нУЁh$  d╣  \jЩ                    	  
                                               !  "  #  $  %  &  '  (  )  *  +  ,  -  .  /  0  1  2  3  4  5  6  7  8  9  :  ;  <  =  >  ?  @  A  B  C  D  E  F  G  H  I  J  K  L  M  N  O  P  Q  R  S  T  U  V  W  X  Y  Z  [  \  ]  ^  _  `  a  b  c  d  e  f  g  h  i  j  k  l  m  n  o  p  q  r  s  t  u  v  w  x  y  z  {  |  !         Safe'(ф ы Ю   i} copilot-theoremBinary operators.~ copilot-theoremUnary operators. copilot-theoremAn IL specification.─ copilot-theoremDescription of a sequence.│ copilot-theoremIdentifier for a property.┌ copilot-theoremа A description of a variable (or function) together with its type.┐ copilot-theorem1Idealized representation of a Copilot expression.└ copilot-theoremConstant boolean.┘ copilot-theoremConstant real.├ copilot-theoremConstant integer.┤ copilot-theoremIf-then-else.┬ copilot-theoremApply a unary operator.┴ copilot-theoremApply a binary operator.┼ copilot-theorem%Refer to a value in another sequence.▀ copilot-theoremFunction application.▄ copilot-theoremЙ Idealized types. These differ from Copilot types in that, notionally,
 reals actually denote real numbers.█ copilot-theoremIndex within a sequence.▌ copilot-theorem"An absolute index in the sequence.▐ copilot-theorem+An index relative to the current time-step.░ copilot-theoremIdentifier of a sequence.▒ copilot-theorem!Return the type of an expression.▓ copilot-theorem.An index to the current element of a sequence.⌠ copilot-theorem+An index to a future element of a sequence.■ copilot-theorem9Evaluate an expression at specific index in the sequence. м }∙√≈≤≥ ⌡°²·÷═║~╒ёє╔ії╗╘╙╚╛ґў╞╟╠╡ЁЄ╣ІЇ╦─╧╨╩│┌╪ҐЎ©┐┴┬└┘├┤┼▀▄юабцдефгхи█▐▌░▒▓⌠■            Safe%'(  ⌡й copilot-theorem!Pretty print an IL specification.к copilot-theorem)Pretty print an IL constraint expression. йк     	       SafeЮ   
!л copilot-theoremХ Simplify IL expressions by partly evaluating operations on booleans,
 eliminating some boolean literals.щFor example, an if-then-else in which the condition is literally the
 constant True or the constant False can be reduced to an operation without
 choice in which the appropriate branch of the if-then-else is used instead. л     
       Safe%'(т ы Ю   ┤м copilot-theorem9Translate a Copilot specification to an IL specification.н copilot-theoremсTranslate a Copilot specification to an IL specification, adding
 constraints for limiting the values of numeric expressions to known bounds
 based on their specific types (only for integers or natural numbers). мн            Safe   ╘  р }║═÷·²°⌡ ≥≤≈∙√~Ё╡╠╟╞ўґ╛╚╙╘╗їі╔є╒ёЄ╦Ї╣І─╧╨╩│┌╪©ҐЎ┐▀┼┤├┘└┴┬▄ихгфедцбюа█▐▌░▒▓⌠■йклмн            Safe   З copilot-theorem1Datatype to describe a term in the Kind language. copilot-theoremЦ Type of the predicate, either belonging to an initial state or a pair of
 states with a transition. copilot-theorem$Possible flags for a state variable. copilot-theorem5Types used in Kind2 files to represent Copilot types.Ъ The Kind2 backend provides functions to, additionally, constrain the range
 of numeric values depending on their Copilot type (Int8, Int16, etc.). copilot-theorem!A definition of a state variable. copilot-theoremFlags for the variable. copilot-theoremName of the variable. copilot-theoremType of the variable. copilot-theoremA predicate definition. copilot-theoremIdentifier for the predicate. copilot-theoremл Variables identifying the states in the
 underlying state transition system. copilot-theorem)Predicate that holds for initial
 states. copilot-theoremп Predicate that holds for two states, if
 there is state transition between them. copilot-theorem#A proposition is defined by a term.  copilot-theorem4A file is a sequence of predicates and propositions. "	
