Tag Theorem
and LLVMSpec
values that were proved by unsound means
#1093
Labels
type: enhancement
Issues describing an improvement to an existing feature or capability
Milestone
Whenever we produce a
Theorem
,LLVMSpec
, orJVMSpec
value as the result of a proof command, it should be specially marked as "unsafe" if any of the lemmas or proof tactics used to produce it were themselves "unsafe". In particular, anything proved usingassume_unsat
orllvm_unsafe_assume_spec
should be marked as unsafe.In addition to a single "unsafe" bit, we may also wish to record more detailed information about what the sources of the unsafeness were.
This information would be useful to display as part of a verification summary (see also #643).
The text was updated successfully, but these errors were encountered: