./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/recursive-simple/id2_i5_o5-2.c --full-output --witness-type correctness_witness --validate ../results/automizer-verification-files/SV-COMP24_unreach-call/id2_i5_o5-2.yml/witness-2.1.yml --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 04d6fb36 Calling Ultimate with: /root/.sdkman/candidates/java/current/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReachWitnessValidation.xml -i ../sv-benchmarks/c/recursive-simple/id2_i5_o5-2.c ../results/automizer-verification-files/SV-COMP24_unreach-call/id2_i5_o5-2.yml/witness-2.1.yml -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --traceabstraction.positions.where.we.compute.the.hoare.annotation None --- Real Ultimate output --- This is Ultimate 0.2.4-tmp.dk.referee-eval-04d6fb3-m [2024-09-15 20:25:04,924 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-09-15 20:25:05,003 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-09-15 20:25:05,011 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-09-15 20:25:05,012 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-09-15 20:25:05,047 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-09-15 20:25:05,048 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-09-15 20:25:05,048 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-09-15 20:25:05,049 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-09-15 20:25:05,050 INFO L153 SettingsManager]: * Use memory slicer=true [2024-09-15 20:25:05,051 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-09-15 20:25:05,051 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-09-15 20:25:05,052 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-09-15 20:25:05,052 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-09-15 20:25:05,052 INFO L153 SettingsManager]: * Use SBE=true [2024-09-15 20:25:05,053 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-09-15 20:25:05,053 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-09-15 20:25:05,053 INFO L153 SettingsManager]: * sizeof long=4 [2024-09-15 20:25:05,054 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-09-15 20:25:05,054 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-09-15 20:25:05,054 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-09-15 20:25:05,058 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-09-15 20:25:05,059 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-09-15 20:25:05,062 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-09-15 20:25:05,062 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-09-15 20:25:05,062 INFO L153 SettingsManager]: * sizeof long double=12 [2024-09-15 20:25:05,063 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-09-15 20:25:05,063 INFO L153 SettingsManager]: * Use constant arrays=true [2024-09-15 20:25:05,063 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-09-15 20:25:05,064 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-09-15 20:25:05,064 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-09-15 20:25:05,064 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-09-15 20:25:05,064 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-15 20:25:05,064 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-09-15 20:25:05,065 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-09-15 20:25:05,065 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-09-15 20:25:05,065 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-09-15 20:25:05,066 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-09-15 20:25:05,066 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-09-15 20:25:05,066 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-09-15 20:25:05,067 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-09-15 20:25:05,067 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-09-15 20:25:05,068 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> None [2024-09-15 20:25:05,393 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-09-15 20:25:05,415 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-09-15 20:25:05,419 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-09-15 20:25:05,420 INFO L270 PluginConnector]: Initializing CDTParser... [2024-09-15 20:25:05,421 INFO L274 PluginConnector]: CDTParser initialized [2024-09-15 20:25:05,423 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/recursive-simple/id2_i5_o5-2.c [2024-09-15 20:25:06,946 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-09-15 20:25:07,145 INFO L384 CDTParser]: Found 1 translation units. [2024-09-15 20:25:07,146 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/id2_i5_o5-2.c [2024-09-15 20:25:07,156 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/539a702af/049f6ddcaa8b4607989c3e38f053525c/FLAG877953f76 [2024-09-15 20:25:07,546 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/539a702af/049f6ddcaa8b4607989c3e38f053525c [2024-09-15 20:25:07,548 INFO L270 PluginConnector]: Initializing Witness Parser... [2024-09-15 20:25:07,549 INFO L274 PluginConnector]: Witness Parser initialized [2024-09-15 20:25:07,551 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../results/automizer-verification-files/SV-COMP24_unreach-call/id2_i5_o5-2.yml/witness-2.1.yml [2024-09-15 20:25:07,605 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-09-15 20:25:07,606 INFO L133 ToolchainWalker]: Walking toolchain with 5 elements. [2024-09-15 20:25:07,607 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-09-15 20:25:07,608 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-09-15 20:25:07,612 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-09-15 20:25:07,613 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.09 08:25:07" (1/2) ... [2024-09-15 20:25:07,616 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@6a1054a9 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:07, skipping insertion in model container [2024-09-15 20:25:07,617 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.09 08:25:07" (1/2) ... [2024-09-15 20:25:07,618 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.CACSL2BoogieTranslatorObserver@65b284a2 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:07, skipping insertion in model container [2024-09-15 20:25:07,618 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 15.09 08:25:07" (2/2) ... [2024-09-15 20:25:07,618 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@6a1054a9 and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07, skipping insertion in model container [2024-09-15 20:25:07,619 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 15.09 08:25:07" (2/2) ... [2024-09-15 20:25:07,626 INFO L93 nessWitnessExtractor]: Found the following entries in the witness: [2024-09-15 20:25:07,628 INFO L1541 ArrayList]: Function contract at [L9]: requires null, ensures ((((((\old(x) == 0) || (\old(x) == 4)) || ((5 == \result) && (5 == \old(x)))) || ((((3 == \result) && (\old(x) <= 4)) || (\old(x) == 2)) && (2 <= \old(x)))) || (((\result == 1) && (\old(x) <= 2)) && (1 <= \old(x)))) || (5 < \old(x))) [2024-09-15 20:25:07,629 INFO L1541 ArrayList]: Function contract at [L14]: requires null, ensures ((((((\old(x) == 0) && (\result == 0)) || (\old(x) == 1)) || (((\result == 2) && (\old(x) <= 3)) && (2 <= \old(x)))) || (4 < \old(x))) || (((3 == \old(x)) || (\result == 4)) && (3 <= \old(x)))) [2024-09-15 20:25:07,645 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-09-15 20:25:07,809 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/id2_i5_o5-2.c[548,561] [2024-09-15 20:25:07,815 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-15 20:25:07,828 INFO L200 MainTranslator]: Completed pre-run Start Parsing Global Start Parsing Global [2024-09-15 20:25:07,876 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/id2_i5_o5-2.c[548,561] [2024-09-15 20:25:07,878 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-15 20:25:07,905 INFO L204 MainTranslator]: Completed translation [2024-09-15 20:25:07,905 INFO L201 PluginConnector]: Adding new model witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07 WrapperNode [2024-09-15 20:25:07,906 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-09-15 20:25:07,907 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-09-15 20:25:07,907 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-09-15 20:25:07,908 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-09-15 20:25:07,914 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,921 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,935 INFO L138 Inliner]: procedures = 14, calls = 10, calls flagged for inlining = 2, calls inlined = 2, statements flattened = 18 [2024-09-15 20:25:07,935 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-09-15 20:25:07,936 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-09-15 20:25:07,936 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-09-15 20:25:07,936 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-09-15 20:25:07,945 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,946 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,947 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,961 WARN L109 MemorySlicer]: Omit memory slicing because it failed with the following exception: Unsupported: Procedure id2 is not part of the Ultimate memory model but has specification other that is not a ModifiesSpecification [2024-09-15 20:25:07,962 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,963 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,966 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,971 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,972 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,972 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,973 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-09-15 20:25:07,974 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-09-15 20:25:07,974 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-09-15 20:25:07,975 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-09-15 20:25:07,976 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (1/1) ... [2024-09-15 20:25:07,981 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-15 20:25:07,989 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:08,010 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-09-15 20:25:08,016 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-09-15 20:25:08,063 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-09-15 20:25:08,063 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-09-15 20:25:08,063 INFO L130 BoogieDeclarations]: Found specification of procedure id2 [2024-09-15 20:25:08,064 INFO L138 BoogieDeclarations]: Found implementation of procedure id2 [2024-09-15 20:25:08,064 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-09-15 20:25:08,064 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-09-15 20:25:08,064 INFO L130 BoogieDeclarations]: Found specification of procedure id [2024-09-15 20:25:08,064 INFO L138 BoogieDeclarations]: Found implementation of procedure id [2024-09-15 20:25:08,117 INFO L242 CfgBuilder]: Building ICFG [2024-09-15 20:25:08,119 INFO L268 CfgBuilder]: Building CFG for each procedure with an implementation [2024-09-15 20:25:08,259 INFO L? ?]: Removed 11 outVars from TransFormulas that were not future-live. [2024-09-15 20:25:08,259 INFO L291 CfgBuilder]: Performing block encoding [2024-09-15 20:25:08,288 INFO L313 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-09-15 20:25:08,290 INFO L318 CfgBuilder]: Removed 0 assume(true) statements. [2024-09-15 20:25:08,290 INFO L201 PluginConnector]: Adding new model witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.09 08:25:08 BoogieIcfgContainer [2024-09-15 20:25:08,290 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-09-15 20:25:08,292 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-09-15 