 !#"            Safe   шо copilot-theoremг Report an error due to an error detected by Copilot (e.g., user error).п copilot-theorem(Report an error due to a bug in Copilot.я copilot-theorem(Report an error due to a bug in Copilot.р copilot-theorem7Report an unrecoverable error (e.g., incorrect format).о  copilot-theoremDescription of the error.п  copilot-theorem+Error information to attach to the message.опяр            Safe>ю   Ис copilot-theorem▐A structured expression is either an atom, or a sequence of expressions,
 where the first in the sequence denotes the tag or label of the tree.т copilot-theoremEmpty string expression.у copilot-theoremAtomic expression constructor.ж copilot-theoremEmpty expression (empty list).в copilot-theoremSingle expression.ь copilot-theoremSequence of expressions.ы copilot-theoremХ Sequence of expressions with a root or main note, and a series of
 additional expressions or arguments..з copilot-theoremIndent by a given number.ш copilot-theorem1Pretty print a structured expression as a String.э copilot-theorem*Pretty print a structured expression as a  щ, or set of layouts.ч copilot-theoremм Parser for strings of characters separated by spaces into a structured
 tree.г Parentheses are interpreted as grouping elements, that is, defining a
  ъ, which may be empty.Ю copilot-theoremм Parser for strings of characters separated by spaces into a structured
 tree.г Parentheses are interpreted as grouping elements, that is, defining a
  ъ, which may be empty.ш  copilot-theorem)True if an expression should be indented. copilot-theorem!Pretty print the value inside as  с. copilot-theoremRoot of  с tree.э  copilot-theorem)True if an expression should be indented. copilot-theorem!Pretty print the value inside as  с. copilot-theoremRoot of  с tree.съАтужвьызшэчЮ            Safe   S$ copilot-theoremPretty print a Kind2 file. $            Safe   fБ copilot-theoremы True if the given list is a subset of the second list, when both are
 considered as sets.Ц copilot-theoremп True if both lists contain the same elements, when both are considered as
 sets.Д copilot-theoremRemove duplicates from a list. This is an efficient version of   е  that works for lists with a
 stronger constraint on the type (i.e.,  Е, as opposed of
   s  Ф constraint).Г copilot-theoremVariant of  Д* parameterized by the comparison function.Х copilot-theorem0Create a temporary file and open it for writing.Х  copilot-theorem+Directory where the file should be created. copilot-theorem Base name for the file (prefix). copilot-theoremFile extension.БЦДГХ            Safe%&'(ф ы   #j% copilot-theoremProver actions.) copilot-theoremЛ A proof scheme is a sequence of computations that compute a result and
 generate a trace of required prover  %s.+ copilot-theoremе A sequence of computations that generate a trace of required prover
  %s., copilot-theorem A proof scheme with unit result.- copilot-theoremе Empty datatype to mark proofs of existentially quantified predicates.. copilot-theoremц Empty datatype to mark proofs of universally quantified predicates./ copilot-theoremReference to a property.1 copilot-theoremA unique property identifier2 copilot-theoremм A connection to a prover able to check the satisfiability of
 specifications.The most important is  6, which takes 3 arguments :The prover descriptor0A list of properties names which are assumptions;A properties that have to be deduced from these assumptions8 copilot-theoremп Status returned by a prover when given a specification and a property to
