./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/recursive-simple/sum_10x0-1.c --full-output --witness-type correctness_witness --validate ../results/automizer-verification-files/SV-COMP24_unreach-call/sum_10x0-1.yml/witness-2.1.yml --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 1d5fa637 Calling Ultimate with: /root/.sdkman/candidates/java/current/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReachWitnessValidation.xml -i ../sv-benchmarks/c/recursive-simple/sum_10x0-1.c ../results/automizer-verification-files/SV-COMP24_unreach-call/sum_10x0-1.yml/witness-2.1.yml -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --traceabstraction.positions.where.we.compute.the.hoare.annotation None --- Real Ultimate output --- This is Ultimate 0.2.4-dev-1d5fa63-m [2024-09-13 10:28:06,063 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-09-13 10:28:06,132 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-09-13 10:28:06,135 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-09-13 10:28:06,136 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-09-13 10:28:06,150 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-09-13 10:28:06,151 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-09-13 10:28:06,151 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-09-13 10:28:06,151 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-09-13 10:28:06,152 INFO L153 SettingsManager]: * Use memory slicer=true [2024-09-13 10:28:06,152 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-09-13 10:28:06,152 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-09-13 10:28:06,153 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-09-13 10:28:06,153 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-09-13 10:28:06,153 INFO L153 SettingsManager]: * Use SBE=true [2024-09-13 10:28:06,153 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-09-13 10:28:06,154 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-09-13 10:28:06,154 INFO L153 SettingsManager]: * sizeof long=4 [2024-09-13 10:28:06,154 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-09-13 10:28:06,154 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-09-13 10:28:06,155 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-09-13 10:28:06,157 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-09-13 10:28:06,157 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-09-13 10:28:06,157 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-09-13 10:28:06,158 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-09-13 10:28:06,158 INFO L153 SettingsManager]: * sizeof long double=12 [2024-09-13 10:28:06,160 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-09-13 10:28:06,161 INFO L153 SettingsManager]: * Use constant arrays=true [2024-09-13 10:28:06,161 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-09-13 10:28:06,161 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-09-13 10:28:06,161 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-09-13 10:28:06,161 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-09-13 10:28:06,161 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-13 10:28:06,161 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-09-13 10:28:06,162 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-09-13 10:28:06,162 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-09-13 10:28:06,162 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-09-13 10:28:06,162 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-09-13 10:28:06,162 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-09-13 10:28:06,162 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-09-13 10:28:06,162 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-09-13 10:28:06,163 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-09-13 10:28:06,163 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> None [2024-09-13 10:28:06,352 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-09-13 10:28:06,371 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-09-13 10:28:06,373 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-09-13 10:28:06,374 INFO L270 PluginConnector]: Initializing Witness Parser... [2024-09-13 10:28:06,375 INFO L274 PluginConnector]: Witness Parser initialized [2024-09-13 10:28:06,376 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../results/automizer-verification-files/SV-COMP24_unreach-call/sum_10x0-1.yml/witness-2.1.yml [2024-09-13 10:28:06,414 INFO L270 PluginConnector]: Initializing CDTParser... [2024-09-13 10:28:06,414 INFO L274 PluginConnector]: CDTParser initialized [2024-09-13 10:28:06,415 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/recursive-simple/sum_10x0-1.c [2024-09-13 10:28:07,654 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-09-13 10:28:07,819 INFO L384 CDTParser]: Found 1 translation units. [2024-09-13 10:28:07,819 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/sum_10x0-1.c [2024-09-13 10:28:07,825 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/5f0de02e3/e157710585a1487980971bb3cd76dde3/FLAG095776a6b [2024-09-13 10:28:08,221 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/5f0de02e3/e157710585a1487980971bb3cd76dde3 [2024-09-13 10:28:08,222 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-09-13 10:28:08,223 INFO L133 ToolchainWalker]: Walking toolchain with 5 elements. [2024-09-13 10:28:08,224 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-09-13 10:28:08,224 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-09-13 10:28:08,228 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-09-13 10:28:08,228 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 13.09 10:28:06" (1/2) ... [2024-09-13 10:28:08,229 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@75f8aab6 and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 13.09 10:28:08, skipping insertion in model container [2024-09-13 10:28:08,229 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 13.09 10:28:06" (1/2) ... [2024-09-13 10:28:08,230 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.CACSL2BoogieTranslatorObserver@2aa4be13 and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 13.09 10:28:08, skipping insertion in model container [2024-09-13 10:28:08,230 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 13.09 10:28:08" (2/2) ... [2024-09-13 10:28:08,230 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@75f8aab6 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08, skipping insertion in model container [2024-09-13 10:28:08,230 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 13.09 10:28:08" (2/2) ... [2024-09-13 10:28:08,234 INFO L93 nessWitnessExtractor]: Found the following entries in the witness: [2024-09-13 10:28:08,234 INFO L1541 ArrayList]: Function contract at [L5]: requires null, ensures (\result == (\old(n) + \old(m))) [2024-09-13 10:28:08,247 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-09-13 10:28:08,355 WARN L247 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/sum_10x0-1.c[481,494] [2024-09-13 10:28:08,358 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-13 10:28:08,368 INFO L200 MainTranslator]: Completed pre-run Start Parsing Global [2024-09-13 10:28:08,401 WARN L247 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/sum_10x0-1.c[481,494] [2024-09-13 10:28:08,402 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-13 10:28:08,414 INFO L204 MainTranslator]: Completed translation [2024-09-13 10:28:08,415 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08 WrapperNode [2024-09-13 10:28:08,415 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-09-13 10:28:08,416 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-09-13 10:28:08,416 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-09-13 10:28:08,417 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-09-13 10:28:08,422 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,429 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,441 INFO L138 Inliner]: procedures = 12, calls = 9, calls flagged for inlining = 2, calls inlined = 2, statements flattened = 19 [2024-09-13 10:28:08,442 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-09-13 10:28:08,443 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-09-13 10:28:08,443 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-09-13 10:28:08,443 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-09-13 10:28:08,450 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,450 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,452 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,457 WARN L109 MemorySlicer]: Omit memory slicing because it failed with the following exception: Unsupported: Procedure sum is not part of the Ultimate memory model but has specification other that is not a ModifiesSpecification [2024-09-13 10:28:08,457 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,458 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,462 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,463 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,464 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,464 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,465 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-09-13 10:28:08,466 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-09-13 10:28:08,466 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-09-13 10:28:08,466 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-09-13 10:28:08,466 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (1/1) ... [2024-09-13 10:28:08,471 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-13 10:28:08,476 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-13 10:28:08,490 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-09-13 10:28:08,492 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-09-13 10:28:08,524 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-09-13 10:28:08,524 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-09-13 10:28:08,525 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-09-13 10:28:08,525 INFO L130 BoogieDeclarations]: Found specification of procedure sum [2024-09-13 10:28:08,525 INFO L138 BoogieDeclarations]: Found implementation of procedure sum [2024-09-13 10:28:08,525 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-09-13 10:28:08,573 INFO L242 CfgBuilder]: Building ICFG [2024-09-13 10:28:08,574 INFO L268 CfgBuilder]: Building CFG for each procedure with an implementation [2024-09-13 10:28:08,644 INFO L? ?]: Removed 13 outVars from TransFormulas that were not future-live. [2024-09-13 10:28:08,644 INFO L291 CfgBuilder]: Performing block encoding [2024-09-13 10:28:08,667 INFO L313 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-09-13 10:28:08,667 INFO L318 CfgBuilder]: Removed 0 assume(true) statements. [2024-09-13 10:28:08,668 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 13.09 10:28:08 BoogieIcfgContainer [2024-09-13 10:28:08,668 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-09-13 10:28:08,670 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-09-13 10:28:08,670 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-09-13 10:28:08,674 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-09-13 10:28:08,674 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 13.09 10:28:06" (1/4) ... [2024-09-13 10:28:08,675 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2edca191 and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CORRECTNESS_WITNESS 13.09 10:28:08, skipping insertion in model container [2024-09-13 10:28:08,676 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 13.09 10:28:08" (2/4) ... [2024-09-13 10:28:08,676 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2edca191 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 13.09 10:28:08, skipping insertion in model container [2024-09-13 10:28:08,677 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.09 10:28:08" (3/4) ... [2024-09-13 10:28:08,677 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2edca191 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 13.09 10:28:08, skipping insertion in model container [2024-09-13 10:28:08,677 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 13.09 10:28:08" (4/4) ... [2024-09-13 10:28:08,678 INFO L112 eAbstractionObserver]: Analyzing ICFG sum_10x0-1.c [2024-09-13 10:28:08,691 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:None NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-09-13 10:28:08,692 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 2 error locations. [2024-09-13 10:28:08,732 INFO L335 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-09-13 10:28:08,739 INFO L336 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=None, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@35077ad5, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-09-13 10:28:08,739 INFO L337 AbstractCegarLoop]: Starting to check reachability of 2 error locations. [2024-09-13 10:28:08,742 INFO L276 IsEmpty]: Start isEmpty. Operand has 15 states, 9 states have (on average 1.4444444444444444) internal successors, (13), 11 states have internal predecessors, (13), 2 states have call successors, (2), 1 states have call predecessors, (2), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-13 10:28:08,748 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 6 [2024-09-13 10:28:08,749 INFO L208 NwaCegarLoop]: Found error trace [2024-09-13 10:28:08,749 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1] [2024-09-13 10:28:08,750 INFO L399 AbstractCegarLoop]: === Iteration 1 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-13 10:28:08,753 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-13 10:28:08,754 INFO L85 PathProgramCache]: Analyzing trace with hash 56172024, now seen corresponding path program 1 times [2024-09-13 10:28:08,761 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-13 10:28:08,761 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [813862758] [2024-09-13 10:28:08,762 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-13 10:28:08,762 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-13 10:28:08,844 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:08,933 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-13 10:28:08,934 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-13 10:28:08,934 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [813862758] [2024-09-13 10:28:08,934 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [813862758] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-13 10:28:08,934 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-13 10:28:08,935 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-09-13 10:28:08,936 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1308061395] [2024-09-13 10:28:08,936 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-13 10:28:08,940 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-09-13 10:28:08,940 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-13 10:28:08,961 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-09-13 10:28:08,962 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-09-13 10:28:08,963 INFO L87 Difference]: Start difference. First operand has 15 states, 9 states have (on average 1.4444444444444444) internal successors, (13), 11 states have internal predecessors, (13), 2 states have call successors, (2), 1 states have call predecessors, (2), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Second operand has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-13 10:28:09,040 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-13 10:28:09,040 INFO L93 Difference]: Finished difference Result 22 states and 23 transitions. [2024-09-13 10:28:09,041 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-09-13 10:28:09,042 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 5 [2024-09-13 10:28:09,042 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-13 10:28:09,046 INFO L225 Difference]: With dead ends: 22 [2024-09-13 10:28:09,047 INFO L226 Difference]: Without dead ends: 20 [2024-09-13 10:28:09,048 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-09-13 10:28:09,052 INFO L434 NwaCegarLoop]: 9 mSDtfsCounter, 10 mSDsluCounter, 20 mSDsCounter, 0 mSdLazyCounter, 35 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 11 SdHoareTripleChecker+Valid, 29 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 35 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-13 10:28:09,055 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [11 Valid, 29 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 35 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-13 10:28:09,067 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 20 states. [2024-09-13 10:28:09,076 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 20 to 19. [2024-09-13 10:28:09,077 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 19 states, 12 states have (on average 1.25) internal successors, (15), 13 states have internal predecessors, (15), 3 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-13 10:28:09,078 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 19 states to 19 states and 21 transitions. [2024-09-13 10:28:09,078 INFO L78 Accepts]: Start accepts. Automaton has 19 states and 21 transitions. Word has length 5 [2024-09-13 10:28:09,078 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-13 10:28:09,079 INFO L474 AbstractCegarLoop]: Abstraction has 19 states and 21 transitions. [2024-09-13 10:28:09,079 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-13 10:28:09,079 INFO L276 IsEmpty]: Start isEmpty. Operand 19 states and 21 transitions. [2024-09-13 10:28:09,079 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 9 [2024-09-13 10:28:09,079 INFO L208 NwaCegarLoop]: Found error trace [2024-09-13 10:28:09,079 INFO L216 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1] [2024-09-13 10:28:09,080 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-09-13 10:28:09,080 INFO L399 AbstractCegarLoop]: === Iteration 2 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-13 10:28:09,081 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-13 10:28:09,081 INFO L85 PathProgramCache]: Analyzing trace with hash -1615449573, now seen corresponding path program 1 times [2024-09-13 10:28:09,081 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-13 10:28:09,081 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1302920681] [2024-09-13 10:28:09,081 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-13 10:28:09,081 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-13 10:28:09,090 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:09,212 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-13 10:28:09,213 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-13 10:28:09,213 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1302920681] [2024-09-13 10:28:09,213 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1302920681] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-13 10:28:09,214 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1890122101] [2024-09-13 10:28:09,214 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-13 10:28:09,215 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-13 10:28:09,215 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-13 10:28:09,217 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-13 10:28:09,218 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-09-13 10:28:09,257 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:09,258 INFO L262 TraceCheckSpWp]: Trace formula consists of 50 conjuncts, 6 conjuncts are in the unsatisfiable core [2024-09-13 10:28:09,261 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-13 10:28:09,300 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-13 10:28:09,300 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-13 10:28:09,349 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-13 10:28:09,349 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1890122101] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-13 10:28:09,349 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-13 10:28:09,350 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [6, 6, 6] total 11 [2024-09-13 10:28:09,350 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [744371404] [2024-09-13 10:28:09,350 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-13 10:28:09,351 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2024-09-13 10:28:09,351 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-13 10:28:09,351 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2024-09-13 10:28:09,352 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=34, Invalid=98, Unknown=0, NotChecked=0, Total=132 [2024-09-13 10:28:09,352 INFO L87 Difference]: Start difference. First operand 19 states and 21 transitions. Second operand has 12 states, 10 states have (on average 1.1) internal successors, (11), 7 states have internal predecessors, (11), 4 states have call successors, (4), 4 states have call predecessors, (4), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-13 10:28:09,489 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-13 10:28:09,489 INFO L93 Difference]: Finished difference Result 44 states and 46 transitions. [2024-09-13 10:28:09,490 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2024-09-13 10:28:09,490 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 10 states have (on average 1.1) internal successors, (11), 7 states have internal predecessors, (11), 4 states have call successors, (4), 4 states have call predecessors, (4), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 8 [2024-09-13 10:28:09,491 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-13 10:28:09,492 INFO L225 Difference]: With dead ends: 44 [2024-09-13 10:28:09,492 INFO L226 Difference]: Without dead ends: 44 [2024-09-13 10:28:09,493 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 24 GetRequests, 10 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 24 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=68, Invalid=172, Unknown=0, NotChecked=0, Total=240 [2024-09-13 10:28:09,495 INFO L434 NwaCegarLoop]: 12 mSDtfsCounter, 40 mSDsluCounter, 52 mSDsCounter, 0 mSdLazyCounter, 120 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 42 SdHoareTripleChecker+Valid, 64 SdHoareTripleChecker+Invalid, 130 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 120 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-13 10:28:09,496 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [42 Valid, 64 Invalid, 130 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 120 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-13 10:28:09,496 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 44 states. [2024-09-13 10:28:09,500 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 44 to 37. [2024-09-13 10:28:09,501 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 37 states, 24 states have (on average 1.25) internal successors, (30), 25 states have internal predecessors, (30), 6 states have call successors, (6), 5 states have call predecessors, (6), 5 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-13 10:28:09,501 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 37 states to 37 states and 42 transitions. [2024-09-13 10:28:09,501 INFO L78 Accepts]: Start accepts. Automaton has 37 states and 42 transitions. Word has length 8 [2024-09-13 10:28:09,502 