20:25:08,292 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-09-15 20:25:08,295 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-09-15 20:25:08,296 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 15.09 08:25:07" (1/4) ... [2024-09-15 20:25:08,298 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@374abb0 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 15.09 08:25:08, skipping insertion in model container [2024-09-15 20:25:08,298 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 15.09 08:25:07" (2/4) ... [2024-09-15 20:25:08,299 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@374abb0 and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CORRECTNESS_WITNESS 15.09 08:25:08, skipping insertion in model container [2024-09-15 20:25:08,299 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:07" (3/4) ... [2024-09-15 20:25:08,299 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@374abb0 and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CORRECTNESS_WITNESS 15.09 08:25:08, skipping insertion in model container [2024-09-15 20:25:08,300 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.09 08:25:08" (4/4) ... [2024-09-15 20:25:08,301 INFO L112 eAbstractionObserver]: Analyzing ICFG id2_i5_o5-2.c [2024-09-15 20:25:08,315 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:None NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-09-15 20:25:08,315 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 3 error locations. [2024-09-15 20:25:08,358 INFO L335 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-09-15 20:25:08,363 INFO L336 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=None, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@508c38ae, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-09-15 20:25:08,363 INFO L337 AbstractCegarLoop]: Starting to check reachability of 3 error locations. [2024-09-15 20:25:08,373 INFO L276 IsEmpty]: Start isEmpty. Operand has 22 states, 13 states have (on average 1.4615384615384615) internal successors, (19), 16 states have internal predecessors, (19), 3 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 20:25:08,380 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 6 [2024-09-15 20:25:08,380 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:08,381 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1] [2024-09-15 20:25:08,381 INFO L399 AbstractCegarLoop]: === Iteration 1 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:08,389 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:08,390 INFO L85 PathProgramCache]: Analyzing trace with hash 66667393, now seen corresponding path program 1 times [2024-09-15 20:25:08,399 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:08,399 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [159581605] [2024-09-15 20:25:08,400 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:08,400 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:08,506 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:08,656 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:08,656 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:08,656 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [159581605] [2024-09-15 20:25:08,657 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [159581605] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 20:25:08,657 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-15 20:25:08,658 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-09-15 20:25:08,659 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [616761579] [2024-09-15 20:25:08,660 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 20:25:08,663 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-09-15 20:25:08,664 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:08,689 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-09-15 20:25:08,690 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-09-15 20:25:08,692 INFO L87 Difference]: Start difference. First operand has 22 states, 13 states have (on average 1.4615384615384615) internal successors, (19), 16 states have internal predecessors, (19), 3 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) Second operand has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:08,786 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:08,787 INFO L93 Difference]: Finished difference Result 29 states and 31 transitions. [2024-09-15 20:25:08,789 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-09-15 20:25:08,790 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 5 [2024-09-15 20:25:08,790 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:08,796 INFO L225 Difference]: With dead ends: 29 [2024-09-15 20:25:08,796 INFO L226 Difference]: Without dead ends: 27 [2024-09-15 20:25:08,798 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-09-15 20:25:08,803 INFO L434 NwaCegarLoop]: 17 mSDtfsCounter, 13 mSDsluCounter, 47 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 14 SdHoareTripleChecker+Valid, 64 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:08,803 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [14 Valid, 64 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-15 20:25:08,818 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 27 states. [2024-09-15 20:25:08,833 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 27 to 26. [2024-09-15 20:25:08,834 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 26 states, 16 states have (on average 1.3125) internal successors, (21), 18 states have internal predecessors, (21), 4 states have call successors, (4), 3 states have call predecessors, (4), 3 states have return successors, (4), 4 states have call predecessors, (4), 4 states have call successors, (4) [2024-09-15 20:25:08,836 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 26 states to 26 states and 29 transitions. [2024-09-15 20:25:08,837 INFO L78 Accepts]: Start accepts. Automaton has 26 states and 29 transitions. Word has length 5 [2024-09-15 20:25:08,837 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:08,838 INFO L474 AbstractCegarLoop]: Abstraction has 26 states and 29 transitions. [2024-09-15 20:25:08,838 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:08,838 INFO L276 IsEmpty]: Start isEmpty. Operand 26 states and 29 transitions. [2024-09-15 20:25:08,839 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 9 [2024-09-15 20:25:08,839 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:08,839 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:08,839 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-09-15 20:25:08,839 INFO L399 AbstractCegarLoop]: === Iteration 2 === Targeting id2Err0ENSURES_VIOLATIONPOST_CONDITION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:08,840 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:08,840 INFO L85 PathProgramCache]: Analyzing trace with hash 1814486688, now seen corresponding path program 1 times [2024-09-15 20:25:08,840 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:08,841 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [157324264] [2024-09-15 20:25:08,841 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:08,841 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:08,852 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:08,979 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:08,980 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:08,980 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [157324264] [2024-09-15 20:25:08,981 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [157324264] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 20:25:08,981 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-15 20:25:08,981 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-09-15 20:25:08,981 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [666827336] [2024-09-15 20:25:08,981 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 20:25:08,983 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-09-15 20:25:08,983 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:08,984 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-09-15 20:25:08,984 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2024-09-15 20:25:08,985 INFO L87 Difference]: Start difference. First operand 26 states and 29 transitions. Second operand has 7 states, 6 states have (on average 1.0) internal successors, (6), 4 states have internal predecessors, (6), 2 states have call successors, (2), 2 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:09,082 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:09,083 INFO L93 Difference]: Finished difference Result 34 states and 36 transitions. [2024-09-15 20:25:09,083 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-09-15 20:25:09,083 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 6 states have (on average 1.0) internal successors, (6), 4 states have internal predecessors, (6), 2 states have call successors, (2), 2 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 8 [2024-09-15 20:25:09,084 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:09,084 INFO L225 Difference]: With dead ends: 34 [2024-09-15 20:25:09,084 INFO L226 Difference]: Without dead ends: 34 [2024-09-15 20:25:09,085 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=19, Invalid=53, Unknown=0, NotChecked=0, Total=72 [2024-09-15 20:25:09,086 INFO L434 NwaCegarLoop]: 13 mSDtfsCounter, 20 mSDsluCounter, 61 mSDsCounter, 0 mSdLazyCounter, 60 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 21 SdHoareTripleChecker+Valid, 74 SdHoareTripleChecker+Invalid, 64 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 60 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:09,086 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [21 Valid, 74 Invalid, 64 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 60 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-15 20:25:09,087 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 34 states. [2024-09-15 20:25:09,090 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 34 to 32. [2024-09-15 20:25:09,091 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 32 states, 20 states have (on average 1.3) internal successors, (26), 22 states have internal predecessors, (26), 5 states have call successors, (5), 4 states have call predecessors, (5), 4 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) [2024-09-15 20:25:09,092 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 32 states to 32 states and 36 transitions. [2024-09-15 20:25:09,092 INFO L78 Accepts]: Start accepts. Automaton has 32 states and 36 transitions. Word has length 8 [2024-09-15 20:25:09,092 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:09,092 INFO L474 AbstractCegarLoop]: Abstraction has 32 states and 36 transitions. [2024-09-15 20:25:09,092 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 6 states have (on average 1.0) internal successors, (6), 4 states have internal predecessors, (6), 2 states have call successors, (2), 2 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:09,093 INFO L276 IsEmpty]: Start isEmpty. Operand 32 states and 36 transitions. [2024-09-15 20:25:09,093 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 12 [2024-09-15 20:25:09,093 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:09,093 INFO L216 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:09,094 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-09-15 20:25:09,094 INFO L399 AbstractCegarLoop]: === Iteration 3 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:09,094 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:09,095 INFO L85 PathProgramCache]: Analyzing trace with hash -1083742235, now seen corresponding path program 1 times [2024-09-15 20:25:09,095 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:09,095 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [784096847] [2024-09-15 20:25:09,095 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:09,095 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:09,105 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:09,222 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:09,222 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:09,227 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [784096847] [2024-09-15 20:25:09,227 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [784096847] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:09,228 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [236939031] [2024-09-15 20:25:09,228 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:09,228 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:09,228 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:09,230 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:09,233 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-09-15 20:25:09,284 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:09,286 INFO L262 TraceCheckSpWp]: Trace formula consists of 53 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-09-15 20:25:09,292 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:09,355 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:09,355 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:09,489 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:09,490 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [236939031] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:09,490 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:09,490 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 8, 8] total 13 [2024-09-15 20:25:09,491 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [665412638] [2024-09-15 20:25:09,491 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:09,492 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2024-09-15 20:25:09,492 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:09,493 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2024-09-15 20:25:09,496 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=34, Invalid=148, Unknown=0, NotChecked=0, Total=182 [2024-09-15 20:25:09,496 INFO L87 Difference]: Start difference. First operand 32 states and 36 transitions. Second operand has 14 states, 12 states have (on average 1.1666666666666667) internal successors, (14), 8 states have internal predecessors, (14), 6 states have call successors, (6), 5 states have call predecessors, (6), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:09,716 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:09,716 INFO L93 Difference]: Finished difference Result 55 states and 57 transitions. [2024-09-15 20:25:09,717 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2024-09-15 20:25:09,717 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 12 states have (on average 1.1666666666666667) internal successors, (14), 8 states have internal predecessors, (14), 6 states have call successors, (6), 5 states have call predecessors, (6), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 11 [2024-09-15 20:25:09,717 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:09,719 INFO L225 Difference]: With dead ends: 55 [2024-09-15 20:25:09,719 INFO L226 Difference]: Without dead ends: 55 [2024-09-15 20:25:09,719 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 33 GetRequests, 14 SyntacticMatches, 2 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 39 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=66, Invalid=276, Unknown=0, NotChecked=0, Total=342 [2024-09-15 20:25:09,720 INFO L434 NwaCegarLoop]: 16 mSDtfsCounter, 48 mSDsluCounter, 123 mSDsCounter, 0 mSdLazyCounter, 181 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 49 SdHoareTripleChecker+Valid, 139 SdHoareTripleChecker+Invalid, 192 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 181 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:09,721 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [49 Valid, 139 Invalid, 192 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 181 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-15 20:25:09,722 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 55 states. [2024-09-15 20:25:09,726 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 55 to 50. [2024-09-15 20:25:09,727 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 50 states, 32 states have (on average 1.28125) internal successors, (41), 34 states have internal predecessors, (41), 8 states have call successors, (8), 7 states have call predecessors, (8), 7 states have return successors, (8), 8 states have call predecessors, (8), 8 states have call successors, (8) [2024-09-15 20:25:09,728 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 50 states to 50 states and 57 transitions. [2024-09-15 20:25:09,728 INFO L78 Accepts]: Start accepts. Automaton has 50 states and 57 transitions. Word has length 11 [2024-09-15 20:25:09,728 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:09,729 INFO L474 AbstractCegarLoop]: Abstraction has 50 states and 57 transitions. [2024-09-15 20:25:09,729 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 12 states have (on average 1.1666666666666667) internal successors, (14), 8 states have internal predecessors, (14), 6 states have call successors, (6), 5 states have call predecessors, (6), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:09,729 INFO L276 IsEmpty]: Start isEmpty. Operand 50 states and 57 transitions. [2024-09-15 20:25:09,729 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2024-09-15 20:25:09,730 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:09,730 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 1, 1, 1, 1] [2024-09-15 20:25:09,749 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:09,934 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:09,935 INFO L399 AbstractCegarLoop]: === Iteration 4 === Targeting id2Err0ENSURES_VIOLATIONPOST_CONDITION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:09,935 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:09,936 INFO L85 PathProgramCache]: Analyzing trace with hash -479314984, now seen corresponding path program 1 times [2024-09-15 20:25:09,936 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:09,936 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [355635226] [2024-09-15 20:25:09,936 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:09,936 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:09,964 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:10,243 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 0 proven. 16 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:10,243 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:10,243 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [355635226] [2024-09-15 20:25:10,244 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [355635226] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:10,244 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1196707735] [2024-09-15 20:25:10,244 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:10,244 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:10,244 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:10,250 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:10,252 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-09-15 20:25:10,299 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:10,301 INFO L262 TraceCheckSpWp]: Trace formula consists of 73 conjuncts, 27 conjuncts are in the unsatisfiable core [2024-09-15 20:25:10,303 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:10,371 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 0 proven. 16 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:10,372 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:10,416 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 0 proven. 16 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:10,417 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1196707735] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:10,417 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:10,417 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [13, 13, 13] total 13 [2024-09-15 20:25:10,417 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [53547603] [2024-09-15 20:25:10,418 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:10,418 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2024-09-15 20:25:10,418 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:10,419 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2024-09-15 20:25:10,419 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=28, Invalid=182, Unknown=0, NotChecked=0, Total=210 [2024-09-15 20:25:10,420 INFO L87 Difference]: Start difference. First operand 50 states and 57 transitions. Second operand has 15 states, 13 states have (on average 1.0769230769230769) internal successors, (14), 9 states have internal predecessors, (14), 6 states have call successors, (6), 6 states have call predecessors, (6), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:10,708 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:10,710 INFO L93 Difference]: Finished difference Result 63 states and 66 transitions. [2024-09-15 20:25:10,711 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-09-15 20:25:10,711 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 13 states have (on average 1.0769230769230769) internal successors, (14), 9 states have internal predecessors, (14), 6 states have call successors, (6), 6 states have call predecessors, (6), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 20 [2024-09-15 20:25:10,711 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:10,712 INFO L225 Difference]: With dead ends: 63 [2024-09-15 20:25:10,712 INFO L226 Difference]: Without dead ends: 63 [2024-09-15 20:25:10,713 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 56 GetRequests, 38 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 15 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=48, Invalid=332, Unknown=0, NotChecked=0, Total=380 [2024-09-15 20:25:10,715 INFO L434 NwaCegarLoop]: 20 mSDtfsCounter, 49 mSDsluCounter, 197 mSDsCounter, 0 mSdLazyCounter, 366 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 51 SdHoareTripleChecker+Valid, 217 SdHoareTripleChecker+Invalid, 377 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 366 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:10,715 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [51 Valid, 217 Invalid, 377 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 366 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-15 20:25:10,716 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 63 states. [2024-09-15 20:25:10,725 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 63 to 57. [2024-09-15 20:25:10,728 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 57 states, 37 states have (on average 1.2972972972972974) internal successors, (48), 39 states have internal predecessors, (48), 9 states have call successors, (9), 8 states have call predecessors, (9), 8 states have return successors, (9), 9 states have call predecessors, (9), 9 states have call successors, (9) [2024-09-15 20:25:10,729 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 57 states to 57 states and 66 transitions. [2024-09-15 20:25:10,729 INFO L78 Accepts]: Start accepts. Automaton has 57 states and 66 transitions. Word has length 20 [2024-09-15 20:25:10,729 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:10,729 INFO L474 AbstractCegarLoop]: Abstraction has 57 states and 66 transitions. [2024-09-15 20:25:10,730 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 13 states have (on average 1.0769230769230769) internal successors, (14), 9 states have internal predecessors, (14), 6 states have call successors, (6), 6 states have call predecessors, (6), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:10,730 INFO L276 IsEmpty]: Start isEmpty. Operand 57 states and 66 transitions. [2024-09-15 20:25:10,732 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2024-09-15 20:25:10,732 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:10,732 INFO L216 NwaCegarLoop]: trace histogram [4, 3, 3, 3, 3, 3, 1, 1, 1, 1] [2024-09-15 20:25:10,749 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:10,932 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:10,933 INFO L399 AbstractCegarLoop]: === Iteration 5 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:10,934 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:10,934 INFO L85 PathProgramCache]: Analyzing trace with hash 1495293869, now seen corresponding path program 2 times [2024-09-15 20:25:10,934 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:10,934 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [149104890] [2024-09-15 20:25:10,934 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:10,934 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:10,949 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:11,173 INFO L134 CoverageAnalysis]: Checked inductivity of 24 backedges. 