Skip to content

MCE and possibly other parts of the code define functions not taking all quantified variables into account #896

Closed
Closed
MCE and possibly other parts of the code define functions not taking all quantified variables into account#896
Labels
unsoundness
@marcoeilers

Description

@marcoeilers
marcoeilers
opened on Feb 1, 2025

The following verifies with MCE:

field f: Int

method foo(x: Ref, y: Ref)
{
  inhale acc(x.f) && x.f == 4 && acc(y.f) && y.f == 5
  
  var myseq: Seq[Ref] := Seq(x, y)

  assert forall r: Ref :: {r in myseq} r in myseq ==> fn(r) > 2

  assert x in myseq
  assert y in myseq
  assert false
}

function fn(x: Ref): Int
  requires acc(x.f, wildcard)
{x.f}

It seems as if s.functionRecorderQuantifiedVariables() contains function arguments and s.quantifiedVariables contains quantified variables if we're inside a quantifier. Lots of places that define functions depending on one of them should probably take both into account. MCE snapshots only use s.functionRecorderQuantifiedVariables(), which is what causes the unsoundness above.

Metadata

Metadata

Assignees

No one assigned

    Labels

    unsoundness

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions