./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/nla-digbench-scaling/prodbin-ll_valuebound20.c --full-output --traceabstraction.positions.where.we.compute.the.hoare.annotation All --witnessprinter.yaml.format.version 2.1 --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version a9b967e5 Calling Ultimate with: /root/.sdkman/candidates/java/current/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReach.xml -i ../sv-benchmarks/c/nla-digbench-scaling/prodbin-ll_valuebound20.c -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/certificate-witnesses-artifact/automizer --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash a95a21aef2f50b6142b75e9167422e223cf73e944019da3877f24b8f537b25b5 --traceabstraction.positions.where.we.compute.the.hoare.annotation All --witnessprinter.yaml.format.version 2.1 --- Real Ultimate output --- This is Ultimate 0.2.4-dev-a9b967e-m [2024-09-11 20:20:38,644 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-09-11 20:20:38,722 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-09-11 20:20:38,727 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-09-11 20:20:38,728 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-09-11 20:20:38,759 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-09-11 20:20:38,761 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-09-11 20:20:38,761 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-09-11 20:20:38,762 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-09-11 20:20:38,763 INFO L153 SettingsManager]: * Use memory slicer=true [2024-09-11 20:20:38,763 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-09-11 20:20:38,764 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-09-11 20:20:38,764 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-09-11 20:20:38,764 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-09-11 20:20:38,766 INFO L153 SettingsManager]: * Use SBE=true [2024-09-11 20:20:38,766 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-09-11 20:20:38,767 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-09-11 20:20:38,767 INFO L153 SettingsManager]: * sizeof long=4 [2024-09-11 20:20:38,767 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-09-11 20:20:38,768 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-09-11 20:20:38,768 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-09-11 20:20:38,771 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-09-11 20:20:38,771 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-09-11 20:20:38,772 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-09-11 20:20:38,772 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-09-11 20:20:38,772 INFO L153 SettingsManager]: * sizeof long double=12 [2024-09-11 20:20:38,772 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-09-11 20:20:38,773 INFO L153 SettingsManager]: * Use constant arrays=true [2024-09-11 20:20:38,773 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-09-11 20:20:38,773 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-09-11 20:20:38,774 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-09-11 20:20:38,774 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-09-11 20:20:38,774 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-11 20:20:38,774 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-09-11 20:20:38,775 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-09-11 20:20:38,775 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-09-11 20:20:38,775 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-09-11 20:20:38,776 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-09-11 20:20:38,776 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-09-11 20:20:38,777 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-09-11 20:20:38,777 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-09-11 20:20:38,777 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-09-11 20:20:38,777 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/certificate-witnesses-artifact/automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> a95a21aef2f50b6142b75e9167422e223cf73e944019da3877f24b8f537b25b5 Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> All Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: YAML Format version -> 2.1 [2024-09-11 20:20:39,010 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-09-11 20:20:39,036 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-09-11 20:20:39,039 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-09-11 20:20:39,040 INFO L270 PluginConnector]: Initializing CDTParser... [2024-09-11 20:20:39,040 INFO L274 PluginConnector]: CDTParser initialized [2024-09-11 20:20:39,041 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/nla-digbench-scaling/prodbin-ll_valuebound20.c [2024-09-11 20:20:40,445 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-09-11 20:20:40,614 INFO L384 CDTParser]: Found 1 translation units. [2024-09-11 20:20:40,615 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/nla-digbench-scaling/prodbin-ll_valuebound20.c [2024-09-11 20:20:40,623 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/1a7052f65/8c5c16b4563f4675978c03f14c4091bf/FLAG8f226c682 [2024-09-11 20:20:40,637 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/1a7052f65/8c5c16b4563f4675978c03f14c4091bf [2024-09-11 20:20:40,638 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-09-11 20:20:40,640 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-09-11 20:20:40,641 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-09-11 20:20:40,641 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-09-11 20:20:40,647 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-09-11 20:20:40,648 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,649 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@7ffc4258 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40, skipping insertion in model container [2024-09-11 20:20:40,649 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,667 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-09-11 20:20:40,819 WARN L247 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/nla-digbench-scaling/prodbin-ll_valuebound20.c[537,550] [2024-09-11 20:20:40,839 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-11 20:20:40,850 INFO L200 MainTranslator]: Completed pre-run [2024-09-11 20:20:40,867 WARN L247 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/nla-digbench-scaling/prodbin-ll_valuebound20.c[537,550] [2024-09-11 20:20:40,872 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-11 20:20:40,886 INFO L204 MainTranslator]: Completed translation [2024-09-11 20:20:40,887 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40 WrapperNode [2024-09-11 20:20:40,887 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-09-11 20:20:40,888 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-09-11 20:20:40,888 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-09-11 20:20:40,888 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-09-11 20:20:40,896 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,901 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,915 INFO L138 Inliner]: procedures = 14, calls = 12, calls flagged for inlining = 2, calls inlined = 2, statements flattened = 43 [2024-09-11 20:20:40,915 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-09-11 20:20:40,916 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-09-11 20:20:40,916 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-09-11 20:20:40,916 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-09-11 20:20:40,925 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,925 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,926 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,935 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-09-11 20:20:40,935 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,936 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,938 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,940 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,941 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,942 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,944 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-09-11 20:20:40,944 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-09-11 20:20:40,945 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-09-11 20:20:40,945 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-09-11 20:20:40,945 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (1/1) ... [2024-09-11 20:20:40,950 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-11 20:20:40,961 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 20:20:40,975 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-09-11 20:20:40,979 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-09-11 20:20:41,024 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-09-11 20:20:41,024 INFO L130 BoogieDeclarations]: Found specification of procedure assume_abort_if_not [2024-09-11 20:20:41,025 INFO L138 BoogieDeclarations]: Found implementation of procedure assume_abort_if_not [2024-09-11 20:20:41,025 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-09-11 20:20:41,025 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-09-11 20:20:41,025 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-09-11 20:20:41,025 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_assert [2024-09-11 20:20:41,027 INFO L138 BoogieDeclarations]: Found implementation of procedure __VERIFIER_assert [2024-09-11 20:20:41,087 INFO L242 CfgBuilder]: Building ICFG [2024-09-11 20:20:41,090 INFO L268 CfgBuilder]: Building CFG for each procedure with an implementation [2024-09-11 20:20:41,230 INFO L? ?]: Removed 6 outVars from TransFormulas that were not future-live. [2024-09-11 20:20:41,230 INFO L291 CfgBuilder]: Performing block encoding [2024-09-11 20:20:41,261 INFO L313 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-09-11 20:20:41,262 INFO L318 CfgBuilder]: Removed 1 assume(true) statements. [2024-09-11 20:20:41,262 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 11.09 08:20:41 BoogieIcfgContainer [2024-09-11 20:20:41,262 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-09-11 20:20:41,264 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-09-11 20:20:41,265 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-09-11 20:20:41,268 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-09-11 20:20:41,268 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 11.09 08:20:40" (1/3) ... [2024-09-11 20:20:41,269 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2d65657a and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 11.09 08:20:41, skipping insertion in model container [2024-09-11 20:20:41,269 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 11.09 08:20:40" (2/3) ... [2024-09-11 20:20:41,270 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2d65657a and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 11.09 08:20:41, skipping insertion in model container [2024-09-11 20:20:41,271 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 11.09 08:20:41" (3/3) ... [2024-09-11 20:20:41,272 INFO L112 eAbstractionObserver]: Analyzing ICFG prodbin-ll_valuebound20.c [2024-09-11 20:20:41,288 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:All NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-09-11 20:20:41,289 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-09-11 20:20:41,350 INFO L335 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-09-11 20:20:41,359 INFO L336 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@2d9373da, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-09-11 20:20:41,360 INFO L337 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-09-11 20:20:41,364 INFO L276 IsEmpty]: Start isEmpty. Operand has 24 states, 15 states have (on average 1.4666666666666666) internal successors, (22), 16 states have internal predecessors, (22), 5 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) [2024-09-11 20:20:41,371 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2024-09-11 20:20:41,372 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 20:20:41,373 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 20:20:41,374 INFO L399 AbstractCegarLoop]: === Iteration 1 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 20:20:41,378 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:41,378 INFO L85 PathProgramCache]: Analyzing trace with hash 1698673820, now seen corresponding path program 1 times [2024-09-11 20:20:41,387 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 20:20:41,387 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [806789493] [2024-09-11 20:20:41,387 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:41,388 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 20:20:41,485 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:41,543 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-11 20:20:41,547 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:41,557 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 7 [2024-09-11 20:20:41,562 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:41,570 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-09-11 20:20:41,572 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:41,579 INFO L134 CoverageAnalysis]: Checked inductivity of 12 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-09-11 20:20:41,580 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 20:20:41,580 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [806789493] [2024-09-11 20:20:41,585 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [806789493] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-11 20:20:41,585 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-11 20:20:41,585 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-09-11 20:20:41,586 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1108134819] [2024-09-11 20:20:41,587 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-11 20:20:41,591 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-09-11 20:20:41,594 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 20:20:41,620 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-09-11 20:20:41,621 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-09-11 20:20:41,623 INFO L87 Difference]: Start difference. First operand has 24 states, 15 states have (on average 1.4666666666666666) internal successors, (22), 16 states have internal predecessors, (22), 5 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) Second operand has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-11 20:20:41,657 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 20:20:41,661 INFO L93 Difference]: Finished difference Result 46 states and 66 transitions. [2024-09-11 20:20:41,666 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-09-11 20:20:41,667 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) Word has length 23 [2024-09-11 20:20:41,671 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 20:20:41,678 INFO L225 Difference]: With dead ends: 46 [2024-09-11 20:20:41,678 INFO L226 Difference]: Without dead ends: 22 [2024-09-11 20:20:41,681 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 11 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-09-11 20:20:41,685 INFO L434 NwaCegarLoop]: 26 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 2 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 26 SdHoareTripleChecker+Invalid, 2 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 2 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-11 20:20:41,686 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 26 Invalid, 2 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 2 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-11 20:20:41,699 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 22 states. [2024-09-11 20:20:41,718 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 22 to 22. [2024-09-11 20:20:41,721 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 22 states, 14 states have (on average 1.2142857142857142) internal successors, (17), 15 states have internal predecessors, (17), 5 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 4 states have call predecessors, (4), 4 states have call successors, (4) [2024-09-11 20:20:41,721 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 22 states to 22 states and 26 transitions. [2024-09-11 20:20:41,724 INFO L78 Accepts]: Start accepts. Automaton has 22 states and 26 transitions. Word has length 23 [2024-09-11 20:20:41,724 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 20:20:41,725 INFO L474 AbstractCegarLoop]: Abstraction has 22 states and 26 transitions. [2024-09-11 20:20:41,725 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-11 20:20:41,726 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:41,726 INFO L276 IsEmpty]: Start isEmpty. Operand 22 states and 26 transitions. [2024-09-11 20:20:41,727 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2024-09-11 20:20:41,728 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 20:20:41,728 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 20:20:41,729 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-09-11 20:20:41,729 INFO L399 AbstractCegarLoop]: === Iteration 2 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 20:20:41,731 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:41,731 INFO L85 PathProgramCache]: Analyzing trace with hash 549966490, now seen corresponding path program 1 times [2024-09-11 20:20:41,731 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 20:20:41,732 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [273027513] [2024-09-11 20:20:41,732 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:41,732 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 20:20:41,771 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-11 20:20:41,777 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [714122678] [2024-09-11 20:20:41,778 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:41,778 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:20:41,778 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 20:20:41,780 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 20:20:41,782 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-09-11 20:20:41,855 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:41,857 INFO L262 TraceCheckSpWp]: Trace formula consists of 68 conjuncts, 19 conjuncts are in the unsatisfiable core [2024-09-11 20:20:41,863 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 20:20:42,184 INFO L134 CoverageAnalysis]: Checked inductivity of 12 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-09-11 20:20:42,185 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 20:20:42,277 INFO L134 CoverageAnalysis]: Checked inductivity of 12 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-09-11 20:20:42,280 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 20:20:42,280 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [273027513] [2024-09-11 20:20:42,281 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-11 20:20:42,281 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [714122678] [2024-09-11 20:20:42,281 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [714122678] provided 1 perfect and 1 imperfect interpolant sequences [2024-09-11 20:20:42,281 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-09-11 20:20:42,281 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [9] total 10 [2024-09-11 20:20:42,282 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1382885959] [2024-09-11 20:20:42,282 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-11 20:20:42,283 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-09-11 20:20:42,283 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 20:20:42,286 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-09-11 20:20:42,286 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=69, Unknown=0, NotChecked=0, Total=90 [2024-09-11 20:20:42,286 INFO L87 Difference]: Start difference. First operand 22 states and 26 transitions. Second operand has 5 states, 5 states have (on average 2.0) internal successors, (10), 4 states have internal predecessors, (10), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) [2024-09-11 20:20:42,382 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 20:20:42,382 INFO L93 Difference]: Finished difference Result 33 states and 39 transitions. [2024-09-11 20:20:42,383 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-09-11 20:20:42,383 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 2.0) internal successors, (10), 4 states have internal predecessors, (10), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) Word has length 23 [2024-09-11 20:20:42,383 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 20:20:42,385 INFO L225 Difference]: With dead ends: 33 [2024-09-11 20:20:42,385 INFO L226 Difference]: Without dead ends: 31 [2024-09-11 20:20:42,386 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 45 GetRequests, 34 SyntacticMatches, 2 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=25, Invalid=85, Unknown=0, NotChecked=0, Total=110 [2024-09-11 20:20:42,388 INFO L434 NwaCegarLoop]: 17 mSDtfsCounter, 5 mSDsluCounter, 48 mSDsCounter, 0 mSdLazyCounter, 38 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 6 SdHoareTripleChecker+Valid, 65 SdHoareTripleChecker+Invalid, 39 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 38 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-11 20:20:42,389 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [6 Valid, 65 Invalid, 39 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 38 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-11 20:20:42,390 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 31 states. [2024-09-11 20:20:42,398 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 31 to 28. [2024-09-11 20:20:42,400 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 28 states, 18 states have (on average 1.1666666666666667) internal successors, (21), 20 states have internal predecessors, (21), 6 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2024-09-11 20:20:42,401 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 28 states to 28 states and 32 transitions. [2024-09-11 20:20:42,401 INFO L78 Accepts]: Start accepts. Automaton has 28 states and 32 transitions. Word has length 23 [2024-09-11 20:20:42,402 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 20:20:42,403 INFO L474 AbstractCegarLoop]: Abstraction has 28 states and 32 transitions. [2024-09-11 20:20:42,403 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 2.0) internal successors, (10), 4 states have internal predecessors, (10), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) [2024-09-11 20:20:42,403 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:42,403 INFO L276 IsEmpty]: Start isEmpty. Operand 28 states and 32 transitions. [2024-09-11 20:20:42,404 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 30 [2024-09-11 20:20:42,404 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 20:20:42,405 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 20:20:42,418 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-09-11 20:20:42,605 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:20:42,606 INFO L399 AbstractCegarLoop]: === Iteration 3 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 20:20:42,606 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:42,606 INFO L85 PathProgramCache]: Analyzing trace with hash 1559575677, now seen corresponding path program 1 times [2024-09-11 20:20:42,607 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 20:20:42,607 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1269623670] [2024-09-11 20:20:42,607 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:42,607 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 20:20:42,637 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:42,778 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-11 20:20:42,779 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:42,782 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 7 [2024-09-11 20:20:42,783 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:42,785 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-09-11 20:20:42,787 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:42,811 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 19 [2024-09-11 20:20:42,816 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:42,830 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 8 proven. 