SAWCore `maxNat` has the wrong definition #1502

robdockins · 2021-11-09T21:19:17Z

saw-script/saw-core/prelude/Prelude.sawcore

Lines 860 to 864 in 7d8bf6b

    
           maxNat : Nat -> Nat -> Nat; 
        
           maxNat x y = 
        
             Nat_cases2 Nat (\ (x':Nat) -> x') 
        
                        (\ (y':Nat) -> Succ y') 
        
                        (\ (y':Nat) -> \ (x':Nat) -> \ (sub_xy:Nat) -> sub_xy) y x;

This defines the incorrect function. The final case should actually be (Succ sub_xy). The naming makes me suspect this is a copy-paste error from the prior definition of subNat. We mostly haven't noticed this problem because maxNat is overridden in the simulators with a correct definition. However, for Coq extraction, we are directly translating this recursive definition and computing the wrong answers.

The text was updated successfully, but these errors were encountered:

robdockins · 2021-11-09T21:30:12Z

This definition seems like it came in when we refactored SAWCore to use recursors. CF c37aa45

Fixes #1502

robdockins added the subsystem: saw-core Issues related to the saw-core representation or the saw-core subsystem label Nov 9, 2021

robdockins added a commit that referenced this issue Nov 10, 2021

Fix the SAWCore definition of maxNat.

d48769c

Fixes #1502

mergify bot closed this as completed in 4fc5ddd Nov 10, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SAWCore `maxNat` has the wrong definition #1502

SAWCore `maxNat` has the wrong definition #1502

robdockins commented Nov 9, 2021

robdockins commented Nov 9, 2021

SAWCore maxNat has the wrong definition #1502

SAWCore maxNat has the wrong definition #1502

Comments

robdockins commented Nov 9, 2021

robdockins commented Nov 9, 2021

SAWCore `maxNat` has the wrong definition #1502

SAWCore `maxNat` has the wrong definition #1502