lustrec / test / src / kind_fmcad08 / misc / durationThm_2.lus @ 0cbf0839
History | View | Annotate | Download (664 Bytes)
| 1 | 0cbf0839 | ploc | -- |
|---|---|---|---|
| 2 | -- Source: Bertrand Jeannet |
||
| 3 | -- |
||
| 4 | |||
| 5 | node Sofar( X : bool ) returns ( Sofar : bool ); |
||
| 6 | let |
||
| 7 | Sofar = X -> X and pre Sofar; |
||
| 8 | tel |
||
| 9 | |||
| 10 | |||
| 11 | node Age (p: bool) returns (age_of_p: int); |
||
| 12 | -- how long has p been maintained true in the strict past |
||
| 13 | let |
||
| 14 | age_of_p = 0 -> if pre(p) then pre(age_of_p) + 1 else 0; |
||
| 15 | tel |
||
| 16 | |||
| 17 | -- Theorem 3: |
||
| 18 | -- (p -k-> q and r -k-> t) => (p and r) -k-> (q and t) |
||
| 19 | |||
| 20 | -- Not provable in luke-* |
||
| 21 | node top (k0: int; p, q, r, t : bool) returns (OK: bool); |
||
| 22 | var k: int; |
||
| 23 | env : bool; |
||
| 24 | let |
||
| 25 | k = k0-> pre(k); |
||
| 26 | env = Sofar((k>=1) and (Age(p)>=k => q) and (Age(r)>=k => t)); |
||
| 27 | OK = env => ((Age(p and r)>=k) => (q and t)); |
||
| 28 | --%PROPERTY OK=true; |
||
| 29 | --%MAIN; |
||
| 30 | tel |