About the Execution of ITS-Tools for S_QuasiCertifProtocol-PT-02
Execution Summary | |||||
Max Memory Used (MB) |
Time wait (ms) | CPU Usage (ms) | I/O Wait (ms) | Computed Result | Execution Status |
345.130 | 6482.00 | 13402.00 | 256.90 | TFFFFFFTFTFFFTFF | normal |
Execution Chart
We display below the execution chart for this examination (boot time has been removed).
Trace from the execution
Waiting for the VM to be ready (probing ssh)
...................
=====================================================================
Generated by BenchKit 2-2979
Executing tool itstools
Input is S_QuasiCertifProtocol-PT-02, examination is CTLFireability
Time confinement is 3600 seconds
Memory confinement is 16384 MBytes
Number of cores is 4
Run identifier is r181kn-smll-146444110300076
=====================================================================
--------------------
content from stdout:
=== Data for post analysis generated by BenchKit (invocation template)
The expected result is a vector of booleans
BOOL_VECTOR
here is the order used to build the result vector(from text file)
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-0
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-1
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-10
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-11
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-12
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-13
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-14
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-15
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-2
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-3
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-4
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-5
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-6
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-7
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-8
FORMULA_NAME QuasiCertifProtocol-COL-02-CTLFireability-9
=== Now, execution of the tool begins
BK_START 1464457514062
its-ctl command run as :
/home/mcc/BenchKit/eclipse/plugins/fr.lip6.move.gal.itstools.binaries_1.0.0.201605191313/bin/its-ctl-linux64 --gc-threshold 2000000 --quiet -i /home/mcc/execution/CTLFireability.gal -t CGAL -ctl /home/mcc/execution/CTLFireability.ctl
No direction supplied, using forward translation only.
Parsed 16 CTL formulae.
Model ,|S| ,Time ,Mem(kb) ,fin. SDD ,fin. DDD ,peak SDD ,peak DDD ,SDD Hom ,SDD cache peak ,DDD Hom ,DDD cachepeak ,SHom cache
reachable,1029,0.075527,5824,2,2408,5,6946,6,0,365,5498,0
Converting to forward existential form...Done !
original formula: AX(EG(!(((((n6_2>=1 * n6_1>=1) * n6_0>=1) * a5>=1) * (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1))))))
=> equivalent forward existential formula: [(EY(Init) * !(EG(!(((((n6_2>=1 * n6_1>=1) * n6_0>=1) * a5>=1) * (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1)))))))] = FALSE
Checking (exact) 0 :[(EY(Init) * !(EG(!(((((n6_2>=1 * n6_1>=1) * n6_0>=1) * a5>=1) * (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1)))))))] = FALSE
Checking (exact) 0 :(EY(Init) * !(EG(!(((((n6_2>=1 * n6_1>=1) * n6_0>=1) * a5>=1) * (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1)))))))
Checking (exact) 1 :!(EG(!(((((n6_2>=1 * n6_1>=1) * n6_0>=1) * a5>=1) * (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1))))))
Checking (exact) 1 :EG(!(((((n6_2>=1 * n6_1>=1) * n6_0>=1) * a5>=1) * (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1)))))
Fast SCC detection found none.
(forward)formula 0,1,0.715323,22340,1,0,179,68547,161,64,2480,51842,160
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-0 TRUE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is TRUE !
***************************************
original formula: ((EF((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1))) * !(((!(a4>=1) * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + a5>=1)) + AF((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))))) * E(((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + ((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) * a2>=1)) U AF(a4>=1)))
=> equivalent forward existential formula: [(FwdU((Init * (E(TRUE U (((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1))) * !(((!(a4>=1) * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + a5>=1)) + !(EG(!((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))))),((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + ((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) * a2>=1))) * !(EG(!(a4>=1))))] != FALSE
Checking (exact) 0 :[(FwdU((Init * (E(TRUE U (((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1))) * !(((!(a4>=1) * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + a5>=1)) + !(EG(!((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))))),((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + ((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) * a2>=1))) * !(EG(!(a4>=1))))] != FALSE
Checking (exact) 0 :(FwdU((Init * (E(TRUE U (((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1))) * !(((!(a4>=1) * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + a5>=1)) + !(EG(!((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))))),((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + ((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) * a2>=1))) * !(EG(!(a4>=1))))
Checking (exact) 1 :!(EG(!(a4>=1)))
Checking (exact) 1 :EG(!(a4>=1))
Checking (exact) 1 :FwdU((Init * (E(TRUE U (((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1))) * !(((!(a4>=1) * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + a5>=1)) + !(EG(!((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))))),((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + ((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) * a2>=1)))
Checking (exact) 1 :(Init * (E(TRUE U (((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1))) * !(((!(a4>=1) * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + a5>=1)) + !(EG(!((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))))))))
Checking (exact) 1 :(E(TRUE U (((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1))) * !(((!(a4>=1) * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + a5>=1)) + !(EG(!((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))))
Checking (exact) 1 :!(((!(a4>=1) * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + a5>=1)) + !(EG(!((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))))))
Checking (exact) 1 :((!(a4>=1) * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + a5>=1)) + !(EG(!((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))
Checking (exact) 1 :!(EG(!((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))))
Checking (exact) 1 :EG(!((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))
Checking (exact) 1 :E(TRUE U (((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)))
Checking (exact) 1 :Init
Hit Full ! (commute/partial/dont) 20/0/36
(forward)formula 1,0,1.01039,29412,1,0,294,115717,238,131,2556,96380,291
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-1 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: (EF((AG((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))) * (((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1)))) + (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1)))
=> equivalent forward existential formula: ([((FwdU(Init,TRUE) * (((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1))) * !(E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))))] != FALSE + [(Init * (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1)))] != FALSE)
Checking (exact) 0 :([((FwdU(Init,TRUE) * (((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1))) * !(E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))))] != FALSE + [(Init * (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1)))] != FALSE)
Checking (exact) 0 :[((FwdU(Init,TRUE) * (((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1))) * !(E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))))] != FALSE
Checking (exact) 0 :((FwdU(Init,TRUE) * (((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1))) * !(E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))))
Checking (exact) 1 :!(E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))
Checking (exact) 1 :E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))
Checking (exact) 0 :[(Init * (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1)))] != FALSE
Checking (exact) 0 :(Init * (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1)))
(forward)formula 2,0,1.01896,29732,1,0,296,115807,271,131,2600,96740,295
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-2 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: EG(!(((((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)) + a2>=1) * a2>=1) * (((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1)) * (((n6_2>=1 * n6_1>=1) * n6_0>=1) * a5>=1)) * (((s4_1>=1 + s4_0>=1) + s4_2>=1) * (((n2_0>=1 * n2_1>=1) * n2_2>=1) * a1>=1))))))
=> equivalent forward existential formula: [FwdG(Init,!(((((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)) + a2>=1) * a2>=1) * (((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1)) * (((n6_2>=1 * n6_1>=1) * n6_0>=1) * a5>=1)) * (((s4_1>=1 + s4_0>=1) + s4_2>=1) * (((n2_0>=1 * n2_1>=1) * n2_2>=1) * a1>=1))))))] != FALSE
Checking (exact) 0 :[FwdG(Init,!(((((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)) + a2>=1) * a2>=1) * (((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1)) * (((n6_2>=1 * n6_1>=1) * n6_0>=1) * a5>=1)) * (((s4_1>=1 + s4_0>=1) + s4_2>=1) * (((n2_0>=1 * n2_1>=1) * n2_2>=1) * a1>=1))))))] != FALSE
Checking (exact) 0 :FwdG(Init,!(((((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)) + a2>=1) * a2>=1) * (((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1)) * (((n6_2>=1 * n6_1>=1) * n6_0>=1) * a5>=1)) * (((s4_1>=1 + s4_0>=1) + s4_2>=1) * (((n2_0>=1 * n2_1>=1) * n2_2>=1) * a1>=1))))))
Checking (exact) 1 :Init
(forward)formula 3,1,1.03871,30060,1,0,296,116180,313,132,2734,99417,298
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-3 TRUE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is TRUE !
***************************************
original formula: AF(AG(((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)) + ((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)) + (((n4_0>=1 * n4_1>=1) * n4_2>=1) * a3>=1)))))
=> equivalent forward existential formula: [FwdG(Init,!(!(E(TRUE U !(((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)) + ((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)) + (((n4_0>=1 * n4_1>=1) * n4_2>=1) * a3>=1))))))))] = FALSE
Checking (exact) 0 :[FwdG(Init,!(!(E(TRUE U !(((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)) + ((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)) + (((n4_0>=1 * n4_1>=1) * n4_2>=1) * a3>=1))))))))] = FALSE
Checking (exact) 0 :FwdG(Init,!(!(E(TRUE U !(((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)) + ((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)) + (((n4_0>=1 * n4_1>=1) * n4_2>=1) * a3>=1))))))))
Checking (exact) 1 :Init
Checking (exact) 1 :!(!(E(TRUE U !(((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)) + ((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)) + (((n4_0>=1 * n4_1>=1) * n4_2>=1) * a3>=1)))))))
Checking (exact) 1 :E(TRUE U !(((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)) + ((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)) + (((n4_0>=1 * n4_1>=1) * n4_2>=1) * a3>=1)))))
(forward)formula 4,0,1.04677,30320,1,0,297,116311,334,132,2765,99755,301
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-4 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: (A(!(((((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1)) * (((s3_2>=1 * n5_2>=1) + (s3_1>=1 * n5_1>=1)) + (s3_0>=1 * n5_0>=1)))) U (((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))) + AF((EG((((malicious_reservoir>=1 * s4_2>=1) + (s4_0>=1 * malicious_reservoir>=1)) + (s4_1>=1 * malicious_reservoir>=1))) * AX((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1))))))
=> equivalent forward existential formula: [FwdG((Init * !(!((E(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))) U (!(!(((((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1)) * (((s3_2>=1 * n5_2>=1) + (s3_1>=1 * n5_1>=1)) + (s3_0>=1 * n5_0>=1))))) * !((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))))) + EG(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1)))))))),!((EG((((malicious_reservoir>=1 * s4_2>=1) + (s4_0>=1 * malicious_reservoir>=1)) + (s4_1>=1 * malicious_reservoir>=1))) * !(EX(!((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1))))))))] = FALSE
Checking (exact) 0 :[FwdG((Init * !(!((E(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))) U (!(!(((((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1)) * (((s3_2>=1 * n5_2>=1) + (s3_1>=1 * n5_1>=1)) + (s3_0>=1 * n5_0>=1))))) * !((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))))) + EG(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1)))))))),!((EG((((malicious_reservoir>=1 * s4_2>=1) + (s4_0>=1 * malicious_reservoir>=1)) + (s4_1>=1 * malicious_reservoir>=1))) * !(EX(!((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1))))))))] = FALSE
Checking (exact) 0 :FwdG((Init * !(!((E(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))) U (!(!(((((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1)) * (((s3_2>=1 * n5_2>=1) + (s3_1>=1 * n5_1>=1)) + (s3_0>=1 * n5_0>=1))))) * !((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))))) + EG(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1)))))))),!((EG((((malicious_reservoir>=1 * s4_2>=1) + (s4_0>=1 * malicious_reservoir>=1)) + (s4_1>=1 * malicious_reservoir>=1))) * !(EX(!((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1))))))))
Checking (exact) 1 :(Init * !(!((E(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))) U (!(!(((((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1)) * (((s3_2>=1 * n5_2>=1) + (s3_1>=1 * n5_1>=1)) + (s3_0>=1 * n5_0>=1))))) * !((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))))) + EG(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))))))))
Checking (exact) 1 :!(!((E(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))) U (!(!(((((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1)) * (((s3_2>=1 * n5_2>=1) + (s3_1>=1 * n5_1>=1)) + (s3_0>=1 * n5_0>=1))))) * !((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))))) + EG(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1)))))))
Checking (exact) 1 :(E(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))) U (!(!(((((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1)) * (((s3_2>=1 * n5_2>=1) + (s3_1>=1 * n5_1>=1)) + (s3_0>=1 * n5_0>=1))))) * !((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))))) + EG(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1)))))
Checking (exact) 1 :E(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))) U (!(!(((((s5_0>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s5_1>=1)) + (s5_2>=1 * malicious_reservoir>=1)) * (((s3_2>=1 * n5_2>=1) + (s3_1>=1 * n5_1>=1)) + (s3_0>=1 * n5_0>=1))))) * !((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1)))))
Checking (exact) 1 :EG(!((((s2_2>=1 * n3_2>=1) + (s2_1>=1 * n3_1>=1)) + (s2_0>=1 * n3_0>=1))))
Checking (exact) 1 :Init
Checking (exact) 1 :!((EG((((malicious_reservoir>=1 * s4_2>=1) + (s4_0>=1 * malicious_reservoir>=1)) + (s4_1>=1 * malicious_reservoir>=1))) * !(EX(!((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)))))))
Checking (exact) 1 :(EG((((malicious_reservoir>=1 * s4_2>=1) + (s4_0>=1 * malicious_reservoir>=1)) + (s4_1>=1 * malicious_reservoir>=1))) * !(EX(!((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1))))))
Checking (exact) 1 :!(EX(!((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)))))
Checking (exact) 1 :EX(!((((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1))))
Checking (exact) 1 :EG((((malicious_reservoir>=1 * s4_2>=1) + (s4_0>=1 * malicious_reservoir>=1)) + (s4_1>=1 * malicious_reservoir>=1)))
(forward)formula 5,0,1.11292,31496,1,0,391,120274,376,187,2796,105884,414
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-5 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: AF(AG(AF(a1>=1)))
=> equivalent forward existential formula: [FwdG(Init,!(!(E(TRUE U !(!(EG(!(a1>=1))))))))] = FALSE
Checking (exact) 0 :[FwdG(Init,!(!(E(TRUE U !(!(EG(!(a1>=1))))))))] = FALSE
Checking (exact) 0 :FwdG(Init,!(!(E(TRUE U !(!(EG(!(a1>=1))))))))
Checking (exact) 1 :Init
Checking (exact) 1 :!(!(E(TRUE U !(!(EG(!(a1>=1)))))))
Checking (exact) 1 :E(TRUE U !(!(EG(!(a1>=1)))))
Checking (exact) 1 :!(!(EG(!(a1>=1))))
Checking (exact) 1 :EG(!(a1>=1))
(forward)formula 6,0,1.12589,31504,1,0,458,122590,380,226,2796,108364,495
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-6 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: ((!((AF(a5>=1) + EX(a3>=1))) + A((a1>=1 + ((s6_1>=1 + s6_0>=1) + s6_2>=1)) U ((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) + (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))) + A(AG(a2>=1) U ((s4_1>=1 + s4_0>=1) + s4_2>=1)))
=> equivalent forward existential formula: (([FwdG((Init * !(EX(a3>=1))),!(a5>=1))] != FALSE + [((Init * !(EG(!(((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) + (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))) * !(E(!(((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) + (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))) U (!((a1>=1 + ((s6_1>=1 + s6_0>=1) + s6_2>=1))) * !(((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) + (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))))] != FALSE) + [((Init * !(EG(!(((s4_1>=1 + s4_0>=1) + s4_2>=1))))) * !(E(!(((s4_1>=1 + s4_0>=1) + s4_2>=1)) U (!(!(E(TRUE U !(a2>=1)))) * !(((s4_1>=1 + s4_0>=1) + s4_2>=1))))))] != FALSE)
Checking (exact) 0 :(([FwdG((Init * !(EX(a3>=1))),!(a5>=1))] != FALSE + [((Init * !(EG(!(((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) + (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))) * !(E(!(((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) + (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))) U (!((a1>=1 + ((s6_1>=1 + s6_0>=1) + s6_2>=1))) * !(((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) + (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))))] != FALSE) + [((Init * !(EG(!(((s4_1>=1 + s4_0>=1) + s4_2>=1))))) * !(E(!(((s4_1>=1 + s4_0>=1) + s4_2>=1)) U (!(!(E(TRUE U !(a2>=1)))) * !(((s4_1>=1 + s4_0>=1) + s4_2>=1))))))] != FALSE)
Checking (exact) 0 :([FwdG((Init * !(EX(a3>=1))),!(a5>=1))] != FALSE + [((Init * !(EG(!(((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) + (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))) * !(E(!(((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) + (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))) U (!((a1>=1 + ((s6_1>=1 + s6_0>=1) + s6_2>=1))) * !(((((malicious_reservoir>=1 * c1_0>=1) + (malicious_reservoir>=1 * c1_2>=1)) + (c1_1>=1 * malicious_reservoir>=1)) + (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))))))] != FALSE)
Checking (exact) 0 :[FwdG((Init * !(EX(a3>=1))),!(a5>=1))] != FALSE
Checking (exact) 0 :FwdG((Init * !(EX(a3>=1))),!(a5>=1))
Checking (exact) 1 :(Init * !(EX(a3>=1)))
Checking (exact) 1 :!(EX(a3>=1))
Checking (exact) 1 :EX(a3>=1)
Checking (exact) 1 :Init
Hit Full ! (commute/partial/dont) 53/0/3
(forward)formula 7,1,1.12803,31524,1,0,467,122837,387,233,2810,108694,503
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-7 TRUE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is TRUE !
***************************************
original formula: A((EG(a5>=1) * EF(a5>=1)) U AF((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))
=> equivalent forward existential formula: [((Init * !(EG(!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))))))) * !(E(!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)))))) U (!((EG(a5>=1) * E(TRUE U a5>=1))) * !(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))))))))] != FALSE
Checking (exact) 0 :[((Init * !(EG(!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))))))) * !(E(!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)))))) U (!((EG(a5>=1) * E(TRUE U a5>=1))) * !(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))))))))] != FALSE
Checking (exact) 0 :((Init * !(EG(!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))))))) * !(E(!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)))))) U (!((EG(a5>=1) * E(TRUE U a5>=1))) * !(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))))))))
Checking (exact) 1 :!(E(!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)))))) U (!((EG(a5>=1) * E(TRUE U a5>=1))) * !(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)))))))))
Checking (exact) 1 :E(!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)))))) U (!((EG(a5>=1) * E(TRUE U a5>=1))) * !(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))))))
Checking (exact) 1 :!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))))
Checking (exact) 1 :EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))
Checking (exact) 1 :(!((EG(a5>=1) * E(TRUE U a5>=1))) * !(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)))))))
Checking (exact) 1 :!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))))
Checking (exact) 1 :EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))
Checking (exact) 1 :!((EG(a5>=1) * E(TRUE U a5>=1)))
Checking (exact) 1 :(EG(a5>=1) * E(TRUE U a5>=1))
Checking (exact) 1 :E(TRUE U a5>=1)
Checking (exact) 1 :EG(a5>=1)
Checking (exact) 1 :(Init * !(EG(!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)))))))))
Checking (exact) 1 :!(EG(!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))))))
Checking (exact) 1 :EG(!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)))))))
Checking (exact) 1 :!(!(EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))))
Checking (exact) 1 :EG(!((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))
Checking (exact) 1 :Init
(forward)formula 8,0,1.18573,33672,1,0,518,133019,397,288,2817,123578,601
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-8 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: EF(AF(AG((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))
=> equivalent forward existential formula: [(FwdU(Init,TRUE) * !(EG(!(!(E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))))))] != FALSE
Checking (exact) 0 :[(FwdU(Init,TRUE) * !(EG(!(!(E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))))))] != FALSE
Checking (exact) 0 :(FwdU(Init,TRUE) * !(EG(!(!(E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))))))
Checking (exact) 1 :!(EG(!(!(E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))))))
Checking (exact) 1 :EG(!(!(E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))))
Checking (exact) 1 :!(!(E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))))
Checking (exact) 1 :E(TRUE U !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))
(forward)formula 9,0,1.18955,33672,1,0,518,133019,397,288,2817,123578,601
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-9 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: AF((A((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1)) U (((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))) * (((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1))))
=> equivalent forward existential formula: [FwdG(Init,!((!((E(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))) U (!((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1))) * !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))) + EG(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))) * (((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)))))] = FALSE
Checking (exact) 0 :[FwdG(Init,!((!((E(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))) U (!((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1))) * !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))) + EG(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))) * (((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)))))] = FALSE
Checking (exact) 0 :FwdG(Init,!((!((E(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))) U (!((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1))) * !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))) + EG(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))) * (((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)))))
Checking (exact) 1 :Init
Checking (exact) 1 :!((!((E(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))) U (!((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1))) * !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))) + EG(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))) * (((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1))))
Checking (exact) 1 :(!((E(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))) U (!((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1))) * !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))) + EG(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))) * (((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1)))
Checking (exact) 1 :(((malicious_reservoir>=1 * Sstart_1>=1) + (malicious_reservoir>=1 * Sstart_2>=1)) + (malicious_reservoir>=1 * Sstart_0>=1))
Checking (exact) 1 :!((E(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))) U (!((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1))) * !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))) + EG(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))))
Checking (exact) 1 :(E(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))) U (!((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1))) * !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))) + EG(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))
Checking (exact) 1 :E(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))) U (!((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1))) * !((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)))))
Checking (exact) 1 :EG(!((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1))))
(forward)formula 10,0,1.25693,35284,1,0,582,142117,432,332,2865,134271,685
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-10 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: ((EF(!(((((n2_0>=1 * n2_1>=1) * n2_2>=1) * a1>=1) + (((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1))))) * !(((!(Astart>=1) + (((n2_0>=1 * n2_1>=1) * n2_2>=1) * a1>=1)) * (!((((s3_2>=1 * n5_2>=1) + (s3_1>=1 * n5_1>=1)) + (s3_0>=1 * n5_0>=1))) + ((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1)) * a2>=1))))) * AX(EF(((((s2_2>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s2_0>=1)) + (malicious_reservoir>=1 * s2_1>=1)) + a2>=1))))
=> equivalent forward existential formula: (([(Init * !(E(TRUE U !(((((n2_0>=1 * n2_1>=1) * n2_2>=1) * a1>=1) + (((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)))))))] = FALSE * [(Init * ((!(Astart>=1) + (((n2_0>=1 * n2_1>=1) * n2_2>=1) * a1>=1)) * (!((((s3_2>=1 * n5_2>=1) + (s3_1>=1 * n5_1>=1)) + (s3_0>=1 * n5_0>=1))) + ((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1)) * a2>=1))))] = FALSE) * [(EY(Init) * !(E(TRUE U ((((s2_2>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s2_0>=1)) + (malicious_reservoir>=1 * s2_1>=1)) + a2>=1))))] = FALSE)
Checking (exact) 0 :(([(Init * !(E(TRUE U !(((((n2_0>=1 * n2_1>=1) * n2_2>=1) * a1>=1) + (((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)))))))] = FALSE * [(Init * ((!(Astart>=1) + (((n2_0>=1 * n2_1>=1) * n2_2>=1) * a1>=1)) * (!((((s3_2>=1 * n5_2>=1) + (s3_1>=1 * n5_1>=1)) + (s3_0>=1 * n5_0>=1))) + ((((((n9_2_2>=1 * n9_1_2>=1) * n9_0_2>=1) * c1_2>=1) + (((n9_2_1>=1 * n9_1_1>=1) * n9_0_1>=1) * c1_1>=1)) + (((n9_2_0>=1 * n9_1_0>=1) * n9_0_0>=1) * c1_0>=1)) * a2>=1))))] = FALSE) * [(EY(Init) * !(E(TRUE U ((((s2_2>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s2_0>=1)) + (malicious_reservoir>=1 * s2_1>=1)) + a2>=1))))] = FALSE)
Checking (exact) 1 :[(EY(Init) * !(E(TRUE U ((((s2_2>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s2_0>=1)) + (malicious_reservoir>=1 * s2_1>=1)) + a2>=1))))] = FALSE
Checking (exact) 0 :(EY(Init) * !(E(TRUE U ((((s2_2>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s2_0>=1)) + (malicious_reservoir>=1 * s2_1>=1)) + a2>=1))))
Checking (exact) 1 :!(E(TRUE U ((((s2_2>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s2_0>=1)) + (malicious_reservoir>=1 * s2_1>=1)) + a2>=1)))
Checking (exact) 1 :E(TRUE U ((((s2_2>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s2_0>=1)) + (malicious_reservoir>=1 * s2_1>=1)) + a2>=1))
Checking (exact) 1 :EY(Init)
Checking (exact) 1 :Init
(forward)formula 11,0,1.26287,35548,1,0,590,142667,441,336,2875,134940,694
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-11 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: EX(E(!(a2>=1) U ((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)) * (((s2_2>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s2_0>=1)) + (malicious_reservoir>=1 * s2_1>=1)))))
=> equivalent forward existential formula: [(FwdU(EY(Init),!(a2>=1)) * ((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)) * (((s2_2>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s2_0>=1)) + (malicious_reservoir>=1 * s2_1>=1))))] != FALSE
Checking (exact) 0 :[(FwdU(EY(Init),!(a2>=1)) * ((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)) * (((s2_2>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s2_0>=1)) + (malicious_reservoir>=1 * s2_1>=1))))] != FALSE
Checking (exact) 0 :(FwdU(EY(Init),!(a2>=1)) * ((((((n7_0_1>=1 * Cstart_1>=1) * n7_1_1>=1) * n7_2_1>=1) + (((n7_0_0>=1 * n7_2_0>=1) * n7_1_0>=1) * Cstart_0>=1)) + (((n7_0_2>=1 * Cstart_2>=1) * n7_1_2>=1) * n7_2_2>=1)) * (((s2_2>=1 * malicious_reservoir>=1) + (malicious_reservoir>=1 * s2_0>=1)) + (malicious_reservoir>=1 * s2_1>=1))))
(forward)formula 12,0,1.26565,35560,1,0,590,142685,443,336,2877,134940,694
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-12 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: EG(EX(EF((((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))))
=> equivalent forward existential formula: [FwdG(Init,EX(E(TRUE U (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))))] != FALSE
Checking (exact) 0 :[FwdG(Init,EX(E(TRUE U (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))))] != FALSE
Checking (exact) 0 :FwdG(Init,EX(E(TRUE U (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))))
Checking (exact) 1 :Init
Checking (exact) 1 :EX(E(TRUE U (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1))))
Checking (exact) 1 :E(TRUE U (((((n8_0_2>=1 * n8_0_0>=1) * n8_0_1>=1) * s5_0>=1) + (((n8_2_2>=1 * n8_2_0>=1) * n8_2_1>=1) * s5_2>=1)) + (((n8_1_1>=1 * n8_1_2>=1) * s5_1>=1) * n8_1_0>=1)))
dead was empty
(forward)formula 13,0,1.29455,36524,1,0,597,148491,443,340,2882,139574,704
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-13 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: AG(AF((a2>=1 * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1))))))
=> equivalent forward existential formula: [FwdG(FwdU(Init,TRUE),!((a2>=1 * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1))))))] = FALSE
Checking (exact) 0 :[FwdG(FwdU(Init,TRUE),!((a2>=1 * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1))))))] = FALSE
Checking (exact) 0 :FwdG(FwdU(Init,TRUE),!((a2>=1 * ((((s6_1>=1 * malicious_reservoir>=1) + (s6_0>=1 * malicious_reservoir>=1)) + (s6_2>=1 * malicious_reservoir>=1)) + (((Sstart_2>=1 * n1_2>=1) + (n1_1>=1 * Sstart_1>=1)) + (Sstart_0>=1 * n1_0>=1))))))
Checking (exact) 1 :FwdU(Init,TRUE)
Checking (exact) 1 :Init
(forward)formula 14,0,1.29789,36924,1,0,597,148491,447,340,2889,139654,707
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-14 FALSE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is FALSE !
***************************************
original formula: EG(!(a2>=1))
=> equivalent forward existential formula: [FwdG(Init,!(a2>=1))] != FALSE
Checking (exact) 0 :[FwdG(Init,!(a2>=1))] != FALSE
Checking (exact) 0 :FwdG(Init,!(a2>=1))
Checking (exact) 1 :Init
Hit Full ! (commute/partial/dont) 53/0/3
(forward)formula 15,1,1.30059,36924,1,0,600,148561,454,343,2932,139798,710
FORMULA QuasiCertifProtocol-COL-02-CTLFireability-15 TRUE TECHNIQUES DECISION_DIAGRAMS TOPOLOGICAL
Formula is TRUE !
***************************************
BK_STOP 1464457520544
--------------------
content from stderr:
+ export BINDIR=/home/mcc/BenchKit/
+ BINDIR=/home/mcc/BenchKit/
++ pwd
+ export MODEL=/home/mcc/execution
+ MODEL=/home/mcc/execution
+ [[ CTLFireability = StateSpace ]]
+ /home/mcc/BenchKit//runeclipse.sh /home/mcc/execution CTLFireability -its
+ ulimit -s 65536
+ java -Dosgi.requiredJavaVersion=1.6 -XX:MaxPermSize=512m -Xss8m -Xms40m -Xmx8192m -Declipse.pde.launch=true -Dfile.encoding=UTF-8 -classpath /home/mcc/BenchKit//eclipse/plugins/org.eclipse.equinox.launcher_1.3.100.v20150511-1540.jar org.eclipse.equinox.launcher.Main -application fr.lip6.move.gal.application.pnmcc -data /home/mcc/BenchKit//workspace -os linux -ws gtk -arch x86_64 -nl en_US -consoleLog -pnfolder /home/mcc/execution -examination CTLFireability -z3path /home/mcc/BenchKit//z3/bin/z3 -yices2path /home/mcc/BenchKit//yices/bin/yices -its
Java HotSpot(TM) 64-Bit Server VM warning: ignoring option MaxPermSize=512m; support was removed in 8.0
May 28, 2016 5:45:18 PM fr.lip6.move.gal.application.Application transformPNML
INFO: Parsing pnml file : /home/mcc/execution/model.pnml
May 28, 2016 5:45:18 PM fr.lip6.move.gal.nupn.PTNetReader loadFromXML
INFO: Load time of PNML (sax parser for PT used): 85 ms
May 28, 2016 5:45:18 PM fr.lip6.move.gal.pnml.togal.PTGALTransformer handlePage
INFO: Transformed 86 places.
May 28, 2016 5:45:18 PM fr.lip6.move.gal.pnml.togal.PTGALTransformer handlePage
INFO: Transformed 56 transitions.
May 28, 2016 5:45:18 PM fr.lip6.move.gal.instantiate.GALRewriter flatten
INFO: Flatten gal took : 76 ms
May 28, 2016 5:45:18 PM fr.lip6.move.serialization.SerializationUtil systemToFile
INFO: Time to serialize gal into /home/mcc/execution/CTLFireability.gal : 19 ms
May 28, 2016 5:45:18 PM fr.lip6.move.serialization.SerializationUtil serializePropertiesForITSCTLTools
INFO: Time to serialize properties into /home/mcc/execution/CTLFireability.ctl : 4 ms
Sequence of Actions to be Executed by the VM
This is useful if one wants to reexecute the tool in the VM from the submitted image disk.
set -x
# this is for BenchKit: configuration of major elements for the test
export BK_INPUT="S_QuasiCertifProtocol-PT-02"
export BK_EXAMINATION="CTLFireability"
export BK_TOOL="itstools"
export BK_RESULT_DIR="/root/BK_RESULTS/OUTPUTS"
export BK_TIME_CONFINEMENT="3600"
export BK_MEMORY_CONFINEMENT="16384"
# this is specific to your benchmark or test
export BIN_DIR="$HOME/BenchKit/bin"
# remove the execution directoty if it exists (to avoid increse of .vmdk images)
if [ -d execution ] ; then
rm -rf execution
fi
tar xzf /home/mcc/BenchKit/INPUTS/S_QuasiCertifProtocol-PT-02.tgz
mv S_QuasiCertifProtocol-PT-02 execution
# this is for BenchKit: explicit launching of the test
cd execution
echo "====================================================================="
echo " Generated by BenchKit 2-2979"
echo " Executing tool itstools"
echo " Input is S_QuasiCertifProtocol-PT-02, examination is CTLFireability"
echo " Time confinement is $BK_TIME_CONFINEMENT seconds"
echo " Memory confinement is 16384 MBytes"
echo " Number of cores is 4"
echo " Run identifier is r181kn-smll-146444110300076"
echo "====================================================================="
echo
echo "--------------------"
echo "content from stdout:"
echo
echo "=== Data for post analysis generated by BenchKit (invocation template)"
echo
if [ "CTLFireability" = "UpperBounds" ] ; then
echo "The expected result is a vector of positive values"
echo NUM_VECTOR
elif [ "CTLFireability" != "StateSpace" ] ; then
echo "The expected result is a vector of booleans"
echo BOOL_VECTOR
else
echo "no data necessary for post analysis"
fi
echo
if [ -f "CTLFireability.txt" ] ; then
echo "here is the order used to build the result vector(from text file)"
for x in $(grep Property CTLFireability.txt | cut -d ' ' -f 2 | sort -u) ; do
echo "FORMULA_NAME $x"
done
elif [ -f "CTLFireability.xml" ] ; then # for cunf (txt files deleted;-)
echo echo "here is the order used to build the result vector(from xml file)"
for x in $(grep '
echo "FORMULA_NAME $x"
done
fi
echo
echo "=== Now, execution of the tool begins"
echo
echo -n "BK_START "
date -u +%s%3N
echo
timeout -s 9 $BK_TIME_CONFINEMENT bash -c "/home/mcc/BenchKit/BenchKit_head.sh 2> STDERR ; echo ; echo -n \"BK_STOP \" ; date -u +%s%3N"
if [ $? -eq 137 ] ; then
echo
echo "BK_TIME_CONFINEMENT_REACHED"
fi
echo
echo "--------------------"
echo "content from stderr:"
echo
cat STDERR ;