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-13 10:28:09,502 INFO L474 AbstractCegarLoop]: Abstraction has 37 states and 42 transitions. [2024-09-13 10:28:09,502 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 10 states have (on average 1.1) internal successors, (11), 7 states have internal predecessors, (11), 4 states have call successors, (4), 4 states have call predecessors, (4), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-13 10:28:09,502 INFO L276 IsEmpty]: Start isEmpty. Operand 37 states and 42 transitions. [2024-09-13 10:28:09,502 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-09-13 10:28:09,503 INFO L208 NwaCegarLoop]: Found error trace [2024-09-13 10:28:09,503 INFO L216 NwaCegarLoop]: trace histogram [5, 4, 4, 1, 1, 1, 1] [2024-09-13 10:28:09,516 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-09-13 10:28:09,706 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-13 10:28:09,707 INFO L399 AbstractCegarLoop]: === Iteration 3 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-13 10:28:09,707 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-13 10:28:09,708 INFO L85 PathProgramCache]: Analyzing trace with hash 1295816760, now seen corresponding path program 2 times [2024-09-13 10:28:09,708 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-13 10:28:09,708 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1019019337] [2024-09-13 10:28:09,708 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-13 10:28:09,708 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-13 10:28:09,728 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:09,916 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 0 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-13 10:28:09,917 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-13 10:28:09,917 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1019019337] [2024-09-13 10:28:09,917 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1019019337] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-13 10:28:09,918 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [239186732] [2024-09-13 10:28:09,918 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-13 10:28:09,918 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-13 10:28:09,918 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-13 10:28:09,919 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-13 10:28:09,920 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-09-13 10:28:09,949 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 1 check-sat command(s) [2024-09-13 10:28:09,949 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-13 10:28:09,950 INFO L262 TraceCheckSpWp]: Trace formula consists of 39 conjuncts, 7 conjuncts are in the unsatisfiable core [2024-09-13 10:28:09,950 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-13 10:28:09,987 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 4 proven. 0 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-09-13 10:28:09,987 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-13 10:28:09,987 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [239186732] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-13 10:28:09,987 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-09-13 10:28:09,987 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [12] total 15 [2024-09-13 10:28:09,988 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1308560536] [2024-09-13 10:28:09,988 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-13 10:28:09,988 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-09-13 10:28:09,988 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-13 10:28:09,988 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-09-13 10:28:09,988 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=47, Invalid=163, Unknown=0, NotChecked=0, Total=210 [2024-09-13 10:28:09,989 INFO L87 Difference]: Start difference. First operand 37 states and 42 transitions. Second operand has 4 states, 3 states have (on average 2.0) internal successors, (6), 4 states have internal predecessors, (6), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-13 10:28:10,020 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-13 10:28:10,020 INFO L93 Difference]: Finished difference Result 39 states and 45 transitions. [2024-09-13 10:28:10,021 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-09-13 10:28:10,021 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 2.0) internal successors, (6), 4 states have internal predecessors, (6), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 17 [2024-09-13 10:28:10,021 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-13 10:28:10,022 INFO L225 Difference]: With dead ends: 39 [2024-09-13 10:28:10,022 INFO L226 Difference]: Without dead ends: 39 [2024-09-13 10:28:10,023 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 29 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 32 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=51, Invalid=189, Unknown=0, NotChecked=0, Total=240 [2024-09-13 10:28:10,023 INFO L434 NwaCegarLoop]: 7 mSDtfsCounter, 5 mSDsluCounter, 6 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 6 SdHoareTripleChecker+Valid, 13 SdHoareTripleChecker+Invalid, 26 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-13 10:28:10,023 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [6 Valid, 13 Invalid, 26 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-13 10:28:10,024 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 39 states. [2024-09-13 10:28:10,029 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 39 to 38. [2024-09-13 10:28:10,030 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 38 states, 25 states have (on average 1.24) internal successors, (31), 26 states have internal predecessors, (31), 6 states have call successors, (6), 5 states have call predecessors, (6), 5 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-13 10:28:10,031 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 38 states to 38 states and 43 transitions. [2024-09-13 10:28:10,031 INFO L78 Accepts]: Start accepts. Automaton has 38 states and 43 transitions. Word has length 17 [2024-09-13 10:28:10,032 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-13 10:28:10,032 INFO L474 AbstractCegarLoop]: Abstraction has 38 states and 43 transitions. [2024-09-13 10:28:10,032 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 2.0) internal successors, (6), 4 states have internal predecessors, (6), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-13 10:28:10,032 INFO L276 IsEmpty]: Start isEmpty. Operand 38 states and 43 transitions. [2024-09-13 10:28:10,033 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2024-09-13 10:28:10,033 INFO L208 NwaCegarLoop]: Found error trace [2024-09-13 10:28:10,033 INFO L216 NwaCegarLoop]: trace histogram [5, 4, 4, 1, 1, 1, 1, 1, 1, 1] [2024-09-13 10:28:10,045 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-09-13 10:28:10,233 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-13 10:28:10,234 INFO L399 AbstractCegarLoop]: === Iteration 4 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-13 10:28:10,234 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-13 10:28:10,234 INFO L85 PathProgramCache]: Analyzing trace with hash 511038535, now seen corresponding path program 1 times [2024-09-13 10:28:10,234 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-13 10:28:10,234 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [121394601] [2024-09-13 10:28:10,234 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-13 10:28:10,234 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-13 10:28:10,249 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:10,368 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2024-09-13 10:28:10,371 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:10,417 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 1 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-13 10:28:10,418 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-13 10:28:10,418 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [121394601] [2024-09-13 10:28:10,419 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [121394601] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-13 10:28:10,419 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [787706286] [2024-09-13 10:28:10,419 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-13 10:28:10,419 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-13 10:28:10,419 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-13 10:28:10,421 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-13 10:28:10,423 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-09-13 10:28:10,456 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:10,457 INFO L262 TraceCheckSpWp]: Trace formula consists of 91 conjuncts, 12 conjuncts are in the unsatisfiable core [2024-09-13 10:28:10,459 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-13 10:28:10,515 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 1 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-13 10:28:10,516 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-13 10:28:10,726 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 1 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-13 10:28:10,726 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [787706286] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-13 10:28:10,726 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-13 10:28:10,726 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 13, 13] total 25 [2024-09-13 10:28:10,726 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [104904263] [2024-09-13 10:28:10,726 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-13 10:28:10,727 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-09-13 10:28:10,727 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-13 10:28:10,728 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-09-13 10:28:10,728 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=114, Invalid=486, Unknown=0, NotChecked=0, Total=600 [2024-09-13 10:28:10,728 INFO L87 Difference]: Start difference. First operand 38 states and 43 transitions. Second operand has 25 states, 23 states have (on average 1.2173913043478262) internal successors, (28), 16 states have internal predecessors, (28), 10 states have call successors, (10), 9 states have call predecessors, (10), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-13 10:28:11,047 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-13 10:28:11,047 INFO L93 Difference]: Finished difference Result 71 states and 72 transitions. [2024-09-13 10:28:11,047 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2024-09-13 10:28:11,048 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 23 states have (on average 1.2173913043478262) internal successors, (28), 16 states have internal predecessors, (28), 10 states have call successors, (10), 9 states have call predecessors, (10), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) Word has length 20 [2024-09-13 10:28:11,048 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-13 10:28:11,049 INFO L225 Difference]: With dead ends: 71 [2024-09-13 10:28:11,049 INFO L226 Difference]: Without dead ends: 71 [2024-09-13 10:28:11,049 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 62 GetRequests, 28 SyntacticMatches, 1 SemanticMatches, 33 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 186 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=272, Invalid=918, Unknown=0, NotChecked=0, Total=1190 [2024-09-13 10:28:11,050 INFO L434 NwaCegarLoop]: 13 mSDtfsCounter, 127 mSDsluCounter, 60 mSDsCounter, 0 mSdLazyCounter, 291 mSolverCounterSat, 28 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 128 SdHoareTripleChecker+Valid, 73 SdHoareTripleChecker+Invalid, 319 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 28 IncrementalHoareTripleChecker+Valid, 291 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-13 10:28:11,050 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [128 Valid, 73 Invalid, 319 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [28 Valid, 291 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-13 10:28:11,051 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 71 states. [2024-09-13 10:28:11,057 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 71 to 63. [2024-09-13 10:28:11,059 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 63 states, 41 states have (on average 1.2439024390243902) internal successors, (51), 43 states have internal predecessors, (51), 10 states have call successors, (10), 9 states have call predecessors, (10), 10 states have return successors, (11), 10 states have call predecessors, (11), 10 states have call successors, (11) [2024-09-13 10:28:11,061 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 63 states to 63 states and 72 transitions. [2024-09-13 10:28:11,062 INFO L78 Accepts]: Start accepts. Automaton has 63 states and 72 transitions. Word has length 20 [2024-09-13 10:28:11,062 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-13 10:28:11,062 INFO L474 AbstractCegarLoop]: Abstraction has 63 states and 72 transitions. [2024-09-13 10:28:11,062 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 23 states have (on average 1.2173913043478262) internal successors, (28), 16 states have internal predecessors, (28), 10 states have call successors, (10), 9 states have call predecessors, (10), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-13 10:28:11,062 INFO L276 IsEmpty]: Start isEmpty. Operand 63 states and 72 transitions. [2024-09-13 10:28:11,063 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2024-09-13 10:28:11,063 INFO L208 NwaCegarLoop]: Found error trace [2024-09-13 10:28:11,063 INFO L216 NwaCegarLoop]: trace histogram [10, 9, 9, 1, 1, 1, 1, 1, 1, 1] [2024-09-13 10:28:11,076 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-09-13 10:28:11,263 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-13 10:28:11,264 INFO L399 AbstractCegarLoop]: === Iteration 5 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-13 10:28:11,264 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-13 10:28:11,264 INFO L85 PathProgramCache]: Analyzing trace with hash 756088836, now seen corresponding path program 2 times [2024-09-13 10:28:11,264 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-13 10:28:11,264 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1075335977] [2024-09-13 10:28:11,265 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-13 10:28:11,265 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-13 10:28:11,284 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:11,536 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 28 [2024-09-13 10:28:11,537 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:11,591 INFO L134 CoverageAnalysis]: Checked inductivity of 127 backedges. 1 proven. 126 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-13 10:28:11,591 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-13 10:28:11,591 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1075335977] [2024-09-13 10:28:11,591 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1075335977] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-13 10:28:11,591 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1484204044] [2024-09-13 10:28:11,592 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-13 10:28:11,592 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-13 10:28:11,592 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-13 10:28:11,594 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-13 10:28:11,596 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-09-13 10:28:11,638 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-13 10:28:11,639 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-13 10:28:11,639 INFO L262 TraceCheckSpWp]: Trace formula consists of 146 conjuncts, 22 conjuncts are in the unsatisfiable core [2024-09-13 10:28:11,641 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-13 10:28:11,735 INFO L134 CoverageAnalysis]: Checked inductivity of 127 backedges. 1 proven. 126 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-13 10:28:11,735 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-13 10:28:11,990 INFO L134 CoverageAnalysis]: Checked inductivity of 127 backedges. 1 proven. 126 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-13 10:28:11,991 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1484204044] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-13 10:28:11,991 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-13 10:28:11,991 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [24, 23, 23] total 26 [2024-09-13 10:28:11,991 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [646797598] [2024-09-13 10:28:11,992 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-13 10:28:11,992 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 26 states [2024-09-13 10:28:11,992 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-13 10:28:11,993 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 26 interpolants. [2024-09-13 10:28:11,993 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=132, Invalid=518, Unknown=0, NotChecked=0, Total=650 [2024-09-13 10:28:11,993 INFO L87 Difference]: Start difference. First operand 63 states and 72 transitions. Second operand has 26 states, 25 states have (on average 1.16) internal successors, (29), 16 states have internal predecessors, (29), 10 states have call successors, (10), 10 states have call predecessors, (10), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-13 10:28:12,327 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-13 10:28:12,327 INFO L93 Difference]: Finished difference Result 78 states and 79 transitions. [2024-09-13 10:28:12,327 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 23 states. [2024-09-13 10:28:12,328 INFO L78 Accepts]: Start accepts. Automaton has has 26 states, 25 states have (on average 1.16) internal successors, (29), 16 states have internal predecessors, (29), 10 states have call successors, (10), 10 states have call predecessors, (10), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 35 [2024-09-13 10:28:12,328 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-13 10:28:12,329 INFO L225 Difference]: With dead ends: 78 [2024-09-13 10:28:12,329 INFO L226 Difference]: Without dead ends: 78 [2024-09-13 10:28:12,329 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 103 GetRequests, 48 SyntacticMatches, 20 SemanticMatches, 35 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 431 ImplicationChecksByTransitivity, 0.5s TimeCoverageRelationStatistics Valid=322, Invalid=1010, Unknown=0, NotChecked=0, Total=1332 [2024-09-13 10:28:12,330 INFO L434 NwaCegarLoop]: 14 mSDtfsCounter, 108 mSDsluCounter, 108 mSDsCounter, 0 mSdLazyCounter, 431 mSolverCounterSat, 25 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 109 SdHoareTripleChecker+Valid, 122 SdHoareTripleChecker+Invalid, 456 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 25 IncrementalHoareTripleChecker+Valid, 431 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-13 10:28:12,330 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [109 Valid, 122 Invalid, 456 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [25 Valid, 431 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-13 10:28:12,331 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 78 states. [2024-09-13 10:28:12,336 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 78 to 69. [2024-09-13 10:28:12,338 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 69 states, 45 states have (on average 1.2444444444444445) internal successors, (56), 47 states have internal predecessors, (56), 11 states have call successors, (11), 10 states have call predecessors, (11), 11 states have return successors, (12), 11 states have call predecessors, (12), 11 states have call successors, (12) [2024-09-13 10:28:12,339 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 69 states to 69 states and 79 transitions. [2024-09-13 10:28:12,339 INFO L78 Accepts]: Start accepts. Automaton has 69 states and 79 transitions. Word has length 35 [2024-09-13 10:28:12,339 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-13 10:28:12,339 INFO L474 AbstractCegarLoop]: Abstraction has 69 states and 79 transitions. [2024-09-13 10:28:12,339 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 26 states, 25 states have (on average 1.16) internal successors, (29), 16 states have internal predecessors, (29), 10 states have call successors, (10), 10 states have call predecessors, (10), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-13 10:28:12,339 INFO L276 IsEmpty]: Start isEmpty. Operand 69 states and 79 transitions. [2024-09-13 10:28:12,340 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2024-09-13 10:28:12,341 INFO L208 NwaCegarLoop]: Found error trace [2024-09-13 10:28:12,341 INFO L216 NwaCegarLoop]: trace histogram [11, 10, 10, 1, 1, 1, 1, 1, 1, 1] [2024-09-13 10:28:12,356 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2024-09-13 10:28:12,545 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-13 10:28:12,546 INFO L399 AbstractCegarLoop]: === Iteration 6 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-13 10:28:12,546 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-13 10:28:12,546 INFO L85 PathProgramCache]: Analyzing trace with hash -1809419033, now seen corresponding path program 3 times [2024-09-13 10:28:12,546 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-13 10:28:12,546 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1114092040] [2024-09-13 10:28:12,546 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-13 10:28:12,546 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-13 10:28:12,563 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:12,903 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 31 [2024-09-13 10:28:12,905 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:12,942 INFO L134 CoverageAnalysis]: Checked inductivity of 156 backedges. 126 proven. 29 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-09-13 10:28:12,942 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-13 10:28:12,942 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1114092040] [2024-09-13 10:28:12,942 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1114092040] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-13 10:28:12,942 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2059202694] [2024-09-13 10:28:12,942 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-13 10:28:12,942 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-13 10:28:12,943 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-13 10:28:12,945 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-13 10:28:12,946 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-09-13 10:28:12,980 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 3 check-sat command(s) [2024-09-13 10:28:12,980 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-13 10:28:12,982 INFO L262 TraceCheckSpWp]: Trace formula consists of 69 conjuncts, 19 conjuncts are in the unsatisfiable core [2024-09-13 10:28:12,983 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-13 10:28:13,002 INFO L134 CoverageAnalysis]: Checked inductivity of 156 backedges. 27 proven. 0 refuted. 0 times theorem prover too weak. 129 trivial. 0 not checked. [2024-09-13 10:28:13,002 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-13 10:28:13,002 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2059202694] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-13 10:28:13,003 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-09-13 10:28:13,003 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [26] total 26 [2024-09-13 10:28:13,003 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [406318018] [2024-09-13 10:28:13,003 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-13 10:28:13,003 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-09-13 10:28:13,003 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-13 10:28:13,003 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-09-13 10:28:13,004 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=142, Invalid=560, Unknown=0, NotChecked=0, Total=702 [2024-09-13 10:28:13,004 INFO L87 Difference]: Start difference. First operand 69 states and 79 transitions. Second operand has 5 states, 4 states have (on average 2.25) internal successors, (9), 4 states have internal predecessors, (9), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-13 10:28:13,044 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-13 10:28:13,045 INFO L93 Difference]: Finished difference Result 68 states and 69 transitions. [2024-09-13 10:28:13,045 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-09-13 10:28:13,045 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 2.25) internal successors, (9), 4 states have internal predecessors, (9), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 38 [2024-09-13 10:28:13,045 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-13 10:28:13,047 INFO L225 Difference]: With dead ends: 68 [2024-09-13 10:28:13,047 INFO L226 Difference]: Without dead ends: 68 [2024-09-13 10:28:13,047 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 66 GetRequests, 39 SyntacticMatches, 0 SemanticMatches, 27 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 190 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=152, Invalid=660, Unknown=0, NotChecked=0, Total=812 [2024-09-13 10:28:13,048 INFO L434 NwaCegarLoop]: 6 mSDtfsCounter, 2 mSDsluCounter, 9 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 15 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-13 10:28:13,048 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 15 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-13 10:28:13,048 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 68 states. [2024-09-13 10:28:13,055 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 68 to 68. [2024-09-13 10:28:13,055 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 68 states, 45 states have (on average 1.0222222222222221) internal successors, (46), 46 states have internal predecessors, (46), 11 states have call successors, (11), 10 states have call predecessors, (11), 11 states have return successors, (12), 11 states have call predecessors, (12), 11 states have call successors, (12) [2024-09-13 10:28:13,055 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 68 states to 68 states and 69 transitions. [2024-09-13 10:28:13,056 INFO L78 Accepts]: Start accepts. Automaton has 68 states and 69 transitions. Word has length 38 [2024-09-13 10:28:13,056 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-13 10:28:13,056 INFO L474 AbstractCegarLoop]: Abstraction has 68 states and 69 transitions. [2024-09-13 10:28:13,056 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 2.25) internal successors, (9), 4 states have internal predecessors, (9), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-13 10:28:13,056 INFO L276 IsEmpty]: Start isEmpty. Operand 68 states and 69 transitions. [2024-09-13 10:28:13,057 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 70 [2024-09-13 10:28:13,057 INFO L208 NwaCegarLoop]: Found error trace [2024-09-13 10:28:13,057 INFO L216 NwaCegarLoop]: trace histogram [11, 11, 10, 10, 10, 10, 1, 1, 1, 1, 1, 1, 1] [2024-09-13 10:28:13,071 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-09-13 10:28:13,259 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2024-09-13 10:28:13,260 INFO L399 AbstractCegarLoop]: === Iteration 7 === Targeting ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-13 10:28:13,260 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-13 10:28:13,260 INFO L85 PathProgramCache]: Analyzing trace with hash -1394136637, now seen corresponding path program 1 times [2024-09-13 10:28:13,260 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-13 10:28:13,260 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1908761073] [2024-09-13 10:28:13,260 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-13 10:28:13,260 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-13 10:28:13,279 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,370 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-13 10:28:13,391 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,433 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-13 10:28:13,437 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,444 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-13 10:28:13,448 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,455 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-13 10:28:13,457 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,463 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-13 10:28:13,465 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,469 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-13 10:28:13,472 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,476 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-13 10:28:13,486 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,490 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-13 10:28:13,491 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,494 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-13 10:28:13,495 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,499 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-13 10:28:13,500 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,502 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-13 10:28:13,503 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-13 10:28:13,504 INFO L134 CoverageAnalysis]: Checked inductivity of 310 backedges. 10 proven. 0 refuted. 0 times theorem prover too weak. 300 trivial. 0 not checked. [2024-09-13 10:28:13,505 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-13 10:28:13,505 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1908761073] [2024-09-13 10:28:13,505 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1908761073] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-13 10:28:13,505 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-13 10:28:13,505 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-09-13 10:28:13,505 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [78578643] [2024-09-13 10:28:13,505 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-13 10:28:13,506 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-09-13 10:28:13,506 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-13 10:28:13,506 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-09-13 10:28:13,506 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-09-13 10:28:13,506 INFO L87 Difference]: Start difference. First operand 68 states and 69 transitions. Second operand has 5 states, 4 states have (on average 2.5) internal successors, (10), 4 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-13 10:28:13,523 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-13 10:28:13,523 INFO L93 Difference]: Finished difference Result 66 states and 67 transitions. [2024-09-13 10:28:13,524 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-09-13 10:28:13,524 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 2.5) internal successors, (10), 4 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 69 [2024-09-13 10:28:13,525 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-13 10:28:13,525 INFO L225 Difference]: With dead ends: 66 [2024-09-13 10:28:13,525 INFO L226 Difference]: Without dead ends: 0 [2024-09-13 10:28:13,525 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 27 GetRequests, 24 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-09-13 10:28:13,525 INFO L434 NwaCegarLoop]: 7 mSDtfsCounter, 0 mSDsluCounter, 15 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 22 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-13 10:28:13,526 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 22 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-13 10:28:13,526 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-09-13 10:28:13,526 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-09-13 10:28:13,526 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-13 10:28:13,526 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-09-13 10:28:13,526 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 69 [2024-09-13 10:28:13,526 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-13 10:28:13,526 INFO L474 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-09-13 10:28:13,526 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 2.5) internal successors, (10), 4 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-13 10:28:13,526 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-09-13 10:28:13,526 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-09-13 10:28:13,529 INFO L785 garLoopResultBuilder]: Registering result SAFE for location ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION (1 of 2 remaining) [2024-09-13 10:28:13,530 INFO L785 garLoopResultBuilder]: Registering result SAFE for location sumErr0ENSURES_VIOLATIONPOST_CONDITION (0 of 2 remaining) [2024-09-13 10:28:13,530 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-09-13 10:28:13,532 INFO L408 BasicCegarLoop]: Path program histogram: [3, 2, 1, 1] [2024-09-13 10:28:13,533 INFO L165 ceAbstractionStarter]: Computing trace abstraction results [2024-09-13 10:28:13,535 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 13.09 10:28:13 BoogieIcfgContainer [2024-09-13 10:28:13,535 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-09-13 10:28:13,535 INFO L158 Benchmark]: Toolchain (without parser) took 5312.32ms. Allocated memory was 169.9MB in the beginning and 205.5MB in the end (delta: 35.7MB). Free memory was 137.6MB in the beginning and 69.7MB in the end (delta: 67.9MB). Peak memory consumption was 103.2MB. Max. memory is 16.1GB. [2024-09-13 10:28:13,535 INFO L158 Benchmark]: Witness Parser took 0.35ms. Allocated memory is still 125.8MB. Free memory is still 88.7MB. There was no memory consumed. Max. memory is 16.1GB. [2024-09-13 10:28:13,535 INFO L158 Benchmark]: CDTParser took 1.14ms. Allocated memory is still 125.8MB. Free memory is still 86.8MB. There was no memory consumed. Max. memory is 16.1GB. [2024-09-13 10:28:13,535 INFO L158 Benchmark]: CACSL2BoogieTranslator took 192.03ms. Allocated memory is still 169.9MB. Free memory was 137.6MB in the beginning and 125.0MB in the end (delta: 12.6MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. [2024-09-13 10:28:13,536 INFO L158 Benchmark]: Boogie Procedure Inliner took 25.83ms. Allocated memory is still 169.9MB. Free memory was 125.0MB in the beginning and 123.6MB in the end (delta: 1.3MB). There was no memory consumed. Max. memory is 16.1GB. [2024-09-13 10:28:13,536 INFO L158 Benchmark]: Boogie Preprocessor took 22.24ms. Allocated memory is still 169.9MB. Free memory was 123.6MB in the beginning and 122.3MB in the end (delta: 1.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-09-13 10:28:13,536 INFO L158 Benchmark]: RCFGBuilder took 202.27ms. Allocated memory is still 169.9MB. Free memory was 122.3MB in the beginning and 111.8MB in the end (delta: 10.5MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. [2024-09-13 10:28:13,536 INFO L158 Benchmark]: TraceAbstraction took 4864.63ms. Allocated memory was 169.9MB in the beginning and 205.5MB in the end (delta: 35.7MB). Free memory was 111.1MB in the beginning and 69.7MB in the end (delta: 41.4MB). Peak memory consumption was 78.0MB. Max. memory is 16.1GB. [2024-09-13 10:28:13,537 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * Witness Parser took 0.35ms. Allocated memory is still 125.8MB. Free memory is still 88.7MB. There was no memory consumed. Max. memory is 16.1GB. * CDTParser took 1.14ms. Allocated memory is still 125.8MB. Free memory is still 86.8MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 192.03ms. Allocated memory is still 169.9MB. Free memory was 137.6MB in the beginning and 125.0MB in the end (delta: 12.6MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 25.83ms. Allocated memory is still 169.9MB. Free memory was 125.0MB in the beginning and 123.6MB in the end (delta: 1.3MB). There was no memory consumed. Max. memory is 16.1GB. * Boogie Preprocessor took 22.24ms. Allocated memory is still 169.9MB. Free memory was 123.6MB in the beginning and 122.3MB in the end (delta: 1.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 202.27ms. Allocated memory is still 169.9MB. Free memory was 122.3MB in the beginning and 111.8MB in the end (delta: 10.5MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. * TraceAbstraction took 4864.63ms. Allocated memory was 169.9MB in the beginning and 205.5MB in the end (delta: 35.7MB). Free memory was 111.1MB in the beginning and 69.7MB in the end (delta: 41.4MB). Peak memory consumption was 78.0MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 18]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - PositiveResult [Line: 5]: procedure postcondition always holds For all program executions holds that procedure postcondition always holds at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 2 procedures, 15 locations, 2 error locations. Started 1 CEGAR loops. OverallTime: 4.8s, OverallIterations: 7, TraceHistogramMax: 11, PathProgramHistogramMax: 3, EmptinessCheckTime: 0.0s, AutomataDifference: 1.0s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 299 SdHoareTripleChecker+Valid, 0.6s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 292 mSDsluCounter, 338 SdHoareTripleChecker+Invalid, 0.5s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 270 mSDsCounter, 66 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 954 IncrementalHoareTripleChecker+Invalid, 1020 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 66 mSolverCounterUnsat, 68 mSDtfsCounter, 954 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 316 GetRequests, 165 SyntacticMatches, 21 SemanticMatches, 130 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 863 ImplicationChecksByTransitivity, 1.3s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=69occurred in iteration=5, InterpolantAutomatonStates: 77, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 7 MinimizatonAttempts, 26 StatesRemovedByMinimization, 5 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.1s SatisfiabilityAnalysisTime, 2.2s InterpolantComputationTime, 310 NumberOfCodeBlocks, 274 NumberOfCodeBlocksAsserted, 15 NumberOfCheckSat, 358 ConstructedInterpolants, 0 QuantifiedInterpolants, 876 SizeOfPredicates, 17 NumberOfNonLiveVariables, 395 ConjunctsInSsa, 66 ConjunctsInUnsatCore, 15 InterpolantComputations, 4 PerfectInterpolantSequences, 625/1142 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 2 specifications checked. All of them hold RESULT: Ultimate proved your program to be correct! [2024-09-13 10:28:13,559 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE