why3session.xml 150 KB
Newer Older
1
<?xml version="1.0" encoding="UTF-8"?>
MARCHE Claude's avatar
MARCHE Claude committed
2
<!DOCTYPE why3session PUBLIC "-//Why3//proof session v2//EN" "http://why3.lri.fr/why3session.dtd">
Andrei Paskevich's avatar
Andrei Paskevich committed
3
<why3session shape_version="4">
4 5 6 7
 <prover id="0" name="Alt-Ergo" version="0.95.1"/>
 <prover id="1" name="CVC3" version="2.4.1"/>
 <prover id="2" name="Coq" version="8.4pl2"/>
 <file name="../vstte12_ring_buffer.mlw" verified="true"
Andrei Paskevich's avatar
Andrei Paskevich committed
8
  expanded="true">
9 10
  <theory name="RingBuffer" locfile="../vstte12_ring_buffer.mlw"
   loclnum="10" loccnumb="7" loccnume="17" verified="true"
11
   expanded="true">
12 13 14
   <goal name="WP_parameter create" locfile="../vstte12_ring_buffer.mlw"
    loclnum="42" loccnumb="6" loccnume="12" expl="VC for create"
    sum="93a4ac819186ebbe656859c60918ae12" proved="true"
Andrei Paskevich's avatar
Andrei Paskevich committed
15
    shape="ainfix =anthV2aNilaSomeagetaconstV1ainfix -ainfix +c0V2V0Iainfix &lt;=c0ainfix -ainfix +c0V2V0Aainfix =anthV2aNilaSomeagetaconstV1ainfix +c0V2Iainfix &lt;ainfix +c0V2V0Iainfix &lt;V2c0Aainfix &lt;=c0V2FAainfix =c0alengthaNilAainfix &lt;=c0V0Aainfix &lt;=c0c0Aainfix &lt;c0V0Aainfix &lt;=c0c0Iainfix &lt;=c0V0Aainfix &gt;=V0c0Iainfix &gt;V0c0F">
16 17 18
    <label name="expl:VC for create"/>
    <proof prover="0" timelimit="10"
     memlimit="0">
19
     <result status="valid" time="0.01"/>
20 21
    </proof>
   </goal>
22 23 24
   <goal name="WP_parameter length" locfile="../vstte12_ring_buffer.mlw"
    loclnum="48" loccnumb="6" loccnume="12" expl="VC for length"
    sum="940c41c737ceef5cd7b22ed36c678e9e" proved="true"
Andrei Paskevich's avatar
Andrei Paskevich committed
25
    shape="t">
26 27 28
    <label name="expl:VC for length"/>
    <proof prover="0" timelimit="10"
     memlimit="0">
29
     <result status="valid" time="0.02"/>
30 31
    </proof>
   </goal>
32 33 34
   <goal name="WP_parameter clear" locfile="../vstte12_ring_buffer.mlw"
    loclnum="52" loccnumb="6" loccnume="11" expl="VC for clear"
    sum="8b6c722faf188f5d449494513e197797" proved="true"
35
    shape="ainfix =V5aNilAainfix =V6c0Aainfix =anthV7V5aSomeagetV3ainfix -ainfix +V0V7V2Iainfix &lt;=c0ainfix -ainfix +V0V7V2Aainfix =anthV7V5aSomeagetV3ainfix +V0V7Iainfix &lt;ainfix +V0V7V2Iainfix &lt;V7V6Aainfix &lt;=c0V7FAainfix =V6alengthV5Aainfix &lt;=V6V2Aainfix &lt;=c0V6Aainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6c0FIainfix =V5aNilFIainfix &lt;=c0V2Aainfix =anthV8V4aSomeagetV3ainfix -ainfix +V0V8V2Iainfix &lt;=c0ainfix -ainfix +V0V8V2Aainfix =anthV8V4aSomeagetV3ainfix +V0V8Iainfix &lt;ainfix +V0V8V2Iainfix &lt;V8V1Aainfix &lt;=c0V8FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
36 37 38
    <label name="expl:VC for clear"/>
    <proof prover="0" timelimit="10"
     memlimit="0">
39
     <result status="valid" time="0.01"/>
40 41
    </proof>
   </goal>
42 43 44
   <goal name="WP_parameter push" locfile="../vstte12_ring_buffer.mlw"
    loclnum="59" loccnumb="6" loccnume="10" expl="VC for push"
    sum="c35b970af93a44dcb794f7d17fd71478" proved="true"
45
    shape="ainfix =V6ainfix ++V4aConsV5aNilAainfix =V9ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV10V6aSomeagetV8ainfix -ainfix +V0V10V2Iainfix &lt;=c0ainfix -ainfix +V0V10V2Aainfix =anthV10V6aSomeagetV8ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V9Aainfix &lt;=c0V10FAainfix =V9alengthV6Aainfix &lt;=V9V2Aainfix &lt;=c0V9Aainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix &lt;=c0V2FAainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix &lt;=c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
46 47 48 49 50 51
    <label name="expl:VC for push"/>
    <transf name="split_goal"
     proved="true">
     <goal name="WP_parameter push.1" locfile="../vstte12_ring_buffer.mlw"
      loclnum="59" loccnumb="6" loccnume="10" expl="1. index in array bounds"
      sum="440f851090c4fbfc13d98f2f433cbedf" proved="true"
MARCHE Claude's avatar
MARCHE Claude committed
52
      shape="index in array boundsainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix &lt;=c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix &lt;=c0V2Aainfix =anthV8V4aSomeagetV3ainfix -ainfix +V0V8V2Iainfix &lt;=c0ainfix -ainfix +V0V8V2Aainfix =anthV8V4aSomeagetV3ainfix +V0V8Iainfix &lt;ainfix +V0V8V2Iainfix &lt;V8V1Aainfix &lt;=c0V8FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
53 54 55
      <label name="expl:VC for push"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
56
       <result status="valid" time="0.01"/>
57 58
      </proof>
     </goal>
59 60 61
     <goal name="WP_parameter push.2" locfile="../vstte12_ring_buffer.mlw"
      loclnum="59" loccnumb="6" loccnume="10" expl="2. type invariant"
      sum="89c350ba195099f6aba402b316b456d8" proved="true"
62
      shape="type invariantainfix =anthV10V6aSomeagetV8ainfix -ainfix +V0V10V2Iainfix &lt;=c0ainfix -ainfix +V0V10V2Aainfix =anthV10V6aSomeagetV8ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V9Aainfix &lt;=c0V10FAainfix =V9alengthV6Aainfix &lt;=V9V2Aainfix &lt;=c0V9Aainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix &lt;=c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix &lt;=c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
63 64 65 66
      <label name="expl:VC for push"/>
      <transf name="inline_goal"
       proved="true">
       <goal name="WP_parameter push.2.1"
67
        locfile="../vstte12_ring_buffer.mlw"
68 69
        loclnum="59" loccnumb="6" loccnume="10" expl="1. type invariant"
        sum="3970830123b856955a58c075fdaefe90" proved="true"
70
        shape="type invariantainfix =anthV10V6aSomeagetV8ainfix -ainfix +V0V10V2Iainfix =c0ainfix -ainfix +V0V10V2Oainfix &lt;c0ainfix -ainfix +V0V10V2Aainfix =anthV10V6aSomeagetV8ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V9Aainfix =c0V10Oainfix &lt;c0V10FAainfix =V9alengthV6Aainfix =V9V2Oainfix &lt;V9V2Aainfix =c0V9Oainfix &lt;c0V9Aainfix &lt;V0V2Aainfix =c0V0Oainfix &lt;c0V0Iainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix =c0V2Oainfix &lt;c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix =c0iV7ainfix -V7V2ainfix &gt;=V7V2Oainfix &lt;c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix =c0V2Oainfix &lt;c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix =c0ainfix -ainfix +V0V11V2Oainfix &lt;c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix =c0V11Oainfix &lt;c0V11FAainfix =V1alengthV4Aainfix =V1V2Oainfix &lt;V1V2Aainfix =c0V1Oainfix &lt;c0V1Aainfix &lt;V0V2Aainfix =c0V0Oainfix &lt;c0V0F">
71 72 73 74
        <label name="expl:VC for push"/>
        <transf name="split_goal"
         proved="true">
         <goal name="WP_parameter push.2.1.1"
75
          locfile="../vstte12_ring_buffer.mlw"
76 77
          loclnum="59" loccnumb="6" loccnume="10" expl="1."
          sum="4cc085cf2cfa09b66016f086ee87fe96" proved="true"
78
          shape="ainfix =c0V0Oainfix &lt;c0V0Iainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix =c0V2Oainfix &lt;c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix =c0iV7ainfix -V7V2ainfix &gt;=V7V2Oainfix &lt;c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix =c0V2Oainfix &lt;c0V2Aainfix =anthV10V4aSomeagetV3ainfix -ainfix +V0V10V2Iainfix =c0ainfix -ainfix +V0V10V2Oainfix &lt;c0ainfix -ainfix +V0V10V2Aainfix =anthV10V4aSomeagetV3ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V1Aainfix =c0V10Oainfix &lt;c0V10FAainfix =V1alengthV4Aainfix =V1V2Oainfix &lt;V1V2Aainfix =c0V1Oainfix &lt;c0V1Aainfix &lt;V0V2Aainfix =c0V0Oainfix &lt;c0V0F">
79 80 81
          <label name="expl:VC for push"/>
          <proof prover="0" timelimit="5"
           memlimit="1000">
82 83 84
           <result status="valid" time="0.02"/>
          </proof>
         </goal>
85
         <goal name="WP_parameter push.2.1.2"
86
          locfile="../vstte12_ring_buffer.mlw"
87 88
          loclnum="59" loccnumb="6" loccnume="10" expl="2."
          sum="95fe528338cd640808009eaf1664048d" proved="true"
89
          shape="ainfix &lt;V0V2Iainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix =c0V2Oainfix &lt;c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix =c0iV7ainfix -V7V2ainfix &gt;=V7V2Oainfix &lt;c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix =c0V2Oainfix &lt;c0V2Aainfix =anthV10V4aSomeagetV3ainfix -ainfix +V0V10V2Iainfix =c0ainfix -ainfix +V0V10V2Oainfix &lt;c0ainfix -ainfix +V0V10V2Aainfix =anthV10V4aSomeagetV3ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V1Aainfix =c0V10Oainfix &lt;c0V10FAainfix =V1alengthV4Aainfix =V1V2Oainfix &lt;V1V2Aainfix =c0V1Oainfix &lt;c0V1Aainfix &lt;V0V2Aainfix =c0V0Oainfix &lt;c0V0F">
90 91 92
          <label name="expl:VC for push"/>
          <proof prover="0" timelimit="5"
           memlimit="1000">
93 94 95
           <result status="valid" time="0.02"/>
          </proof>
         </goal>
96
         <goal name="WP_parameter push.2.1.3"
97
          locfile="../vstte12_ring_buffer.mlw"
98 99
          loclnum="59" loccnumb="6" loccnume="10" expl="3."
          sum="940f909d058cd1c8495604e159f9f4d2" proved="true"
100
          shape="ainfix =c0V9Oainfix &lt;c0V9Iainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix =c0V2Oainfix &lt;c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix =c0iV7ainfix -V7V2ainfix &gt;=V7V2Oainfix &lt;c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix =c0V2Oainfix &lt;c0V2Aainfix =anthV10V4aSomeagetV3ainfix -ainfix +V0V10V2Iainfix =c0ainfix -ainfix +V0V10V2Oainfix &lt;c0ainfix -ainfix +V0V10V2Aainfix =anthV10V4aSomeagetV3ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V1Aainfix =c0V10Oainfix &lt;c0V10FAainfix =V1alengthV4Aainfix =V1V2Oainfix &lt;V1V2Aainfix =c0V1Oainfix &lt;c0V1Aainfix &lt;V0V2Aainfix =c0V0Oainfix &lt;c0V0F">
101 102 103
          <label name="expl:VC for push"/>
          <proof prover="0" timelimit="5"
           memlimit="1000">
104 105 106
           <result status="valid" time="0.02"/>
          </proof>
         </goal>
107
         <goal name="WP_parameter push.2.1.4"
108
          locfile="../vstte12_ring_buffer.mlw"
109 110
          loclnum="59" loccnumb="6" loccnume="10" expl="4."
