Add why3 files

2025-12-15 06:28:46 +00:00 · 2022-09-03 23:10:14 +09:00
parent 80aba708a4
commit db7517ffb6
4 changed files with 170 additions and 0 deletions
--- a/assets/why3/ex1_eucl_div.mlw
+++ b/assets/why3/ex1_eucl_div.mlw
@@ -0,0 +1,34 @@
+(* Euclidean division
+
+   1. Prove soundness, i.e. (division a b) returns an integer q such that
+      a = bq+r and 0 <= r < b for some r.
+      (You have to strengthen the precondition.)
+
+      Do you have to require b <> 0? Why?
+
+   2. Prove termination.
+      (You may have to strengthen the precondition even further.)
+*)
+
+module Division
+
+  use int.Int
+
+  let division (a b: int) : int
+    requires { a > 0 /\ b > 0 }
+    ensures  { exists r: int. a = b * result + r /\ 0 <= r < b }
+  =
+    let ref q = 0 in
+    let ref r = a in
+    while r >= b do
+      invariant { a = b * q + r /\ r >= 0 }
+      variant { r }
+      q <- q + 1;
+      r <- r - b
+    done;
+    q
+
+  let main () =
+    division 1000 42
+
+end