Skip to content

Maps: add MapKeys, MapValues, and related helpers #86

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
alex-chew wants to merge 14 commits into
base: master
Choose a base branch
from
Open

Maps: add MapKeys, MapValues, and related helpers #86

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
9d21910
Maps: add MapKeys
alex-chew Feb 13, 2023
9f1df71
fix formatting
alex-chew Feb 13, 2023
433ad7d
Update src/Collections/Maps/Maps.dfy
alex-chew Feb 15, 2023
2c30705
add postcondition m'[f(x)] == m[x]
alex-chew Feb 20, 2023
39cc4fe
Merge branch 'master' into map-keys
alex-chew Feb 20, 2023
6b69649
Merge branch 'master' into map-keys
alex-chew Apr 10, 2023
fe7e104
Merge branch 'master' into map-keys
alex-chew Apr 19, 2023
5fbb83e
add some other useful Map functions/lemmas
alex-chew Apr 19, 2023
88caf97
add simple examples
alex-chew Apr 19, 2023
c3df036
add RUN line to MapsExamples
alex-chew Apr 19, 2023
808dc38
MapsExamples.dfy -> Maps.dfy
alex-chew Apr 19, 2023
bd6f802
use IsSubset instead of Contains
alex-chew Apr 19, 2023
24f3936
put f params first in Map* functions
alex-chew Apr 19, 2023
30c9116
fix examples
alex-chew Apr 19, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
24 changes: 24 additions & 0 deletions examples/Collections/Maps/Maps.dfy
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
// RUN: %verify "%s"

/*******************************************************************************
* Copyright by the contributors to the Dafny Project
* SPDX-License-Identifier: MIT
*******************************************************************************/

include "../../../src/Functions.dfy"
include "../../../src/Collections/Maps/Maps.dfy"

module {:options "--function-syntax:4"} MapsExamples {
import Functions
import Maps

function ByteKeyMapToIntKeys<Y>(m: map<bv8, Y>): (m': map<int, Y>)
{
Maps.MapKeys(b => b as int, m)
}

function ByteValueMapToIntValues<X>(m: map<X, bv8>): (m': map<X, int>)
{
Maps.MapValues(b => b as int, m)
}
}
75 changes: 67 additions & 8 deletions src/Collections/Maps/Maps.dfy
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,18 +1,22 @@
// RUN: %verify "%s"

/*******************************************************************************
* Original: Copyright 2018-2021 VMware, Inc., Microsoft Inc., Carnegie Mellon University,
* ETH Zurich, and University of Washington
* SPDX-License-Identifier: BSD-2-Clause
*
* Modifications and Extensions: Copyright by the contributors to the Dafny Project
* SPDX-License-Identifier: MIT
*******************************************************************************/
* Original: Copyright 2018-2021 VMware, Inc., Microsoft Inc., Carnegie Mellon University,
* ETH Zurich, and University of Washington
* SPDX-License-Identifier: BSD-2-Clause
*
* Modifications and Extensions: Copyright by the contributors to the Dafny Project
* SPDX-License-Identifier: MIT
******************************************************************************/

include "../../Wrappers.dfy"
include "../../Functions.dfy"
include "../Sets/Sets.dfy"

module {:options "-functionSyntax:4"} Maps {
import opened Wrappers
import Functions
import Sets

function Get<X, Y>(m: map<X, Y>, x: X): Option<Y>
{
Expand Down Expand Up @@ -64,7 +68,7 @@ module {:options "-functionSyntax:4"} Maps {
ghost predicate IsSubset<X, Y>(m: map<X, Y>, m': map<X, Y>)
{
&& m.Keys <= m'.Keys
&& forall x {:trigger EqualOnKey(m, m', x)}{:trigger x in m} :: x in m ==> EqualOnKey(m, m', x)
&& forall x <- m :: m[x] == m'[x]
}

/* Union of two maps. Does not require disjoint domains; on the intersection,
Expand Down Expand Up @@ -93,6 +97,32 @@ module {:options "-functionSyntax:4"} Maps {
forall x, x' {:trigger m[x], m[x']} :: x != x' && x in m && x' in m ==> m[x] != m[x']
}

lemma LemmaSubsetIsInjective<X, Y>(small: map<X, Y>, big: map<X, Y>)
requires IsSubset(small, big)
requires Injective(big)
ensures Injective(small)
{
reveal Injective();
}

lemma LemmaInjectiveImpliesUniqueValues<X(!new), Y>(m: map<X, Y>)
requires Injective(m)
ensures |m.Keys| == |m.Values|
{
if |m| > 0 {
reveal Injective();

var x: X :| x in m;
var y := m[x];
var m' := Remove(m, x);
assert IsSubset(m', m);

assert m'.Values == m.Values - {y};
LemmaSubsetIsInjective(m', m);
LemmaInjectiveImpliesUniqueValues(m');
}
}

/* Swaps map keys and values. Values are not required to be unique; no
promises on which key is chosen on the intersection. */
ghost function {:opaque} Invert<X, Y>(m: map<X, Y>): map<Y, X>
Expand Down Expand Up @@ -127,4 +157,33 @@ module {:options "-functionSyntax:4"} Maps {
forall x, x' {:trigger m[x], m[x']} :: x in m && x' in m && start <= x <= x' ==> m[x] <= m[x']
}

/* Maps an injective function over the keys of a map, retaining the values. */
function {:opaque} MapKeys<X(!new), Y, X'>(f: X --> X', m: map<X, Y>): (m': map<X', Y>)
reads f.reads
requires forall x {:trigger f.requires(x)} :: f.requires(x)
requires Functions.Injective(f)
ensures |m'| == |m|
ensures m'.Values == m.Values
ensures forall x | x in m :: f(x) in m' && (m'[f(x)] == m[x])
{
var m' := map k <- m :: f(k) := m[k];
Sets.LemmaMapSize(m.Keys, m'.Keys, f);
m'
}

/* Maps a function over the values of a map, retaining the keys. */
function {:opaque} MapValues<X, Y(!new), Y'>(f: Y --> Y', m: map<X, Y>): (m': map<X, Y'>)
reads f.reads
requires forall y {:trigger f.requires(y)} :: f.requires(y)
ensures |m'| == |m|
ensures m'.Keys == m.Keys
ensures forall x | x in m :: m'[x] == f(m[x])
{
var m' := map x <- m :: x := f(m[x]);
assert |m'| == |m| by {
assert m'.Keys == m.Keys;
assert |m'.Keys| == |m.Keys|;
}
m'
}
}