./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/nla-digbench-scaling/bresenham-ll_valuebound2.c --full-output --traceabstraction.positions.where.we.compute.the.hoare.annotation All --witnessprinter.yaml.format.version 2.1 --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version a9b967e5 Calling Ultimate with: /root/.sdkman/candidates/java/current/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReach.xml -i ../sv-benchmarks/c/nla-digbench-scaling/bresenham-ll_valuebound2.c -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/certificate-witnesses-artifact/automizer --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 72cd0a4215707a62376e213156123902caf611a87605e41064b672632b6ef1f9 --traceabstraction.positions.where.we.compute.the.hoare.annotation All --witnessprinter.yaml.format.version 2.1 --- Real Ultimate output --- This is Ultimate 0.2.4-dev-a9b967e-m [2024-09-11 19:43:09,989 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-09-11 19:43:10,059 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-09-11 19:43:10,062 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-09-11 19:43:10,065 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-09-11 19:43:10,090 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-09-11 19:43:10,091 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-09-11 19:43:10,091 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-09-11 19:43:10,092 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-09-11 19:43:10,093 INFO L153 SettingsManager]: * Use memory slicer=true [2024-09-11 19:43:10,094 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-09-11 19:43:10,094 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-09-11 19:43:10,095 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-09-11 19:43:10,095 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-09-11 19:43:10,098 INFO L153 SettingsManager]: * Use SBE=true [2024-09-11 19:43:10,098 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-09-11 19:43:10,099 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-09-11 19:43:10,099 INFO L153 SettingsManager]: * sizeof long=4 [2024-09-11 19:43:10,099 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-09-11 19:43:10,099 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-09-11 19:43:10,099 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-09-11 19:43:10,100 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-09-11 19:43:10,100 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-09-11 19:43:10,100 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-09-11 19:43:10,101 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-09-11 19:43:10,101 INFO L153 SettingsManager]: * sizeof long double=12 [2024-09-11 19:43:10,101 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-09-11 19:43:10,101 INFO L153 SettingsManager]: * Use constant arrays=true [2024-09-11 19:43:10,102 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-09-11 19:43:10,102 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-09-11 19:43:10,102 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-09-11 19:43:10,102 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-09-11 19:43:10,102 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-11 19:43:10,102 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-09-11 19:43:10,103 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-09-11 19:43:10,103 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-09-11 19:43:10,103 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-09-11 19:43:10,103 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-09-11 19:43:10,103 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-09-11 19:43:10,104 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-09-11 19:43:10,104 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-09-11 19:43:10,105 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-09-11 19:43:10,105 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/certificate-witnesses-artifact/automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 72cd0a4215707a62376e213156123902caf611a87605e41064b672632b6ef1f9 Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> All Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: YAML Format version -> 2.1 [2024-09-11 19:43:10,298 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-09-11 19:43:10,318 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-09-11 19:43:10,322 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-09-11 19:43:10,323 INFO L270 PluginConnector]: Initializing CDTParser... [2024-09-11 19:43:10,323 INFO L274 PluginConnector]: CDTParser initialized [2024-09-11 19:43:10,324 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/nla-digbench-scaling/bresenham-ll_valuebound2.c [2024-09-11 19:43:11,631 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-09-11 19:43:11,781 INFO L384 CDTParser]: Found 1 translation units. [2024-09-11 19:43:11,781 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/nla-digbench-scaling/bresenham-ll_valuebound2.c [2024-09-11 19:43:11,787 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/f7b173740/b65bb2f412d04cfbbcbe3ffcdaa7b0a5/FLAGe446a336a [2024-09-11 19:43:11,797 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/f7b173740/b65bb2f412d04cfbbcbe3ffcdaa7b0a5 [2024-09-11 19:43:11,799 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-09-11 19:43:11,800 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-09-11 19:43:11,801 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-09-11 19:43:11,801 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-09-11 19:43:11,805 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-09-11 19:43:11,805 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 11.09 07:43:11" (1/1) ... [2024-09-11 19:43:11,806 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@44dddc24 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:11, skipping insertion in model container [2024-09-11 19:43:11,806 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 11.09 07:43:11" (1/1) ... [2024-09-11 19:43:11,827 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-09-11 19:43:11,976 WARN L247 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/nla-digbench-scaling/bresenham-ll_valuebound2.c[597,610] [2024-09-11 19:43:11,998 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-11 19:43:12,007 INFO L200 MainTranslator]: Completed pre-run [2024-09-11 19:43:12,018 WARN L247 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/nla-digbench-scaling/bresenham-ll_valuebound2.c[597,610] [2024-09-11 19:43:12,025 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-11 19:43:12,048 INFO L204 MainTranslator]: Completed translation [2024-09-11 19:43:12,052 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12 WrapperNode [2024-09-11 19:43:12,052 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-09-11 19:43:12,054 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-09-11 19:43:12,054 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-09-11 19:43:12,054 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-09-11 19:43:12,062 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,070 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,089 INFO L138 Inliner]: procedures = 14, calls = 11, calls flagged for inlining = 2, calls inlined = 2, statements flattened = 52 [2024-09-11 19:43:12,090 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-09-11 19:43:12,090 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-09-11 19:43:12,091 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-09-11 19:43:12,091 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-09-11 19:43:12,098 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,098 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,099 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,111 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-09-11 19:43:12,113 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,113 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,115 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,117 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,119 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,120 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,121 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-09-11 19:43:12,123 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-09-11 19:43:12,124 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-09-11 19:43:12,124 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-09-11 19:43:12,124 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (1/1) ... [2024-09-11 19:43:12,152 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-11 19:43:12,187 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 19:43:12,213 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-09-11 19:43:12,222 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-09-11 19:43:12,261 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-09-11 19:43:12,261 INFO L130 BoogieDeclarations]: Found specification of procedure assume_abort_if_not [2024-09-11 19:43:12,261 INFO L138 BoogieDeclarations]: Found implementation of procedure assume_abort_if_not [2024-09-11 19:43:12,261 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-09-11 19:43:12,262 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-09-11 19:43:12,262 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-09-11 19:43:12,262 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_assert [2024-09-11 19:43:12,262 INFO L138 BoogieDeclarations]: Found implementation of procedure __VERIFIER_assert [2024-09-11 19:43:12,318 INFO L242 CfgBuilder]: Building ICFG [2024-09-11 19:43:12,320 INFO L268 CfgBuilder]: Building CFG for each procedure with an implementation [2024-09-11 19:43:12,444 INFO L? ?]: Removed 6 outVars from TransFormulas that were not future-live. [2024-09-11 19:43:12,444 INFO L291 CfgBuilder]: Performing block encoding [2024-09-11 19:43:12,461 INFO L313 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-09-11 19:43:12,461 INFO L318 CfgBuilder]: Removed 1 assume(true) statements. [2024-09-11 19:43:12,462 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 11.09 07:43:12 BoogieIcfgContainer [2024-09-11 19:43:12,462 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-09-11 19:43:12,463 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-09-11 19:43:12,463 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-09-11 19:43:12,466 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-09-11 19:43:12,466 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 11.09 07:43:11" (1/3) ... [2024-09-11 19:43:12,467 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@31c28aff and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 11.09 07:43:12, skipping insertion in model container [2024-09-11 19:43:12,467 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 07:43:12" (2/3) ... [2024-09-11 19:43:12,467 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@31c28aff and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 11.09 07:43:12, skipping insertion in model container [2024-09-11 19:43:12,467 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 11.09 07:43:12" (3/3) ... [2024-09-11 19:43:12,468 INFO L112 eAbstractionObserver]: Analyzing ICFG bresenham-ll_valuebound2.c [2024-09-11 19:43:12,483 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:All NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-09-11 19:43:12,484 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-09-11 19:43:12,525 INFO L335 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-09-11 19:43:12,531 INFO L336 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@7e13f7aa, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-09-11 19:43:12,532 INFO L337 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-09-11 19:43:12,535 INFO L276 IsEmpty]: Start isEmpty. Operand has 24 states, 16 states have (on average 1.4375) internal successors, (23), 17 states have internal predecessors, (23), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (4), 4 states have call predecessors, (4), 4 states have call successors, (4) [2024-09-11 19:43:12,540 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2024-09-11 19:43:12,540 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 19:43:12,541 INFO L216 NwaCegarLoop]: trace histogram [2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 19:43:12,541 INFO L399 AbstractCegarLoop]: === Iteration 1 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 19:43:12,546 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:12,546 INFO L85 PathProgramCache]: Analyzing trace with hash 866122637, now seen corresponding path program 1 times [2024-09-11 19:43:12,552 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 19:43:12,553 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [764711325] [2024-09-11 19:43:12,553 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:12,553 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 19:43:12,624 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:12,673 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-11 19:43:12,676 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:12,682 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 7 [2024-09-11 19:43:12,685 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:12,690 INFO L134 CoverageAnalysis]: Checked inductivity of 4 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-11 19:43:12,690 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 19:43:12,690 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [764711325] [2024-09-11 19:43:12,691 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [764711325] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-11 19:43:12,691 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-11 19:43:12,691 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-09-11 19:43:12,692 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1384087996] [2024-09-11 19:43:12,693 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-11 19:43:12,696 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-09-11 19:43:12,696 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 19:43:12,711 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-09-11 19:43:12,711 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-09-11 19:43:12,713 INFO L87 Difference]: Start difference. First operand has 24 states, 16 states have (on average 1.4375) internal successors, (23), 17 states have internal predecessors, (23), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (4), 4 states have call predecessors, (4), 4 states have call successors, (4) Second operand has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-11 19:43:12,731 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 19:43:12,732 INFO L93 Difference]: Finished difference Result 46 states and 63 transitions. [2024-09-11 19:43:12,736 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-09-11 19:43:12,737 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) Word has length 18 [2024-09-11 19:43:12,738 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 19:43:12,745 INFO L225 Difference]: With dead ends: 46 [2024-09-11 19:43:12,745 INFO L226 Difference]: Without dead ends: 22 [2024-09-11 19:43:12,747 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 8 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-09-11 19:43:12,750 INFO L434 NwaCegarLoop]: 25 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 2 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 25 SdHoareTripleChecker+Invalid, 2 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 2 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-11 19:43:12,751 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 25 Invalid, 2 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 2 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-11 19:43:12,763 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 22 states. [2024-09-11 19:43:12,776 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 22 to 22. [2024-09-11 19:43:12,778 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 22 states, 15 states have (on average 1.2) internal successors, (18), 16 states have internal predecessors, (18), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-11 19:43:12,779 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 22 states to 22 states and 25 transitions. [2024-09-11 19:43:12,781 INFO L78 Accepts]: Start accepts. Automaton has 22 states and 25 transitions. Word has length 18 [2024-09-11 19:43:12,781 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 19:43:12,782 INFO L474 AbstractCegarLoop]: Abstraction has 22 states and 25 transitions. [2024-09-11 19:43:12,782 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-11 19:43:12,782 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:12,782 INFO L276 IsEmpty]: Start isEmpty. Operand 22 states and 25 transitions. [2024-09-11 19:43:12,783 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2024-09-11 19:43:12,783 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 19:43:12,783 INFO L216 NwaCegarLoop]: trace histogram [2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 19:43:12,785 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-09-11 19:43:12,785 INFO L399 AbstractCegarLoop]: === Iteration 2 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 19:43:12,785 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:12,785 INFO L85 PathProgramCache]: Analyzing trace with hash 266317329, now seen corresponding path program 1 times [2024-09-11 19:43:12,786 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 19:43:12,786 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [891655344] [2024-09-11 19:43:12,786 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:12,786 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 19:43:12,832 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-11 19:43:12,835 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [175446875] [2024-09-11 19:43:12,835 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:12,835 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:12,835 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 19:43:12,838 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 19:43:12,843 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-09-11 19:43:12,892 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:12,894 INFO L262 TraceCheckSpWp]: Trace formula consists of 62 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-09-11 19:43:12,898 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 19:43:13,034 INFO L134 CoverageAnalysis]: Checked inductivity of 4 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-11 19:43:13,034 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-11 19:43:13,034 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 19:43:13,034 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [891655344] [2024-09-11 19:43:13,035 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-11 19:43:13,035 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [175446875] [2024-09-11 19:43:13,035 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [175446875] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-11 19:43:13,035 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-11 19:43:13,035 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-09-11 19:43:13,036 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [223931484] [2024-09-11 19:43:13,036 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-11 19:43:13,038 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-09-11 19:43:13,038 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 19:43:13,038 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-09-11 19:43:13,039 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-09-11 19:43:13,039 INFO L87 Difference]: Start difference. First operand 22 states and 25 transitions. Second operand has 6 states, 5 states have (on average 2.0) internal successors, (10), 5 states have internal predecessors, (10), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-11 19:43:13,127 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 19:43:13,127 INFO L93 Difference]: Finished difference Result 34 states and 39 transitions. [2024-09-11 19:43:13,128 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-09-11 19:43:13,128 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 2.0) internal successors, (10), 5 states have internal predecessors, (10), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 18 [2024-09-11 19:43:13,128 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 19:43:13,129 INFO L225 Difference]: With dead ends: 34 [2024-09-11 19:43:13,130 INFO L226 Difference]: Without dead ends: 32 [2024-09-11 19:43:13,130 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 19 GetRequests, 13 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2024-09-11 19:43:13,131 INFO L434 NwaCegarLoop]: 15 mSDtfsCounter, 8 mSDsluCounter, 55 mSDsCounter, 0 mSdLazyCounter, 54 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 70 SdHoareTripleChecker+Invalid, 57 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 54 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-11 19:43:13,132 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 70 Invalid, 57 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 54 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-11 19:43:13,134 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 32 states. [2024-09-11 19:43:13,139 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 32 to 28. [2024-09-11 19:43:13,139 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 28 states, 19 states have (on average 1.1578947368421053) internal successors, (22), 21 states have internal predecessors, (22), 5 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-09-11 19:43:13,140 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 28 states to 28 states and 31 transitions. [2024-09-11 19:43:13,140 INFO L78 Accepts]: Start accepts. Automaton has 28 states and 31 transitions. Word has length 18 [2024-09-11 19:43:13,141 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 19:43:13,141 INFO L474 AbstractCegarLoop]: Abstraction has 28 states and 31 transitions. [2024-09-11 19:43:13,141 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 2.0) internal successors, (10), 5 states have internal predecessors, (10), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-11 19:43:13,141 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:13,141 INFO L276 IsEmpty]: Start isEmpty. Operand 28 states and 31 transitions. [2024-09-11 19:43:13,142 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2024-09-11 19:43:13,142 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 19:43:13,142 INFO L216 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 19:43:13,160 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-09-11 19:43:13,342 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:13,343 INFO L399 AbstractCegarLoop]: === Iteration 3 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 19:43:13,343 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:13,344 INFO L85 PathProgramCache]: Analyzing trace with hash -125875189, now seen corresponding path program 1 times [2024-09-11 19:43:13,344 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 19:43:13,344 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [709610113] [2024-09-11 19:43:13,344 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:13,344 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 19:43:13,373 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:13,517 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-11 19:43:13,520 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:13,562 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 7 [2024-09-11 19:43:13,564 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:13,574 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-09-11 19:43:13,579 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:13,594 INFO L134 CoverageAnalysis]: Checked inductivity of 6 backedges. 2 proven. 3 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-09-11 19:43:13,594 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 19:43:13,594 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [709610113] [2024-09-11 19:43:13,594 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [709610113] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-11 19:43:13,595 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1664661460] [2024-09-11 19:43:13,595 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:13,595 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:13,595 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 19:43:13,599 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 19:43:13,600 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-09-11 19:43:13,648 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:13,649 INFO L262 TraceCheckSpWp]: Trace formula consists of 76 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-09-11 19:43:13,651 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 19:43:13,759 INFO L134 CoverageAnalysis]: Checked inductivity of 6 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-11 19:43:13,760 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-11 19:43:13,760 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1664661460] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-11 19:43:13,760 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-09-11 19:43:13,760 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [6] total 10 [2024-09-11 19:43:13,760 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1894495948] [2024-09-11 19:43:13,760 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-11 19:43:13,760 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-09-11 19:43:13,761 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 19:43:13,761 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-09-11 19:43:13,761 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=18, Invalid=72, Unknown=0, NotChecked=0, Total=90 [2024-09-11 19:43:13,761 INFO L87 Difference]: Start difference. First operand 28 states and 31 transitions. Second operand has 6 states, 5 states have (on average 3.0) internal successors, (15), 5 states have internal predecessors, (15), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-11 19:43:13,863 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 19:43:13,864 INFO L93 Difference]: Finished difference Result 38 states and 42 transitions. [2024-09-11 19:43:13,864 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-09-11 19:43:13,864 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 3.0) internal successors, (15), 5 states have internal predecessors, (15), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 25 [2024-09-11 19:43:13,864 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 19:43:13,865 INFO L225 Difference]: With dead ends: 38 [2024-09-11 19:43:13,865 INFO L226 Difference]: Without dead ends: 30 [2024-09-11 19:43:13,866 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 38 GetRequests, 28 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 9 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=26, Invalid=106, Unknown=0, NotChecked=0, Total=132 [2024-09-11 19:43:13,867 INFO L434 NwaCegarLoop]: 15 mSDtfsCounter, 6 mSDsluCounter, 55 mSDsCounter, 0 mSdLazyCounter, 54 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 6 SdHoareTripleChecker+Valid, 70 SdHoareTripleChecker+Invalid, 57 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 54 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-11 19:43:13,868 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [6 