 prove.> copilot-theorem,Output produced by a prover, containing the  8* of the proof and
 additional information.@ copilot-theorem1Record a requirement for satisfiability checking.A copilot-theoremе Try to prove a property in a specification with a given proof scheme.Return  Ие  if a proof of satisfiability or validity is found, false
 otherwise.B copilot-theoremМ Combine two provers producing a new prover that will run both provers in
 parallel and combine their outputs.Ы The results produced by the provers must be consistent. For example, if one
 of the provers indicates that a property is  :% while another indicates
 that it is  ;2, the combination of both provers will return an
  =. %&'()*+,-./012345678=<9:;>?@AB>?8=<9:;2345671/0,+)*%&'(.-@AB           Safeт ы   $_Й copilot-theoremParse output of Kind2.Й  copilot-theorem)Property whose validity is being checked. copilot-theoremXML output of Kind2Й            Safeт ы   %TК copilot-theoremг Satisfiability result communicated by the SMT solver or theorem prover.F copilot-theorem+Backend to an SMT solver or theorem prover.G copilot-theoremFormat of SMT-Lib commands. КЛМНFОПЯРСТУЖGВЬЫЗШЭ            Safe%&т ы Ю   (`Щ copilot-theorem9A connection with a running SMT solver or theorem prover.Ч copilot-theorem9Create a new solver implemented by the backend specified.┼The error handle from the backend handle is immediately closed/discarded,
 and the logic initialized as specifiied by the backend options.Ъ copilot-theoremн Stop a solver, closing all communication handles and terminating the
 process.─ copilot-theoremх Register the given expressions as assumptions or axioms with the solver.│ copilot-theoremО Check if a series of expressions are entailed by the axioms or assumptions
 already registered with the solver.┌ copilot-theorem-Register the given variables with the solver. ЩЧЪ─│┌            Safe'(>ю   )}H copilot-theorem(Type used to represent SMT-lib commands.Use the interface in  G to create such commands.┐ copilot-theoremParse a satisfiability result.└ copilot-theorem*Interface for SMT-Lib conforming backends. H┐            Safe'(Ю   *oI copilot-theorem(Type used to represent TPTP expressions."Although this type implements the  G interface, only  В is
 actually used.┘ copilot-theoremParse a satisfiability result. I┘            Trustworthy	%'(>ю т ы Ю   3TJ copilot-theorem!Options to configure the provers.L copilot-theoremInitial k for the k-induction algorithm.M copilot-theoremш The maximum number of steps of the k-induction algorithm the prover runs
 before giving up.N copilot-theoremIf debug is set to Trueв , the SMTLib/TPTP queries produced by the
 prover are displayed in the standard output.O copilot-theorem.Tactic to find only a proof of satisfiability.P copilot-theorem(Tactic to find only a proof of validity.Q copilot-theorem/Tactic to find a proof by standard 1-induction.The values for startK and maxK in the options are ignored.R copilot-theorem&Tactic to find a proof by k-induction.S copilot-theorem"Backend to the Yices 2 SMT solver."It enables non-linear arithmetic (QF_NRA"), which means MCSat will be used.The command 
yices-smt2 must be in the user's PATH.T copilot-theoremBackend to the cvc4 SMT solver.п It enables support for uninterpreted functions and mixed nonlinear
 arithmetic (QF_NIRA).The command cvc4 must be in the user's PATH.U copilot-theorem#Backend to the Alt-Ergo SMT solver.п It enables support for uninterpreted functions and mixed nonlinear
 arithmetic (QF_NIRA).The command alt-ergo.opt must be in the user's PATH.V copilot-theorem!Backend to the Z3 theorem prover.The command z3 must be in the user's PATH.W copilot-theorem Backend to the dReal SMT solver."It enables non-linear arithmetic (QF_NRA)..The libraries for dReal must be installed and perl must be in the user's
 PATH.X copilot-theorem"Backend to the Mathsat SMT solver."It enables non-linear arithmetic (QF_NRA).The command mathsat must be in the user's PATH.Y copilot-theorem(Backend to the MetiTaski theorem prover.The command metit must be in the user's PATH.'The argument string is the path to the tptp2 subdirectory of the metitarski
 install location.Z copilot-theoremDefault  J with a 0 k and a max of 10, steps, and that produce
 no debugging info.  FGHIJKNLMOPQRSTUVWXYFGHISWUYVTXJKNLMQROP            Safe   4l^ copilot-theorem8Instantiate a universal proof into an existential proof._ copilot-theorem2Assume that a property, given by reference, holds.` copilot-theorem#Assume that the current goal holds. ^_`            Safe   4█  ,-./1^_`^_`,1/.-           Safe   5N├ copilot-theorem>Type class for types with additional invariants or contraints.┤ copilot-theorem(Creates an invariant with a description. ├┬┴┤            Safe'(ф ы   6{┼ copilot-theoremUnknown types.ц For instance, 'U Expr' is the type of an expression of unknown type▀ copilot-theorem$A type at both value and type level.Real numbers are mapped to  ▄s.█ copilot-theoremProofs of type equality. ┼▌▀▐░▒            Safe'(т ы   7Ч▓ copilot-theorem+Synonym for a dynamic type in Copilot core.⌠ copilot-theoremн Translation of a Copilot type into Copilot theorem's internal
 representation.■ copilot-theorem%Cast a dynamic value to a given type.∙ copilot-theoremу Apply function to a corresponding type in Copilot theorem's internal
 representation. √▓⌠■∙            Safe'(ф т ы Ю   ?u≈ copilot-theoremUnhandled binary operator.═Unhandled operators are monomorphic, and their names are labeled so that
   each name corresponds to a unique uninterpreted function with a
   monomorphic type.≤ copilot-theoremUnhandled unary operator.═Unhandled operators are monomorphic, and their names are labeled so that
   each name corresponds to a unique uninterpreted function with a
   monomorphic type.≥ copilot-theoremBinary operators.  copilot-theoremUnary operators.⌡ copilot-theoremTranslate an Op1.У This function is parameterized so that it can be used to translate
 in different contexts and with different targets.m. is the monad in which the computation is maderesT> is the desired return type of the expression being translated° copilot-theoremTranslate an Op2.У This function is parameterized so that it can be used to translate
 in different contexts and with different targets.m. is the monad in which the computation is maderesT> is the desired return type of the expression being translated² copilot-theorem8Error message for unexpected behavior / internal errors.⌡  copilot-theoremThe desired return type copilot-theorem/The unary operator encountered and its argument copilot-theorem/The monadic function to translate an expression copilot-theorem/A function to deal with a operators not handled copilot-theoremThe Op1 constructor of the expr type°  copilot-theoremThe desired return type copilot-theorem1The binary operator encountered and its arguments copilot-theorem/The monadic function to translate an expression copilot-theorem/A function to deal with a operators not handled copilot-theoremThe Op2 constructor of the expr type copilot-theoremThe Op1 for boolean negation(≈·≤÷≥═║╒ёє╔ії╗╘╙╚╛ ґў╞╟╠╡ЁЄ╣ІЇ╦╧╨╩╪ҐЎ⌡°²            Safe'(ф т ы   G;© copilot-theorem$A point-wise (time-wise) expression.ю copilot-theoremу A variable definition either as a delay, an operation on variables, or
 a constraint.а copilot-theorem3A description of a variable together with its type.б copilot-theoremъ Identifer of a variable in the global namespace by specifying both a node
 name and a variable.ц copilot-theoremа Identifer of a variable in the local (within one node) namespace.д copilot-theoremс A node is a set of variables living in a local namespace and corresponding
 to the  ц type.е copilot-theorem+Nodes from which variables are
   imported.ф copilot-theoremы Locally defined variables,
   either as the previous value of
   another variable (using  г2),
   an expression involving
   variables (using  ©') or a
   set of constraints (using
    х).и copilot-theorem2Binds each imported variable to
   its local name.й copilot-theoremР A modular transition system is defined by a graph of nodes and a series
 of properties, each mapped to a variable.к copilot-theorem'Unique name that identifies a property.л copilot-theorem#Unique name that identifies a node.м copilot-theorem>Constructor for variables identifiers in the global namespace.н copilot-theoremю Apply an arbitrary transformation to the leafs of an expression.о copilot-theoremЫ The set of variables related to a node (union of the local variables and
 the imported variables after deferencing them).п copilot-theoremу Given a modular transition system, produce a map from each node to its
 dependencies.я copilot-theorem3Return the top node of a modular transition system.р copilot-theoremФ True if the graph is topologically sorted (i.e., if the dependencies of a
 node appear in the list of  с( before the node that depends on
 them). ш ├┬┴┤┼▌▀▒▐░≈·≤÷≥═║╒ёє╔ії╗╘╙╛╚ ґў╞╟╠╡ЁЄ╣ІЇ╦╧╨╩╪ЎҐ⌡°²©тужвьюыгхазшэбщчъцЮАдБЦефиДйЕсФГклмнопяр            Safe	%&'(?т ы   HuХ copilot-theoremб Translate Copilot specifications into a modular transition system. Х             Safe   LjИ copilot-theoremА A monad capable of keeping track of variable renames and of providing
 fresh names for variables.Й copilot-theorem$Register a name as reserved or used.К copilot-theorem>Produce a fresh new name based on the variable names provided.┤This function will try to pick a name from the given list and, if not, will
 use one of the names in the list as a basis for new names.$PRE: the given list cannot be empty.Л copilot-theorem:Map a name in the global namespace to a new variable name.М copilot-theoremЖ Return a function that maps variables in the global namespace to their new
 names if any renaming has been registered.Н copilot-theoremRun a computation in the  ИЭ  monad, providing a result and the
 renaming function that maps variables in the global namespace to their new
 local names.Л  copilot-theorem	A node Id copilot-theoremA variable within that node copilot-theoremA new name for the variableИЙКЛМН     !       Safeт ы   RЖО copilot-theoremрMerge all the given nodes, replacing all references to the given node Ids
 with a reference to a fresh node id (unless the nodes given as argument
 contain the top node), in which case its ID is chosen instead.П copilot-theoremDiscard all the structure of a modular transition system and turn it
 into a non-modular transition system with only one node.Я copilot-theoremо Remove cycles by merging nodes participating in strongly connected
 components.&The transition system obtained by the  "#у  module is
 perfectly consistent. However, it can't be directly translated into the
 Kind2 native file formatЩ. Indeed, it is natural to bind each node to a
 predicate but the Kind2 file format requires that each predicate only uses
 previously defined predicates. However, some nodes in our transition system
 could be mutually recursive. Therefore, the goal of  Я& is to
 remove such dependency cycles.The function  ЯР  computes the strongly connected components of
 the dependency graph and merge each one into a single node using
  Оь. The complexity of this process is high in the worst case (the
 square of the total size of the system times the size of the biggest node)
 but good in practice as few nodes are to be merged in most practical cases.Р copilot-theoremЭ Completes each node of a specification with imported variables such that
 each node contains a copy of all its dependencies.и The given specification should have its node sorted by topological order.б The top nodes should have all the other nodes as its dependencies. ОПЯР     $       Safe%'(  S~С copilot-theoremф Pretty print a TransSys specification as a Kind2/Lustre specification. С     %       Safe   S·  А ├┬┴┤┼▌▀▒▐░≈·≤÷≥═║╒ёє╔ії╗╘╙╛╚ ґў╞╟╠╡ЁЄ╣ІЇ╦╧╨╩╪ЎҐ⌡°²©ьвжтуюхыгазшэбщчъцЮАдБДифЦейЕГсФклмнопярХОПЯРС     &       Safe%&'(т ы   W╞a copilot-theoremП Style of the Kind2 files produced: modular (with multiple separate nodes),
 or all inlined (with only one node).┴In the modular style, the graph is simplified to remove cycles by collapsing
 all nodes participating in a strongly connected components.Ь In the inlined style, the structure of the modular transition system is
 discarded and the graph is first turned into a non-modular transition
 systemц  with only one node, which can be then converted into a Kind2 file.d copilot-theorem:Produce a Kind2 file that checks the properties specified.d  copilot-theorem'Style of the file (modular or inlined). copilot-theoremAssumptions copilot-theoremProperties to be checked copilot-theorem1Modular transition system holding the system specabcd            TrustworthyЮ   Y`e copilot-theoremOptions for Kind2g copilot-theoremч Upper bound on the number of unrolling that base and
   step will perform. A value of 0 means 	unlimited.h copilot-theorem A prover backend based on Kind2.The executable kind2' must exist and its location be in the PATH.i copilot-theorem;Default options with unlimited unrolling for base and step.  efghefgh           Safe   Y┤  - 
	 !"#$abcdefgh'$dabc !#"	
     "Prove spec properties using What4.(c) Ben Selfridge, 2020 benselfridge@galois.comexperimentalPOSIXNone'(/2?и н я т ж в ы Ю А Х Л   \Rj copilot-theoremThe  sд  function returns results of this form for each property in a
 spec.n copilot-theorem+The solvers supported by the what4 backend.s copilot-theoremвAttempt to prove all of the properties in a spec via an SMT solver (which
 must be installed locally on the host). Return an association list mapping
 the names of each property to the result returned by the solver.s  copilot-theoremSolver to use copilot-theoremSpec
jmklnrpoqs
snrpoqjmkl  Т '() '( *  +  ,  -  .  /  0  1  2  3  4  5  6  7  8  9  :  :   ;   <   =  >  >   ?   @   A   B  C  C   D   E  F  F   G   H   I  J  K  L  M  N  O  P  O  Q  R  S  S  T  U  U   V   W   X   Y  Z  [  \  ]  ^  _  `  `   a   b   c   d   e   f  g  h  i  j  k  k   l   m   n   o   p   q   r   s   t   u   v   w   x   y   z   {   |   }   ~      ─  &│  &┌  &┐  & └  k  k   ┘   ├   z  ┤  \  ]  ^  ┬  ┴  ┼  ▀  ▄   b   █   ▌   ▐   ░   ▒   ▓   ⌠   ■   ∙  √  ≈  ≤  ≥  T     ⌡  °  ²  ·  ÷  ≈  √  ═  /  6  ║  ╒  ё  є   ╔   і   ї   ╗  ╘  ╙  ╚  ╛  ґ  ў  ╞  ╟  ╠  ╡  Ё  Є  ╣  І  Ї  ╦  ╧  ╨  ╩  ╪  Ґ  Ў  ©  ю  а  б  ц  д  е  ф  г  ≤   х   и   й   к  ≥   л   м      н   <   о  9  8  п  я  р  с  т  у  ж  в   I   ь  	 ы  
 з  
 ш   э   щ   ч   ъ  Ю   А   Б   Ц   Д   Е   Ф   Г   Х   И ЙКЛ   М  Н   О  П   Я   Р    СТУ СТ╙   Ж   В СЬЫ   З  ┤  ^  [  Ш  g   Э   Щ   Ч   Ъ   ─   │   ┌   ┐   └   ┘   ├   ┤   ┬  ┬   ┴   ┼      ▀   ▄   Э   █   Э  ▌   ▐   ░   ▒  ▓  6 СЬ⌠   ■  ▓  9  8  ∙  √   ≈   ≤   ≥  ⌡ °  ²  ·  √  ≈   ÷   ═   ║  ²  ·  ╣  Є  Ё  ╡  ╠  ╟  ╞  ў  ґ  ╛  ╚  ╙  ╘  г  ф  е  д  ц  б  а  ю  ©  Ў  Ґ  ╪  ╩  ╨  ╧  ╦  Ї  І  ⌡  ╒     ё  ё  є   ╔   і  ї  ╗   ╘  "  T  ╙   ╚   ╛   ґ   ў   ╞   ╟   ╠  ╡  √  ≈  Ё  ÷  ⌡      <   Є  ё   ╣   І  ё   н  є   Ї   ╦  "   ╧   ╨   з   ╩    ╪    Ґ    Ў    ©    ю  ! а  ! б  ! ц  ! д  $ Iе+copilot-theorem-3.10-9T0jjAYbq866KjSjWPJCcdCopilot.Theorem.Prover.SMTCopilot.Theorem.Kind2Copilot.Theorem.ProveCopilot.TheoremCopilot.Theorem.Kind2.ProverCopilot.Theorem.What4Copilot.Theorem.IL.SpecCopilot.Theorem.IL.PrettyPrintCopilot.Theorem.IL.TransformCopilot.Theorem.IL.TranslateCopilot.Theorem.ILCopilot.Theorem.Kind2.ASTCopilot.Theorem.Misc.ErrorCopilot.Theorem.Misc.SExpr!Copilot.Theorem.Kind2.PrettyPrintCopilot.Theorem.Misc.Utils	Data.Listnubnub'Copilot.Theorem.Kind2.OutputCopilot.Theorem.Prover.BackendCopilot.Theorem.Prover.SMTIOCopilot.Theorem.Prover.SMTLibCopilot.Theorem.Prover.TPTPCopilot.Theorem.Tactics#Copilot.Theorem.TransSys.InvariantsCopilot.Theorem.TransSys.TypeCopilot.Theorem.TransSys.Cast"Copilot.Theorem.TransSys.OperatorsCopilot.Theorem.TransSys.Spec"Copilot.Theorem.TransSys.Translate!Copilot.Theorem.TransSys.Renaming"Copilot.Theorem.TransSys.TransformTransSys	Translate$Copilot.Theorem.TransSys.PrettyPrintCopilot.Theorem.TransSysCopilot.Theorem.Kind2.Translate1data-default-class-0.1.2.0-IIN1s3V8yfYEDHe5yjxXHVData.Default.ClassDefaultdefTermValueLiteralPrimedStateVarStateVarFunAppPredAppPredTypeInitTransStateVarFlagFConstTypeIntRealBoolStateVarDefvarIdvarTypevarFlagsPredDefpredIdpredStateVarspredInit	predTransProppropNamepropTermFile	filePreds	filePropsprettyPrintActionCheckAssumeAdmitProofSchemeProofUProofExistential	UniversalPropRefPropIdProver
proverNamestartProver	askProvercloseProverStatusSatValidInvalidUnknownErrorOutputcheckprovecombine$fMonadProofScheme$fApplicativeProofScheme$fFunctorProofSchemeBackend	SmtFormatSmtLibTptpOptionsstartKmaxKdebugonlySatonlyValidity	induction
kInductionyicescvc4altErgoz3dRealmathsatmetit$fDefaultOptions$fShowSolverId$fOrdSolverId$fEqSolverIdinstantiateassumeadmitStyleInlinedModulartoKind2bmcMaxkind2Prover	SatResultSolverCVC4DRealYicesZ3$fPanicComponentCopilotWhat4$fMonadFailTransM$fFunctorTransM$fApplicativeTransM$fMonadTransM$fMonadIOTransM$fMonadStateTransStateTransM$fShowSatResult$fShowXExprOp2Op1ILSeqDescrVarDescrExprConstBConstRConstIIteSValSeqIndexFixedVarSeqIdtypeOf_n__n_plusevalAtModEqSubAndOrAddMulFdivPowLeGeLtGtExpNotAbsSqrtLogSinTanCosAsinAtanAcosSinhTanhCoshAsinhAtanhAcoshNeg	modelInitmodelRec
properties	inductiveseqIdseqTypevarNameargsSBV8SBV16SBV32SBV64BV8BV16BV32BV64printConstraintbsimpl	translatetranslateWithBoundsbadUse
impossibleimpossible_fatalSExprblankatomunit	singletonlistnodeindenttoStringtoDocpretty-1.1.3.6Text.PrettyPrint.HughesPJDocparserList
parseSExprAtomisSublistOfnubEqghc-primGHC.ClassesOrdnubBy'openTempFile	GHC.TypesTrueparseOutputUnsat	interpretnamecmdcmdOptsinputTerminatorincrementallogicassertsetLogiccheckSatpushpopdeclFunstartNewSolverstopentaileddeclVars$fSmtFormatSmtLibHasInvariantsprop
invariants	checkInvsUDouble$fEqualTypeTypeIntegerDyn
castedTypecastcastingbaseData.DynamictoDynUnhandledOp2UnhandledOp1	handleOp1	handleOp2
typeErrMsgVarDefExtVarNodenodeDependenciesnodeLocalVarsPreConstrsnodeImportedVarsNodeIdmkExtVartransformExprnodeVarsSetspecDependenciesGraphspecTopNodeisTopologicallySorted	specNodesConstVarEvarDef
extVarNodeextVarLocalPartnodeIdnodeConstrsspecTopNodeId	specPropsRenamingaddReservedNamegetFreshNamerenamegetRenamingFrunRenaming
mergeNodesinlineremoveCyclescomplete