24 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:11,174 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:11,174 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [149104890] [2024-09-15 20:25:11,174 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [149104890] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 20:25:11,175 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-15 20:25:11,175 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [16] imperfect sequences [] total 16 [2024-09-15 20:25:11,175 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [227650145] [2024-09-15 20:25:11,175 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 20:25:11,176 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 17 states [2024-09-15 20:25:11,176 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:11,176 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 17 interpolants. [2024-09-15 20:25:11,177 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=49, Invalid=223, Unknown=0, NotChecked=0, Total=272 [2024-09-15 20:25:11,177 INFO L87 Difference]: Start difference. First operand 57 states and 66 transitions. Second operand has 17 states, 16 states have (on average 1.0) internal successors, (16), 9 states have internal predecessors, (16), 7 states have call successors, (7), 7 states have call predecessors, (7), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:11,424 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:11,425 INFO L93 Difference]: Finished difference Result 58 states and 58 transitions. [2024-09-15 20:25:11,425 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2024-09-15 20:25:11,426 INFO L78 Accepts]: Start accepts. Automaton has has 17 states, 16 states have (on average 1.0) internal successors, (16), 9 states have internal predecessors, (16), 7 states have call successors, (7), 7 states have call predecessors, (7), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 23 [2024-09-15 20:25:11,426 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:11,426 INFO L225 Difference]: With dead ends: 58 [2024-09-15 20:25:11,427 INFO L226 Difference]: Without dead ends: 58 [2024-09-15 20:25:11,427 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 23 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 91 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=104, Invalid=448, Unknown=0, NotChecked=0, Total=552 [2024-09-15 20:25:11,428 INFO L434 NwaCegarLoop]: 14 mSDtfsCounter, 64 mSDsluCounter, 117 mSDsCounter, 0 mSdLazyCounter, 263 mSolverCounterSat, 15 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 65 SdHoareTripleChecker+Valid, 131 SdHoareTripleChecker+Invalid, 278 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 15 IncrementalHoareTripleChecker+Valid, 263 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:11,428 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [65 Valid, 131 Invalid, 278 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [15 Valid, 263 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-15 20:25:11,429 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 58 states. [2024-09-15 20:25:11,437 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 58 to 52. [2024-09-15 20:25:11,438 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 52 states, 34 states have (on average 1.2352941176470589) internal successors, (42), 36 states have internal predecessors, (42), 8 states have call successors, (8), 8 states have call predecessors, (8), 7 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) [2024-09-15 20:25:11,439 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 52 states to 52 states and 57 transitions. [2024-09-15 20:25:11,439 INFO L78 Accepts]: Start accepts. Automaton has 52 states and 57 transitions. Word has length 23 [2024-09-15 20:25:11,439 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:11,439 INFO L474 AbstractCegarLoop]: Abstraction has 52 states and 57 transitions. [2024-09-15 20:25:11,439 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 17 states, 16 states have (on average 1.0) internal successors, (16), 9 states have internal predecessors, (16), 7 states have call successors, (7), 7 states have call predecessors, (7), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:11,439 INFO L276 IsEmpty]: Start isEmpty. Operand 52 states and 57 transitions. [2024-09-15 20:25:11,440 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2024-09-15 20:25:11,440 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:11,440 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:11,440 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-09-15 20:25:11,441 INFO L399 AbstractCegarLoop]: === Iteration 6 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:11,441 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:11,443 INFO L85 PathProgramCache]: Analyzing trace with hash 1493579538, now seen corresponding path program 1 times [2024-09-15 20:25:11,443 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:11,443 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [411602345] [2024-09-15 20:25:11,443 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:11,443 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:11,467 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:11,726 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2024-09-15 20:25:11,729 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:11,756 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 0 proven. 16 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:11,756 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:11,756 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [411602345] [2024-09-15 20:25:11,756 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [411602345] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:11,756 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [843069683] [2024-09-15 20:25:11,756 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:11,756 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:11,757 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:11,758 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:11,760 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-09-15 20:25:11,805 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:11,806 INFO L262 TraceCheckSpWp]: Trace formula consists of 81 conjuncts, 27 conjuncts are in the unsatisfiable core [2024-09-15 20:25:11,808 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:11,860 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 0 proven. 16 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:11,860 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:12,197 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 0 proven. 16 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:12,198 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [843069683] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:12,198 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:12,198 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 14, 14] total 26 [2024-09-15 20:25:12,199 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [262197058] [2024-09-15 20:25:12,199 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:12,199 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 27 states [2024-09-15 20:25:12,201 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:12,202 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 27 interpolants. [2024-09-15 20:25:12,203 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=69, Invalid=633, Unknown=0, NotChecked=0, Total=702 [2024-09-15 20:25:12,203 INFO L87 Difference]: Start difference. First operand 52 states and 57 transitions. Second operand has 27 states, 24 states have (on average 1.2083333333333333) internal successors, (29), 17 states have internal predecessors, (29), 12 states have call successors, (12), 11 states have call predecessors, (12), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-15 20:25:12,502 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:12,502 INFO L93 Difference]: Finished difference Result 56 states and 56 transitions. [2024-09-15 20:25:12,503 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-09-15 20:25:12,503 INFO L78 Accepts]: Start accepts. Automaton has has 27 states, 24 states have (on average 1.2083333333333333) internal successors, (29), 17 states have internal predecessors, (29), 12 states have call successors, (12), 11 states have call predecessors, (12), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 23 [2024-09-15 20:25:12,503 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:12,504 INFO L225 Difference]: With dead ends: 56 [2024-09-15 20:25:12,504 INFO L226 Difference]: Without dead ends: 56 [2024-09-15 20:25:12,504 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 65 GetRequests, 36 SyntacticMatches, 0 SemanticMatches, 29 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 106 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=93, Invalid=837, Unknown=0, NotChecked=0, Total=930 [2024-09-15 20:25:12,505 INFO L434 NwaCegarLoop]: 16 mSDtfsCounter, 59 mSDsluCounter, 206 mSDsCounter, 0 mSdLazyCounter, 470 mSolverCounterSat, 14 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 60 SdHoareTripleChecker+Valid, 222 SdHoareTripleChecker+Invalid, 484 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 14 IncrementalHoareTripleChecker+Valid, 470 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:12,505 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [60 Valid, 222 Invalid, 484 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [14 Valid, 470 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-15 20:25:12,506 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 56 states. [2024-09-15 20:25:12,511 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 56 to 52. [2024-09-15 20:25:12,515 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 52 states, 34 states have (on average 1.2058823529411764) internal successors, (41), 36 states have internal predecessors, (41), 8 states have call successors, (8), 8 states have call predecessors, (8), 7 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) [2024-09-15 20:25:12,516 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 52 states to 52 states and 56 transitions. [2024-09-15 20:25:12,516 INFO L78 Accepts]: Start accepts. Automaton has 52 states and 56 transitions. Word has length 23 [2024-09-15 20:25:12,516 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:12,516 