Skip to content
GitLab
Projects
Groups
Snippets
Help
Loading...
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
why3
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
125
Issues
125
List
Boards
Labels
Service Desk
Milestones
Merge Requests
15
Merge Requests
15
Operations
Operations
Incidents
Packages & Registries
Packages & Registries
Container Registry
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
Why3
why3
Commits
57af1c42
Commit
57af1c42
authored
Mar 23, 2013
by
Jean-Christophe Filliâtre
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
new example: simple priority queue (only safety, so far)
parent
cb38a2bd
Changes
2
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
162 additions
and
0 deletions
+162
-0
examples/simple_priority_queue.mlw
examples/simple_priority_queue.mlw
+62
-0
examples/simple_priority_queue/why3session.xml
examples/simple_priority_queue/why3session.xml
+100
-0
No files found.
examples/simple_priority_queue.mlw
0 → 100644
View file @
57af1c42
(* Simple priority queue implementation
(inspired by Tinelli's lecture http://www.divms.uiowa.edu/~tinelli/181/) *)
module SimplePrioriyQueue
use import int.Int
use import ref.Ref
use import array.Array
type elt
function priority elt : int
type t = {
elems: array elt;
mutable size : int; (* size elements, stored in elems[0..size[ *)
mutable h : int; (* index of the highest prioiry element, if any *)
}
invariant { 0 <= self.size <= self.elems.length }
invariant { self.size = 0 \/ 0 <= self.h < self.size }
let create (n: int) (dummy: elt) : t
requires { 0 <= n }
ensures {result. size = 0 }
= { elems = Array.make n dummy; size = 0; h = 0; }
predicate is_empty (q: t) = q.size = 0
predicate is_full (q: t) = q.size = length q.elems
let add (q: t) (x: elt) : unit
requires { not (is_full q) }
writes { q.elems.elts, q.h, q.size }
= q.elems[q.size] <- x;
if q.size = 0 then
q.h <- 0
else if priority x > priority q.elems[q.h] then
q.h <- q.size;
q.size <- q.size + 1
let highest (q: t) : elt
requires { not (is_empty q) }
= q.elems[q.h]
let remove (q: t) : elt
requires { not (is_empty q) }
= q.size <- q.size - 1;
let r = q.elems[q.h] in
q.elems[q.h] <- q.elems[q.size];
if q.size > 0 then begin
let m = ref (priority q.elems[0]) in
q.h <- 0;
for i = 1 to q.size - 1 do
invariant { 0 <= q.h < q.size }
let p = priority q.elems[i] in
if p > !m then begin q.h <- i; m := p end
done
end;
r
end
examples/simple_priority_queue/why3session.xml
0 → 100644
View file @
57af1c42
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE why3session PUBLIC "-//Why3//proof session v2//EN" "http://why3.lri.fr/why3session.dtd">
<why3session
shape_version=
"2"
>
<prover
id=
"0"
name=
"Alt-Ergo"
version=
"0.95.1"
/>
<file
name=
"../simple_priority_queue.mlw"
verified=
"true"
expanded=
"true"
>
<theory
name=
"SimplePrioriyQueue"
locfile=
"../simple_priority_queue.mlw"
loclnum=
"5"
loccnumb=
"7"
loccnume=
"25"
verified=
"true"
expanded=
"true"
>
<goal
name=
"WP_parameter create"
locfile=
"../simple_priority_queue.mlw"
loclnum=
"22"
loccnumb=
"6"
loccnume=
"12"
expl=
"VC for create"
sum=
"6f03cecc7cfa9fbcc000cbcc4d582191"
proved=
"true"
expanded=
"true"
shape=
"ainfix =c0c0Aainfix <c0c0Aainfix <=c0c0Oainfix =c0c0Aainfix <=c0V0Aainfix <=c0c0Iainfix <=c0V0Aainfix >=V0c0Iainfix <=c0V0F"
>
<label
name=
"expl:VC for create"
/>
<proof
prover=
"0"
timelimit=
"5"
memlimit=
"1000"
obsolete=
"false"
archived=
"false"
>
<result
status=
"valid"
time=
"0.04"
/>
</proof>
</goal>
<goal
name=
"WP_parameter add"
locfile=
"../simple_priority_queue.mlw"
loclnum=
"31"
loccnumb=
"6"
loccnume=
"9"
expl=
"VC for add"
sum=
"b2d372c21a7fb7e381ff0f6d8c508632"
proved=
"true"
expanded=
"true"
shape=
"iainfix =V3c0ainfix <=c0V0Aainfix <V6V7Aainfix <=c0V6Oainfix =V7c0Aainfix <=V7V0Aainfix <=c0V7Iainfix =V7ainfix +V3c1FIainfix =V6c0Fiainfix >apriorityV1apriorityagetV5V2ainfix <V8V9Aainfix <=c0V8Oainfix =V9c0Aainfix <=V9V0Aainfix <=c0V9Iainfix =V9ainfix +V3c1FIainfix =V8V3Fainfix <V2V10Aainfix <=c0V2Oainfix =V10c0Aainfix <=V10V0Aainfix <=c0V10Iainfix =V10ainfix +V3c1FAainfix <V2V0Aainfix <=c0V2Aainfix <=c0V0Iainfix =V5asetV4V3V1Aainfix <=c0V0FAainfix <V3V0Aainfix <=c0V3Iainfix =V3V0NAainfix <=c0V0Aainfix <V2V3Aainfix <=c0V2Oainfix =V3c0Aainfix <=V3V0Aainfix <=c0V3FF"
>
<label
name=
"expl:VC for add"
/>
<proof
prover=
"0"
timelimit=
"5"
memlimit=
"1000"
obsolete=
"false"
archived=
"false"
>
<result
status=
"valid"
time=
"0.03"
/>
</proof>
</goal>
<goal
name=
"WP_parameter highest"
locfile=
"../simple_priority_queue.mlw"
loclnum=
"41"
loccnumb=
"6"
loccnume=
"13"
expl=
"VC for highest"
sum=
"4a9f046d480d7daacf1561e3aa59c185"
proved=
"true"
expanded=
"true"
shape=
"ainfix <V1V0Aainfix <=c0V1Iainfix =V2c0NAainfix <=c0V0Aainfix <V1V2Aainfix <=c0V1Oainfix =V2c0Aainfix <=V2V0Aainfix <=c0V2FF"
>
<label
name=
"expl:VC for highest"
/>
<proof
prover=
"0"
timelimit=
"5"
memlimit=
"1000"
obsolete=
"false"
archived=
"false"
>
<result
status=
"valid"
time=
"0.03"
/>
</proof>
</goal>
<goal
name=
"WP_parameter remove"
locfile=
"../simple_priority_queue.mlw"
loclnum=
"45"
loccnumb=
"6"
loccnume=
"12"
expl=
"VC for remove"
sum=
"96427a3aa7dd3b9c59e6af1d2cfeaa81"
proved=
"true"
expanded=
"true"
shape=
"iainfix >V4c0ainfix <V8V4Aainfix <=c0V8Oainfix =V4c0Aainfix <=V4V0Aainfix <=c0V4Iainfix <V8V4Aainfix <=c0V8Aiainfix >apriorityV10V7ainfix <V11V4Aainfix <=c0V11Iainfix =V12apriorityV10FIainfix =V11V9Fainfix <V8V4Aainfix <=c0V8LagetV5V9Aainfix <V9V0Aainfix <=c0V9Iainfix <V8V4Aainfix <=c0V8Iainfix <=V9ainfix -V4c1Aainfix <=c1V9FFAainfix <V6V4Aainfix <=c0V6Iainfix <=c1ainfix -V4c1Aainfix <V6V4Aainfix <=c0V6Oainfix =V4c0Aainfix <=V4V0Aainfix <=c0V4Iainfix >c1ainfix -V4c1Iainfix =V6c0FAainfix <c0V0Aainfix <=c0c0Aainfix <=c0V0ainfix <=c0V0Aainfix <V1V4Aainfix <=c0V1Oainfix =V4c0Aainfix <=V4V0Aainfix <=c0V4Iainfix =V5asetV3V1agetV3V4Aainfix <=c0V0FAainfix <V1V0Aainfix <=c0V1Aainfix <V4V0Aainfix <=c0V4Aainfix <V1V0Aainfix <=c0V1Iainfix =V4ainfix -V2c1FIainfix =V2c0NAainfix <=c0V0Aainfix <V1V2Aainfix <=c0V1Oainfix =V2c0Aainfix <=V2V0Aainfix <=c0V2FF"
>
<label
name=
"expl:VC for remove"
/>
<proof
prover=
"0"
timelimit=
"5"
memlimit=
"1000"
obsolete=
"false"
archived=
"false"
>
<result
status=
"valid"
time=
"0.03"
/>
</proof>
</goal>
</theory>
</file>
</why3session>
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
.
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment
