./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/recursive-simple/id_i15_o15-1.c --full-output --witness-type correctness_witness --validate ../results/automizer-verification-files/SV-COMP24_unreach-call/id_i15_o15-1.yml/witness-2.1.yml --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 04d6fb36 Calling Ultimate with: /root/.sdkman/candidates/java/current/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReachWitnessValidation.xml -i ../sv-benchmarks/c/recursive-simple/id_i15_o15-1.c ../results/automizer-verification-files/SV-COMP24_unreach-call/id_i15_o15-1.yml/witness-2.1.yml -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --traceabstraction.positions.where.we.compute.the.hoare.annotation None --- Real Ultimate output --- This is Ultimate 0.2.4-tmp.dk.referee-eval-04d6fb3-m [2024-09-15 20:25:11,994 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-09-15 20:25:12,080 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-09-15 20:25:12,086 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-09-15 20:25:12,087 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-09-15 20:25:12,116 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-09-15 20:25:12,117 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-09-15 20:25:12,117 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-09-15 20:25:12,118 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-09-15 20:25:12,120 INFO L153 SettingsManager]: * Use memory slicer=true [2024-09-15 20:25:12,120 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-09-15 20:25:12,121 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-09-15 20:25:12,124 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-09-15 20:25:12,124 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-09-15 20:25:12,124 INFO L153 SettingsManager]: * Use SBE=true [2024-09-15 20:25:12,125 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-09-15 20:25:12,125 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-09-15 20:25:12,125 INFO L153 SettingsManager]: * sizeof long=4 [2024-09-15 20:25:12,125 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-09-15 20:25:12,126 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-09-15 20:25:12,126 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-09-15 20:25:12,129 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-09-15 20:25:12,129 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-09-15 20:25:12,129 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-09-15 20:25:12,131 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-09-15 20:25:12,131 INFO L153 SettingsManager]: * sizeof long double=12 [2024-09-15 20:25:12,132 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-09-15 20:25:12,132 INFO L153 SettingsManager]: * Use constant arrays=true [2024-09-15 20:25:12,132 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-09-15 20:25:12,132 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-09-15 20:25:12,133 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-09-15 20:25:12,133 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-09-15 20:25:12,133 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-15 20:25:12,133 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-09-15 20:25:12,133 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-09-15 20:25:12,143 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-09-15 20:25:12,143 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-09-15 20:25:12,144 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-09-15 20:25:12,145 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-09-15 20:25:12,145 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-09-15 20:25:12,146 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-09-15 20:25:12,147 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-09-15 20:25:12,147 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> None [2024-09-15 20:25:12,479 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-09-15 20:25:12,501 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-09-15 20:25:12,504 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-09-15 20:25:12,505 INFO L270 PluginConnector]: Initializing CDTParser... [2024-09-15 20:25:12,506 INFO L274 PluginConnector]: CDTParser initialized [2024-09-15 20:25:12,507 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/recursive-simple/id_i15_o15-1.c [2024-09-15 20:25:14,059 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-09-15 20:25:14,299 INFO L384 CDTParser]: Found 1 translation units. [2024-09-15 20:25:14,300 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/id_i15_o15-1.c [2024-09-15 20:25:14,311 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/3f39a38b6/de616a9889334fe2bbc0db5b0c6d7a44/FLAG88fbd69e0 [2024-09-15 20:25:14,330 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/3f39a38b6/de616a9889334fe2bbc0db5b0c6d7a44 [2024-09-15 20:25:14,334 INFO L270 PluginConnector]: Initializing Witness Parser... [2024-09-15 20:25:14,334 INFO L274 PluginConnector]: Witness Parser initialized [2024-09-15 20:25:14,337 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../results/automizer-verification-files/SV-COMP24_unreach-call/id_i15_o15-1.yml/witness-2.1.yml [2024-09-15 20:25:14,391 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-09-15 20:25:14,393 INFO L133 ToolchainWalker]: Walking toolchain with 5 elements. [2024-09-15 20:25:14,395 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-09-15 20:25:14,395 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-09-15 20:25:14,400 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-09-15 20:25:14,402 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.09 08:25:14" (1/2) ... [2024-09-15 20:25:14,406 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@367a78bf and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:14, skipping insertion in model container [2024-09-15 20:25:14,406 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.09 08:25:14" (1/2) ... [2024-09-15 20:25:14,408 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.CACSL2BoogieTranslatorObserver@1ddc0c4b and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:14, skipping insertion in model container [2024-09-15 20:25:14,408 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 15.09 08:25:14" (2/2) ... [2024-09-15 20:25:14,408 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@367a78bf and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14, skipping insertion in model container [2024-09-15 20:25:14,408 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 15.09 08:25:14" (2/2) ... [2024-09-15 20:25:14,416 INFO L93 nessWitnessExtractor]: Found the following entries in the witness: [2024-09-15 20:25:14,417 INFO L1541 ArrayList]: Function contract at [L6]: requires null, ensures ((((((((((((((((((3 == \result) && (\old(x) == 3)) || (15 < \old(x))) || ((11 == \result) && (\old(x) == 11))) || ((\old(x) == 6) && (6 == \result))) || ((9 == \result) && (\old(x) == 9))) || ((2 == \result) && (\old(x) == 2))) || ((10 == \result) && (\old(x) == 10))) || ((5 == \result) && (5 == \old(x)))) || ((8 == \result) && (\old(x) == 8))) || ((7 == \result) && (7 == \old(x)))) || ((12 == \result) && (\old(x) == 12))) || ((\result == 1) && (\old(x) == 1))) || ((14 == \result) && (\old(x) == 14))) || ((\old(x) == 4) && (4 == \result))) || ((\old(x) == 15) && (15 == \result))) || ((13 == \result) && (\old(x) == 13))) || ((\result == 0) && (\old(x) == 0))) [2024-09-15 20:25:14,434 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-09-15 20:25:14,599 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/id_i15_o15-1.c[454,467] [2024-09-15 20:25:14,605 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-15 20:25:14,617 INFO L200 MainTranslator]: Completed pre-run Start Parsing Global [2024-09-15 20:25:14,666 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/id_i15_o15-1.c[454,467] [2024-09-15 20:25:14,667 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-15 20:25:14,684 INFO L204 MainTranslator]: Completed translation [2024-09-15 20:25:14,685 INFO L201 PluginConnector]: Adding new model witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14 WrapperNode [2024-09-15 20:25:14,685 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-09-15 20:25:14,686 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-09-15 20:25:14,686 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-09-15 20:25:14,686 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-09-15 20:25:14,693 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,699 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,714 INFO L138 Inliner]: procedures = 13, calls = 9, calls flagged for inlining = 2, calls inlined = 2, statements flattened = 18 [2024-09-15 20:25:14,715 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-09-15 20:25:14,715 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-09-15 20:25:14,716 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-09-15 20:25:14,716 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-09-15 20:25:14,725 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,725 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,730 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,742 WARN L109 MemorySlicer]: Omit memory slicing because it failed with the following exception: Unsupported: Procedure id is not part of the Ultimate memory model but has specification other that is not a ModifiesSpecification [2024-09-15 20:25:14,742 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,743 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,746 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,751 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,752 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,753 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,754 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-09-15 20:25:14,756 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-09-15 20:25:14,756 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-09-15 20:25:14,756 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-09-15 20:25:14,757 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (1/1) ... [2024-09-15 20:25:14,762 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-15 20:25:14,770 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:14,787 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-09-15 20:25:14,790 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-09-15 20:25:14,888 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-09-15 20:25:14,889 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-09-15 20:25:14,889 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-09-15 20:25:14,889 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-09-15 20:25:14,889 INFO L130 BoogieDeclarations]: Found specification of procedure id [2024-09-15 20:25:14,889 INFO L138 BoogieDeclarations]: Found implementation of procedure id [2024-09-15 20:25:14,955 INFO L242 CfgBuilder]: Building ICFG [2024-09-15 20:25:14,959 INFO L268 CfgBuilder]: Building CFG for each procedure with an implementation [2024-09-15 20:25:15,123 INFO L? ?]: Removed 8 outVars from TransFormulas that were not future-live. [2024-09-15 20:25:15,123 INFO L291 CfgBuilder]: Performing block encoding [2024-09-15 20:25:15,148 INFO L313 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-09-15 20:25:15,148 INFO L318 CfgBuilder]: Removed 0 assume(true) statements. [2024-09-15 20:25:15,149 INFO L201 PluginConnector]: Adding new model witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.09 08:25:15 BoogieIcfgContainer [2024-09-15 20:25:15,149 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-09-15 20:25:15,152 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-09-15 20:25:15,152 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-09-15 20:25:15,156 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-09-15 20:25:15,156 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 15.09 08:25:14" (1/4) ... [2024-09-15 20:25:15,157 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7c21f809 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 15.09 08:25:15, skipping insertion in model container [2024-09-15 20:25:15,158 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 15.09 08:25:14" (2/4) ... [2024-09-15 20:25:15,158 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7c21f809 and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CORRECTNESS_WITNESS 15.09 08:25:15, skipping insertion in model container [2024-09-15 20:25:15,159 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:14" (3/4) ... [2024-09-15 20:25:15,159 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7c21f809 and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CORRECTNESS_WITNESS 15.09 08:25:15, skipping insertion in model container [2024-09-15 20:25:15,159 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.09 08:25:15" (4/4) ... [2024-09-15 20:25:15,160 INFO L112 eAbstractionObserver]: Analyzing ICFG id_i15_o15-1.c [2024-09-15 20:25:15,177 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:None NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-09-15 20:25:15,177 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 2 error locations. [2024-09-15 20:25:15,220 INFO L335 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-09-15 20:25:15,225 INFO L336 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=None, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@6a4ba87, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-09-15 20:25:15,225 INFO L337 AbstractCegarLoop]: Starting to check reachability of 2 error locations. [2024-09-15 20:25:15,229 INFO L276 IsEmpty]: Start isEmpty. Operand has 15 states, 9 states have (on average 1.4444444444444444) internal successors, (13), 11 states have internal predecessors, (13), 2 states have call successors, (2), 1 states have call predecessors, (2), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-15 20:25:15,235 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 6 [2024-09-15 20:25:15,236 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:15,236 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1] [2024-09-15 20:25:15,237 INFO L399 AbstractCegarLoop]: === Iteration 1 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:15,242 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:15,243 INFO L85 PathProgramCache]: Analyzing trace with hash 56172024, now seen corresponding path program 1 times [2024-09-15 20:25:15,252 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:15,252 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1358261266] [2024-09-15 20:25:15,253 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:15,253 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:15,355 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:15,550 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:15,550 