INFO L474 AbstractCegarLoop]: Abstraction has 52 states and 56 transitions. [2024-09-15 20:25:12,516 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 27 states, 24 states have (on average 1.2083333333333333) internal successors, (29), 17 states have internal predecessors, (29), 12 states have call successors, (12), 11 states have call predecessors, (12), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-15 20:25:12,516 INFO L276 IsEmpty]: Start isEmpty. Operand 52 states and 56 transitions. [2024-09-15 20:25:12,517 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 27 [2024-09-15 20:25:12,517 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:12,517 INFO L216 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 3, 3, 1, 1, 1, 1] [2024-09-15 20:25:12,538 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-09-15 20:25:12,717 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2024-09-15 20:25:12,718 INFO L399 AbstractCegarLoop]: === Iteration 7 === Targeting id2Err0ENSURES_VIOLATIONPOST_CONDITION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:12,718 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:12,719 INFO L85 PathProgramCache]: Analyzing trace with hash -1100070156, now seen corresponding path program 2 times [2024-09-15 20:25:12,719 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:12,719 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2043046462] [2024-09-15 20:25:12,719 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:12,719 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:12,728 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:12,939 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 33 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:12,939 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:12,939 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2043046462] [2024-09-15 20:25:12,939 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2043046462] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 20:25:12,940 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-15 20:25:12,940 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [18] imperfect sequences [] total 18 [2024-09-15 20:25:12,940 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [860690976] [2024-09-15 20:25:12,940 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 20:25:12,940 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 19 states [2024-09-15 20:25:12,940 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:12,941 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 19 interpolants. [2024-09-15 20:25:12,941 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=59, Invalid=283, Unknown=0, NotChecked=0, Total=342 [2024-09-15 20:25:12,941 INFO L87 Difference]: Start difference. First operand 52 states and 56 transitions. Second operand has 19 states, 18 states have (on average 1.0) internal successors, (18), 10 states have internal predecessors, (18), 8 states have call successors, (8), 8 states have call predecessors, (8), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:13,156 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:13,157 INFO L93 Difference]: Finished difference Result 51 states and 51 transitions. [2024-09-15 20:25:13,157 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2024-09-15 20:25:13,158 INFO L78 Accepts]: Start accepts. Automaton has has 19 states, 18 states have (on average 1.0) internal successors, (18), 10 states have internal predecessors, (18), 8 states have call successors, (8), 8 states have call predecessors, (8), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 26 [2024-09-15 20:25:13,158 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:13,158 INFO L225 Difference]: With dead ends: 51 [2024-09-15 20:25:13,159 INFO L226 Difference]: Without dead ends: 44 [2024-09-15 20:25:13,159 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 26 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 25 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 130 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=127, Invalid=575, Unknown=0, NotChecked=0, Total=702 [2024-09-15 20:25:13,160 INFO L434 NwaCegarLoop]: 14 mSDtfsCounter, 62 mSDsluCounter, 107 mSDsCounter, 0 mSdLazyCounter, 254 mSolverCounterSat, 14 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 63 SdHoareTripleChecker+Valid, 121 SdHoareTripleChecker+Invalid, 268 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 14 IncrementalHoareTripleChecker+Valid, 254 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:13,160 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [63 Valid, 121 Invalid, 268 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [14 Valid, 254 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-15 20:25:13,160 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 44 states. [2024-09-15 20:25:13,163 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 44 to 42. [2024-09-15 20:25:13,163 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 42 states, 27 states have (on average 1.1481481481481481) internal successors, (31), 29 states have internal predecessors, (31), 6 states have call successors, (6), 6 states have call predecessors, (6), 6 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-15 20:25:13,164 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 42 states to 42 states and 43 transitions. [2024-09-15 20:25:13,164 INFO L78 Accepts]: Start accepts. Automaton has 42 states and 43 transitions. Word has length 26 [2024-09-15 20:25:13,164 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:13,164 INFO L474 AbstractCegarLoop]: Abstraction has 42 states and 43 transitions. [2024-09-15 20:25:13,164 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 19 states, 18 states have (on average 1.0) internal successors, (18), 10 states have internal predecessors, (18), 8 states have call successors, (8), 8 states have call predecessors, (8), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:13,165 INFO L276 IsEmpty]: Start isEmpty. Operand 42 states and 43 transitions. [2024-09-15 20:25:13,165 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 27 [2024-09-15 20:25:13,165 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:13,165 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:13,165 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-09-15 20:25:13,165 INFO L399 AbstractCegarLoop]: === Iteration 8 === Targeting id2Err0ENSURES_VIOLATIONPOST_CONDITION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:13,166 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:13,166 INFO L85 PathProgramCache]: Analyzing trace with hash -633165964, now seen corresponding path program 1 times [2024-09-15 20:25:13,166 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:13,166 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1332915903] [2024-09-15 20:25:13,166 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:13,167 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:13,178 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:13,340 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2024-09-15 20:25:13,344 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:13,387 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:13,390 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:13,423 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 0 proven. 17 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:13,423 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:13,424 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1332915903] [2024-09-15 20:25:13,424 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1332915903] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:13,424 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [348792029] [2024-09-15 20:25:13,424 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:13,424 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:13,424 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:13,428 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:13,430 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-09-15 20:25:13,471 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:13,472 INFO L262 TraceCheckSpWp]: Trace formula consists of 87 conjuncts, 27 conjuncts are in the unsatisfiable core [2024-09-15 20:25:13,474 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:13,525 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 0 proven. 17 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:13,525 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:13,782 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 0 proven. 17 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:13,782 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [348792029] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:13,782 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:13,783 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 14, 14] total 24 [2024-09-15 20:25:13,783 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1136628166] [2024-09-15 20:25:13,783 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:13,783 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-09-15 20:25:13,784 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:13,784 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-09-15 20:25:13,785 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=63, Invalid=537, Unknown=0, NotChecked=0, Total=600 [2024-09-15 20:25:13,785 INFO L87 Difference]: Start difference. First operand 42 states and 43 transitions. Second operand has 25 states, 22 states have (on average 1.3181818181818181) internal successors, (29), 16 states have internal predecessors, (29), 11 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 20:25:14,059 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:14,060 INFO L93 Difference]: Finished difference Result 43 states and 42 transitions. [2024-09-15 20:25:14,060 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-09-15 20:25:14,060 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 22 states have (on average 1.3181818181818181) internal successors, (29), 16 states have internal predecessors, (29), 11 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) Word has length 26 [2024-09-15 20:25:14,060 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:14,061 INFO L225 Difference]: With dead ends: 43 [2024-09-15 20:25:14,061 INFO L226 Difference]: Without dead ends: 43 [2024-09-15 20:25:14,061 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 73 GetRequests, 47 SyntacticMatches, 0 SemanticMatches, 26 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 80 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=81, Invalid=675, Unknown=0, NotChecked=0, Total=756 [2024-09-15 20:25:14,062 INFO L434 NwaCegarLoop]: 15 mSDtfsCounter, 33 mSDsluCounter, 240 mSDsCounter, 0 mSdLazyCounter, 446 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 34 SdHoareTripleChecker+Valid, 255 SdHoareTripleChecker+Invalid, 453 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 446 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:14,062 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [34 Valid, 255 Invalid, 453 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 446 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-15 20:25:14,063 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 43 states. [2024-09-15 20:25:14,069 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 43 to 42. [2024-09-15 20:25:14,069 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 42 states, 27 states have (on average 1.1111111111111112) internal successors, (30), 29 states have internal predecessors, (30), 6 states have call successors, (6), 6 states have call predecessors, (6), 6 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-15 20:25:14,070 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 42 states to 42 states and 42 transitions. [2024-09-15 20:25:14,070 INFO L78 Accepts]: Start accepts. Automaton has 42 states and 42 transitions. Word has length 26 [2024-09-15 20:25:14,070 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:14,074 INFO L474 AbstractCegarLoop]: Abstraction has 42 states and 42 transitions. [2024-09-15 20:25:14,074 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 22 states have (on average 1.3181818181818181) internal successors, (29), 16 states have internal predecessors, (29), 11 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 20:25:14,074 INFO L276 IsEmpty]: Start isEmpty. Operand 42 states and 42 transitions. [2024-09-15 20:25:14,075 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 30 [2024-09-15 20:25:14,075 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:14,075 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:14,095 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:14,275 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:14,276 INFO L399 AbstractCegarLoop]: === Iteration 9 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:14,276 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:14,276 INFO L85 PathProgramCache]: Analyzing trace with hash 849139190, now seen corresponding path program 1 times [2024-09-15 20:25:14,276 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:14,276 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [442503000] [2024-09-15 20:25:14,277 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:14,277 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:14,288 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:14,422 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2024-09-15 20:25:14,428 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:14,476 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:14,479 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:14,522 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:14,526 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:14,547 INFO L134 CoverageAnalysis]: Checked inductivity of 20 backedges. 0 proven. 18 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-15 20:25:14,547 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:14,548 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [442503000] [2024-09-15 20:25:14,548 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [442503000] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:14,548 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2045906817] [2024-09-15 20:25:14,548 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:14,548 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:14,548 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:14,550 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:14,552 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-09-15 20:25:14,593 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:14,594 INFO L262 TraceCheckSpWp]: Trace formula consists of 95 conjuncts, 27 conjuncts are in the unsatisfiable core [2024-09-15 20:25:14,595 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:14,636 INFO L134 CoverageAnalysis]: Checked inductivity of 20 backedges. 0 proven. 18 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-15 20:25:14,636 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:14,905 INFO L134 CoverageAnalysis]: Checked inductivity of 20 backedges. 0 proven. 18 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-15 20:25:14,906 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2045906817] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:14,906 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:14,906 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 14, 14] total 22 [2024-09-15 20:25:14,906 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1261160516] [2024-09-15 20:25:14,907 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:14,907 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2024-09-15 20:25:14,907 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:14,908 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2024-09-15 20:25:14,908 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=57, Invalid=449, Unknown=0, NotChecked=0, Total=506 [2024-09-15 20:25:14,909 INFO L87 Difference]: Start difference. First operand 42 states and 42 transitions. Second operand has 23 states, 20 states have (on average 1.4) internal successors, (28), 15 states have internal predecessors, (28), 9 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (4), 4 states have call predecessors, (4), 3 states have call successors, (4) [2024-09-15 20:25:15,076 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:15,077 INFO L93 Difference]: Finished difference Result 42 states and 41 transitions. [2024-09-15 20:25:15,077 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-09-15 20:25:15,077 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 20 states have (on average 1.4) internal successors, (28), 15 states have internal predecessors, (28), 9 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (4), 4 states have call predecessors, (4), 3 states have call successors, (4) Word has length 29 [2024-09-15 20:25:15,078 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:15,078 INFO L225 Difference]: With dead ends: 42 [2024-09-15 20:25:15,078 INFO L226 Difference]: Without dead ends: 42 [2024-09-15 20:25:15,079 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 79 GetRequests, 56 SyntacticMatches, 0 SemanticMatches, 23 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 59 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=69, Invalid=531, Unknown=0, NotChecked=0, Total=600 [2024-09-15 20:25:15,079 INFO L434 NwaCegarLoop]: 14 mSDtfsCounter, 32 mSDsluCounter, 162 mSDsCounter, 0 mSdLazyCounter, 289 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 33 SdHoareTripleChecker+Valid, 176 SdHoareTripleChecker+Invalid, 296 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 289 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:15,080 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [33 Valid, 176 Invalid, 296 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 289 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-15 20:25:15,080 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 42 states. [2024-09-15 20:25:15,082 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 42 to 42. [2024-09-15 20:25:15,082 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 42 states, 27 states have (on average 1.0740740740740742) internal successors, (29), 29 states have internal predecessors, (29), 6 states have call successors, (6), 6 states have call predecessors, (6), 6 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-15 20:25:15,083 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 42 states to 42 states and 41 transitions. [2024-09-15 20:25:15,083 INFO L78 Accepts]: Start accepts. Automaton has 42 states and 41 transitions. Word has length 29 [2024-09-15 20:25:15,083 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:15,083 INFO L474 AbstractCegarLoop]: Abstraction has 42 states and 41 transitions. [2024-09-15 20:25:15,084 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 20 states have (on average 1.4) internal successors, (28), 15 states have internal predecessors, (28), 9 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (4), 4 states have call predecessors, (4), 3 states have call successors, (4) [2024-09-15 20:25:15,084 INFO L276 IsEmpty]: Start isEmpty. Operand 42 states and 41 transitions. [2024-09-15 20:25:15,084 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-09-15 20:25:15,084 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:15,085 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1] [2024-09-15 20:25:15,111 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:15,288 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:15,289 INFO L399 AbstractCegarLoop]: === Iteration 10 === Targeting id2Err0ENSURES_VIOLATIONPOST_CONDITION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:15,289 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:15,289 INFO L85 PathProgramCache]: Analyzing trace with hash -651760112, now seen corresponding path program 2 times [2024-09-15 20:25:15,289 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:15,289 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [604460933] [2024-09-15 20:25:15,290 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:15,290 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:15,301 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:15,401 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 7 [2024-09-15 20:25:15,406 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:15,455 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:15,460 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:15,505 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:15,508 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:15,541 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:15,543 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:15,560 INFO L134 CoverageAnalysis]: Checked inductivity of 24 backedges. 0 proven. 19 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2024-09-15 20:25:15,562 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:15,562 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [604460933] [2024-09-15 20:25:15,562 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [604460933] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:15,562 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1844827113] [2024-09-15 20:25:15,562 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-15 20:25:15,562 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:15,563 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:15,565 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:15,566 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-09-15 20:25:15,607 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-15 20:25:15,607 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:15,608 INFO L262 TraceCheckSpWp]: Trace formula consists of 101 conjuncts, 23 conjuncts are in the unsatisfiable core [2024-09-15 20:25:15,609 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:15,642 INFO L134 CoverageAnalysis]: Checked inductivity of 24 backedges. 0 proven. 19 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2024-09-15 20:25:15,643 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:15,835 INFO L134 CoverageAnalysis]: Checked inductivity of 24 backedges. 0 proven. 19 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2024-09-15 20:25:15,835 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1844827113] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:15,835 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:15,836 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 14, 14] total 20 [2024-09-15 20:25:15,836 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [641728902] [2024-09-15 20:25:15,836 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:15,836 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2024-09-15 20:25:15,836 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:15,837 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2024-09-15 20:25:15,837 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=51, Invalid=369, Unknown=0, NotChecked=0, Total=420 [2024-09-15 20:25:15,837 INFO L87 Difference]: Start difference. First operand 42 states and 41 transitions. Second operand has 21 states, 18 states have (on average 1.4444444444444444) internal successors, (26), 14 states have internal predecessors, (26), 7 states have call successors, (8), 5 states have call predecessors, (8), 4 states have return successors, (5), 5 states have call predecessors, (5), 3 states have call successors, (5) [2024-09-15 20:25:15,986 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:15,986 INFO L93 Difference]: Finished difference Result 41 states and 40 transitions. [2024-09-15 20:25:15,986 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-09-15 20:25:15,987 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 18 states have (on average 1.4444444444444444) internal successors, (26), 14 states have internal predecessors, (26), 7 states have call successors, (8), 5 states have call predecessors, (8), 4 states have return successors, (5), 5 states have call predecessors, (5), 3 states have call successors, (5) Word has length 32 [2024-09-15 20:25:15,987 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:15,987 INFO L225 Difference]: With dead ends: 41 [2024-09-15 20:25:15,987 INFO L226 Difference]: Without dead ends: 41 [2024-09-15 20:25:15,988 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 85 GetRequests, 65 SyntacticMatches, 0 SemanticMatches, 20 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 43 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=57, Invalid=405, Unknown=0, NotChecked=0, Total=462 [2024-09-15 20:25:15,988 INFO L434 NwaCegarLoop]: 13 mSDtfsCounter, 20 mSDsluCounter, 175 mSDsCounter, 0 mSdLazyCounter, 282 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 21 SdHoareTripleChecker+Valid, 188 SdHoareTripleChecker+Invalid, 286 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 282 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:15,989 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [21 Valid, 188 Invalid, 286 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 282 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-15 20:25:15,990 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 41 states. [2024-09-15 20:25:15,992 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 41 to 41. [2024-09-15 20:25:15,992 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 41 states, 27 states have (on average 1.037037037037037) internal successors, (28), 28 states have internal predecessors, (28), 6 states have call successors, (6), 6 states have call predecessors, (6), 6 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-15 20:25:15,992 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 41 states to 41 states and 40 transitions. [2024-09-15 20:25:15,992 INFO L78 Accepts]: Start accepts. Automaton has 41 states and 40 transitions. Word has length 32 [2024-09-15 20:25:15,992 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:15,993 INFO L474 AbstractCegarLoop]: Abstraction has 41 states and 40 transitions. [2024-09-15 20:25:15,993 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 18 states have (on average 1.4444444444444444) internal successors, (26), 14 states have internal predecessors, (26), 7 states have call successors, (8), 5 states have call predecessors, (8), 4 states have return successors, (5), 5 states have call predecessors, (5), 3 states have call successors, (5) [2024-09-15 20:25:15,993 INFO L276 IsEmpty]: Start isEmpty. Operand 41 states and 40 transitions. [2024-09-15 20:25:15,997 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2024-09-15 20:25:15,997 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:15,997 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1] [2024-09-15 20:25:16,017 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:16,199 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 7 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-09-15 20:25:16,199 INFO L399 AbstractCegarLoop]: === Iteration 11 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:16,200 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:16,200 INFO L85 PathProgramCache]: Analyzing trace with hash 961657306, now seen corresponding path program 2 times [2024-09-15 20:25:16,200 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:16,200 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2050296354] [2024-09-15 20:25:16,200 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:16,200 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:16,208 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:16,333 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 4 [2024-09-15 20:25:16,338 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:16,397 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:16,401 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:16,451 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:16,454 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:16,488 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:16,491 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:16,524 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:16,526 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:16,543 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 20 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-09-15 20:25:16,543 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:16,544 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2050296354] [2024-09-15 20:25:16,544 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2050296354] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:16,544 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1905293821] [2024-09-15 20:25:16,544 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-15 20:25:16,544 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:16,544 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:16,546 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:16,547 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-09-15 20:25:16,593 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-15 20:25:16,594 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:16,595 INFO L262 TraceCheckSpWp]: Trace formula consists of 109 conjuncts, 26 conjuncts are in the unsatisfiable core [2024-09-15 20:25:16,596 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:16,630 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 20 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-09-15 20:25:16,630 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:16,803 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 20 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-09-15 20:25:16,803 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1905293821] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:16,803 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:16,803 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 14, 14] total 16 [2024-09-15 20:25:16,803 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [530469583] [2024-09-15 20:25:16,803 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:16,804 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 17 states [2024-09-15 20:25:16,804 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:16,804 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 17 interpolants. [2024-09-15 20:25:16,805 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=37, Invalid=235, Unknown=0, NotChecked=0, Total=272 [2024-09-15 20:25:16,805 INFO L87 Difference]: Start difference. First operand 41 states and 40 transitions. Second operand has 17 states, 15 states have (on average 1.4) internal successors, (21), 11 states have internal predecessors, (21), 3 states have call successors, (4), 2 states have call predecessors, (4), 5 states have return successors, (6), 6 states have call predecessors, (6), 2 states have call successors, (6) [2024-09-15 20:25:16,912 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:16,912 INFO L93 Difference]: Finished difference Result 40 states and 39 transitions. [2024-09-15 20:25:16,912 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-09-15 20:25:16,912 INFO L78 Accepts]: Start accepts. Automaton has has 17 states, 15 states have (on average 1.4) internal successors, (21), 11 states have internal predecessors, (21), 3 states have call successors, (4), 2 states have call predecessors, (4), 5 states have return successors, (6), 6 states have call predecessors, (6), 2 states have call successors, (6) Word has length 35 [2024-09-15 20:25:16,913 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:16,913 INFO L225 Difference]: With dead ends: 40 [2024-09-15 20:25:16,913 INFO L226 Difference]: Without dead ends: 40 [2024-09-15 20:25:16,913 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 91 GetRequests, 73 SyntacticMatches, 3 SemanticMatches, 15 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 25 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=37, Invalid=235, Unknown=0, NotChecked=0, Total=272 [2024-09-15 20:25:16,914 INFO L434 NwaCegarLoop]: 15 mSDtfsCounter, 4 mSDsluCounter, 190 mSDsCounter, 0 mSdLazyCounter, 230 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 5 SdHoareTripleChecker+Valid, 205 SdHoareTripleChecker+Invalid, 230 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 230 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:16,914 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [5 Valid, 205 Invalid, 230 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 230 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-15 20:25:16,915 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 40 states. [2024-09-15 20:25:16,916 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 40 to 40. [2024-09-15 20:25:16,917 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 40 states, 27 states have (on average 1.0) internal successors, (27), 27 states have internal predecessors, (27), 6 states have call successors, (6), 6 states have call predecessors, (6), 6 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-15 20:25:16,917 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 40 states to 40 states and 39 transitions. [2024-09-15 20:25:16,917 INFO L78 Accepts]: Start accepts. Automaton has 40 states and 39 transitions. Word has length 35 [2024-09-15 20:25:16,917 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:16,917 INFO L474 AbstractCegarLoop]: Abstraction has 40 states and 39 transitions. [2024-09-15 20:25:16,917 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 17 states, 15 states have (on average 1.4) internal successors, (21), 11 states have internal predecessors, (21), 3 states have call successors, (4), 2 states have call predecessors, (4), 5 states have return successors, (6), 6 states have call predecessors, (6), 2 states have call successors, (6) [2024-09-15 20:25:16,918 INFO L276 IsEmpty]: Start isEmpty. Operand 40 states and 39 transitions. [2024-09-15 20:25:16,918 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 40 [2024-09-15 20:25:16,918 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:16,918 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:16,938 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Ended with exit code 0 [2024-09-15 20:25:17,122 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,8 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:17,123 INFO L399 AbstractCegarLoop]: === Iteration 12 === Targeting ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION === [id2Err0ENSURES_VIOLATIONPOST_CONDITION, ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:17,123 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:17,123 INFO L85 PathProgramCache]: Analyzing trace with hash 1674586595, now seen corresponding path program 1 times [2024-09-15 20:25:17,123 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:17,123 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1120525046] [2024-09-15 20:25:17,124 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:17,124 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:17,131 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,202 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-15 20:25:17,209 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,271 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:17,276 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,336 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:17,340 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,383 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:17,386 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,424 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:17,426 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,462 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:17,464 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,481 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 0 proven. 16 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-09-15 20:25:17,482 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:17,482 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1120525046] [2024-09-15 20:25:17,482 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1120525046] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:17,482 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [735868708] [2024-09-15 20:25:17,482 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:17,482 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:17,483 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:17,485 INFO L229 MonitoredProcess]: Starting monitored process 9 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:17,486 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-09-15 20:25:17,527 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,528 INFO L262 TraceCheckSpWp]: Trace formula consists of 112 conjuncts, 28 conjuncts are in the unsatisfiable core [2024-09-15 20:25:17,529 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:17,640 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-09-15 20:25:17,640 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-15 20:25:17,641 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [735868708] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 20:25:17,641 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-09-15 20:25:17,641 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [15] total 17 [2024-09-15 20:25:17,641 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [287667400] [2024-09-15 20:25:17,641 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 20:25:17,642 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-09-15 20:25:17,642 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:17,643 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-09-15 20:25:17,643 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=31, Invalid=241, Unknown=0, NotChecked=0, Total=272 [2024-09-15 20:25:17,644 INFO L87 Difference]: Start difference. First operand 40 states and 39 transitions. Second operand has 6 states, 4 states have (on average 3.5) internal successors, (14), 5 states have internal predecessors, (14), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-15 20:25:17,674 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:17,674 INFO L93 Difference]: Finished difference Result 38 states and 37 transitions. [2024-09-15 20:25:17,674 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-09-15 20:25:17,675 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 4 states have (on average 3.5) internal successors, (14), 5 states have internal predecessors, (14), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 39 [2024-09-15 20:25:17,675 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:17,675 INFO L225 Difference]: With dead ends: 38 [2024-09-15 20:25:17,675 INFO L226 Difference]: Without dead ends: 0 [2024-09-15 20:25:17,675 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 67 GetRequests, 50 SyntacticMatches, 0 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=39, Invalid=303, Unknown=0, NotChecked=0, Total=342 [2024-09-15 20:25:17,676 INFO L434 NwaCegarLoop]: 13 mSDtfsCounter, 1 mSDsluCounter, 47 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 60 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:17,676 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 60 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-15 20:25:17,676 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-09-15 20:25:17,676 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-09-15 20:25:17,677 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:17,677 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-09-15 20:25:17,677 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 39 [2024-09-15 20:25:17,677 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:17,677 INFO L474 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-09-15 20:25:17,677 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 4 states have (on average 3.5) internal successors, (14), 5 states have internal predecessors, (14), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-15 20:25:17,677 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-09-15 20:25:17,677 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-09-15 20:25:17,680 INFO L785 garLoopResultBuilder]: Registering result SAFE for location id2Err0ENSURES_VIOLATIONPOST_CONDITION (2 of 3 remaining) [2024-09-15 20:25:17,680 INFO L785 garLoopResultBuilder]: Registering result SAFE for location ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION (1 of 3 remaining) [2024-09-15 20:25:17,680 INFO L785 garLoopResultBuilder]: Registering result SAFE for location idErr0ENSURES_VIOLATIONPOST_CONDITION (0 of 3 remaining) [2024-09-15 20:25:17,694 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:17,881 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,9 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:17,884 INFO L408 BasicCegarLoop]: Path program histogram: [2, 2, 2, 2, 1, 1, 1, 1] [2024-09-15 20:25:17,886 INFO L165 ceAbstractionStarter]: Computing trace abstraction results [2024-09-15 20:25:17,889 INFO L201 PluginConnector]: Adding new model witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 15.09 08:25:17 BoogieIcfgContainer [2024-09-15 20:25:17,889 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-09-15 20:25:17,890 INFO L158 Benchmark]: Toolchain (without parser) took 10283.72ms. Allocated memory was 69.2MB in the beginning and 100.7MB in the end (delta: 31.5MB). Free memory was 42.6MB in the beginning and 57.4MB in the end (delta: -14.7MB). Peak memory consumption was 16.7MB. Max. memory is 16.1GB. [2024-09-15 20:25:17,890 INFO L158 Benchmark]: CDTParser took 0.23ms. Allocated memory is still 56.6MB. Free memory was 28.7MB in the beginning and 28.6MB in the end (delta: 73.4kB). There was no memory consumed. Max. memory is 16.1GB. [2024-09-15 20:25:17,890 INFO L158 Benchmark]: Witness Parser took 0.17ms. Allocated memory is still 69.2MB. Free memory is still 44.7MB. There was no memory consumed. Max. memory is 16.1GB. [2024-09-15 20:25:17,891 INFO L158 Benchmark]: CACSL2BoogieTranslator took 298.80ms. Allocated memory is still 69.2MB. Free memory was 42.6MB in the beginning and 49.1MB in the end (delta: -6.6MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2024-09-15 20:25:17,891 INFO L158 Benchmark]: Boogie Procedure Inliner took 27.99ms. Allocated memory is still 69.2MB. Free memory was 49.1MB in the beginning and 47.7MB in the end (delta: 1.5MB). There was no memory consumed. Max. memory is 16.1GB. [2024-09-15 20:25:17,891 INFO L158 Benchmark]: Boogie Preprocessor took 37.22ms. Allocated memory is still 69.2MB. Free memory was 47.7MB in the beginning and 46.3MB in the end (delta: 1.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-09-15 20:25:17,891 INFO L158 Benchmark]: RCFGBuilder took 316.59ms. Allocated memory is still 69.2MB. Free memory was 46.3MB in the beginning and 34.0MB in the end (delta: 12.2MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. [2024-09-15 20:25:17,892 INFO L158 Benchmark]: TraceAbstraction took 9597.09ms. Allocated memory was 69.2MB in the beginning and 100.7MB in the end (delta: 31.5MB). Free memory was 33.2MB in the beginning and 57.4MB in the end (delta: -24.1MB). Peak memory consumption was 7.1MB. Max. memory is 16.1GB. [2024-09-15 20:25:17,893 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.23ms. Allocated memory is still 56.6MB. Free memory was 28.7MB in the beginning and 28.6MB in the end (delta: 73.4kB). There was no memory consumed. Max. memory is 16.1GB. * Witness Parser took 0.17ms. Allocated memory is still 69.2MB. Free memory is still 44.7MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 298.80ms. Allocated memory is still 69.2MB. Free memory was 42.6MB in the beginning and 49.1MB in the end (delta: -6.6MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 27.99ms. Allocated memory is still 69.2MB. Free memory was 49.1MB in the beginning and 47.7MB in the end (delta: 1.5MB). There was no memory consumed. Max. memory is 16.1GB. * Boogie Preprocessor took 37.22ms. Allocated memory is still 69.2MB. Free memory was 47.7MB in the beginning and 46.3MB in the end (delta: 1.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 316.59ms. Allocated memory is still 69.2MB. Free memory was 46.3MB in the beginning and 34.0MB in the end (delta: 12.2MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. * TraceAbstraction took 9597.09ms. Allocated memory was 69.2MB in the beginning and 100.7MB in the end (delta: 31.5MB). Free memory was 33.2MB in the beginning and 57.4MB in the end (delta: -24.1MB). Peak memory consumption was 7.1MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 14]: procedure postcondition always holds For all program executions holds that procedure postcondition always holds at this location - PositiveResult [Line: 23]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - PositiveResult [Line: 9]: procedure postcondition always holds For all program executions holds that procedure postcondition always holds at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 3 procedures, 22 locations, 3 error locations. Started 1 CEGAR loops. OverallTime: 9.5s, OverallIterations: 12, TraceHistogramMax: 4, PathProgramHistogramMax: 2, EmptinessCheckTime: 0.0s, AutomataDifference: 2.3s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 418 SdHoareTripleChecker+Valid, 1.6s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 405 mSDsluCounter, 1852 SdHoareTripleChecker+Invalid, 1.3s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 1672 mSDsCounter, 89 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 2885 IncrementalHoareTripleChecker+Invalid, 2974 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 89 mSolverCounterUnsat, 180 mSDtfsCounter, 2885 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 611 GetRequests, 383 SyntacticMatches, 5 SemanticMatches, 223 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 590 ImplicationChecksByTransitivity, 2.2s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=57occurred in iteration=4, InterpolantAutomatonStates: 157, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 12 MinimizatonAttempts, 27 StatesRemovedByMinimization, 8 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 4.7s InterpolantComputationTime, 492 NumberOfCodeBlocks, 492 NumberOfCodeBlocksAsserted, 22 NumberOfCheckSat, 641 ConstructedInterpolants, 0 QuantifiedInterpolants, 1948 SizeOfPredicates, 19 NumberOfNonLiveVariables, 711 ConjunctsInSsa, 193 ConjunctsInUnsatCore, 27 InterpolantComputations, 5 PerfectInterpolantSequences, 156/496 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 3 specifications checked. All of them hold RESULT: Ultimate proved your program to be correct! [2024-09-15 20:25:17,918 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE