Loading theory "Key_Agreement_Strong_Adversaries.Infra" Loading theory "Key_Agreement_Strong_Adversaries.Messages" ### theory "Key_Agreement_Strong_Adversaries.Infra" ### 0.126s elapsed time, 0.348s cpu time, 0.000s GC time Loading theory "Key_Agreement_Strong_Adversaries.Refinement" Proofs for inductive predicate(s) "reachp" Proving monotonicity ... Proving the introduction rules ... Proving the elimination rules ... Proving the induction rule ... Proving the simplification rules ... Proofs for inductive predicate(s) "behp" Proving monotonicity ... Proving the introduction rules ... Proving the elimination rules ... Proving the induction rule ... Proving the simplification rules ... Found termination order: "{}" Found termination order: "{}" Proofs for inductive predicate(s) "seq_liftp" Proving monotonicity ... Proving the introduction rules ... Proving the elimination rules ... Proving the induction rule ... Proving the simplification rules ... ### theory "Key_Agreement_Strong_Adversaries.Refinement" ### 1.864s elapsed time, 3.680s cpu time, 0.336s GC time Found termination order: "{}" Proofs for inductive predicate(s) "eq" Proving monotonicity ... Proving the introduction rules ... Proving the elimination rules ... Proving the induction rule ... Proving the simplification rules ... ### Rule already declared as introduction (intro) ### \eq ?a ?b; eq ?b ?c\ \ eq ?a ?c ### Rule already declared as introduction (intro) ### \eq ?a ?b; eq ?b ?c\ \ eq ?a ?c ### Rule already declared as introduction (intro) ### \eq ?a ?b; eq ?b ?c\ \ eq ?a ?c ### Rule already declared as introduction (intro) ### \eq ?a ?b; eq ?b ?c\ \ eq ?a ?c ### Rule already declared as introduction (intro) ### \eq ?a ?b; eq ?b ?c\ \ eq ?a ?c ### Rule already declared as introduction (intro) ### \eq ?a ?b; eq ?b ?c\ \ eq ?a ?c ### theory "Key_Agreement_Strong_Adversaries.Messages" ### 5.829s elapsed time, 11.672s cpu time, 0.796s GC time Loading theory "Key_Agreement_Strong_Adversaries.AuthenticationN" Loading theory "Key_Agreement_Strong_Adversaries.Message_derivation" Proofs for inductive predicate(s) "synthp" Proving monotonicity ... Proving the introduction rules ... Proving the elimination rules ... Proving the induction rule ... Proving the simplification rules ... Proofs for inductive predicate(s) "analzp" Proving monotonicity ... Proving the introduction rules ... Proving the elimination rules ... Proving the induction rule ... Proving the simplification rules ... Found termination order: "{}" Proofs for inductive predicate(s) "partsp" Proving monotonicity ... Proving the introduction rules ... Proving the elimination rules ... Proving the induction rule ... Proving the simplification rules ... ### theory "Key_Agreement_Strong_Adversaries.AuthenticationN" ### 1.172s elapsed time, 2.356s cpu time, 0.000s GC time Loading theory "Key_Agreement_Strong_Adversaries.AuthenticationI" ### theory "Key_Agreement_Strong_Adversaries.Message_derivation" ### 1.145s elapsed time, 2.304s cpu time, 0.000s GC time Loading theory "Key_Agreement_Strong_Adversaries.Channels" ### theory "Key_Agreement_Strong_Adversaries.AuthenticationI" ### 0.137s elapsed time, 0.276s cpu time, 0.000s GC time Loading theory "Key_Agreement_Strong_Adversaries.IK" ### theory "Key_Agreement_Strong_Adversaries.IK" ### 0.236s elapsed time, 0.472s cpu time, 0.000s GC time Loading theory "Key_Agreement_Strong_Adversaries.Secrecy" Proofs for inductive predicate(s) "extrp" Proving monotonicity ... Proving the introduction rules ... Proving the elimination rules ... Proving the induction rule ... Proving the simplification rules ... Proofs for inductive predicate(s) "fakep" Proving monotonicity ... Proving the introduction rules ... Proving the elimination rules ... Proving the induction rule ... Proving the simplification rules ... ### theory "Key_Agreement_Strong_Adversaries.Channels" ### 1.225s elapsed time, 2.408s cpu time, 