./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/loops/sum_array-2-2.i --full-output --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --witnessprinter.yaml.format.version 2.1 --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 04d6fb36 Calling Ultimate with: /root/.sdkman/candidates/java/current/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReach.xml -i ../sv-benchmarks/c/loops/sum_array-2-2.i -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/certificate-witnesses-artifact/automizer --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 0cf9175e436d0e00a51b884dabf87739d3176e3315a908e56fcba99730a10796 --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --witnessprinter.yaml.format.version 2.1 --- Real Ultimate output --- This is Ultimate 0.2.4-tmp.dk.referee-eval-04d6fb3-m [2024-09-15 18:37:18,298 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-09-15 18:37:18,368 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-09-15 18:37:18,372 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-09-15 18:37:18,373 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-09-15 18:37:18,398 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-09-15 18:37:18,399 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-09-15 18:37:18,400 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-09-15 18:37:18,401 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-09-15 18:37:18,401 INFO L153 SettingsManager]: * Use memory slicer=true [2024-09-15 18:37:18,401 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-09-15 18:37:18,402 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-09-15 18:37:18,402 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-09-15 18:37:18,403 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-09-15 18:37:18,403 INFO L153 SettingsManager]: * Use SBE=true [2024-09-15 18:37:18,404 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-09-15 18:37:18,404 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-09-15 18:37:18,405 INFO L153 SettingsManager]: * sizeof long=4 [2024-09-15 18:37:18,405 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-09-15 18:37:18,405 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-09-15 18:37:18,405 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-09-15 18:37:18,408 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-09-15 18:37:18,409 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-09-15 18:37:18,409 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-09-15 18:37:18,409 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-09-15 18:37:18,409 INFO L153 SettingsManager]: * sizeof long double=12 [2024-09-15 18:37:18,410 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-09-15 18:37:18,410 INFO L153 SettingsManager]: * Use constant arrays=true [2024-09-15 18:37:18,410 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-09-15 18:37:18,411 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-09-15 18:37:18,411 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-09-15 18:37:18,411 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-09-15 18:37:18,411 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-15 18:37:18,412 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-09-15 18:37:18,412 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-09-15 18:37:18,412 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-09-15 18:37:18,412 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-09-15 18:37:18,413 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-09-15 18:37:18,413 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-09-15 18:37:18,413 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-09-15 18:37:18,413 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-09-15 18:37:18,414 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-09-15 18:37:18,414 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/certificate-witnesses-artifact/automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 0cf9175e436d0e00a51b884dabf87739d3176e3315a908e56fcba99730a10796 Applying setting for plugin de.uni_freiburg.informatik.ultimate.boogie.procedureinliner: Inline calls to implemented procedures -> NEVER Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> All Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: YAML Format version -> 2.1 [2024-09-15 18:37:18,761 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-09-15 18:37:18,781 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-09-15 18:37:18,784 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-09-15 18:37:18,785 INFO L270 PluginConnector]: Initializing CDTParser... [2024-09-15 18:37:18,785 INFO L274 PluginConnector]: CDTParser initialized [2024-09-15 18:37:18,786 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/loops/sum_array-2-2.i [2024-09-15 18:37:20,304 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-09-15 18:37:20,506 INFO L384 CDTParser]: Found 1 translation units. [2024-09-15 18:37:20,506 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/loops/sum_array-2-2.i [2024-09-15 18:37:20,518 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/83150f256/2aa497fbb94d49eaa480b72458385700/FLAG9ebe9762e [2024-09-15 18:37:20,535 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/83150f256/2aa497fbb94d49eaa480b72458385700 [2024-09-15 18:37:20,538 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-09-15 18:37:20,540 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-09-15 18:37:20,542 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-09-15 18:37:20,543 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-09-15 18:37:20,548 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-09-15 18:37:20,548 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,551 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@b9949c1 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20, skipping insertion in model container [2024-09-15 18:37:20,551 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,573 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-09-15 18:37:20,773 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/loops/sum_array-2-2.i[940,953] [2024-09-15 18:37:20,800 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-15 18:37:20,810 INFO L200 MainTranslator]: Completed pre-run [2024-09-15 18:37:20,823 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/loops/sum_array-2-2.i[940,953] [2024-09-15 18:37:20,840 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-15 18:37:20,856 INFO L204 MainTranslator]: Completed translation [2024-09-15 18:37:20,857 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20 WrapperNode [2024-09-15 18:37:20,857 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-09-15 18:37:20,858 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-09-15 18:37:20,859 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-09-15 18:37:20,859 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-09-15 18:37:20,865 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,875 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,885 INFO L138 Inliner]: procedures = 18, calls = 37, calls flagged for inlining = 0, calls inlined = 0, statements flattened = 0 [2024-09-15 18:37:20,889 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-09-15 18:37:20,890 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-09-15 18:37:20,890 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-09-15 18:37:20,890 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-09-15 18:37:20,901 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,902 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,904 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,926 INFO L175 MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 5, 2, 5]. 36 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2, 0, 0, 0]. The 3 writes are split as follows [0, 1, 1, 1]. [2024-09-15 18:37:20,929 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,929 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,940 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,947 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,949 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,953 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,955 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-09-15 18:37:20,960 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-09-15 18:37:20,960 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-09-15 18:37:20,960 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-09-15 18:37:20,961 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (1/1) ... [2024-09-15 18:37:20,968 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-15 18:37:20,979 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 18:37:20,997 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-09-15 18:37:21,004 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-09-15 18:37:21,047 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-09-15 18:37:21,047 INFO L130 BoogieDeclarations]: Found specification of procedure main [2024-09-15 18:37:21,047 INFO L138 BoogieDeclarations]: Found implementation of procedure main [2024-09-15 18:37:21,047 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-09-15 18:37:21,047 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-09-15 18:37:21,047 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2024-09-15 18:37:21,047 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2024-09-15 18:37:21,047 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnStack [2024-09-15 18:37:21,048 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#0 [2024-09-15 18:37:21,048 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#1 [2024-09-15 18:37:21,048 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#2 [2024-09-15 18:37:21,048 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#3 [2024-09-15 18:37:21,048 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.init [2024-09-15 18:37:21,048 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.init [2024-09-15 18:37:21,048 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-09-15 18:37:21,049 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-09-15 18:37:21,049 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#0 [2024-09-15 18:37:21,049 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#1 [2024-09-15 18:37:21,049 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#2 [2024-09-15 18:37:21,049 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#3 [2024-09-15 18:37:21,049 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_assert [2024-09-15 18:37:21,050 INFO L138 BoogieDeclarations]: Found implementation of procedure __VERIFIER_assert [2024-09-15 18:37:21,050 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2024-09-15 18:37:21,124 INFO L242 CfgBuilder]: Building ICFG [2024-09-15 18:37:21,126 INFO L268 CfgBuilder]: Building CFG for each procedure with an implementation [2024-09-15 18:37:21,369 INFO L? ?]: Removed 11 outVars from TransFormulas that were not future-live. [2024-09-15 18:37:21,369 INFO L291 CfgBuilder]: Performing block encoding [2024-09-15 18:37:21,407 INFO L313 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-09-15 18:37:21,411 INFO L318 CfgBuilder]: Removed 4 assume(true) statements. [2024-09-15 18:37:21,411 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.09 06:37:21 BoogieIcfgContainer [2024-09-15 18:37:21,411 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-09-15 18:37:21,413 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-09-15 18:37:21,414 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-09-15 18:37:21,417 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-09-15 18:37:21,417 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 15.09 06:37:20" (1/3) ... [2024-09-15 18:37:21,418 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@232f2006 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 15.09 06:37:21, skipping insertion in model container [2024-09-15 18:37:21,418 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.09 06:37:20" (2/3) ... [2024-09-15 18:37:21,418 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@232f2006 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 15.09 06:37:21, skipping insertion in model container [2024-09-15 18:37:21,420 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.09 06:37:21" (3/3) ... [2024-09-15 18:37:21,421 INFO L112 eAbstractionObserver]: Analyzing ICFG sum_array-2-2.i [2024-09-15 18:37:21,436 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:All NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-09-15 18:37:21,438 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-09-15 18:37:21,500 INFO L335 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-09-15 18:37:21,508 INFO L336 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@51875ba8, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-09-15 18:37:21,509 INFO L337 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-09-15 18:37:21,513 INFO L276 IsEmpty]: Start isEmpty. Operand has 30 states, 22 states have (on average 1.6818181818181819) internal successors, (37), 23 states have internal predecessors, (37), 3 states have call successors, (3), 3 states have call predecessors, (3), 3 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 18:37:21,520 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-09-15 18:37:21,520 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:37:21,522 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:37:21,522 INFO L399 AbstractCegarLoop]: === Iteration 1 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:37:21,528 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:21,528 INFO L85 PathProgramCache]: Analyzing trace with hash 868990998, now seen corresponding path program 1 times [2024-09-15 18:37:21,537 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:37:21,537 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1234037592] [2024-09-15 18:37:21,538 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:37:21,538 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:37:21,651 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:21,725 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:37:21,729 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:21,737 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 18:37:21,738 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:37:21,738 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1234037592] [2024-09-15 18:37:21,739 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1234037592] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 18:37:21,739 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-15 18:37:21,739 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-09-15 18:37:21,741 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [93952555] [2024-09-15 18:37:21,742 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 18:37:21,746 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-09-15 18:37:21,746 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:37:21,767 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-09-15 18:37:21,769 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-09-15 18:37:21,771 INFO L87 Difference]: Start difference. First operand has 30 states, 22 states have (on average 1.6818181818181819) internal successors, (37), 23 states have internal predecessors, (37), 3 states have call successors, (3), 3 states have call predecessors, (3), 3 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-15 18:37:21,812 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:37:21,812 INFO L93 Difference]: Finished difference Result 51 states and 73 transitions. [2024-09-15 18:37:21,814 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-09-15 18:37:21,815 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2024-09-15 18:37:21,815 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:37:21,821 INFO L225 Difference]: With dead ends: 51 [2024-09-15 18:37:21,821 INFO L226 Difference]: Without dead ends: 25 [2024-09-15 18:37:21,824 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-09-15 18:37:21,827 INFO L434 NwaCegarLoop]: 34 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 34 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-15 18:37:21,830 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 34 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-15 18:37:21,845 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 25 states. [2024-09-15 18:37:21,861 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 25 to 25. [2024-09-15 18:37:21,863 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 25 states, 19 states have (on average 1.2105263157894737) internal successors, (23), 19 states have internal predecessors, (23), 3 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-15 18:37:21,865 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 25 states to 25 states and 28 transitions. [2024-09-15 18:37:21,867 INFO L78 Accepts]: Start accepts. Automaton has 25 states and 28 transitions. Word has length 17 [2024-09-15 18:37:21,869 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:37:21,869 INFO L474 AbstractCegarLoop]: Abstraction has 25 states and 28 transitions. [2024-09-15 18:37:21,869 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-15 18:37:21,870 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:21,870 INFO L276 IsEmpty]: Start isEmpty. Operand 25 states and 28 transitions. [2024-09-15 18:37:21,871 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-09-15 18:37:21,871 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:37:21,871 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:37:21,871 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-09-15 18:37:21,872 INFO L399 AbstractCegarLoop]: === Iteration 2 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:37:21,873 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:21,875 INFO L85 PathProgramCache]: Analyzing trace with hash 256506248, now seen corresponding path program 1 times [2024-09-15 18:37:21,877 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:37:21,877 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1684221134] [2024-09-15 18:37:21,877 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:37:21,877 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:37:21,971 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:22,284 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:37:22,287 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:22,293 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 18:37:22,297 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:37:22,297 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1684221134] [2024-09-15 18:37:22,298 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1684221134] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-15 18:37:22,298 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-15 18:37:22,298 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-09-15 18:37:22,298 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [447639748] [2024-09-15 18:37:22,298 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-15 18:37:22,299 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-09-15 18:37:22,299 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:37:22,300 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-09-15 18:37:22,300 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-09-15 18:37:22,301 INFO L87 Difference]: Start difference. First operand 25 states and 28 transitions. Second operand has 5 states, 5 states have (on average 2.6) internal successors, (13), 5 states have internal predecessors, (13), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-15 18:37:22,436 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:37:22,440 INFO L93 Difference]: Finished difference Result 56 states and 67 transitions. [2024-09-15 18:37:22,441 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-09-15 18:37:22,441 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 2.6) internal successors, (13), 5 states have internal predecessors, (13), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2024-09-15 18:37:22,442 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:37:22,443 INFO L225 Difference]: With dead ends: 56 [2024-09-15 18:37:22,443 INFO L226 Difference]: Without dead ends: 35 [2024-09-15 18:37:22,444 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-09-15 18:37:22,445 INFO L434 NwaCegarLoop]: 15 mSDtfsCounter, 5 mSDsluCounter, 33 mSDsCounter, 0 mSdLazyCounter, 60 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 6 SdHoareTripleChecker+Valid, 48 SdHoareTripleChecker+Invalid, 69 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 60 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-15 18:37:22,446 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [6 Valid, 48 Invalid, 69 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 60 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-15 18:37:22,446 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 35 states. [2024-09-15 18:37:22,452 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 35 to 28. [2024-09-15 18:37:22,452 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 28 states, 22 states have (on average 1.1818181818181819) internal successors, (26), 22 states have internal predecessors, (26), 3 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-09-15 18:37:22,453 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 28 states to 28 states and 31 transitions. [2024-09-15 18:37:22,454 INFO L78 Accepts]: Start accepts. Automaton has 28 states and 31 transitions. Word has length 17 [2024-09-15 18:37:22,454 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:37:22,454 INFO L474 AbstractCegarLoop]: Abstraction has 28 states and 31 transitions. [2024-09-15 18:37:22,455 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 2.6) internal successors, (13), 5 states have internal predecessors, (13), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-15 18:37:22,455 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:22,458 INFO L276 IsEmpty]: Start isEmpty. Operand 28 states and 31 transitions. [2024-09-15 18:37:22,459 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2024-09-15 18:37:22,459 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:37:22,459 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:37:22,459 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-09-15 18:37:22,459 INFO L399 AbstractCegarLoop]: === Iteration 3 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:37:22,459 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:22,460 INFO L85 PathProgramCache]: Analyzing trace with hash 1240316604, now seen corresponding path program 1 times [2024-09-15 18:37:22,460 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:37:22,460 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1149741444] [2024-09-15 18:37:22,460 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:37:22,460 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:37:22,563 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:23,640 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:37:23,642 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:23,645 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-15 18:37:23,646 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:37:23,646 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1149741444] [2024-09-15 18:37:23,646 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1149741444] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:37:23,651 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [258411106] [2024-09-15 18:37:23,651 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:37:23,652 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:37:23,652 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 18:37:23,655 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 18:37:23,657 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-09-15 18:37:23,750 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:23,753 INFO L262 TraceCheckSpWp]: Trace formula consists of 130 conjuncts, 26 conjuncts are in the unsatisfiable core [2024-09-15 18:37:23,760 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 18:37:23,858 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 17 [2024-09-15 18:37:23,937 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 25 treesize of output 17 [2024-09-15 18:37:23,946 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 13 [2024-09-15 18:37:23,952 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 9 [2024-09-15 18:37:23,985 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-09-15 18:37:23,985 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 18:37:24,245 INFO L349 Elim1Store]: treesize reduction 5, result has 50.0 percent of original size [2024-09-15 18:37:24,245 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 0 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 83 treesize of output 63 [2024-09-15 18:37:24,262 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:37:24,263 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 46 treesize of output 25 [2024-09-15 18:37:24,270 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 44 treesize of output 40 [2024-09-15 18:37:24,290 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:37:24,291 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 2 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 40 treesize of output 87 [2024-09-15 18:37:24,352 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-15 18:37:24,353 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [258411106] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 18:37:24,354 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 18:37:24,354 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 9, 8] total 17 [2024-09-15 18:37:24,354 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1114187619] [2024-09-15 18:37:24,354 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 18:37:24,355 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 17 states [2024-09-15 18:37:24,356 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:37:24,357 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 17 interpolants. [2024-09-15 18:37:24,358 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=55, Invalid=217, Unknown=0, NotChecked=0, Total=272 [2024-09-15 18:37:24,360 INFO L87 Difference]: Start difference. First operand 28 states and 31 transitions. Second operand has 17 states, 16 states have (on average 2.6875) internal successors, (43), 15 states have internal predecessors, (43), 2 states have call successors, (4), 3 states have call predecessors, (4), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-15 18:37:24,616 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:37:24,616 INFO L93 Difference]: Finished difference Result 42 states and 45 transitions. [2024-09-15 18:37:24,617 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2024-09-15 18:37:24,617 INFO L78 Accepts]: Start accepts. Automaton has has 17 states, 16 states have (on average 2.6875) internal successors, (43), 15 states have internal predecessors, (43), 2 states have call successors, (4), 3 states have call predecessors, (4), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 24 [2024-09-15 18:37:24,617 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:37:24,619 INFO L225 Difference]: With dead ends: 42 [2024-09-15 18:37:24,619 INFO L226 Difference]: Without dead ends: 40 [2024-09-15 18:37:24,620 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 61 GetRequests, 43 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 77 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=81, Invalid=299, Unknown=0, NotChecked=0, Total=380 [2024-09-15 18:37:24,620 INFO L434 NwaCegarLoop]: 12 mSDtfsCounter, 20 mSDsluCounter, 107 mSDsCounter, 0 mSdLazyCounter, 193 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 21 SdHoareTripleChecker+Valid, 119 SdHoareTripleChecker+Invalid, 202 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 193 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-15 18:37:24,621 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [21 Valid, 119 Invalid, 202 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 193 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-15 18:37:24,621 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 40 states. [2024-09-15 18:37:24,634 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 40 to 34. [2024-09-15 18:37:24,636 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 34 states, 26 states have (on average 1.1538461538461537) internal successors, (30), 27 states have internal predecessors, (30), 4 states have call successors, (4), 4 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 18:37:24,637 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 34 states to 34 states and 37 transitions. [2024-09-15 18:37:24,637 INFO L78 Accepts]: Start accepts. Automaton has 34 states and 37 transitions. Word has length 24 [2024-09-15 18:37:24,638 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:37:24,638 INFO L474 AbstractCegarLoop]: Abstraction has 34 states and 37 transitions. [2024-09-15 18:37:24,639 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 17 states, 16 states have (on average 2.6875) internal successors, (43), 15 states have internal predecessors, (43), 2 states have call successors, (4), 3 states have call predecessors, (4), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-15 18:37:24,639 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:24,639 INFO L276 IsEmpty]: Start isEmpty. Operand 34 states and 37 transitions. [2024-09-15 18:37:24,640 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2024-09-15 18:37:24,641 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:37:24,641 INFO L216 NwaCegarLoop]: trace histogram [2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:37:24,659 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-09-15 18:37:24,842 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:37:24,843 INFO L399 AbstractCegarLoop]: === Iteration 4 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:37:24,844 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:24,844 INFO L85 PathProgramCache]: Analyzing trace with hash 1226106264, now seen corresponding path program 1 times [2024-09-15 18:37:24,844 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:37:24,844 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [41250966] [2024-09-15 18:37:24,844 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:37:24,845 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:37:24,872 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:25,058 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:37:25,059 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:25,061 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-09-15 18:37:25,062 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:25,065 INFO L134 CoverageAnalysis]: Checked inductivity of 7 backedges. 3 proven. 2 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-15 18:37:25,065 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:37:25,065 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [41250966] [2024-09-15 18:37:25,066 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [41250966] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:37:25,066 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [837503022] [2024-09-15 18:37:25,066 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:37:25,066 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:37:25,066 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 18:37:25,068 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 18:37:25,071 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-09-15 18:37:25,147 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:25,150 INFO L262 TraceCheckSpWp]: Trace formula consists of 148 conjuncts, 10 conjuncts are in the unsatisfiable core [2024-09-15 18:37:25,152 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 18:37:25,257 INFO L134 CoverageAnalysis]: Checked inductivity of 7 backedges. 3 proven. 2 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-15 18:37:25,257 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 18:37:25,465 INFO L134 CoverageAnalysis]: Checked inductivity of 7 backedges. 3 proven. 2 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-15 18:37:25,466 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [837503022] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 18:37:25,466 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 18:37:25,466 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 7, 7] total 13 [2024-09-15 18:37:25,466 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1529393227] [2024-09-15 18:37:25,466 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 18:37:25,467 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 13 states [2024-09-15 18:37:25,467 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:37:25,468 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 13 interpolants. [2024-09-15 18:37:25,469 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=46, Invalid=110, Unknown=0, NotChecked=0, Total=156 [2024-09-15 18:37:25,469 INFO L87 Difference]: Start difference. First operand 34 states and 37 transitions. Second operand has 13 states, 13 states have (on average 3.0) internal successors, (39), 13 states have internal predecessors, (39), 4 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 18:37:25,652 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:37:25,652 INFO L93 Difference]: Finished difference Result 84 states and 96 transitions. [2024-09-15 18:37:25,652 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-09-15 18:37:25,653 INFO L78 Accepts]: Start accepts. Automaton has has 13 states, 13 states have (on average 3.0) internal successors, (39), 13 states have internal predecessors, (39), 4 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) Word has length 31 [2024-09-15 18:37:25,653 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:37:25,655 INFO L225 Difference]: With dead ends: 84 [2024-09-15 18:37:25,655 INFO L226 Difference]: Without dead ends: 49 [2024-09-15 18:37:25,655 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 73 GetRequests, 60 SyntacticMatches, 2 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 44 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=46, Invalid=110, Unknown=0, NotChecked=0, Total=156 [2024-09-15 18:37:25,656 INFO L434 NwaCegarLoop]: 17 mSDtfsCounter, 31 mSDsluCounter, 58 mSDsCounter, 0 mSdLazyCounter, 185 mSolverCounterSat, 34 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 33 SdHoareTripleChecker+Valid, 75 SdHoareTripleChecker+Invalid, 219 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 34 IncrementalHoareTripleChecker+Valid, 185 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-15 18:37:25,657 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [33 Valid, 75 Invalid, 219 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [34 Valid, 185 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-15 18:37:25,658 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 49 states. [2024-09-15 18:37:25,670 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 49 to 41. [2024-09-15 18:37:25,670 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 41 states, 33 states have (on average 1.121212121212121) internal successors, (37), 34 states have internal predecessors, (37), 4 states have call successors, (4), 4 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 18:37:25,672 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 41 states to 41 states and 44 transitions. [2024-09-15 18:37:25,673 INFO L78 Accepts]: Start accepts. Automaton has 41 states and 44 transitions. Word has length 31 [2024-09-15 18:37:25,673 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:37:25,673 INFO L474 AbstractCegarLoop]: Abstraction has 41 states and 44 transitions. [2024-09-15 18:37:25,674 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 13 states, 13 states have (on average 3.0) internal successors, (39), 13 states have internal predecessors, (39), 4 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 18:37:25,674 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:25,675 INFO L276 IsEmpty]: Start isEmpty. Operand 41 states and 44 transitions. [2024-09-15 18:37:25,675 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2024-09-15 18:37:25,676 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:37:25,676 INFO L216 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:37:25,697 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-09-15 18:37:25,882 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:37:25,884 INFO L399 AbstractCegarLoop]: === Iteration 5 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:37:25,884 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:25,885 INFO L85 PathProgramCache]: Analyzing trace with hash 1365597324, now seen corresponding path program 2 times [2024-09-15 18:37:25,885 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:37:25,886 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1531439018] [2024-09-15 18:37:25,886 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:37:25,886 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:37:26,011 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:28,573 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:37:28,575 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:28,577 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 27 [2024-09-15 18:37:28,579 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:28,587 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 2 proven. 15 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-15 18:37:28,588 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:37:28,588 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1531439018] [2024-09-15 18:37:28,588 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1531439018] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:37:28,588 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [304372434] [2024-09-15 18:37:28,588 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-15 18:37:28,589 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:37:28,589 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 18:37:28,590 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 18:37:28,593 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-09-15 18:37:28,679 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-15 18:37:28,679 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 18:37:28,682 INFO L262 TraceCheckSpWp]: Trace formula consists of 185 conjuncts, 34 conjuncts are in the unsatisfiable core [2024-09-15 18:37:28,685 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 18:37:28,803 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 27 treesize of output 23 [2024-09-15 18:37:29,100 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 21 [2024-09-15 18:37:29,104 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 27 treesize of output 15 [2024-09-15 18:37:29,106 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 9 [2024-09-15 18:37:29,160 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 0 proven. 15 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-15 18:37:29,160 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 18:37:29,566 INFO L349 Elim1Store]: treesize reduction 5, result has 50.0 percent of original size [2024-09-15 18:37:29,567 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 0 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 89 treesize of output 67 [2024-09-15 18:37:29,577 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:37:29,579 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 46 treesize of output 25 [2024-09-15 18:37:29,588 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 44 treesize of output 40 [2024-09-15 18:37:29,600 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:37:29,601 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 2 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 40 treesize of output 87 [2024-09-15 18:37:29,701 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 2 proven. 5 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-09-15 18:37:29,701 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [304372434] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 18:37:29,701 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 18:37:29,701 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 12, 10] total 33 [2024-09-15 18:37:29,702 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1739552274] [2024-09-15 18:37:29,702 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 18:37:29,702 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 33 states [2024-09-15 18:37:29,702 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:37:29,703 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 33 interpolants. [2024-09-15 18:37:29,704 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=137, Invalid=919, Unknown=0, NotChecked=0, Total=1056 [2024-09-15 18:37:29,704 INFO L87 Difference]: Start difference. First operand 41 states and 44 transitions. Second operand has 33 states, 32 states have (on average 2.46875) internal successors, (79), 31 states have internal predecessors, (79), 5 states have call successors, (7), 4 states have call predecessors, (7), 2 states have return successors, (4), 4 states have call predecessors, (4), 4 states have call successors, (4) [2024-09-15 18:37:34,706 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-15 18:37:39,018 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-15 18:37:43,696 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-15 18:37:47,883 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-15 18:37:47,967 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:37:47,967 INFO L93 Difference]: Finished difference Result 100 states and 114 transitions. [2024-09-15 18:37:47,968 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 39 states. [2024-09-15 18:37:47,968 INFO L78 Accepts]: Start accepts. Automaton has has 33 states, 32 states have (on average 2.46875) internal successors, (79), 31 states have internal predecessors, (79), 5 states have call successors, (7), 4 states have call predecessors, (7), 2 states have return successors, (4), 4 states have call predecessors, (4), 4 states have call successors, (4) Word has length 38 [2024-09-15 18:37:47,968 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:37:47,969 INFO L225 Difference]: With dead ends: 100 [2024-09-15 18:37:47,969 INFO L226 Difference]: Without dead ends: 57 [2024-09-15 18:37:47,971 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 124 GetRequests, 69 SyntacticMatches, 1 SemanticMatches, 54 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 780 ImplicationChecksByTransitivity, 2.4s TimeCoverageRelationStatistics Valid=488, Invalid=2592, Unknown=0, NotChecked=0, Total=3080 [2024-09-15 18:37:47,972 INFO L434 NwaCegarLoop]: 17 mSDtfsCounter, 93 mSDsluCounter, 184 mSDsCounter, 0 mSdLazyCounter, 623 mSolverCounterSat, 104 mSolverCounterUnsat, 4 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 16.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 94 SdHoareTripleChecker+Valid, 201 SdHoareTripleChecker+Invalid, 731 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 104 IncrementalHoareTripleChecker+Valid, 623 IncrementalHoareTripleChecker+Invalid, 4 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 16.7s IncrementalHoareTripleChecker+Time [2024-09-15 18:37:47,972 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [94 Valid, 201 Invalid, 731 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [104 Valid, 623 Invalid, 4 Unknown, 0 Unchecked, 16.7s Time] [2024-09-15 18:37:47,973 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 57 states. [2024-09-15 18:37:47,984 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 57 to 51. [2024-09-15 18:37:47,986 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 51 states, 41 states have (on average 1.0975609756097562) internal successors, (45), 42 states have internal predecessors, (45), 5 states have call successors, (5), 5 states have call predecessors, (5), 4 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-09-15 18:37:47,986 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 51 states to 51 states and 54 transitions. [2024-09-15 18:37:47,987 INFO L78 Accepts]: Start accepts. Automaton has 51 states and 54 transitions. Word has length 38 [2024-09-15 18:37:47,991 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:37:47,992 INFO L474 AbstractCegarLoop]: Abstraction has 51 states and 54 transitions. [2024-09-15 18:37:47,992 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 33 states, 32 states have (on average 2.46875) internal successors, (79), 31 states have internal predecessors, (79), 5 states have call successors, (7), 4 states have call predecessors, (7), 2 states have return successors, (4), 4 states have call predecessors, (4), 4 states have call successors, (4) [2024-09-15 18:37:47,992 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:47,992 INFO L276 IsEmpty]: Start isEmpty. Operand 51 states and 54 transitions. [2024-09-15 18:37:47,993 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 49 [2024-09-15 18:37:47,994 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:37:47,994 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:37:48,011 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-09-15 18:37:48,198 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:37:48,199 INFO L399 AbstractCegarLoop]: === Iteration 6 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:37:48,200 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:48,200 INFO L85 PathProgramCache]: Analyzing trace with hash 1196273537, now seen corresponding path program 3 times [2024-09-15 18:37:48,200 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:37:48,200 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [46977142] [2024-09-15 18:37:48,200 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:37:48,200 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:37:48,237 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:48,465 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:37:48,467 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:48,468 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 30 [2024-09-15 18:37:48,469 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:48,472 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 37 [2024-09-15 18:37:48,473 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:48,474 INFO L134 CoverageAnalysis]: Checked inductivity of 35 backedges. 4 proven. 17 refuted. 0 times theorem prover too weak. 14 trivial. 0 not checked. [2024-09-15 18:37:48,475 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:37:48,475 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [46977142] [2024-09-15 18:37:48,475 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [46977142] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:37:48,475 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1580134524] [2024-09-15 18:37:48,475 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-15 18:37:48,475 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:37:48,476 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 18:37:48,477 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 18:37:48,478 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-09-15 18:37:48,651 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2024-09-15 18:37:48,651 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 18:37:48,653 INFO L262 TraceCheckSpWp]: Trace formula consists of 155 conjuncts, 38 conjuncts are in the unsatisfiable core [2024-09-15 18:37:48,656 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 18:37:48,953 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 17 [2024-09-15 18:37:49,010 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 39 treesize of output 38 [2024-09-15 18:37:49,592 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:37:49,592 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 44 treesize of output 46 [2024-09-15 18:37:49,609 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:37:49,610 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 46 treesize of output 48 [2024-09-15 18:37:49,632 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:37:49,633 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 38 treesize of output 40 [2024-09-15 18:37:49,728 INFO L134 CoverageAnalysis]: Checked inductivity of 35 backedges. 0 proven. 12 refuted. 0 times theorem prover too weak. 23 trivial. 0 not checked. [2024-09-15 18:37:49,729 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 18:37:50,049 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1580134524] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:37:50,049 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-15 18:37:50,049 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 12] total 20 [2024-09-15 18:37:50,049 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1668849261] [2024-09-15 18:37:50,049 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-15 18:37:50,050 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2024-09-15 18:37:50,050 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:37:50,051 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2024-09-15 18:37:50,051 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=58, Invalid=362, Unknown=0, NotChecked=0, Total=420 [2024-09-15 18:37:50,051 INFO L87 Difference]: Start difference. First operand 51 states and 54 transitions. Second operand has 20 states, 19 states have (on average 3.0) internal successors, (57), 19 states have internal predecessors, (57), 4 states have call successors, (6), 4 states have call predecessors, (6), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 18:37:50,927 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:37:50,928 INFO L93 Difference]: Finished difference Result 118 states and 127 transitions. [2024-09-15 18:37:50,928 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2024-09-15 18:37:50,928 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 19 states have (on average 3.0) internal successors, (57), 19 states have internal predecessors, (57), 4 states have call successors, (6), 4 states have call predecessors, (6), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) Word has length 48 [2024-09-15 18:37:50,930 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:37:50,931 INFO L225 Difference]: With dead ends: 118 [2024-09-15 18:37:50,931 INFO L226 Difference]: Without dead ends: 91 [2024-09-15 18:37:50,932 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 87 GetRequests, 46 SyntacticMatches, 5 SemanticMatches, 36 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 310 ImplicationChecksByTransitivity, 1.1s TimeCoverageRelationStatistics Valid=243, Invalid=1163, Unknown=0, NotChecked=0, Total=1406 [2024-09-15 18:37:50,935 INFO L434 NwaCegarLoop]: 16 mSDtfsCounter, 127 mSDsluCounter, 141 mSDsCounter, 0 mSdLazyCounter, 370 mSolverCounterSat, 105 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 127 SdHoareTripleChecker+Valid, 157 SdHoareTripleChecker+Invalid, 475 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 105 IncrementalHoareTripleChecker+Valid, 370 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-09-15 18:37:50,936 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [127 Valid, 157 Invalid, 475 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [105 Valid, 370 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-09-15 18:37:50,936 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 91 states. [2024-09-15 18:37:50,957 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 91 to 55. [2024-09-15 18:37:50,957 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 55 states, 45 states have (on average 1.0888888888888888) internal successors, (49), 46 states have internal predecessors, (49), 5 states have call successors, (5), 5 states have call predecessors, (5), 4 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-09-15 18:37:50,958 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 55 states to 55 states and 58 transitions. [2024-09-15 18:37:50,958 INFO L78 Accepts]: Start accepts. Automaton has 55 states and 58 transitions. Word has length 48 [2024-09-15 18:37:50,959 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:37:50,959 INFO L474 AbstractCegarLoop]: Abstraction has 55 states and 58 transitions. [2024-09-15 18:37:50,959 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 19 states have (on average 3.0) internal successors, (57), 19 states have internal predecessors, (57), 4 states have call successors, (6), 4 states have call predecessors, (6), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-15 18:37:50,960 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:50,960 INFO L276 IsEmpty]: Start isEmpty. Operand 55 states and 58 transitions. [2024-09-15 18:37:50,961 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2024-09-15 18:37:50,961 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:37:50,961 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:37:50,979 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-09-15 18:37:51,165 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:37:51,166 INFO L399 AbstractCegarLoop]: === Iteration 7 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:37:51,166 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:37:51,166 INFO L85 PathProgramCache]: Analyzing trace with hash 1482814844, now seen corresponding path program 4 times [2024-09-15 18:37:51,166 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:37:51,166 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [620580660] [2024-09-15 18:37:51,166 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:37:51,167 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:37:51,295 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:53,816 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:37:53,817 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:53,819 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 34 [2024-09-15 18:37:53,821 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:53,827 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 41 [2024-09-15 18:37:53,830 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:37:53,836 INFO L134 CoverageAnalysis]: Checked inductivity of 45 backedges. 