Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add is_empty and is_singleton to multiset #1246

Open
wants to merge 14 commits into
base: main
Choose a base branch
from
Open

Add is_empty and is_singleton to multiset #1246

Changes from all commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
7ca92ff
Add is_empty and is_singleton to multiset
rikosellic Aug 21, 2024
31f94e1
Typo fixed.
rikosellic Aug 22, 2024
912c90c
Revert "Typo fixed."
rikosellic Aug 22, 2024
396b1f0
Typo fixed now.
rikosellic Aug 22, 2024
eecfbad
Merge branch 'verus-lang:main' into main
rikosellic Sep 5, 2024
80d93d2
Minor update
rikosellic Sep 6, 2024
4312399
Merge branch 'verus-lang:main' into main
rikosellic Sep 6, 2024
521e952
Merge branch 'verus-lang:main' into main
rikosellic Sep 13, 2024
7ee3336
Merge branch 'verus-lang:main' into main
rikosellic Sep 19, 2024
bc31635
Merge branch 'verus-lang:main' into main
rikosellic Sep 24, 2024
aa6fc1b
Merge branch 'verus-lang:main' into main
rikosellic Sep 25, 2024
7caa2af
Merge branch 'verus-lang:main' into main
rikosellic Sep 27, 2024
60768dd
Merge branch 'verus-lang:main' into main
rikosellic Sep 30, 2024
937450c
Merge branch 'verus-lang:main' into main
rikosellic Oct 3, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
67 changes: 67 additions & 0 deletions source/vstd/multiset.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -701,3 +701,70 @@ pub use assert_multisets_equal_internal;
pub use assert_multisets_equal;

} // verus!
verus! {

impl<A> Multiset<A> {
/// Is `true` if called by an "empty" multiset, i.e., a set containing no elements and has length 0
pub open spec fn is_empty(self) -> (b: bool) {
self.len() == 0
}

/// A singleton multiset has at least one element with multiplicity 1 and any two elements are equal.
pub open spec fn is_singleton(self) -> bool {
&&& self.len() > 0
&&& (forall|x: A| self.contains(x) ==> self.count(x) == 1)
&&& (forall|x: A, y: A| self.contains(x) && self.contains(y) ==> x == y)
}

/// A singleton multiset that contains an alement is equivalent to the singleton multiset with that element.
pub proof fn lemma_is_singleton_contains_elem_equal_singleton(self, x: A)
requires
self.is_singleton(),
self.contains(x),
ensures
self =~= Multiset::singleton(x),
{
broadcast use group_multiset_axioms;

assert forall|y: A| #[trigger] Multiset::singleton(x).count(y) == self.count(y) by {
if self.contains(y) {
} else {
}
};
}

/// A singleton multiset has length 1.
pub proof fn lemma_singleton_size(self)
requires
self.is_singleton(),
ensures
self.len() == 1,
{
broadcast use group_multiset_axioms;

self.lemma_is_singleton_contains_elem_equal_singleton(self.choose());
}

/// A multiset has exactly one element, if and only if, it has at least one element with multiplicity 1 and any two elements are equal.
pub proof fn lemma_is_singleton(s: Multiset<A>)
ensures
s.is_singleton() <==> (s.len() == 1),
{
broadcast use group_multiset_axioms;

if s.is_singleton() {
s.lemma_singleton_size();
}
if s.len() == 1 {
assert forall|x: A, y: A| s.contains(x) && s.contains(y) implies x == y by {
assert(s.remove(x).len() == 0);
if x != y {
assert(s.remove(x).count(y) == 0);
assert(s.remove(x).insert(x) =~= s);
}
}
}
}
}

} // verus!