Valid, 70 Invalid, 57 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 54 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-11 19:43:13,868 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 30 states. [2024-09-11 19:43:13,872 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 30 to 29. [2024-09-11 19:43:13,873 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 29 states, 20 states have (on average 1.15) internal successors, (23), 21 states have internal predecessors, (23), 5 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 4 states have call predecessors, (4), 4 states have call successors, (4) [2024-09-11 19:43:13,874 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 29 states to 29 states and 32 transitions. [2024-09-11 19:43:13,875 INFO L78 Accepts]: Start accepts. Automaton has 29 states and 32 transitions. Word has length 25 [2024-09-11 19:43:13,875 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 19:43:13,875 INFO L474 AbstractCegarLoop]: Abstraction has 29 states and 32 transitions. [2024-09-11 19:43:13,875 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 3.0) internal successors, (15), 5 states have internal predecessors, (15), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-11 19:43:13,876 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:13,876 INFO L276 IsEmpty]: Start isEmpty. Operand 29 states and 32 transitions. [2024-09-11 19:43:13,877 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 28 [2024-09-11 19:43:13,878 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 19:43:13,879 INFO L216 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 19:43:13,891 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-09-11 19:43:14,082 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:14,083 INFO L399 AbstractCegarLoop]: === Iteration 4 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 19:43:14,084 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:14,086 INFO L85 PathProgramCache]: Analyzing trace with hash -1056709002, now seen corresponding path program 1 times [2024-09-11 19:43:14,087 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 19:43:14,087 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1492007321] [2024-09-11 19:43:14,087 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:14,087 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 19:43:14,111 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-11 19:43:14,112 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1055002527] [2024-09-11 19:43:14,112 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:14,112 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:14,112 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 19:43:14,114 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 19:43:14,119 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-09-11 19:43:14,150 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:14,151 INFO L262 TraceCheckSpWp]: Trace formula consists of 81 conjuncts, 40 conjuncts are in the unsatisfiable core [2024-09-11 19:43:14,153 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 19:43:14,473 INFO L134 CoverageAnalysis]: Checked inductivity of 8 backedges. 1 proven. 3 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-11 19:43:14,473 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 19:43:14,816 INFO L134 CoverageAnalysis]: Checked inductivity of 8 backedges. 2 proven. 2 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-11 19:43:14,817 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 19:43:14,817 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1492007321] [2024-09-11 19:43:14,817 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-11 19:43:14,817 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1055002527] [2024-09-11 19:43:14,817 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1055002527] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-11 19:43:14,817 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-11 19:43:14,817 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [15, 10] total 22 [2024-09-11 19:43:14,817 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [829272152] [2024-09-11 19:43:14,817 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-11 19:43:14,818 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2024-09-11 19:43:14,818 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 19:43:14,818 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2024-09-11 19:43:14,819 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=78, Invalid=384, Unknown=0, NotChecked=0, Total=462 [2024-09-11 19:43:14,819 INFO L87 Difference]: Start difference. First operand 29 states and 32 transitions. Second operand has 22 states, 18 states have (on average 1.7222222222222223) internal successors, (31), 20 states have internal predecessors, (31), 6 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) [2024-09-11 19:43:15,306 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 19:43:15,306 INFO L93 Difference]: Finished difference Result 60 states and 72 transitions. [2024-09-11 19:43:15,306 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2024-09-11 19:43:15,307 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 18 states have (on average 1.7222222222222223) internal successors, (31), 20 states have internal predecessors, (31), 6 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) Word has length 27 [2024-09-11 19:43:15,307 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 19:43:15,311 INFO L225 Difference]: With dead ends: 60 [2024-09-11 19:43:15,311 INFO L226 Difference]: Without dead ends: 32 [2024-09-11 19:43:15,312 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 59 GetRequests, 32 SyntacticMatches, 0 SemanticMatches, 27 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 139 ImplicationChecksByTransitivity, 0.6s TimeCoverageRelationStatistics Valid=160, Invalid=652, Unknown=0, NotChecked=0, Total=812 [2024-09-11 19:43:15,313 INFO L434 NwaCegarLoop]: 11 mSDtfsCounter, 46 mSDsluCounter, 97 mSDsCounter, 0 mSdLazyCounter, 275 mSolverCounterSat, 39 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 47 SdHoareTripleChecker+Valid, 108 SdHoareTripleChecker+Invalid, 314 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 39 IncrementalHoareTripleChecker+Valid, 275 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-09-11 19:43:15,313 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [47 Valid, 108 Invalid, 314 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [39 Valid, 275 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-09-11 19:43:15,313 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 32 states. [2024-09-11 19:43:15,325 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 32 to 32. [2024-09-11 19:43:15,326 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 32 states, 23 states have (on average 1.0869565217391304) internal successors, (25), 23 states have internal predecessors, (25), 5 states have call successors, (5), 4 states have call predecessors, (5), 3 states have return successors, (4), 4 states have call predecessors, (4), 4 states have call successors, (4) [2024-09-11 19:43:15,326 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 32 states to 32 states and 34 transitions. [2024-09-11 19:43:15,327 INFO L78 Accepts]: Start accepts. Automaton has 32 states and 34 transitions. Word has length 27 [2024-09-11 19:43:15,327 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 19:43:15,327 INFO L474 AbstractCegarLoop]: Abstraction has 32 states and 34 transitions. [2024-09-11 19:43:15,327 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 18 states have (on average 1.7222222222222223) internal successors, (31), 20 states have internal predecessors, (31), 6 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) [2024-09-11 19:43:15,327 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:15,328 INFO L276 IsEmpty]: Start isEmpty. Operand 32 states and 34 transitions. [2024-09-11 19:43:15,328 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2024-09-11 19:43:15,328 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 19:43:15,329 INFO L216 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 19:43:15,341 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-09-11 19:43:15,532 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:15,533 INFO L399 AbstractCegarLoop]: === Iteration 5 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 19:43:15,533 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:15,534 INFO L85 PathProgramCache]: Analyzing trace with hash 2017352516, now seen corresponding path program 1 times [2024-09-11 19:43:15,534 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 19:43:15,534 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2145837715] [2024-09-11 19:43:15,534 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:15,534 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 19:43:15,559 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-11 19:43:15,562 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1008267613] [2024-09-11 19:43:15,563 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:15,563 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:15,563 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 19:43:15,566 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 19:43:15,567 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-09-11 19:43:15,606 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:15,607 INFO L262 TraceCheckSpWp]: Trace formula consists of 97 conjuncts, 36 conjuncts are in the unsatisfiable core [2024-09-11 19:43:15,609 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 19:43:15,891 INFO L134 CoverageAnalysis]: Checked inductivity of 15 backedges. 