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:15,551 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1358261266] [2024-09-15 20:25:15,551 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1358261266] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 20:25:15,551 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-15 20:25:15,552 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-09-15 20:25:15,553 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2062586816] [2024-09-15 20:25:15,556 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 20:25:15,560 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-09-15 20:25:15,563 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:15,590 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-09-15 20:25:15,590 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-09-15 20:25:15,592 INFO L87 Difference]: Start difference. First operand has 15 states, 9 states have (on average 1.4444444444444444) internal successors, (13), 11 states have internal predecessors, (13), 2 states have call successors, (2), 1 states have call predecessors, (2), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Second operand has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:15,669 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:15,669 INFO L93 Difference]: Finished difference Result 22 states and 23 transitions. [2024-09-15 20:25:15,671 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-09-15 20:25:15,673 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 5 [2024-09-15 20:25:15,673 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:15,679 INFO L225 Difference]: With dead ends: 22 [2024-09-15 20:25:15,679 INFO L226 Difference]: Without dead ends: 20 [2024-09-15 20:25:15,681 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-09-15 20:25:15,687 INFO L434 NwaCegarLoop]: 11 mSDtfsCounter, 13 mSDsluCounter, 23 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 14 SdHoareTripleChecker+Valid, 34 SdHoareTripleChecker+Invalid, 29 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:15,688 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [14 Valid, 34 Invalid, 29 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-15 20:25:15,704 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 20 states. [2024-09-15 20:25:15,715 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 20 to 19. [2024-09-15 20:25:15,717 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 19 states, 12 states have (on average 1.25) internal successors, (15), 13 states have internal predecessors, (15), 3 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 20:25:15,718 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 19 states to 19 states and 21 transitions. [2024-09-15 20:25:15,718 INFO L78 Accepts]: Start accepts. Automaton has 19 states and 21 transitions. Word has length 5 [2024-09-15 20:25:15,719 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:15,719 INFO L474 AbstractCegarLoop]: Abstraction has 19 states and 21 transitions. [2024-09-15 20:25:15,719 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:15,719 INFO L276 IsEmpty]: Start isEmpty. Operand 19 states and 21 transitions. [2024-09-15 20:25:15,720 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 9 [2024-09-15 20:25:15,720 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:15,720 INFO L216 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:15,721 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-09-15 20:25:15,721 INFO L399 AbstractCegarLoop]: === Iteration 2 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:15,722 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:15,722 INFO L85 PathProgramCache]: Analyzing trace with hash -1615449573, now seen corresponding path program 1 times [2024-09-15 20:25:15,722 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:15,722 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [426878969] [2024-09-15 20:25:15,723 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:15,723 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:15,747 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:15,901 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:15,901 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:15,902 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [426878969] [2024-09-15 20:25:15,902 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [426878969] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:15,902 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2055188107] [2024-09-15 20:25:15,902 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:15,902 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:15,902 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:15,908 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:15,910 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-09-15 20:25:15,964 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:15,968 INFO L262 TraceCheckSpWp]: Trace formula consists of 57 conjuncts, 6 conjuncts are in the unsatisfiable core [2024-09-15 20:25:15,973 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:16,096 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:16,097 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:16,177 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:16,177 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2055188107] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:16,178 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:16,178 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [6, 6, 6] total 16 [2024-09-15 20:25:16,179 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [991564375] [2024-09-15 20:25:16,179 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:16,179 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 17 states [2024-09-15 20:25:16,180 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:16,181 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 17 interpolants. [2024-09-15 20:25:16,182 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=64, Invalid=208, Unknown=0, NotChecked=0, Total=272 [2024-09-15 20:25:16,183 INFO L87 Difference]: Start difference. First operand 19 states and 21 transitions. Second operand has 17 states, 14 states have (on average 1.1428571428571428) internal successors, (16), 10 states have internal predecessors, (16), 6 states have call successors, (6), 6 states have call predecessors, (6), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:16,341 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:16,341 INFO L93 Difference]: Finished difference Result 41 states and 42 transitions. [2024-09-15 20:25:16,343 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-09-15 20:25:16,344 INFO L78 Accepts]: Start accepts. Automaton has has 17 states, 14 states have (on average 1.1428571428571428) internal successors, (16), 10 states have internal predecessors, (16), 6 states have call successors, (6), 6 states have call predecessors, (6), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 8 [2024-09-15 20:25:16,344 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:16,344 INFO L225 Difference]: With dead ends: 41 [2024-09-15 20:25:16,345 INFO L226 Difference]: Without dead ends: 41 [2024-09-15 20:25:16,345 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 23 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 54 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=91, Invalid=289, Unknown=0, NotChecked=0, Total=380 [2024-09-15 20:25:16,346 INFO L434 NwaCegarLoop]: 14 mSDtfsCounter, 46 mSDsluCounter, 47 mSDsCounter, 0 mSdLazyCounter, 121 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 48 SdHoareTripleChecker+Valid, 61 SdHoareTripleChecker+Invalid, 131 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 121 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:16,346 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [48 Valid, 61 Invalid, 131 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 121 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-15 20:25:16,350 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 41 states. [2024-09-15 20:25:16,356 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 41 to 37. [2024-09-15 20:25:16,357 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 37 states, 24 states have (on average 1.25) internal successors, (30), 25 states have internal predecessors, (30), 6 states have call successors, (6), 5 states have call predecessors, (6), 5 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-15 20:25:16,358 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 37 states to 37 states and 42 transitions. [2024-09-15 20:25:16,359 INFO L78 Accepts]: Start accepts. Automaton has 37 states and 42 transitions. Word has length 8 [2024-09-15 20:25:16,359 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:16,359 INFO L474 AbstractCegarLoop]: Abstraction has 37 states and 42 transitions. [2024-09-15 20:25:16,359 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 17 states, 14 states have (on average 1.1428571428571428) internal successors, (16), 10 states have internal predecessors, (16), 6 states have call successors, (6), 6 states have call predecessors, (6), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:16,360 INFO L276 IsEmpty]: Start isEmpty. Operand 37 states and 42 transitions. [2024-09-15 20:25:16,361 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-09-15 20:25:16,361 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:16,361 INFO L216 NwaCegarLoop]: trace histogram [5, 4, 4, 1, 1, 1, 1] [2024-09-15 20:25:16,380 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-09-15 20:25:16,561 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:16,562 INFO L399 AbstractCegarLoop]: === Iteration 3 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:16,563 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:16,563 INFO L85 PathProgramCache]: Analyzing trace with hash 1295816760, now seen corresponding path program 2 times [2024-09-15 20:25:16,563 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:16,563 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1579486248] [2024-09-15 20:25:16,563 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:16,564 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:16,585 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:16,824 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 0 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:16,826 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:16,826 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1579486248] [2024-09-15 20:25:16,828 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1579486248] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:16,828 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [123303173] [2024-09-15 20:25:16,828 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-15 20:25:16,828 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:16,828 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:16,832 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:16,834 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-09-15 20:25:16,872 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 1 check-sat command(s) [2024-09-15 20:25:16,873 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:16,874 INFO L262 TraceCheckSpWp]: Trace formula consists of 50 conjuncts, 7 conjuncts are in the unsatisfiable core [2024-09-15 20:25:16,875 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:16,909 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 4 proven. 0 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-09-15 20:25:16,909 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-15 20:25:16,910 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [123303173] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 20:25:16,910 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-09-15 20:25:16,910 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [12] total 15 [2024-09-15 20:25:16,910 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1141984403] [2024-09-15 20:25:16,911 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 20:25:16,911 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-09-15 20:25:16,911 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:16,912 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-09-15 20:25:16,912 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=46, Invalid=164, Unknown=0, NotChecked=0, Total=210 [2024-09-15 20:25:16,912 INFO L87 Difference]: Start difference. First operand 37 states and 42 transitions. Second operand has 4 states, 3 states have (on average 2.0) internal successors, (6), 4 states have internal predecessors, (6), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:16,941 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:16,941 INFO L93 Difference]: Finished difference Result 39 states and 45 transitions. [2024-09-15 20:25:16,942 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-09-15 20:25:16,942 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 2.0) internal successors, (6), 4 states have internal predecessors, (6), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 17 [2024-09-15 20:25:16,943 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:16,945 INFO L225 Difference]: With dead ends: 39 [2024-09-15 20:25:16,945 INFO L226 Difference]: Without dead ends: 39 [2024-09-15 20:25:16,945 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 28 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 26 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=46, Invalid=164, Unknown=0, NotChecked=0, Total=210 [2024-09-15 20:25:16,948 INFO L434 NwaCegarLoop]: 7 mSDtfsCounter, 5 mSDsluCounter, 6 mSDsCounter, 0 mSdLazyCounter, 26 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 13 SdHoareTripleChecker+Invalid, 26 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 26 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:16,949 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 13 Invalid, 26 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 26 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-15 20:25:16,951 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 39 states. [2024-09-15 20:25:16,958 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 39 to 38. [2024-09-15 20:25:16,960 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 38 states, 25 states have (on average 1.24) internal successors, (31), 26 states have internal predecessors, (31), 6 states have call successors, (6), 5 states have call predecessors, (6), 5 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-15 20:25:16,962 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 38 states to 38 states and 43 transitions. [2024-09-15 20:25:16,963 INFO L78 Accepts]: Start accepts. Automaton has 38 states and 43 transitions. Word