./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/recursive-simple/sum_10x0-1.c --full-output --witness-type correctness_witness --validate ../results/automizer-verification-files/SV-COMP24_unreach-call/sum_10x0-1.yml/witness-2.1.yml --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 04d6fb36 Calling Ultimate with: /root/.sdkman/candidates/java/current/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReachWitnessValidation.xml -i ../sv-benchmarks/c/recursive-simple/sum_10x0-1.c ../results/automizer-verification-files/SV-COMP24_unreach-call/sum_10x0-1.yml/witness-2.1.yml -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --traceabstraction.positions.where.we.compute.the.hoare.annotation None --- Real Ultimate output --- This is Ultimate 0.2.4-tmp.dk.referee-eval-04d6fb3-m [2024-09-15 20:25:14,480 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-09-15 20:25:14,569 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-09-15 20:25:14,574 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-09-15 20:25:14,576 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-09-15 20:25:14,610 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-09-15 20:25:14,610 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-09-15 20:25:14,611 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-09-15 20:25:14,612 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-09-15 20:25:14,613 INFO L153 SettingsManager]: * Use memory slicer=true [2024-09-15 20:25:14,613 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-09-15 20:25:14,616 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-09-15 20:25:14,617 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-09-15 20:25:14,617 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-09-15 20:25:14,618 INFO L153 SettingsManager]: * Use SBE=true [2024-09-15 20:25:14,618 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-09-15 20:25:14,618 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-09-15 20:25:14,619 INFO L153 SettingsManager]: * sizeof long=4 [2024-09-15 20:25:14,619 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-09-15 20:25:14,622 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-09-15 20:25:14,622 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-09-15 20:25:14,623 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-09-15 20:25:14,623 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-09-15 20:25:14,623 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-09-15 20:25:14,624 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-09-15 20:25:14,624 INFO L153 SettingsManager]: * sizeof long double=12 [2024-09-15 20:25:14,627 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-09-15 20:25:14,628 INFO L153 SettingsManager]: * Use constant arrays=true [2024-09-15 20:25:14,628 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-09-15 20:25:14,628 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-09-15 20:25:14,629 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-09-15 20:25:14,629 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-09-15 20:25:14,629 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-15 20:25:14,629 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-09-15 20:25:14,630 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-09-15 20:25:14,630 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-09-15 20:25:14,630 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-09-15 20:25:14,630 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-09-15 20:25:14,631 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-09-15 20:25:14,631 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-09-15 20:25:14,632 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-09-15 20:25:14,633 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-09-15 20:25:14,633 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> None [2024-09-15 20:25:14,990 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-09-15 20:25:15,011 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-09-15 20:25:15,015 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-09-15 20:25:15,016 INFO L270 PluginConnector]: Initializing Witness Parser... [2024-09-15 20:25:15,017 INFO L274 PluginConnector]: Witness Parser initialized [2024-09-15 20:25:15,019 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../results/automizer-verification-files/SV-COMP24_unreach-call/sum_10x0-1.yml/witness-2.1.yml [2024-09-15 20:25:15,083 INFO L270 PluginConnector]: Initializing CDTParser... [2024-09-15 20:25:15,084 INFO L274 PluginConnector]: CDTParser initialized [2024-09-15 20:25:15,085 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/recursive-simple/sum_10x0-1.c [2024-09-15 20:25:16,683 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-09-15 20:25:16,898 INFO L384 CDTParser]: Found 1 translation units. [2024-09-15 20:25:16,899 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/sum_10x0-1.c [2024-09-15 20:25:16,907 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/04dab26e4/b7207b295d154329a472d17c417c5273/FLAG55c95c0ed [2024-09-15 20:25:16,926 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/04dab26e4/b7207b295d154329a472d17c417c5273 [2024-09-15 20:25:16,927 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-09-15 20:25:16,929 INFO L133 ToolchainWalker]: Walking toolchain with 5 elements. [2024-09-15 20:25:16,932 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-09-15 20:25:16,932 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-09-15 20:25:16,938 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-09-15 20:25:16,939 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 15.09 08:25:15" (1/2) ... [2024-09-15 20:25:16,942 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@223e4984 and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:16, skipping insertion in model container [2024-09-15 20:25:16,944 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 15.09 08:25:15" (1/2) ... [2024-09-15 20:25:16,946 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.CACSL2BoogieTranslatorObserver@508b221f and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator CORRECTNESS_WITNESS 15.09 08:25:16, skipping insertion in model container [2024-09-15 20:25:16,946 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.09 08:25:16" (2/2) ... [2024-09-15 20:25:16,946 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@223e4984 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:16, skipping insertion in model container [2024-09-15 20:25:16,947 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.09 08:25:16" (2/2) ... [2024-09-15 20:25:16,954 INFO L93 nessWitnessExtractor]: Found the following entries in the witness: [2024-09-15 20:25:16,954 INFO L1541 ArrayList]: Function contract at [L5]: requires null, ensures (\result == ((long long) \old(n) + \old(m))) [2024-09-15 20:25:16,971 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-09-15 20:25:17,141 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/sum_10x0-1.c[481,494] [2024-09-15 20:25:17,149 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-15 20:25:17,164 INFO L200 MainTranslator]: Completed pre-run Start Parsing Global [2024-09-15 20:25:17,209 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursive-simple/sum_10x0-1.c[481,494] [2024-09-15 20:25:17,210 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-15 20:25:17,225 INFO L204 MainTranslator]: Completed translation [2024-09-15 20:25:17,226 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17 WrapperNode [2024-09-15 20:25:17,226 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-09-15 20:25:17,227 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-09-15 20:25:17,228 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-09-15 20:25:17,228 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-09-15 20:25:17,235 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,249 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,265 INFO L138 Inliner]: procedures = 12, calls = 9, calls flagged for inlining = 2, calls inlined = 2, statements flattened = 19 [2024-09-15 20:25:17,266 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-09-15 20:25:17,267 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-09-15 20:25:17,267 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-09-15 20:25:17,267 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-09-15 20:25:17,276 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,277 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,278 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,285 WARN L109 MemorySlicer]: Omit memory slicing because it failed with the following exception: Unsupported: Procedure sum is not part of the Ultimate memory model but has specification other that is not a ModifiesSpecification [2024-09-15 20:25:17,286 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,286 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,290 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,291 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,295 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,296 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,298 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-09-15 20:25:17,298 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-09-15 20:25:17,298 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-09-15 20:25:17,299 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-09-15 20:25:17,299 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (1/1) ... [2024-09-15 20:25:17,305 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-15 20:25:17,314 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:17,331 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-09-15 20:25:17,338 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-09-15 20:25:17,385 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-09-15 20:25:17,387 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-09-15 20:25:17,387 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-09-15 20:25:17,387 INFO L130 BoogieDeclarations]: Found specification of procedure sum [2024-09-15 20:25:17,388 INFO L138 BoogieDeclarations]: Found implementation of procedure sum [2024-09-15 20:25:17,388 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-09-15 20:25:17,457 INFO L242 CfgBuilder]: Building ICFG [2024-09-15 20:25:17,459 INFO L268 CfgBuilder]: Building CFG for each procedure with an implementation [2024-09-15 20:25:17,582 INFO L? ?]: Removed 13 outVars from TransFormulas that were not future-live. [2024-09-15 20:25:17,582 INFO L291 CfgBuilder]: Performing block encoding [2024-09-15 20:25:17,601 INFO L313 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-09-15 20:25:17,602 INFO L318 CfgBuilder]: Removed 0 assume(true) statements. [2024-09-15 20:25:17,602 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.09 08:25:17 BoogieIcfgContainer [2024-09-15 20:25:17,602 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-09-15 20:25:17,604 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-09-15 20:25:17,604 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-09-15 20:25:17,608 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-09-15 20:25:17,608 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "witness-2.1.yml de.uni_freiburg.informatik.ultimate.witnessparser CORRECTNESS_WITNESS 15.09 08:25:15" (1/4) ... [2024-09-15 20:25:17,609 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7d978b28 and model type witness-2.1.yml de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CORRECTNESS_WITNESS 15.09 08:25:17, skipping insertion in model container [2024-09-15 20:25:17,609 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 15.09 08:25:16" (2/4) ... [2024-09-15 20:25:17,611 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7d978b28 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 15.09 08:25:17, skipping insertion in model container [2024-09-15 20:25:17,611 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 08:25:17" (3/4) ... [2024-09-15 20:25:17,611 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7d978b28 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 15.09 08:25:17, skipping insertion in model container [2024-09-15 20:25:17,611 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.09 08:25:17" (4/4) ... [2024-09-15 20:25:17,613 INFO L112 eAbstractionObserver]: Analyzing ICFG sum_10x0-1.c [2024-09-15 20:25:17,629 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:None NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-09-15 20:25:17,630 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 2 error locations. [2024-09-15 20:25:17,677 INFO L335 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-09-15 20:25:17,684 INFO L336 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=None, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@6662b602, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-09-15 20:25:17,685 INFO L337 AbstractCegarLoop]: Starting to check reachability of 2 error locations. [2024-09-15 20:25:17,688 INFO L276 IsEmpty]: Start isEmpty. Operand has 15 states, 9 states have (on average 1.4444444444444444) internal successors, (13), 11 states have internal predecessors, (13), 2 states have call successors, (2), 1 states have call predecessors, (2), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-15 20:25:17,695 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 6 [2024-09-15 20:25:17,696 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:17,697 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1] [2024-09-15 20:25:17,697 INFO L399 AbstractCegarLoop]: === Iteration 1 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:17,702 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:17,703 INFO L85 PathProgramCache]: Analyzing trace with hash 56172024, now seen corresponding path program 1 times [2024-09-15 20:25:17,713 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:17,713 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2030436151] [2024-09-15 20:25:17,714 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:17,714 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:17,824 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:17,995 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:17,996 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:17,996 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2030436151] [2024-09-15 20:25:17,997 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2030436151] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 20:25:17,997 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-15 20:25:17,998 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-09-15 20:25:17,999 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1645598299] [2024-09-15 20:25:18,000 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 20:25:18,005 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-09-15 20:25:18,005 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:18,039 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-09-15 20:25:18,040 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-09-15 20:25:18,042 INFO L87 Difference]: Start difference. First operand has 15 states, 9 states have (on average 1.4444444444444444) internal successors, (13), 11 states have internal predecessors, (13), 2 states have call successors, (2), 1 states have call predecessors, (2), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Second operand has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:18,137 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:18,138 INFO L93 Difference]: Finished difference Result 22 states and 23 transitions. [2024-09-15 20:25:18,141 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-09-15 20:25:18,142 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 5 [2024-09-15 20:25:18,143 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:18,148 INFO L225 Difference]: With dead ends: 22 [2024-09-15 20:25:18,149 INFO L226 Difference]: Without dead ends: 20 [2024-09-15 20:25:18,151 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-09-15 20:25:18,155 INFO L434 NwaCegarLoop]: 9 mSDtfsCounter, 10 mSDsluCounter, 20 mSDsCounter, 0 mSdLazyCounter, 35 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 11 SdHoareTripleChecker+Valid, 29 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 35 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:18,157 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [11 Valid, 29 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 35 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-15 20:25:18,174 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 20 states. [2024-09-15 20:25:18,188 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 20 to 19. [2024-09-15 20:25:18,189 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 19 states, 12 states have (on average 1.25) internal successors, (15), 13 states have internal predecessors, (15), 3 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 20:25:18,191 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 19 states to 19 states and 21 transitions. [2024-09-15 20:25:18,192 INFO L78 Accepts]: Start accepts. Automaton has 19 states and 21 transitions. Word has length 5 [2024-09-15 20:25:18,192 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:18,192 INFO L474 AbstractCegarLoop]: Abstraction has 19 states and 21 transitions. [2024-09-15 20:25:18,193 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:18,193 INFO L276 IsEmpty]: Start isEmpty. Operand 19 states and 21 transitions. [2024-09-15 20:25:18,194 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 9 [2024-09-15 20:25:18,194 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:18,194 INFO L216 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:18,194 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-09-15 20:25:18,195 INFO L399 AbstractCegarLoop]: === Iteration 2 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:18,195 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:18,195 INFO L85 PathProgramCache]: Analyzing trace with hash -1615449573, now seen corresponding path program 1 times [2024-09-15 20:25:18,195 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:18,196 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1674858467] [2024-09-15 20:25:18,196 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:18,196 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:18,215 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:18,315 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:18,316 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:18,316 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1674858467] [2024-09-15 20:25:18,316 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1674858467] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:18,317 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1890411549] [2024-09-15 20:25:18,317 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:18,317 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:18,317 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:18,319 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:18,321 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-09-15 20:25:18,373 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:18,376 INFO L262 TraceCheckSpWp]: Trace formula consists of 50 conjuncts, 6 conjuncts are in the unsatisfiable core [2024-09-15 20:25:18,381 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:18,437 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:18,438 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:18,508 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:18,509 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1890411549] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:18,509 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:18,509 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [6, 6, 6] total 11 [2024-09-15 20:25:18,510 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [344587814] [2024-09-15 20:25:18,510 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:18,511 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2024-09-15 20:25:18,511 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:18,512 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2024-09-15 20:25:18,514 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=34, Invalid=98, Unknown=0, NotChecked=0, Total=132 [2024-09-15 20:25:18,515 INFO L87 Difference]: Start difference. First operand 19 states and 21 transitions. Second operand has 12 states, 10 states have (on average 1.1) internal successors, (11), 7 states have internal predecessors, (11), 4 states have call successors, (4), 4 states have call predecessors, (4), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:18,729 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:18,729 INFO L93 Difference]: Finished difference Result 44 states and 46 transitions. [2024-09-15 20:25:18,730 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2024-09-15 20:25:18,730 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 10 states have (on average 1.1) internal successors, (11), 7 states have internal predecessors, (11), 4 states have call successors, (4), 4 states have call predecessors, (4), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 8 [2024-09-15 20:25:18,731 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:18,732 INFO L225 Difference]: With dead ends: 44 [2024-09-15 20:25:18,736 INFO L226 Difference]: Without dead ends: 44 [2024-09-15 20:25:18,736 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 24 GetRequests, 10 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 24 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=68, Invalid=172, Unknown=0, NotChecked=0, Total=240 [2024-09-15 20:25:18,738 INFO L434 NwaCegarLoop]: 12 mSDtfsCounter, 40 mSDsluCounter, 52 mSDsCounter, 0 mSdLazyCounter, 120 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 42 SdHoareTripleChecker+Valid, 64 SdHoareTripleChecker+Invalid, 130 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 120 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:18,740 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [42 Valid, 64 Invalid, 130 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 120 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-15 20:25:18,741 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 44 states. [2024-09-15 20:25:18,747 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 44 to 37. [2024-09-15 20:25:18,749 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 37 states, 24 states have (on average 1.25) internal successors, (30), 25 states have internal predecessors, (30), 6 states have call successors, (6), 5 states have call predecessors, (6), 5 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-15 20:25:18,751 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 37 states to 37 states and 42 transitions. [2024-09-15 20:25:18,751 INFO L78 Accepts]: Start accepts. Automaton has 37 states and 42 transitions. Word has length 8 [2024-09-15 20:25:18,752 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:18,752 INFO L474 AbstractCegarLoop]: Abstraction has 37 states and 42 transitions. [2024-09-15 20:25:18,752 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 10 states have (on average 1.1) internal successors, (11), 7 states have internal predecessors, (11), 4 states have call successors, (4), 4 states have call predecessors, (4), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:18,754 INFO L276 IsEmpty]: Start isEmpty. Operand 37 states and 42 transitions. [2024-09-15 20:25:18,754 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-09-15 20:25:18,754 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:18,754 INFO L216 NwaCegarLoop]: trace histogram [5, 4, 4, 1, 1, 1, 1] [2024-09-15 20:25:18,767 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-09-15 20:25:18,955 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:18,956 INFO L399 AbstractCegarLoop]: === Iteration 3 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:18,956 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:18,956 INFO L85 PathProgramCache]: Analyzing trace with hash 1295816760, now seen corresponding path program 2 times [2024-09-15 20:25:18,957 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:18,957 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1797756899] [2024-09-15 20:25:18,957 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:18,957 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:18,987 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:19,250 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 0 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:19,251 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:19,252 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1797756899] [2024-09-15 20:25:19,252 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1797756899] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:19,252 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [182509652] [2024-09-15 20:25:19,252 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-15 20:25:19,254 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:19,254 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:19,256 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:19,258 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-09-15 20:25:19,299 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 1 check-sat command(s) [2024-09-15 20:25:19,300 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:19,301 INFO L262 TraceCheckSpWp]: Trace formula consists of 39 conjuncts, 7 conjuncts are in the unsatisfiable core [2024-09-15 20:25:19,302 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:19,365 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 4 proven. 0 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-09-15 20:25:19,366 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-15 20:25:19,366 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [182509652] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 20:25:19,366 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-09-15 20:25:19,367 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [12] total 15 [2024-09-15 20:25:19,367 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1784540325] [2024-09-15 20:25:19,367 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 20:25:19,368 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-09-15 20:25:19,368 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:19,369 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-09-15 20:25:19,369 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=47, Invalid=163, Unknown=0, NotChecked=0, Total=210 [2024-09-15 20:25:19,369 INFO L87 Difference]: Start difference. First operand 37 states and 42 transitions. Second operand has 4 states, 3 states have (on average 2.0) internal successors, (6), 4 states have internal predecessors, (6), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:19,418 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:19,419 INFO L93 Difference]: Finished difference Result 39 states and 45 transitions. [2024-09-15 20:25:19,419 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-09-15 20:25:19,420 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 2.0) internal successors, (6), 4 states have internal predecessors, (6), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 17 [2024-09-15 20:25:19,420 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:19,422 INFO L225 Difference]: With dead ends: 39 [2024-09-15 20:25:19,422 INFO L226 Difference]: Without dead ends: 39 [2024-09-15 20:25:19,422 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 29 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 32 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=51, Invalid=189, Unknown=0, NotChecked=0, Total=240 [2024-09-15 20:25:19,423 INFO L434 NwaCegarLoop]: 7 mSDtfsCounter, 5 mSDsluCounter, 6 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 6 SdHoareTripleChecker+Valid, 13 SdHoareTripleChecker+Invalid, 26 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:19,424 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [6 Valid, 13 Invalid, 26 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-15 20:25:19,425 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 39 states. [2024-09-15 20:25:19,436 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 39 to 38. [2024-09-15 20:25:19,437 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 38 states, 25 states have (on average 1.24) internal successors, (31), 26 states have internal predecessors, (31), 6 states have call successors, (6), 5 states have call predecessors, (6), 5 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-15 20:25:19,438 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 38 states to 38 states and 43 transitions. [2024-09-15 20:25:19,438 INFO L78 Accepts]: Start accepts. Automaton has 38 states and 43 transitions. Word has length 17 [2024-09-15 20:25:19,438 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:19,438 INFO L474 AbstractCegarLoop]: Abstraction has 38 states and 43 transitions. [2024-09-15 20:25:19,439 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 2.0) internal successors, (6), 4 states have internal predecessors, (6), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:19,439 INFO L276 IsEmpty]: Start isEmpty. Operand 38 states and 43 transitions. [2024-09-15 20:25:19,441 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2024-09-15 20:25:19,442 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:19,442 INFO L216 NwaCegarLoop]: trace histogram [5, 4, 4, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:19,461 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-09-15 20:25:19,646 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:19,647 INFO L399 AbstractCegarLoop]: === Iteration 4 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:19,648 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:19,648 INFO L85 PathProgramCache]: Analyzing trace with hash 511038535, now seen corresponding path program 1 times [2024-09-15 20:25:19,648 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:19,649 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1435895433] [2024-09-15 20:25:19,649 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:19,649 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:19,673 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:19,838 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2024-09-15 20:25:19,846 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:19,901 