Frama-C-discuss mailing list archives

This page gathers the archives of the old Frama-C-discuss archives, that was hosted by Inria's gforge before its demise at the end of 2020. To search for mails newer than September 2020, please visit the page of the new mailing list on Renater.

---

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Frama-c-discuss] "\at(var, Pre)" before a loop

---

• Subject: [Frama-c-discuss] "\at(var, Pre)" before a loop
• From: Claude.Marche at inria.fr (Claude Marché)
• Date: Fri, 03 Apr 2009 09:15:00 +0200
• In-reply-to: <20090402183459.41f3b1dd@is005115>
• References: <A6FD74D4A6DA4247AD801E3943634063034C343A@sctex002.st-cloud.dassault-avion.fr> <5030C1BB-9A4C-458A-B0CB-DA49C3EABB13@cea.fr> <1238682330.7692.339.camel@localhost> <3d13dcfc0904020731y7bfae28fo750d100e0fbccf40@mail.gmail.com> <1238683464.7692.346.camel@localhost> <F1229212CB084F4CBEA197909C8699F1021BD9B5@TLSMAIL1.tls.fr.astrium.corp> <20090402183459.41f3b1dd@is005115>

---

Sure it is correct, and if you add the declaration of i, it is proved 
correct with Frama-C/Jessie. Even arithmetic overflow checks are OK. 
What is the point ?

- Claude

Virgile Prevosto wrote:
> Hello,
> 
> Le jeu 02 avr 2009 18:14:51 CEST,
> "PAREAUD, Thomas" <Thomas.PAREAUD at astrium.eads.net> a ?crit :
> 
>> I have a qestion regarding the value of \at(var, Pre) before a loop.
>> In the following example, is the value of \at(pString, Pre) in the loop
>> invariant annotations before the loop has a constant value during all
>> iterations and is equal to the value of the pString original argument?
>> In other words, is this loop invariant correct?
>>
> 
> \at(expr,Pre) always denotes the value of expr in the pre-state of the
> function (i.e. when the function is entered). Assuming there's no
> overflow or invalid pointer access, the loop invariant is correct.
> 
> Best regards,

---

• References:
  • [Frama-c-discuss] Frama-C: GUI's response time
    • From: Dillon.Pariente at dassault-aviation.com (Pariente Dillon)
  • [Frama-c-discuss] Frama-C: GUI's response time
    • From: Pascal.Cuoq at cea.fr (Pascal Cuoq)
  • [Frama-c-discuss] Frama-C: GUI's response time
    • From: julien.signoles at cea.fr (Julien Signoles)
  • [Frama-c-discuss] Frama-C: GUI's response time
    • From: dmentre at linux-france.org (David MENTRE)
  • [Frama-c-discuss] Frama-C: GUI's response time
    • From: julien.signoles at cea.fr (Julien Signoles)
  • [Frama-c-discuss] "\at(var, Pre)" before a loop
    • From: Thomas.PAREAUD at astrium.eads.net (PAREAUD, Thomas)
  • [Frama-c-discuss] "\at(var, Pre)" before a loop
    • From: virgile.prevosto at cea.fr (Virgile Prevosto)

• Prev by Date: [Frama-c-discuss] "\at(var, Pre)" before a loop
• Next by Date: [Frama-c-discuss] "\at(var, Pre)" before a loop
• Previous by thread: [Frama-c-discuss] Solution to yesterday's quizz
• Next by thread: [Frama-c-discuss] Frama-C: GUI's response time
• Index(es):
  • Date
  • Thread