has length 17 [2024-09-15 20:25:16,963 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:16,963 INFO L474 AbstractCegarLoop]: Abstraction has 38 states and 43 transitions. [2024-09-15 20:25:16,963 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 2.0) internal successors, (6), 4 states have internal predecessors, (6), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:16,963 INFO L276 IsEmpty]: Start isEmpty. Operand 38 states and 43 transitions. [2024-09-15 20:25:16,964 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2024-09-15 20:25:16,964 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:16,964 INFO L216 NwaCegarLoop]: trace histogram [5, 4, 4, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:16,980 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-09-15 20:25:17,168 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:17,169 INFO L399 AbstractCegarLoop]: === Iteration 4 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:17,170 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:17,170 INFO L85 PathProgramCache]: Analyzing trace with hash 511038535, now seen corresponding path program 1 times [2024-09-15 20:25:17,170 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:17,170 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1357259855] [2024-09-15 20:25:17,170 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:17,171 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:17,189 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,347 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2024-09-15 20:25:17,352 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,391 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 1 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:17,391 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:17,392 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1357259855] [2024-09-15 20:25:17,392 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1357259855] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:17,392 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1173056378] [2024-09-15 20:25:17,392 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:17,392 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:17,392 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:17,394 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:17,398 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-09-15 20:25:17,438 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,440 INFO L262 TraceCheckSpWp]: Trace formula consists of 85 conjuncts, 12 conjuncts are in the unsatisfiable core [2024-09-15 20:25:17,441 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:17,557 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 1 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:17,559 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:17,808 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 1 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:17,809 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1173056378] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:17,809 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:17,809 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [13, 13, 13] total 29 [2024-09-15 20:25:17,809 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [254529186] [2024-09-15 20:25:17,810 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:17,810 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 29 states [2024-09-15 20:25:17,810 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:17,812 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 29 interpolants. [2024-09-15 20:25:17,812 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=152, Invalid=660, Unknown=0, NotChecked=0, Total=812 [2024-09-15 20:25:17,812 INFO L87 Difference]: Start difference. First operand 38 states and 43 transitions. Second operand has 29 states, 26 states have (on average 1.2307692307692308) internal successors, (32), 18 states have internal predecessors, (32), 12 states have call successors, (12), 11 states have call predecessors, (12), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-15 20:25:18,220 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:18,220 INFO L93 Difference]: Finished difference Result 71 states and 72 transitions. [2024-09-15 20:25:18,221 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2024-09-15 20:25:18,221 INFO L78 Accepts]: Start accepts. Automaton has has 29 states, 26 states have (on average 1.2307692307692308) internal successors, (32), 18 states have internal predecessors, (32), 12 states have call successors, (12), 11 states have call predecessors, (12), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) Word has length 20 [2024-09-15 20:25:18,221 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:18,222 INFO L225 Difference]: With dead ends: 71 [2024-09-15 20:25:18,222 INFO L226 Difference]: Without dead ends: 71 [2024-09-15 20:25:18,223 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 60 GetRequests, 23 SyntacticMatches, 1 SemanticMatches, 36 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 322 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=307, Invalid=1099, Unknown=0, NotChecked=0, Total=1406 [2024-09-15 20:25:18,224 INFO L434 NwaCegarLoop]: 15 mSDtfsCounter, 111 mSDsluCounter, 87 mSDsCounter, 0 mSdLazyCounter, 320 mSolverCounterSat, 32 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 112 SdHoareTripleChecker+Valid, 102 SdHoareTripleChecker+Invalid, 352 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 32 IncrementalHoareTripleChecker+Valid, 320 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:18,224 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [112 Valid, 102 Invalid, 352 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [32 Valid, 320 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-15 20:25:18,225 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 71 states. [2024-09-15 20:25:18,231 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 71 to 63. [2024-09-15 20:25:18,232 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 63 states, 41 states have (on average 1.2439024390243902) internal successors, (51), 43 states have internal predecessors, (51), 10 states have call successors, (10), 9 states have call predecessors, (10), 10 states have return successors, (11), 10 states have call predecessors, (11), 10 states have call successors, (11) [2024-09-15 20:25:18,233 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 63 states to 63 states and 72 transitions. [2024-09-15 20:25:18,233 INFO L78 Accepts]: Start accepts. Automaton has 63 states and 72 transitions. Word has length 20 [2024-09-15 20:25:18,233 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:18,233 INFO L474 AbstractCegarLoop]: Abstraction has 63 states and 72 transitions. [2024-09-15 20:25:18,234 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 29 states, 26 states have (on average 1.2307692307692308) internal successors, (32), 18 states have internal predecessors, (32), 12 states have call successors, (12), 11 states have call predecessors, (12), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-15 20:25:18,234 INFO L276 IsEmpty]: Start isEmpty. Operand 63 states and 72 transitions. [2024-09-15 20:25:18,234 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2024-09-15 20:25:18,235 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:18,235 INFO L216 NwaCegarLoop]: trace histogram [10, 9, 9, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:18,252 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:18,439 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:18,440 INFO L399 AbstractCegarLoop]: === Iteration 5 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:18,440 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:18,441 INFO L85 PathProgramCache]: Analyzing trace with hash 756088836, now seen corresponding path program 2 times [2024-09-15 20:25:18,441 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:18,441 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [4913358] [2024-09-15 20:25:18,441 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:18,441 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:18,463 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:18,811 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 28 [2024-09-15 20:25:18,815 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:18,859 INFO L134 CoverageAnalysis]: Checked inductivity of 127 backedges. 1 proven. 126 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:18,859 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:18,860 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [4913358] [2024-09-15 20:25:18,860 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [4913358] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:18,860 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1685441881] [2024-09-15 20:25:18,860 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-15 20:25:18,860 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:18,861 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:18,862 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:18,865 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-09-15 20:25:18,919 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-15 20:25:18,919 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:18,920 INFO L262 TraceCheckSpWp]: Trace formula consists of 120 conjuncts, 22 conjuncts are in the unsatisfiable core [2024-09-15 20:25:18,925 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:19,075 INFO L134 CoverageAnalysis]: Checked inductivity of 127 backedges. 1 proven. 126 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:19,075 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:19,545 INFO L134 CoverageAnalysis]: Checked inductivity of 127 backedges. 1 proven. 126 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:19,545 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1685441881] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:19,545 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:19,545 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [23, 23, 23] total 41 [2024-09-15 20:25:19,546 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1391685658] [2024-09-15 20:25:19,546 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:19,546 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 41 states [2024-09-15 20:25:19,546 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:19,547 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 41 interpolants. [2024-09-15 20:25:19,548 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=326, Invalid=1314, Unknown=0, NotChecked=0, Total=1640 [2024-09-15 20:25:19,548 INFO L87 Difference]: Start difference. First operand 63 states and 72 transitions. Second operand has 41 states, 38 states have (on average 1.1578947368421053) internal successors, (44), 24 states have internal predecessors, (44), 18 states have call successors, (19), 17 states have call predecessors, (19), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-15 20:25:20,241 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:20,241 INFO L93 Difference]: Finished difference Result 113 states and 114 transitions. [2024-09-15 20:25:20,242 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 33 states. [2024-09-15 20:25:20,242 INFO L78 Accepts]: Start accepts. Automaton has has 41 states, 38 states have (on average 1.1578947368421053) internal successors, (44), 24 states have internal predecessors, (44), 18 states have call successors, (19), 17 states have call predecessors, (19), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) Word has length 35 [2024-09-15 20:25:20,242 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:20,243 INFO L225 Difference]: With dead ends: 113 [2024-09-15 20:25:20,243 INFO L226 Difference]: Without dead ends: 113 [2024-09-15 20:25:20,245 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 106 GetRequests, 43 SyntacticMatches, 9 SemanticMatches, 54 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 899 ImplicationChecksByTransitivity, 0.9s TimeCoverageRelationStatistics Valid=718, Invalid=2362, Unknown=0, NotChecked=0, Total=3080 [2024-09-15 20:25:20,245 INFO L434 NwaCegarLoop]: 21 mSDtfsCounter, 191 mSDsluCounter, 154 mSDsCounter, 0 mSdLazyCounter, 553 mSolverCounterSat, 44 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 192 SdHoareTripleChecker+Valid, 175 SdHoareTripleChecker+Invalid, 597 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 44 IncrementalHoareTripleChecker+Valid, 553 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:20,246 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [192 Valid, 175 Invalid, 597 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [44 Valid, 553 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-09-15 20:25:20,248 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 113 states. [2024-09-15 20:25:20,258 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 113 to 99. [2024-09-15 20:25:20,259 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 99 states, 65 states have (on average 1.2461538461538462) internal successors, (81), 67 states have internal predecessors, (81), 16 states have call successors, (16), 15 states have call predecessors, (16), 16 states have return successors, (17), 16 states have call predecessors, (17), 16 states have call successors, (17) [2024-09-15 20:25:20,262 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 99 states to 99 states and 114 transitions. [2024-09-15 20:25:20,262 INFO L78 Accepts]: Start accepts. Automaton has 99 states and 114 transitions. Word has length 35 [2024-09-15 20:25:20,262 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:20,263 INFO L474 AbstractCegarLoop]: Abstraction has 99 states and 114 transitions. [2024-09-15 20:25:20,264 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 41 states, 38 states have (on average 1.1578947368421053) internal successors, (44), 24 states have internal predecessors, (44), 18 states have call successors, (19), 17 states have call predecessors, (19), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-15 20:25:20,264 INFO L276 IsEmpty]: Start isEmpty. Operand 99 states and 114 transitions. [2024-09-15 20:25:20,265 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2024-09-15 20:25:20,265 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:20,265 INFO L216 NwaCegarLoop]: trace histogram [16, 15, 15, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:20,284 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:20,466 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:20,466 INFO L399 AbstractCegarLoop]: === Iteration 6 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:20,467 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:20,467 INFO L85 PathProgramCache]: Analyzing trace with hash -952693916, now seen corresponding path program 3 times [2024-09-15 20:25:20,467 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:20,467 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1283522654] [2024-09-15 20:25:20,467 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:20,467 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:20,485 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:21,308 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 46 [2024-09-15 20:25:21,314 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:21,410 INFO L134 CoverageAnalysis]: Checked inductivity of 346 backedges. 