0 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-09-11 20:20:42,833 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 20:20:42,833 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1269623670] [2024-09-11 20:20:42,833 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1269623670] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-11 20:20:42,834 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-11 20:20:42,834 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-09-11 20:20:42,834 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1815035672] [2024-09-11 20:20:42,834 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-11 20:20:42,834 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-09-11 20:20:42,835 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 20:20:42,835 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-09-11 20:20:42,836 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=10, Invalid=20, Unknown=0, NotChecked=0, Total=30 [2024-09-11 20:20:42,836 INFO L87 Difference]: Start difference. First operand 28 states and 32 transitions. Second operand has 6 states, 6 states have (on average 2.8333333333333335) internal successors, (17), 5 states have internal predecessors, (17), 3 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) [2024-09-11 20:20:42,888 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 20:20:42,888 INFO L93 Difference]: Finished difference Result 38 states and 43 transitions. [2024-09-11 20:20:42,888 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-09-11 20:20:42,889 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 2.8333333333333335) internal successors, (17), 5 states have internal predecessors, (17), 3 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) Word has length 29 [2024-09-11 20:20:42,889 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 20:20:42,890 INFO L225 Difference]: With dead ends: 38 [2024-09-11 20:20:42,890 INFO L226 Difference]: Without dead ends: 31 [2024-09-11 20:20:42,890 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 13 GetRequests, 9 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=10, Invalid=20, Unknown=0, NotChecked=0, Total=30 [2024-09-11 20:20:42,892 INFO L434 NwaCegarLoop]: 17 mSDtfsCounter, 11 mSDsluCounter, 38 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 12 SdHoareTripleChecker+Valid, 55 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-11 20:20:42,892 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [12 Valid, 55 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-11 20:20:42,893 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 31 states. [2024-09-11 20:20:42,899 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 31 to 29. [2024-09-11 20:20:42,899 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 29 states, 19 states have (on average 1.1578947368421053) internal successors, (22), 20 states have internal predecessors, (22), 6 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) [2024-09-11 20:20:42,900 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 29 states to 29 states and 33 transitions. [2024-09-11 20:20:42,901 INFO L78 Accepts]: Start accepts. Automaton has 29 states and 33 transitions. Word has length 29 [2024-09-11 20:20:42,901 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 20:20:42,901 INFO L474 AbstractCegarLoop]: Abstraction has 29 states and 33 transitions. [2024-09-11 20:20:42,902 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 2.8333333333333335) internal successors, (17), 5 states have internal predecessors, (17), 3 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) [2024-09-11 20:20:42,903 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:42,903 INFO L276 IsEmpty]: Start isEmpty. Operand 29 states and 33 transitions. [2024-09-11 20:20:42,904 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-09-11 20:20:42,904 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 20:20:42,904 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 20:20:42,904 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-09-11 20:20:42,905 INFO L399 AbstractCegarLoop]: === Iteration 4 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 20:20:42,905 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:42,905 INFO L85 PathProgramCache]: Analyzing trace with hash 191228685, now seen corresponding path program 1 times [2024-09-11 20:20:42,905 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 20:20:42,906 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [40797969] [2024-09-11 20:20:42,906 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:42,906 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 20:20:42,959 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-11 20:20:42,965 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1874715005] [2024-09-11 20:20:42,965 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:42,965 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:20:42,965 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 20:20:42,967 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 20:20:42,969 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-09-11 20:20:43,010 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:43,011 INFO L262 TraceCheckSpWp]: Trace formula consists of 89 conjuncts, 19 conjuncts are in the unsatisfiable core [2024-09-11 20:20:43,014 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 20:20:44,280 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 2 proven. 2 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-09-11 20:20:44,281 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 20:20:46,333 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 4 proven. 0 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-09-11 20:20:46,334 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 20:20:46,334 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [40797969] [2024-09-11 20:20:46,334 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-11 20:20:46,334 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1874715005] [2024-09-11 20:20:46,335 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1874715005] provided 1 perfect and 1 imperfect interpolant sequences [2024-09-11 20:20:46,335 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-09-11 20:20:46,335 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [8] total 11 [2024-09-11 20:20:46,335 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1323493676] [2024-09-11 20:20:46,335 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-11 20:20:46,336 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-09-11 20:20:46,336 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 20:20:46,336 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-09-11 20:20:46,337 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=30, Invalid=80, Unknown=0, NotChecked=0, Total=110 [2024-09-11 20:20:46,337 INFO L87 Difference]: Start difference. First operand 29 states and 33 transitions. Second operand has 7 states, 7 states have (on average 2.4285714285714284) internal successors, (17), 6 states have internal predecessors, (17), 3 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-09-11 20:20:46,525 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 20:20:46,526 INFO L93 Difference]: Finished difference Result 41 states and 47 transitions. [2024-09-11 20:20:46,526 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-09-11 20:20:46,526 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 2.4285714285714284) internal successors, (17), 6 states have internal predecessors, (17), 3 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 32 [2024-09-11 20:20:46,527 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 20:20:46,528 INFO L225 Difference]: With dead ends: 41 [2024-09-11 20:20:46,529 INFO L226 Difference]: Without dead ends: 39 [2024-09-11 20:20:46,530 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 64 GetRequests, 51 SyntacticMatches, 2 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 15 ImplicationChecksByTransitivity, 1.7s TimeCoverageRelationStatistics Valid=40, Invalid=116, Unknown=0, NotChecked=0, Total=156 [2024-09-11 20:20:46,531 INFO L434 NwaCegarLoop]: 17 mSDtfsCounter, 5 mSDsluCounter, 79 mSDsCounter, 0 mSdLazyCounter, 56 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 6 SdHoareTripleChecker+Valid, 96 SdHoareTripleChecker+Invalid, 60 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 56 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-11 20:20:46,531 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [6 Valid, 96 Invalid, 60 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 56 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-11 20:20:46,532 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 39 states. [2024-09-11 20:20:46,543 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 39 to 38. [2024-09-11 20:20:46,543 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 38 states, 26 states have (on average 1.1923076923076923) internal successors, (31), 27 states have internal predecessors, (31), 7 states have call successors, (7), 4 states have call predecessors, (7), 4 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-11 20:20:46,546 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 38 states to 38 states and 44 transitions. [2024-09-11 20:20:46,546 INFO L78 Accepts]: Start accepts. Automaton has 38 states and 44 transitions. Word has length 32 [2024-09-11 20:20:46,549 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 20:20:46,549 INFO L474 AbstractCegarLoop]: Abstraction has 38 states and 44 transitions. [2024-09-11 20:20:46,550 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 2.4285714285714284) internal successors, (17), 6 states have internal predecessors, (17), 3 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-09-11 20:20:46,550 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:46,550 INFO L276 IsEmpty]: Start isEmpty. Operand 38 states and 44 transitions. [2024-09-11 20:20:46,551 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-09-11 20:20:46,551 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 20:20:46,551 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 20:20:46,569 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-09-11 20:20:46,751 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:20:46,752 INFO L399 AbstractCegarLoop]: === Iteration 5 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 20:20:46,752 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:46,752 INFO L85 PathProgramCache]: Analyzing trace with hash 1966236047, now seen corresponding path program 1 times [2024-09-11 20:20:46,753 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 20:20:46,753 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [518037575] [2024-09-11 20:20:46,753 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:46,753 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 20:20:46,778 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-11 20:20:46,779 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1046379767] [2024-09-11 20:20:46,780 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:46,780 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:20:46,780 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 20:20:46,784 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 20:20:46,786 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-09-11 20:20:46,832 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:46,835 INFO L262 TraceCheckSpWp]: Trace formula consists of 84 conjuncts, 24 conjuncts are in the unsatisfiable core [2024-09-11 20:20:46,837 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 20:20:47,138 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 5 proven. 5 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-09-11 20:20:47,138 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 20:20:47,541 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 8 proven. 2 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-09-11 20:20:47,542 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 20:20:47,542 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [518037575] [2024-09-11 20:20:47,542 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-11 20:20:47,542 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1046379767] [2024-09-11 20:20:47,542 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1046379767] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-11 20:20:47,543 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-11 20:20:47,543 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 10] total 16 [2024-09-11 20:20:47,543 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [778202629] [2024-09-11 20:20:47,543 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-11 20:20:47,544 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 16 states [2024-09-11 20:20:47,544 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 20:20:47,545 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 16 interpolants. [2024-09-11 20:20:47,545 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=51, Invalid=189, Unknown=0, NotChecked=0, Total=240 [2024-09-11 20:20:47,545 INFO L87 Difference]: Start difference. First operand 38 states and 44 transitions. Second operand has 16 states, 16 states have (on average 1.8125) internal successors, (29), 13 states have internal predecessors, (29), 6 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 6 states have call predecessors, (8), 4 states have call successors, (8) [2024-09-11 20:20:48,125 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 20:20:48,126 INFO L93 Difference]: Finished difference Result 66 states and 81 transitions. [2024-09-11 20:20:48,126 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 16 states. [2024-09-11 20:20:48,127 INFO L78 Accepts]: Start accepts. Automaton has has 16 states, 16 states have (on average 1.8125) internal successors, (29), 13 states have internal predecessors, (29), 6 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 6 states have call predecessors, (8), 4 states have call successors, (8) Word has length 32 [2024-09-11 20:20:48,127 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 20:20:48,129 INFO L225 Difference]: With dead ends: 66 [2024-09-11 20:20:48,130 INFO L226 Difference]: Without dead ends: 59 [2024-09-11 20:20:48,131 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 68 GetRequests, 46 SyntacticMatches, 2 SemanticMatches, 20 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 73 ImplicationChecksByTransitivity, 0.5s TimeCoverageRelationStatistics Valid=110, Invalid=352, Unknown=0, NotChecked=0, Total=462 [2024-09-11 20:20:48,132 INFO L434 NwaCegarLoop]: 14 mSDtfsCounter, 21 mSDsluCounter, 126 mSDsCounter, 0 mSdLazyCounter, 231 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 23 SdHoareTripleChecker+Valid, 140 SdHoareTripleChecker+Invalid, 240 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 231 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-09-11 20:20:48,133 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [23 Valid, 140 Invalid, 240 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 231 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-09-11 20:20:48,134 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 59 states. [2024-09-11 20:20:48,152 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 59 to 58. [2024-09-11 20:20:48,153 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 58 states, 42 states have (on average 1.2619047619047619) internal successors, (53), 43 states have internal predecessors, (53), 10 states have call successors, (10), 5 states have call predecessors, (10), 5 states have return successors, (9), 9 states have call predecessors, (9), 9 states have call successors, (9) [2024-09-11 20:20:48,154 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 58 states to 58 states and 72 transitions. [2024-09-11 20:20:48,155 INFO L78 Accepts]: Start accepts. Automaton has 58 states and 72 transitions. Word has length 32 [2024-09-11 20:20:48,155 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 20:20:48,155 INFO L474 AbstractCegarLoop]: Abstraction has 58 states and 72 transitions. [2024-09-11 20:20:48,155 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 16 states, 16 states have (on average 1.8125) internal successors, (29), 13 states have internal predecessors, (29), 6 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 6 states have call predecessors, (8), 4 states have call successors, (8) [2024-09-11 20:20:48,156 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:48,156 INFO L276 IsEmpty]: Start isEmpty. Operand 58 states and 72 transitions. [2024-09-11 20:20:48,157 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2024-09-11 20:20:48,158 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 20:20:48,158 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 20:20:48,175 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-09-11 20:20:48,362 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:20:48,363 INFO L399 AbstractCegarLoop]: === Iteration 6 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 20:20:48,363 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:48,363 INFO L85 PathProgramCache]: Analyzing trace with hash -1307708752, now seen corresponding path program 1 times [2024-09-11 20:20:48,363 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 20:20:48,363 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1459650939] [2024-09-11 20:20:48,364 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:48,364 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 20:20:48,399 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-11 20:20:48,400 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [39113180] [2024-09-11 20:20:48,401 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:48,401 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:20:48,401 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 20:20:48,403 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 20:20:48,405 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-09-11 20:20:48,442 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:48,443 INFO L262 TraceCheckSpWp]: Trace formula consists of 100 conjuncts, 10 conjuncts are in the unsatisfiable core [2024-09-11 20:20:48,445 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 20:20:48,515 INFO L134 CoverageAnalysis]: Checked inductivity of 23 backedges. 7 proven. 1 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2024-09-11 20:20:48,515 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 20:20:48,601 INFO L134 CoverageAnalysis]: Checked inductivity of 23 backedges. 7 proven. 1 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2024-09-11 20:20:48,601 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 20:20:48,601 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1459650939] [2024-09-11 20:20:48,602 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-11 20:20:48,602 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [39113180] [2024-09-11 20:20:48,602 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [39113180] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-11 20:20:48,602 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-11 20:20:48,602 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 8] total 10 [2024-09-11 20:20:48,602 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2019062043] [2024-09-11 20:20:48,603 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-11 20:20:48,603 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2024-09-11 20:20:48,603 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 20:20:48,604 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2024-09-11 20:20:48,604 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=24, Invalid=66, Unknown=0, NotChecked=0, Total=90 [2024-09-11 20:20:48,604 INFO L87 Difference]: Start difference. First operand 58 states and 72 transitions. Second operand has 10 states, 9 states have (on average 2.5555555555555554) internal successors, (23), 7 states have internal predecessors, (23), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (6), 3 states have call predecessors, (6), 1 states have call successors, (6) [2024-09-11 20:20:48,697 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 20:20:48,697 INFO L93 Difference]: Finished difference Result 66 states and 79 transitions. [2024-09-11 20:20:48,698 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-09-11 20:20:48,698 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 9 states have (on average 2.5555555555555554) internal successors, (23), 7 states have internal predecessors, (23), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (6), 3 states have call predecessors, (6), 1 states have call successors, (6) Word has length 38 [2024-09-11 20:20:48,698 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 20:20:48,699 INFO L225 Difference]: With dead ends: 66 [2024-09-11 20:20:48,699 INFO L226 Difference]: Without dead ends: 59 [2024-09-11 20:20:48,699 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 75 GetRequests, 64 SyntacticMatches, 2 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 14 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=31, Invalid=79, Unknown=0, NotChecked=0, Total=110 [2024-09-11 20:20:48,700 INFO L434 NwaCegarLoop]: 19 mSDtfsCounter, 6 mSDsluCounter, 112 mSDsCounter, 0 mSdLazyCounter, 85 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 6 SdHoareTripleChecker+Valid, 131 SdHoareTripleChecker+Invalid, 86 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 85 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-11 20:20:48,700 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [6 Valid, 131 Invalid, 86 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 85 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-11 20:20:48,701 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 59 states. [2024-09-11 20:20:48,723 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 59 to 57. [2024-09-11 20:20:48,724 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 57 states, 42 states have (on average 1.1666666666666667) internal successors, (49), 42 states have internal predecessors, (49), 9 states have call successors, (9), 5 states have call predecessors, (9), 5 states have return successors, (9), 9 states have call predecessors, (9), 9 states have call successors, (9) [2024-09-11 20:20:48,724 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 57 states to 57 states and 67 transitions. [2024-09-11 20:20:48,725 INFO L78 Accepts]: Start accepts. Automaton has 57 states and 67 transitions. Word has length 38 [2024-09-11 20:20:48,726 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 20:20:48,726 INFO L474 AbstractCegarLoop]: Abstraction has 57 states and 67 transitions. [2024-09-11 20:20:48,726 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 9 states have (on average 2.5555555555555554) internal successors, (23), 7 states have internal predecessors, (23), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (6), 3 states have call predecessors, (6), 1 states have call successors, (6) [2024-09-11 20:20:48,727 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:48,727 INFO L276 IsEmpty]: Start isEmpty. Operand 57 states and 67 transitions. [2024-09-11 20:20:48,727 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2024-09-11 20:20:48,729 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 20:20:48,729 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 20:20:48,746 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-09-11 20:20:48,930 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:20:48,930 INFO L399 AbstractCegarLoop]: === Iteration 7 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 20:20:48,930 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:48,930 INFO L85 PathProgramCache]: Analyzing trace with hash 1005394556, now seen corresponding path program 1 times [2024-09-11 20:20:48,931 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 20:20:48,931 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1116933203] [2024-09-11 20:20:48,931 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:48,931 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 20:20:48,950 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-11 20:20:48,951 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [393661774] [2024-09-11 20:20:48,951 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:48,951 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:20:48,952 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 20:20:48,953 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 20:20:48,957 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-09-11 20:20:49,004 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:20:49,006 INFO L262 TraceCheckSpWp]: Trace formula consists of 105 conjuncts, 29 conjuncts are in the unsatisfiable core [2024-09-11 20:20:49,008 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 20:20:49,739 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 6 proven. 10 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2024-09-11 20:20:49,740 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 20:20:52,905 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 12 proven. 4 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2024-09-11 20:20:52,905 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 20:20:52,905 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1116933203] [2024-09-11 20:20:52,905 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-11 20:20:52,905 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [393661774] [2024-09-11 20:20:52,906 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [393661774] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-11 20:20:52,906 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-11 20:20:52,906 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 11] total 18 [2024-09-11 20:20:52,906 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [473306168] [2024-09-11 20:20:52,907 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-11 20:20:52,907 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 18 states [2024-09-11 20:20:52,907 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 20:20:52,908 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 18 interpolants. [2024-09-11 20:20:52,908 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=62, Invalid=244, Unknown=0, NotChecked=0, Total=306 [2024-09-11 20:20:52,908 INFO L87 Difference]: Start difference. First operand 57 states and 67 transitions. Second operand has 18 states, 18 states have (on average 2.0) internal successors, (36), 17 states have internal predecessors, (36), 6 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (7), 4 states have call predecessors, (7), 4 states have call successors, (7) [2024-09-11 20:20:54,337 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.00s for a HTC check with result VALID. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=true, quantifiers [] [2024-09-11 20:20:55,417 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.08s for a HTC check with result VALID. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=true, quantifiers [] [2024-09-11 20:20:58,778 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 20:20:58,778 INFO L93 Difference]: Finished difference Result 95 states and 114 transitions. [2024-09-11 20:20:58,779 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2024-09-11 20:20:58,779 INFO L78 Accepts]: Start accepts. Automaton has has 18 states, 18 states have (on average 2.0) internal successors, (36), 17 states have internal predecessors, (36), 6 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (7), 4 states have call predecessors, (7), 4 states have call successors, (7) Word has length 41 [2024-09-11 20:20:58,779 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 20:20:58,781 INFO L225 Difference]: With dead ends: 95 [2024-09-11 20:20:58,781 INFO L226 Difference]: Without dead ends: 93 [2024-09-11 20:20:58,782 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 88 GetRequests, 64 SyntacticMatches, 2 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 84 ImplicationChecksByTransitivity, 5.1s TimeCoverageRelationStatistics Valid=122, Invalid=430, Unknown=0, NotChecked=0, Total=552 [2024-09-11 20:20:58,783 INFO L434 NwaCegarLoop]: 19 mSDtfsCounter, 13 mSDsluCounter, 154 mSDsCounter, 0 mSdLazyCounter, 217 mSolverCounterSat, 12 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 14 SdHoareTripleChecker+Valid, 173 SdHoareTripleChecker+Invalid, 229 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 12 IncrementalHoareTripleChecker+Valid, 217 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.2s IncrementalHoareTripleChecker+Time [2024-09-11 20:20:58,783 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [14 Valid, 173 Invalid, 229 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [12 Valid, 217 Invalid, 0 Unknown, 0 Unchecked, 3.2s Time] [2024-09-11 20:20:58,784 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 93 states. [2024-09-11 20:20:58,814 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 93 to 93. [2024-09-11 20:20:58,815 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 93 states, 70 states have (on average 1.1714285714285715) internal successors, (82), 71 states have internal predecessors, (82), 15 states have call successors, (15), 7 states have call predecessors, (15), 7 states have return successors, (15), 14 states have call predecessors, (15), 15 states have call successors, (15) [2024-09-11 20:20:58,816 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 93 states to 93 states and 112 transitions. [2024-09-11 20:20:58,816 INFO L78 Accepts]: Start accepts. Automaton has 93 states and 112 transitions. Word has length 41 [2024-09-11 20:20:58,817 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 20:20:58,817 INFO L474 AbstractCegarLoop]: Abstraction has 93 states and 112 transitions. [2024-09-11 20:20:58,817 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 18 states, 18 states have (on average 2.0) internal successors, (36), 17 states have internal predecessors, (36), 6 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (7), 4 states have call predecessors, (7), 4 states have call successors, (7) [2024-09-11 20:20:58,817 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:58,818 INFO L276 IsEmpty]: Start isEmpty. Operand 93 states and 112 transitions. [2024-09-11 20:20:58,819 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 60 [2024-09-11 20:20:58,819 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 20:20:58,819 INFO L216 NwaCegarLoop]: trace histogram [5, 5, 5, 4, 4, 4, 4, 4, 3, 3, 3, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 20:20:58,836 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-09-11 20:20:59,019 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable6 [2024-09-11 20:20:59,020 INFO L399 AbstractCegarLoop]: === Iteration 8 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 20:20:59,020 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:20:59,020 INFO L85 PathProgramCache]: Analyzing trace with hash 1142689690, now seen corresponding path program 2 times [2024-09-11 20:20:59,021 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 20:20:59,021 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [895259349] [2024-09-11 20:20:59,021 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:20:59,021 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 20:20:59,084 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-11 20:20:59,089 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1953379637] [2024-09-11 20:20:59,090 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-11 20:20:59,090 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:20:59,090 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 20:20:59,092 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 20:20:59,094 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-09-11 20:20:59,149 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-11 20:20:59,150 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-11 20:20:59,151 INFO L262 TraceCheckSpWp]: Trace formula consists of 142 conjuncts, 59 conjuncts are in the unsatisfiable core [2024-09-11 20:20:59,154 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 20:21:04,314 INFO L134 CoverageAnalysis]: Checked inductivity of 82 backedges. 4 proven. 42 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2024-09-11 20:21:04,314 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 20:21:09,726 INFO L134 CoverageAnalysis]: Checked inductivity of 82 backedges. 41 proven. 13 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-09-11 20:21:09,727 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 20:21:09,727 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [895259349] [2024-09-11 20:21:09,727 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-11 20:21:09,727 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1953379637] [2024-09-11 20:21:09,727 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1953379637] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-11 20:21:09,727 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-11 20:21:09,727 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [17, 13] total 25 [2024-09-11 20:21:09,727 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1863823845] [2024-09-11 20:21:09,727 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-11 20:21:09,728 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-09-11 20:21:09,728 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 20:21:09,729 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-09-11 20:21:09,729 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=119, Invalid=481, Unknown=0, NotChecked=0, Total=600 [2024-09-11 20:21:09,731 INFO L87 Difference]: Start difference. First operand 93 states and 112 transitions. Second operand has 25 states, 25 states have (on average 2.0) internal successors, (50), 24 states have internal predecessors, (50), 9 states have call successors, (12), 2 states have call predecessors, (12), 2 states have return successors, (10), 7 states have call predecessors, (10), 7 states have call successors, (10) [2024-09-11 20:21:11,751 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.77s for a HTC check with result INVALID. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=true, quantifiers [] [2024-09-11 20:21:23,483 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 20:21:23,483 INFO L93 Difference]: Finished difference Result 140 states and 174 transitions. [2024-09-11 20:21:23,483 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 26 states. [2024-09-11 20:21:23,484 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 25 states have (on average 2.0) internal successors, (50), 24 states have internal predecessors, (50), 9 states have call successors, (12), 2 states have call predecessors, (12), 2 states have return successors, (10), 7 states have call predecessors, (10), 7 states have call successors, (10) Word has length 59 [2024-09-11 20:21:23,484 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 20:21:23,485 INFO L225 Difference]: With dead ends: 140 [2024-09-11 20:21:23,485 INFO L226 Difference]: Without dead ends: 138 [2024-09-11 20:21:23,486 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 126 GetRequests, 89 SyntacticMatches, 5 SemanticMatches, 32 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 220 ImplicationChecksByTransitivity, 17.9s TimeCoverageRelationStatistics Valid=253, Invalid=869, Unknown=0, NotChecked=0, Total=1122 [2024-09-11 20:21:23,486 INFO L434 NwaCegarLoop]: 23 mSDtfsCounter, 20 mSDsluCounter, 181 mSDsCounter, 0 mSdLazyCounter, 356 mSolverCounterSat, 13 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 21 SdHoareTripleChecker+Valid, 204 SdHoareTripleChecker+Invalid, 369 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 13 IncrementalHoareTripleChecker+Valid, 356 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.5s IncrementalHoareTripleChecker+Time [2024-09-11 20:21:23,488 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [21 Valid, 204 Invalid, 369 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [13 Valid, 356 Invalid, 0 Unknown, 0 Unchecked, 3.5s Time] [2024-09-11 20:21:23,488 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 138 states. [2024-09-11 20:21:23,554 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 138 to 138. [2024-09-11 20:21:23,554 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 138 states, 105 states have (on average 1.180952380952381) internal successors, (124), 108 states have internal predecessors, (124), 24 states have call successors, (24), 8 states have call predecessors, (24), 8 states have return successors, (24), 21 states have call predecessors, (24), 24 states have call successors, (24) [2024-09-11 20:21:23,556 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 138 states to 138 states and 172 transitions. [2024-09-11 20:21:23,556 INFO L78 Accepts]: Start accepts. Automaton has 138 states and 172 transitions. Word has length 59 [2024-09-11 20:21:23,557 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 20:21:23,557 INFO L474 AbstractCegarLoop]: Abstraction has 138 states and 172 transitions. [2024-09-11 20:21:23,557 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 25 states have (on average 2.0) internal successors, (50), 24 states have internal predecessors, (50), 9 states have call successors, (12), 2 states have call predecessors, (12), 2 states have return successors, (10), 7 states have call predecessors, (10), 7 states have call successors, (10) [2024-09-11 20:21:23,557 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:21:23,557 INFO L276 IsEmpty]: Start isEmpty. Operand 138 states and 172 transitions. [2024-09-11 20:21:23,559 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 60 [2024-09-11 20:21:23,559 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 20:21:23,559 INFO L216 NwaCegarLoop]: trace histogram [5, 5, 5, 4, 4, 4, 4, 4, 4, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 20:21:23,572 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2024-09-11 20:21:23,759 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,7 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:21:23,760 INFO L399 AbstractCegarLoop]: === Iteration 9 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 20:21:23,760 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:21:23,760 INFO L85 PathProgramCache]: Analyzing trace with hash -960744998, now seen corresponding path program 2 times [2024-09-11 20:21:23,760 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 20:21:23,760 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [163254831] [2024-09-11 20:21:23,760 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:21:23,760 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 20:21:23,807 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-11 20:21:23,809 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [997021242] [2024-09-11 20:21:23,811 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-11 20:21:23,811 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:21:23,811 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 20:21:23,813 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 20:21:23,814 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-09-11 20:21:23,882 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-11 20:21:23,882 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-11 20:21:23,883 INFO L262 TraceCheckSpWp]: Trace formula consists of 132 conjuncts, 50 conjuncts are in the unsatisfiable core [2024-09-11 20:21:23,886 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 20:21:25,010 INFO L134 CoverageAnalysis]: Checked inductivity of 82 backedges. 14 proven. 47 refuted. 0 times theorem prover too weak. 21 trivial. 0 not checked. [2024-09-11 20:21:25,010 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 20:21:26,296 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 20:21:26,296 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [163254831] [2024-09-11 20:21:26,297 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-11 20:21:26,297 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [997021242] [2024-09-11 20:21:26,297 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [997021242] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-11 20:21:26,297 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-11 20:21:26,297 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19] total 19 [2024-09-11 20:21:26,297 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1725432627] [2024-09-11 20:21:26,297 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-11 20:21:26,297 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 19 states [2024-09-11 20:21:26,298 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 20:21:26,298 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 19 interpolants. [2024-09-11 20:21:26,299 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=127, Invalid=523, Unknown=0, NotChecked=0, Total=650 [2024-09-11 20:21:26,301 INFO L87 Difference]: Start difference. First operand 138 states and 172 transitions. Second operand has 19 states, 19 states have (on average 1.8421052631578947) internal successors, (35), 17 states have internal predecessors, (35), 7 states have call successors, (8), 2 states have call predecessors, (8), 3 states have return successors, (7), 6 states have call predecessors, (7), 6 states have call successors, (7) [2024-09-11 20:21:26,716 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 20:21:26,716 INFO L93 Difference]: Finished difference Result 179 states and 219 transitions. [2024-09-11 20:21:26,717 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2024-09-11 20:21:26,717 INFO L78 Accepts]: Start accepts. Automaton has has 19 states, 19 states have (on average 1.8421052631578947) internal successors, (35), 17 states have internal predecessors, (35), 7 states have call successors, (8), 2 states have call predecessors, (8), 3 states have return successors, (7), 6 states have call predecessors, (7), 6 states have call successors, (7) Word has length 59 [2024-09-11 20:21:26,718 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 20:21:26,719 INFO L225 Difference]: With dead ends: 179 [2024-09-11 20:21:26,719 INFO L226 Difference]: Without dead ends: 147 [2024-09-11 20:21:26,720 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 77 GetRequests, 47 SyntacticMatches, 5 SemanticMatches, 25 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 217 ImplicationChecksByTransitivity, 1.0s TimeCoverageRelationStatistics Valid=134, Invalid=568, Unknown=0, NotChecked=0, Total=702 [2024-09-11 20:21:26,721 INFO L434 NwaCegarLoop]: 19 mSDtfsCounter, 10 mSDsluCounter, 226 mSDsCounter, 0 mSdLazyCounter, 516 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 12 SdHoareTripleChecker+Valid, 245 SdHoareTripleChecker+Invalid, 521 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 516 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-09-11 20:21:26,721 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [12 Valid, 245 Invalid, 521 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 516 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-09-11 20:21:26,722 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 147 states. [2024-09-11 20:21:26,783 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 147 to 147. [2024-09-11 20:21:26,784 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 147 states, 112 states have (on average 1.1696428571428572) internal successors, (131), 115 states have internal predecessors, (131), 25 states have call successors, (25), 9 states have call predecessors, (25), 9 states have return successors, (25), 22 states have call predecessors, (25), 25 states have call successors, (25) [2024-09-11 20:21:26,785 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 147 states to 147 states and 181 transitions. [2024-09-11 20:21:26,786 INFO L78 Accepts]: Start accepts. Automaton has 147 states and 181 transitions. Word has length 59 [2024-09-11 20:21:26,786 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 20:21:26,786 INFO L474 AbstractCegarLoop]: Abstraction has 147 states and 181 transitions. [2024-09-11 20:21:26,786 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 19 states, 19 states have (on average 1.8421052631578947) internal successors, (35), 17 states have internal predecessors, (35), 7 states have call successors, (8), 2 states have call predecessors, (8), 3 states have return successors, (7), 6 states have call predecessors, (7), 6 states have call successors, (7) [2024-09-11 20:21:26,787 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:21:26,787 INFO L276 IsEmpty]: Start isEmpty. Operand 147 states and 181 transitions. [2024-09-11 20:21:26,788 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 69 [2024-09-11 20:21:26,788 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 20:21:26,788 INFO L216 NwaCegarLoop]: trace histogram [6, 6, 6, 5, 5, 5, 5, 5, 4, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 20:21:26,795 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Forceful destruction successful, exit code 0 [2024-09-11 20:21:26,988 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,8 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:21:26,989 INFO L399 AbstractCegarLoop]: === Iteration 10 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 20:21:26,989 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:21:26,989 INFO L85 PathProgramCache]: Analyzing trace with hash 450208273, now seen corresponding path program 3 times [2024-09-11 20:21:26,989 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 20:21:26,989 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1754255300] [2024-09-11 20:21:26,990 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:21:26,990 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 20:21:27,049 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:28,057 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-11 20:21:28,060 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:28,062 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 7 [2024-09-11 20:21:28,063 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:28,095 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-09-11 20:21:28,096 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:28,099 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 19 [2024-09-11 20:21:28,100 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:28,102 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 28 [2024-09-11 20:21:28,103 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:28,106 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 37 [2024-09-11 20:21:28,107 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:28,110 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 46 [2024-09-11 20:21:28,111 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:28,117 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 55 [2024-09-11 20:21:28,118 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:28,123 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 41 proven. 35 refuted. 0 times theorem prover too weak. 46 trivial. 0 not checked. [2024-09-11 20:21:28,123 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 20:21:28,123 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1754255300] [2024-09-11 20:21:28,123 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1754255300] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-11 20:21:28,123 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1731108691] [2024-09-11 20:21:28,123 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-11 20:21:28,124 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:21:28,124 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 20:21:28,125 INFO L229 MonitoredProcess]: Starting monitored process 9 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 20:21:28,127 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-09-11 20:21:28,182 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 5 check-sat command(s) [2024-09-11 20:21:28,182 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-11 20:21:28,184 INFO L262 TraceCheckSpWp]: Trace formula consists of 137 conjuncts, 39 conjuncts are in the unsatisfiable core [2024-09-11 20:21:28,187 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 20:21:29,055 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 18 proven. 69 refuted. 0 times theorem prover too weak. 35 trivial. 0 not checked. [2024-09-11 20:21:29,055 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 20:21:30,486 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1731108691] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-11 20:21:30,486 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-11 20:21:30,486 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 19] total 31 [2024-09-11 20:21:30,486 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1208175578] [2024-09-11 20:21:30,487 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-11 20:21:30,487 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 31 states [2024-09-11 20:21:30,487 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 20:21:30,488 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 31 interpolants. [2024-09-11 20:21:30,488 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=145, Invalid=1187, Unknown=0, NotChecked=0, Total=1332 [2024-09-11 20:21:30,488 INFO L87 Difference]: Start difference. First operand 147 states and 181 transitions. Second operand has 31 states, 31 states have (on average 2.032258064516129) internal successors, (63), 29 states have internal predecessors, (63), 14 states have call successors, (16), 3 states have call predecessors, (16), 3 states have return successors, (15), 11 states have call predecessors, (15), 12 states have call successors, (15) [2024-09-11 20:21:32,478 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 20:21:32,479 INFO L93 Difference]: Finished difference Result 240 states and 293 transitions. [2024-09-11 20:21:32,479 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 41 states. [2024-09-11 20:21:32,479 INFO L78 Accepts]: Start accepts. Automaton has has 31 states, 31 states have (on average 2.032258064516129) internal successors, (63), 29 states have internal predecessors, (63), 14 states have call successors, (16), 3 states have call predecessors, (16), 3 states have return successors, (15), 11 states have call predecessors, (15), 12 states have call successors, (15) Word has length 68 [2024-09-11 20:21:32,479 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 20:21:32,480 INFO L225 Difference]: With dead ends: 240 [2024-09-11 20:21:32,480 INFO L226 Difference]: Without dead ends: 64 [2024-09-11 20:21:32,483 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 149 GetRequests, 78 SyntacticMatches, 3 SemanticMatches, 68 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1092 ImplicationChecksByTransitivity, 2.4s TimeCoverageRelationStatistics Valid=615, Invalid=4215, Unknown=0, NotChecked=0, Total=4830 [2024-09-11 20:21:32,484 INFO L434 NwaCegarLoop]: 32 mSDtfsCounter, 66 mSDsluCounter, 601 mSDsCounter, 0 mSdLazyCounter, 1141 mSolverCounterSat, 39 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 66 SdHoareTripleChecker+Valid, 633 SdHoareTripleChecker+Invalid, 1180 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 39 IncrementalHoareTripleChecker+Valid, 1141 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2024-09-11 20:21:32,484 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [66 Valid, 633 Invalid, 1180 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [39 Valid, 1141 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2024-09-11 20:21:32,484 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 64 states. [2024-09-11 20:21:32,508 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 64 to 64. [2024-09-11 20:21:32,508 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 64 states, 47 states have (on average 1.0212765957446808) internal successors, (48), 48 states have internal predecessors, (48), 10 states have call successors, (10), 6 states have call predecessors, (10), 6 states have return successors, (10), 9 states have call predecessors, (10), 10 states have call successors, (10) [2024-09-11 20:21:32,509 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 64 states to 64 states and 68 transitions. [2024-09-11 20:21:32,509 INFO L78 Accepts]: Start accepts. Automaton has 64 states and 68 transitions. Word has length 68 [2024-09-11 20:21:32,509 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 20:21:32,509 INFO L474 AbstractCegarLoop]: Abstraction has 64 states and 68 transitions. [2024-09-11 20:21:32,510 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 31 states, 31 states have (on average 2.032258064516129) internal successors, (63), 29 states have internal predecessors, (63), 14 states have call successors, (16), 3 states have call predecessors, (16), 3 states have return successors, (15), 11 states have call predecessors, (15), 12 states have call successors, (15) [2024-09-11 20:21:32,510 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:21:32,510 INFO L276 IsEmpty]: Start isEmpty. Operand 64 states and 68 transitions. [2024-09-11 20:21:32,510 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 78 [2024-09-11 20:21:32,511 INFO L208 NwaCegarLoop]: Found error trace [2024-09-11 20:21:32,511 INFO L216 NwaCegarLoop]: trace histogram [7, 7, 7, 6, 6, 6, 6, 6, 5, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-11 20:21:32,526 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Ended with exit code 0 [2024-09-11 20:21:32,711 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,9 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:21:32,711 INFO L399 AbstractCegarLoop]: === Iteration 11 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-11 20:21:32,712 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:21:32,712 INFO L85 PathProgramCache]: Analyzing trace with hash -650989380, now seen corresponding path program 4 times [2024-09-11 20:21:32,712 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-11 20:21:32,712 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [71288754] [2024-09-11 20:21:32,712 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-11 20:21:32,712 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-11 20:21:32,738 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:33,333 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-11 20:21:33,334 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:33,335 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 7 [2024-09-11 20:21:33,337 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:33,359 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-09-11 20:21:33,360 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:33,362 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 19 [2024-09-11 20:21:33,362 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:33,364 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 28 [2024-09-11 20:21:33,366 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:33,368 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 37 [2024-09-11 20:21:33,369 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:33,372 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 46 [2024-09-11 20:21:33,372 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:33,375 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 55 [2024-09-11 20:21:33,376 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:33,379 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 64 [2024-09-11 20:21:33,380 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-11 20:21:33,382 INFO L134 CoverageAnalysis]: Checked inductivity of 171 backedges. 79 proven. 26 refuted. 0 times theorem prover too weak. 66 trivial. 0 not checked. [2024-09-11 20:21:33,382 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-11 20:21:33,382 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [71288754] [2024-09-11 20:21:33,382 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [71288754] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-11 20:21:33,382 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [603239886] [2024-09-11 20:21:33,382 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2024-09-11 20:21:33,383 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-11 20:21:33,383 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-11 20:21:33,384 INFO L229 MonitoredProcess]: Starting monitored process 10 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-11 20:21:33,386 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2024-09-11 20:21:33,446 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2024-09-11 20:21:33,447 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-11 20:21:33,448 INFO L262 TraceCheckSpWp]: Trace formula consists of 138 conjuncts, 50 conjuncts are in the unsatisfiable core [2024-09-11 20:21:33,451 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-11 20:21:43,839 INFO L134 CoverageAnalysis]: Checked inductivity of 171 backedges. 20 proven. 94 refuted. 0 times theorem prover too weak. 57 trivial. 0 not checked. [2024-09-11 20:21:43,839 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-11 20:22:45,539 INFO L134 CoverageAnalysis]: Checked inductivity of 171 backedges. 42 proven. 72 refuted. 0 times theorem prover too weak. 57 trivial. 0 not checked. [2024-09-11 20:22:45,540 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [603239886] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-11 20:22:45,540 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-11 20:22:45,540 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 21, 17] total 45 [2024-09-11 20:22:45,540 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1339083711] [2024-09-11 20:22:45,540 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-11 20:22:45,541 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 45 states [2024-09-11 20:22:45,541 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-11 20:22:45,541 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 45 interpolants. [2024-09-11 20:22:45,542 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=287, Invalid=1693, Unknown=0, NotChecked=0, Total=1980 [2024-09-11 20:22:45,542 INFO L87 Difference]: Start difference. First operand 64 states and 68 transitions. Second operand has 45 states, 45 states have (on average 2.2) internal successors, (99), 43 states have internal predecessors, (99), 22 states have call successors, (25), 3 states have call predecessors, (25), 3 states have return successors, (23), 19 states have call predecessors, (23), 19 states have call successors, (23) [2024-09-11 20:22:47,706 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-11 20:22:47,707 INFO L93 Difference]: Finished difference Result 68 states and 71 transitions. [2024-09-11 20:22:47,707 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2024-09-11 20:22:47,707 INFO L78 Accepts]: Start accepts. Automaton has has 45 states, 45 states have (on average 2.2) internal successors, (99), 43 states have internal predecessors, (99), 22 states have call successors, (25), 3 states have call predecessors, (25), 3 states have return successors, (23), 19 states have call predecessors, (23), 19 states have call successors, (23) Word has length 77 [2024-09-11 20:22:47,707 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-11 20:22:47,708 INFO L225 Difference]: With dead ends: 68 [2024-09-11 20:22:47,708 INFO L226 Difference]: Without dead ends: 0 [2024-09-11 20:22:47,709 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 201 GetRequests, 140 SyntacticMatches, 6 SemanticMatches, 55 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 884 ImplicationChecksByTransitivity, 44.2s TimeCoverageRelationStatistics Valid=490, Invalid=2702, Unknown=0, NotChecked=0, Total=3192 [2024-09-11 20:22:47,709 INFO L434 NwaCegarLoop]: 17 mSDtfsCounter, 26 mSDsluCounter, 297 mSDsCounter, 0 mSdLazyCounter, 535 mSolverCounterSat, 12 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 26 SdHoareTripleChecker+Valid, 314 SdHoareTripleChecker+Invalid, 547 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 12 IncrementalHoareTripleChecker+Valid, 535 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2024-09-11 20:22:47,710 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [26 Valid, 314 Invalid, 547 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [12 Valid, 535 Invalid, 0 Unknown, 0 Unchecked, 1.2s Time] [2024-09-11 20:22:47,710 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-09-11 20:22:47,710 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-09-11 20:22:47,710 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-11 20:22:47,710 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-09-11 20:22:47,710 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 77 [2024-09-11 20:22:47,711 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-11 20:22:47,711 INFO L474 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-09-11 20:22:47,711 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 45 states, 45 states have (on average 2.2) internal successors, (99), 43 states have internal predecessors, (99), 22 states have call successors, (25), 3 states have call predecessors, (25), 3 states have return successors, (23), 19 states have call predecessors, (23), 19 states have call successors, (23) [2024-09-11 20:22:47,711 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-11 20:22:47,711 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-09-11 20:22:47,712 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-09-11 20:22:47,714 INFO L785 garLoopResultBuilder]: Registering result SAFE for location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-09-11 20:22:47,728 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Ended with exit code 0 [2024-09-11 20:22:47,918 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 10 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-09-11 20:22:47,921 INFO L408 BasicCegarLoop]: Path program histogram: [4, 2, 1, 1, 1, 1, 1] [2024-09-11 20:22:47,923 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-09-11 20:22:54,789 INFO L165 ceAbstractionStarter]: Computing trace abstraction results [2024-09-11 20:22:54,805 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 11.09 08:22:54 BoogieIcfgContainer [2024-09-11 20:22:54,806 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-09-11 20:22:54,806 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-09-11 20:22:54,806 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-09-11 20:22:54,806 INFO L274 PluginConnector]: Witness Printer initialized [2024-09-11 20:22:54,807 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 11.09 08:20:41" (3/4) ... [2024-09-11 20:22:54,808 INFO L139 WitnessPrinter]: Generating witness for correct program [2024-09-11 20:22:54,811 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure assume_abort_if_not [2024-09-11 20:22:54,811 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure __VERIFIER_assert [2024-09-11 20:22:54,814 INFO L896 BoogieBacktranslator]: Reduced CFG by removing 15 nodes and edges [2024-09-11 20:22:54,814 INFO L896 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-09-11 20:22:54,814 INFO L896 BoogieBacktranslator]: Reduced CFG by removing 3 nodes and edges [2024-09-11 20:22:54,815 INFO L896 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-09-11 20:22:54,901 INFO L149 WitnessManager]: Wrote witness to /storage/repos/certificate-witnesses-artifact/automizer/witness.graphml [2024-09-11 20:22:54,902 INFO L149 WitnessManager]: Wrote witness to /storage/repos/certificate-witnesses-artifact/automizer/witness.yml [2024-09-11 20:22:54,902 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-09-11 20:22:54,902 INFO L158 Benchmark]: Toolchain (without parser) took 134263.07ms. Allocated memory was 142.6MB in the beginning and 239.1MB in the end (delta: 96.5MB). Free memory was 69.9MB in the beginning and 77.3MB in the end (delta: -7.4MB). Peak memory consumption was 90.5MB. Max. memory is 16.1GB. [2024-09-11 20:22:54,903 INFO L158 Benchmark]: CDTParser took 0.28ms. Allocated memory is still 142.6MB. Free memory is still 91.7MB. There was no memory consumed. Max. memory is 16.1GB. [2024-09-11 20:22:54,903 INFO L158 Benchmark]: CACSL2BoogieTranslator took 246.67ms. Allocated memory was 142.6MB in the beginning and 199.2MB in the end (delta: 56.6MB). Free memory was 69.8MB in the beginning and 170.8MB in the end (delta: -101.1MB). Peak memory consumption was 14.2MB. Max. memory is 16.1GB. [2024-09-11 20:22:54,903 INFO L158 Benchmark]: Boogie Procedure Inliner took 27.19ms. Allocated memory is still 199.2MB. Free memory was 170.8MB in the beginning and 169.8MB in the end (delta: 984.2kB). There was no memory consumed. Max. memory is 16.1GB. [2024-09-11 20:22:54,904 INFO L158 Benchmark]: Boogie Preprocessor took 28.20ms. Allocated memory is still 199.2MB. Free memory was 169.8MB in the beginning and 167.8MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-09-11 20:22:54,904 INFO L158 Benchmark]: RCFGBuilder took 317.98ms. Allocated memory is still 199.2MB. Free memory was 167.8MB in the beginning and 155.2MB in the end (delta: 12.6MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. [2024-09-11 20:22:54,905 INFO L158 Benchmark]: TraceAbstraction took 133541.29ms. Allocated memory was 199.2MB in the beginning and 239.1MB in the end (delta: 39.8MB). Free memory was 155.2MB in the beginning and 81.5MB in the end (delta: 73.6MB). Peak memory consumption was 130.5MB. Max. memory is 16.1GB. [2024-09-11 20:22:54,905 INFO L158 Benchmark]: Witness Printer took 95.98ms. Allocated memory is still 239.1MB. Free memory was 81.5MB in the beginning and 77.3MB in the end (delta: 4.2MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2024-09-11 20:22:54,906 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.28ms. Allocated memory is still 142.6MB. Free memory is still 91.7MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 246.67ms. Allocated memory was 142.6MB in the beginning and 199.2MB in the end (delta: 56.6MB). Free memory was 69.8MB in the beginning and 170.8MB in the end (delta: -101.1MB). Peak memory consumption was 14.2MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 27.19ms. Allocated memory is still 199.2MB. Free memory was 170.8MB in the beginning and 169.8MB in the end (delta: 984.2kB). There was no memory consumed. Max. memory is 16.1GB. * Boogie Preprocessor took 28.20ms. Allocated memory is still 199.2MB. Free memory was 169.8MB in the beginning and 167.8MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 317.98ms. Allocated memory is still 199.2MB. Free memory was 167.8MB in the beginning and 155.2MB in the end (delta: 12.6MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. * TraceAbstraction took 133541.29ms. Allocated memory was 199.2MB in the beginning and 239.1MB in the end (delta: 39.8MB). Free memory was 155.2MB in the beginning and 81.5MB in the end (delta: 73.6MB). Peak memory consumption was 130.5MB. Max. memory is 16.1GB. * Witness Printer took 95.98ms. Allocated memory is still 239.1MB. Free memory was 81.5MB in the beginning and 77.3MB in the end (delta: 4.2MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 15]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 3 procedures, 24 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 126.6s, OverallIterations: 11, TraceHistogramMax: 7, PathProgramHistogramMax: 4, EmptinessCheckTime: 0.0s, AutomataDifference: 25.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 192 SdHoareTripleChecker+Valid, 9.9s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 183 mSDsluCounter, 2082 SdHoareTripleChecker+Invalid, 9.6s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 1862 mSDsCounter, 96 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 3226 IncrementalHoareTripleChecker+Invalid, 3322 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 96 mSolverCounterUnsat, 220 mSDtfsCounter, 3226 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 917 GetRequests, 633 SyntacticMatches, 29 SemanticMatches, 255 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2613 ImplicationChecksByTransitivity, 73.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=147occurred in iteration=9, InterpolantAutomatonStates: 166, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.3s AutomataMinimizationTime, 11 MinimizatonAttempts, 9 StatesRemovedByMinimization, 5 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.6s SatisfiabilityAnalysisTime, 97.9s InterpolantComputationTime, 910 NumberOfCodeBlocks, 897 NumberOfCodeBlocksAsserted, 26 NumberOfCheckSat, 908 ConstructedInterpolants, 4 QuantifiedInterpolants, 15109 SizeOfPredicates, 14 NumberOfNonLiveVariables, 995 ConjunctsInSsa, 299 ConjunctsInUnsatCore, 20 InterpolantComputations, 4 PerfectInterpolantSequences, 795/1221 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 46]: Location Invariant Derived location invariant: 1 - InvariantResult [Line: 34]: Loop Invariant Derived loop invariant: ((((((((((((1 <= (b % 2)) && (b <= 20)) && (((-1 + b) / 2) == y)) && (1 <= b)) && (a == z)) && (x == ((long long) 2 * a))) && (a <= 20)) && (0 <= a)) || ((((((((b <= 20) && (y == (b / 2))) && (1 <= b)) && (x == ((long long) 2 * a))) && (a <= 20)) && (z == 0)) && (0 <= a)) && ((b % 2) != 1))) || (((((((b <= 20) && (y <= 4)) && (0 <= y)) && (1 <= b)) && ((z + ((__int128) x * y)) == ((long long) a * b))) && (a <= 20)) && (0 <= a))) || (((((((b == y) && (1 <= b)) && (a <= 20)) && (z == 0)) && (y <= 20)) && (0 <= a)) && (a == x))) || (((((((b <= 20) && (y == (b / 4))) && (((long long) a * b) == ((__int128) x * y))) && (1 <= b)) && (a <= 20)) && (z == 0)) && (0 <= a))) - ProcedureContractResult [Line: 9]: Procedure Contract for assume_abort_if_not Derived contract for procedure assume_abort_if_not. Ensures: (\old(cond) != 0) - ProcedureContractResult [Line: 12]: Procedure Contract for __VERIFIER_assert Derived contract for procedure __VERIFIER_assert. Requires: (1 <= \old(cond)) Ensures: (1 <= \old(cond)) RESULT: Ultimate proved your program to be correct! [2024-09-11 20:22:55,098 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE