The Visual Studio plugin and the dafny.exe command line both use the Dafny compiler to verify your code. However, that's not good enough for Ironclad, whose aim is to verify every assembly instruction that will execute on the system. So although the Dafny plugin and command-line tool are useful pre-build checks to see if your code is verifiable, passing either is no guarantee you'll satisfy DafnyCC, which is what the ultimate build process uses. Most of the time, it will, but here are some guidelines to get your code in shape to also pass DafnyCC.

Sequence-based invariants
Arrays in datatypes
Null arrays
Automatic induction
Calc hiding
Mathematical _forall lemmas
Conservative sequence trigger
Debugging

Last edited Oct 14, 2014 at 11:10 PM by howell, version 1

Comments

No comments yet.