4 proven. 37 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-15 18:37:53,836 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:37:53,837 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [620580660] [2024-09-15 18:37:53,837 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [620580660] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:37:53,837 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [98724620] [2024-09-15 18:37:53,837 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2024-09-15 18:37:53,837 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:37:53,837 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 18:37:53,839 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 18:37:53,841 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-09-15 18:37:53,942 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2024-09-15 18:37:53,943 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 18:37:53,945 INFO L262 TraceCheckSpWp]: Trace formula consists of 240 conjuncts, 47 conjuncts are in the unsatisfiable core [2024-09-15 18:37:53,948 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 18:37:54,128 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 27 treesize of output 23 [2024-09-15 18:37:56,093 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 21 [2024-09-15 18:37:56,097 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 27 treesize of output 15 [2024-09-15 18:37:56,099 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 9 [2024-09-15 18:37:56,144 INFO L134 CoverageAnalysis]: Checked inductivity of 45 backedges. 0 proven. 43 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-15 18:37:56,144 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 18:38:08,530 INFO L349 Elim1Store]: treesize reduction 5, result has 50.0 percent of original size [2024-09-15 18:38:08,531 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 0 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 89 treesize of output 67 [2024-09-15 18:38:08,543 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:38:08,544 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 46 treesize of output 25 [2024-09-15 18:38:08,548 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 44 treesize of output 40 [2024-09-15 18:38:08,558 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:38:08,559 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 2 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 40 treesize of output 87 [2024-09-15 18:38:08,680 INFO L134 CoverageAnalysis]: Checked inductivity of 45 backedges. 4 proven. 13 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-09-15 18:38:08,680 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [98724620] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 18:38:08,680 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 18:38:08,680 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [21, 18, 12] total 42 [2024-09-15 18:38:08,680 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [419841727] [2024-09-15 18:38:08,680 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 18:38:08,681 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 42 states [2024-09-15 18:38:08,681 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:38:08,682 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 42 interpolants. [2024-09-15 18:38:08,682 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=176, Invalid=1543, Unknown=3, NotChecked=0, Total=1722 [2024-09-15 18:38:08,683 INFO L87 Difference]: Start difference. First operand 55 states and 58 transitions. Second operand has 42 states, 41 states have (on average 2.317073170731707) internal successors, (95), 40 states have internal predecessors, (95), 8 states have call successors, (10), 4 states have call predecessors, (10), 3 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) [2024-09-15 18:38:14,967 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-15 18:38:19,720 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:38:19,720 INFO L93 Difference]: Finished difference Result 116 states and 131 transitions. [2024-09-15 18:38:19,721 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 39 states. [2024-09-15 18:38:19,721 INFO L78 Accepts]: Start accepts. Automaton has has 42 states, 41 states have (on average 2.317073170731707) internal successors, (95), 40 states have internal predecessors, (95), 8 states have call successors, (10), 4 states have call predecessors, (10), 3 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) Word has length 52 [2024-09-15 18:38:19,721 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:38:19,723 INFO L225 Difference]: With dead ends: 116 [2024-09-15 18:38:19,723 INFO L226 Difference]: Without dead ends: 114 [2024-09-15 18:38:19,724 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 158 GetRequests, 90 SyntacticMatches, 5 SemanticMatches, 63 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1159 ImplicationChecksByTransitivity, 20.6s TimeCoverageRelationStatistics Valid=523, Invalid=3633, Unknown=4, NotChecked=0, Total=4160 [2024-09-15 18:38:19,725 INFO L434 NwaCegarLoop]: 15 mSDtfsCounter, 137 mSDsluCounter, 228 mSDsCounter, 0 mSdLazyCounter, 994 mSolverCounterSat, 81 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 138 SdHoareTripleChecker+Valid, 243 SdHoareTripleChecker+Invalid, 1076 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 81 IncrementalHoareTripleChecker+Valid, 994 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.1s IncrementalHoareTripleChecker+Time [2024-09-15 18:38:19,725 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [138 Valid, 243 Invalid, 1076 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [81 Valid, 994 Invalid, 1 Unknown, 0 Unchecked, 5.1s Time] [2024-09-15 18:38:19,725 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 114 states. [2024-09-15 18:38:19,752 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 114 to 62. [2024-09-15 18:38:19,752 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 62 states, 50 states have (on average 1.08) internal successors, (54), 51 states have internal predecessors, (54), 6 states have call successors, (6), 6 states have call predecessors, (6), 5 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2024-09-15 18:38:19,753 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 62 states to 62 states and 65 transitions. [2024-09-15 18:38:19,753 INFO L78 Accepts]: Start accepts. Automaton has 62 states and 65 transitions. Word has length 52 [2024-09-15 18:38:19,754 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:38:19,754 INFO L474 AbstractCegarLoop]: Abstraction has 62 states and 65 transitions. [2024-09-15 18:38:19,754 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 42 states, 41 states have (on average 2.317073170731707) internal successors, (95), 40 states have internal predecessors, (95), 8 states have call successors, (10), 4 states have call predecessors, (10), 3 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) [2024-09-15 18:38:19,755 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:38:19,755 INFO L276 IsEmpty]: Start isEmpty. Operand 62 states and 65 transitions. [2024-09-15 18:38:19,756 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 60 [2024-09-15 18:38:19,756 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:38:19,756 INFO L216 NwaCegarLoop]: trace histogram [4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:38:19,775 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-09-15 18:38:19,960 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable6 [2024-09-15 18:38:19,961 INFO L399 AbstractCegarLoop]: === Iteration 8 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:38:19,961 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:38:19,961 INFO L85 PathProgramCache]: Analyzing trace with hash -1121119528, now seen corresponding path program 5 times [2024-09-15 18:38:19,962 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:38:19,962 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [283638463] [2024-09-15 18:38:19,962 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:38:19,962 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:38:20,016 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:38:20,287 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:38:20,288 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:38:20,289 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 34 [2024-09-15 18:38:20,291 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:38:20,294 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 41 [2024-09-15 18:38:20,295 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:38:20,298 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 48 [2024-09-15 18:38:20,301 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:38:20,303 INFO L134 CoverageAnalysis]: Checked inductivity of 63 backedges. 9 proven. 24 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-09-15 18:38:20,304 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:38:20,304 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [283638463] [2024-09-15 18:38:20,304 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [283638463] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:38:20,304 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [872891555] [2024-09-15 18:38:20,305 INFO L93 rtionOrderModulation]: Changing assertion order to INSIDE_LOOP_FIRST1 [2024-09-15 18:38:20,305 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:38:20,305 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 18:38:20,307 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 18:38:20,308 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-09-15 18:39:53,932 INFO L228 tOrderPrioritization]: Assert order INSIDE_LOOP_FIRST1 issued 4 check-sat command(s) [2024-09-15 18:39:53,933 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 18:39:53,937 INFO L262 TraceCheckSpWp]: Trace formula consists of 258 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-09-15 18:39:53,939 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 18:39:54,089 INFO L134 CoverageAnalysis]: Checked inductivity of 63 backedges. 9 proven. 24 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-09-15 18:39:54,089 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 18:39:54,343 INFO L134 CoverageAnalysis]: Checked inductivity of 63 backedges. 9 proven. 24 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-09-15 18:39:54,344 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [872891555] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 18:39:54,344 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 18:39:54,344 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 11, 11] total 19 [2024-09-15 18:39:54,344 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [112723543] [2024-09-15 18:39:54,344 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 18:39:54,345 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 19 states [2024-09-15 18:39:54,345 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:39:54,345 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 19 interpolants. [2024-09-15 18:39:54,346 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=73, Invalid=269, Unknown=0, NotChecked=0, Total=342 [2024-09-15 18:39:54,346 INFO L87 Difference]: Start difference. First operand 62 states and 65 transitions. Second operand has 19 states, 19 states have (on average 2.8947368421052633) internal successors, (55), 19 states have internal predecessors, (55), 8 states have call successors, (9), 2 states have call predecessors, (9), 1 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) [2024-09-15 18:39:54,721 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:39:54,721 INFO L93 Difference]: Finished difference Result 142 states and 156 transitions. [2024-09-15 18:39:54,721 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-09-15 18:39:54,722 INFO L78 Accepts]: Start accepts. Automaton has has 19 states, 19 states have (on average 2.8947368421052633) internal successors, (55), 19 states have internal predecessors, (55), 8 states have call successors, (9), 2 states have call predecessors, (9), 1 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) Word has length 59 [2024-09-15 18:39:54,724 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:39:54,725 INFO L225 Difference]: With dead ends: 142 [2024-09-15 18:39:54,725 INFO L226 Difference]: Without dead ends: 77 [2024-09-15 18:39:54,726 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 136 GetRequests, 115 SyntacticMatches, 4 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 71 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=73, Invalid=269, Unknown=0, NotChecked=0, Total=342 [2024-09-15 18:39:54,727 INFO L434 NwaCegarLoop]: 21 mSDtfsCounter, 43 mSDsluCounter, 157 mSDsCounter, 0 mSdLazyCounter, 578 mSolverCounterSat, 50 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 47 SdHoareTripleChecker+Valid, 178 SdHoareTripleChecker+Invalid, 628 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 50 IncrementalHoareTripleChecker+Valid, 578 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-09-15 18:39:54,727 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [47 Valid, 178 Invalid, 628 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [50 Valid, 578 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-09-15 18:39:54,728 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 77 states. [2024-09-15 18:39:54,764 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 77 to 69. [2024-09-15 18:39:54,764 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 69 states, 57 states have (on average 1.0701754385964912) internal successors, (61), 58 states have internal predecessors, (61), 6 states have call successors, (6), 6 states have call predecessors, (6), 5 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2024-09-15 18:39:54,765 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 69 states to 69 states and 72 transitions. [2024-09-15 18:39:54,767 INFO L78 Accepts]: Start accepts. Automaton has 69 states and 72 transitions. Word has length 59 [2024-09-15 18:39:54,768 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:39:54,768 INFO L474 AbstractCegarLoop]: Abstraction has 69 states and 72 transitions. [2024-09-15 18:39:54,768 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 19 states, 19 states have (on average 2.8947368421052633) internal successors, (55), 19 states have internal predecessors, (55), 8 states have call successors, (9), 2 states have call predecessors, (9), 1 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) [2024-09-15 18:39:54,768 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:39:54,768 INFO L276 IsEmpty]: Start isEmpty. Operand 69 states and 72 transitions. [2024-09-15 18:39:54,769 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 67 [2024-09-15 18:39:54,769 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:39:54,769 INFO L216 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:39:54,793 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2024-09-15 18:39:54,970 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,7 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:39:54,970 INFO L399 AbstractCegarLoop]: === Iteration 9 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:39:54,971 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:39:54,971 INFO L85 PathProgramCache]: Analyzing trace with hash 1279452236, now seen corresponding path program 6 times [2024-09-15 18:39:54,971 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:39:54,971 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [728718461] [2024-09-15 18:39:54,971 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:39:54,971 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:39:55,189 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:39:58,273 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:39:58,274 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:39:58,275 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 41 [2024-09-15 18:39:58,277 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:39:58,282 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 48 [2024-09-15 18:39:58,283 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:39:58,289 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 55 [2024-09-15 18:39:58,291 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:39:58,300 INFO L134 CoverageAnalysis]: Checked inductivity of 87 backedges. 6 proven. 69 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-09-15 18:39:58,301 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:39:58,301 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [728718461] [2024-09-15 18:39:58,301 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [728718461] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:39:58,301 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [131506090] [2024-09-15 18:39:58,301 INFO L93 rtionOrderModulation]: Changing assertion order to MIX_INSIDE_OUTSIDE [2024-09-15 18:39:58,301 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:39:58,302 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 18:39:58,303 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 18:39:58,305 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-09-15 18:40:00,122 INFO L228 tOrderPrioritization]: Assert order MIX_INSIDE_OUTSIDE issued 5 check-sat command(s) [2024-09-15 18:40:00,122 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 18:40:00,124 INFO L262 TraceCheckSpWp]: Trace formula consists of 295 conjuncts, 41 conjuncts are in the unsatisfiable core [2024-09-15 18:40:00,127 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 18:40:00,407 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 17 [2024-09-15 18:40:01,010 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 25 treesize of output 17 [2024-09-15 18:40:01,012 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 13 [2024-09-15 18:40:01,013 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 9 [2024-09-15 18:40:01,055 INFO L134 CoverageAnalysis]: Checked inductivity of 87 backedges. 0 proven. 31 refuted. 0 times theorem prover too weak. 56 trivial. 0 not checked. [2024-09-15 18:40:01,055 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 18:40:01,681 INFO L349 Elim1Store]: treesize reduction 5, result has 50.0 percent of original size [2024-09-15 18:40:01,681 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 0 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 89 treesize of output 67 [2024-09-15 18:40:01,696 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:40:01,696 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 46 treesize of output 25 [2024-09-15 18:40:01,703 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 44 treesize of output 40 [2024-09-15 18:40:01,713 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:40:01,713 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 2 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 40 treesize of output 87 [2024-09-15 18:40:01,726 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 62 treesize of output 12 [2024-09-15 18:40:01,885 INFO L134 CoverageAnalysis]: Checked inductivity of 87 backedges. 6 proven. 25 refuted. 0 times theorem prover too weak. 56 trivial. 0 not checked. [2024-09-15 18:40:01,885 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [131506090] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 18:40:01,886 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 18:40:01,886 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 16, 14] total 36 [2024-09-15 18:40:01,886 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [154243429] [2024-09-15 18:40:01,886 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 18:40:01,887 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 36 states [2024-09-15 18:40:01,887 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:40:01,887 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 36 interpolants. [2024-09-15 18:40:01,888 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=161, Invalid=1099, Unknown=0, NotChecked=0, Total=1260 [2024-09-15 18:40:01,888 INFO L87 Difference]: Start difference. First operand 69 states and 72 transitions. Second operand has 36 states, 35 states have (on average 2.8) internal successors, (98), 34 states have internal predecessors, (98), 11 states have call successors, (13), 4 states have call predecessors, (13), 2 states have return successors, (10), 10 states have call predecessors, (10), 10 states have call successors, (10) [2024-09-15 18:40:02,642 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:40:02,642 INFO L93 Difference]: Finished difference Result 84 states and 87 transitions. [2024-09-15 18:40:02,642 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2024-09-15 18:40:02,643 INFO L78 Accepts]: Start accepts. Automaton has has 36 states, 35 states have (on average 2.8) internal successors, (98), 34 states have internal predecessors, (98), 11 states have call successors, (13), 4 states have call predecessors, (13), 2 states have return successors, (10), 10 states have call predecessors, (10), 10 states have call successors, (10) Word has length 66 [2024-09-15 18:40:02,643 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:40:02,644 INFO L225 Difference]: With dead ends: 84 [2024-09-15 18:40:02,644 INFO L226 Difference]: Without dead ends: 82 [2024-09-15 18:40:02,645 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 174 GetRequests, 125 SyntacticMatches, 11 SemanticMatches, 38 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 595 ImplicationChecksByTransitivity, 1.2s TimeCoverageRelationStatistics Valid=200, Invalid=1360, Unknown=0, NotChecked=0, Total=1560 [2024-09-15 18:40:02,645 INFO L434 NwaCegarLoop]: 18 mSDtfsCounter, 31 mSDsluCounter, 251 mSDsCounter, 0 mSdLazyCounter, 1009 mSolverCounterSat, 21 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 32 SdHoareTripleChecker+Valid, 269 SdHoareTripleChecker+Invalid, 1030 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 21 IncrementalHoareTripleChecker+Valid, 1009 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-09-15 18:40:02,645 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [32 Valid, 269 Invalid, 1030 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [21 Valid, 1009 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-09-15 18:40:02,646 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 82 states. [2024-09-15 18:40:02,681 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 82 to 76. [2024-09-15 18:40:02,681 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 76 states, 62 states have (on average 1.064516129032258) internal successors, (66), 63 states have internal predecessors, (66), 7 states have call successors, (7), 7 states have call predecessors, (7), 6 states have return successors, (6), 5 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-15 18:40:02,682 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 76 states to 76 states and 79 transitions. [2024-09-15 18:40:02,682 INFO L78 Accepts]: Start accepts. Automaton has 76 states and 79 transitions. Word has length 66 [2024-09-15 18:40:02,682 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:40:02,682 INFO L474 AbstractCegarLoop]: Abstraction has 76 states and 79 transitions. [2024-09-15 18:40:02,683 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 36 states, 35 states have (on average 2.8) internal successors, (98), 34 states have internal predecessors, (98), 11 states have call successors, (13), 4 states have call predecessors, (13), 2 states have return successors, (10), 10 states have call predecessors, (10), 10 states have call successors, (10) [2024-09-15 18:40:02,683 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:40:02,683 INFO L276 IsEmpty]: Start isEmpty. Operand 76 states and 79 transitions. [2024-09-15 18:40:02,684 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 74 [2024-09-15 18:40:02,684 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:40:02,684 INFO L216 NwaCegarLoop]: trace histogram [5, 5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:40:02,698 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Forceful destruction successful, exit code 0 [2024-09-15 18:40:02,884 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,8 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:40:02,885 INFO L399 AbstractCegarLoop]: === Iteration 10 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:40:02,885 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:40:02,885 INFO L85 PathProgramCache]: Analyzing trace with hash 1811470856, now seen corresponding path program 7 times [2024-09-15 18:40:02,885 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:40:02,886 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1966728700] [2024-09-15 18:40:02,886 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:40:02,886 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:40:02,938 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:03,490 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:40:03,492 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:03,493 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 41 [2024-09-15 18:40:03,494 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:03,497 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 48 [2024-09-15 18:40:03,498 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:03,500 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 55 [2024-09-15 18:40:03,501 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:03,503 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 62 [2024-09-15 18:40:03,504 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:03,507 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 12 proven. 54 refuted. 0 times theorem prover too weak. 46 trivial. 0 not checked. [2024-09-15 18:40:03,507 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:40:03,507 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1966728700] [2024-09-15 18:40:03,507 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1966728700] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:40:03,507 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [721131397] [2024-09-15 18:40:03,507 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2024-09-15 18:40:03,507 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:40:03,508 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 18:40:03,510 INFO L229 MonitoredProcess]: Starting monitored process 9 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 18:40:03,511 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-09-15 18:40:03,617 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:03,622 INFO L262 TraceCheckSpWp]: Trace formula consists of 313 conjuncts, 22 conjuncts are in the unsatisfiable core [2024-09-15 18:40:03,626 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 18:40:03,978 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 12 proven. 44 refuted. 0 times theorem prover too weak. 56 trivial. 0 not checked. [2024-09-15 18:40:03,978 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 18:40:04,499 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 12 proven. 44 refuted. 0 times theorem prover too weak. 56 trivial. 0 not checked. [2024-09-15 18:40:04,500 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [721131397] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 18:40:04,500 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 18:40:04,500 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 13, 13] total 32 [2024-09-15 18:40:04,500 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1088840133] [2024-09-15 18:40:04,500 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 18:40:04,501 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 32 states [2024-09-15 18:40:04,501 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:40:04,502 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 32 interpolants. [2024-09-15 18:40:04,502 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=164, Invalid=828, Unknown=0, NotChecked=0, Total=992 [2024-09-15 18:40:04,502 INFO L87 Difference]: Start difference. First operand 76 states and 79 transitions. Second operand has 32 states, 32 states have (on average 2.78125) internal successors, (89), 32 states have internal predecessors, (89), 13 states have call successors, (14), 2 states have call predecessors, (14), 1 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2024-09-15 18:40:05,172 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:40:05,172 INFO L93 Difference]: Finished difference Result 171 states and 186 transitions. [2024-09-15 18:40:05,172 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2024-09-15 18:40:05,172 INFO L78 Accepts]: Start accepts. Automaton has has 32 states, 32 states have (on average 2.78125) internal successors, (89), 32 states have internal predecessors, (89), 13 states have call successors, (14), 2 states have call predecessors, (14), 1 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) Word has length 73 [2024-09-15 18:40:05,173 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:40:05,173 INFO L225 Difference]: With dead ends: 171 [2024-09-15 18:40:05,173 INFO L226 Difference]: Without dead ends: 91 [2024-09-15 18:40:05,174 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 172 GetRequests, 137 SyntacticMatches, 5 SemanticMatches, 30 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 245 ImplicationChecksByTransitivity, 0.6s TimeCoverageRelationStatistics Valid=164, Invalid=828, Unknown=0, NotChecked=0, Total=992 [2024-09-15 18:40:05,174 INFO L434 NwaCegarLoop]: 23 mSDtfsCounter, 66 mSDsluCounter, 224 mSDsCounter, 0 mSdLazyCounter, 932 mSolverCounterSat, 90 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 71 SdHoareTripleChecker+Valid, 247 SdHoareTripleChecker+Invalid, 1022 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 90 IncrementalHoareTripleChecker+Valid, 932 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-09-15 18:40:05,175 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [71 Valid, 247 Invalid, 1022 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [90 Valid, 932 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-09-15 18:40:05,175 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 91 states. [2024-09-15 18:40:05,215 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 91 to 83. [2024-09-15 18:40:05,216 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 83 states, 69 states have (on average 1.0579710144927537) internal successors, (73), 70 states have internal predecessors, (73), 7 states have call successors, (7), 7 states have call predecessors, (7), 6 states have return successors, (6), 5 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-15 18:40:05,216 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 83 states to 83 states and 86 transitions. [2024-09-15 18:40:05,216 INFO L78 Accepts]: Start accepts. Automaton has 83 states and 86 transitions. Word has length 73 [2024-09-15 18:40:05,217 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:40:05,217 INFO L474 AbstractCegarLoop]: Abstraction has 83 states and 86 transitions. [2024-09-15 18:40:05,217 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 32 states, 32 states have (on average 2.78125) internal successors, (89), 32 states have internal predecessors, (89), 13 states have call successors, (14), 2 states have call predecessors, (14), 1 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2024-09-15 18:40:05,217 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:40:05,217 INFO L276 IsEmpty]: Start isEmpty. Operand 83 states and 86 transitions. [2024-09-15 18:40:05,218 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 81 [2024-09-15 18:40:05,218 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:40:05,218 INFO L216 NwaCegarLoop]: trace histogram [5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 4, 4, 4, 4, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:40:05,236 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Ended with exit code 0 [2024-09-15 18:40:05,422 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,9 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:40:05,423 INFO L399 AbstractCegarLoop]: === Iteration 11 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:40:05,423 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:40:05,423 INFO L85 PathProgramCache]: Analyzing trace with hash -1570893764, now seen corresponding path program 8 times [2024-09-15 18:40:05,423 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:40:05,424 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [861776009] [2024-09-15 18:40:05,424 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:40:05,424 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:40:05,591 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:08,425 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:40:08,427 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:08,428 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 48 [2024-09-15 18:40:08,430 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:08,435 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 55 [2024-09-15 18:40:08,437 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:08,442 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 62 [2024-09-15 18:40:08,444 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:08,449 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 69 [2024-09-15 18:40:08,451 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:08,457 INFO L134 CoverageAnalysis]: Checked inductivity of 143 backedges. 8 proven. 111 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-09-15 18:40:08,458 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:40:08,458 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [861776009] [2024-09-15 18:40:08,458 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [861776009] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:40:08,458 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1477548995] [2024-09-15 18:40:08,458 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-15 18:40:08,459 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:40:08,459 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 18:40:08,460 INFO L229 MonitoredProcess]: Starting monitored process 10 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 18:40:08,462 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2024-09-15 18:40:08,585 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-15 18:40:08,585 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 18:40:08,588 INFO L262 TraceCheckSpWp]: Trace formula consists of 350 conjuncts, 63 conjuncts are in the unsatisfiable core [2024-09-15 18:40:08,591 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 18:40:08,804 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 27 treesize of output 23 [2024-09-15 18:40:23,323 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 21 [2024-09-15 18:40:23,326 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 27 treesize of output 15 [2024-09-15 18:40:23,327 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 9 [2024-09-15 18:40:23,371 INFO L134 CoverageAnalysis]: Checked inductivity of 143 backedges. 0 proven. 126 refuted. 0 times theorem prover too weak. 17 trivial. 0 not checked. [2024-09-15 18:40:23,371 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 18:40:23,976 INFO L349 Elim1Store]: treesize reduction 5, result has 50.0 percent of original size [2024-09-15 18:40:23,977 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 0 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 89 treesize of output 67 [2024-09-15 18:40:23,983 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:40:23,983 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 46 treesize of output 25 [2024-09-15 18:40:23,986 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 44 treesize of output 40 [2024-09-15 18:40:23,993 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:40:23,994 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 2 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 40 treesize of output 87 [2024-09-15 18:40:24,196 INFO L134 CoverageAnalysis]: Checked inductivity of 143 backedges. 8 proven. 41 refuted. 0 times theorem prover too weak. 94 trivial. 0 not checked. [2024-09-15 18:40:24,196 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1477548995] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-15 18:40:24,196 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-15 18:40:24,196 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20, 20, 16] total 48 [2024-09-15 18:40:24,196 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [668772037] [2024-09-15 18:40:24,196 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-15 18:40:24,197 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 48 states [2024-09-15 18:40:24,197 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:40:24,198 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 48 interpolants. [2024-09-15 18:40:24,199 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=226, Invalid=2030, Unknown=0, NotChecked=0, Total=2256 [2024-09-15 18:40:24,199 INFO L87 Difference]: Start difference. First operand 83 states and 86 transitions. Second operand has 48 states, 47 states have (on average 3.0851063829787235) internal successors, (145), 46 states have internal predecessors, (145), 14 states have call successors, (16), 4 states have call predecessors, (16), 3 states have return successors, (13), 13 states have call predecessors, (13), 13 states have call successors, (13) [2024-09-15 18:40:28,526 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:40:28,526 INFO L93 Difference]: Finished difference Result 97 states and 100 transitions. [2024-09-15 18:40:28,527 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 29 states. [2024-09-15 18:40:28,527 INFO L78 Accepts]: Start accepts. Automaton has has 48 states, 47 states have (on average 3.0851063829787235) internal successors, (145), 46 states have internal predecessors, (145), 14 states have call successors, (16), 4 states have call predecessors, (16), 3 states have return successors, (13), 13 states have call predecessors, (13), 13 states have call successors, (13) Word has length 80 [2024-09-15 18:40:28,527 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:40:28,528 INFO L225 Difference]: With dead ends: 97 [2024-09-15 18:40:28,528 INFO L226 Difference]: Without dead ends: 95 [2024-09-15 18:40:28,529 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 216 GetRequests, 149 SyntacticMatches, 7 SemanticMatches, 60 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1213 ImplicationChecksByTransitivity, 18.3s TimeCoverageRelationStatistics Valid=396, Invalid=3386, Unknown=0, NotChecked=0, Total=3782 [2024-09-15 18:40:28,529 INFO L434 NwaCegarLoop]: 17 mSDtfsCounter, 46 mSDsluCounter, 286 mSDsCounter, 0 mSdLazyCounter, 1521 mSolverCounterSat, 33 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 47 SdHoareTripleChecker+Valid, 303 SdHoareTripleChecker+Invalid, 1554 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 33 IncrementalHoareTripleChecker+Valid, 1521 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2024-09-15 18:40:28,529 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [47 Valid, 303 Invalid, 1554 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [33 Valid, 1521 Invalid, 0 Unknown, 0 Unchecked, 1.2s Time] [2024-09-15 18:40:28,530 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 95 states. [2024-09-15 18:40:28,566 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 95 to 90. [2024-09-15 18:40:28,566 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 90 states, 74 states have (on average 1.054054054054054) internal successors, (78), 75 states have internal predecessors, (78), 8 states have call successors, (8), 8 states have call predecessors, (8), 7 states have return successors, (7), 6 states have call predecessors, (7), 7 states have call successors, (7) [2024-09-15 18:40:28,567 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 90 states to 90 states and 93 transitions. [2024-09-15 18:40:28,567 INFO L78 Accepts]: Start accepts. Automaton has 90 states and 93 transitions. Word has length 80 [2024-09-15 18:40:28,568 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:40:28,568 INFO L474 AbstractCegarLoop]: Abstraction has 90 states and 93 transitions. [2024-09-15 18:40:28,568 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 48 states, 47 states have (on average 3.0851063829787235) internal successors, (145), 46 states have internal predecessors, (145), 14 states have call successors, (16), 4 states have call predecessors, (16), 3 states have return successors, (13), 13 states have call predecessors, (13), 13 states have call successors, (13) [2024-09-15 18:40:28,568 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:40:28,568 INFO L276 IsEmpty]: Start isEmpty. Operand 90 states and 93 transitions. [2024-09-15 18:40:28,572 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 88 [2024-09-15 18:40:28,572 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:40:28,573 INFO L216 NwaCegarLoop]: trace histogram [6, 6, 6, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:40:28,590 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Forceful destruction successful, exit code 0 [2024-09-15 18:40:28,773 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 10 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-09-15 18:40:28,773 INFO L399 AbstractCegarLoop]: === Iteration 12 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:40:28,774 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:40:28,774 INFO L85 PathProgramCache]: Analyzing trace with hash 1193369624, now seen corresponding path program 9 times [2024-09-15 18:40:28,774 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:40:28,774 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [550270456] [2024-09-15 18:40:28,774 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:40:28,774 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:40:28,822 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:29,516 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-15 18:40:29,517 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:29,518 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 48 [2024-09-15 18:40:29,519 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:29,520 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 55 [2024-09-15 18:40:29,521 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:29,523 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 62 [2024-09-15 18:40:29,524 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:29,526 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 69 [2024-09-15 18:40:29,527 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:29,528 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 76 [2024-09-15 18:40:29,529 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-15 18:40:29,531 INFO L134 CoverageAnalysis]: Checked inductivity of 175 backedges. 15 proven. 83 refuted. 0 times theorem prover too weak. 77 trivial. 0 not checked. [2024-09-15 18:40:29,531 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-15 18:40:29,532 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [550270456] [2024-09-15 18:40:29,532 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [550270456] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:40:29,532 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [94882817] [2024-09-15 18:40:29,532 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-15 18:40:29,532 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-15 18:40:29,532 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-15 18:40:29,534 INFO L229 MonitoredProcess]: Starting monitored process 11 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-15 18:40:29,535 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Waiting until timeout for monitored process [2024-09-15 18:40:32,157 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 4 check-sat command(s) [2024-09-15 18:40:32,158 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-15 18:40:32,163 INFO L262 TraceCheckSpWp]: Trace formula consists of 272 conjuncts, 106 conjuncts are in the unsatisfiable core [2024-09-15 18:40:32,170 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-15 18:40:32,365 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 52 treesize of output 39 [2024-09-15 18:40:32,369 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 20 treesize of output 1 [2024-09-15 18:40:32,606 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 52 treesize of output 39 [2024-09-15 18:40:32,609 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 20 treesize of output 1 [2024-09-15 18:40:32,820 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 17 [2024-09-15 18:40:32,877 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 39 treesize of output 38 [2024-09-15 18:40:32,951 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:40:32,951 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 3 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 56 treesize of output 58 [2024-09-15 18:40:33,032 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:40:33,033 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 6 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 73 treesize of output 78 [2024-09-15 18:40:33,117 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-15 18:40:33,117 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 10 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 6 case distinctions, treesize of input 90 treesize of output 98 [2024-09-15 18:40:35,896 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-09-15 18:40:35,899 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-09-15 18:40:35,994 INFO L349 Elim1Store]: treesize reduction 48, result has 61.6 percent of original size [2024-09-15 18:40:35,995 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 11 select indices, 11 select index equivalence classes, 12 disjoint index pairs (out of 55 index pairs), introduced 11 new quantified variables, introduced 55 case distinctions, treesize of input 184 treesize of output 210 [2024-09-15 18:40:36,011 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-09-15 18:40:36,015 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-09-15 18:40:36,114 INFO L349 Elim1Store]: treesize reduction 48, result has 61.6 percent of original size [2024-09-15 18:40:36,117 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 11 select indices, 11 select index equivalence classes, 12 disjoint index pairs (out of 55 index pairs), introduced 11 new quantified variables, introduced 55 case distinctions, treesize of input 220 treesize of output 234 [2024-09-15 18:40:36,131 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-09-15 18:40:36,134 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-09-15 18:40:36,223 INFO L349 Elim1Store]: treesize reduction 48, result has 61.6 percent of original size [2024-09-15 18:40:36,224 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 11 select indices, 11 select index equivalence classes, 12 disjoint index pairs (out of 55 index pairs), introduced 11 new quantified variables, introduced 55 case distinctions, treesize of input 168 treesize of output 182 [2024-09-15 18:40:36,565 INFO L134 CoverageAnalysis]: Checked inductivity of 175 backedges. 62 proven. 46 refuted. 0 times theorem prover too weak. 67 trivial. 0 not checked. [2024-09-15 18:40:36,565 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-15 18:40:43,174 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [94882817] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-15 18:40:43,174 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-15 18:40:43,174 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [16, 27] total 41 [2024-09-15 18:40:43,175 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [194207001] [2024-09-15 18:40:43,175 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-15 18:40:43,175 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 41 states [2024-09-15 18:40:43,175 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-15 18:40:43,176 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 41 interpolants. [2024-09-15 18:40:43,176 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=237, Invalid=2212, Unknown=1, NotChecked=0, Total=2450 [2024-09-15 18:40:43,177 INFO L87 Difference]: Start difference. First operand 90 states and 93 transitions. Second operand has 41 states, 39 states have (on average 2.358974358974359) internal successors, (92), 39 states have internal predecessors, (92), 11 states have call successors, (12), 4 states have call predecessors, (12), 3 states have return successors, (9), 9 states have call predecessors, (9), 9 states have call successors, (9) [2024-09-15 18:40:51,866 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-15 18:40:51,866 INFO L93 Difference]: Finished difference Result 269 states and 282 transitions. [2024-09-15 18:40:51,867 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 76 states. [2024-09-15 18:40:51,867 INFO L78 Accepts]: Start accepts. Automaton has has 41 states, 39 states have (on average 2.358974358974359) internal successors, (92), 39 states have internal predecessors, (92), 11 states have call successors, (12), 4 states have call predecessors, (12), 3 states have return successors, (9), 9 states have call predecessors, (9), 9 states have call successors, (9) Word has length 87 [2024-09-15 18:40:51,867 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-15 18:40:51,868 INFO L225 Difference]: With dead ends: 269 [2024-09-15 18:40:51,868 INFO L226 Difference]: Without dead ends: 154 [2024-09-15 18:40:51,871 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 198 GetRequests, 81 SyntacticMatches, 9 SemanticMatches, 108 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3172 ImplicationChecksByTransitivity, 13.9s TimeCoverageRelationStatistics Valid=1301, Invalid=10688, Unknown=1, NotChecked=0, Total=11990 [2024-09-15 18:40:51,871 INFO L434 NwaCegarLoop]: 16 mSDtfsCounter, 212 mSDsluCounter, 280 mSDsCounter, 0 mSdLazyCounter, 1794 mSolverCounterSat, 243 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 213 SdHoareTripleChecker+Valid, 296 SdHoareTripleChecker+Invalid, 2037 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 243 IncrementalHoareTripleChecker+Valid, 1794 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.3s IncrementalHoareTripleChecker+Time [2024-09-15 18:40:51,872 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [213 Valid, 296 Invalid, 2037 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [243 Valid, 1794 Invalid, 0 Unknown, 0 Unchecked, 2.3s Time] [2024-09-15 18:40:51,872 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 154 states. [2024-09-15 18:40:51,925 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 154 to 97. [2024-09-15 18:40:51,925 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 97 states, 81 states have (on average 1.0493827160493827) internal successors, (85), 82 states have internal predecessors, (85), 8 states have call successors, (8), 8 states have call predecessors, (8), 7 states have return successors, (7), 6 states have call predecessors, (7), 7 states have call successors, (7) [2024-09-15 18:40:51,926 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 97 states to 97 states and 100 transitions. [2024-09-15 18:40:51,927 INFO L78 Accepts]: Start accepts. Automaton has 97 states and 100 transitions. Word has length 87 [2024-09-15 18:40:51,927 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-15 18:40:51,927 INFO L474 AbstractCegarLoop]: Abstraction has 97 states and 100 transitions. [2024-09-15 18:40:51,927 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 41 states, 39 states have (on average 2.358974358974359) internal successors, (92), 39 states have internal predecessors, (92), 11 states have call successors, (12), 4 states have call predecessors, (12), 3 states have return successors, (9), 9 states have call predecessors, (9), 9 states have call successors, (9) [2024-09-15 18:40:51,927 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:40:51,927 INFO L276 IsEmpty]: Start isEmpty. Operand 97 states and 100 transitions. [2024-09-15 18:40:51,928 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 95 [2024-09-15 18:40:51,928 INFO L208 NwaCegarLoop]: Found error trace [2024-09-15 18:40:51,928 INFO L216 NwaCegarLoop]: trace histogram [6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 5, 5, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-15 18:40:51,944 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Ended with exit code 0 [2024-09-15 18:40:52,129 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 11 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable11 [2024-09-15 18:40:52,129 INFO L399 AbstractCegarLoop]: === Iteration 13 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-15 18:40:52,130 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-15 18:40:52,130 INFO L85 PathProgramCache]: Analyzing trace with hash 1265552396, now seen corresponding path program 10 times [2024-09-15 18:40:52,130 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-15 18:40:52,130 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1932316817] [2024-09-15 18:40:52,130 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-15 18:40:52,130 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-15 18:40:52,352 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat