!;#'j      !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghi Safe&'EX_Mjklmnopqrstuvwxyz{|}~Safe$&'_Safe_copilot-theorem5A transformation intended to remove boolean literals. Safe$&'SX_ ecopilot-theorem9Translates a Copilot specification to an IL specification Safe Rjklmnopqrstuvwxyz{|}~ Safe #"  !  Safe  Safe=? =Safe "Safe Safe$%&'EXj#$%&'()*+,-./0123456;:789<=>?@<=6;:789012345/-.*)'(#$%&,+>?@SafeSXSafeSXDESafe$%SX_Safe&'=?FSafe&'_pG Trustworthy $&'=?SX_copilot-theorem1Checks the Copilot specification with k-inductionJcopilot-theoremTacticsScopilot-theoremBackendsDEFGHIJKNLMOPQRSTUVWXYHIJKNLMQROPSWUYVTXDEFGSafe^_`Safe*+,-/^_`^_`*/-,+SafeSafe&'EXSafe&'SXzSafe&'ESX_copilot-theoremSome high level utilities to translate a Copilot operator in a standard way | The unhandled operators are monomorphic, and their names are labeled so | that each name corresponds to a unique uninterpreted function with a | monomorphic type.(      !"#$%&'(Safe&'ESX]     %$#"! &'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQSafe $%&'>SXRSafeLSTUVWXSafeSX#=Ycopilot-theoremCompletes each node of a specification with imported variables such | that each node contains a copy of all its dependencies | The given specification should have its node sorted by topological | order. | The top nodes should have all the other nodes as its dependenciesZ[\YSafe$&'#]Safe#c     %$#"! &'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRZ[\Y] Safe$%&'SX%abcd Trustworthy_&EHIefghefghSafe&-   !"HIabcdefgh'"dabc!   ^ ! " # $ % & ' ( ) * + , - . / 0 0 1 2 3 4 4 5 6 7 8 9 9 : ; < < = >?@ABCDEFEGHIIJKKLMNOPQRSTUVVWXYZ[\]^_`abcabdeefghijklmnopqrstuvwxyz { | } ~eetJ2%,/.?    TQ]y,/.    2 J !"#$%&'()*+?,*copilot-theorem-3.0-Ivo45Xv5tHRJDgCE7pJWbACopilot.Theorem.Kind2Copilot.Theorem.ProveCopilot.Theorem.Prover.SMTCopilot.TheoremCopilot.Theorem.Kind2.ProverCopilot.Theorem.IL.SpecCopilot.Theorem.IL.PrettyPrintCopilot.Theorem.IL.TransformCopilot.Theorem.IL.TranslateCopilot.Theorem.ILCopilot.Theorem.Kind2.ASTCopilot.Theorem.Misc.ErrorCopilot.Theorem.Misc.SExpr!Copilot.Theorem.Kind2.PrettyPrintCopilot.Theorem.Misc.UtilsCopilot.Theorem.Kind2.OutputCopilot.Theorem.Prover.BackendCopilot.Theorem.Prover.SMTIOCopilot.Theorem.Prover.SMTLibCopilot.Theorem.Prover.TPTPCopilot.Theorem.Tactics#Copilot.Theorem.TransSys.InvariantsCopilot.Theorem.TransSys.TypeCopilot.Theorem.TransSys.Cast"Copilot.Theorem.TransSys.OperatorsCopilot.Theorem.TransSys.Spec"Copilot.Theorem.TransSys.Translate!Copilot.Theorem.TransSys.Renaming"Copilot.Theorem.TransSys.Transform$Copilot.Theorem.TransSys.PrettyPrintCopilot.Theorem.TransSysCopilot.Theorem.Kind2.TranslateTerm ValueLiteralPrimedStateVarStateVarFunAppPredAppPredTypeInitTrans StateVarFlagFConstTypeIntRealBool StateVarDefvarIdvarTypevarFlagsPredDefpredId predStateVarspredInit predTransProppropNamepropTermFile filePreds fileProps prettyPrintActionCheckAssumeAdmit ProofSchemeProofUProof Existential UniversalPropRefPropIdProver proverName startProver askProver closeProverStatusSatValidInvalidUnknownErrorOutputcheckprovecombine$fMonadProofScheme$fApplicativeProofScheme$fFunctorProofSchemeBackend SmtFormatSmtLibTptp1data-default-class-0.1.2.0-CxYLbrgOroz6P50KeurIhSData.Default.ClassDefaultdefOptionsstartKmaxKdebugonlySat onlyValidity induction kInductionyicescvc4altErgoz3dRealmathsatmetit$fDefaultOptions$fShowSolverId $fOrdSolverId $fEqSolverId instantiateassumeadmitStyleInlinedModulartoKind2bmcMax kind2ProverOp2ModEqAndOrLeLtGeGtAddSubMulFdivPowOp1ExpNotNegAbsSqrtLogSinTanCosAsinAtanAcosSinhTanhCoshAsinhAtanhAcoshIL modelInitmodelRec properties inductiveSeqDescrseqIdseqTypeVarDescrvarNameargsExprConstBConstRConstIIteSValSBV8SBV16SBV32SBV64BV8BV16BV32BV64SeqIndexVarFixedSeqIdtypeOf_n__n_plusevalAtprintConstraintbsimpl translatetranslateWithBoundsbadUse impossible impossible_ notHandledfatalSExprAtomListblankatomunit singletonlistnodeindenttoStringtoDocparser parseSExpr isSublistOfnubEqnub'nubBy' openTempFile parseOutput SatResultUnsat interpretnamecmdcmdOptsinputTerminator incrementallogicassertpushpopcheckSatsetLogicdeclFunSolverstartNewSolverstopentaileddeclVars ProofScript HasInvariants invariants checkInvspropU2UInteger'copilot-core-3.0-9vXZ4MPJD0TI2Qfri3V7DYCopilot.Core.Type.DynamictoDynDyn castedTypecastcasting UnhandledOp1 UnhandledOp2 handleOp1 handleOp2 typeErrMsgConstVarEVarDefPreConstrsvarDefExtVar extVarNodeextVarLocalPartNodenodeIdnodeDependencies nodeLocalVarsnodeImportedVars nodeConstrsTransSys specNodes specTopNodeId specPropsNodeIdmkExtVar transformExpr nodeVarsSetspecDependenciesGraph specTopNodeisTopologicallySortedRenamingaddReservedName getFreshNamerename getRenamingF runRenamingcomplete mergeNodesinline removeCycles