Diverging functions do not need to modify state #317

shym · 2023-08-25T17:03:12Z

Currently gospel check rejects:

val run : unit -> unit
(*@ run ()
    diverges *)

with:

Error: The function `run' returns `unit'
       but its specifications does not contain any `modifies' clause.

We could consider that:

the function that only diverges should be ruled out,
or modifies (), or something similar, is the canonical annotation for such cases,
or that diverges or modifies would be required for unit-returning functions.

The text was updated successfully, but these errors were encountered:

n-osborne · 2023-09-04T07:29:26Z

gospel check should indeed at least accept this specification for the run function.
An other example is the sleep function, that does not diverge but returns unit without modifying anything (that we can express in the specification).

I'm thinking that having the absence of modifies clause for unit-returning function as an error may be a bit too strong. A warning may be more appropriate.

Since ocaml-gospel#317 was not yet addressed, add an explicit `(* ... *)` to hint that the proposed specification cannot be used all by itself (yet)

shym mentioned this issue Oct 4, 2023

Hint that something is missing is a specification in the documentation #354

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Diverging functions do not need to modify state #317

Diverging functions do not need to modify state #317

shym commented Aug 25, 2023

n-osborne commented Sep 4, 2023

Diverging functions do not need to modify state #317

Diverging functions do not need to modify state #317

Comments

shym commented Aug 25, 2023

n-osborne commented Sep 4, 2023