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 1 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:19,901 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:19,901 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1435895433] [2024-09-15 20:25:19,902 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1435895433] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:19,902 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1619291126] [2024-09-15 20:25:19,902 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:19,902 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:19,902 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:19,908 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:19,910 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-09-15 20:25:19,953 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:19,955 INFO L262 TraceCheckSpWp]: Trace formula consists of 91 conjuncts, 12 conjuncts are in the unsatisfiable core [2024-09-15 20:25:19,957 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:20,035 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 1 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:20,036 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:20,302 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 1 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:20,302 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1619291126] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:20,303 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:20,303 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 13, 13] total 25 [2024-09-15 20:25:20,303 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1901822871] [2024-09-15 20:25:20,303 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:20,304 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-09-15 20:25:20,305 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:20,306 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-09-15 20:25:20,307 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=114, Invalid=486, Unknown=0, NotChecked=0, Total=600 [2024-09-15 20:25:20,307 INFO L87 Difference]: Start difference. First operand 38 states and 43 transitions. Second operand has 25 states, 23 states have (on average 1.2173913043478262) internal successors, (28), 16 states have internal predecessors, (28), 10 states have call successors, (10), 9 states have call predecessors, (10), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-15 20:25:20,712 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:20,714 INFO L93 Difference]: Finished difference Result 71 states and 72 transitions. [2024-09-15 20:25:20,715 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2024-09-15 20:25:20,715 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 23 states have (on average 1.2173913043478262) internal successors, (28), 16 states have internal predecessors, (28), 10 states have call successors, (10), 9 states have call predecessors, (10), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) Word has length 20 [2024-09-15 20:25:20,716 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:20,716 INFO L225 Difference]: With dead ends: 71 [2024-09-15 20:25:20,717 INFO L226 Difference]: Without dead ends: 71 [2024-09-15 20:25:20,718 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 62 GetRequests, 28 SyntacticMatches, 1 SemanticMatches, 33 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 186 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=272, Invalid=918, Unknown=0, NotChecked=0, Total=1190 [2024-09-15 20:25:20,720 INFO L434 NwaCegarLoop]: 13 mSDtfsCounter, 127 mSDsluCounter, 60 mSDsCounter, 0 mSdLazyCounter, 291 mSolverCounterSat, 28 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 128 SdHoareTripleChecker+Valid, 73 SdHoareTripleChecker+Invalid, 319 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 28 IncrementalHoareTripleChecker+Valid, 291 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:20,721 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [128 Valid, 73 Invalid, 319 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [28 Valid, 291 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-15 20:25:20,724 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 71 states. [2024-09-15 20:25:20,730 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 71 to 63. [2024-09-15 20:25:20,731 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 63 states, 41 states have (on average 1.2439024390243902) internal successors, (51), 43 states have internal predecessors, (51), 10 states have call successors, (10), 9 states have call predecessors, (10), 10 states have return successors, (11), 10 states have call predecessors, (11), 10 states have call successors, (11) [2024-09-15 20:25:20,732 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 63 states to 63 states and 72 transitions. [2024-09-15 20:25:20,733 INFO L78 Accepts]: Start accepts. Automaton has 63 states and 72 transitions. Word has length 20 [2024-09-15 20:25:20,733 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:20,733 INFO L474 AbstractCegarLoop]: Abstraction has 63 states and 72 transitions. [2024-09-15 20:25:20,733 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 23 states have (on average 1.2173913043478262) internal successors, (28), 16 states have internal predecessors, (28), 10 states have call successors, (10), 9 states have call predecessors, (10), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-15 20:25:20,734 INFO L276 IsEmpty]: Start isEmpty. Operand 63 states and 72 transitions. [2024-09-15 20:25:20,734 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2024-09-15 20:25:20,734 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:20,735 INFO L216 NwaCegarLoop]: trace histogram [10, 9, 9, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:20,753 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:20,938 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:20,939 INFO L399 AbstractCegarLoop]: === Iteration 5 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:20,939 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:20,939 INFO L85 PathProgramCache]: Analyzing trace with hash 756088836, now seen corresponding path program 2 times [2024-09-15 20:25:20,940 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:20,940 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2044766054] [2024-09-15 20:25:20,940 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:20,940 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:20,963 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:21,296 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 28 [2024-09-15 20:25:21,300 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:21,355 INFO L134 CoverageAnalysis]: Checked inductivity of 127 backedges. 1 proven. 126 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:21,355 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:21,355 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2044766054] [2024-09-15 20:25:21,356 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2044766054] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:21,356 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1375290533] [2024-09-15 20:25:21,356 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-15 20:25:21,356 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:21,356 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:21,358 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:21,360 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-09-15 20:25:21,413 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-15 20:25:21,413 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:21,415 INFO L262 TraceCheckSpWp]: Trace formula consists of 146 conjuncts, 22 conjuncts are in the unsatisfiable core [2024-09-15 20:25:21,417 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:21,501 INFO L134 CoverageAnalysis]: Checked inductivity of 127 backedges. 1 proven. 126 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:21,501 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 20:25:21,801 INFO L134 CoverageAnalysis]: Checked inductivity of 127 backedges. 1 proven. 126 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 20:25:21,802 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1375290533] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 20:25:21,802 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 20:25:21,802 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [24, 23, 23] total 26 [2024-09-15 20:25:21,802 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [612932217] [2024-09-15 20:25:21,802 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 20:25:21,803 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 26 states [2024-09-15 20:25:21,803 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:21,803 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 26 interpolants. [2024-09-15 20:25:21,804 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=132, Invalid=518, Unknown=0, NotChecked=0, Total=650 [2024-09-15 20:25:21,804 INFO L87 Difference]: Start difference. First operand 63 states and 72 transitions. Second operand has 26 states, 25 states have (on average 1.16) internal successors, (29), 16 states have internal predecessors, (29), 10 states have call successors, (10), 10 states have call predecessors, (10), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-15 20:25:22,256 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:22,256 INFO L93 Difference]: Finished difference Result 78 states and 79 transitions. [2024-09-15 20:25:22,257 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 23 states. [2024-09-15 20:25:22,257 INFO L78 Accepts]: Start accepts. Automaton has has 26 states, 25 states have (on average 1.16) internal successors, (29), 16 states have internal predecessors, (29), 10 states have call successors, (10), 10 states have call predecessors, (10), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 35 [2024-09-15 20:25:22,257 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:22,260 INFO L225 Difference]: With dead ends: 78 [2024-09-15 20:25:22,261 INFO L226 Difference]: Without dead ends: 78 [2024-09-15 20:25:22,263 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 103 GetRequests, 48 SyntacticMatches, 20 SemanticMatches, 35 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 431 ImplicationChecksByTransitivity, 0.6s TimeCoverageRelationStatistics Valid=322, Invalid=1010, Unknown=0, NotChecked=0, Total=1332 [2024-09-15 20:25:22,264 INFO L434 NwaCegarLoop]: 14 mSDtfsCounter, 108 mSDsluCounter, 108 mSDsCounter, 0 mSdLazyCounter, 431 mSolverCounterSat, 25 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 109 SdHoareTripleChecker+Valid, 122 SdHoareTripleChecker+Invalid, 456 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 25 IncrementalHoareTripleChecker+Valid, 431 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:22,264 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [109 Valid, 122 Invalid, 456 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [25 Valid, 431 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-15 20:25:22,265 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 78 states. [2024-09-15 20:25:22,271 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 78 to 69. [2024-09-15 20:25:22,272 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 69 states, 45 states have (on average 1.2444444444444445) internal successors, (56), 47 states have internal predecessors, (56), 11 states have call successors, (11), 10 states have call predecessors, (11), 11 states have return successors, (12), 11 states have call predecessors, (12), 11 states have call successors, (12) [2024-09-15 20:25:22,273 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 69 states to 69 states and 79 transitions. [2024-09-15 20:25:22,273 INFO L78 Accepts]: Start accepts. Automaton has 69 states and 79 transitions. Word has length 35 [2024-09-15 20:25:22,273 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:22,273 INFO L474 AbstractCegarLoop]: Abstraction has 69 states and 79 transitions. [2024-09-15 20:25:22,274 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 26 states, 25 states have (on average 1.16) internal successors, (29), 16 states have internal predecessors, (29), 10 states have call successors, (10), 10 states have call predecessors, (10), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-15 20:25:22,274 INFO L276 IsEmpty]: Start isEmpty. Operand 69 states and 79 transitions. [2024-09-15 20:25:22,275 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2024-09-15 20:25:22,275 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:22,275 INFO L216 NwaCegarLoop]: trace histogram [11, 10, 10, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:22,295 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-09-15 20:25:22,479 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:22,480 INFO L399 AbstractCegarLoop]: === Iteration 6 === Targeting sumErr0ENSURES_VIOLATIONPOST_CONDITION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:22,480 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:22,480 INFO L85 PathProgramCache]: Analyzing trace with hash -1809419033, now seen corresponding path program 3 times [2024-09-15 20:25:22,480 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:22,480 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1530525895] [2024-09-15 20:25:22,481 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:22,481 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:22,504 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:22,983 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 31 [2024-09-15 20:25:22,987 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,036 INFO L134 CoverageAnalysis]: Checked inductivity of 156 backedges. 126 proven. 29 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-09-15 20:25:23,037 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:23,037 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1530525895] [2024-09-15 20:25:23,037 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1530525895] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 20:25:23,039 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1929966791] [2024-09-15 20:25:23,039 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-15 20:25:23,039 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 20:25:23,040 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 20:25:23,041 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 20:25:23,048 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-09-15 20:25:23,088 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 3 check-sat command(s) [2024-09-15 20:25:23,089 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 20:25:23,090 INFO L262 TraceCheckSpWp]: Trace formula consists of 69 conjuncts, 19 conjuncts are in the unsatisfiable core [2024-09-15 20:25:23,092 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 20:25:23,130 INFO L134 CoverageAnalysis]: Checked inductivity of 156 backedges. 27 proven. 0 refuted. 0 times theorem prover too weak. 129 trivial. 0 not checked. [2024-09-15 20:25:23,130 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-15 20:25:23,130 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1929966791] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 20:25:23,130 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-09-15 20:25:23,130 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [26] total 26 [2024-09-15 20:25:23,131 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [310411273] [2024-09-15 20:25:23,131 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 20:25:23,131 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-09-15 20:25:23,131 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:23,132 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-09-15 20:25:23,132 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=142, Invalid=560, Unknown=0, NotChecked=0, Total=702 [2024-09-15 20:25:23,132 INFO L87 Difference]: Start difference. First operand 69 states and 79 transitions. Second operand has 5 states, 4 states have (on average 2.25) internal successors, (9), 4 states have internal predecessors, (9), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-15 20:25:23,175 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:23,175 INFO L93 Difference]: Finished difference Result 68 states and 69 transitions. [2024-09-15 20:25:23,176 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-09-15 20:25:23,176 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 2.25) internal successors, (9), 4 states have internal predecessors, (9), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 38 [2024-09-15 20:25:23,176 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:23,177 INFO L225 Difference]: With dead ends: 68 [2024-09-15 20:25:23,177 INFO L226 Difference]: Without dead ends: 68 [2024-09-15 20:25:23,177 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 66 GetRequests, 39 SyntacticMatches, 0 SemanticMatches, 27 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 190 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=152, Invalid=660, Unknown=0, NotChecked=0, Total=812 [2024-09-15 20:25:23,178 INFO L434 NwaCegarLoop]: 6 mSDtfsCounter, 2 mSDsluCounter, 9 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 15 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:23,178 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 15 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-15 20:25:23,179 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 68 states. [2024-09-15 20:25:23,183 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 68 to 68. [2024-09-15 20:25:23,184 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 68 states, 45 states have (on average 1.0222222222222221) internal successors, (46), 46 states have internal predecessors, (46), 11 states have call successors, (11), 10 states have call predecessors, (11), 11 states have return successors, (12), 11 states have call predecessors, (12), 11 states have call successors, (12) [2024-09-15 20:25:23,185 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 68 states to 68 states and 69 transitions. [2024-09-15 20:25:23,185 INFO L78 Accepts]: Start accepts. Automaton has 68 states and 69 transitions. Word has length 38 [2024-09-15 20:25:23,185 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:23,185 INFO L474 AbstractCegarLoop]: Abstraction has 68 states and 69 transitions. [2024-09-15 20:25:23,185 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 2.25) internal successors, (9), 4 states have internal predecessors, (9), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-15 20:25:23,186 INFO L276 IsEmpty]: Start isEmpty. Operand 68 states and 69 transitions. [2024-09-15 20:25:23,187 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 70 [2024-09-15 20:25:23,187 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 20:25:23,187 INFO L216 NwaCegarLoop]: trace histogram [11, 11, 10, 10, 10, 10, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 20:25:23,204 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-09-15 20:25:23,390 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2024-09-15 20:25:23,390 INFO L399 AbstractCegarLoop]: === Iteration 7 === Targeting ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION === [ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION, sumErr0ENSURES_VIOLATIONPOST_CONDITION] === [2024-09-15 20:25:23,391 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 20:25:23,391 INFO L85 PathProgramCache]: Analyzing trace with hash -1394136637, now seen corresponding path program 1 times [2024-09-15 20:25:23,391 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 20:25:23,391 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [917547871] [2024-09-15 20:25:23,391 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 20:25:23,391 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 20:25:23,415 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,553 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-09-15 20:25:23,571 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,626 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:23,632 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,646 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:23,650 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,660 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:23,664 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,672 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:23,675 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,682 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:23,686 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,691 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:23,694 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,699 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:23,702 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,707 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:23,709 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,714 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:23,716 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,719 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-15 20:25:23,722 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 20:25:23,726 INFO L134 CoverageAnalysis]: Checked inductivity of 310 backedges. 10 proven. 0 refuted. 0 times theorem prover too weak. 300 trivial. 0 not checked. [2024-09-15 20:25:23,727 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 20:25:23,727 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [917547871] [2024-09-15 20:25:23,728 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [917547871] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 20:25:23,728 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-15 20:25:23,728 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-09-15 20:25:23,728 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [245214032] [2024-09-15 20:25:23,728 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 20:25:23,728 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-09-15 20:25:23,730 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 20:25:23,730 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-09-15 20:25:23,730 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-09-15 20:25:23,731 INFO L87 Difference]: Start difference. First operand 68 states and 69 transitions. Second operand has 5 states, 4 states have (on average 2.5) internal successors, (10), 4 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-15 20:25:23,755 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 20:25:23,755 INFO L93 Difference]: Finished difference Result 66 states and 67 transitions. [2024-09-15 20:25:23,755 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-09-15 20:25:23,756 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 2.5) internal successors, (10), 4 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 69 [2024-09-15 20:25:23,756 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 20:25:23,756 INFO L225 Difference]: With dead ends: 66 [2024-09-15 20:25:23,756 INFO L226 Difference]: Without dead ends: 0 [2024-09-15 20:25:23,757 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 27 GetRequests, 24 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-09-15 20:25:23,757 INFO L434 NwaCegarLoop]: 7 mSDtfsCounter, 0 mSDsluCounter, 15 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 22 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-15 20:25:23,758 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 22 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-15 20:25:23,758 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-09-15 20:25:23,758 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-09-15 20:25:23,758 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-09-15 20:25:23,758 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-09-15 20:25:23,759 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 69 [2024-09-15 20:25:23,759 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 20:25:23,759 INFO L474 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-09-15 20:25:23,759 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 2.5) internal successors, (10), 4 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-15 20:25:23,759 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-09-15 20:25:23,759 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-09-15 20:25:23,762 INFO L785 garLoopResultBuilder]: Registering result SAFE for location ULTIMATE.startErr0ASSERT_VIOLATIONERROR_FUNCTION (1 of 2 remaining) [2024-09-15 20:25:23,762 INFO L785 garLoopResultBuilder]: Registering result SAFE for location sumErr0ENSURES_VIOLATIONPOST_CONDITION (0 of 2 remaining) [2024-09-15 20:25:23,762 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-09-15 20:25:23,765 INFO L408 BasicCegarLoop]: Path program histogram: [3, 2, 1, 1] [2024-09-15 20:25:23,769 INFO L165 ceAbstractionStarter]: Computing trace abstraction results [2024-09-15 20:25:23,772 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 15.09 08:25:23 BoogieIcfgContainer [2024-09-15 20:25:23,772 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-09-15 20:25:23,772 INFO L158 Benchmark]: Toolchain (without parser) took 6843.82ms. Allocated memory was 69.2MB in the beginning and 123.7MB in the end (delta: 54.5MB). Free memory was 35.9MB in the beginning and 64.0MB in the end (delta: -28.1MB). Peak memory consumption was 25.7MB. Max. memory is 16.1GB. [2024-09-15 20:25:23,772 INFO L158 Benchmark]: Witness Parser took 0.26ms. Allocated memory is still 54.5MB. Free memory is still 38.0MB. There was no memory consumed. Max. memory is 16.1GB. [2024-09-15 20:25:23,772 INFO L158 Benchmark]: CDTParser took 0.93ms. Allocated memory is still 54.5MB. Free memory is still 36.0MB. There was no memory consumed. Max. memory is 16.1GB. [2024-09-15 20:25:23,773 INFO L158 Benchmark]: CACSL2BoogieTranslator took 294.47ms. Allocated memory is still 69.2MB. Free memory was 35.6MB in the beginning and 23.0MB in the end (delta: 12.6MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. [2024-09-15 20:25:23,773 INFO L158 Benchmark]: Boogie Procedure Inliner took 38.43ms. Allocated memory is still 69.2MB. Free memory was 23.0MB in the beginning and 49.2MB in the end (delta: -26.2MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2024-09-15 20:25:23,773 INFO L158 Benchmark]: Boogie Preprocessor took 30.75ms. Allocated memory is still 69.2MB. Free memory was 49.2MB in the beginning and 47.9MB in the end (delta: 1.3MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-09-15 20:25:23,773 INFO L158 Benchmark]: RCFGBuilder took 304.17ms. Allocated memory is still 69.2MB. Free memory was 47.9MB in the beginning and 37.8MB in the end (delta: 10.1MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-09-15 20:25:23,774 INFO L158 Benchmark]: TraceAbstraction took 6167.37ms. Allocated memory was 69.2MB in the beginning and 123.7MB in the end (delta: 54.5MB). Free memory was 37.1MB in the beginning and 64.0MB in the end (delta: -26.9MB). Peak memory consumption was 26.2MB. Max. memory is 16.1GB. [2024-09-15 20:25:23,775 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * Witness Parser took 0.26ms. Allocated memory is still 54.5MB. Free memory is still 38.0MB. There was no memory consumed. Max. memory is 16.1GB. * CDTParser took 0.93ms. Allocated memory is still 54.5MB. Free memory is still 36.0MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 294.47ms. Allocated memory is still 69.2MB. Free memory was 35.6MB in the beginning and 23.0MB in the end (delta: 12.6MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 38.43ms. Allocated memory is still 69.2MB. Free memory was 23.0MB in the beginning and 49.2MB in the end (delta: -26.2MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * Boogie Preprocessor took 30.75ms. Allocated memory is still 69.2MB. Free memory was 49.2MB in the beginning and 47.9MB in the end (delta: 1.3MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 304.17ms. Allocated memory is still 69.2MB. Free memory was 47.9MB in the beginning and 37.8MB in the end (delta: 10.1MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * TraceAbstraction took 6167.37ms. Allocated memory was 69.2MB in the beginning and 123.7MB in the end (delta: 54.5MB). Free memory was 37.1MB in the beginning and 64.0MB in the end (delta: -26.9MB). Peak memory consumption was 26.2MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 18]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - PositiveResult [Line: 5]: procedure postcondition always holds For all program executions holds that procedure postcondition always holds at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 2 procedures, 15 locations, 2 error locations. Started 1 CEGAR loops. OverallTime: 6.1s, OverallIterations: 7, TraceHistogramMax: 11, PathProgramHistogramMax: 3, EmptinessCheckTime: 0.0s, AutomataDifference: 1.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 299 SdHoareTripleChecker+Valid, 0.7s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 292 mSDsluCounter, 338 SdHoareTripleChecker+Invalid, 0.6s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 270 mSDsCounter, 66 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 954 IncrementalHoareTripleChecker+Invalid, 1020 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 66 mSolverCounterUnsat, 68 mSDtfsCounter, 954 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 316 GetRequests, 165 SyntacticMatches, 21 SemanticMatches, 130 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 863 ImplicationChecksByTransitivity, 1.6s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=69occurred in iteration=5, InterpolantAutomatonStates: 77, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 7 MinimizatonAttempts, 26 StatesRemovedByMinimization, 5 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 3.0s InterpolantComputationTime, 310 NumberOfCodeBlocks, 274 NumberOfCodeBlocksAsserted, 15 NumberOfCheckSat, 358 ConstructedInterpolants, 0 QuantifiedInterpolants, 876 SizeOfPredicates, 17 NumberOfNonLiveVariables, 395 ConjunctsInSsa, 66 ConjunctsInUnsatCore, 15 InterpolantComputations, 4 PerfectInterpolantSequences, 625/1142 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 2 specifications checked. All of them hold RESULT: Ultimate proved your program to be correct! [2024-09-15 20:25:23,802 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE