Hoare Triples - Weakest Precondition / Strongest Postcondition

Question

Is this correct, for weakest pre-condition respectively strongest post-condition?

{P} x = x-x; {x'=x}
P: x = 0

{true} y = y-y; {Q}
Q: y = 0

Edit:

I started by applying this as follows:

{true} y = y - y {Q} ==> sp(y = y-y; true) = ∃x,y = x-x ∧ true

Now I'm not sure what to do with this; In my mind "y = 0" would make most sense, but that doesn't seem correct.

score 1 · Answer 1 · answered Jan 29 '18 at 06:48

1

The stronger is the precondition, the stronger is the postcondition. For example,

{y = 5} x := 8 {x = 8; y = 5}

If the precondition is the weakest one instead, i.e. true, there are no valid assumptions about the value of y in the postcondition.

answered Jan 29 '18 at 06:48

I'm not sure I follow; does that mean we can't define a valid strongest post-condition? Because I'm pretty sure there *is* a valid answer to find. – user452306 Jan 29 '18 at 10:56
The strongest postcondition for the weakest precondition `true` is `x = 8`. However, if the precondition is stronger, e.g. `y = 5`, the postcondition is stronger as well. – Alexander Kogtenkov Jan 29 '18 at 14:32

1 Answers1