0.596s GC time Loading theory "Key_Agreement_Strong_Adversaries.Payloads" Proofs for inductive predicate(s) "cpayloadp" Proving monotonicity ... Proving the introduction rules ... Proving the elimination rules ... Proving the induction rule ... Proving the simplification rules ... ### theory "Key_Agreement_Strong_Adversaries.Secrecy" ### 1.001s elapsed time, 1.956s cpu time, 0.596s GC time Loading theory "Key_Agreement_Strong_Adversaries.Runs" ### theory "Key_Agreement_Strong_Adversaries.Payloads" ### 0.798s elapsed time, 1.604s cpu time, 0.000s GC time Loading theory "Key_Agreement_Strong_Adversaries.Implem" locale basic_implem fixes implem :: "chan \ msg" locale semivalid_implem fixes implem :: "chan \ msg" assumes "semivalid_implem implem" locale valid_implem fixes implem :: "chan \ msg" assumes "valid_implem implem" ### theory "Key_Agreement_Strong_Adversaries.Implem" ### 0.446s elapsed time, 0.892s cpu time, 0.000s GC time Loading theory "Key_Agreement_Strong_Adversaries.Implem_asymmetric" Found termination order: "{}" Found termination order: "{}" Found termination order: "{}" ### theory "Key_Agreement_Strong_Adversaries.Runs" ### 1.341s elapsed time, 2.696s cpu time, 0.000s GC time Loading theory "Key_Agreement_Strong_Adversaries.Implem_lemmas" locale semivalid_implem fixes implem :: "chan \ msg" assumes "semivalid_implem implem" ### theory "Key_Agreement_Strong_Adversaries.Implem_asymmetric" ### 0.429s elapsed time, 0.860s cpu time, 0.000s GC time Loading theory "Key_Agreement_Strong_Adversaries.Implem_symmetric" ### theory "Key_Agreement_Strong_Adversaries.Implem_lemmas" ### 0.312s elapsed time, 0.624s cpu time, 0.000s GC time Loading theory "Key_Agreement_Strong_Adversaries.dhlvl1" Found termination order: "{}" ### theory "Key_Agreement_Strong_Adversaries.Implem_symmetric" ### 0.460s elapsed time, 0.924s cpu time, 0.000s GC time Loading theory "Key_Agreement_Strong_Adversaries.pfslvl1" Found termination order: "{}" specification guessed_frame_dom_spec: dom (guessed_frame ?R) = domain (role (guessed_runs ?R)) guessed_frame_payload_spec: guessed_frame ?R ?x = Some ?y \ ?y \ payload guessed_frame_Init_xnx: role (guessed_runs ?R) = Init \ guessed_frame ?R xnx = Some (NonceF (?R $ nx)) guessed_frame_Init_xgnx: role (guessed_runs ?R) = Init \ guessed_frame ?R xgnx = Some (Exp Gen (NonceF (?R $ nx))) guessed_frame_Resp_xny: role (guessed_runs ?R) = Resp \ guessed_frame ?R xny = Some (NonceF (?R $ ny)) guessed_frame_Resp_xgny: role (guessed_runs ?R) = Resp \ guessed_frame ?R xgny = Some (Exp Gen (NonceF (?R $ ny))) guessed_frame_xEnd: guessed_frame ?R xEnd = Some End Found termination order: "{}" specification guessed_frame_dom_spec: dom (guessed_frame ?R) = domain (role (guessed_runs ?R)) guessed_frame_payload_spec: guessed_frame ?R ?x = Some ?y \ ?y \ payload guessed_frame_Init_xpkE: role (guessed_runs ?R) = Init \ guessed_frame ?R xpkE = Some (epubKF (?R $ kE)) guessed_frame_Init_xskE: role (guessed_runs ?R) = Init \ guessed_frame ?R xskE = Some (epriKF (?R $ kE)) guessed_frame_Resp_xsk: role (guessed_runs ?R) = Resp \ guessed_frame ?R xsk = Some (NonceF (?R $ sk)) ### theory "Key_Agreement_Strong_Adversaries.dhlvl1" ### 1.164s elapsed time, 2.336s cpu time, 0.000s GC time ### theory "Key_Agreement_Strong_Adversaries.pfslvl1" ### 1.341s elapsed time, 2.648s cpu time, 0.588s GC time ### Rule already declared as introduction (intro) ### \eq ?a ?b; eq ?b ?c\ \ eq ?a ?c ### Ignoring duplicate elimination (elim) ### \?X \ synth (analz ?H); ?c \ parts (insert ?X ?H); ### ?c \ synth (analz ?H) \ parts ?H \ ### PROP ?W\ ### \ PROP ?W ### Rule already declared as introduction (intro) ### {?pre} ?Ra ?x, ?Rc {> ?post} \ ### {?pre} \x. ?Ra x, ?Rc {> ?post} ### Rule already declared as introduction (intro) ### \?M \ ?IK; ### ?c = insec \ ### ?c = confid \ ?A \ ?bad \ ?B \ ?bad\ ### \ Chan ?c ?A ?B ?M \ fake ?bad ?IK ?chan ### Rule already declared as elimination (elim) ### \Enc ?X ?Y \ payload; ### \?X \ payload; ?Y \ payload\ ### \ ?P\ ### \ ?P ### Ignoring duplicate elimination (elim) ### \?X \ local.abs ?H; ### \x A B M. ### \?X = Chan x A B M; M \ payload; implem ?X \ ?H\ ### \ ?P\ ### \ ?P ### Rule already declared as elimination (elim) ### \?X \ parts ?S; ?S \ payload; ### ?X \ payload \ PROP ?W\ ### \ PROP ?W ### Rule already declared as elimination (elim) ### \Hash ?X \ payload; ### ?X \ payload \ ?P\ ### \ ?P \?x \ analz ?H; \X. X \ ?H \ ?P X; \X Y. \\X, Y\ \ analz ?H; ?P \X, Y\\ \ ?P X; \X Y. \\X, Y\ \ analz ?H; ?P \X, Y\\ \ ?P Y; \X Y. \Enc X Y \ analz ?H; ?P (Enc X Y); Y \ synth (analz ?H \ Collect ?P)\ \ ?P X; \X Y. \Aenc X (pubK Y) \ analz ?H; ?P (Aenc X (pubK Y)); priK Y \ analz ?H; ?P (priK Y)\ \ ?P X; \X Y. \Aenc X (epubK Y) \ analz ?H; ?P (Aenc X (epubK Y)); epriK Y \ synth (analz ?H \ Collect ?P)\ \ ?P X; \X Y. \Sign X (priK Y) \ analz ?H; ?P (Sign X (priK Y)); pubK Y \ analz ?H; ?P (pubK Y)\ \ ?P X\ \ ?P ?x isabelle document -d /media/data/jenkins/workspace/isabelle-repo-afp/browser_info/AFP/Key_Agreement_Strong_Adversaries/document -o pdf -n document isabelle document -d /media/data/jenkins/workspace/isabelle-repo-afp/browser_info/AFP/Key_Agreement_Strong_Adversaries/outline -o pdf -n outline -t /proof,/ML *** Failed to load theory "Key_Agreement_Strong_Adversaries.dhlvl2" (unresolved "Key_Agreement_Strong_Adversaries.dhlvl1") *** Failed to load theory "Key_Agreement_Strong_Adversaries.dhlvl3" (unresolved "Key_Agreement_Strong_Adversaries.dhlvl2") *** Failed to load theory "Key_Agreement_Strong_Adversaries.dhlvl3_asymmetric" (unresolved "Key_Agreement_Strong_Adversaries.dhlvl3") *** Failed to load theory "Key_Agreement_Strong_Adversaries.dhlvl3_symmetric" (unresolved "Key_Agreement_Strong_Adversaries.dhlvl3") *** Failed to load theory "Key_Agreement_Strong_Adversaries.sklvl1" (unresolved "Key_Agreement_Strong_Adversaries.dhlvl1") *** Failed to load theory "Key_Agreement_Strong_Adversaries.sklvl2" (unresolved "Key_Agreement_Strong_Adversaries.sklvl1") *** Failed to load theory "Key_Agreement_Strong_Adversaries.sklvl3" (unresolved "Key_Agreement_Strong_Adversaries.sklvl2") *** Failed to load theory "Key_Agreement_Strong_Adversaries.sklvl3_asymmetric" (unresolved "Key_Agreement_Strong_Adversaries.sklvl3") *** Failed to load theory "Key_Agreement_Strong_Adversaries.sklvl3_symmetric" (unresolved "Key_Agreement_Strong_Adversaries.sklvl3") *** Failed to load theory "Key_Agreement_Strong_Adversaries.pfslvl2" (unresolved "Key_Agreement_Strong_Adversaries.pfslvl1") *** Failed to load theory "Key_Agreement_Strong_Adversaries.pfslvl3" (unresolved "Key_Agreement_Strong_Adversaries.pfslvl2") *** Failed to load theory "Key_Agreement_Strong_Adversaries.pfslvl3_asymmetric" (unresolved "Key_Agreement_Strong_Adversaries.pfslvl3") *** Failed to load theory "Key_Agreement_Strong_Adversaries.pfslvl3_symmetric" (unresolved "Key_Agreement_Strong_Adversaries.pfslvl3") *** Type unification failed: Clash of types "_ set" and "_ \ _" *** *** Type error in application: incompatible operand type *** *** Operator: l1_state_ext :: *** (fid_t \ Runs.var set option) *** \ (signal \ nat) *** \ ??'a *** \ \progress :: *** fid_t \ Runs.var set option, *** signals :: signal \ nat, \ :: ??'a\ *** Operand: {} :: ??'b set *** *** At command "definition" (line 235 of "~~/afp/thys/Key_Agreement_Strong_Adversaries/pfslvl1.thy") *** Type unification failed: Clash of types "_ set" and "_ \ _" *** *** Type error in application: incompatible operand type *** *** Operator: l1_state_ext :: *** (fid_t \ Runs.var set option) *** \ (signal \ nat) *** \ (signal \ nat) *** \ ??'a *** \ \progress :: *** fid_t \ Runs.var set option, *** signalsInit :: signal \ nat, *** signalsResp :: signal \ nat, *** \ :: ??'a\ *** Operand: {} :: ??'b set *** *** At command "definition" (line 287 of "~~/afp/thys/Key_Agreement_Strong_Adversaries/dhlvl1.thy")