6 proven. 7 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-11 19:43:15,891 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 19:43:16,491 INFO L134 CoverageAnalysis]: Checked inductivity of 15 backedges. 9 proven. 1 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2024-09-11 19:43:16,492 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 19:43:16,493 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2145837715] [2024-09-11 19:43:16,493 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-11 19:43:16,496 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1008267613] [2024-09-11 19:43:16,496 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1008267613] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-11 19:43:16,496 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-11 19:43:16,496 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [16, 12] total 25 [2024-09-11 19:43:16,496 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1014169891] [2024-09-11 19:43:16,496 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-11 19:43:16,497 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-09-11 19:43:16,497 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 19:43:16,497 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-09-11 19:43:16,497 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=90, Invalid=510, Unknown=0, NotChecked=0, Total=600 [2024-09-11 19:43:16,498 INFO L87 Difference]: Start difference. First operand 32 states and 34 transitions. Second operand has 25 states, 21 states have (on average 1.8095238095238095) internal successors, (38), 22 states have internal predecessors, (38), 7 states have call successors, (9), 3 states have call predecessors, (9), 3 states have return successors, (8), 5 states have call predecessors, (8), 5 states have call successors, (8) [2024-09-11 19:43:17,596 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 19:43:17,597 INFO L93 Difference]: Finished difference Result 50 states and 56 transitions. [2024-09-11 19:43:17,597 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 25 states. [2024-09-11 19:43:17,597 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 21 states have (on average 1.8095238095238095) internal successors, (38), 22 states have internal predecessors, (38), 7 states have call successors, (9), 3 states have call predecessors, (9), 3 states have return successors, (8), 5 states have call predecessors, (8), 5 states have call successors, (8) Word has length 34 [2024-09-11 19:43:17,598 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 19:43:17,598 INFO L225 Difference]: With dead ends: 50 [2024-09-11 19:43:17,598 INFO L226 Difference]: Without dead ends: 42 [2024-09-11 19:43:17,599 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 80 GetRequests, 44 SyntacticMatches, 0 SemanticMatches, 36 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 273 ImplicationChecksByTransitivity, 1.1s TimeCoverageRelationStatistics Valid=250, Invalid=1156, Unknown=0, NotChecked=0, Total=1406 [2024-09-11 19:43:17,599 INFO L434 NwaCegarLoop]: 10 mSDtfsCounter, 31 mSDsluCounter, 106 mSDsCounter, 0 mSdLazyCounter, 290 mSolverCounterSat, 24 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 33 SdHoareTripleChecker+Valid, 116 SdHoareTripleChecker+Invalid, 314 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 24 IncrementalHoareTripleChecker+Valid, 290 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-09-11 19:43:17,599 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [33 Valid, 116 Invalid, 314 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [24 Valid, 290 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-09-11 19:43:17,600 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 42 states. [2024-09-11 19:43:17,608 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 42 to 41. [2024-09-11 19:43:17,609 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 41 states, 30 states have (on average 1.1) internal successors, (33), 30 states have internal predecessors, (33), 7 states have call successors, (7), 4 states have call predecessors, (7), 3 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-11 19:43:17,609 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 41 states to 41 states and 46 transitions. [2024-09-11 19:43:17,609 INFO L78 Accepts]: Start accepts. Automaton has 41 states and 46 transitions. Word has length 34 [2024-09-11 19:43:17,610 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 19:43:17,610 INFO L474 AbstractCegarLoop]: Abstraction has 41 states and 46 transitions. [2024-09-11 19:43:17,610 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 21 states have (on average 1.8095238095238095) internal successors, (38), 22 states have internal predecessors, (38), 7 states have call successors, (9), 3 states have call predecessors, (9), 3 states have return successors, (8), 5 states have call predecessors, (8), 5 states have call successors, (8) [2024-09-11 19:43:17,610 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:17,610 INFO L276 IsEmpty]: Start isEmpty. Operand 41 states and 46 transitions. [2024-09-11 19:43:17,611 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2024-09-11 19:43:17,611 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 19:43:17,611 INFO L216 NwaCegarLoop]: trace histogram [5, 4, 4, 4, 4, 4, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 19:43:17,623 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-09-11 19:43:17,812 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:17,812 INFO L399 AbstractCegarLoop]: === Iteration 6 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 19:43:17,813 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:17,813 INFO L85 PathProgramCache]: Analyzing trace with hash 233089380, now seen corresponding path program 1 times [2024-09-11 19:43:17,813 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 19:43:17,813 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1127404688] [2024-09-11 19:43:17,813 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:17,813 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 19:43:17,822 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:17,898 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-11 19:43:17,899 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:17,903 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 7 [2024-09-11 19:43:17,904 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:17,905 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-09-11 19:43:17,906 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:17,908 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2024-09-11 19:43:17,909 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:17,911 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 32 [2024-09-11 19:43:17,912 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:17,914 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 41 [2024-09-11 19:43:17,915 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:17,916 INFO L134 CoverageAnalysis]: Checked inductivity of 60 backedges. 19 proven. 13 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-09-11 19:43:17,916 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 19:43:17,916 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1127404688] [2024-09-11 19:43:17,916 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1127404688] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-11 19:43:17,916 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1294023942] [2024-09-11 19:43:17,916 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:17,916 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:17,917 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 19:43:17,918 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 19:43:17,919 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-09-11 19:43:17,958 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:17,959 INFO L262 TraceCheckSpWp]: Trace formula consists of 135 conjuncts, 5 conjuncts are in the unsatisfiable core [2024-09-11 19:43:17,960 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 19:43:17,979 INFO L134 CoverageAnalysis]: Checked inductivity of 60 backedges. 29 proven. 13 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2024-09-11 19:43:17,979 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 19:43:18,028 INFO L134 CoverageAnalysis]: Checked inductivity of 60 backedges. 19 proven. 13 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-09-11 19:43:18,029 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1294023942] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-11 19:43:18,029 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-11 19:43:18,029 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [5, 5, 5] total 6 [2024-09-11 19:43:18,029 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [594012686] [2024-09-11 19:43:18,029 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-11 19:43:18,029 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-09-11 19:43:18,030 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 19:43:18,030 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-09-11 19:43:18,030 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=10, Invalid=20, Unknown=0, NotChecked=0, Total=30 [2024-09-11 19:43:18,030 INFO L87 Difference]: Start difference. First operand 41 states and 46 transitions. Second operand has 6 states, 6 states have (on average 5.5) internal successors, (33), 6 states have internal predecessors, (33), 6 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 6 states have call predecessors, (8), 6 states have call successors, (8) [2024-09-11 19:43:18,089 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 19:43:18,090 INFO L93 Difference]: Finished difference Result 76 states and 89 transitions. [2024-09-11 19:43:18,090 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-09-11 19:43:18,090 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 5.5) internal successors, (33), 6 states have internal predecessors, (33), 6 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 6 states have call predecessors, (8), 6 states have call successors, (8) Word has length 52 [2024-09-11 19:43:18,090 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 19:43:18,091 INFO L225 Difference]: With dead ends: 76 [2024-09-11 19:43:18,091 INFO L226 Difference]: Without dead ends: 57 [2024-09-11 19:43:18,091 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 121 GetRequests, 114 SyntacticMatches, 1 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=18, Invalid=38, Unknown=0, NotChecked=0, Total=56 [2024-09-11 19:43:18,092 INFO L434 NwaCegarLoop]: 25 mSDtfsCounter, 5 mSDsluCounter, 56 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 5 SdHoareTripleChecker+Valid, 81 SdHoareTripleChecker+Invalid, 52 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-11 19:43:18,092 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [5 Valid, 81 Invalid, 52 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-11 19:43:18,092 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 57 states. [2024-09-11 19:43:18,132 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 57 to 55. [2024-09-11 19:43:18,133 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 55 states, 41 states have (on average 1.1219512195121952) internal successors, (46), 41 states have internal predecessors, (46), 10 states have call successors, (10), 4 states have call predecessors, (10), 3 states have return successors, (9), 9 states have call predecessors, (9), 9 states have call successors, (9) [2024-09-11 19:43:18,135 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 55 states to 55 states and 65 transitions. [2024-09-11 19:43:18,135 INFO L78 Accepts]: Start accepts. Automaton has 55 states and 65 transitions. Word has length 52 [2024-09-11 19:43:18,135 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 19:43:18,136 INFO L474 AbstractCegarLoop]: Abstraction has 55 states and 65 transitions. [2024-09-11 19:43:18,136 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 5.5) internal successors, (33), 6 states have internal predecessors, (33), 6 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 6 states have call predecessors, (8), 6 states have call successors, (8) [2024-09-11 19:43:18,136 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:18,136 INFO L276 IsEmpty]: Start isEmpty. Operand 55 states and 65 transitions. [2024-09-11 19:43:18,137 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2024-09-11 19:43:18,137 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 19:43:18,137 INFO L216 NwaCegarLoop]: trace histogram [5, 4, 4, 4, 4, 4, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 19:43:18,166 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2024-09-11 19:43:18,337 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2024-09-11 19:43:18,338 INFO L399 AbstractCegarLoop]: === Iteration 7 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 19:43:18,338 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:18,338 INFO L85 PathProgramCache]: Analyzing trace with hash -1572348954, now seen corresponding path program 2 times [2024-09-11 19:43:18,338 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 19:43:18,338 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [876358395] [2024-09-11 19:43:18,339 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:18,339 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 19:43:18,353 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:18,562 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-11 19:43:18,563 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:18,564 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 7 [2024-09-11 19:43:18,565 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:18,566 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-09-11 19:43:18,567 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:18,570 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2024-09-11 19:43:18,571 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:18,573 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 32 [2024-09-11 19:43:18,574 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:18,579 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 41 [2024-09-11 19:43:18,579 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:18,582 INFO L134 CoverageAnalysis]: Checked inductivity of 60 backedges. 8 proven. 24 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-09-11 19:43:18,582 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 19:43:18,582 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [876358395] [2024-09-11 19:43:18,582 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [876358395] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-11 19:43:18,582 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [490568669] [2024-09-11 19:43:18,582 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-11 19:43:18,582 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:18,582 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 19:43:18,584 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 19:43:18,589 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-09-11 19:43:18,629 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-11 19:43:18,629 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-11 19:43:18,630 INFO L262 TraceCheckSpWp]: Trace formula consists of 137 conjuncts, 12 conjuncts are in the unsatisfiable core [2024-09-11 19:43:18,631 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 19:43:18,876 INFO L134 CoverageAnalysis]: Checked inductivity of 60 backedges. 8 proven. 24 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-09-11 19:43:18,876 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 19:43:19,077 INFO L134 CoverageAnalysis]: Checked inductivity of 60 backedges. 8 proven. 24 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-09-11 19:43:19,077 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [490568669] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-11 19:43:19,077 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-11 19:43:19,077 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 9, 9] total 23 [2024-09-11 19:43:19,077 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1379707281] [2024-09-11 19:43:19,077 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-11 19:43:19,078 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2024-09-11 19:43:19,078 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 19:43:19,079 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2024-09-11 19:43:19,079 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=101, Invalid=405, Unknown=0, NotChecked=0, Total=506 [2024-09-11 19:43:19,079 INFO L87 Difference]: Start difference. First operand 55 states and 65 transitions. Second operand has 23 states, 23 states have (on average 2.4782608695652173) internal successors, (57), 23 states have internal predecessors, (57), 14 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (14), 13 states have call predecessors, (14), 13 states have call successors, (14) [2024-09-11 19:43:19,627 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 19:43:19,627 INFO L93 Difference]: Finished difference Result 80 states and 96 transitions. [2024-09-11 19:43:19,631 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2024-09-11 19:43:19,631 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 23 states have (on average 2.4782608695652173) internal successors, (57), 23 states have internal predecessors, (57), 14 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (14), 13 states have call predecessors, (14), 13 states have call successors, (14) Word has length 52 [2024-09-11 19:43:19,632 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 19:43:19,632 INFO L225 Difference]: With dead ends: 80 [2024-09-11 19:43:19,632 INFO L226 Difference]: Without dead ends: 74 [2024-09-11 19:43:19,633 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 140 GetRequests, 103 SyntacticMatches, 0 SemanticMatches, 37 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 329 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=287, Invalid=1195, Unknown=0, NotChecked=0, Total=1482 [2024-09-11 19:43:19,633 INFO L434 NwaCegarLoop]: 27 mSDtfsCounter, 12 mSDsluCounter, 112 mSDsCounter, 0 mSdLazyCounter, 231 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 12 SdHoareTripleChecker+Valid, 139 SdHoareTripleChecker+Invalid, 240 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 231 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-11 19:43:19,634 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [12 Valid, 139 Invalid, 240 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 231 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-11 19:43:19,634 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 74 states. [2024-09-11 19:43:19,673 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 74 to 66. [2024-09-11 19:43:19,674 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 66 states, 50 states have (on average 1.12) internal successors, (56), 50 states have internal predecessors, (56), 12 states have call successors, (12), 4 states have call predecessors, (12), 3 states have return successors, (11), 11 states have call predecessors, (11), 11 states have call successors, (11) [2024-09-11 19:43:19,674 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 66 states to 66 states and 79 transitions. [2024-09-11 19:43:19,675 INFO L78 Accepts]: Start accepts. Automaton has 66 states and 79 transitions. Word has length 52 [2024-09-11 19:43:19,675 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 19:43:19,676 INFO L474 AbstractCegarLoop]: Abstraction has 66 states and 79 transitions. [2024-09-11 19:43:19,676 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 23 states have (on average 2.4782608695652173) internal successors, (57), 23 states have internal predecessors, (57), 14 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (14), 13 states have call predecessors, (14), 13 states have call successors, (14) [2024-09-11 19:43:19,676 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:19,676 INFO L276 IsEmpty]: Start isEmpty. Operand 66 states and 79 transitions. [2024-09-11 19:43:19,678 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 62 [2024-09-11 19:43:19,678 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 19:43:19,678 INFO L216 NwaCegarLoop]: trace histogram [6, 5, 5, 5, 5, 5, 4, 4, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 19:43:19,696 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Ended with exit code 0 [2024-09-11 19:43:19,878 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,7 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:19,879 INFO L399 AbstractCegarLoop]: === Iteration 8 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 19:43:19,879 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:19,879 INFO L85 PathProgramCache]: Analyzing trace with hash 281121103, now seen corresponding path program 3 times [2024-09-11 19:43:19,879 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 19:43:19,879 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1410617831] [2024-09-11 19:43:19,879 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 19:43:19,879 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 19:43:19,890 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:20,183 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-11 19:43:20,184 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:20,186 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 7 [2024-09-11 19:43:20,186 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:20,187 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-09-11 19:43:20,188 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:20,192 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2024-09-11 19:43:20,193 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:20,198 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 32 [2024-09-11 19:43:20,199 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:20,204 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 41 [2024-09-11 19:43:20,205 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:20,209 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2024-09-11 19:43:20,210 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 19:43:20,212 INFO L134 CoverageAnalysis]: Checked inductivity of 96 backedges. 10 proven. 42 refuted. 0 times theorem prover too weak. 44 trivial. 0 not checked. [2024-09-11 19:43:20,212 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 19:43:20,212 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1410617831] [2024-09-11 19:43:20,213 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1410617831] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-11 19:43:20,213 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1495152092] [2024-09-11 19:43:20,213 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-11 19:43:20,213 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:20,213 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 19:43:20,214 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 19:43:20,215 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-09-11 19:43:20,254 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2024-09-11 19:43:20,254 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-11 19:43:20,260 INFO L262 TraceCheckSpWp]: Trace formula consists of 95 conjuncts, 32 conjuncts are in the unsatisfiable core [2024-09-11 19:43:20,262 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 19:43:21,063 INFO L134 CoverageAnalysis]: Checked inductivity of 96 backedges. 39 proven. 1 refuted. 0 times theorem prover too weak. 56 trivial. 0 not checked. [2024-09-11 19:43:21,063 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 19:43:31,089 INFO L134 CoverageAnalysis]: Checked inductivity of 96 backedges. 39 proven. 1 refuted. 0 times theorem prover too weak. 56 trivial. 0 not checked. [2024-09-11 19:43:31,089 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1495152092] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-11 19:43:31,089 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-11 19:43:31,089 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 17, 13] total 35 [2024-09-11 19:43:31,089 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [495385292] [2024-09-11 19:43:31,089 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-11 19:43:31,090 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 35 states [2024-09-11 19:43:31,090 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 19:43:31,090 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 35 interpolants. [2024-09-11 19:43:31,091 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=130, Invalid=1058, Unknown=2, NotChecked=0, Total=1190 [2024-09-11 19:43:31,091 INFO L87 Difference]: Start difference. First operand 66 states and 79 transitions. Second operand has 35 states, 31 states have (on average 2.129032258064516) internal successors, (66), 32 states have internal predecessors, (66), 13 states have call successors, (15), 3 states have call predecessors, (15), 3 states have return successors, (13), 10 states have call predecessors, (13), 10 states have call successors, (13) [2024-09-11 19:43:35,040 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.50s for a HTC check with result VALID. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=true, quantifiers [1] [2024-09-11 19:43:39,351 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 19:43:39,352 INFO L93 Difference]: Finished difference Result 89 states and 109 transitions. [2024-09-11 19:43:39,352 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 43 states. [2024-09-11 19:43:39,352 INFO L78 Accepts]: Start accepts. Automaton has has 35 states, 31 states have (on average 2.129032258064516) internal successors, (66), 32 states have internal predecessors, (66), 13 states have call successors, (15), 3 states have call predecessors, (15), 3 states have return successors, (13), 10 states have call predecessors, (13), 10 states have call successors, (13) Word has length 61 [2024-09-11 19:43:39,353 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 19:43:39,353 INFO L225 Difference]: With dead ends: 89 [2024-09-11 19:43:39,353 INFO L226 Difference]: Without dead ends: 0 [2024-09-11 19:43:39,361 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 176 GetRequests, 112 SyntacticMatches, 2 SemanticMatches, 62 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 756 ImplicationChecksByTransitivity, 14.0s TimeCoverageRelationStatistics Valid=559, Invalid=3471, Unknown=2, NotChecked=0, Total=4032 [2024-09-11 19:43:39,361 INFO L434 NwaCegarLoop]: 13 mSDtfsCounter, 35 mSDsluCounter, 247 mSDsCounter, 0 mSdLazyCounter, 800 mSolverCounterSat, 37 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 36 SdHoareTripleChecker+Valid, 260 SdHoareTripleChecker+Invalid, 837 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 37 IncrementalHoareTripleChecker+Valid, 800 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.6s IncrementalHoareTripleChecker+Time [2024-09-11 19:43:39,362 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [36 Valid, 260 Invalid, 837 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [37 Valid, 800 Invalid, 0 Unknown, 0 Unchecked, 4.6s Time] [2024-09-11 19:43:39,362 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-09-11 19:43:39,362 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-09-11 19:43:39,364 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-11 19:43:39,364 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-09-11 19:43:39,364 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 61 [2024-09-11 19:43:39,365 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 19:43:39,365 INFO L474 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-09-11 19:43:39,365 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 35 states, 31 states have (on average 2.129032258064516) internal successors, (66), 32 states have internal predecessors, (66), 13 states have call successors, (15), 3 states have call predecessors, (15), 3 states have return successors, (13), 10 states have call predecessors, (13), 10 states have call successors, (13) [2024-09-11 19:43:39,365 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 19:43:39,365 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-09-11 19:43:39,365 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-09-11 19:43:39,367 INFO L785 garLoopResultBuilder]: Registering result SAFE for location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-09-11 19:43:39,397 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Ended with exit code 0 [2024-09-11 19:43:39,572 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,8 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 19:43:39,575 INFO L408 BasicCegarLoop]: Path program histogram: [3, 1, 1, 1, 1, 1] [2024-09-11 19:43:39,577 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-09-11 19:43:43,252 INFO L165 ceAbstractionStarter]: Computing trace abstraction results [2024-09-11 19:43:43,265 WARN L945 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-09-11 19:43:43,271 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 11.09 07:43:43 BoogieIcfgContainer [2024-09-11 19:43:43,271 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-09-11 19:43:43,272 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-09-11 19:43:43,272 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-09-11 19:43:43,272 INFO L274 PluginConnector]: Witness Printer initialized [2024-09-11 19:43:43,272 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 11.09 07:43:12" (3/4) ... [2024-09-11 19:43:43,275 INFO L139 WitnessPrinter]: Generating witness for correct program [2024-09-11 19:43:43,278 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure assume_abort_if_not [2024-09-11 19:43:43,278 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure __VERIFIER_assert [2024-09-11 19:43:43,281 INFO L896 BoogieBacktranslator]: Reduced CFG by removing 15 nodes and edges [2024-09-11 19:43:43,282 INFO L896 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-09-11 19:43:43,282 INFO L896 BoogieBacktranslator]: Reduced CFG by removing 3 nodes and edges [2024-09-11 19:43:43,282 INFO L896 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-09-11 19:43:43,344 INFO L149 WitnessManager]: Wrote witness to /storage/repos/certificate-witnesses-artifact/automizer/witness.graphml [2024-09-11 19:43:43,344 INFO L149 WitnessManager]: Wrote witness to /storage/repos/certificate-witnesses-artifact/automizer/witness.yml [2024-09-11 19:43:43,344 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-09-11 19:43:43,345 INFO L158 Benchmark]: Toolchain (without parser) took 31545.07ms. Allocated memory was 172.0MB in the beginning and 350.2MB in the end (delta: 178.3MB). Free memory was 102.0MB in the beginning and 249.2MB in the end (delta: -147.2MB). Peak memory consumption was 32.7MB. Max. memory is 16.1GB. [2024-09-11 19:43:43,345 INFO L158 Benchmark]: CDTParser took 0.18ms. Allocated memory is still 172.0MB. Free memory is still 129.0MB. There was no memory consumed. Max. memory is 16.1GB. [2024-09-11 19:43:43,345 INFO L158 Benchmark]: CACSL2BoogieTranslator took 251.98ms. Allocated memory is still 172.0MB. Free memory was 101.8MB in the beginning and 90.2MB in the end (delta: 11.6MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. [2024-09-11 19:43:43,345 INFO L158 Benchmark]: Boogie Procedure Inliner took 36.55ms. Allocated memory is still 172.0MB. Free memory was 90.2MB in the beginning and 88.6MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-09-11 19:43:43,346 INFO L158 Benchmark]: Boogie Preprocessor took 30.23ms. Allocated memory is still 172.0MB. Free memory was 88.6MB in the beginning and 87.0MB in the end (delta: 1.6MB). There was no memory consumed. Max. memory is 16.1GB. [2024-09-11 19:43:43,346 INFO L158 Benchmark]: RCFGBuilder took 338.64ms. Allocated memory is still 172.0MB. Free memory was 87.0MB in the beginning and 132.4MB in the end (delta: -45.5MB). Peak memory consumption was 3.9MB. Max. memory is 16.1GB. [2024-09-11 19:43:43,346 INFO L158 Benchmark]: TraceAbstraction took 30807.76ms. Allocated memory was 172.0MB in the beginning and 350.2MB in the end (delta: 178.3MB). Free memory was 132.4MB in the beginning and 254.4MB in the end (delta: -122.0MB). Peak memory consumption was 195.1MB. Max. memory is 16.1GB. [2024-09-11 19:43:43,346 INFO L158 Benchmark]: Witness Printer took 72.93ms. Allocated memory is still 350.2MB. Free memory was 254.4MB in the beginning and 249.2MB in the end (delta: 5.2MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2024-09-11 19:43:43,347 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.18ms. Allocated memory is still 172.0MB. Free memory is still 129.0MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 251.98ms. Allocated memory is still 172.0MB. Free memory was 101.8MB in the beginning and 90.2MB in the end (delta: 11.6MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 36.55ms. Allocated memory is still 172.0MB. Free memory was 90.2MB in the beginning and 88.6MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 30.23ms. Allocated memory is still 172.0MB. Free memory was 88.6MB in the beginning and 87.0MB in the end (delta: 1.6MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 338.64ms. Allocated memory is still 172.0MB. Free memory was 87.0MB in the beginning and 132.4MB in the end (delta: -45.5MB). Peak memory consumption was 3.9MB. Max. memory is 16.1GB. * TraceAbstraction took 30807.76ms. Allocated memory was 172.0MB in the beginning and 350.2MB in the end (delta: 178.3MB). Free memory was 132.4MB in the beginning and 254.4MB in the end (delta: -122.0MB). Peak memory consumption was 195.1MB. Max. memory is 16.1GB. * Witness Printer took 72.93ms. Allocated memory is still 350.2MB. Free memory was 254.4MB in the beginning and 249.2MB in the end (delta: 5.2MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 16]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 3 procedures, 24 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 27.1s, OverallIterations: 8, TraceHistogramMax: 6, PathProgramHistogramMax: 3, EmptinessCheckTime: 0.0s, AutomataDifference: 10.7s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 147 SdHoareTripleChecker+Valid, 5.7s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 143 mSDsluCounter, 869 SdHoareTripleChecker+Invalid, 5.5s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 728 mSDsCounter, 118 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 1755 IncrementalHoareTripleChecker+Invalid, 1873 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 118 mSolverCounterUnsat, 141 mSDtfsCounter, 1755 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 641 GetRequests, 454 SyntacticMatches, 3 SemanticMatches, 184 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1508 ImplicationChecksByTransitivity, 16.5s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=66occurred in iteration=7, InterpolantAutomatonStates: 129, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 8 MinimizatonAttempts, 16 StatesRemovedByMinimization, 5 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 14.1s InterpolantComputationTime, 556 NumberOfCodeBlocks, 529 NumberOfCodeBlocksAsserted, 17 NumberOfCheckSat, 686 ConstructedInterpolants, 3 QuantifiedInterpolants, 4234 SizeOfPredicates, 24 NumberOfNonLiveVariables, 683 ConjunctsInSsa, 151 ConjunctsInUnsatCore, 17 InterpolantComputations, 3 PerfectInterpolantSequences, 543/714 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 32]: Loop Invariant Derived loop invariant: ((((((((((__int128) X * y) * 2) + X) + v) == ((((__int128) Y * x) * 2) + ((long long) 2 * Y))) && (X <= 2)) && (0 <= Y)) && (Y <= 2)) && (0 <= X)) - InvariantResult [Line: 50]: Location Invariant Derived location invariant: 1 - ProcedureContractResult [Line: 10]: Procedure Contract for assume_abort_if_not Derived contract for procedure assume_abort_if_not. Ensures: (\old(cond) != 0) - ProcedureContractResult [Line: 13]: Procedure Contract for __VERIFIER_assert Derived contract for procedure __VERIFIER_assert. Requires: (1 <= \old(cond)) Ensures: (1 <= \old(cond)) RESULT: Ultimate proved your program to be correct! [2024-09-11 19:43:43,413 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE