./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/recursified_nla-digbench/recursified_cohendiv-ll.c --full-output --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --traceabstraction.encode.modifies.clause.in.ensures.clause.of.contracts true --witnessprinter.yaml.format.version 2.1 --witnessprinter.generate.graphml.witnesses false --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version fb1cb0b9 Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReach.xml -i ../sv-benchmarks/c/recursified_nla-digbench/recursified_cohendiv-ll.c -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/certificate-witnesses-artifact/automizer --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 7c6261a52ba91bad3864c182e4633afd262bc5fe07cf18f92cb66db83623b9ae --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --traceabstraction.encode.modifies.clause.in.ensures.clause.of.contracts true --witnessprinter.yaml.format.version 2.1 --witnessprinter.generate.graphml.witnesses false --- Real Ultimate output --- This is Ultimate 0.2.4-tmp.dk.referee-eval-fb1cb0b-m [2024-09-25 11:33:34,025 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-09-25 11:33:34,097 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-09-25 11:33:34,101 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-09-25 11:33:34,103 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-09-25 11:33:34,135 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-09-25 11:33:34,136 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-09-25 11:33:34,136 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-09-25 11:33:34,137 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-09-25 11:33:34,138 INFO L153 SettingsManager]: * Use memory slicer=true [2024-09-25 11:33:34,142 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-09-25 11:33:34,142 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-09-25 11:33:34,143 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-09-25 11:33:34,143 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-09-25 11:33:34,143 INFO L153 SettingsManager]: * Use SBE=true [2024-09-25 11:33:34,144 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-09-25 11:33:34,144 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-09-25 11:33:34,144 INFO L153 SettingsManager]: * sizeof long=4 [2024-09-25 11:33:34,144 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-09-25 11:33:34,144 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-09-25 11:33:34,145 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-09-25 11:33:34,145 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-09-25 11:33:34,146 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-09-25 11:33:34,149 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-09-25 11:33:34,149 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-09-25 11:33:34,150 INFO L153 SettingsManager]: * sizeof long double=12 [2024-09-25 11:33:34,150 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-09-25 11:33:34,150 INFO L153 SettingsManager]: * Use constant arrays=true [2024-09-25 11:33:34,150 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-09-25 11:33:34,150 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-09-25 11:33:34,151 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-09-25 11:33:34,156 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-09-25 11:33:34,156 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-25 11:33:34,156 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-09-25 11:33:34,156 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-09-25 11:33:34,157 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-09-25 11:33:34,157 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-09-25 11:33:34,157 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-09-25 11:33:34,157 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-09-25 11:33:34,157 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-09-25 11:33:34,158 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-09-25 11:33:34,162 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-09-25 11:33:34,162 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/certificate-witnesses-artifact/automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 7c6261a52ba91bad3864c182e4633afd262bc5fe07cf18f92cb66db83623b9ae Applying setting for plugin de.uni_freiburg.informatik.ultimate.boogie.procedureinliner: Inline calls to implemented procedures -> NEVER Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> All Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Encode 'modifies' clause in 'ensures' clause of contracts -> true Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: YAML Format version -> 2.1 Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Generate GraphML witnesses -> false [2024-09-25 11:33:34,468 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-09-25 11:33:34,493 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-09-25 11:33:34,497 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-09-25 11:33:34,498 INFO L270 PluginConnector]: Initializing CDTParser... [2024-09-25 11:33:34,498 INFO L274 PluginConnector]: CDTParser initialized [2024-09-25 11:33:34,500 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/recursified_nla-digbench/recursified_cohendiv-ll.c [2024-09-25 11:33:35,980 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-09-25 11:33:36,165 INFO L384 CDTParser]: Found 1 translation units. [2024-09-25 11:33:36,166 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursified_nla-digbench/recursified_cohendiv-ll.c [2024-09-25 11:33:36,180 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/7d89171ef/9d2d526336564dc7b08fc6293477943b/FLAG849ccd393 [2024-09-25 11:33:36,197 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/7d89171ef/9d2d526336564dc7b08fc6293477943b [2024-09-25 11:33:36,202 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-09-25 11:33:36,204 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-09-25 11:33:36,207 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-09-25 11:33:36,208 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-09-25 11:33:36,213 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-09-25 11:33:36,213 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,214 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@262eee6 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36, skipping insertion in model container [2024-09-25 11:33:36,214 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,238 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-09-25 11:33:36,402 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursified_nla-digbench/recursified_cohendiv-ll.c[1136,1149] [2024-09-25 11:33:36,430 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-25 11:33:36,449 INFO L200 MainTranslator]: Completed pre-run [2024-09-25 11:33:36,459 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursified_nla-digbench/recursified_cohendiv-ll.c[1136,1149] [2024-09-25 11:33:36,479 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-25 11:33:36,501 INFO L204 MainTranslator]: Completed translation [2024-09-25 11:33:36,502 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36 WrapperNode [2024-09-25 11:33:36,502 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-09-25 11:33:36,503 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-09-25 11:33:36,504 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-09-25 11:33:36,504 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-09-25 11:33:36,510 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,521 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,535 INFO L138 Inliner]: procedures = 17, calls = 84, calls flagged for inlining = 0, calls inlined = 0, statements flattened = 0 [2024-09-25 11:33:36,536 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-09-25 11:33:36,536 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-09-25 11:33:36,537 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-09-25 11:33:36,537 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-09-25 11:33:36,546 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,547 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,549 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,577 INFO L175 MemorySlicer]: Split 49 memory accesses to 7 slices as follows [2, 10, 8, 8, 6, 10, 5]. 20 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2, 0, 0, 0, 0, 0, 0]. The 12 writes are split as follows [0, 2, 3, 3, 2, 1, 1]. [2024-09-25 11:33:36,578 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,578 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,589 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,594 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,595 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,600 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,603 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-09-25 11:33:36,607 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-09-25 11:33:36,607 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-09-25 11:33:36,607 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-09-25 11:33:36,608 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (1/1) ... [2024-09-25 11:33:36,613 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-25 11:33:36,631 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:33:36,647 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-09-25 11:33:36,651 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-09-25 11:33:36,695 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-09-25 11:33:36,696 INFO L130 BoogieDeclarations]: Found specification of procedure assume_abort_if_not [2024-09-25 11:33:36,696 INFO L138 BoogieDeclarations]: Found implementation of procedure assume_abort_if_not [2024-09-25 11:33:36,696 INFO L130 BoogieDeclarations]: Found specification of procedure main [2024-09-25 11:33:36,696 INFO L138 BoogieDeclarations]: Found implementation of procedure main [2024-09-25 11:33:36,696 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-09-25 11:33:36,696 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-09-25 11:33:36,698 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2024-09-25 11:33:36,698 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2024-09-25 11:33:36,698 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#4 [2024-09-25 11:33:36,699 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#5 [2024-09-25 11:33:36,699 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#6 [2024-09-25 11:33:36,699 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnStack [2024-09-25 11:33:36,699 INFO L130 BoogieDeclarations]: Found specification of procedure func_to_recursive_line_41_to_52_0 [2024-09-25 11:33:36,699 INFO L138 BoogieDeclarations]: Found implementation of procedure func_to_recursive_line_41_to_52_0 [2024-09-25 11:33:36,700 INFO L130 BoogieDeclarations]: Found specification of procedure func_to_recursive_line_32_to_55_0 [2024-09-25 11:33:36,700 INFO L138 BoogieDeclarations]: Found implementation of procedure func_to_recursive_line_32_to_55_0 [2024-09-25 11:33:36,700 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#0 [2024-09-25 11:33:36,700 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#1 [2024-09-25 11:33:36,700 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#2 [2024-09-25 11:33:36,700 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#3 [2024-09-25 11:33:36,701 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#4 [2024-09-25 11:33:36,701 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#5 [2024-09-25 11:33:36,701 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#6 [2024-09-25 11:33:36,701 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.init [2024-09-25 11:33:36,701 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.init [2024-09-25 11:33:36,701 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-09-25 11:33:36,702 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-09-25 11:33:36,702 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#0 [2024-09-25 11:33:36,702 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#1 [2024-09-25 11:33:36,703 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#2 [2024-09-25 11:33:36,703 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#3 [2024-09-25 11:33:36,703 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#4 [2024-09-25 11:33:36,703 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#5 [2024-09-25 11:33:36,703 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#6 [2024-09-25 11:33:36,703 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_assert [2024-09-25 11:33:36,704 INFO L138 BoogieDeclarations]: Found implementation of procedure __VERIFIER_assert [2024-09-25 11:33:36,704 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2024-09-25 11:33:36,806 INFO L241 CfgBuilder]: Building ICFG [2024-09-25 11:33:36,808 INFO L267 CfgBuilder]: Building CFG for each procedure with an implementation [2024-09-25 11:33:37,118 INFO L? ?]: Removed 8 outVars from TransFormulas that were not future-live. [2024-09-25 11:33:37,118 INFO L290 CfgBuilder]: Performing block encoding [2024-09-25 11:33:37,142 INFO L312 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-09-25 11:33:37,142 INFO L317 CfgBuilder]: Removed 2 assume(true) statements. [2024-09-25 11:33:37,143 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 25.09 11:33:37 BoogieIcfgContainer [2024-09-25 11:33:37,143 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-09-25 11:33:37,160 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-09-25 11:33:37,160 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-09-25 11:33:37,163 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-09-25 11:33:37,163 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 25.09 11:33:36" (1/3) ... [2024-09-25 11:33:37,164 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@31eeb383 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 25.09 11:33:37, skipping insertion in model container [2024-09-25 11:33:37,165 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:33:36" (2/3) ... [2024-09-25 11:33:37,165 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@31eeb383 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 25.09 11:33:37, skipping insertion in model container [2024-09-25 11:33:37,166 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 25.09 11:33:37" (3/3) ... [2024-09-25 11:33:37,167 INFO L112 eAbstractionObserver]: Analyzing ICFG recursified_cohendiv-ll.c [2024-09-25 11:33:37,183 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:All NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-09-25 11:33:37,183 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-09-25 11:33:37,248 INFO L335 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-09-25 11:33:37,254 INFO L336 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@a947f87, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-09-25 11:33:37,256 INFO L337 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-09-25 11:33:37,260 INFO L276 IsEmpty]: Start isEmpty. Operand has 50 states, 28 states have (on average 1.25) internal successors, (35), 31 states have internal predecessors, (35), 14 states have call successors, (14), 6 states have call predecessors, (14), 6 states have return successors, (14), 14 states have call predecessors, (14), 14 states have call successors, (14) [2024-09-25 11:33:37,267 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2024-09-25 11:33:37,267 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:33:37,268 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:33:37,268 INFO L399 AbstractCegarLoop]: === Iteration 1 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:33:37,274 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:37,275 INFO L85 PathProgramCache]: Analyzing trace with hash -1731301129, now seen corresponding path program 1 times [2024-09-25 11:33:37,285 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:33:37,286 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [960336635] [2024-09-25 11:33:37,286 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:37,287 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:33:37,470 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:33:37,480 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [411244823] [2024-09-25 11:33:37,482 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:37,482 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:37,482 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:33:37,484 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:33:37,486 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-09-25 11:33:37,636 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:37,640 INFO L262 TraceCheckSpWp]: Trace formula consists of 214 conjuncts, 31 conjuncts are in the unsatisfiable core [2024-09-25 11:33:37,648 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:33:37,698 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:33:37,710 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:33:37,829 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 11:33:37,829 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-25 11:33:37,830 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:33:37,830 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [960336635] [2024-09-25 11:33:37,830 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:33:37,831 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [411244823] [2024-09-25 11:33:37,832 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [411244823] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-25 11:33:37,832 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-25 11:33:37,833 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-09-25 11:33:37,834 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [91748222] [2024-09-25 11:33:37,835 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 11:33:37,840 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-09-25 11:33:37,841 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:33:37,861 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-09-25 11:33:37,862 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2024-09-25 11:33:37,863 INFO L87 Difference]: Start difference. First operand has 50 states, 28 states have (on average 1.25) internal successors, (35), 31 states have internal predecessors, (35), 14 states have call successors, (14), 6 states have call predecessors, (14), 6 states have return successors, (14), 14 states have call predecessors, (14), 14 states have call successors, (14) Second operand has 8 states, 6 states have (on average 1.8333333333333333) internal successors, (11), 6 states have internal predecessors, (11), 3 states have call successors, (5), 3 states have call predecessors, (5), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 11:33:38,113 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:33:38,114 INFO L93 Difference]: Finished difference Result 108 states and 152 transitions. [2024-09-25 11:33:38,115 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-09-25 11:33:38,117 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 1.8333333333333333) internal successors, (11), 6 states have internal predecessors, (11), 3 states have call successors, (5), 3 states have call predecessors, (5), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 18 [2024-09-25 11:33:38,117 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:33:38,127 INFO L225 Difference]: With dead ends: 108 [2024-09-25 11:33:38,127 INFO L226 Difference]: Without dead ends: 61 [2024-09-25 11:33:38,135 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 20 GetRequests, 11 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=27, Invalid=83, Unknown=0, NotChecked=0, Total=110 [2024-09-25 11:33:38,144 INFO L434 NwaCegarLoop]: 50 mSDtfsCounter, 15 mSDsluCounter, 260 mSDsCounter, 0 mSdLazyCounter, 101 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 16 SdHoareTripleChecker+Valid, 310 SdHoareTripleChecker+Invalid, 107 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 101 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-25 11:33:38,145 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [16 Valid, 310 Invalid, 107 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 101 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-25 11:33:38,190 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 61 states. [2024-09-25 11:33:38,223 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 61 to 59. [2024-09-25 11:33:38,225 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 59 states, 35 states have (on average 1.1142857142857143) internal successors, (39), 38 states have internal predecessors, (39), 16 states have call successors, (16), 8 states have call predecessors, (16), 7 states have return successors, (15), 14 states have call predecessors, (15), 14 states have call successors, (15) [2024-09-25 11:33:38,227 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 59 states to 59 states and 70 transitions. [2024-09-25 11:33:38,229 INFO L78 Accepts]: Start accepts. Automaton has 59 states and 70 transitions. Word has length 18 [2024-09-25 11:33:38,230 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:33:38,230 INFO L474 AbstractCegarLoop]: Abstraction has 59 states and 70 transitions. [2024-09-25 11:33:38,230 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 1.8333333333333333) internal successors, (11), 6 states have internal predecessors, (11), 3 states have call successors, (5), 3 states have call predecessors, (5), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 11:33:38,231 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:38,231 INFO L276 IsEmpty]: Start isEmpty. Operand 59 states and 70 transitions. [2024-09-25 11:33:38,232 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2024-09-25 11:33:38,232 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:33:38,232 INFO L216 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:33:38,251 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-09-25 11:33:38,436 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable0 [2024-09-25 11:33:38,437 INFO L399 AbstractCegarLoop]: === Iteration 2 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:33:38,438 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:38,438 INFO L85 PathProgramCache]: Analyzing trace with hash -1578239580, now seen corresponding path program 1 times [2024-09-25 11:33:38,438 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:33:38,438 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [662760338] [2024-09-25 11:33:38,438 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:38,439 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:33:38,520 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:33:38,525 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [583279463] [2024-09-25 11:33:38,525 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:38,526 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:38,526 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:33:38,528 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:33:38,533 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-09-25 11:33:38,649 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:38,651 INFO L262 TraceCheckSpWp]: Trace formula consists of 231 conjuncts, 59 conjuncts are in the unsatisfiable core [2024-09-25 11:33:38,656 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:33:38,675 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:33:38,678 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:33:38,684 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:33:38,689 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:33:38,864 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:33:38,867 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 7 [2024-09-25 11:33:38,878 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2024-09-25 11:33:38,915 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 11:33:38,916 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:33:39,118 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 11:33:39,119 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:33:39,119 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [662760338] [2024-09-25 11:33:39,119 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:33:39,119 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [583279463] [2024-09-25 11:33:39,119 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [583279463] provided 1 perfect and 1 imperfect interpolant sequences [2024-09-25 11:33:39,119 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:33:39,119 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [9] total 13 [2024-09-25 11:33:39,120 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1063222036] [2024-09-25 11:33:39,120 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 11:33:39,120 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-09-25 11:33:39,121 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:33:39,122 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-09-25 11:33:39,123 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=30, Invalid=126, Unknown=0, NotChecked=0, Total=156 [2024-09-25 11:33:39,123 INFO L87 Difference]: Start difference. First operand 59 states and 70 transitions. Second operand has 8 states, 6 states have (on average 2.5) internal successors, (15), 6 states have internal predecessors, (15), 4 states have call successors, (6), 3 states have call predecessors, (6), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-25 11:33:39,393 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:33:39,394 INFO L93 Difference]: Finished difference Result 68 states and 79 transitions. [2024-09-25 11:33:39,394 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-09-25 11:33:39,395 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 2.5) internal successors, (15), 6 states have internal predecessors, (15), 4 states have call successors, (6), 3 states have call predecessors, (6), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 24 [2024-09-25 11:33:39,395 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:33:39,396 INFO L225 Difference]: With dead ends: 68 [2024-09-25 11:33:39,396 INFO L226 Difference]: Without dead ends: 66 [2024-09-25 11:33:39,398 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 50 GetRequests, 33 SyntacticMatches, 3 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 19 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=44, Invalid=196, Unknown=0, NotChecked=0, Total=240 [2024-09-25 11:33:39,399 INFO L434 NwaCegarLoop]: 46 mSDtfsCounter, 15 mSDsluCounter, 231 mSDsCounter, 0 mSdLazyCounter, 123 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 15 SdHoareTripleChecker+Valid, 277 SdHoareTripleChecker+Invalid, 130 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 123 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-25 11:33:39,400 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [15 Valid, 277 Invalid, 130 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 123 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-25 11:33:39,401 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 66 states. [2024-09-25 11:33:39,424 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 66 to 63. [2024-09-25 11:33:39,426 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 63 states, 38 states have (on average 1.105263157894737) internal successors, (42), 41 states have internal predecessors, (42), 16 states have call successors, (16), 9 states have call predecessors, (16), 8 states have return successors, (15), 14 states have call predecessors, (15), 14 states have call successors, (15) [2024-09-25 11:33:39,427 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 63 states to 63 states and 73 transitions. [2024-09-25 11:33:39,431 INFO L78 Accepts]: Start accepts. Automaton has 63 states and 73 transitions. Word has length 24 [2024-09-25 11:33:39,431 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:33:39,431 INFO L474 AbstractCegarLoop]: Abstraction has 63 states and 73 transitions. [2024-09-25 11:33:39,432 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 2.5) internal successors, (15), 6 states have internal predecessors, (15), 4 states have call successors, (6), 3 states have call predecessors, (6), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-09-25 11:33:39,432 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:39,432 INFO L276 IsEmpty]: Start isEmpty. Operand 63 states and 73 transitions. [2024-09-25 11:33:39,433 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2024-09-25 11:33:39,433 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:33:39,433 INFO L216 NwaCegarLoop]: trace histogram [3, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:33:39,451 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-09-25 11:33:39,639 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:39,640 INFO L399 AbstractCegarLoop]: === Iteration 3 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:33:39,640 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:39,640 INFO L85 PathProgramCache]: Analyzing trace with hash -1582649267, now seen corresponding path program 1 times [2024-09-25 11:33:39,641 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:33:39,641 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1884578079] [2024-09-25 11:33:39,641 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:39,641 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:33:39,725 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:33:39,732 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1880703839] [2024-09-25 11:33:39,735 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:39,735 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:39,736 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:33:39,738 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:33:39,739 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-09-25 11:33:39,853 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:39,855 INFO L262 TraceCheckSpWp]: Trace formula consists of 311 conjuncts, 57 conjuncts are in the unsatisfiable core [2024-09-25 11:33:39,860 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:33:39,869 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:33:39,881 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:33:39,885 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:33:39,938 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:33:39,942 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 7 [2024-09-25 11:33:39,976 INFO L134 CoverageAnalysis]: Checked inductivity of 8 backedges. 4 proven. 0 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-25 11:33:39,977 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-25 11:33:39,977 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:33:39,977 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1884578079] [2024-09-25 11:33:39,977 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:33:39,977 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1880703839] [2024-09-25 11:33:39,978 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1880703839] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-25 11:33:39,978 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-25 11:33:39,978 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-09-25 11:33:39,978 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1592168251] [2024-09-25 11:33:39,978 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 11:33:39,978 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-09-25 11:33:39,979 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:33:39,980 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-09-25 11:33:39,980 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2024-09-25 11:33:39,980 INFO L87 Difference]: Start difference. First operand 63 states and 73 transitions. Second operand has 8 states, 6 states have (on average 3.1666666666666665) internal successors, (19), 6 states have internal predecessors, (19), 3 states have call successors, (8), 3 states have call predecessors, (8), 1 states have return successors, (4), 1 states have call predecessors, (4), 1 states have call successors, (4) [2024-09-25 11:33:40,214 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:33:40,215 INFO L93 Difference]: Finished difference Result 84 states and 99 transitions. [2024-09-25 11:33:40,216 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-09-25 11:33:40,216 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 3.1666666666666665) internal successors, (19), 6 states have internal predecessors, (19), 3 states have call successors, (8), 3 states have call predecessors, (8), 1 states have return successors, (4), 1 states have call predecessors, (4), 1 states have call successors, (4) Word has length 34 [2024-09-25 11:33:40,216 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:33:40,219 INFO L225 Difference]: With dead ends: 84 [2024-09-25 11:33:40,219 INFO L226 Difference]: Without dead ends: 82 [2024-09-25 11:33:40,221 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 36 GetRequests, 27 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=27, Invalid=83, Unknown=0, NotChecked=0, Total=110 [2024-09-25 11:33:40,222 INFO L434 NwaCegarLoop]: 46 mSDtfsCounter, 19 mSDsluCounter, 220 mSDsCounter, 0 mSdLazyCounter, 134 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 19 SdHoareTripleChecker+Valid, 266 SdHoareTripleChecker+Invalid, 144 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 134 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-25 11:33:40,222 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [19 Valid, 266 Invalid, 144 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 134 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-25 11:33:40,223 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 82 states. [2024-09-25 11:33:40,252 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 82 to 78. [2024-09-25 11:33:40,253 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 78 states, 48 states have (on average 1.1041666666666667) internal successors, (53), 51 states have internal predecessors, (53), 19 states have call successors, (19), 11 states have call predecessors, (19), 10 states have return successors, (19), 17 states have call predecessors, (19), 17 states have call successors, (19) [2024-09-25 11:33:40,255 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 78 states to 78 states and 91 transitions. [2024-09-25 11:33:40,259 INFO L78 Accepts]: Start accepts. Automaton has 78 states and 91 transitions. Word has length 34 [2024-09-25 11:33:40,260 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:33:40,260 INFO L474 AbstractCegarLoop]: Abstraction has 78 states and 91 transitions. [2024-09-25 11:33:40,260 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 3.1666666666666665) internal successors, (19), 6 states have internal predecessors, (19), 3 states have call successors, (8), 3 states have call predecessors, (8), 1 states have return successors, (4), 1 states have call predecessors, (4), 1 states have call successors, (4) [2024-09-25 11:33:40,261 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:40,261 INFO L276 IsEmpty]: Start isEmpty. Operand 78 states and 91 transitions. [2024-09-25 11:33:40,262 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2024-09-25 11:33:40,264 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:33:40,264 INFO L216 NwaCegarLoop]: trace histogram [3, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:33:40,283 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-09-25 11:33:40,468 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable2 [2024-09-25 11:33:40,469 INFO L399 AbstractCegarLoop]: === Iteration 4 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:33:40,469 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:40,469 INFO L85 PathProgramCache]: Analyzing trace with hash -372589770, now seen corresponding path program 1 times [2024-09-25 11:33:40,469 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:33:40,470 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1308782825] [2024-09-25 11:33:40,470 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:40,470 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:33:40,536 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:33:40,543 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [84297686] [2024-09-25 11:33:40,546 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:40,546 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:40,546 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:33:40,548 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:33:40,549 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-09-25 11:33:40,662 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:40,663 INFO L262 TraceCheckSpWp]: Trace formula consists of 255 conjuncts, 19 conjuncts are in the unsatisfiable core [2024-09-25 11:33:40,666 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:33:40,672 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:33:40,683 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:33:40,699 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:33:40,756 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:33:40,760 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 7 [2024-09-25 11:33:40,786 INFO L134 CoverageAnalysis]: Checked inductivity of 8 backedges. 4 proven. 0 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-25 11:33:40,787 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-25 11:33:40,787 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:33:40,787 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1308782825] [2024-09-25 11:33:40,787 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:33:40,787 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [84297686] [2024-09-25 11:33:40,788 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [84297686] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-25 11:33:40,788 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-25 11:33:40,788 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-09-25 11:33:40,788 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1083487057] [2024-09-25 11:33:40,788 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 11:33:40,789 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-09-25 11:33:40,789 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:33:40,790 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-09-25 11:33:40,790 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2024-09-25 11:33:40,790 INFO L87 Difference]: Start difference. First operand 78 states and 91 transitions. Second operand has 7 states, 6 states have (on average 3.1666666666666665) internal successors, (19), 6 states have internal predecessors, (19), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2024-09-25 11:33:41,019 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:33:41,019 INFO L93 Difference]: Finished difference Result 88 states and 100 transitions. [2024-09-25 11:33:41,020 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-09-25 11:33:41,020 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 6 states have (on average 3.1666666666666665) internal successors, (19), 6 states have internal predecessors, (19), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) Word has length 34 [2024-09-25 11:33:41,020 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:33:41,021 INFO L225 Difference]: With dead ends: 88 [2024-09-25 11:33:41,021 INFO L226 Difference]: Without dead ends: 78 [2024-09-25 11:33:41,022 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 36 GetRequests, 29 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-09-25 11:33:41,023 INFO L434 NwaCegarLoop]: 17 mSDtfsCounter, 28 mSDsluCounter, 55 mSDsCounter, 0 mSdLazyCounter, 220 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 35 SdHoareTripleChecker+Valid, 72 SdHoareTripleChecker+Invalid, 229 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 220 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-25 11:33:41,023 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [35 Valid, 72 Invalid, 229 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 220 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-25 11:33:41,024 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 78 states. [2024-09-25 11:33:41,047 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 78 to 78. [2024-09-25 11:33:41,049 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 78 states, 48 states have (on average 1.0833333333333333) internal successors, (52), 50 states have internal predecessors, (52), 19 states have call successors, (19), 11 states have call predecessors, (19), 10 states have return successors, (19), 17 states have call predecessors, (19), 17 states have call successors, (19) [2024-09-25 11:33:41,050 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 78 states to 78 states and 90 transitions. [2024-09-25 11:33:41,052 INFO L78 Accepts]: Start accepts. Automaton has 78 states and 90 transitions. Word has length 34 [2024-09-25 11:33:41,052 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:33:41,052 INFO L474 AbstractCegarLoop]: Abstraction has 78 states and 90 transitions. [2024-09-25 11:33:41,052 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 6 states have (on average 3.1666666666666665) internal successors, (19), 6 states have internal predecessors, (19), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2024-09-25 11:33:41,053 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:41,053 INFO L276 IsEmpty]: Start isEmpty. Operand 78 states and 90 transitions. [2024-09-25 11:33:41,054 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 41 [2024-09-25 11:33:41,054 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:33:41,055 INFO L216 NwaCegarLoop]: trace histogram [4, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:33:41,073 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-09-25 11:33:41,256 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:41,256 INFO L399 AbstractCegarLoop]: === Iteration 5 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:33:41,257 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:41,257 INFO L85 PathProgramCache]: Analyzing trace with hash 316523269, now seen corresponding path program 1 times [2024-09-25 11:33:41,257 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:33:41,257 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1573895100] [2024-09-25 11:33:41,257 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:41,257 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:33:41,327 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:33:41,332 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1919297805] [2024-09-25 11:33:41,332 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:41,332 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:41,333 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:33:41,337 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:33:41,339 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-09-25 11:33:41,472 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:41,476 INFO L262 TraceCheckSpWp]: Trace formula consists of 328 conjuncts, 91 conjuncts are in the unsatisfiable core [2024-09-25 11:33:41,480 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:33:41,489 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:33:41,491 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:33:41,495 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:33:41,502 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:33:41,792 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:33:41,795 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 7 [2024-09-25 11:33:41,800 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2024-09-25 11:33:41,840 INFO L134 CoverageAnalysis]: Checked inductivity of 18 backedges. 0 proven. 6 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-09-25 11:33:41,840 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:33:42,048 INFO L134 CoverageAnalysis]: Checked inductivity of 18 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-09-25 11:33:42,049 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:33:42,049 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1573895100] [2024-09-25 11:33:42,049 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:33:42,049 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1919297805] [2024-09-25 11:33:42,049 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1919297805] provided 1 perfect and 1 imperfect interpolant sequences [2024-09-25 11:33:42,049 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:33:42,049 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [11] total 17 [2024-09-25 11:33:42,049 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [621108958] [2024-09-25 11:33:42,050 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 11:33:42,050 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2024-09-25 11:33:42,050 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:33:42,051 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2024-09-25 11:33:42,051 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=42, Invalid=230, Unknown=0, NotChecked=0, Total=272 [2024-09-25 11:33:42,051 INFO L87 Difference]: Start difference. First operand 78 states and 90 transitions. Second operand has 10 states, 8 states have (on average 2.5) internal successors, (20), 7 states have internal predecessors, (20), 5 states have call successors, (9), 4 states have call predecessors, (9), 1 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2024-09-25 11:33:42,423 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:33:42,423 INFO L93 Difference]: Finished difference Result 111 states and 132 transitions. [2024-09-25 11:33:42,424 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2024-09-25 11:33:42,424 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 8 states have (on average 2.5) internal successors, (20), 7 states have internal predecessors, (20), 5 states have call successors, (9), 4 states have call predecessors, (9), 1 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) Word has length 40 [2024-09-25 11:33:42,424 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:33:42,426 INFO L225 Difference]: With dead ends: 111 [2024-09-25 11:33:42,426 INFO L226 Difference]: Without dead ends: 109 [2024-09-25 11:33:42,426 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 83 GetRequests, 57 SyntacticMatches, 7 SemanticMatches, 19 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 70 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=60, Invalid=360, Unknown=0, NotChecked=0, Total=420 [2024-09-25 11:33:42,427 INFO L434 NwaCegarLoop]: 40 mSDtfsCounter, 24 mSDsluCounter, 231 mSDsCounter, 0 mSdLazyCounter, 245 mSolverCounterSat, 15 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 24 SdHoareTripleChecker+Valid, 271 SdHoareTripleChecker+Invalid, 260 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 15 IncrementalHoareTripleChecker+Valid, 245 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-09-25 11:33:42,427 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [24 Valid, 271 Invalid, 260 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [15 Valid, 245 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-09-25 11:33:42,428 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 109 states. [2024-09-25 11:33:42,454 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 109 to 108. [2024-09-25 11:33:42,454 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 108 states, 66 states have (on average 1.0909090909090908) internal successors, (72), 70 states have internal predecessors, (72), 28 states have call successors, (28), 14 states have call predecessors, (28), 13 states have return successors, (29), 25 states have call predecessors, (29), 26 states have call successors, (29) [2024-09-25 11:33:42,456 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 108 states to 108 states and 129 transitions. [2024-09-25 11:33:42,456 INFO L78 Accepts]: Start accepts. Automaton has 108 states and 129 transitions. Word has length 40 [2024-09-25 11:33:42,457 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:33:42,457 INFO L474 AbstractCegarLoop]: Abstraction has 108 states and 129 transitions. [2024-09-25 11:33:42,457 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 8 states have (on average 2.5) internal successors, (20), 7 states have internal predecessors, (20), 5 states have call successors, (9), 4 states have call predecessors, (9), 1 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2024-09-25 11:33:42,457 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:42,457 INFO L276 IsEmpty]: Start isEmpty. Operand 108 states and 129 transitions. [2024-09-25 11:33:42,458 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 47 [2024-09-25 11:33:42,458 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:33:42,459 INFO L216 NwaCegarLoop]: trace histogram [5, 4, 4, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:33:42,477 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2024-09-25 11:33:42,659 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:42,660 INFO L399 AbstractCegarLoop]: === Iteration 6 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:33:42,660 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:42,660 INFO L85 PathProgramCache]: Analyzing trace with hash -889408325, now seen corresponding path program 1 times [2024-09-25 11:33:42,660 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:33:42,660 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [547596505] [2024-09-25 11:33:42,660 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:42,660 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:33:42,688 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:43,626 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 11:33:43,627 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:43,629 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2024-09-25 11:33:43,632 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:43,691 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-09-25 11:33:43,692 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:43,695 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-09-25 11:33:43,696 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:43,699 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 30 [2024-09-25 11:33:43,700 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:43,702 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2024-09-25 11:33:43,704 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:43,708 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 8 proven. 0 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-09-25 11:33:43,709 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:33:43,710 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [547596505] [2024-09-25 11:33:43,711 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [547596505] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-25 11:33:43,711 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-25 11:33:43,711 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [16] imperfect sequences [] total 16 [2024-09-25 11:33:43,711 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [585045178] [2024-09-25 11:33:43,711 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 11:33:43,712 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 16 states [2024-09-25 11:33:43,712 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:33:43,712 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 16 interpolants. [2024-09-25 11:33:43,713 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=30, Invalid=210, Unknown=0, NotChecked=0, Total=240 [2024-09-25 11:33:43,713 INFO L87 Difference]: Start difference. First operand 108 states and 129 transitions. Second operand has 16 states, 12 states have (on average 1.75) internal successors, (21), 13 states have internal predecessors, (21), 8 states have call successors, (10), 4 states have call predecessors, (10), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) [2024-09-25 11:33:44,078 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:33:44,078 INFO L93 Difference]: Finished difference Result 114 states and 134 transitions. [2024-09-25 11:33:44,079 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2024-09-25 11:33:44,080 INFO L78 Accepts]: Start accepts. Automaton has has 16 states, 12 states have (on average 1.75) internal successors, (21), 13 states have internal predecessors, (21), 8 states have call successors, (10), 4 states have call predecessors, (10), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) Word has length 46 [2024-09-25 11:33:44,080 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:33:44,081 INFO L225 Difference]: With dead ends: 114 [2024-09-25 11:33:44,081 INFO L226 Difference]: Without dead ends: 112 [2024-09-25 11:33:44,082 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 36 GetRequests, 14 SyntacticMatches, 0 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 34 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=70, Invalid=482, Unknown=0, NotChecked=0, Total=552 [2024-09-25 11:33:44,083 INFO L434 NwaCegarLoop]: 35 mSDtfsCounter, 31 mSDsluCounter, 352 mSDsCounter, 0 mSdLazyCounter, 407 mSolverCounterSat, 19 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 33 SdHoareTripleChecker+Valid, 387 SdHoareTripleChecker+Invalid, 426 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 19 IncrementalHoareTripleChecker+Valid, 407 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-25 11:33:44,083 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [33 Valid, 387 Invalid, 426 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [19 Valid, 407 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-25 11:33:44,084 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 112 states. [2024-09-25 11:33:44,112 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 112 to 112. [2024-09-25 11:33:44,113 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 112 states, 69 states have (on average 1.0869565217391304) internal successors, (75), 73 states have internal predecessors, (75), 28 states have call successors, (28), 15 states have call predecessors, (28), 14 states have return successors, (29), 25 states have call predecessors, (29), 26 states have call successors, (29) [2024-09-25 11:33:44,114 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 112 states to 112 states and 132 transitions. [2024-09-25 11:33:44,114 INFO L78 Accepts]: Start accepts. Automaton has 112 states and 132 transitions. Word has length 46 [2024-09-25 11:33:44,115 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:33:44,115 INFO L474 AbstractCegarLoop]: Abstraction has 112 states and 132 transitions. [2024-09-25 11:33:44,116 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 16 states, 12 states have (on average 1.75) internal successors, (21), 13 states have internal predecessors, (21), 8 states have call successors, (10), 4 states have call predecessors, (10), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) [2024-09-25 11:33:44,116 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:44,116 INFO L276 IsEmpty]: Start isEmpty. Operand 112 states and 132 transitions. [2024-09-25 11:33:44,117 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2024-09-25 11:33:44,117 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:33:44,117 INFO L216 NwaCegarLoop]: trace histogram [6, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:33:44,118 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-09-25 11:33:44,118 INFO L399 AbstractCegarLoop]: === Iteration 7 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:33:44,118 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:44,118 INFO L85 PathProgramCache]: Analyzing trace with hash 1594102023, now seen corresponding path program 1 times [2024-09-25 11:33:44,118 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:33:44,118 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [694532405] [2024-09-25 11:33:44,118 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:44,118 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:33:44,165 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:33:44,169 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [2021340946] [2024-09-25 11:33:44,169 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:44,169 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:44,169 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:33:44,171 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:33:44,172 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-09-25 11:33:44,322 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:44,325 INFO L262 TraceCheckSpWp]: Trace formula consists of 359 conjuncts, 63 conjuncts are in the unsatisfiable core [2024-09-25 11:33:44,329 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:33:44,340 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:33:44,480 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:33:44,487 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:33:44,883 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:33:44,921 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 28 treesize of output 16 [2024-09-25 11:33:44,924 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 24 treesize of output 12 [2024-09-25 11:33:44,976 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 24 proven. 10 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-09-25 11:33:44,977 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:33:45,090 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 31 treesize of output 23 [2024-09-25 11:33:49,177 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:33:49,177 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [694532405] [2024-09-25 11:33:49,177 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:33:49,178 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2021340946] [2024-09-25 11:33:49,178 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2021340946] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:33:49,178 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:33:49,178 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [17] total 17 [2024-09-25 11:33:49,178 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1609349030] [2024-09-25 11:33:49,178 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:33:49,179 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 17 states [2024-09-25 11:33:49,179 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:33:49,179 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 17 interpolants. [2024-09-25 11:33:49,180 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=52, Invalid=327, Unknown=1, NotChecked=0, Total=380 [2024-09-25 11:33:49,180 INFO L87 Difference]: Start difference. First operand 112 states and 132 transitions. Second operand has 17 states, 14 states have (on average 1.8571428571428572) internal successors, (26), 14 states have internal predecessors, (26), 7 states have call successors, (11), 6 states have call predecessors, (11), 4 states have return successors, (7), 4 states have call predecessors, (7), 4 states have call successors, (7) [2024-09-25 11:33:53,204 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-25 11:33:54,118 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:33:54,118 INFO L93 Difference]: Finished difference Result 151 states and 175 transitions. [2024-09-25 11:33:54,119 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2024-09-25 11:33:54,119 INFO L78 Accepts]: Start accepts. Automaton has has 17 states, 14 states have (on average 1.8571428571428572) internal successors, (26), 14 states have internal predecessors, (26), 7 states have call successors, (11), 6 states have call predecessors, (11), 4 states have return successors, (7), 4 states have call predecessors, (7), 4 states have call successors, (7) Word has length 53 [2024-09-25 11:33:54,120 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:33:54,121 INFO L225 Difference]: With dead ends: 151 [2024-09-25 11:33:54,121 INFO L226 Difference]: Without dead ends: 149 [2024-09-25 11:33:54,122 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 70 GetRequests, 31 SyntacticMatches, 10 SemanticMatches, 29 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 147 ImplicationChecksByTransitivity, 4.7s TimeCoverageRelationStatistics Valid=129, Invalid=800, Unknown=1, NotChecked=0, Total=930 [2024-09-25 11:33:54,123 INFO L434 NwaCegarLoop]: 35 mSDtfsCounter, 75 mSDsluCounter, 266 mSDsCounter, 0 mSdLazyCounter, 565 mSolverCounterSat, 33 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 78 SdHoareTripleChecker+Valid, 301 SdHoareTripleChecker+Invalid, 599 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 33 IncrementalHoareTripleChecker+Valid, 565 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.6s IncrementalHoareTripleChecker+Time [2024-09-25 11:33:54,123 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [78 Valid, 301 Invalid, 599 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [33 Valid, 565 Invalid, 1 Unknown, 0 Unchecked, 4.6s Time] [2024-09-25 11:33:54,124 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 149 states. [2024-09-25 11:33:54,155 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 149 to 145. [2024-09-25 11:33:54,156 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 145 states, 90 states have (on average 1.0888888888888888) internal successors, (98), 96 states have internal predecessors, (98), 34 states have call successors, (34), 20 states have call predecessors, (34), 20 states have return successors, (38), 30 states have call predecessors, (38), 31 states have call successors, (38) [2024-09-25 11:33:54,157 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 145 states to 145 states and 170 transitions. [2024-09-25 11:33:54,158 INFO L78 Accepts]: Start accepts. Automaton has 145 states and 170 transitions. Word has length 53 [2024-09-25 11:33:54,158 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:33:54,158 INFO L474 AbstractCegarLoop]: Abstraction has 145 states and 170 transitions. [2024-09-25 11:33:54,159 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 17 states, 14 states have (on average 1.8571428571428572) internal successors, (26), 14 states have internal predecessors, (26), 7 states have call successors, (11), 6 states have call predecessors, (11), 4 states have return successors, (7), 4 states have call predecessors, (7), 4 states have call successors, (7) [2024-09-25 11:33:54,159 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:54,159 INFO L276 IsEmpty]: Start isEmpty. Operand 145 states and 170 transitions. [2024-09-25 11:33:54,160 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 60 [2024-09-25 11:33:54,160 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:33:54,160 INFO L216 NwaCegarLoop]: trace histogram [6, 5, 5, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:33:54,178 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2024-09-25 11:33:54,364 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,7 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:54,365 INFO L399 AbstractCegarLoop]: === Iteration 8 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:33:54,365 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:54,365 INFO L85 PathProgramCache]: Analyzing trace with hash -161335246, now seen corresponding path program 1 times [2024-09-25 11:33:54,365 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:33:54,366 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1413487212] [2024-09-25 11:33:54,366 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:54,366 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:33:54,411 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:33:54,413 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1937229589] [2024-09-25 11:33:54,413 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:54,413 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:54,414 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:33:54,415 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:33:54,418 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-09-25 11:33:54,568 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:54,576 INFO L262 TraceCheckSpWp]: Trace formula consists of 425 conjuncts, 69 conjuncts are in the unsatisfiable core [2024-09-25 11:33:54,579 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:33:54,583 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:33:54,590 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:33:54,597 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:33:54,613 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:33:54,704 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:33:54,708 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 7 [2024-09-25 11:33:54,739 INFO L134 CoverageAnalysis]: Checked inductivity of 53 backedges. 13 proven. 0 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-09-25 11:33:54,739 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-25 11:33:54,740 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:33:54,740 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1413487212] [2024-09-25 11:33:54,740 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:33:54,740 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1937229589] [2024-09-25 11:33:54,740 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1937229589] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-25 11:33:54,740 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-25 11:33:54,740 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-09-25 11:33:54,740 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1510566016] [2024-09-25 11:33:54,740 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 11:33:54,741 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-09-25 11:33:54,741 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:33:54,741 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-09-25 11:33:54,741 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2024-09-25 11:33:54,741 INFO L87 Difference]: Start difference. First operand 145 states and 170 transitions. Second operand has 8 states, 7 states have (on average 3.857142857142857) internal successors, (27), 6 states have internal predecessors, (27), 4 states have call successors, (12), 4 states have call predecessors, (12), 2 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2024-09-25 11:33:55,154 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:33:55,155 INFO L93 Difference]: Finished difference Result 162 states and 193 transitions. [2024-09-25 11:33:55,156 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-09-25 11:33:55,156 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 3.857142857142857) internal successors, (27), 6 states have internal predecessors, (27), 4 states have call successors, (12), 4 states have call predecessors, (12), 2 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) Word has length 59 [2024-09-25 11:33:55,157 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:33:55,158 INFO L225 Difference]: With dead ends: 162 [2024-09-25 11:33:55,158 INFO L226 Difference]: Without dead ends: 160 [2024-09-25 11:33:55,159 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 64 GetRequests, 53 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=41, Invalid=115, Unknown=0, NotChecked=0, Total=156 [2024-09-25 11:33:55,159 INFO L434 NwaCegarLoop]: 33 mSDtfsCounter, 36 mSDsluCounter, 108 mSDsCounter, 0 mSdLazyCounter, 283 mSolverCounterSat, 26 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 40 SdHoareTripleChecker+Valid, 141 SdHoareTripleChecker+Invalid, 309 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 26 IncrementalHoareTripleChecker+Valid, 283 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-09-25 