support vec_from_elem; fixes #1952 (#1983)

tjhance · web-flow · commit db81a7496bff · 2025-11-15T22:53:35.000+01:00
diff --git a/source/rust_verify_test/tests/std.rs b/source/rust_verify_test/tests/std.rs
@@ -610,3 +610,55 @@ test_verify_one_file! {
         }
     } => Ok(())
 }
+
+test_verify_one_file! {
+    #[test] vec_from_elem verus_code! {
+        use vstd::prelude::*;
+
+        #[derive(Debug)]
+        pub struct X {
+            pub u: u64
+        }
+
+        impl Clone for X {
+            fn clone(&self) -> (s: Self)
+                ensures s.u == (if self.u < 1000 { self.u + 1 } else { 1000 })
+            {
+                X { u: if self.u < 1000 { self.u + 1 } else { 1000 } }
+            }
+        }
+
+        fn test1() {
+            let x = X { u: 0 };
+            let v = vec![x; 4];
+            assert(v.len() == 4);
+            assert(v@[0].u == 0 || v@[0].u == 1);
+            assert(v@[1].u == 0 || v@[1].u == 1);
+            assert(v@[2].u == 0 || v@[2].u == 1);
+            assert(v@[3].u == 0 || v@[3].u == 1);
+        }
+
+        fn test2() {
+            let x = X { u: 0 };
+            let v = vec![x; 4];
+            assert(v.len() == 4);
+            assert(v@[0].u == 0); // FAILS
+        }
+
+        fn test3() {
+            let x = X { u: 0 };
+            let v = vec![x; 4];
+            assert(v.len() == 4);
+            assert(v@[0].u == 1); // FAILS
+        }
+
+        fn test4() {
+            let v = vec![12; 4];
+            assert(v.len() == 4);
+            assert(v@[0] == 12);
+            assert(v@[1] == 12);
+            assert(v@[2] == 12);
+            assert(v@[3] == 12);
+        }
+    } => Err(err) => assert_fails(err, 2)
+}
diff --git a/source/vstd/std_specs/vec.rs b/source/vstd/std_specs/vec.rs
@@ -344,6 +344,12 @@ impl<T, A: Allocator> super::super::pervasive::ForLoopGhostIteratorNew for IntoI
     }
 }
 
+// This is used by `vec![x; n]`
+pub assume_specification<T: Clone>[ alloc::vec::from_elem ](elem: T, n: usize) -> (v: Vec<T>)
+    ensures
+        v.len() == n,
+        forall |i| 0 <= i < n ==> cloned(elem, #[trigger] v@[i]);
+
 impl<T, A: Allocator> super::super::pervasive::ForLoopGhostIterator for IntoIterGhostIterator<
     T,
     A,

Original file line number	Diff line number	Diff line change
`@@ -344,6 +344,12 @@ impl<T, A: Allocator> super::super::pervasive::ForLoopGhostIteratorNew for IntoI`
`344`	`344`	`}`
`345`	`345`	`}`
`346`	`346`
	`347`	+// This is used by `vec![x; n]`
	`348`	`+pub assume_specification<T: Clone>[ alloc::vec::from_elem ](elem: T, n: usize) -> (v: Vec<T>)`
	`349`	`+ ensures`
	`350`	`+ v.len() == n,`
	`351`	`+ forall \|i\| 0 <= i < n ==> cloned(elem, #[trigger] v@[i]);`
	`352`	`+`
`347`	`353`	`impl<T, A: Allocator> super::super::pervasive::ForLoopGhostIterator for IntoIterGhostIterator<`
`348`	`354`	`T,`
`349`	`355`	`A,`