Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Verification issue #514

Closed
kjx opened this issue Jan 1, 2025 · 1 comment · Fixed by dafny-lang/dafny#6028
Closed

Verification issue #514

kjx opened this issue Jan 1, 2025 · 1 comment · Fixed by dafny-lang/dafny#6028

Comments

@kjx
Copy link

kjx commented Jan 1, 2025

Failing code

type Owner = set<Object>

class Object {

  const bound : Owner
  const AMFB  : Owner

  const xtrnl : Owner
  const AMFX :  Owner

  const ntrnl : Owner
  const AMFO  : Owner

  constructor  bake(oo : Owner, mb : Owner)
    requires oo >= mb
    {
      bound := mb;
      xtrnl := oo;
      ntrnl := oo + {this};
      AMFB  := flatten1(mb);
      AMFX  := flatten1(oo);
      AMFO  := flatten1(oo) + {this};
      new;

      assert forall o <- xtrnl :: AMFO > o.AMFO;

      assert
      && (AMFB == (set o <- bound, oo <- o.AMFO :: oo))
      && (AMFX == (set o <- xtrnl, oo <- o.AMFO :: oo))
      && (AMFO == (set o <- ntrnl, oo <- o.AMFO :: oo) +  {this})

      && (forall o <- bound :: o.Valid())
      && (forall o <- xtrnl :: o.Valid())
      ;
    }

  predicate Valid()
    {
      && (this  in AMFO)
      && (this !in AMFX)
      && (AMFO > AMFX >= AMFB)
    }
}

function flatten1(os : Owner) : (rv : Owner)  {set o <- os, oo <- o.AMFO :: oo}

Steps to reproduce the issue

  • Dafny version: 4.9.2.0
  • Dafny VSCode extension version: 3.4.3

Expected behavior

Code should verify or time out

Actual behavior

without a time limit, or a time limit >= 60s or thereabouts - dafny loops for ever.

this version fails reliably - longer versions would e.g. fail on recent versions of dafny, but work on dafny4.4, say, or work with --isolate-assertions but not without. "objectage-spike.dfy" (attached) does this against 4.9.2+a88767fb453b51d475667aab6f230711d7eeeb79, but verifies in 2.0s fine with 4.4.0+707b18acee078b3aa4d84c0590a980966bf22428,.

spike-bug4.dfy.txt
objectage-spike.dfy.txt
@keyboardDrummer
Copy link
Member

I agree Dafny should have a default timeout. Created an explicit issue for that here: dafny-lang/dafny#6027

@keyboardDrummer keyboardDrummer mentioned this issue Jan 8, 2025
Merged
olivier-aws pushed a commit to olivier-aws/dafny that referenced this issue Jan 13, 2025
@keyboardDrummer @olivier-aws
Set a default verification time limit (dafny-lang#6028)
e1affea 
Fixes dafny-lang/ide-vscode#514

### What was changed?
Set a default verification time limit

### How has this been tested?
Added a CLI test that checks there is a default time-out

<small>By submitting this pull request, I confirm that my contribution
is made under the terms of the [MIT
license](https://github.com/dafny-lang/dafny/blob/master/LICENSE.txt).</small>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Set a default verification time limit keyboardDrummer/dafny
2 participants
@kjx @keyboardDrummer