summaryrefslogtreecommitdiff
path: root/tests/hashmap
diff options
context:
space:
mode:
authorSon Ho2022-02-12 21:41:53 +0100
committerSon Ho2022-02-12 21:41:53 +0100
commit3715d5ee40b4f217a49f4f144a4b96879525c9ef (patch)
treead6a9cb7078e93534821ab4f36e5b160994205d8 /tests/hashmap
parent23421dfd67e34499143a797ed76f56c482e050c7 (diff)
Add some comments
Diffstat (limited to 'tests/hashmap')
-rw-r--r--tests/hashmap/Hashmap.Properties.fst9
1 files changed, 8 insertions, 1 deletions
diff --git a/tests/hashmap/Hashmap.Properties.fst b/tests/hashmap/Hashmap.Properties.fst
index 12f5d546..ea021a95 100644
--- a/tests/hashmap/Hashmap.Properties.fst
+++ b/tests/hashmap/Hashmap.Properties.fst
@@ -1687,13 +1687,20 @@ val hash_map_move_elements_fwd_back_lem_refin
// the unfolded postconditions (meaning I would probably need to increase
// the ifuel to unreasonable amounts).
//
+// Finally, as I had succeeded in fixing the proof, I thought that maybe the
+// initial problem with the type abbreviations fixed: I thus tried to use
+// them. Of course, it made the proof fail again, and this time no ifuel setting
+// seemed to work (maybe my initial guess about the type inferencer was right?...).
+//
+// At this point I was just fed up and leave things as they were, without trying
+// to cleanup the previous definitions.
+//
// The terrible thing is that this refinement proof is conceptually super simple:
// - there are maybe two arithmetic proofs, which are directly solved by the
// precondition
// - we need to refine the call to [hash_map_move_elements_from_list_fwd_back]:
// this is proven by another refinement lemma we proved above
// - there is the recursive call (trivial)
-// Huge waste of time...
#restart-solver
#push-options "--z3rlimit 300 --fuel 1 --ifuel 4"
let rec hash_map_move_elements_fwd_back_lem_refin t ntable slots i =