned: Dafny verifies incorrect assertions [145]
Consider the following code fragment ([http://rise4fun.com/Dafny/6lkz](http://rise4fun.com/Dafny/6lkz)):```function existential(mat: array2<bool>): bool requires mat != null{ exists i, j :: 0...
View ArticleCommented Unassigned: Dafny verifies incorrect assertions [145]
Consider the following code fragment ([http://rise4fun.com/Dafny/6lkz](http://rise4fun.com/Dafny/6lkz)):```function existential(mat: array2<bool>): bool requires mat != null{ exists i, j :: 0...
View ArticleCommented Unassigned: Dafny verifies incorrect assertions [145]
Consider the following code fragment ([http://rise4fun.com/Dafny/6lkz](http://rise4fun.com/Dafny/6lkz)):```function existential(mat: array2<bool>): bool requires mat != null{ exists i, j :: 0...
View ArticleSource code checked in, #b22c6df8746d
Make /autoTriggers:1 to be default. Add /autoTriggers:0 to tests that requires it. Don't use pretty warning signs since we can't diff them correctly in the test output from the test run.
View ArticleSource code checked in, #d954a409627e
Allow users to annontate a method as main with {:main} attribute. It’s an error if more than one method is so annotated. For that method, the usual restrictions for "main" apply, but it is allowed to...
View ArticleUpdated Wiki: Binaries
Try DafnyThe easiest way to get started with Dafny is to use rise4fun, where you can write and verify Dafny programs without having install anything. On rise4fun, you will also find theonline Dafny...
View ArticleCreated Unassigned: Dafny verifies incorrect assertions (updated) [146]
I cloned and built the latest version of Dafny (changeset d954a409627e), found happily that #145 is fixed, and proceeded with my project. Unfortunately, I soon encountered another bug, similar to the...
View ArticleCreated Unassigned: NullReferenceException when running compiled code under...
I am running Dafny 1.9.6 on OS X using mono, and I've run into an issue when trying to run programs compiled by Dafny. For example, consider the following program Null.dfy```class Data {}method Main(){...
View ArticleCommented Unassigned: NullReferenceException when running compiled code under...
I am running Dafny 1.9.6 on OS X using mono, and I've run into an issue when trying to run programs compiled by Dafny. For example, consider the following program Null.dfy```class Data {}method Main(){...
View ArticleCommented Unassigned: NullReferenceException when running compiled code under...
I am running Dafny 1.9.6 on OS X using mono, and I've run into an issue when trying to run programs compiled by Dafny. For example, consider the following program Null.dfy```class Data {}method Main(){...
View ArticleCommented Unassigned: NullReferenceException when running compiled code under...
I am running Dafny 1.9.6 on OS X using mono, and I've run into an issue when trying to run programs compiled by Dafny. For example, consider the following program Null.dfy```class Data {}method Main(){...
View ArticleSource code checked in, #e7cd6e17fbaf
Fix issue 75. Adjust the fuel for existentials to use more fuel in an assume context and less in an assert.
View ArticleEdited Unassigned: Difficult to use body of mutually recursive functions [75]
"assume R; assert body_of_R;" fails in lemma L1 below.```predicate R1(x:int, y:int) { x > 0 ==> R2(x - 1) }predicate R2(x:int) { exists y :: R1(x, y) }lemma L1(x:int){ assume R2(x); assert exists...
View ArticleClosed Unassigned: Difficult to use body of mutually recursive functions [75]
"assume R; assert body_of_R;" fails in lemma L1 below.```predicate R1(x:int, y:int) { x > 0 ==> R2(x - 1) }predicate R2(x:int) { exists y :: R1(x, y) }lemma L1(x:int){ assume R2(x); assert exists...
View ArticleSource code checked in, #d5ce8acc9fb5
Fix issue 143. The list that stores the function fuel constants was declared as static field and not initialized correctly. Make it an instance field instead.
View ArticleEdited Unassigned: Crash with cached version of :fuel [143]
The following produces a crash in Dafny: Put the following program into a file:```function pred(i:int):int { i - 1 }predicate f(a:int, s:int) { a <= 0 || exists s0 :: f(pred(a), s0) }lemma...
View Article