0 proven. 346 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:21,411 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:21,411 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1283522654] [2024-09-15 20:25:21,413 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1283522654] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:21,413 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [815774295] [2024-09-15 20:25:21,413 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-15 20:25:21,413 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:21,414 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:21,415 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:21,417 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-09-15 20:25:21,465 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 3 check-sat command(s) [2024-09-15 20:25:21,465 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:21,467 INFO L262 TraceCheckSpWp]: Trace formula consists of 71 conjuncts, 15 conjuncts are in the unsatisfiable core [2024-09-15 20:25:21,469 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:21,497 INFO L134 CoverageAnalysis]: Checked inductivity of 346 backedges. 42 proven. 1 refuted. 0 times theorem prover too weak. 303 trivial. 0 not checked. [2024-09-15 20:25:21,497 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:21,622 INFO L134 CoverageAnalysis]: Checked inductivity of 346 backedges. 42 proven. 2 refuted. 0 times theorem prover too weak. 302 trivial. 0 not checked. [2024-09-15 20:25:21,622 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [815774295] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:21,623 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:21,623 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [35, 5, 6] total 37 [2024-09-15 20:25:21,624 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [485340723] [2024-09-15 20:25:21,624 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:21,625 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 38 states [2024-09-15 20:25:21,626 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:21,626 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 38 interpolants. [2024-09-15 20:25:21,629 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=109, Invalid=1297, Unknown=0, NotChecked=0, Total=1406 [2024-09-15 20:25:21,629 INFO L87 Difference]: Start difference. First operand 99 states and 114 transitions. Second operand has 38 states, 36 states have (on average 1.2222222222222223) internal successors, (44), 23 states have internal predecessors, (44), 19 states have call successors, (20), 16 states have call predecessors, (20), 1 states have return successors, (3), 1 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 20:25:23,120 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:23,120 INFO L93 Difference]: Finished difference Result 165 states and 182 transitions. [2024-09-15 20:25:23,121 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 38 states. [2024-09-15 20:25:23,121 INFO L78 Accepts]: Start accepts. Automaton has has 38 states, 36 states have (on average 1.2222222222222223) internal successors, (44), 23 states have internal predecessors, (44), 19 states have call successors, (20), 16 states have call predecessors, (20), 1 states have return successors, (3), 1 states have call predecessors, (3), 3 states have call successors, (3) Word has length 53 [2024-09-15 20:25:23,122 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:23,123 INFO L225 Difference]: With dead ends: 165 [2024-09-15 20:25:23,123 INFO L226 Difference]: Without dead ends: 165 [2024-09-15 20:25:23,124 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 171 GetRequests, 118 SyntacticMatches, 0 SemanticMatches, 53 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 173 ImplicationChecksByTransitivity, 0.8s TimeCoverageRelationStatistics Valid=229, Invalid=2741, Unknown=0, NotChecked=0, Total=2970 [2024-09-15 20:25:23,125 INFO L434 NwaCegarLoop]: 33 mSDtfsCounter, 215 mSDsluCounter, 464 mSDsCounter, 0 mSdLazyCounter, 2860 mSolverCounterSat, 125 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 233 SdHoareTripleChecker+Valid, 497 SdHoareTripleChecker+Invalid, 2985 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 125 IncrementalHoareTripleChecker+Valid, 2860 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.1s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:23,125 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [233 Valid, 497 Invalid, 2985 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [125 Valid, 2860 Invalid, 0 Unknown, 0 Unchecked, 1.1s Time] [2024-09-15 20:25:23,126 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 165 states. [2024-09-15 20:25:23,134 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 165 to 149. [2024-09-15 20:25:23,135 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 149 states, 99 states have (on average 1.3131313131313131) internal successors, (130), 100 states have internal predecessors, (130), 17 states have call successors, (17), 16 states have call predecessors, (17), 31 states have return successors, (34), 32 states have call predecessors, (34), 17 states have call successors, (34) [2024-09-15 20:25:23,136 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 181 transitions. [2024-09-15 20:25:23,136 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 181 transitions. Word has length 53 [2024-09-15 20:25:23,137 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:23,137 INFO L474 AbstractCegarLoop]: Abstraction has 149 states and 181 transitions. [2024-09-15 20:25:23,137 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 38 states, 36 states have (on average 1.2222222222222223) internal successors, (44), 23 states have internal predecessors, (44), 19 states have call successors, (20), 16 states have call predecessors, (20), 1 states have return successors, (3), 1 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 20:25:23,137 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 181 transitions. [2024-09-15 20:25:23,138 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 57 [2024-09-15 20:25:23,138 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:23,139 INFO L216 NwaCegarLoop]: trace histogram [16, 15, 15, 2, 2, 2, 1, 1, 1, 1] [2024-09-15 20:25:23,155 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2024-09-15 20:25:23,339 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2024-09-15 20:25:23,340 INFO L399 AbstractCegarLoop]: === Iteration 7 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:23,340 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:23,340 INFO L85 PathProgramCache]: Analyzing trace with hash -560561765, now seen corresponding path program 4 times [2024-09-15 20:25:23,340 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:23,340 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1104004871] [2024-09-15 20:25:23,340 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:23,341 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:23,357 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:24,077 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 43 [2024-09-15 20:25:24,083 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:24,159 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:24,164 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:24,237 INFO L134 CoverageAnalysis]: Checked inductivity of 350 backedges. 1 proven. 348 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-09-15 20:25:24,238 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:24,238 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1104004871] [2024-09-15 20:25:24,238 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1104004871] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:24,238 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [523838283] [2024-09-15 20:25:24,239 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2024-09-15 20:25:24,239 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:24,239 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:24,241 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:24,242 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-09-15 20:25:24,304 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2024-09-15 20:25:24,305 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:24,306 INFO L262 TraceCheckSpWp]: Trace formula consists of 169 conjuncts, 23 conjuncts are in the unsatisfiable core [2024-09-15 20:25:24,308 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:24,411 INFO L134 CoverageAnalysis]: Checked inductivity of 350 backedges. 65 proven. 5 refuted. 0 times theorem prover too weak. 280 trivial. 0 not checked. [2024-09-15 20:25:24,411 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:24,626 INFO L134 CoverageAnalysis]: Checked inductivity of 350 backedges. 65 proven. 9 refuted. 0 times theorem prover too weak. 276 trivial. 0 not checked. [2024-09-15 20:25:24,627 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [523838283] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:24,627 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:24,627 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [35, 7, 9] total 40 [2024-09-15 20:25:24,627 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [777068742] [2024-09-15 20:25:24,627 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:24,628 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 41 states [2024-09-15 20:25:24,628 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:24,629 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 41 interpolants. [2024-09-15 20:25:24,629 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=131, Invalid=1509, Unknown=0, NotChecked=0, Total=1640 [2024-09-15 20:25:24,630 INFO L87 Difference]: Start difference. First operand 149 states and 181 transitions. Second operand has 41 states, 39 states have (on average 1.2307692307692308) internal successors, (48), 25 states have internal predecessors, (48), 19 states have call successors, (20), 15 states have call predecessors, (20), 3 states have return successors, (6), 3 states have call predecessors, (6), 5 states have call successors, (6) [2024-09-15 20:25:25,979 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:25,979 INFO L93 Difference]: Finished difference Result 166 states and 183 transitions. [2024-09-15 20:25:25,980 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 38 states. [2024-09-15 20:25:25,980 INFO L78 Accepts]: Start accepts. Automaton has has 41 states, 39 states have (on average 1.2307692307692308) internal successors, (48), 25 states have internal predecessors, (48), 19 states have call successors, (20), 15 states have call predecessors, (20), 3 states have return successors, (6), 3 states have call predecessors, (6), 5 states have call successors, (6) Word has length 56 [2024-09-15 20:25:25,980 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:25,982 INFO L225 Difference]: With dead ends: 166 [2024-09-15 20:25:25,982 INFO L226 Difference]: Without dead ends: 166 [2024-09-15 20:25:25,983 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 179 GetRequests, 122 SyntacticMatches, 0 SemanticMatches, 57 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 245 ImplicationChecksByTransitivity, 0.9s TimeCoverageRelationStatistics Valid=276, Invalid=3146, Unknown=0, NotChecked=0, Total=3422 [2024-09-15 20:25:25,983 INFO L434 NwaCegarLoop]: 31 mSDtfsCounter, 228 mSDsluCounter, 406 mSDsCounter, 0 mSdLazyCounter, 2999 mSolverCounterSat, 118 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 246 SdHoareTripleChecker+Valid, 437 SdHoareTripleChecker+Invalid, 3117 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 118 IncrementalHoareTripleChecker+Valid, 2999 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:25,984 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [246 Valid, 437 Invalid, 3117 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [118 Valid, 2999 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2024-09-15 20:25:25,984 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 166 states. [2024-09-15 20:25:25,992 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 166 to 152. [2024-09-15 20:25:25,993 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 152 states, 101 states have (on average 1.297029702970297) internal successors, (131), 102 states have internal predecessors, (131), 17 states have call successors, (17), 16 states have call predecessors, (17), 32 states have return successors, (35), 33 states have call predecessors, (35), 17 states have call successors, (35) [2024-09-15 20:25:25,994 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 152 states to 152 states and 183 transitions. [2024-09-15 20:25:25,994 INFO L78 Accepts]: Start accepts. Automaton has 152 states and 183 transitions. Word has length 56 [2024-09-15 20:25:25,995 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:25,995 INFO L474 AbstractCegarLoop]: Abstraction has 152 states and 183 transitions. [2024-09-15 20:25:25,995 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 41 states, 39 states have (on average 1.2307692307692308) internal successors, (48), 25 states have internal predecessors, (48), 19 states have call successors, (20), 15 states have call predecessors, (20), 3 states have return successors, (6), 3 states have call predecessors, (6), 5 states have call successors, (6) [2024-09-15 20:25:25,995 INFO L276 IsEmpty]: Start isEmpty. Operand 152 states and 183 transitions. [2024-09-15 20:25:25,996 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 60 [2024-09-15 20:25:25,996 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:25,997 INFO L216 NwaCegarLoop]: trace histogram [16, 15, 15, 3, 3, 3, 1, 1, 1, 1] [2024-09-15 20:25:26,014 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Ended with exit code 0 [2024-09-15 20:25:26,200 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,7 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:26,201 INFO L399 AbstractCegarLoop]: === Iteration 8 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:26,201 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:26,201 INFO L85 PathProgramCache]: Analyzing trace with hash -862696444, now seen corresponding path program 5 times [2024-09-15 20:25:26,201 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:26,201 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2066192181] [2024-09-15 20:25:26,202 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:26,202 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:26,218 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:26,886 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 40 [2024-09-15 20:25:26,893 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:26,979 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:26,985 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:27,070 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:27,074 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:27,152 INFO L134 CoverageAnalysis]: Checked inductivity of 357 backedges. 2 proven. 350 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2024-09-15 20:25:27,153 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:27,153 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2066192181] [2024-09-15 20:25:27,153 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2066192181] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:27,153 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1643651610] [2024-09-15 20:25:27,153 INFO L93 rtionOrderModulation]: Changing assertion order to INSIDE_LOOP_FIRST1 [2024-09-15 20:25:27,153 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:27,153 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:27,155 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:27,157 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-09-15 20:25:27,223 INFO L228 tOrderPrioritization]: Assert order INSIDE_LOOP_FIRST1 issued 16 check-sat command(s) [2024-09-15 20:25:27,223 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:27,226 INFO L262 TraceCheckSpWp]: Trace formula consists of 176 conjuncts, 67 conjuncts are in the unsatisfiable core [2024-09-15 20:25:27,229 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:27,340 INFO L134 CoverageAnalysis]: Checked inductivity of 357 backedges. 0 proven. 350 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2024-09-15 20:25:27,340 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:27,469 INFO L134 CoverageAnalysis]: Checked inductivity of 357 backedges. 0 proven. 350 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2024-09-15 20:25:27,469 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1643651610] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:27,469 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:27,469 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [35, 34, 34] total 36 [2024-09-15 20:25:27,470 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [788589537] [2024-09-15 20:25:27,470 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:27,470 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 37 states [2024-09-15 20:25:27,470 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:27,471 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 37 interpolants. [2024-09-15 20:25:27,471 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=74, Invalid=1258, Unknown=0, NotChecked=0, Total=1332 [2024-09-15 20:25:27,472 INFO L87 Difference]: Start difference. First operand 152 states and 183 transitions. Second operand has 37 states, 35 states have (on average 1.1428571428571428) internal successors, (40), 22 states have internal predecessors, (40), 15 states have call successors, (15), 14 states have call predecessors, (15), 4 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) [2024-09-15 20:25:28,699 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:28,700 INFO L93 Difference]: Finished difference Result 168 states and 186 transitions. [2024-09-15 20:25:28,700 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 37 states. [2024-09-15 20:25:28,700 INFO L78 Accepts]: Start accepts. Automaton has has 37 states, 35 states have (on average 1.1428571428571428) internal successors, (40), 22 states have internal predecessors, (40), 15 states have call successors, (15), 14 states have call predecessors, (15), 4 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) Word has length 59 [2024-09-15 20:25:28,700 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:28,702 INFO L225 Difference]: With dead ends: 168 [2024-09-15 20:25:28,702 INFO L226 Difference]: Without dead ends: 168 [2024-09-15 20:25:28,702 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 187 GetRequests, 133 SyntacticMatches, 0 SemanticMatches, 54 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 215 ImplicationChecksByTransitivity, 0.8s TimeCoverageRelationStatistics Valid=166, Invalid=2914, Unknown=0, NotChecked=0, Total=3080 [2024-09-15 20:25:28,703 INFO L434 NwaCegarLoop]: 29 mSDtfsCounter, 161 mSDsluCounter, 405 mSDsCounter, 0 mSdLazyCounter, 2986 mSolverCounterSat, 39 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 166 SdHoareTripleChecker+Valid, 434 SdHoareTripleChecker+Invalid, 3025 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 39 IncrementalHoareTripleChecker+Valid, 2986 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.9s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:28,703 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [166 Valid, 434 Invalid, 3025 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [39 Valid, 2986 Invalid, 0 Unknown, 0 Unchecked, 0.9s Time] [2024-09-15 20:25:28,704 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 168 states. [2024-09-15 20:25:28,712 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 168 to 155. [2024-09-15 20:25:28,712 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 155 states, 103 states have (on average 1.2912621359223302) internal successors, (133), 104 states have internal predecessors, (133), 17 states have call successors, (17), 16 states have call predecessors, (17), 33 states have return successors, (36), 34 states have call predecessors, (36), 17 states have call successors, (36) [2024-09-15 20:25:28,713 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 155 states to 155 states and 186 transitions. [2024-09-15 20:25:28,714 INFO L78 Accepts]: Start accepts. Automaton has 155 states and 186 transitions. Word has length 59 [2024-09-15 20:25:28,714 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:28,714 INFO L474 AbstractCegarLoop]: Abstraction has 155 states and 186 transitions. [2024-09-15 20:25:28,714 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 37 states, 35 states have (on average 1.1428571428571428) internal successors, (40), 22 states have internal predecessors, (40), 15 states have call successors, (15), 14 states have call predecessors, (15), 4 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) [2024-09-15 20:25:28,715 INFO L276 IsEmpty]: Start isEmpty. Operand 155 states and 186 transitions. [2024-09-15 20:25:28,716 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 69 [2024-09-15 20:25:28,716 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:28,716 INFO L216 NwaCegarLoop]: trace histogram [19, 18, 18, 3, 3, 3, 1, 1, 1, 1] [2024-09-15 20:25:28,731 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:28,920 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,8 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:28,921 INFO L399 AbstractCegarLoop]: === Iteration 9 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:28,921 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:28,921 INFO L85 PathProgramCache]: Analyzing trace with hash 1280942791, now seen corresponding path program 6 times [2024-09-15 20:25:28,921 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:28,921 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1976334405] [2024-09-15 20:25:28,922 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:28,922 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:28,940 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:29,628 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 49 [2024-09-15 20:25:29,633 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:29,709 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:29,712 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:29,765 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:29,767 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:29,829 INFO L134 CoverageAnalysis]: Checked inductivity of 507 backedges. 309 proven. 193 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2024-09-15 20:25:29,829 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:29,829 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1976334405] [2024-09-15 20:25:29,830 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1976334405] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:29,830 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1773609057] [2024-09-15 20:25:29,830 INFO L93 rtionOrderModulation]: Changing assertion order to MIX_INSIDE_OUTSIDE [2024-09-15 20:25:29,830 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:29,830 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:29,832 INFO L229 MonitoredProcess]: Starting monitored process 9 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:29,834 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-09-15 20:25:29,888 INFO L228 tOrderPrioritization]: Assert order MIX_INSIDE_OUTSIDE issued 11 check-sat command(s) [2024-09-15 20:25:29,888 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:29,891 INFO L262 TraceCheckSpWp]: Trace formula consists of 141 conjuncts, 31 conjuncts are in the unsatisfiable core [2024-09-15 20:25:29,893 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:30,098 INFO L134 CoverageAnalysis]: Checked inductivity of 507 backedges. 105 proven. 12 refuted. 0 times theorem prover too weak. 390 trivial. 0 not checked. [2024-09-15 20:25:30,098 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:30,325 INFO L134 CoverageAnalysis]: Checked inductivity of 507 backedges. 105 proven. 21 refuted. 0 times theorem prover too weak. 381 trivial. 0 not checked. [2024-09-15 20:25:30,325 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1773609057] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:30,325 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:30,326 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [40, 9, 12] total 51 [2024-09-15 20:25:30,326 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2115090292] [2024-09-15 20:25:30,326 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:30,328 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 51 states [2024-09-15 20:25:30,329 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:30,329 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 51 interpolants. [2024-09-15 20:25:30,330 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=437, Invalid=2113, Unknown=0, NotChecked=0, Total=2550 [2024-09-15 20:25:30,330 INFO L87 Difference]: Start difference. First operand 155 states and 186 transitions. Second operand has 51 states, 50 states have (on average 1.26) internal successors, (63), 32 states have internal predecessors, (63), 22 states have call successors, (23), 17 states have call predecessors, (23), 6 states have return successors, (9), 6 states have call predecessors, (9), 5 states have call successors, (9) [2024-09-15 20:25:31,085 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:31,085 INFO L93 Difference]: Finished difference Result 113 states and 113 transitions. [2024-09-15 20:25:31,086 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 51 states. [2024-09-15 20:25:31,087 INFO L78 Accepts]: Start accepts. Automaton has has 51 states, 50 states have (on average 1.26) internal successors, (63), 32 states have internal predecessors, (63), 22 states have call successors, (23), 17 states have call predecessors, (23), 6 states have return successors, (9), 6 states have call predecessors, (9), 5 states have call successors, (9) Word has length 68 [2024-09-15 20:25:31,087 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:31,088 INFO L225 Difference]: With dead ends: 113 [2024-09-15 20:25:31,088 INFO L226 Difference]: Without dead ends: 112 [2024-09-15 20:25:31,090 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 213 GetRequests, 131 SyntacticMatches, 0 SemanticMatches, 82 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1574 ImplicationChecksByTransitivity, 1.1s TimeCoverageRelationStatistics Valid=1533, Invalid=5439, Unknown=0, NotChecked=0, Total=6972 [2024-09-15 20:25:31,093 INFO L434 NwaCegarLoop]: 22 mSDtfsCounter, 409 mSDsluCounter, 91 mSDsCounter, 0 mSdLazyCounter, 878 mSolverCounterSat, 124 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 410 SdHoareTripleChecker+Valid, 113 SdHoareTripleChecker+Invalid, 1002 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 124 IncrementalHoareTripleChecker+Valid, 878 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:31,093 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [410 Valid, 113 Invalid, 1002 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [124 Valid, 878 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-09-15 20:25:31,094 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 112 states. [2024-09-15 20:25:31,101 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 112 to 101. [2024-09-15 20:25:31,102 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 101 states, 67 states have (on average 1.1791044776119404) internal successors, (79), 68 states have internal predecessors, (79), 16 states have call successors, (16), 16 states have call predecessors, (16), 16 states have return successors, (16), 16 states have call predecessors, (16), 16 states have call successors, (16) [2024-09-15 20:25:31,106 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 101 states to 101 states and 111 transitions. [2024-09-15 20:25:31,107 INFO L78 Accepts]: Start accepts. Automaton has 101 states and 111 transitions. Word has length 68 [2024-09-15 20:25:31,107 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:31,107 INFO L474 AbstractCegarLoop]: Abstraction has 101 states and 111 transitions. [2024-09-15 20:25:31,107 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 51 states, 50 states have (on average 1.26) internal successors, (63), 32 states have internal predecessors, (63), 22 states have call successors, (23), 17 states have call predecessors, (23), 6 states have return successors, (9), 6 states have call predecessors, (9), 5 states have call successors, (9) [2024-09-15 20:25:31,107 INFO L276 IsEmpty]: Start isEmpty. Operand 101 states and 111 transitions. [2024-09-15 20:25:31,108 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 63 [2024-09-15 20:25:31,108 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:31,109 INFO L216 NwaCegarLoop]: trace histogram [16, 15, 15, 4, 4, 4, 1, 1, 1, 1] [2024-09-15 20:25:31,125 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Ended with exit code 0 [2024-09-15 20:25:31,309 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,9 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:31,310 INFO L399 AbstractCegarLoop]: === Iteration 10 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:31,310 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:31,310 INFO L85 PathProgramCache]: Analyzing trace with hash 494533883, now seen corresponding path program 7 times [2024-09-15 20:25:31,310 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:31,310 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1846218804] [2024-09-15 20:25:31,311 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:31,311 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:31,324 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:31,826 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 37 [2024-09-15 20:25:31,831 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:31,921 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:31,924 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:31,998 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:32,001 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:32,064 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:32,068 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:32,133 INFO L134 CoverageAnalysis]: Checked inductivity of 367 backedges. 3 proven. 352 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-09-15 20:25:32,133 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:32,134 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1846218804] [2024-09-15 20:25:32,134 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1846218804] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:32,134 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1746311970] [2024-09-15 20:25:32,134 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2024-09-15 20:25:32,134 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:32,134 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:32,136 INFO L229 MonitoredProcess]: Starting monitored process 10 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:32,138 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2024-09-15 20:25:32,193 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:32,196 INFO L262 TraceCheckSpWp]: Trace formula consists of 183 conjuncts, 67 conjuncts are in the unsatisfiable core [2024-09-15 20:25:32,201 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:32,298 INFO L134 CoverageAnalysis]: Checked inductivity of 367 backedges. 0 proven. 352 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2024-09-15 20:25:32,298 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:32,421 INFO L134 CoverageAnalysis]: Checked inductivity of 367 backedges. 0 proven. 352 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2024-09-15 20:25:32,421 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1746311970] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:32,421 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:32,422 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [35, 34, 34] total 36 [2024-09-15 20:25:32,422 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1100096654] [2024-09-15 20:25:32,422 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:32,422 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 37 states [2024-09-15 20:25:32,422 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:32,423 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 37 interpolants. [2024-09-15 20:25:32,423 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=74, Invalid=1258, Unknown=0, NotChecked=0, Total=1332 [2024-09-15 20:25:32,424 INFO L87 Difference]: Start difference. First operand 101 states and 111 transitions. Second operand has 37 states, 35 states have (on average 1.1428571428571428) internal successors, (40), 22 states have internal predecessors, (40), 14 states have call successors, (14), 13 states have call predecessors, (14), 5 states have return successors, (5), 4 states have call predecessors, (5), 2 states have call successors, (5) [2024-09-15 20:25:33,681 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:33,681 INFO L93 Difference]: Finished difference Result 111 states and 110 transitions. [2024-09-15 20:25:33,682 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 37 states. [2024-09-15 20:25:33,682 INFO L78 Accepts]: Start accepts. Automaton has has 37 states, 35 states have (on average 1.1428571428571428) internal successors, (40), 22 states have internal predecessors, (40), 14 states have call successors, (14), 13 states have call predecessors, (14), 5 states have return successors, (5), 4 states have call predecessors, (5), 2 states have call successors, (5) Word has length 62 [2024-09-15 20:25:33,682 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:33,683 INFO L225 Difference]: With dead ends: 111 [2024-09-15 20:25:33,683 INFO L226 Difference]: Without dead ends: 111 [2024-09-15 20:25:33,684 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 194 GetRequests, 139 SyntacticMatches, 0 SemanticMatches, 55 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 240 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=169, Invalid=3023, Unknown=0, NotChecked=0, Total=3192 [2024-09-15 20:25:33,685 INFO L434 NwaCegarLoop]: 27 mSDtfsCounter, 146 mSDsluCounter, 363 mSDsCounter, 0 mSdLazyCounter, 2960 mSolverCounterSat, 34 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 150 SdHoareTripleChecker+Valid, 390 SdHoareTripleChecker+Invalid, 2994 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 34 IncrementalHoareTripleChecker+Valid, 2960 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:33,685 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [150 Valid, 390 Invalid, 2994 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [34 Valid, 2960 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2024-09-15 20:25:33,686 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 111 states. [2024-09-15 20:25:33,690 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 111 to 101. [2024-09-15 20:25:33,690 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 101 states, 67 states have (on average 1.164179104477612) internal successors, (78), 68 states have internal predecessors, (78), 16 states have call successors, (16), 16 states have call predecessors, (16), 16 states have return successors, (16), 16 states have call predecessors, (16), 16 states have call successors, (16) [2024-09-15 20:25:33,690 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 101 states to 101 states and 110 transitions. [2024-09-15 20:25:33,691 INFO L78 Accepts]: Start accepts. Automaton has 101 states and 110 transitions. Word has length 62 [2024-09-15 20:25:33,691 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:33,691 INFO L474 AbstractCegarLoop]: Abstraction has 101 states and 110 transitions. [2024-09-15 20:25:33,691 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 37 states, 35 states have (on average 1.1428571428571428) internal successors, (40), 22 states have internal predecessors, (40), 14 states have call successors, (14), 13 states have call predecessors, (14), 5 states have return successors, (5), 4 states have call predecessors, (5), 2 states have call successors, (5) [2024-09-15 20:25:33,691 INFO L276 IsEmpty]: Start isEmpty. Operand 101 states and 110 transitions. [2024-09-15 20:25:33,692 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 66 [2024-09-15 20:25:33,692 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:33,692 INFO L216 NwaCegarLoop]: trace histogram [16, 15, 15, 5, 5, 5, 1, 1, 1, 1] [2024-09-15 20:25:33,707 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:33,896 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 10 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-09-15 20:25:33,897 INFO L399 AbstractCegarLoop]: === Iteration 11 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:33,897 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:33,897 INFO L85 PathProgramCache]: Analyzing trace with hash 921080996, now seen corresponding path program 8 times [2024-09-15 20:25:33,897 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:33,897 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1128481907] [2024-09-15 20:25:33,897 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:33,898 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:33,910 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:34,361 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 34 [2024-09-15 20:25:34,368 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:34,499 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:34,504 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:34,588 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:34,592 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:34,667 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:34,670 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:34,738 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:34,743 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:34,818 INFO L134 CoverageAnalysis]: Checked inductivity of 380 backedges. 4 proven. 354 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-09-15 20:25:34,819 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:34,819 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1128481907] [2024-09-15 20:25:34,819 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1128481907] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:34,819 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [765438604] [2024-09-15 20:25:34,819 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-15 20:25:34,820 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:34,820 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:34,821 INFO L229 MonitoredProcess]: Starting monitored process 11 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:34,823 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Waiting until timeout for monitored process [2024-09-15 20:25:34,878 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-15 20:25:34,879 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:34,881 INFO L262 TraceCheckSpWp]: Trace formula consists of 190 conjuncts, 67 conjuncts are in the unsatisfiable core [2024-09-15 20:25:34,882 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:34,979 INFO L134 CoverageAnalysis]: Checked inductivity of 380 backedges. 0 proven. 354 refuted. 0 times theorem prover too weak. 26 trivial. 0 not checked. [2024-09-15 20:25:34,979 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:35,134 INFO L134 CoverageAnalysis]: Checked inductivity of 380 backedges. 0 proven. 354 refuted. 0 times theorem prover too weak. 26 trivial. 0 not checked. [2024-09-15 20:25:35,134 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [765438604] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:35,135 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:35,135 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [35, 34, 34] total 36 [2024-09-15 20:25:35,135 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [205381820] [2024-09-15 20:25:35,135 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:35,135 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 37 states [2024-09-15 20:25:35,135 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:35,136 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 37 interpolants. [2024-09-15 20:25:35,136 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=74, Invalid=1258, Unknown=0, NotChecked=0, Total=1332 [2024-09-15 20:25:35,136 INFO L87 Difference]: Start difference. First operand 101 states and 110 transitions. Second operand has 37 states, 35 states have (on average 1.1428571428571428) internal successors, (40), 22 states have internal predecessors, (40), 13 states have call successors, (13), 12 states have call predecessors, (13), 6 states have return successors, (6), 5 states have call predecessors, (6), 2 states have call successors, (6) [2024-09-15 20:25:36,339 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:36,339 INFO L93 Difference]: Finished difference Result 110 states and 109 transitions. [2024-09-15 20:25:36,340 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 37 states. [2024-09-15 20:25:36,340 INFO L78 Accepts]: Start accepts. Automaton has has 37 states, 35 states have (on average 1.1428571428571428) internal successors, (40), 22 states have internal predecessors, (40), 13 states have call successors, (13), 12 states have call predecessors, (13), 6 states have return successors, (6), 5 states have call predecessors, (6), 2 states have call successors, (6) Word has length 65 [2024-09-15 20:25:36,340 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:36,341 INFO L225 Difference]: With dead ends: 110 [2024-09-15 20:25:36,341 INFO L226 Difference]: Without dead ends: 110 [2024-09-15 20:25:36,342 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 202 GetRequests, 146 SyntacticMatches, 0 SemanticMatches, 56 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 266 ImplicationChecksByTransitivity, 0.8s TimeCoverageRelationStatistics Valid=172, Invalid=3134, Unknown=0, NotChecked=0, Total=3306 [2024-09-15 20:25:36,342 INFO L434 NwaCegarLoop]: 25 mSDtfsCounter, 136 mSDsluCounter, 322 mSDsCounter, 0 mSdLazyCounter, 2872 mSolverCounterSat, 31 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 141 SdHoareTripleChecker+Valid, 347 SdHoareTripleChecker+Invalid, 2903 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 31 IncrementalHoareTripleChecker+Valid, 2872 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.9s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:36,342 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [141 Valid, 347 Invalid, 2903 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [31 Valid, 2872 Invalid, 0 Unknown, 0 Unchecked, 0.9s Time] [2024-09-15 20:25:36,343 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 110 states. [2024-09-15 20:25:36,346 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 110 to 101. [2024-09-15 20:25:36,346 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 101 states, 67 states have (on average 1.1492537313432836) internal successors, (77), 68 states have internal predecessors, (77), 16 states have call successors, (16), 16 states have call predecessors, (16), 16 states have return successors, (16), 16 states have call predecessors, (16), 16 states have call successors, (16) [2024-09-15 20:25:36,347 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 101 states to 101 states and 109 transitions. [2024-09-15 20:25:36,347 INFO L78 Accepts]: Start accepts. Automaton has 101 states and 109 transitions. Word has length 65 [2024-09-15 20:25:36,347 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:36,347 INFO L474 AbstractCegarLoop]: Abstraction has 101 states and 109 transitions. [2024-09-15 20:25:36,348 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 37 states, 35 states have (on average 1.1428571428571428) internal successors, (40), 22 states have internal predecessors, (40), 13 states have call successors, (13), 12 states have call predecessors, (13), 6 states have return successors, (6), 5 states have call predecessors, (6), 2 states have call successors, (6) [2024-09-15 20:25:36,348 INFO L276 IsEmpty]: Start isEmpty. Operand 101 states and 109 transitions. [2024-09-15 20:25:36,348 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 69 [2024-09-15 20:25:36,349 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:36,349 INFO L216 NwaCegarLoop]: trace histogram [16, 15, 15, 6, 6, 6, 1, 1, 1, 1] [2024-09-15 20:25:36,365 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:36,549 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 11 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-09-15 20:25:36,550 INFO L399 AbstractCegarLoop]: === Iteration 12 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:36,550 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:36,550 INFO L85 PathProgramCache]: Analyzing trace with hash -622104485, now seen corresponding path program 9 times [2024-09-15 20:25:36,550 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:36,550 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [942547298] [2024-09-15 20:25:36,550 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:36,551 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:36,565 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:37,014 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 31 [2024-09-15 20:25:37,021 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:37,137 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:37,142 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:37,236 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:37,240 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:37,315 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:37,318 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:37,395 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:37,399 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:37,466 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:37,469 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:37,536 INFO L134 CoverageAnalysis]: Checked inductivity of 396 backedges. 5 proven. 356 refuted. 0 times theorem prover too weak. 35 trivial. 0 not checked. [2024-09-15 20:25:37,537 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:37,537 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [942547298] [2024-09-15 20:25:37,537 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [942547298] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:37,537 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [506077839] [2024-09-15 20:25:37,537 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-15 20:25:37,537 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:37,538 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:37,539 INFO L229 MonitoredProcess]: Starting monitored process 12 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:37,541 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Waiting until timeout for monitored process [2024-09-15 20:25:37,603 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 10 check-sat command(s) [2024-09-15 20:25:37,603 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:37,605 INFO L262 TraceCheckSpWp]: Trace formula consists of 155 conjuncts, 55 conjuncts are in the unsatisfiable core [2024-09-15 20:25:37,606 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:37,976 INFO L134 CoverageAnalysis]: Checked inductivity of 396 backedges. 117 proven. 51 refuted. 0 times theorem prover too weak. 228 trivial. 0 not checked. [2024-09-15 20:25:37,976 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:38,674 INFO L134 CoverageAnalysis]: Checked inductivity of 396 backedges. 117 proven. 87 refuted. 0 times theorem prover too weak. 192 trivial. 0 not checked. [2024-09-15 20:25:38,674 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [506077839] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:38,675 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:38,675 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [35, 15, 21] total 52 [2024-09-15 20:25:38,675 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2102765368] [2024-09-15 20:25:38,675 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:38,675 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 53 states [2024-09-15 20:25:38,675 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:38,676 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 53 interpolants. [2024-09-15 20:25:38,677 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=199, Invalid=2557, Unknown=0, NotChecked=0, Total=2756 [2024-09-15 20:25:38,677 INFO L87 Difference]: Start difference. First operand 101 states and 109 transitions. Second operand has 53 states, 51 states have (on average 1.2549019607843137) internal successors, (64), 33 states have internal predecessors, (64), 19 states have call successors, (20), 11 states have call predecessors, (20), 11 states have return successors, (18), 11 states have call predecessors, (18), 9 states have call successors, (18) [2024-09-15 20:25:39,976 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:39,976 INFO L93 Difference]: Finished difference Result 109 states and 108 transitions. [2024-09-15 20:25:39,977 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 38 states. [2024-09-15 20:25:39,977 INFO L78 Accepts]: Start accepts. Automaton has has 53 states, 51 states have (on average 1.2549019607843137) internal successors, (64), 33 states have internal predecessors, (64), 19 states have call successors, (20), 11 states have call predecessors, (20), 11 states have return successors, (18), 11 states have call predecessors, (18), 9 states have call successors, (18) Word has length 68 [2024-09-15 20:25:39,977 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:39,978 INFO L225 Difference]: With dead ends: 109 [2024-09-15 20:25:39,978 INFO L226 Difference]: Without dead ends: 109 [2024-09-15 20:25:39,979 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 210 GetRequests, 137 SyntacticMatches, 0 SemanticMatches, 73 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 673 ImplicationChecksByTransitivity, 1.2s TimeCoverageRelationStatistics Valid=464, Invalid=5086, Unknown=0, NotChecked=0, Total=5550 [2024-09-15 20:25:39,980 INFO L434 NwaCegarLoop]: 23 mSDtfsCounter, 115 mSDsluCounter, 283 mSDsCounter, 0 mSdLazyCounter, 3223 mSolverCounterSat, 29 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 121 SdHoareTripleChecker+Valid, 306 SdHoareTripleChecker+Invalid, 3252 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 29 IncrementalHoareTripleChecker+Valid, 3223 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:39,980 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [121 Valid, 306 Invalid, 3252 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [29 Valid, 3223 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2024-09-15 20:25:39,980 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 109 states. [2024-09-15 20:25:39,983 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 109 to 101. [2024-09-15 20:25:39,983 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 101 states, 67 states have (on average 1.1343283582089552) internal successors, (76), 68 states have internal predecessors, (76), 16 states have call successors, (16), 16 states have call predecessors, (16), 16 states have return successors, (16), 16 states have call predecessors, (16), 16 states have call successors, (16) [2024-09-15 20:25:39,984 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 101 states to 101 states and 108 transitions. [2024-09-15 20:25:39,984 INFO L78 Accepts]: Start accepts. Automaton has 101 states and 108 transitions. Word has length 68 [2024-09-15 20:25:39,984 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:39,985 INFO L474 AbstractCegarLoop]: Abstraction has 101 states and 108 transitions. [2024-09-15 20:25:39,985 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 53 states, 51 states have (on average 1.2549019607843137) internal successors, (64), 33 states have internal predecessors, (64), 19 states have call successors, (20), 11 states have call predecessors, (20), 11 states have return successors, (18), 11 states have call predecessors, (18), 9 states have call successors, (18) [2024-09-15 20:25:39,985 INFO L276 IsEmpty]: Start isEmpty. Operand 101 states and 108 transitions. [2024-09-15 20:25:39,986 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 72 [2024-09-15 20:25:39,986 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:39,986 INFO L216 NwaCegarLoop]: trace histogram [16, 15, 15, 7, 7, 7, 1, 1, 1, 1] [2024-09-15 20:25:40,001 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:40,186 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,12 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:40,187 INFO L399 AbstractCegarLoop]: === Iteration 13 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:40,187 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:40,187 INFO L85 PathProgramCache]: Analyzing trace with hash -330832572, now seen corresponding path program 10 times [2024-09-15 20:25:40,187 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:40,187 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1199568007] [2024-09-15 20:25:40,188 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:40,188 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:40,205 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:40,619 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 28 [2024-09-15 20:25:40,626 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:40,747 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:40,753 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:40,889 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:40,895 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:40,986 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:40,990 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:41,067 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:41,071 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:41,139 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:41,156 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:41,219 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:41,222 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:41,288 INFO L134 CoverageAnalysis]: Checked inductivity of 415 backedges. 6 proven. 358 refuted. 0 times theorem prover too weak. 51 trivial. 0 not checked. [2024-09-15 20:25:41,288 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:41,289 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1199568007] [2024-09-15 20:25:41,289 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1199568007] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:41,289 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1275838156] [2024-09-15 20:25:41,289 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2024-09-15 20:25:41,289 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:41,289 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:41,291 INFO L229 MonitoredProcess]: Starting monitored process 13 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:41,292 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Waiting until timeout for monitored process [2024-09-15 20:25:41,351 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2024-09-15 20:25:41,351 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:41,353 INFO L262 TraceCheckSpWp]: Trace formula consists of 204 conjuncts, 63 conjuncts are in the unsatisfiable core [2024-09-15 20:25:41,355 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:41,734 INFO L134 CoverageAnalysis]: Checked inductivity of 415 backedges. 120 proven. 70 refuted. 0 times theorem prover too weak. 225 trivial. 0 not checked. [2024-09-15 20:25:41,734 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:42,568 INFO L134 CoverageAnalysis]: Checked inductivity of 415 backedges. 120 proven. 119 refuted. 0 times theorem prover too weak. 176 trivial. 0 not checked. [2024-09-15 20:25:42,568 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1275838156] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:42,568 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:42,569 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [35, 17, 24] total 55 [2024-09-15 20:25:42,569 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1947243632] [2024-09-15 20:25:42,569 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:42,569 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 56 states [2024-09-15 20:25:42,569 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:42,570 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 56 interpolants. [2024-09-15 20:25:42,571 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=211, Invalid=2869, Unknown=0, NotChecked=0, Total=3080 [2024-09-15 20:25:42,571 INFO L87 Difference]: Start difference. First operand 101 states and 108 transitions. Second operand has 56 states, 54 states have (on average 1.2592592592592593) internal successors, (68), 35 states have internal predecessors, (68), 19 states have call successors, (20), 10 states have call predecessors, (20), 13 states have return successors, (21), 13 states have call predecessors, (21), 10 states have call successors, (21) [2024-09-15 20:25:43,956 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:43,956 INFO L93 Difference]: Finished difference Result 108 states and 107 transitions. [2024-09-15 20:25:43,957 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 38 states. [2024-09-15 20:25:43,957 INFO L78 Accepts]: Start accepts. Automaton has has 56 states, 54 states have (on average 1.2592592592592593) internal successors, (68), 35 states have internal predecessors, (68), 19 states have call successors, (20), 10 states have call predecessors, (20), 13 states have return successors, (21), 13 states have call predecessors, (21), 10 states have call successors, (21) Word has length 71 [2024-09-15 20:25:43,957 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:43,958 INFO L225 Difference]: With dead ends: 108 [2024-09-15 20:25:43,958 INFO L226 Difference]: Without dead ends: 108 [2024-09-15 20:25:43,960 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 218 GetRequests, 141 SyntacticMatches, 0 SemanticMatches, 77 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 815 ImplicationChecksByTransitivity, 1.3s TimeCoverageRelationStatistics Valid=511, Invalid=5651, Unknown=0, NotChecked=0, Total=6162 [2024-09-15 20:25:43,960 INFO L434 NwaCegarLoop]: 21 mSDtfsCounter, 106 mSDsluCounter, 264 mSDsCounter, 0 mSdLazyCounter, 3459 mSolverCounterSat, 26 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 113 SdHoareTripleChecker+Valid, 285 SdHoareTripleChecker+Invalid, 3485 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 26 IncrementalHoareTripleChecker+Valid, 3459 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:43,961 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [113 Valid, 285 Invalid, 3485 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [26 Valid, 3459 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2024-09-15 20:25:43,961 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 108 states. [2024-09-15 20:25:43,963 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 108 to 101. [2024-09-15 20:25:43,963 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 101 states, 67 states have (on average 1.1194029850746268) internal successors, (75), 68 states have internal predecessors, (75), 16 states have call successors, (16), 16 states have call predecessors, (16), 16 states have return successors, (16), 16 states have call predecessors, (16), 16 states have call successors, (16) [2024-09-15 20:25:43,964 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 101 states to 101 states and 107 transitions. [2024-09-15 20:25:43,964 INFO L78 Accepts]: Start accepts. Automaton has 101 states and 107 transitions. Word has length 71 [2024-09-15 20:25:43,964 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:43,964 INFO L474 AbstractCegarLoop]: Abstraction has 101 states and 107 transitions. [2024-09-15 20:25:43,965 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 56 states, 54 states have (on average 1.2592592592592593) internal successors, (68), 35 states have internal predecessors, (68), 19 states have call successors, (20), 10 states have call predecessors, (20), 13 states have return successors, (21), 13 states have call predecessors, (21), 10 states have call successors, (21) [2024-09-15 20:25:43,965 INFO L276 IsEmpty]: Start isEmpty. Operand 101 states and 107 transitions. [2024-09-15 20:25:43,965 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 75 [2024-09-15 20:25:43,966 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:43,966 INFO L216 NwaCegarLoop]: trace histogram [16, 15, 15, 8, 8, 8, 1, 1, 1, 1] [2024-09-15 20:25:43,983 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Ended with exit code 0 [2024-09-15 20:25:44,166 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 13 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2024-09-15 20:25:44,166 INFO L399 AbstractCegarLoop]: === Iteration 14 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:44,167 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:44,167 INFO L85 PathProgramCache]: Analyzing trace with hash 1116789691, now seen corresponding path program 11 times [2024-09-15 20:25:44,167 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:44,167 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1570146947] [2024-09-15 20:25:44,167 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:44,167 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:44,182 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:44,594 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-09-15 20:25:44,602 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:44,762 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:44,774 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:44,889 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:44,896 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:45,006 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:45,012 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:45,125 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:45,131 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:45,216 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:45,221 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:45,297 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:45,300 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:45,366 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:45,369 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:45,440 INFO L134 CoverageAnalysis]: Checked inductivity of 437 backedges. 7 proven. 360 refuted. 0 times theorem prover too weak. 70 trivial. 0 not checked. [2024-09-15 20:25:45,441 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:45,441 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1570146947] [2024-09-15 20:25:45,441 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1570146947] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:45,441 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [294878362] [2024-09-15 20:25:45,441 INFO L93 rtionOrderModulation]: Changing assertion order to INSIDE_LOOP_FIRST1 [2024-09-15 20:25:45,441 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:45,441 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:45,443 INFO L229 MonitoredProcess]: Starting monitored process 14 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:45,444 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Waiting until timeout for monitored process [2024-09-15 20:25:45,524 INFO L228 tOrderPrioritization]: Assert order INSIDE_LOOP_FIRST1 issued 16 check-sat command(s) [2024-09-15 20:25:45,524 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:45,527 INFO L262 TraceCheckSpWp]: Trace formula consists of 211 conjuncts, 87 conjuncts are in the unsatisfiable core [2024-09-15 20:25:45,531 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:45,668 INFO L134 CoverageAnalysis]: Checked inductivity of 437 backedges. 0 proven. 388 refuted. 0 times theorem prover too weak. 49 trivial. 0 not checked. [2024-09-15 20:25:45,669 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:46,022 INFO L134 CoverageAnalysis]: Checked inductivity of 437 backedges. 0 proven. 360 refuted. 0 times theorem prover too weak. 77 trivial. 0 not checked. [2024-09-15 20:25:46,022 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [294878362] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:46,022 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:46,022 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [35, 36, 34] total 37 [2024-09-15 20:25:46,022 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1757752983] [2024-09-15 20:25:46,022 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:46,023 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 38 states [2024-09-15 20:25:46,023 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:46,023 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 38 interpolants. [2024-09-15 20:25:46,024 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=78, Invalid=1328, Unknown=0, NotChecked=0, Total=1406 [2024-09-15 20:25:46,024 INFO L87 Difference]: Start difference. First operand 101 states and 107 transitions. Second operand has 38 states, 36 states have (on average 1.1944444444444444) internal successors, (43), 23 states have internal predecessors, (43), 12 states have call successors, (12), 9 states have call predecessors, (12), 9 states have return successors, (14), 8 states have call predecessors, (14), 4 states have call successors, (14) [2024-09-15 20:25:47,146 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:47,147 INFO L93 Difference]: Finished difference Result 107 states and 106 transitions. [2024-09-15 20:25:47,147 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 37 states. [2024-09-15 20:25:47,147 INFO L78 Accepts]: Start accepts. Automaton has has 38 states, 36 states have (on average 1.1944444444444444) internal successors, (43), 23 states have internal predecessors, (43), 12 states have call successors, (12), 9 states have call predecessors, (12), 9 states have return successors, (14), 8 states have call predecessors, (14), 4 states have call successors, (14) Word has length 74 [2024-09-15 20:25:47,147 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:47,148 INFO L225 Difference]: With dead ends: 107 [2024-09-15 20:25:47,148 INFO L226 Difference]: Without dead ends: 107 [2024-09-15 20:25:47,149 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 225 GetRequests, 166 SyntacticMatches, 0 SemanticMatches, 59 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 351 ImplicationChecksByTransitivity, 0.8s TimeCoverageRelationStatistics Valid=181, Invalid=3479, Unknown=0, NotChecked=0, Total=3660 [2024-09-15 20:25:47,149 INFO L434 NwaCegarLoop]: 19 mSDtfsCounter, 99 mSDsluCounter, 230 mSDsCounter, 0 mSdLazyCounter, 2640 mSolverCounterSat, 22 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 108 SdHoareTripleChecker+Valid, 249 SdHoareTripleChecker+Invalid, 2662 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 22 IncrementalHoareTripleChecker+Valid, 2640 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.8s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:47,150 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [108 Valid, 249 Invalid, 2662 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [22 Valid, 2640 Invalid, 0 Unknown, 0 Unchecked, 0.8s Time] [2024-09-15 20:25:47,150 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 107 states. [2024-09-15 20:25:47,152 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 107 to 101. [2024-09-15 20:25:47,152 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 101 states, 67 states have (on average 1.1044776119402986) internal successors, (74), 68 states have internal predecessors, (74), 16 states have call successors, (16), 16 states have call predecessors, (16), 16 states have return successors, (16), 16 states have call predecessors, (16), 16 states have call successors, (16) [2024-09-15 20:25:47,153 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 101 states to 101 states and 106 transitions. [2024-09-15 20:25:47,153 INFO L78 Accepts]: Start accepts. Automaton has 101 states and 106 transitions. Word has length 74 [2024-09-15 20:25:47,153 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:47,153 INFO L474 AbstractCegarLoop]: Abstraction has 101 states and 106 transitions. [2024-09-15 20:25:47,153 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 38 states, 36 states have (on average 1.1944444444444444) internal successors, (43), 23 states have internal predecessors, (43), 12 states have call successors, (12), 9 states have call predecessors, (12), 9 states have return successors, (14), 8 states have call predecessors, (14), 4 states have call successors, (14) [2024-09-15 20:25:47,153 INFO L276 IsEmpty]: Start isEmpty. Operand 101 states and 106 transitions. [2024-09-15 20:25:47,154 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 78 [2024-09-15 20:25:47,154 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:47,154 INFO L216 NwaCegarLoop]: trace histogram [16, 15, 15, 9, 9, 9, 1, 1, 1, 1] [2024-09-15 20:25:47,170 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:47,355 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 14 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable13 [2024-09-15 20:25:47,355 INFO L399 AbstractCegarLoop]: === Iteration 15 === Targeting idErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, idErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:47,355 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:47,355 INFO L85 PathProgramCache]: Analyzing trace with hash 1465007588, now seen corresponding path program 12 times [2024-09-15 20:25:47,355 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:47,356 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [522139951] [2024-09-15 20:25:47,356 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:47,356 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:47,373 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:47,767 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 22 [2024-09-15 20:25:47,776 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:47,912 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:47,920 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:48,056 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:48,064 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:48,178 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:48,184 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:48,284 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:48,289 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:48,377 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:48,383 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:48,460 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:48,464 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:48,536 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:48,540 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:48,602 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:48,605 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:48,673 INFO L134 CoverageAnalysis]: Checked inductivity of 462 backedges. 8 proven. 362 refuted. 0 times theorem prover too weak. 92 trivial. 0 not checked. [2024-09-15 20:25:48,673 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:48,673 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [522139951] [2024-09-15 20:25:48,673 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [522139951] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:48,673 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1289593171] [2024-09-15 20:25:48,673 INFO L93 rtionOrderModulation]: Changing assertion order to MIX_INSIDE_OUTSIDE [2024-09-15 20:25:48,673 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:48,673 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:48,675 INFO L229 MonitoredProcess]: Starting monitored process 15 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:48,677 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Waiting until timeout for monitored process [2024-09-15 20:25:48,729 INFO L228 tOrderPrioritization]: Assert order MIX_INSIDE_OUTSIDE issued 6 check-sat command(s) [2024-09-15 20:25:48,730 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:48,734 INFO L262 TraceCheckSpWp]: Trace formula consists of 99 conjuncts, 40 conjuncts are in the unsatisfiable core [2024-09-15 20:25:48,736 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:49,648 INFO L134 CoverageAnalysis]: Checked inductivity of 462 backedges. 62 proven. 60 refuted. 0 times theorem prover too weak. 340 trivial. 0 not checked. [2024-09-15 20:25:49,648 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:50,215 WARN L137 XnfTransformerHelper]: expecting exponential blowup for input size 16 [2024-09-15 20:25:50,911 WARN L176 XnfTransformerHelper]: Simplifying conjunction of 65536 disjunctions. This might take some time...