Cannot verify postcondition in lambda #6117

alexstaeding · 2025-02-19T16:30:17Z

Dafny version

4.10.0

Code to produce this issue

function Foo(x: int): int requires x > 4 { x + 1 }
type F1 = f: int --> int | forall x :: f.requires(x) ==> f(x) > 5 witness Foo
type F2 = f: int --> int | forall x :: f.requires(x) ==> f(x) > 5 witness x requires x > 4 => x + 1

Command to run and resulting output

dafny verify Test.dfy
Test.dfy(20,74): Error: the given witness expression might not satisfy constraint
   |
20 | type F2 = f: int --> int | forall x :: f.requires(x) ==> f(x) > 5 witness x requires x > 4 => x + 1

What happened?

Dafny seems to be unable to verify that the postcondition f(x) > 5 holds, but only when the type is instantiated by a lambda. Instantiating the type with Foo verifies as expected.

I asked on zulip first, but this does now seem to be a bug.

What type of operating system are you experiencing the problem on?

Mac

The text was updated successfully, but these errors were encountered:

alexstaeding added the kind: bug Crashes, unsoundness, incorrect output, etc. If possible, add a `part:` label label Feb 19, 2025

fabiomadge added the incompleteness Things that Dafny should be able to prove, but can't label Feb 20, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Cannot verify postcondition in lambda #6117

Cannot verify postcondition in lambda #6117

alexstaeding commented Feb 19, 2025

Cannot verify postcondition in lambda #6117

Cannot verify postcondition in lambda #6117

Comments

alexstaeding commented Feb 19, 2025

Dafny version

Code to produce this issue

Command to run and resulting output

What happened?

What type of operating system are you experiencing the problem on?