```
use int.Int
use array.Array
let update a i (v:int)
requires { 0 <= i < length a }
ensures { a[i] = v }
= a[i] <- v
```
which is easily solved by Alt-Ergo, but not by CVC4 nor Z3.
I suggest:
- to provide monomorphic clonable versions of ref.Ref and array.Array in the stdlib, which would allow to program without polymorphism unless needed elsewhere
It looks like there exists, in both CVC4 and Z3, operations on 2's complement signed integer for division (BVSDIV) and modulo on bitvectors. For modulo BVSMOD follows the semantic of the modulo in programming language.

I would appreciate if these two operations could be added in the theory of bitvector in addition to the `urem` and `udiv` operation that are already existing.
Beware that the command line options have changed.
https://discuss.ocaml.org/t/ann-alt-ergo-2-4-0-release/7134
https://discuss.ocaml.org/t/ann-alt-ergo-2-4-0-release/71341.4.0MARCHE ClaudeMARCHE Claudehttps://gitlab.inria.fr/why3/why3/-/issues/512Useless axioms for min and max in SMT output2020-11-05T09:39:14ZJohannes KanigUseless axioms for min and max in SMT outputThe axioms in theory `int.MinMax` should not be used by SMT solvers. So the following snippet should be added to `smt-libv2.gen`, similar to what is already done for `real.MinMax`:
```
theory int.MinMax
syntax function min "(ite (< %1 %2) %1 %2)"
syntax function max "(ite (< %1 %2) %2 %1)"
remove allprops
end
```
The first error (in the .xml file) gives:
function exp int: int
goal G: true
```
```
$ bin/why3 prove -P CVC4,1.7 foo.mlw
foo.mlw Top G: HighFailure (0.02s)
Prover exit status: killed by signal 11
Prover output:
(error "Parse Error: /tmp/why_72ac78_foo-T-G.smt2:9.16: Symbol `exp' is shadowing a theory function symbol
(declare-fun exp (Int) Int)
^
")
CVC4 suffered a segfault.
Offending address is 0x8
Looks like a NULL pointer was dereferenced.
```
```why3
module Cvc4Bug
use ieee_float.Float32
goal G: in_range 0.0
end
```
The following command fails:
```
$ why3 prove cvc4_bug.mlw -P cvc4
cvc4_bug.mlw Cvc4Bug G: HighFailure (0.03s, 36 steps)
Prover exit status: exited with status 1
Prover output:
(error "expecting an integer subterm")
...
```
```
use string.String
goal g : false
```
```
$ bin/why3 prove foo.mlw -P Z3,4.6.0
foo.mlw Top g: Valid (0.04s, 24607 steps)
much longer to prove a given VC if a non-linear arithmetic was specified
compared to a linear one. See this ticket and the example in the ticket:
https://github.com/CVC4/CVC4/issues/1276
On my machine, there is a factor of 10 (0.6s vs 6s) between UFBVDTLIRA
and UFBVDTNIRA when using cvc4 on the example in the issue.
We were wondering if Why3 could be more precise, e.g. detecting when
only linear operators are used. Given the potentially large speedups it
seems worthwhile. The other idea mentioned in the TN to specify
> Yes, the semantics changed in version 2.6 [0]. `(bvurem s t)` returns `s` if `t` is zero (before, the value was a fresh constant). CVC4 automatically chooses the semantics that matches the SMT-LIB version. You can manually toggle the behavior with --(no-)bv-div-zero-const (enabling the flag corresponds to the 2.6 version, disabling to earlier versions). If your problems only use QF_BV, you can also improve performance by compiling CVC4 with support for CaDiCaL (run the `contrib/get-cadical` script, then configure with `--cadical`) and then using the flags `--bitblast=eager --bv-sat-solver=cadical` (eager bitblasting and using CaDiCaL as the SAT solver).
Is that possible that we now need to add the option "--(no-)bv-div-zero-const" to the smt-lib provers using 2.6 ? It seems to help SPARK users.
Additional question:
Will there be a problem with the following axiom because urem seems to be linked to bvurem by smt-lib drivers ? (axioms about "mod ?x 0" do not seem to exist so I guess it is ok unless mod is also mapped by a driver?)
```
val function urem (v1 v2 : t) : t
axiom to_uint_urem:
forall v1 v2. to_uint (urem v1 v2) = mod (to_uint v1) (to_uint v2)
```
theory real.Abs
syntax function abs "(ite (>= %1 0.0) %1 (- %1))"
remove allprops
end
theory real.MinMax
syntax function min "(ite (< %1 %2) %1 %2)"
syntax function max "(ite (< %1 %2) %2 %1)"
remove allprops
end
theory real.FromInt
syntax function from_int "(to_real %1)"
remove allprops
end
```
[EDIT]
```
theory real.Truncate
syntax function truncate "(ite (>= %1 0.0)
(to_int %1)
(- (to_int (- %1))))"
syntax function floor "(to_int %1)"
syntax function ceil "(- 1 (to_int (- 1.0 %1)))"
remove allprops
end
```
DAILLER SylvainDAILLER Sylvainhttps://gitlab.inria.fr/why3/why3/-/issues/263Removing Inline_trivial2019-02-12T16:55:13ZDAILLER SylvainRemoving Inline_trivialHello,
I don't understand what this transformation is used for. At first, I thought it was there for optimization but it seems that removing it from the driver makes `cvc4 1.5` fail on some files (`bench/ce/array_mono.mlw`).