          sum="b064014ec7910b6f74ed1eb4f8cebc8f" proved="true"
111
          shape="ainfix =V9V2Oainfix &lt;V9V2Iainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix =c0V2Oainfix &lt;c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix =c0iV7ainfix -V7V2ainfix &gt;=V7V2Oainfix &lt;c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix =c0V2Oainfix &lt;c0V2Aainfix =anthV10V4aSomeagetV3ainfix -ainfix +V0V10V2Iainfix =c0ainfix -ainfix +V0V10V2Oainfix &lt;c0ainfix -ainfix +V0V10V2Aainfix =anthV10V4aSomeagetV3ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V1Aainfix =c0V10Oainfix &lt;c0V10FAainfix =V1alengthV4Aainfix =V1V2Oainfix &lt;V1V2Aainfix =c0V1Oainfix &lt;c0V1Aainfix &lt;V0V2Aainfix =c0V0Oainfix &lt;c0V0F">
112 113 114
          <label name="expl:VC for push"/>
          <proof prover="0" timelimit="10"
           memlimit="0">
115 116 117
           <result status="valid" time="0.01"/>
          </proof>
         </goal>
118
         <goal name="WP_parameter push.2.1.5"
119
          locfile="../vstte12_ring_buffer.mlw"
120 121
          loclnum="59" loccnumb="6" loccnume="10" expl="5."
          sum="cf552d522706d92b4aab8a9d0f981721" proved="true"
122
          shape="ainfix =V9alengthV6Iainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix =c0V2Oainfix &lt;c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix =c0iV7ainfix -V7V2ainfix &gt;=V7V2Oainfix &lt;c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix =c0V2Oainfix &lt;c0V2Aainfix =anthV10V4aSomeagetV3ainfix -ainfix +V0V10V2Iainfix =c0ainfix -ainfix +V0V10V2Oainfix &lt;c0ainfix -ainfix +V0V10V2Aainfix =anthV10V4aSomeagetV3ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V1Aainfix =c0V10Oainfix &lt;c0V10FAainfix =V1alengthV4Aainfix =V1V2Oainfix &lt;V1V2Aainfix =c0V1Oainfix &lt;c0V1Aainfix &lt;V0V2Aainfix =c0V0Oainfix &lt;c0V0F">
123 124 125
          <label name="expl:VC for push"/>
          <proof prover="0" timelimit="10"
           memlimit="0">
126 127 128
           <result status="valid" time="0.03"/>
          </proof>
         </goal>
129
         <goal name="WP_parameter push.2.1.6"
130
          locfile="../vstte12_ring_buffer.mlw"
131 132
          loclnum="59" loccnumb="6" loccnume="10" expl="6."
          sum="09b0736cfcb250fe472eab51ae2c3ac3" proved="true"
133
          shape="ainfix =anthV10V6aSomeagetV8ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V9Aainfix =c0V10Oainfix &lt;c0V10FIainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix =c0V2Oainfix &lt;c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix =c0iV7ainfix -V7V2ainfix &gt;=V7V2Oainfix &lt;c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix =c0V2Oainfix &lt;c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix =c0ainfix -ainfix +V0V11V2Oainfix &lt;c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix =c0V11Oainfix &lt;c0V11FAainfix =V1alengthV4Aainfix =V1V2Oainfix &lt;V1V2Aainfix =c0V1Oainfix &lt;c0V1Aainfix &lt;V0V2Aainfix =c0V0Oainfix &lt;c0V0F">
134 135 136
          <label name="expl:VC for push"/>
          <proof prover="0" timelimit="5"
           memlimit="1000">
137 138 139
           <result status="valid" time="0.16"/>
          </proof>
         </goal>
140
         <goal name="WP_parameter push.2.1.7"
141
          locfile="../vstte12_ring_buffer.mlw"
142 143
          loclnum="59" loccnumb="6" loccnume="10" expl="7."
          sum="c07e3d9cb5bbe5efd9acbd2ba19554fa" proved="true"
144
          shape="ainfix =anthV10V6aSomeagetV8ainfix -ainfix +V0V10V2Iainfix =c0ainfix -ainfix +V0V10V2Oainfix &lt;c0ainfix -ainfix +V0V10V2Iainfix &lt;V10V9Aainfix =c0V10Oainfix &lt;c0V10FIainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix =c0V2Oainfix &lt;c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix =c0iV7ainfix -V7V2ainfix &gt;=V7V2Oainfix &lt;c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix =c0V2Oainfix &lt;c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix =c0ainfix -ainfix +V0V11V2Oainfix &lt;c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix =c0V11Oainfix &lt;c0V11FAainfix =V1alengthV4Aainfix =V1V2Oainfix &lt;V1V2Aainfix =c0V1Oainfix &lt;c0V1Aainfix &lt;V0V2Aainfix =c0V0Oainfix &lt;c0V0F">
145 146 147
          <label name="expl:VC for push"/>
          <proof prover="0" timelimit="10"
           memlimit="1000">
148 149 150 151
           <result status="valid" time="0.08"/>
          </proof>
         </goal>
        </transf>
152 153 154
       </goal>
      </transf>
     </goal>
155 156 157
     <goal name="WP_parameter push.3" locfile="../vstte12_ring_buffer.mlw"
      loclnum="59" loccnumb="6" loccnume="10" expl="3. type invariant"
      sum="7e87cf6752c4101f7a6955db2ccd2787" proved="true"
158
      shape="type invariantainfix &lt;=c0V2Iainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix &lt;=c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix &lt;=c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix &lt;=c0V2Aainfix =anthV10V4aSomeagetV3ainfix -ainfix +V0V10V2Iainfix &lt;=c0ainfix -ainfix +V0V10V2Aainfix =anthV10V4aSomeagetV3ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V1Aainfix &lt;=c0V10FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
159 160 161
      <label name="expl:VC for push"/>
      <proof prover="0" timelimit="5"
       memlimit="1000">
Andrei Paskevich's avatar
Andrei Paskevich committed
162 163 164
       <result status="valid" time="0.01"/>
      </proof>
     </goal>
165 166 167
     <goal name="WP_parameter push.4" locfile="../vstte12_ring_buffer.mlw"
      loclnum="59" loccnumb="6" loccnume="10" expl="4. postcondition"
      sum="9eaeb941660d0a25cf5bbb6803a76e80" proved="true"
168
      shape="postconditionainfix =V9ainfix +V1c1Iainfix &lt;=c0V2Aainfix =anthV10V6aSomeagetV8ainfix -ainfix +V0V10V2Iainfix &lt;=c0ainfix -ainfix +V0V10V2Aainfix =anthV10V6aSomeagetV8ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V9Aainfix &lt;=c0V10FAainfix =V9alengthV6Aainfix &lt;=V9V2Aainfix &lt;=c0V9Aainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix &lt;=c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix &lt;=c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
169 170 171
      <label name="expl:VC for push"/>
      <proof prover="0" timelimit="30"
       memlimit="1000">
172 173 174
       <result status="valid" time="0.02"/>
      </proof>
     </goal>
175 176 177
     <goal name="WP_parameter push.5" locfile="../vstte12_ring_buffer.mlw"
      loclnum="59" loccnumb="6" loccnume="10" expl="5. postcondition"
      sum="ebfbd53e7ca1d948cd1d8a44ec056cc7" proved="true"
178
      shape="postconditionainfix =V6ainfix ++V4aConsV5aNilIainfix &lt;=c0V2Aainfix =anthV10V6aSomeagetV8ainfix -ainfix +V0V10V2Iainfix &lt;=c0ainfix -ainfix +V0V10V2Aainfix =anthV10V6aSomeagetV8ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V9Aainfix &lt;=c0V10FAainfix =V9alengthV6Aainfix &lt;=V9V2Aainfix &lt;=c0V9Aainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V9ainfix +V1c1FIainfix =V8asetV3iV7ainfix -V7V2ainfix &gt;=V7V2V5Aainfix &lt;=c0V2FIainfix &lt;iV7ainfix -V7V2ainfix &gt;=V7V2V2Aainfix &lt;=c0iV7ainfix -V7V2ainfix &gt;=V7V2Lainfix +V0V1Iainfix =V6ainfix ++V4aConsV5aNilFIainfix &lt;V1V2Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
179 180 181
      <label name="expl:VC for push"/>
      <proof prover="0" timelimit="30"
       memlimit="1000">
182 183 184
       <result status="valid" time="0.01"/>
      </proof>
     </goal>
185 186
    </transf>
   </goal>
187 188 189
   <goal name="WP_parameter head" locfile="../vstte12_ring_buffer.mlw"
    loclnum="70" loccnumb="6" loccnume="10" expl="VC for head"
    sum="6f484700ecf2485df1bf67cedeb20fe4" proved="true"
190
    shape="CfaNilainfix =agetV3V0V5aConsVwV4Aainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV6V4aSomeagetV3ainfix -ainfix +V0V6V2Iainfix &lt;=c0ainfix -ainfix +V0V6V2Aainfix =anthV6V4aSomeagetV3ainfix +V0V6Iainfix &lt;ainfix +V0V6V2Iainfix &lt;V6V1Aainfix &lt;=c0V6FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
191 192 193 194 195 196
    <label name="expl:VC for head"/>
    <transf name="split_goal"
     proved="true">
     <goal name="WP_parameter head.1" locfile="../vstte12_ring_buffer.mlw"
      loclnum="70" loccnumb="6" loccnume="10" expl="1. index in array bounds"
      sum="8015e77ddf56030d7f13ada39c8ac70c" proved="true"
MARCHE Claude's avatar
MARCHE Claude committed
197
      shape="index in array boundsainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV5V4aSomeagetV3ainfix -ainfix +V0V5V2Iainfix &lt;=c0ainfix -ainfix +V0V5V2Aainfix =anthV5V4aSomeagetV3ainfix +V0V5Iainfix &lt;ainfix +V0V5V2Iainfix &lt;V5V1Aainfix &lt;=c0V5FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
198 199 200
      <label name="expl:VC for head"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
201
       <result status="valid" time="0.02"/>
202 203
      </proof>
     </goal>
204 205 206
     <goal name="WP_parameter head.2" locfile="../vstte12_ring_buffer.mlw"
      loclnum="70" loccnumb="6" loccnume="10" expl="2. postcondition"
      sum="ead5c4b3a4e466dc107b1173f9ba4d19" proved="true"
207
      shape="postconditionCfaNilainfix =agetV3V0V5aConsVwV4Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV6V4aSomeagetV3ainfix -ainfix +V0V6V2Iainfix &lt;=c0ainfix -ainfix +V0V6V2Aainfix =anthV6V4aSomeagetV3ainfix +V0V6Iainfix &lt;ainfix +V0V6V2Iainfix &lt;V6V1Aainfix &lt;=c0V6FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
208 209 210
      <label name="expl:VC for head"/>
      <proof prover="2" timelimit="5" memlimit="1000"
       edited="vstte12_ring_buffer_2_RingBuffer_WP_parameter_head_1.v">
211
       <result status="valid" time="1.19"/>
212 213 214 215
      </proof>
     </goal>
    </transf>
   </goal>
216 217 218
   <goal name="WP_parameter pop" locfile="../vstte12_ring_buffer.mlw"
    loclnum="75" loccnumb="6" loccnume="9" expl="VC for pop"
    sum="89e38fd8f7977b2dc214e40e67c22595" proved="true"
219
    shape="CfaNiliCfaNilainfix =V6V11Aainfix =V7V10aConsVVV4Aainfix =V8ainfix -V1c1Aainfix =anthV12V6aSomeagetV3ainfix -ainfix +V9V12V2Iainfix &lt;=c0ainfix -ainfix +V9V12V2Aainfix =anthV12V6aSomeagetV3ainfix +V9V12Iainfix &lt;ainfix +V9V12V2Iainfix &lt;V12V8Aainfix &lt;=c0V12FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V9V2Aainfix &lt;=c0V9CfaNilainfix =V6V15Aainfix =V7V14aConsVVV4Aainfix =V8ainfix -V1c1Aainfix =anthV16V6aSomeagetV3ainfix -ainfix +V13V16V2Iainfix &lt;=c0ainfix -ainfix +V13V16V2Aainfix =anthV16V6aSomeagetV3ainfix +V13V16Iainfix &lt;ainfix +V13V16V2Iainfix &lt;V16V8Aainfix &lt;=c0V16FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V13V2Aainfix &lt;=c0V13Iainfix =V13c0Fainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Aainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV17V4aSomeagetV3ainfix -ainfix +V0V17V2Iainfix &lt;=c0ainfix -ainfix +V0V17V2Aainfix =anthV17V4aSomeagetV3ainfix +V0V17Iainfix &lt;ainfix +V0V17V2Iainfix &lt;V17V1Aainfix &lt;=c0V17FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
220 221 222 223 224 225
    <label name="expl:VC for pop"/>
    <transf name="split_goal"
     proved="true">
     <goal name="WP_parameter pop.1" locfile="../vstte12_ring_buffer.mlw"
      loclnum="75" loccnumb="6" loccnume="9" expl="1. unreachable point"
      sum="5ba7f0c8ba3ce30768728eb9c8c7bf36" proved="true"
226
      shape="unreachable pointCfaNiltaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV6V4aSomeagetV3ainfix -ainfix +V0V6V2Iainfix &lt;=c0ainfix -ainfix +V0V6V2Aainfix =anthV6V4aSomeagetV3ainfix +V0V6Iainfix &lt;ainfix +V0V6V2Iainfix &lt;V6V1Aainfix &lt;=c0V6FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
227 228 229
      <label name="expl:VC for pop"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
230 231 232
       <result status="valid" time="0.00"/>
      </proof>
     </goal>
233 234 235
     <goal name="WP_parameter pop.2" locfile="../vstte12_ring_buffer.mlw"
      loclnum="75" loccnumb="6" loccnume="9" expl="2. index in array bounds"
      sum="3ee4ee0add6909ccf942398b52d063bf" proved="true"
MARCHE Claude's avatar
MARCHE Claude committed
236
      shape="index in array boundsCtaNilainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV7V4aSomeagetV3ainfix -ainfix +V0V7V2Iainfix &lt;=c0ainfix -ainfix +V0V7V2Aainfix =anthV7V4aSomeagetV3ainfix +V0V7Iainfix &lt;ainfix +V0V7V2Iainfix &lt;V7V1Aainfix &lt;=c0V7FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
237 238 239
      <label name="expl:VC for pop"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
Andrei Paskevich's avatar
Andrei Paskevich committed
240
       <result status="valid" time="0.02"/>
241 242
      </proof>
     </goal>
243 244 245
     <goal name="WP_parameter pop.3" locfile="../vstte12_ring_buffer.mlw"
      loclnum="75" loccnumb="6" loccnume="9" expl="3. type invariant"
      sum="c6f22dfa6c282c632fd69f846848bbcd" proved="true"
246
      shape="type invariantCtaNilainfix =anthV11V6aSomeagetV3ainfix -ainfix +V10V11V2Iainfix &lt;=c0ainfix -ainfix +V10V11V2Aainfix =anthV11V6aSomeagetV3ainfix +V10V11Iainfix &lt;ainfix +V10V11V2Iainfix &lt;V11V8Aainfix &lt;=c0V11FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V10V2Aainfix &lt;=c0V10Iainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV12V4aSomeagetV3ainfix -ainfix +V0V12V2Iainfix &lt;=c0ainfix -ainfix +V0V12V2Aainfix =anthV12V4aSomeagetV3ainfix +V0V12Iainfix &lt;ainfix +V0V12V2Iainfix &lt;V12V1Aainfix &lt;=c0V12FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
247 248 249 250 251 252
      <label name="expl:VC for pop"/>
      <transf name="split_goal"
       proved="true">
       <goal name="WP_parameter pop.3.1" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="1."
        sum="4b6f5dba9f6349f114dade667d0c92cf" proved="true"
253
        shape="CtaNilainfix &lt;=c0V10Iainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
254 255 256
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="10"
         memlimit="0">
257 258 259
         <result status="valid" time="0.01"/>
        </proof>
       </goal>
260 261 262
       <goal name="WP_parameter pop.3.2" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="2."
        sum="64d96a9e15c2c71f8ca37c2cf0e44420" proved="true"
263
        shape="CtaNilainfix &lt;V10V2Iainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
264 265 266
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="5"
         memlimit="1000">
267 268 269
         <result status="valid" time="0.02"/>
        </proof>
       </goal>
270 271 272
       <goal name="WP_parameter pop.3.3" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="3."
        sum="ab8dc70d2be08faaa7cb62243aaf381a" proved="true"
273
        shape="CtaNilainfix &lt;=c0V8Iainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
274 275 276
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="10"
         memlimit="0">
277 278 279
         <result status="valid" time="0.01"/>
        </proof>
       </goal>
280 281 282
       <goal name="WP_parameter pop.3.4" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="4."
        sum="290f849deb6d48f49b5edf683628b002" proved="true"
283
        shape="CtaNilainfix &lt;=V8V2Iainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
284 285 286
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="5"
         memlimit="1000">
287 288
         <result status="valid" time="0.02"/>
        </proof>
289 290
        <proof prover="1" timelimit="5"
         memlimit="1000">
291 292 293
         <result status="valid" time="0.02"/>
        </proof>
       </goal>
294 295 296
       <goal name="WP_parameter pop.3.5" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="5."
        sum="b225f3851949406c1f67a0d7e0f68106" proved="true"
297
        shape="CtaNilainfix =V8alengthV6Iainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
298 299 300
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="10"
         memlimit="0">
301 302 303
         <result status="valid" time="0.01"/>
        </proof>
       </goal>
304 305 306
       <goal name="WP_parameter pop.3.6" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="6."
        sum="f1986c6231daf5d524fa16fb80fd7dce" proved="true"
307
        shape="CtaNilainfix =anthV11V6aSomeagetV3ainfix +V10V11Iainfix &lt;ainfix +V10V11V2Iainfix &lt;V11V8Aainfix &lt;=c0V11FIainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV12V4aSomeagetV3ainfix -ainfix +V0V12V2Iainfix &lt;=c0ainfix -ainfix +V0V12V2Aainfix =anthV12V4aSomeagetV3ainfix +V0V12Iainfix &lt;ainfix +V0V12V2Iainfix &lt;V12V1Aainfix &lt;=c0V12FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
308 309 310
        <label name="expl:VC for pop"/>
        <proof prover="1" timelimit="5"
         memlimit="1000">
311
         <result status="valid" time="0.06"/>
312 313
        </proof>
       </goal>
314 315 316
       <goal name="WP_parameter pop.3.7" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="7."
        sum="ed3aa1329c23ce4ddafb833e12d7bf64" proved="true"
317
        shape="CtaNilainfix =anthV11V6aSomeagetV3ainfix -ainfix +V10V11V2Iainfix &lt;=c0ainfix -ainfix +V10V11V2Iainfix &lt;V11V8Aainfix &lt;=c0V11FIainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV12V4aSomeagetV3ainfix -ainfix +V0V12V2Iainfix &lt;=c0ainfix -ainfix +V0V12V2Aainfix =anthV12V4aSomeagetV3ainfix +V0V12Iainfix &lt;ainfix +V0V12V2Iainfix &lt;V12V1Aainfix &lt;=c0V12FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
318 319 320
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="5"
         memlimit="1000">
321 322 323 324 325
         <result status="valid" time="0.02"/>
        </proof>
       </goal>
      </transf>
     </goal>
326 327 328
     <goal name="WP_parameter pop.4" locfile="../vstte12_ring_buffer.mlw"
      loclnum="75" loccnumb="6" loccnume="9" expl="4. postcondition"
      sum="d96ca05cbb71a55e1a093d7aa14e8de6" proved="true"
329
      shape="postconditionCtaNilainfix =V8ainfix -V1c1Iainfix =anthV11V6aSomeagetV3ainfix -ainfix +V10V11V2Iainfix &lt;=c0ainfix -ainfix +V10V11V2Aainfix =anthV11V6aSomeagetV3ainfix +V10V11Iainfix &lt;ainfix +V10V11V2Iainfix &lt;V11V8Aainfix &lt;=c0V11FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V10V2Aainfix &lt;=c0V10Iainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV12V4aSomeagetV3ainfix -ainfix +V0V12V2Iainfix &lt;=c0ainfix -ainfix +V0V12V2Aainfix =anthV12V4aSomeagetV3ainfix +V0V12Iainfix &lt;ainfix +V0V12V2Iainfix &lt;V12V1Aainfix &lt;=c0V12FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
330 331 332
      <label name="expl:VC for pop"/>
      <proof prover="0" timelimit="30"
       memlimit="1000">
333 334 335
       <result status="valid" time="0.01"/>
      </proof>
     </goal>
336 337 338
     <goal name="WP_parameter pop.5" locfile="../vstte12_ring_buffer.mlw"
      loclnum="75" loccnumb="6" loccnume="9" expl="5. postcondition"
      sum="e8300fd3f4757eb62cf6c695572172b8" proved="true"
339
      shape="postconditionCtaNilCfaNilainfix =V6V12Aainfix =V7V11aConsVVV4Iainfix =anthV13V6aSomeagetV3ainfix -ainfix +V10V13V2Iainfix &lt;=c0ainfix -ainfix +V10V13V2Aainfix =anthV13V6aSomeagetV3ainfix +V10V13Iainfix &lt;ainfix +V10V13V2Iainfix &lt;V13V8Aainfix &lt;=c0V13FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V10V2Aainfix &lt;=c0V10Iainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV14V4aSomeagetV3ainfix -ainfix +V0V14V2Iainfix &lt;=c0ainfix -ainfix +V0V14V2Aainfix =anthV14V4aSomeagetV3ainfix +V0V14Iainfix &lt;ainfix +V0V14V2Iainfix &lt;V14V1Aainfix &lt;=c0V14FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
340 341 342 343 344 345
      <label name="expl:VC for pop"/>
      <transf name="split_goal_wp"
       proved="true">
       <goal name="WP_parameter pop.5.1" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="1. postcondition"
        sum="a3a1617df58a5297d5424605da2562bf" proved="true"
346
        shape="postconditionCtaNilCfaNiltaConsVVV4Iainfix =anthV13V6aSomeagetV3ainfix -ainfix +V10V13V2Iainfix &lt;=c0ainfix -ainfix +V10V13V2Aainfix =anthV13V6aSomeagetV3ainfix +V10V13Iainfix &lt;ainfix +V10V13V2Iainfix &lt;V13V8Aainfix &lt;=c0V13FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V10V2Aainfix &lt;=c0V10Iainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV14V4aSomeagetV3ainfix -ainfix +V0V14V2Iainfix &lt;=c0ainfix -ainfix +V0V14V2Aainfix =anthV14V4aSomeagetV3ainfix +V0V14Iainfix &lt;ainfix +V0V14V2Iainfix &lt;V14V1Aainfix &lt;=c0V14FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
347 348 349
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="5"
         memlimit="1000">
350 351 352
         <result status="valid" time="0.01"/>
        </proof>
       </goal>
353 354 355
       <goal name="WP_parameter pop.5.2" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="2. postcondition"
        sum="1ff5ade35c32691010259c84223d2556" proved="true"
356
        shape="postconditionCtaNilCtaNilainfix =V7V11aConsVVV4Iainfix =anthV13V6aSomeagetV3ainfix -ainfix +V10V13V2Iainfix &lt;=c0ainfix -ainfix +V10V13V2Aainfix =anthV13V6aSomeagetV3ainfix +V10V13Iainfix &lt;ainfix +V10V13V2Iainfix &lt;V13V8Aainfix &lt;=c0V13FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V10V2Aainfix &lt;=c0V10Iainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV14V4aSomeagetV3ainfix -ainfix +V0V14V2Iainfix &lt;=c0ainfix -ainfix +V0V14V2Aainfix =anthV14V4aSomeagetV3ainfix +V0V14Iainfix &lt;ainfix +V0V14V2Iainfix &lt;V14V1Aainfix &lt;=c0V14FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
357 358 359
        <label name="expl:VC for pop"/>
        <proof prover="2" timelimit="5" memlimit="1000"
         edited="vstte12_ring_buffer_2_RingBuffer_WP_parameter_pop_4.v">
360
         <result status="valid" time="1.25"/>
361 362
        </proof>
       </goal>
363 364 365
       <goal name="WP_parameter pop.5.3" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="3. postcondition"
        sum="ae03cac2ee69d30d036812748f01f39f" proved="true"
366
        shape="postconditionCtaNilCtaNilainfix =V6V12aConsVVV4Iainfix =anthV13V6aSomeagetV3ainfix -ainfix +V10V13V2Iainfix &lt;=c0ainfix -ainfix +V10V13V2Aainfix =anthV13V6aSomeagetV3ainfix +V10V13Iainfix &lt;ainfix +V10V13V2Iainfix &lt;V13V8Aainfix &lt;=c0V13FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V10V2Aainfix &lt;=c0V10Iainfix =V10c0FIainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV14V4aSomeagetV3ainfix -ainfix +V0V14V2Iainfix &lt;=c0ainfix -ainfix +V0V14V2Aainfix =anthV14V4aSomeagetV3ainfix +V0V14Iainfix &lt;ainfix +V0V14V2Iainfix &lt;V14V1Aainfix &lt;=c0V14FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
367 368 369
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="5"
         memlimit="1000">
370 371 372 373 374
         <result status="valid" time="0.00"/>
        </proof>
       </goal>
      </transf>
     </goal>
375 376 377
     <goal name="WP_parameter pop.6" locfile="../vstte12_ring_buffer.mlw"
      loclnum="75" loccnumb="6" loccnume="9" expl="6. type invariant"
      sum="0632cb5bece2309770af37c7c7af2540" proved="true"
378
      shape="type invariantCtaNilainfix =anthV10V6aSomeagetV3ainfix -ainfix +V9V10V2Iainfix &lt;=c0ainfix -ainfix +V9V10V2Aainfix =anthV10V6aSomeagetV3ainfix +V9V10Iainfix &lt;ainfix +V9V10V2Iainfix &lt;V10V8Aainfix &lt;=c0V10FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V9V2Aainfix &lt;=c0V9INainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
379 380 381 382 383 384
      <label name="expl:VC for pop"/>
      <transf name="split_goal"
       proved="true">
       <goal name="WP_parameter pop.6.1" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="1."
        sum="d28d0eafba790e97e6ddc7eda041db0c" proved="true"
385
        shape="CtaNilainfix &lt;=c0V9INainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV10V4aSomeagetV3ainfix -ainfix +V0V10V2Iainfix &lt;=c0ainfix -ainfix +V0V10V2Aainfix =anthV10V4aSomeagetV3ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V1Aainfix &lt;=c0V10FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
386 387 388
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="10"
         memlimit="0">
389
         <result status="valid" time="0.01"/>
390 391
        </proof>
       </goal>
392 393 394
       <goal name="WP_parameter pop.6.2" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="2."
        sum="c832d40cb13d561fe9952c8d8aab7fbf" proved="true"
395
        shape="CtaNilainfix &lt;V9V2INainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV10V4aSomeagetV3ainfix -ainfix +V0V10V2Iainfix &lt;=c0ainfix -ainfix +V0V10V2Aainfix =anthV10V4aSomeagetV3ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V1Aainfix &lt;=c0V10FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
396 397 398
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="5"
         memlimit="1000">
399
         <result status="valid" time="0.01"/>
400 401
        </proof>
       </goal>
402 403 404
       <goal name="WP_parameter pop.6.3" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="3."
        sum="2d4a0bb6a533c57348ca2d20671f4999" proved="true"
405
        shape="CtaNilainfix &lt;=c0V8INainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV10V4aSomeagetV3ainfix -ainfix +V0V10V2Iainfix &lt;=c0ainfix -ainfix +V0V10V2Aainfix =anthV10V4aSomeagetV3ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V1Aainfix &lt;=c0V10FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
406 407 408
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="10"
         memlimit="0">
409
         <result status="valid" time="0.02"/>
410 411
        </proof>
       </goal>
412 413 414
       <goal name="WP_parameter pop.6.4" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="4."
        sum="77d130e0bb1176be46866a870d8e64c5" proved="true"
415
        shape="CtaNilainfix &lt;=V8V2INainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV10V4aSomeagetV3ainfix -ainfix +V0V10V2Iainfix &lt;=c0ainfix -ainfix +V0V10V2Aainfix =anthV10V4aSomeagetV3ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V1Aainfix &lt;=c0V10FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
416 417 418
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="5"
         memlimit="1000">
419 420
         <result status="valid" time="0.01"/>
        </proof>
421 422
        <proof prover="1" timelimit="5"
         memlimit="1000">
423
         <result status="valid" time="0.02"/>
424 425
        </proof>
       </goal>
426 427 428
       <goal name="WP_parameter pop.6.5" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="5."
        sum="34d4dc9444a5e3d9518ce54af73f86a3" proved="true"
429
        shape="CtaNilainfix =V8alengthV6INainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV10V4aSomeagetV3ainfix -ainfix +V0V10V2Iainfix &lt;=c0ainfix -ainfix +V0V10V2Aainfix =anthV10V4aSomeagetV3ainfix +V0V10Iainfix &lt;ainfix +V0V10V2Iainfix &lt;V10V1Aainfix &lt;=c0V10FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
430 431 432
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="10"
         memlimit="0">
433 434 435
         <result status="valid" time="0.01"/>
        </proof>
       </goal>
436 437 438
       <goal name="WP_parameter pop.6.6" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="6."
        sum="227ce013f8c7fad380732f8154ceb33b" proved="true"
439
        shape="CtaNilainfix =anthV10V6aSomeagetV3ainfix +V9V10Iainfix &lt;ainfix +V9V10V2Iainfix &lt;V10V8Aainfix &lt;=c0V10FINainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
440 441 442
        <label name="expl:VC for pop"/>
        <proof prover="1" timelimit="5"
         memlimit="1000">
443
         <result status="valid" time="0.09"/>
444 445
        </proof>
       </goal>
446 447 448
       <goal name="WP_parameter pop.6.7" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="7."
        sum="6721d851a88e36a73ff7ff7f01599590" proved="true"
449
        shape="CtaNilainfix =anthV10V6aSomeagetV3ainfix -ainfix +V9V10V2Iainfix &lt;=c0ainfix -ainfix +V9V10V2Iainfix &lt;V10V8Aainfix &lt;=c0V10FINainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
450 451 452
        <label name="expl:VC for pop"/>
        <proof prover="2" timelimit="60" memlimit="4000"
         edited="vstte12_ring_buffer_RingBuffer_WP_parameter_pop_1.v">
MARCHE Claude's avatar
MARCHE Claude committed
453
         <result status="valid" time="1.36"/>
454 455 456 457
        </proof>
       </goal>
      </transf>
     </goal>
458 459 460
     <goal name="WP_parameter pop.7" locfile="../vstte12_ring_buffer.mlw"
      loclnum="75" loccnumb="6" loccnume="9" expl="7. postcondition"
      sum="973303f7b6bbdf5f2bb9da666f685efc" proved="true"
461
      shape="postconditionCtaNilainfix =V8ainfix -V1c1Iainfix =anthV10V6aSomeagetV3ainfix -ainfix +V9V10V2Iainfix &lt;=c0ainfix -ainfix +V9V10V2Aainfix =anthV10V6aSomeagetV3ainfix +V9V10Iainfix &lt;ainfix +V9V10V2Iainfix &lt;V10V8Aainfix &lt;=c0V10FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V9V2Aainfix &lt;=c0V9INainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV11V4aSomeagetV3ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V4aSomeagetV3ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V1Aainfix &lt;=c0V11FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
462 463 464
      <label name="expl:VC for pop"/>
      <proof prover="0" timelimit="30"
       memlimit="1000">
465 466 467
       <result status="valid" time="0.01"/>
      </proof>
     </goal>
468 469 470
     <goal name="WP_parameter pop.8" locfile="../vstte12_ring_buffer.mlw"
      loclnum="75" loccnumb="6" loccnume="9" expl="8. postcondition"
      sum="13d25c78b2ed87748c7bf64a3bba8e55" proved="true"
471
      shape="postconditionCtaNilCfaNilainfix =V6V11Aainfix =V7V10aConsVVV4Iainfix =anthV12V6aSomeagetV3ainfix -ainfix +V9V12V2Iainfix &lt;=c0ainfix -ainfix +V9V12V2Aainfix =anthV12V6aSomeagetV3ainfix +V9V12Iainfix &lt;ainfix +V9V12V2Iainfix &lt;V12V8Aainfix &lt;=c0V12FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V9V2Aainfix &lt;=c0V9INainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV13V4aSomeagetV3ainfix -ainfix +V0V13V2Iainfix &lt;=c0ainfix -ainfix +V0V13V2Aainfix =anthV13V4aSomeagetV3ainfix +V0V13Iainfix &lt;ainfix +V0V13V2Iainfix &lt;V13V1Aainfix &lt;=c0V13FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
472 473 474 475 476 477
      <label name="expl:VC for pop"/>
      <transf name="split_goal_wp"
       proved="true">
       <goal name="WP_parameter pop.8.1" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="1. postcondition"
        sum="f06a358e173bb624ffccf417e039f06e" proved="true"
478
        shape="postconditionCtaNilCfaNiltaConsVVV4Iainfix =anthV12V6aSomeagetV3ainfix -ainfix +V9V12V2Iainfix &lt;=c0ainfix -ainfix +V9V12V2Aainfix =anthV12V6aSomeagetV3ainfix +V9V12Iainfix &lt;ainfix +V9V12V2Iainfix &lt;V12V8Aainfix &lt;=c0V12FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V9V2Aainfix &lt;=c0V9INainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV13V4aSomeagetV3ainfix -ainfix +V0V13V2Iainfix &lt;=c0ainfix -ainfix +V0V13V2Aainfix =anthV13V4aSomeagetV3ainfix +V0V13Iainfix &lt;ainfix +V0V13V2Iainfix &lt;V13V1Aainfix &lt;=c0V13FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
479 480 481
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="5"
         memlimit="1000">
482
         <result status="valid" time="0.01"/>
483 484
        </proof>
       </goal>
485 486 487
       <goal name="WP_parameter pop.8.2" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="2. postcondition"
        sum="34b4ea13d48bac17bc067dc93eb46b86" proved="true"
488
        shape="postconditionCtaNilCtaNilainfix =V7V10aConsVVV4Iainfix =anthV12V6aSomeagetV3ainfix -ainfix +V9V12V2Iainfix &lt;=c0ainfix -ainfix +V9V12V2Aainfix =anthV12V6aSomeagetV3ainfix +V9V12Iainfix &lt;ainfix +V9V12V2Iainfix &lt;V12V8Aainfix &lt;=c0V12FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V9V2Aainfix &lt;=c0V9INainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV13V4aSomeagetV3ainfix -ainfix +V0V13V2Iainfix &lt;=c0ainfix -ainfix +V0V13V2Aainfix =anthV13V4aSomeagetV3ainfix +V0V13Iainfix &lt;ainfix +V0V13V2Iainfix &lt;V13V1Aainfix &lt;=c0V13FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
489 490 491 492
        <label name="expl:VC for pop"/>
        <proof prover="2" timelimit="5" memlimit="1000"
         edited="vstte12_ring_buffer_2_RingBuffer_WP_parameter_pop_3.v">
         <result status="valid" time="1.19"/>
493 494
        </proof>
       </goal>
495 496 497
       <goal name="WP_parameter pop.8.3" locfile="../vstte12_ring_buffer.mlw"
        loclnum="75" loccnumb="6" loccnume="9" expl="3. postcondition"
        sum="193d2ec2fafe040b79a0c1b8698680c5" proved="true"
498
        shape="postconditionCtaNilCtaNilainfix =V6V11aConsVVV4Iainfix =anthV12V6aSomeagetV3ainfix -ainfix +V9V12V2Iainfix &lt;=c0ainfix -ainfix +V9V12V2Aainfix =anthV12V6aSomeagetV3ainfix +V9V12Iainfix &lt;ainfix +V9V12V2Iainfix &lt;V12V8Aainfix &lt;=c0V12FAainfix =V8alengthV6Aainfix &lt;=V8V2Aainfix &lt;=c0V8Aainfix &lt;V9V2Aainfix &lt;=c0V9INainfix =V9V2Iainfix =V9ainfix +V0c1FIainfix =V8ainfix -V1c1FLagetV3V0Iainfix &lt;V0V2Aainfix &lt;=c0V0Iainfix =V6V5FaConswVV4Iainfix &gt;V1c0Aainfix &lt;=c0V2Aainfix =anthV13V4aSomeagetV3ainfix -ainfix +V0V13V2Iainfix &lt;=c0ainfix -ainfix +V0V13V2Aainfix =anthV13V4aSomeagetV3ainfix +V0V13Iainfix &lt;ainfix +V0V13V2Iainfix &lt;V13V1Aainfix &lt;=c0V13FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0F">
499 500 501
        <label name="expl:VC for pop"/>
        <proof prover="0" timelimit="5"
         memlimit="1000">
502
         <result status="valid" time="0.02"/>
503 504 505 506 507 508 509
        </proof>
       </goal>
      </transf>
     </goal>
    </transf>
   </goal>
  </theory>
510
  <theory name="Harness" locfile="../vstte12_ring_buffer.mlw"
511
   loclnum="91" loccnumb="7" loccnume="14"
512 513 514 515
   verified="true">
   <goal name="WP_parameter harness" locfile="../vstte12_ring_buffer.mlw"
    loclnum="96" loccnumb="6" loccnume="13" expl="VC for harness"
    sum="6dec2af1d118fe165c931503260fa6ca" proved="true"
516
    shape="ainfix =V25c3ICfaNilainfix =V22V27Aainfix =V25V26aConsVVV18Aainfix =V23ainfix -V19c1Aainfix =anthV28V22aSomeagetV12ainfix -ainfix +V24V28V2Iainfix &lt;=c0ainfix -ainfix +V24V28V2Aainfix =anthV28V22aSomeagetV12ainfix +V24V28Iainfix &lt;ainfix +V24V28V2Iainfix &lt;V28V23Aainfix &lt;=c0V28FAainfix =V23alengthV22Aainfix &lt;=V23V2Aainfix &lt;=c0V23Aainfix &lt;V24V2Aainfix &lt;=c0V24FFAainfix &gt;V19c0Aainfix =V21c2ICfaNilainfix =V18V30Aainfix =V21V29aConsVVV14Aainfix =V19ainfix -V15c1Aainfix =anthV31V18aSomeagetV12ainfix -ainfix +V20V31V2Iainfix &lt;=c0ainfix -ainfix +V20V31V2Aainfix =anthV31V18aSomeagetV12ainfix +V20V31Iainfix &lt;ainfix +V20V31V2Iainfix &lt;V31V19Aainfix &lt;=c0V31FAainfix =V19alengthV18Aainfix &lt;=V19V2Aainfix &lt;=c0V19Aainfix &lt;V20V2Aainfix &lt;=c0V20FFAainfix &gt;V15c0Aainfix =V17c1ICfaNilainfix =V14V33Aainfix =V17V32aConsVVV11Aainfix =V15ainfix -V13c1Aainfix =anthV34V14aSomeagetV12ainfix -ainfix +V16V34V2Iainfix &lt;=c0ainfix -ainfix +V16V34V2Aainfix =anthV34V14aSomeagetV12ainfix +V16V34Iainfix &lt;ainfix +V16V34V2Iainfix &lt;V34V15Aainfix &lt;=c0V34FAainfix =V15alengthV14Aainfix &lt;=V15V2Aainfix &lt;=c0V15Aainfix &lt;V16V2Aainfix &lt;=c0V16FFAainfix &gt;V13c0Iainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV35V11aSomeagetV12ainfix -ainfix +V0V35V2Iainfix &lt;=c0ainfix -ainfix +V0V35V2Aainfix =anthV35V11aSomeagetV12ainfix +V0V35Iainfix &lt;ainfix +V0V35V2Iainfix &lt;V35V13Aainfix &lt;=c0V35FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FAainfix &lt;V10V2Iainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV36V8aSomeagetV9ainfix -ainfix +V0V36V2Iainfix &lt;=c0ainfix -ainfix +V0V36V2Aainfix =anthV36V8aSomeagetV9ainfix +V0V36Iainfix &lt;ainfix +V0V36V2Iainfix &lt;V36V10Aainfix &lt;=c0V36FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FAainfix &lt;V7V2Iainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV37V5aSomeagetV6ainfix -ainfix +V0V37V2Iainfix &lt;=c0ainfix -ainfix +V0V37V2Aainfix =anthV37V5aSomeagetV6ainfix +V0V37Iainfix &lt;ainfix +V0V37V2Iainfix &lt;V37V7Aainfix &lt;=c0V37FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FAainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c10Aainfix &lt;=c0V2Aainfix =anthV38V4aSomeagetV3ainfix -ainfix +V0V38V2Iainfix &lt;=c0ainfix -ainfix +V0V38V2Aainfix =anthV38V4aSomeagetV3ainfix +V0V38Iainfix &lt;ainfix +V0V38V2Iainfix &lt;V38V1Aainfix &lt;=c0V38FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FAainfix &gt;c10c0">
517 518 519 520 521 522
    <label name="expl:VC for harness"/>
    <transf name="split_goal"
     proved="true">
     <goal name="WP_parameter harness.1" locfile="../vstte12_ring_buffer.mlw"
      loclnum="96" loccnumb="6" loccnume="13" expl="1. precondition"
      sum="d95b712da10ce29ad1b7591df70fb45a" proved="true"
523
      shape="preconditionainfix &gt;c10c0">
524 525 526
      <label name="expl:VC for harness"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
527
       <result status="valid" time="0.01"/>
528 529
      </proof>
     </goal>
530 531 532
     <goal name="WP_parameter harness.2" locfile="../vstte12_ring_buffer.mlw"
      loclnum="96" loccnumb="6" loccnume="13" expl="2. precondition"
      sum="9cc0375df19d7f74ce61369d86968cbb" proved="true"
533
      shape="preconditionainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c10Aainfix &lt;=c0V2Aainfix =anthV5V4aSomeagetV3ainfix -ainfix +V0V5V2Iainfix &lt;=c0ainfix -ainfix +V0V5V2Aainfix =anthV5V4aSomeagetV3ainfix +V0V5Iainfix &lt;ainfix +V0V5V2Iainfix &lt;V5V1Aainfix &lt;=c0V5FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c10c0">
534 535 536
      <label name="expl:VC for harness"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
537
       <result status="valid" time="0.01"/>
538 539
      </proof>
     </goal>
540 541 542
     <goal name="WP_parameter harness.3" locfile="../vstte12_ring_buffer.mlw"
      loclnum="96" loccnumb="6" loccnume="13" expl="3. precondition"
      sum="d5cfc313e4955ad8fe3b9a3468a84ab8" proved="true"
543
      shape="preconditionainfix &lt;V7V2Iainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV8V5aSomeagetV6ainfix -ainfix +V0V8V2Iainfix &lt;=c0ainfix -ainfix +V0V8V2Aainfix =anthV8V5aSomeagetV6ainfix +V0V8Iainfix &lt;ainfix +V0V8V2Iainfix &lt;V8V7Aainfix &lt;=c0V8FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c10Aainfix &lt;=c0V2Aainfix =anthV9V4aSomeagetV3ainfix -ainfix +V0V9V2Iainfix &lt;=c0ainfix -ainfix +V0V9V2Aainfix =anthV9V4aSomeagetV3ainfix +V0V9Iainfix &lt;ainfix +V0V9V2Iainfix &lt;V9V1Aainfix &lt;=c0V9FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c10c0">
544 545 546
      <label name="expl:VC for harness"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
547 548
       <result status="valid" time="0.01"/>
      </proof>
549 550
      <proof prover="1" timelimit="10"
       memlimit="0">
551
       <result status="valid" time="0.02"/>
552 553
      </proof>
     </goal>
554 555 556
     <goal name="WP_parameter harness.4" locfile="../vstte12_ring_buffer.mlw"
      loclnum="96" loccnumb="6" loccnume="13" expl="4. precondition"
      sum="a7e89ab7614f9c19418b2bab62d3748a" proved="true"
557
      shape="preconditionainfix &lt;V10V2Iainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV11V8aSomeagetV9ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V8aSomeagetV9ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V10Aainfix &lt;=c0V11FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV12V5aSomeagetV6ainfix -ainfix +V0V12V2Iainfix &lt;=c0ainfix -ainfix +V0V12V2Aainfix =anthV12V5aSomeagetV6ainfix +V0V12Iainfix &lt;ainfix +V0V12V2Iainfix &lt;V12V7Aainfix &lt;=c0V12FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c10Aainfix &lt;=c0V2Aainfix =anthV13V4aSomeagetV3ainfix -ainfix +V0V13V2Iainfix &lt;=c0ainfix -ainfix +V0V13V2Aainfix =anthV13V4aSomeagetV3ainfix +V0V13Iainfix &lt;ainfix +V0V13V2Iainfix &lt;V13V1Aainfix &lt;=c0V13FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c10c0">
558 559 560
      <label name="expl:VC for harness"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
561
       <result status="valid" time="0.02"/>
562 563
      </proof>
     </goal>
564 565 566
     <goal name="WP_parameter harness.5" locfile="../vstte12_ring_buffer.mlw"
      loclnum="96" loccnumb="6" loccnume="13" expl="5. precondition"
      sum="a9c8f91bbb5af2c3b5d1edfaea6d3c46" proved="true"
567
      shape="preconditionainfix &gt;V13c0Iainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV14V11aSomeagetV12ainfix -ainfix +V0V14V2Iainfix &lt;=c0ainfix -ainfix +V0V14V2Aainfix =anthV14V11aSomeagetV12ainfix +V0V14Iainfix &lt;ainfix +V0V14V2Iainfix &lt;V14V13Aainfix &lt;=c0V14FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V10V2Iainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV15V8aSomeagetV9ainfix -ainfix +V0V15V2Iainfix &lt;=c0ainfix -ainfix +V0V15V2Aainfix =anthV15V8aSomeagetV9ainfix +V0V15Iainfix &lt;ainfix +V0V15V2Iainfix &lt;V15V10Aainfix &lt;=c0V15FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV16V5aSomeagetV6ainfix -ainfix +V0V16V2Iainfix &lt;=c0ainfix -ainfix +V0V16V2Aainfix =anthV16V5aSomeagetV6ainfix +V0V16Iainfix &lt;ainfix +V0V16V2Iainfix &lt;V16V7Aainfix &lt;=c0V16FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c10Aainfix &lt;=c0V2Aainfix =anthV17V4aSomeagetV3ainfix -ainfix +V0V17V2Iainfix &lt;=c0ainfix -ainfix +V0V17V2Aainfix =anthV17V4aSomeagetV3ainfix +V0V17Iainfix &lt;ainfix +V0V17V2Iainfix &lt;V17V1Aainfix &lt;=c0V17FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c10c0">
568 569 570
      <label name="expl:VC for harness"/>
      <proof prover="0" timelimit="15"
       memlimit="0">
571
       <result status="valid" time="0.02"/>
572 573
      </proof>
     </goal>
574 575 576
     <goal name="WP_parameter harness.6" locfile="../vstte12_ring_buffer.mlw"
      loclnum="96" loccnumb="6" loccnume="13" expl="6. assertion"
      sum="568938fc763146f35adf1f62d02a6bc6" proved="true"
577
      shape="assertionainfix =V17c1ICfaNilainfix =V14V19Aainfix =V17V18aConsVVV11Aainfix =V15ainfix -V13c1Aainfix =anthV20V14aSomeagetV12ainfix -ainfix +V16V20V2Iainfix &lt;=c0ainfix -ainfix +V16V20V2Aainfix =anthV20V14aSomeagetV12ainfix +V16V20Iainfix &lt;ainfix +V16V20V2Iainfix &lt;V20V15Aainfix &lt;=c0V20FAainfix =V15alengthV14Aainfix &lt;=V15V2Aainfix &lt;=c0V15Aainfix &lt;V16V2Aainfix &lt;=c0V16FFIainfix &gt;V13c0Iainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV21V11aSomeagetV12ainfix -ainfix +V0V21V2Iainfix &lt;=c0ainfix -ainfix +V0V21V2Aainfix =anthV21V11aSomeagetV12ainfix +V0V21Iainfix &lt;ainfix +V0V21V2Iainfix &lt;V21V13Aainfix &lt;=c0V21FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V10V2Iainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV22V8aSomeagetV9ainfix -ainfix +V0V22V2Iainfix &lt;=c0ainfix -ainfix +V0V22V2Aainfix =anthV22V8aSomeagetV9ainfix +V0V22Iainfix &lt;ainfix +V0V22V2Iainfix &lt;V22V10Aainfix &lt;=c0V22FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV23V5aSomeagetV6ainfix -ainfix +V0V23V2Iainfix &lt;=c0ainfix -ainfix +V0V23V2Aainfix =anthV23V5aSomeagetV6ainfix +V0V23Iainfix &lt;ainfix +V0V23V2Iainfix &lt;V23V7Aainfix &lt;=c0V23FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c10Aainfix &lt;=c0V2Aainfix =anthV24V4aSomeagetV3ainfix -ainfix +V0V24V2Iainfix &lt;=c0ainfix -ainfix +V0V24V2Aainfix =anthV24V4aSomeagetV3ainfix +V0V24Iainfix &lt;ainfix +V0V24V2Iainfix &lt;V24V1Aainfix &lt;=c0V24FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c10c0">
578 579 580
      <label name="expl:VC for harness"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
MARCHE Claude's avatar
MARCHE Claude committed
581
       <result status="valid" time="0.89"/>
582 583
      </proof>
     </goal>
584 585 586
     <goal name="WP_parameter harness.7" locfile="../vstte12_ring_buffer.mlw"
      loclnum="96" loccnumb="6" loccnume="13" expl="7. precondition"
      sum="bbf184fe374f81bf0dd011ad1665932a" proved="true"
587
      shape="preconditionainfix &gt;V15c0Iainfix =V17c1ICfaNilainfix =V14V19Aainfix =V17V18aConsVVV11Aainfix =V15ainfix -V13c1Aainfix =anthV20V14aSomeagetV12ainfix -ainfix +V16V20V2Iainfix &lt;=c0ainfix -ainfix +V16V20V2Aainfix =anthV20V14aSomeagetV12ainfix +V16V20Iainfix &lt;ainfix +V16V20V2Iainfix &lt;V20V15Aainfix &lt;=c0V20FAainfix =V15alengthV14Aainfix &lt;=V15V2Aainfix &lt;=c0V15Aainfix &lt;V16V2Aainfix &lt;=c0V16FFIainfix &gt;V13c0Iainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV21V11aSomeagetV12ainfix -ainfix +V0V21V2Iainfix &lt;=c0ainfix -ainfix +V0V21V2Aainfix =anthV21V11aSomeagetV12ainfix +V0V21Iainfix &lt;ainfix +V0V21V2Iainfix &lt;V21V13Aainfix &lt;=c0V21FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V10V2Iainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV22V8aSomeagetV9ainfix -ainfix +V0V22V2Iainfix &lt;=c0ainfix -ainfix +V0V22V2Aainfix =anthV22V8aSomeagetV9ainfix +V0V22Iainfix &lt;ainfix +V0V22V2Iainfix &lt;V22V10Aainfix &lt;=c0V22FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV23V5aSomeagetV6ainfix -ainfix +V0V23V2Iainfix &lt;=c0ainfix -ainfix +V0V23V2Aainfix =anthV23V5aSomeagetV6ainfix +V0V23Iainfix &lt;ainfix +V0V23V2Iainfix &lt;V23V7Aainfix &lt;=c0V23FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c10Aainfix &lt;=c0V2Aainfix =anthV24V4aSomeagetV3ainfix -ainfix +V0V24V2Iainfix &lt;=c0ainfix -ainfix +V0V24V2Aainfix =anthV24V4aSomeagetV3ainfix +V0V24Iainfix &lt;ainfix +V0V24V2Iainfix &lt;V24V1Aainfix &lt;=c0V24FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c10c0">
588 589 590
      <label name="expl:VC for harness"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
591
       <result status="valid" time="0.03"/>
592 593
      </proof>
     </goal>
594 595 596
     <goal name="WP_parameter harness.8" locfile="../vstte12_ring_buffer.mlw"
      loclnum="96" loccnumb="6" loccnume="13" expl="8. assertion"
      sum="66ba17701fc8fdc20dbaf8d450d22d7a" proved="true"
597
      shape="assertionainfix =V21c2ICfaNilainfix =V18V23Aainfix =V21V22aConsVVV14Aainfix =V19ainfix -V15c1Aainfix =anthV24V18aSomeagetV12ainfix -ainfix +V20V24V2Iainfix &lt;=c0ainfix -ainfix +V20V24V2Aainfix =anthV24V18aSomeagetV12ainfix +V20V24Iainfix &lt;ainfix +V20V24V2Iainfix &lt;V24V19Aainfix &lt;=c0V24FAainfix =V19alengthV18Aainfix &lt;=V19V2Aainfix &lt;=c0V19Aainfix &lt;V20V2Aainfix &lt;=c0V20FFIainfix &gt;V15c0Iainfix =V17c1ICfaNilainfix =V14V26Aainfix =V17V25aConsVVV11Aainfix =V15ainfix -V13c1Aainfix =anthV27V14aSomeagetV12ainfix -ainfix +V16V27V2Iainfix &lt;=c0ainfix -ainfix +V16V27V2Aainfix =anthV27V14aSomeagetV12ainfix +V16V27Iainfix &lt;ainfix +V16V27V2Iainfix &lt;V27V15Aainfix &lt;=c0V27FAainfix =V15alengthV14Aainfix &lt;=V15V2Aainfix &lt;=c0V15Aainfix &lt;V16V2Aainfix &lt;=c0V16FFIainfix &gt;V13c0Iainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV28V11aSomeagetV12ainfix -ainfix +V0V28V2Iainfix &lt;=c0ainfix -ainfix +V0V28V2Aainfix =anthV28V11aSomeagetV12ainfix +V0V28Iainfix &lt;ainfix +V0V28V2Iainfix &lt;V28V13Aainfix &lt;=c0V28FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V10V2Iainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV29V8aSomeagetV9ainfix -ainfix +V0V29V2Iainfix &lt;=c0ainfix -ainfix +V0V29V2Aainfix =anthV29V8aSomeagetV9ainfix +V0V29Iainfix &lt;ainfix +V0V29V2Iainfix &lt;V29V10Aainfix &lt;=c0V29FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV30V5aSomeagetV6ainfix -ainfix +V0V30V2Iainfix &lt;=c0ainfix -ainfix +V0V30V2Aainfix =anthV30V5aSomeagetV6ainfix +V0V30Iainfix &lt;ainfix +V0V30V2Iainfix &lt;V30V7Aainfix &lt;=c0V30FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c10Aainfix &lt;=c0V2Aainfix =anthV31V4aSomeagetV3ainfix -ainfix +V0V31V2Iainfix &lt;=c0ainfix -ainfix +V0V31V2Aainfix =anthV31V4aSomeagetV3ainfix +V0V31Iainfix &lt;ainfix +V0V31V2Iainfix &lt;V31V1Aainfix &lt;=c0V31FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c10c0">
598 599 600
      <label name="expl:VC for harness"/>
      <proof prover="0" timelimit="13"
       memlimit="0">
MARCHE Claude's avatar
MARCHE Claude committed
601
       <result status="valid" time="1.00"/>
602 603
      </proof>
     </goal>
604 605 606
     <goal name="WP_parameter harness.9" locfile="../vstte12_ring_buffer.mlw"
      loclnum="96" loccnumb="6" loccnume="13" expl="9. precondition"
      sum="716e504b7c984a1ea8aa1052d658006f" proved="true"
607
      shape="preconditionainfix &gt;V19c0Iainfix =V21c2ICfaNilainfix =V18V23Aainfix =V21V22aConsVVV14Aainfix =V19ainfix -V15c1Aainfix =anthV24V18aSomeagetV12ainfix -ainfix +V20V24V2Iainfix &lt;=c0ainfix -ainfix +V20V24V2Aainfix =anthV24V18aSomeagetV12ainfix +V20V24Iainfix &lt;ainfix +V20V24V2Iainfix &lt;V24V19Aainfix &lt;=c0V24FAainfix =V19alengthV18Aainfix &lt;=V19V2Aainfix &lt;=c0V19Aainfix &lt;V20V2Aainfix &lt;=c0V20FFIainfix &gt;V15c0Iainfix =V17c1ICfaNilainfix =V14V26Aainfix =V17V25aConsVVV11Aainfix =V15ainfix -V13c1Aainfix =anthV27V14aSomeagetV12ainfix -ainfix +V16V27V2Iainfix &lt;=c0ainfix -ainfix +V16V27V2Aainfix =anthV27V14aSomeagetV12ainfix +V16V27Iainfix &lt;ainfix +V16V27V2Iainfix &lt;V27V15Aainfix &lt;=c0V27FAainfix =V15alengthV14Aainfix &lt;=V15V2Aainfix &lt;=c0V15Aainfix &lt;V16V2Aainfix &lt;=c0V16FFIainfix &gt;V13c0Iainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV28V11aSomeagetV12ainfix -ainfix +V0V28V2Iainfix &lt;=c0ainfix -ainfix +V0V28V2Aainfix =anthV28V11aSomeagetV12ainfix +V0V28Iainfix &lt;ainfix +V0V28V2Iainfix &lt;V28V13Aainfix &lt;=c0V28FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V10V2Iainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV29V8aSomeagetV9ainfix -ainfix +V0V29V2Iainfix &lt;=c0ainfix -ainfix +V0V29V2Aainfix =anthV29V8aSomeagetV9ainfix +V0V29Iainfix &lt;ainfix +V0V29V2Iainfix &lt;V29V10Aainfix &lt;=c0V29FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV30V5aSomeagetV6ainfix -ainfix +V0V30V2Iainfix &lt;=c0ainfix -ainfix +V0V30V2Aainfix =anthV30V5aSomeagetV6ainfix +V0V30Iainfix &lt;ainfix +V0V30V2Iainfix &lt;V30V7Aainfix &lt;=c0V30FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c10Aainfix &lt;=c0V2Aainfix =anthV31V4aSomeagetV3ainfix -ainfix +V0V31V2Iainfix &lt;=c0ainfix -ainfix +V0V31V2Aainfix =anthV31V4aSomeagetV3ainfix +V0V31Iainfix &lt;ainfix +V0V31V2Iainfix &lt;V31V1Aainfix &lt;=c0V31FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c10c0">
608 609 610
      <label name="expl:VC for harness"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
611
       <result status="valid" time="0.04"/>
612 613
      </proof>
     </goal>
614
     <goal name="WP_parameter harness.10"
615
      locfile="../vstte12_ring_buffer.mlw"
616 617
      loclnum="96" loccnumb="6" loccnume="13" expl="10. assertion"
      sum="6b34c9fc95c34f70a4725cb40385c26e" proved="true"
618
      shape="assertionainfix =V25c3ICfaNilainfix =V22V27Aainfix =V25V26aConsVVV18Aainfix =V23ainfix -V19c1Aainfix =anthV28V22aSomeagetV12ainfix -ainfix +V24V28V2Iainfix &lt;=c0ainfix -ainfix +V24V28V2Aainfix =anthV28V22aSomeagetV12ainfix +V24V28Iainfix &lt;ainfix +V24V28V2Iainfix &lt;V28V23Aainfix &lt;=c0V28FAainfix =V23alengthV22Aainfix &lt;=V23V2Aainfix &lt;=c0V23Aainfix &lt;V24V2Aainfix &lt;=c0V24FFIainfix &gt;V19c0Iainfix =V21c2ICfaNilainfix =V18V30Aainfix =V21V29aConsVVV14Aainfix =V19ainfix -V15c1Aainfix =anthV31V18aSomeagetV12ainfix -ainfix +V20V31V2Iainfix &lt;=c0ainfix -ainfix +V20V31V2Aainfix =anthV31V18aSomeagetV12ainfix +V20V31Iainfix &lt;ainfix +V20V31V2Iainfix &lt;V31V19Aainfix &lt;=c0V31FAainfix =V19alengthV18Aainfix &lt;=V19V2Aainfix &lt;=c0V19Aainfix &lt;V20V2Aainfix &lt;=c0V20FFIainfix &gt;V15c0Iainfix =V17c1ICfaNilainfix =V14V33Aainfix =V17V32aConsVVV11Aainfix =V15ainfix -V13c1Aainfix =anthV34V14aSomeagetV12ainfix -ainfix +V16V34V2Iainfix &lt;=c0ainfix -ainfix +V16V34V2Aainfix =anthV34V14aSomeagetV12ainfix +V16V34Iainfix &lt;ainfix +V16V34V2Iainfix &lt;V34V15Aainfix &lt;=c0V34FAainfix =V15alengthV14Aainfix &lt;=V15V2Aainfix &lt;=c0V15Aainfix &lt;V16V2Aainfix &lt;=c0V16FFIainfix &gt;V13c0Iainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV35V11aSomeagetV12ainfix -ainfix +V0V35V2Iainfix &lt;=c0ainfix -ainfix +V0V35V2Aainfix =anthV35V11aSomeagetV12ainfix +V0V35Iainfix &lt;ainfix +V0V35V2Iainfix &lt;V35V13Aainfix &lt;=c0V35FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V10V2Iainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV36V8aSomeagetV9ainfix -ainfix +V0V36V2Iainfix &lt;=c0ainfix -ainfix +V0V36V2Aainfix =anthV36V8aSomeagetV9ainfix +V0V36Iainfix &lt;ainfix +V0V36V2Iainfix &lt;V36V10Aainfix &lt;=c0V36FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV37V5aSomeagetV6ainfix -ainfix +V0V37V2Iainfix &lt;=c0ainfix -ainfix +V0V37V2Aainfix =anthV37V5aSomeagetV6ainfix +V0V37Iainfix &lt;ainfix +V0V37V2Iainfix &lt;V37V7Aainfix &lt;=c0V37FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c10Aainfix &lt;=c0V2Aainfix =anthV38V4aSomeagetV3ainfix -ainfix +V0V38V2Iainfix &lt;=c0ainfix -ainfix +V0V38V2Aainfix =anthV38V4aSomeagetV3ainfix +V0V38Iainfix &lt;ainfix +V0V38V2Iainfix &lt;V38V1Aainfix &lt;=c0V38FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c10c0">
619 620 621
      <label name="expl:VC for harness"/>
      <proof prover="0" timelimit="14"
       memlimit="0">
MARCHE Claude's avatar
MARCHE Claude committed
622
       <result status="valid" time="1.07"/>
623 624 625 626
      </proof>
     </goal>
    </transf>
   </goal>
627 628 629
   <goal name="WP_parameter harness2" locfile="../vstte12_ring_buffer.mlw"
    loclnum="106" loccnumb="6" loccnume="14" expl="VC for harness2"
    sum="e8594ee5b48cd891dc79c12714adf8c0" proved="true"
630
    shape="ainfix =V32c4ICfaNilainfix =V29V34Aainfix =V32V33aConsVVV25Aainfix =V30ainfix -V26c1Aainfix =anthV35V29aSomeagetV19ainfix -ainfix +V31V35V2Iainfix &lt;=c0ainfix -ainfix +V31V35V2Aainfix =anthV35V29aSomeagetV19ainfix +V31V35Iainfix &lt;ainfix +V31V35V2Iainfix &lt;V35V30Aainfix &lt;=c0V35FAainfix =V30alengthV29Aainfix &lt;=V30V2Aainfix &lt;=c0V30Aainfix &lt;V31V2Aainfix &lt;=c0V31FFAainfix &gt;V26c0Aainfix =V25aConsc4aNilAainfix =V28c3ICfaNilainfix =V25V37Aainfix =V28V36aConsVVV21Aainfix =V26ainfix -V22c1Aainfix =anthV38V25aSomeagetV19ainfix -ainfix +V27V38V2Iainfix &lt;=c0ainfix -ainfix +V27V38V2Aainfix =anthV38V25aSomeagetV19ainfix +V27V38Iainfix &lt;ainfix +V27V38V2Iainfix &lt;V38V26Aainfix &lt;=c0V38FAainfix =V26alengthV25Aainfix &lt;=V26V2Aainfix &lt;=c0V26Aainfix &lt;V27V2Aainfix &lt;=c0V27FFAainfix &gt;V22c0Aainfix =V21aConsc3aConsc4aNilAainfix =V24c2ICfaNilainfix =V21V40Aainfix =V24V39aConsVVV18Aainfix =V22ainfix -V20c1Aainfix =anthV41V21aSomeagetV19ainfix -ainfix +V23V41V2Iainfix &lt;=c0ainfix -ainfix +V23V41V2Aainfix =anthV41V21aSomeagetV19ainfix +V23V41Iainfix &lt;ainfix +V23V41V2Iainfix &lt;V41V22Aainfix &lt;=c0V41FAainfix =V22alengthV21Aainfix &lt;=V22V2Aainfix &lt;=c0V22Aainfix &lt;V23V2Aainfix &lt;=c0V23FFAainfix &gt;V20c0Aainfix =V18aConsc2aConsc3aConsc4aNilIainfix =V18ainfix ++V14aConsc4aNilAainfix =V20ainfix +V15c1Aainfix &lt;=c0V2Aainfix =anthV42V18aSomeagetV19ainfix -ainfix +V16V42V2Iainfix &lt;=c0ainfix -ainfix +V16V42V2Aainfix =anthV42V18aSomeagetV19ainfix +V16V42Iainfix &lt;ainfix +V16V42V2Iainfix &lt;V42V20Aainfix &lt;=c0V42FAainfix =V20alengthV18Aainfix &lt;=V20V2Aainfix &lt;=c0V20Aainfix &lt;V16V2Aainfix &lt;=c0V16FAainfix &lt;V15V2Aainfix =V14aConsc2aConsc3aNilAainfix =V17c1ICfaNilainfix =V14V44Aainfix =V17V43aConsVVV11Aainfix =V15ainfix -V13c1Aainfix =anthV45V14aSomeagetV12ainfix -ainfix +V16V45V2Iainfix &lt;=c0ainfix -ainfix +V16V45V2Aainfix =anthV45V14aSomeagetV12ainfix +V16V45Iainfix &lt;ainfix +V16V45V2Iainfix &lt;V45V15Aainfix &lt;=c0V45FAainfix =V15alengthV14Aainfix &lt;=V15V2Aainfix &lt;=c0V15Aainfix &lt;V16V2Aainfix &lt;=c0V16FFAainfix &gt;V13c0Aainfix =V11aConsc1aConsc2aConsc3aNilIainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV46V11aSomeagetV12ainfix -ainfix +V0V46V2Iainfix &lt;=c0ainfix -ainfix +V0V46V2Aainfix =anthV46V11aSomeagetV12ainfix +V0V46Iainfix &lt;ainfix +V0V46V2Iainfix &lt;V46V13Aainfix &lt;=c0V46FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FAainfix &lt;V10V2Aainfix =V8aConsc1aConsc2aNilIainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV47V8aSomeagetV9ainfix -ainfix +V0V47V2Iainfix &lt;=c0ainfix -ainfix +V0V47V2Aainfix =anthV47V8aSomeagetV9ainfix +V0V47Iainfix &lt;ainfix +V0V47V2Iainfix &lt;V47V10Aainfix &lt;=c0V47FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FAainfix &lt;V7V2Aainfix =V5aConsc1aNilIainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV48V5aSomeagetV6ainfix -ainfix +V0V48V2Iainfix &lt;=c0ainfix -ainfix +V0V48V2Aainfix =anthV48V5aSomeagetV6ainfix +V0V48Iainfix &lt;ainfix +V0V48V2Iainfix &lt;V48V7Aainfix &lt;=c0V48FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FAainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c3Aainfix &lt;=c0V2Aainfix =anthV49V4aSomeagetV3ainfix -ainfix +V0V49V2Iainfix &lt;=c0ainfix -ainfix +V0V49V2Aainfix =anthV49V4aSomeagetV3ainfix +V0V49Iainfix &lt;ainfix +V0V49V2Iainfix &lt;V49V1Aainfix &lt;=c0V49FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FAainfix &gt;c3c0">
631 632 633 634
    <label name="expl:VC for harness2"/>
    <transf name="split_goal"
     proved="true">
     <goal name="WP_parameter harness2.1"
635
      locfile="../vstte12_ring_buffer.mlw"
636 637
      loclnum="106" loccnumb="6" loccnume="14" expl="1. precondition"
      sum="1ff3da5dafd8019751263ac54dc7d27c" proved="true"
638
      shape="preconditionainfix &gt;c3c0">
639 640 641
      <label name="expl:VC for harness2"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
642
       <result status="valid" time="0.00"/>
643 644
      </proof>
     </goal>
645
     <goal name="WP_parameter harness2.2"
646
      locfile="../vstte12_ring_buffer.mlw"
647 648
      loclnum="106" loccnumb="6" loccnume="14" expl="2. precondition"
      sum="09df1ce16481310ad8f77d9282754d45" proved="true"
649
      shape="preconditionainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c3Aainfix &lt;=c0V2Aainfix =anthV5V4aSomeagetV3ainfix -ainfix +V0V5V2Iainfix &lt;=c0ainfix -ainfix +V0V5V2Aainfix =anthV5V4aSomeagetV3ainfix +V0V5Iainfix &lt;ainfix +V0V5V2Iainfix &lt;V5V1Aainfix &lt;=c0V5FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c3c0">
650 651 652
      <label name="expl:VC for harness2"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
653 654
       <result status="valid" time="0.01"/>
      </proof>
655
     </goal>
656
     <goal name="WP_parameter harness2.3"
657
      locfile="../vstte12_ring_buffer.mlw"
658 659
      loclnum="106" loccnumb="6" loccnume="14" expl="3. assertion"
      sum="045ad1c082715ac69f3d872b41155453" proved="true"
660
      shape="assertionainfix =V5aConsc1aNilIainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV8V5aSomeagetV6ainfix -ainfix +V0V8V2Iainfix &lt;=c0ainfix -ainfix +V0V8V2Aainfix =anthV8V5aSomeagetV6ainfix +V0V8Iainfix &lt;ainfix +V0V8V2Iainfix &lt;V8V7Aainfix &lt;=c0V8FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c3Aainfix &lt;=c0V2Aainfix =anthV9V4aSomeagetV3ainfix -ainfix +V0V9V2Iainfix &lt;=c0ainfix -ainfix +V0V9V2Aainfix =anthV9V4aSomeagetV3ainfix +V0V9Iainfix &lt;ainfix +V0V9V2Iainfix &lt;V9V1Aainfix &lt;=c0V9FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c3c0">
661 662 663
      <label name="expl:VC for harness2"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
664
       <result status="valid" time="0.01"/>
665 666
      </proof>
     </goal>
667
     <goal name="WP_parameter harness2.4"
668
      locfile="../vstte12_ring_buffer.mlw"
669 670
      loclnum="106" loccnumb="6" loccnume="14" expl="4. precondition"
      sum="6bb4abe05918ef88eb2c665111781b04" proved="true"
671
      shape="preconditionainfix &lt;V7V2Iainfix =V5aConsc1aNilIainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV8V5aSomeagetV6ainfix -ainfix +V0V8V2Iainfix &lt;=c0ainfix -ainfix +V0V8V2Aainfix =anthV8V5aSomeagetV6ainfix +V0V8Iainfix &lt;ainfix +V0V8V2Iainfix &lt;V8V7Aainfix &lt;=c0V8FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c3Aainfix &lt;=c0V2Aainfix =anthV9V4aSomeagetV3ainfix -ainfix +V0V9V2Iainfix &lt;=c0ainfix -ainfix +V0V9V2Aainfix =anthV9V4aSomeagetV3ainfix +V0V9Iainfix &lt;ainfix +V0V9V2Iainfix &lt;V9V1Aainfix &lt;=c0V9FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c3c0">
672 673 674
      <label name="expl:VC for harness2"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
675
       <result status="valid" time="0.01"/>
676 677
      </proof>
     </goal>
678
     <goal name="WP_parameter harness2.5"
679
      locfile="../vstte12_ring_buffer.mlw"
680 681
      loclnum="106" loccnumb="6" loccnume="14" expl="5. assertion"
      sum="0f43588571ae0a129654715199493383" proved="true"
682
      shape="assertionainfix =V8aConsc1aConsc2aNilIainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV11V8aSomeagetV9ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V8aSomeagetV9ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V10Aainfix &lt;=c0V11FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5aConsc1aNilIainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV12V5aSomeagetV6ainfix -ainfix +V0V12V2Iainfix &lt;=c0ainfix -ainfix +V0V12V2Aainfix =anthV12V5aSomeagetV6ainfix +V0V12Iainfix &lt;ainfix +V0V12V2Iainfix &lt;V12V7Aainfix &lt;=c0V12FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c3Aainfix &lt;=c0V2Aainfix =anthV13V4aSomeagetV3ainfix -ainfix +V0V13V2Iainfix &lt;=c0ainfix -ainfix +V0V13V2Aainfix =anthV13V4aSomeagetV3ainfix +V0V13Iainfix &lt;ainfix +V0V13V2Iainfix &lt;V13V1Aainfix &lt;=c0V13FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c3c0">
683 684 685
      <label name="expl:VC for harness2"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
686
       <result status="valid" time="0.08"/>
687 688
      </proof>
     </goal>
689
     <goal name="WP_parameter harness2.6"
690
      locfile="../vstte12_ring_buffer.mlw"
691 692
      loclnum="106" loccnumb="6" loccnume="14" expl="6. precondition"
      sum="231cef8a751dc622b6362b3fe0a3f89b" proved="true"
693
      shape="preconditionainfix &lt;V10V2Iainfix =V8aConsc1aConsc2aNilIainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV11V8aSomeagetV9ainfix -ainfix +V0V11V2Iainfix &lt;=c0ainfix -ainfix +V0V11V2Aainfix =anthV11V8aSomeagetV9ainfix +V0V11Iainfix &lt;ainfix +V0V11V2Iainfix &lt;V11V10Aainfix &lt;=c0V11FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5aConsc1aNilIainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV12V5aSomeagetV6ainfix -ainfix +V0V12V2Iainfix &lt;=c0ainfix -ainfix +V0V12V2Aainfix =anthV12V5aSomeagetV6ainfix +V0V12Iainfix &lt;ainfix +V0V12V2Iainfix &lt;V12V7Aainfix &lt;=c0V12FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c3Aainfix &lt;=c0V2Aainfix =anthV13V4aSomeagetV3ainfix -ainfix +V0V13V2Iainfix &lt;=c0ainfix -ainfix +V0V13V2Aainfix =anthV13V4aSomeagetV3ainfix +V0V13Iainfix &lt;ainfix +V0V13V2Iainfix &lt;V13V1Aainfix &lt;=c0V13FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c3c0">
694 695 696
      <label name="expl:VC for harness2"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
697
       <result status="valid" time="0.02"/>
698 699
      </proof>
     </goal>
700
     <goal name="WP_parameter harness2.7"
701
      locfile="../vstte12_ring_buffer.mlw"
702 703
      loclnum="106" loccnumb="6" loccnume="14" expl="7. assertion"
      sum="1034bc69add43293d45286558ac7560f" proved="true"
704
      shape="assertionainfix =V11aConsc1aConsc2aConsc3aNilIainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV14V11aSomeagetV12ainfix -ainfix +V0V14V2Iainfix &lt;=c0ainfix -ainfix +V0V14V2Aainfix =anthV14V11aSomeagetV12ainfix +V0V14Iainfix &lt;ainfix +V0V14V2Iainfix &lt;V14V13Aainfix &lt;=c0V14FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V10V2Iainfix =V8aConsc1aConsc2aNilIainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV15V8aSomeagetV9ainfix -ainfix +V0V15V2Iainfix &lt;=c0ainfix -ainfix +V0V15V2Aainfix =anthV15V8aSomeagetV9ainfix +V0V15Iainfix &lt;ainfix +V0V15V2Iainfix &lt;V15V10Aainfix &lt;=c0V15FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5aConsc1aNilIainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV16V5aSomeagetV6ainfix -ainfix +V0V16V2Iainfix &lt;=c0ainfix -ainfix +V0V16V2Aainfix =anthV16V5aSomeagetV6ainfix +V0V16Iainfix &lt;ainfix +V0V16V2Iainfix &lt;V16V7Aainfix &lt;=c0V16FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c3Aainfix &lt;=c0V2Aainfix =anthV17V4aSomeagetV3ainfix -ainfix +V0V17V2Iainfix &lt;=c0ainfix -ainfix +V0V17V2Aainfix =anthV17V4aSomeagetV3ainfix +V0V17Iainfix &lt;ainfix +V0V17V2Iainfix &lt;V17V1Aainfix &lt;=c0V17FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c3c0">
705 706 707
      <label name="expl:VC for harness2"/>
      <proof prover="1" timelimit="10"
       memlimit="1000">
708
       <result status="valid" time="0.04"/>
709 710
      </proof>
     </goal>
711
     <goal name="WP_parameter harness2.8"
712
      locfile="../vstte12_ring_buffer.mlw"
713 714
      loclnum="106" loccnumb="6" loccnume="14" expl="8. precondition"
      sum="a9240f5241cf097616f88ca0608d14bd" proved="true"
715
      shape="preconditionainfix &gt;V13c0Iainfix =V11aConsc1aConsc2aConsc3aNilIainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV14V11aSomeagetV12ainfix -ainfix +V0V14V2Iainfix &lt;=c0ainfix -ainfix +V0V14V2Aainfix =anthV14V11aSomeagetV12ainfix +V0V14Iainfix &lt;ainfix +V0V14V2Iainfix &lt;V14V13Aainfix &lt;=c0V14FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V10V2Iainfix =V8aConsc1aConsc2aNilIainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV15V8aSomeagetV9ainfix -ainfix +V0V15V2Iainfix &lt;=c0ainfix -ainfix +V0V15V2Aainfix =anthV15V8aSomeagetV9ainfix +V0V15Iainfix &lt;ainfix +V0V15V2Iainfix &lt;V15V10Aainfix &lt;=c0V15FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5aConsc1aNilIainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV16V5aSomeagetV6ainfix -ainfix +V0V16V2Iainfix &lt;=c0ainfix -ainfix +V0V16V2Aainfix =anthV16V5aSomeagetV6ainfix +V0V16Iainfix &lt;ainfix +V0V16V2Iainfix &lt;V16V7Aainfix &lt;=c0V16FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c3Aainfix &lt;=c0V2Aainfix =anthV17V4aSomeagetV3ainfix -ainfix +V0V17V2Iainfix &lt;=c0ainfix -ainfix +V0V17V2Aainfix =anthV17V4aSomeagetV3ainfix +V0V17Iainfix &lt;ainfix +V0V17V2Iainfix &lt;V17V1Aainfix &lt;=c0V17FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c3c0">
716 717 718
      <label name="expl:VC for harness2"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
719
       <result status="valid" time="0.00"/>
720 721
      </proof>
     </goal>
722
     <goal name="WP_parameter harness2.9"
723
      locfile="../vstte12_ring_buffer.mlw"
724 725
      loclnum="106" loccnumb="6" loccnume="14" expl="9. assertion"
      sum="7c3e6dc3fc5bc6fe91e82b869c27a680" proved="true"
726
      shape="assertionainfix =V17c1ICfaNilainfix =V14V19Aainfix =V17V18aConsVVV11Aainfix =V15ainfix -V13c1Aainfix =anthV20V14aSomeagetV12ainfix -ainfix +V16V20V2Iainfix &lt;=c0ainfix -ainfix +V16V20V2Aainfix =anthV20V14aSomeagetV12ainfix +V16V20Iainfix &lt;ainfix +V16V20V2Iainfix &lt;V20V15Aainfix &lt;=c0V20FAainfix =V15alengthV14Aainfix &lt;=V15V2Aainfix &lt;=c0V15Aainfix &lt;V16V2Aainfix &lt;=c0V16FFIainfix &gt;V13c0Iainfix =V11aConsc1aConsc2aConsc3aNilIainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV21V11aSomeagetV12ainfix -ainfix +V0V21V2Iainfix &lt;=c0ainfix -ainfix +V0V21V2Aainfix =anthV21V11aSomeagetV12ainfix +V0V21Iainfix &lt;ainfix +V0V21V2Iainfix &lt;V21V13Aainfix &lt;=c0V21FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V10V2Iainfix =V8aConsc1aConsc2aNilIainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV22V8aSomeagetV9ainfix -ainfix +V0V22V2Iainfix &lt;=c0ainfix -ainfix +V0V22V2Aainfix =anthV22V8aSomeagetV9ainfix +V0V22Iainfix &lt;ainfix +V0V22V2Iainfix &lt;V22V10Aainfix &lt;=c0V22FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5aConsc1aNilIainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV23V5aSomeagetV6ainfix -ainfix +V0V23V2Iainfix &lt;=c0ainfix -ainfix +V0V23V2Aainfix =anthV23V5aSomeagetV6ainfix +V0V23Iainfix &lt;ainfix +V0V23V2Iainfix &lt;V23V7Aainfix &lt;=c0V23FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c3Aainfix &lt;=c0V2Aainfix =anthV24V4aSomeagetV3ainfix -ainfix +V0V24V2Iainfix &lt;=c0ainfix -ainfix +V0V24V2Aainfix =anthV24V4aSomeagetV3ainfix +V0V24Iainfix &lt;ainfix +V0V24V2Iainfix &lt;V24V1Aainfix &lt;=c0V24FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c3c0">
727 728 729
      <label name="expl:VC for harness2"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
730
       <result status="valid" time="0.04"/>
731 732
      </proof>
     </goal>
733
     <goal name="WP_parameter harness2.10"
734
      locfile="../vstte12_ring_buffer.mlw"
735 736
      loclnum="106" loccnumb="6" loccnume="14" expl="10. assertion"
      sum="7aceecc5a47d534a8eaacd55ad199191" proved="true"
737
      shape="assertionainfix =V14aConsc2aConsc3aNilIainfix =V17c1ICfaNilainfix =V14V19Aainfix =V17V18aConsVVV11Aainfix =V15ainfix -V13c1Aainfix =anthV20V14aSomeagetV12ainfix -ainfix +V16V20V2Iainfix &lt;=c0ainfix -ainfix +V16V20V2Aainfix =anthV20V14aSomeagetV12ainfix +V16V20Iainfix &lt;ainfix +V16V20V2Iainfix &lt;V20V15Aainfix &lt;=c0V20FAainfix =V15alengthV14Aainfix &lt;=V15V2Aainfix &lt;=c0V15Aainfix &lt;V16V2Aainfix &lt;=c0V16FFIainfix &gt;V13c0Iainfix =V11aConsc1aConsc2aConsc3aNilIainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV21V11aSomeagetV12ainfix -ainfix +V0V21V2Iainfix &lt;=c0ainfix -ainfix +V0V21V2Aainfix =anthV21V11aSomeagetV12ainfix +V0V21Iainfix &lt;ainfix +V0V21V2Iainfix &lt;V21V13Aainfix &lt;=c0V21FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V10V2Iainfix =V8aConsc1aConsc2aNilIainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV22V8aSomeagetV9ainfix -ainfix +V0V22V2Iainfix &lt;=c0ainfix -ainfix +V0V22V2Aainfix =anthV22V8aSomeagetV9ainfix +V0V22Iainfix &lt;ainfix +V0V22V2Iainfix &lt;V22V10Aainfix &lt;=c0V22FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5aConsc1aNilIainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV23V5aSomeagetV6ainfix -ainfix +V0V23V2Iainfix &lt;=c0ainfix -ainfix +V0V23V2Aainfix =anthV23V5aSomeagetV6ainfix +V0V23Iainfix &lt;ainfix +V0V23V2Iainfix &lt;V23V7Aainfix &lt;=c0V23FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c3Aainfix &lt;=c0V2Aainfix =anthV24V4aSomeagetV3ainfix -ainfix +V0V24V2Iainfix &lt;=c0ainfix -ainfix +V0V24V2Aainfix =anthV24V4aSomeagetV3ainfix +V0V24Iainfix &lt;ainfix +V0V24V2Iainfix &lt;V24V1Aainfix &lt;=c0V24FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c3c0">
738 739 740
      <label name="expl:VC for harness2"/>
      <proof prover="1" timelimit="10"
       memlimit="0">
741
       <result status="valid" time="0.06"/>
742 743
      </proof>
     </goal>
744
     <goal name="WP_parameter harness2.11"
745
      locfile="../vstte12_ring_buffer.mlw"
746 747
      loclnum="106" loccnumb="6" loccnume="14" expl="11. precondition"
      sum="e4f23b94c93febd783c3fd2ba55bd7b7" proved="true"
748
      shape="preconditionainfix &lt;V15V2Iainfix =V14aConsc2aConsc3aNilIainfix =V17c1ICfaNilainfix =V14V19Aainfix =V17V18aConsVVV11Aainfix =V15ainfix -V13c1Aainfix =anthV20V14aSomeagetV12ainfix -ainfix +V16V20V2Iainfix &lt;=c0ainfix -ainfix +V16V20V2Aainfix =anthV20V14aSomeagetV12ainfix +V16V20Iainfix &lt;ainfix +V16V20V2Iainfix &lt;V20V15Aainfix &lt;=c0V20FAainfix =V15alengthV14Aainfix &lt;=V15V2Aainfix &lt;=c0V15Aainfix &lt;V16V2Aainfix &lt;=c0V16FFIainfix &gt;V13c0Iainfix =V11aConsc1aConsc2aConsc3aNilIainfix =V11ainfix ++V8aConsc3aNilAainfix =V13ainfix +V10c1Aainfix &lt;=c0V2Aainfix =anthV21V11aSomeagetV12ainfix -ainfix +V0V21V2Iainfix &lt;=c0ainfix -ainfix +V0V21V2Aainfix =anthV21V11aSomeagetV12ainfix +V0V21Iainfix &lt;ainfix +V0V21V2Iainfix &lt;V21V13Aainfix &lt;=c0V21FAainfix =V13alengthV11Aainfix &lt;=V13V2Aainfix &lt;=c0V13Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V10V2Iainfix =V8aConsc1aConsc2aNilIainfix =V8ainfix ++V5aConsc2aNilAainfix =V10ainfix +V7c1Aainfix &lt;=c0V2Aainfix =anthV22V8aSomeagetV9ainfix -ainfix +V0V22V2Iainfix &lt;=c0ainfix -ainfix +V0V22V2Aainfix =anthV22V8aSomeagetV9ainfix +V0V22Iainfix &lt;ainfix +V0V22V2Iainfix &lt;V22V10Aainfix &lt;=c0V22FAainfix =V10alengthV8Aainfix &lt;=V10V2Aainfix &lt;=c0V10Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V7V2Iainfix =V5aConsc1aNilIainfix =V5ainfix ++V4aConsc1aNilAainfix =V7ainfix +V1c1Aainfix &lt;=c0V2Aainfix =anthV23V5aSomeagetV6ainfix -ainfix +V0V23V2Iainfix &lt;=c0ainfix -ainfix +V0V23V2Aainfix =anthV23V5aSomeagetV6ainfix +V0V23Iainfix &lt;ainfix +V0V23V2Iainfix &lt;V23V7Aainfix &lt;=c0V23FAainfix =V7alengthV5Aainfix &lt;=V7V2Aainfix &lt;=c0V7Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &lt;V1V2Iainfix =V4aNilAainfix =V2c3Aainfix &lt;=c0V2Aainfix =anthV24V4aSomeagetV3ainfix -ainfix +V0V24V2Iainfix &lt;=c0ainfix -ainfix +V0V24V2Aainfix =anthV24V4aSomeagetV3ainfix +V0V24Iainfix &lt;ainfix +V0V24V2Iainfix &lt;V24V1Aainfix &lt;=c0V24FAainfix =V1alengthV4Aainfix &lt;=V1V2Aainfix &lt;=c0V1Aainfix &lt;V0V2Aainfix &lt;=c0V0FIainfix &gt;c3c0">
749 750 751
      <label name="expl:VC for harness2"/>
      <proof prover="0" timelimit="10"
       memlimit="0">
MARCHE Claude's avatar
MARCHE Claude committed
752
       <result status="valid" time="0.02"/>
753 754
      </proof>
     </goal>
755
     <goal name="WP_parameter harness2.12"
756
      locfile="../vstte12_ring_buffer.mlw"
757 758
      loclnum="106" loccnumb="6" loccnume="14" expl="12. assertion"
      sum="957be6c1bd7263484406914bf10cb8d1" proved="true"