• Top
    • Documentation
    • Books
    • Boolean-reasoning
    • Projects
    • Debugging
    • Std
    • Proof-automation
    • Macro-libraries
    • ACL2
    • Interfacing-tools
      • Io
        • Fmt
        • Msg
        • Cw
        • Set-evisc-tuple
        • Set-iprint
        • Print-control
        • Read-file-into-string
        • Std/io
        • Msgp
        • Printing-to-strings
        • Evisc-tuple
        • Output-controls
        • Observation
        • *standard-co*
        • Ppr-special-syms
        • Standard-oi
        • Standard-co
        • Without-evisc
        • Serialize
        • Output-to-file
        • Fmt-to-comment-window
        • Princ$
        • Character-encoding
        • Open-output-channel!
        • Cw-print-base-radix
        • Set-print-case
        • Set-print-base
        • Print-object$
        • Extend-pathname
        • Print-object$+
        • Fmx-cw
        • Set-print-radix
        • Set-fmt-hard-right-margin
        • File-write-date$
        • Proofs-co
        • Set-print-base-radix
        • Print-base-p
        • *standard-oi*
        • Wof
        • File-length$
        • Fms!-lst
        • Delete-file$
        • *standard-ci*
        • Write-list
        • Trace-co
        • Fmt!
        • Fms
        • Cw!
        • Fmt-to-comment-window!
        • Fms!
        • Eviscerate-hide-terms
        • Fmt1!
        • Fmt-to-comment-window!+
        • Read-file-into-byte-array-stobj
        • Fmt1
        • Fmt-to-comment-window+
        • Cw-print-base-radix!
        • Read-file-into-character-array-stobj
        • Fmx
        • Cw!+
        • Read-objects-from-book
        • Newline
        • Cw+
        • Probe-file
        • Write-objects-to-file!
        • Write-objects-to-file
        • Read-objects-from-file
        • Read-object-from-file
        • Read-file-into-byte-list
        • Set-fmt-soft-right-margin
        • Read-file-into-character-list
        • Io-utilities
          • File-output-theory
        • Defttag
        • Sys-call
        • Save-exec
        • Quicklisp
        • Std/io
        • Oslib
        • Bridge
        • Clex
        • Tshell
        • Unsound-eval
        • Hacker
        • ACL2s-interface
        • Startup-banner
        • Command-line
      • Hardware-verification
      • Software-verification
      • Math
      • Testing-utilities
    • Io-utilities

    File-output-theory

    Simple file output theory

    (local (include-book "kestrel/utilities/io/output-theory" :dir :system))

    You can use this book to enable a simple theory that makes it easy to write guard-verified, logic mode ACL2 functions that do character output to a file.

    A common pattern is to open a character output channel to a file, write some strings to it, and close it. There usually isn't much value in enabling rewrite rules for functions that write strings to an open channel. But without that, a caller must be able to verify that the output function keeps the channel open and returns state, so it is good to define theorems about those properties.

    Without going into detail about the pitfalls of other approaches, we proceed directly to an example pattern that uses state-p and open-output-channel-p and avoids the bootstrapping versions state-p1 and open-output-channel-p1.

    (include-book "std/util/define" :dir :system)
(local (include-book "kestrel/utilities/io/output-theory" :dir :system))

(define use-princ ((str stringp)
                   (co symbolp)
                   state)
  :guard (open-output-channel-p co :character state)
  :stobjs state
  :returns state
  (b* ((state (princ$ "Starting Output..." co state))
       (state (princ$ str co state))
       (state (princ$ "...end of output." co state)))
    state)
  ///
  (defthm state-p-of-use-princ
    (let ((ret (use-princ str channel state)))
      (implies (and (state-p state)
                    (symbolp channel)
                    (open-output-channel-p channel :character state))
               (state-p ret))))
  (defthm open-output-channel-p-of-use-princ
    (let ((ret (use-princ tr channel state)))
      (implies (and (state-p state)
                    (symbolp channel)
                    (open-output-channel-p channel :character state))
               (open-output-channel-p channel :character ret)))))

(define use-princ-to-file ((str stringp)
                           (filename stringp)
                           state)
  :stobjs state
  :returns state
  (mv-let (co state)
      (open-output-channel filename :character state)
    (if (not (open-output-channel-p co :character state))
        state
      (b* ((state (use-princ str co state)))
        (close-output-channel co state))))
  ///
  (defthm state-p-of-use-princ-to-file
    (let ((ret (use-princ-to-file tr filename state)))
      (implies (and (stringp str)
                    (stringp fn)
                    (state-p state))
               (state-p ret)))))

    The I/O functions currently supported are:

    • open-output-channel, when given the :character argument
    • open-output-channel-p
    • princ$
    • prin1$
    • close-output-channel