11:33:55,160 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [40 Valid, 141 Invalid, 309 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [26 Valid, 283 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-09-25 11:33:55,160 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 160 states. [2024-09-25 11:33:55,205 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 160 to 158. [2024-09-25 11:33:55,205 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 158 states, 97 states have (on average 1.0824742268041236) internal successors, (105), 104 states have internal predecessors, (105), 36 states have call successors, (36), 21 states have call predecessors, (36), 24 states have return successors, (47), 33 states have call predecessors, (47), 33 states have call successors, (47) [2024-09-25 11:33:55,207 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 158 states to 158 states and 188 transitions. [2024-09-25 11:33:55,207 INFO L78 Accepts]: Start accepts. Automaton has 158 states and 188 transitions. Word has length 59 [2024-09-25 11:33:55,207 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:33:55,208 INFO L474 AbstractCegarLoop]: Abstraction has 158 states and 188 transitions. [2024-09-25 11:33:55,208 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 3.857142857142857) internal successors, (27), 6 states have internal predecessors, (27), 4 states have call successors, (12), 4 states have call predecessors, (12), 2 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2024-09-25 11:33:55,208 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:55,208 INFO L276 IsEmpty]: Start isEmpty. Operand 158 states and 188 transitions. [2024-09-25 11:33:55,209 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 63 [2024-09-25 11:33:55,209 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:33:55,209 INFO L216 NwaCegarLoop]: trace histogram [7, 6, 6, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:33:55,228 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Forceful destruction successful, exit code 0 [2024-09-25 11:33:55,410 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,8 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:55,410 INFO L399 AbstractCegarLoop]: === Iteration 9 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:33:55,411 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:33:55,411 INFO L85 PathProgramCache]: Analyzing trace with hash 1396822734, now seen corresponding path program 1 times [2024-09-25 11:33:55,411 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:33:55,411 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2035206115] [2024-09-25 11:33:55,411 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:55,411 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:33:55,447 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:33:55,452 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [653854455] [2024-09-25 11:33:55,452 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:33:55,452 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:33:55,452 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:33:55,454 INFO L229 MonitoredProcess]: Starting monitored process 9 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:33:55,457 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-09-25 11:33:55,617 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:33:55,622 INFO L262 TraceCheckSpWp]: Trace formula consists of 434 conjuncts, 97 conjuncts are in the unsatisfiable core [2024-09-25 11:33:55,626 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:33:55,632 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:33:55,769 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:33:55,775 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:33:56,303 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 29 treesize of output 17 [2024-09-25 11:33:56,313 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:33:56,399 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 28 treesize of output 16 [2024-09-25 11:33:56,403 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 9 [2024-09-25 11:33:56,456 INFO L134 CoverageAnalysis]: Checked inductivity of 75 backedges. 32 proven. 15 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-09-25 11:33:56,456 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:33:56,670 INFO L134 CoverageAnalysis]: Checked inductivity of 75 backedges. 12 proven. 1 refuted. 0 times theorem prover too weak. 62 trivial. 0 not checked. [2024-09-25 11:33:56,670 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:33:56,670 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2035206115] [2024-09-25 11:33:56,671 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:33:56,671 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [653854455] [2024-09-25 11:33:56,671 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [653854455] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 11:33:56,671 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-25 11:33:56,671 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 8] total 22 [2024-09-25 11:33:56,671 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [206849300] [2024-09-25 11:33:56,671 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-25 11:33:56,672 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2024-09-25 11:33:56,672 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:33:56,672 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2024-09-25 11:33:56,673 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=60, Invalid=402, Unknown=0, NotChecked=0, Total=462 [2024-09-25 11:33:56,673 INFO L87 Difference]: Start difference. First operand 158 states and 188 transitions. Second operand has 22 states, 17 states have (on average 2.9411764705882355) internal successors, (50), 17 states have internal predecessors, (50), 11 states have call successors, (24), 8 states have call predecessors, (24), 4 states have return successors, (15), 5 states have call predecessors, (15), 5 states have call successors, (15) [2024-09-25 11:34:00,697 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-25 11:34:01,984 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:34:01,984 INFO L93 Difference]: Finished difference Result 204 states and 247 transitions. [2024-09-25 11:34:01,985 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 30 states. [2024-09-25 11:34:01,985 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 17 states have (on average 2.9411764705882355) internal successors, (50), 17 states have internal predecessors, (50), 11 states have call successors, (24), 8 states have call predecessors, (24), 4 states have return successors, (15), 5 states have call predecessors, (15), 5 states have call successors, (15) Word has length 62 [2024-09-25 11:34:01,985 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:34:01,987 INFO L225 Difference]: With dead ends: 204 [2024-09-25 11:34:01,987 INFO L226 Difference]: Without dead ends: 202 [2024-09-25 11:34:01,988 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 143 GetRequests, 93 SyntacticMatches, 12 SemanticMatches, 38 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 285 ImplicationChecksByTransitivity, 0.9s TimeCoverageRelationStatistics Valid=201, Invalid=1359, Unknown=0, NotChecked=0, Total=1560 [2024-09-25 11:34:01,989 INFO L434 NwaCegarLoop]: 39 mSDtfsCounter, 101 mSDsluCounter, 399 mSDsCounter, 0 mSdLazyCounter, 941 mSolverCounterSat, 57 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 104 SdHoareTripleChecker+Valid, 438 SdHoareTripleChecker+Invalid, 999 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 57 IncrementalHoareTripleChecker+Valid, 941 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.8s IncrementalHoareTripleChecker+Time [2024-09-25 11:34:01,989 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [104 Valid, 438 Invalid, 999 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [57 Valid, 941 Invalid, 1 Unknown, 0 Unchecked, 4.8s Time] [2024-09-25 11:34:01,990 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 202 states. [2024-09-25 11:34:02,048 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 202 to 196. [2024-09-25 11:34:02,049 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 196 states, 120 states have (on average 1.0833333333333333) internal successors, (130), 127 states have internal predecessors, (130), 44 states have call successors, (44), 24 states have call predecessors, (44), 31 states have return successors, (64), 45 states have call predecessors, (64), 41 states have call successors, (64) [2024-09-25 11:34:02,051 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 196 states to 196 states and 238 transitions. [2024-09-25 11:34:02,051 INFO L78 Accepts]: Start accepts. Automaton has 196 states and 238 transitions. Word has length 62 [2024-09-25 11:34:02,052 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:34:02,052 INFO L474 AbstractCegarLoop]: Abstraction has 196 states and 238 transitions. [2024-09-25 11:34:02,052 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 17 states have (on average 2.9411764705882355) internal successors, (50), 17 states have internal predecessors, (50), 11 states have call successors, (24), 8 states have call predecessors, (24), 4 states have return successors, (15), 5 states have call predecessors, (15), 5 states have call successors, (15) [2024-09-25 11:34:02,053 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:02,053 INFO L276 IsEmpty]: Start isEmpty. Operand 196 states and 238 transitions. [2024-09-25 11:34:02,055 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 66 [2024-09-25 11:34:02,056 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:34:02,057 INFO L216 NwaCegarLoop]: trace histogram [7, 6, 6, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:34:02,071 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Forceful destruction successful, exit code 0 [2024-09-25 11:34:02,258 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,9 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:34:02,259 INFO L399 AbstractCegarLoop]: === Iteration 10 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:34:02,259 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:02,259 INFO L85 PathProgramCache]: Analyzing trace with hash 1851795615, now seen corresponding path program 2 times [2024-09-25 11:34:02,260 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:34:02,260 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1766750461] [2024-09-25 11:34:02,260 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:34:02,260 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:34:02,302 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:34:02,304 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1668126114] [2024-09-25 11:34:02,304 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-25 11:34:02,304 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:34:02,305 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:34:02,306 INFO L229 MonitoredProcess]: Starting monitored process 10 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:34:02,308 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2024-09-25 11:34:02,470 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-25 11:34:02,470 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 11:34:02,473 INFO L262 TraceCheckSpWp]: Trace formula consists of 442 conjuncts, 137 conjuncts are in the unsatisfiable core [2024-09-25 11:34:02,477 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:34:02,486 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:34:02,488 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:34:02,511 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:34:02,516 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:02,751 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:34:02,761 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:02,801 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:04,372 INFO L349 Elim1Store]: treesize reduction 29, result has 34.1 percent of original size [2024-09-25 11:34:04,373 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 29 [2024-09-25 11:34:04,383 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 50 treesize of output 38 [2024-09-25 11:34:04,415 INFO L349 Elim1Store]: treesize reduction 22, result has 56.0 percent of original size [2024-09-25 11:34:04,415 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 83 treesize of output 80 [2024-09-25 11:34:06,185 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-25 11:34:06,186 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 0 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 124 treesize of output 144 [2024-09-25 11:34:06,232 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-25 11:34:06,233 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 4 select indices, 4 select index equivalence classes, 0 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 6 case distinctions, treesize of input 182 treesize of output 206 [2024-09-25 11:34:06,275 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-25 11:34:06,276 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 4 select indices, 4 select index equivalence classes, 0 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 6 case distinctions, treesize of input 138 treesize of output 158 [2024-09-25 11:34:06,656 INFO L134 CoverageAnalysis]: Checked inductivity of 77 backedges. 24 proven. 37 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-09-25 11:34:06,656 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:34:07,756 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:34:07,756 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1766750461] [2024-09-25 11:34:07,756 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:34:07,756 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1668126114] [2024-09-25 11:34:07,756 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1668126114] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:34:07,756 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:34:07,756 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [25] total 25 [2024-09-25 11:34:07,757 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [206485283] [2024-09-25 11:34:07,757 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:34:07,757 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-09-25 11:34:07,757 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:34:07,758 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-09-25 11:34:07,758 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=110, Invalid=946, Unknown=0, NotChecked=0, Total=1056 [2024-09-25 11:34:07,758 INFO L87 Difference]: Start difference. First operand 196 states and 238 transitions. Second operand has 25 states, 20 states have (on average 1.7) internal successors, (34), 18 states have internal predecessors, (34), 8 states have call successors, (13), 8 states have call predecessors, (13), 6 states have return successors, (9), 6 states have call predecessors, (9), 6 states have call successors, (9) [2024-09-25 11:34:15,373 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:34:15,374 INFO L93 Difference]: Finished difference Result 326 states and 377 transitions. [2024-09-25 11:34:15,375 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 29 states. [2024-09-25 11:34:15,376 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 20 states have (on average 1.7) internal successors, (34), 18 states have internal predecessors, (34), 8 states have call successors, (13), 8 states have call predecessors, (13), 6 states have return successors, (9), 6 states have call predecessors, (9), 6 states have call successors, (9) Word has length 65 [2024-09-25 11:34:15,376 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:34:15,381 INFO L225 Difference]: With dead ends: 326 [2024-09-25 11:34:15,382 INFO L226 Difference]: Without dead ends: 324 [2024-09-25 11:34:15,383 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 110 GetRequests, 47 SyntacticMatches, 6 SemanticMatches, 57 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 762 ImplicationChecksByTransitivity, 7.4s TimeCoverageRelationStatistics Valid=341, Invalid=3081, Unknown=0, NotChecked=0, Total=3422 [2024-09-25 11:34:15,384 INFO L434 NwaCegarLoop]: 48 mSDtfsCounter, 146 mSDsluCounter, 367 mSDsCounter, 0 mSdLazyCounter, 941 mSolverCounterSat, 87 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 146 SdHoareTripleChecker+Valid, 415 SdHoareTripleChecker+Invalid, 1028 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 87 IncrementalHoareTripleChecker+Valid, 941 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.8s IncrementalHoareTripleChecker+Time [2024-09-25 11:34:15,384 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [146 Valid, 415 Invalid, 1028 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [87 Valid, 941 Invalid, 0 Unknown, 0 Unchecked, 2.8s Time] [2024-09-25 11:34:15,388 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 324 states. [2024-09-25 11:34:15,533 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 324 to 317. [2024-09-25 11:34:15,534 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 317 states, 200 states have (on average 1.085) internal successors, (217), 210 states have internal predecessors, (217), 62 states have call successors, (62), 43 states have call predecessors, (62), 54 states have return successors, (91), 64 states have call predecessors, (91), 58 states have call successors, (91) [2024-09-25 11:34:15,536 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 317 states to 317 states and 370 transitions. [2024-09-25 11:34:15,537 INFO L78 Accepts]: Start accepts. Automaton has 317 states and 370 transitions. Word has length 65 [2024-09-25 11:34:15,538 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:34:15,538 INFO L474 AbstractCegarLoop]: Abstraction has 317 states and 370 transitions. [2024-09-25 11:34:15,538 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 20 states have (on average 1.7) internal successors, (34), 18 states have internal predecessors, (34), 8 states have call successors, (13), 8 states have call predecessors, (13), 6 states have return successors, (9), 6 states have call predecessors, (9), 6 states have call successors, (9) [2024-09-25 11:34:15,539 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:15,539 INFO L276 IsEmpty]: Start isEmpty. Operand 317 states and 370 transitions. [2024-09-25 11:34:15,540 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 78 [2024-09-25 11:34:15,543 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:34:15,543 INFO L216 NwaCegarLoop]: trace histogram [8, 7, 7, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:34:15,562 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Ended with exit code 0 [2024-09-25 11:34:15,744 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 10 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-09-25 11:34:15,744 INFO L399 AbstractCegarLoop]: === Iteration 11 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:34:15,744 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:15,745 INFO L85 PathProgramCache]: Analyzing trace with hash 1323270614, now seen corresponding path program 1 times [2024-09-25 11:34:15,745 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:34:15,745 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1160839979] [2024-09-25 11:34:15,745 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:34:15,745 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:34:15,791 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:34:15,793 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1003965874] [2024-09-25 11:34:15,793 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:34:15,793 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:34:15,793 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:34:15,795 INFO L229 MonitoredProcess]: Starting monitored process 11 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:34:15,796 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Waiting until timeout for monitored process [2024-09-25 11:34:15,969 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:15,974 INFO L262 TraceCheckSpWp]: Trace formula consists of 468 conjuncts, 134 conjuncts are in the unsatisfiable core [2024-09-25 11:34:15,979 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:34:15,987 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:34:15,992 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:34:16,020 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:34:16,027 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:16,047 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:16,356 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:34:16,367 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:16,434 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:16,689 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:17,105 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 35 treesize of output 27 [2024-09-25 11:34:17,179 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 35 treesize of output 21 [2024-09-25 11:34:17,188 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:34:17,228 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 25 treesize of output 17 [2024-09-25 11:34:17,235 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-25 11:34:17,235 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 35 treesize of output 31 [2024-09-25 11:34:17,238 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 44 treesize of output 28 [2024-09-25 11:34:17,294 INFO L134 CoverageAnalysis]: Checked inductivity of 107 backedges. 22 proven. 19 refuted. 0 times theorem prover too weak. 66 trivial. 0 not checked. [2024-09-25 11:34:17,294 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:34:18,799 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 48 treesize of output 40 [2024-09-25 11:34:18,807 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 40 treesize of output 32 [2024-09-25 11:34:22,835 WARN L854 $PredicateComparison]: unable to prove that (and (or (< (select (select |c_#memory_int#6| |c_func_to_recursive_line_32_to_55_0_#in~x.base|) |c_func_to_recursive_line_32_to_55_0_#in~x.offset|) (+ (* (select (select |c_#memory_int#5| |c_func_to_recursive_line_32_to_55_0_#in~y.base|) |c_func_to_recursive_line_32_to_55_0_#in~y.offset|) (select (select |c_old(#memory_int#4)| |c_func_to_recursive_line_32_to_55_0_#in~q.base|) |c_func_to_recursive_line_32_to_55_0_#in~q.offset|)) (select (select |c_old(#memory_int#1)| |c_func_to_recursive_line_32_to_55_0_#in~r.base|) |c_func_to_recursive_line_32_to_55_0_#in~r.offset|) 1)) (forall ((|v_func_to_recursive_line_32_to_55_0_#in~r.offset_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~y.offset_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~y.base_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~x.offset_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~r.base_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~x.base_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~q.base_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~q.offset_BEFORE_CALL_7| Int)) (= (+ (* (select (select |c_#memory_int#4| |v_func_to_recursive_line_32_to_55_0_#in~q.base_BEFORE_CALL_7|) |v_func_to_recursive_line_32_to_55_0_#in~q.offset_BEFORE_CALL_7|) (select (select |c_#memory_int#5| |v_func_to_recursive_line_32_to_55_0_#in~y.base_BEFORE_CALL_7|) |v_func_to_recursive_line_32_to_55_0_#in~y.offset_BEFORE_CALL_7|)) (select (select |c_#memory_int#1| |v_func_to_recursive_line_32_to_55_0_#in~r.base_BEFORE_CALL_7|) |v_func_to_recursive_line_32_to_55_0_#in~r.offset_BEFORE_CALL_7|)) (select (select |c_#memory_int#6| |v_func_to_recursive_line_32_to_55_0_#in~x.base_BEFORE_CALL_7|) |v_func_to_recursive_line_32_to_55_0_#in~x.offset_BEFORE_CALL_7|)))) (forall ((|v_func_to_recursive_line_32_to_55_0_#in~r.offset_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~y.offset_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~y.base_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~x.offset_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~r.base_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~x.base_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~q.base_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_32_to_55_0_#in~q.offset_BEFORE_CALL_7| Int)) (let ((.cse1 (select (select |c_#memory_int#5| |v_func_to_recursive_line_32_to_55_0_#in~y.base_BEFORE_CALL_7|) |v_func_to_recursive_line_32_to_55_0_#in~y.offset_BEFORE_CALL_7|)) (.cse0 (select (select |c_#memory_int#6| |v_func_to_recursive_line_32_to_55_0_#in~x.base_BEFORE_CALL_7|) |v_func_to_recursive_line_32_to_55_0_#in~x.offset_BEFORE_CALL_7|))) (or (not (= .cse0 (+ (* .cse1 (select (select |c_old(#memory_int#4)| |v_func_to_recursive_line_32_to_55_0_#in~q.base_BEFORE_CALL_7|) |v_func_to_recursive_line_32_to_55_0_#in~q.offset_BEFORE_CALL_7|)) (select (select |c_old(#memory_int#1)| |v_func_to_recursive_line_32_to_55_0_#in~r.base_BEFORE_CALL_7|) |v_func_to_recursive_line_32_to_55_0_#in~r.offset_BEFORE_CALL_7|)))) (= (+ (* (select (select |c_#memory_int#4| |v_func_to_recursive_line_32_to_55_0_#in~q.base_BEFORE_CALL_7|) |v_func_to_recursive_line_32_to_55_0_#in~q.offset_BEFORE_CALL_7|) .cse1) (select (select |c_#memory_int#1| |v_func_to_recursive_line_32_to_55_0_#in~r.base_BEFORE_CALL_7|) |v_func_to_recursive_line_32_to_55_0_#in~r.offset_BEFORE_CALL_7|)) .cse0))))) is different from false [2024-09-25 11:34:23,029 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:34:23,029 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1160839979] [2024-09-25 11:34:23,029 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:34:23,029 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1003965874] [2024-09-25 11:34:23,029 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1003965874] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:34:23,029 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:34:23,029 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [24] total 24 [2024-09-25 11:34:23,029 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [616936199] [2024-09-25 11:34:23,029 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:34:23,030 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 24 states [2024-09-25 11:34:23,030 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:34:23,030 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 24 interpolants. [2024-09-25 11:34:23,031 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=104, Invalid=769, Unknown=1, NotChecked=56, Total=930 [2024-09-25 11:34:23,031 INFO L87 Difference]: Start difference. First operand 317 states and 370 transitions. Second operand has 24 states, 19 states have (on average 1.894736842105263) internal successors, (36), 19 states have internal predecessors, (36), 10 states have call successors, (14), 6 states have call predecessors, (14), 7 states have return successors, (12), 9 states have call predecessors, (12), 9 states have call successors, (12) [2024-09-25 11:34:27,053 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-25 11:34:28,469 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:34:28,469 INFO L93 Difference]: Finished difference Result 329 states and 384 transitions. [2024-09-25 11:34:28,470 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 26 states. [2024-09-25 11:34:28,470 INFO L78 Accepts]: Start accepts. Automaton has has 24 states, 19 states have (on average 1.894736842105263) internal successors, (36), 19 states have internal predecessors, (36), 10 states have call successors, (14), 6 states have call predecessors, (14), 7 states have return successors, (12), 9 states have call predecessors, (12), 9 states have call successors, (12) Word has length 77 [2024-09-25 11:34:28,470 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:34:28,473 INFO L225 Difference]: With dead ends: 329 [2024-09-25 11:34:28,474 INFO L226 Difference]: Without dead ends: 317 [2024-09-25 11:34:28,476 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 103 GetRequests, 59 SyntacticMatches, 2 SemanticMatches, 42 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 353 ImplicationChecksByTransitivity, 5.3s TimeCoverageRelationStatistics Valid=234, Invalid=1575, Unknown=1, NotChecked=82, Total=1892 [2024-09-25 11:34:28,476 INFO L434 NwaCegarLoop]: 17 mSDtfsCounter, 64 mSDsluCounter, 124 mSDsCounter, 0 mSdLazyCounter, 874 mSolverCounterSat, 64 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 68 SdHoareTripleChecker+Valid, 141 SdHoareTripleChecker+Invalid, 939 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 64 IncrementalHoareTripleChecker+Valid, 874 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.8s IncrementalHoareTripleChecker+Time [2024-09-25 11:34:28,477 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [68 Valid, 141 Invalid, 939 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [64 Valid, 874 Invalid, 1 Unknown, 0 Unchecked, 4.8s Time] [2024-09-25 11:34:28,477 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 317 states. [2024-09-25 11:34:28,617 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 317 to 315. [2024-09-25 11:34:28,618 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 315 states, 199 states have (on average 1.0804020100502512) internal successors, (215), 208 states have internal predecessors, (215), 61 states have call successors, (61), 43 states have call predecessors, (61), 54 states have return successors, (92), 63 states have call predecessors, (92), 58 states have call successors, (92) [2024-09-25 11:34:28,619 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 315 states to 315 states and 368 transitions. [2024-09-25 11:34:28,620 INFO L78 Accepts]: Start accepts. Automaton has 315 states and 368 transitions. Word has length 77 [2024-09-25 11:34:28,620 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:34:28,620 INFO L474 AbstractCegarLoop]: Abstraction has 315 states and 368 transitions. [2024-09-25 11:34:28,620 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 24 states, 19 states have (on average 1.894736842105263) internal successors, (36), 19 states have internal predecessors, (36), 10 states have call successors, (14), 6 states have call predecessors, (14), 7 states have return successors, (12), 9 states have call predecessors, (12), 9 states have call successors, (12) [2024-09-25 11:34:28,621 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:28,621 INFO L276 IsEmpty]: Start isEmpty. Operand 315 states and 368 transitions. [2024-09-25 11:34:28,622 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 82 [2024-09-25 11:34:28,622 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:34:28,622 INFO L216 NwaCegarLoop]: trace histogram [10, 9, 9, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:34:28,641 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Forceful destruction successful, exit code 0 [2024-09-25 11:34:28,826 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 11 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-09-25 11:34:28,827 INFO L399 AbstractCegarLoop]: === Iteration 12 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:34:28,827 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:28,828 INFO L85 PathProgramCache]: Analyzing trace with hash -1223510810, now seen corresponding path program 2 times [2024-09-25 11:34:28,828 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:34:28,828 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1003940228] [2024-09-25 11:34:28,828 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:34:28,828 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:34:28,884 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:34:28,888 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [2078637247] [2024-09-25 11:34:28,889 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-25 11:34:28,889 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:34:28,889 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:34:28,891 INFO L229 MonitoredProcess]: Starting monitored process 12 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:34:28,892 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Waiting until timeout for monitored process [2024-09-25 11:34:29,052 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-25 11:34:29,052 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 11:34:29,056 INFO L262 TraceCheckSpWp]: Trace formula consists of 482 conjuncts, 129 conjuncts are in the unsatisfiable core [2024-09-25 11:34:29,061 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:34:29,065 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:34:29,088 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:34:29,090 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:34:29,118 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:34:29,123 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:29,487 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 29 treesize of output 17 [2024-09-25 11:34:29,506 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:34:30,002 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 30 treesize of output 18 [2024-09-25 11:34:30,048 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 13 [2024-09-25 11:34:30,051 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 9 [2024-09-25 11:34:30,114 INFO L134 CoverageAnalysis]: Checked inductivity of 172 backedges. 60 proven. 72 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-09-25 11:34:30,114 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:34:30,281 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:34:30,281 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1003940228] [2024-09-25 11:34:30,281 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:34:30,282 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2078637247] [2024-09-25 11:34:30,282 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2078637247] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:34:30,282 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:34:30,282 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18] total 18 [2024-09-25 11:34:30,282 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [314076956] [2024-09-25 11:34:30,282 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:34:30,282 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 18 states [2024-09-25 11:34:30,282 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:34:30,283 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 18 interpolants. [2024-09-25 11:34:30,283 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=55, Invalid=451, Unknown=0, NotChecked=0, Total=506 [2024-09-25 11:34:30,283 INFO L87 Difference]: Start difference. First operand 315 states and 368 transitions. Second operand has 18 states, 16 states have (on average 2.25) internal successors, (36), 14 states have internal predecessors, (36), 7 states have call successors, (16), 7 states have call predecessors, (16), 4 states have return successors, (11), 5 states have call predecessors, (11), 5 states have call successors, (11) [2024-09-25 11:34:31,629 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:34:31,629 INFO L93 Difference]: Finished difference Result 390 states and 448 transitions. [2024-09-25 11:34:31,630 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 25 states. [2024-09-25 11:34:31,630 INFO L78 Accepts]: Start accepts. Automaton has has 18 states, 16 states have (on average 2.25) internal successors, (36), 14 states have internal predecessors, (36), 7 states have call successors, (16), 7 states have call predecessors, (16), 4 states have return successors, (11), 5 states have call predecessors, (11), 5 states have call successors, (11) Word has length 81 [2024-09-25 11:34:31,630 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:34:31,632 INFO L225 Difference]: With dead ends: 390 [2024-09-25 11:34:31,632 INFO L226 Difference]: Without dead ends: 388 [2024-09-25 11:34:31,633 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 102 GetRequests, 55 SyntacticMatches, 12 SemanticMatches, 35 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 168 ImplicationChecksByTransitivity, 1.0s TimeCoverageRelationStatistics Valid=141, Invalid=1191, Unknown=0, NotChecked=0, Total=1332 [2024-09-25 11:34:31,634 INFO L434 NwaCegarLoop]: 54 mSDtfsCounter, 75 mSDsluCounter, 581 mSDsCounter, 0 mSdLazyCounter, 968 mSolverCounterSat, 46 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 78 SdHoareTripleChecker+Valid, 635 SdHoareTripleChecker+Invalid, 1014 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 46 IncrementalHoareTripleChecker+Valid, 968 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.8s IncrementalHoareTripleChecker+Time [2024-09-25 11:34:31,634 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [78 Valid, 635 Invalid, 1014 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [46 Valid, 968 Invalid, 0 Unknown, 0 Unchecked, 0.8s Time] [2024-09-25 11:34:31,634 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 388 states. [2024-09-25 11:34:31,774 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 388 to 381. [2024-09-25 11:34:31,775 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 381 states, 244 states have (on average 1.0778688524590163) internal successors, (263), 256 states have internal predecessors, (263), 68 states have call successors, (68), 56 states have call predecessors, (68), 68 states have return successors, (108), 68 states have call predecessors, (108), 64 states have call successors, (108) [2024-09-25 11:34:31,777 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 381 states to 381 states and 439 transitions. [2024-09-25 11:34:31,778 INFO L78 Accepts]: Start accepts. Automaton has 381 states and 439 transitions. Word has length 81 [2024-09-25 11:34:31,778 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:34:31,779 INFO L474 AbstractCegarLoop]: Abstraction has 381 states and 439 transitions. [2024-09-25 11:34:31,779 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 18 states, 16 states have (on average 2.25) internal successors, (36), 14 states have internal predecessors, (36), 7 states have call successors, (16), 7 states have call predecessors, (16), 4 states have return successors, (11), 5 states have call predecessors, (11), 5 states have call successors, (11) [2024-09-25 11:34:31,779 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:31,779 INFO L276 IsEmpty]: Start isEmpty. Operand 381 states and 439 transitions. [2024-09-25 11:34:31,780 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 82 [2024-09-25 11:34:31,780 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:34:31,780 INFO L216 NwaCegarLoop]: trace histogram [9, 8, 8, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:34:31,796 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Forceful destruction successful, exit code 0 [2024-09-25 11:34:31,984 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,12 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:34:31,985 INFO L399 AbstractCegarLoop]: === Iteration 13 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:34:31,985 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:31,985 INFO L85 PathProgramCache]: Analyzing trace with hash 1472240640, now seen corresponding path program 3 times [2024-09-25 11:34:31,985 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:34:31,985 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2095650539] [2024-09-25 11:34:31,985 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:34:31,985 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:34:32,007 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:32,945 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 11:34:32,947 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:32,948 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2024-09-25 11:34:32,949 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:32,950 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-09-25 11:34:32,950 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:32,951 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-09-25 11:34:32,952 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:32,965 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 27 [2024-09-25 11:34:32,969 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:33,157 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-09-25 11:34:33,159 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:33,167 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-09-25 11:34:33,168 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:33,176 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-09-25 11:34:33,177 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:33,180 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 55 [2024-09-25 11:34:33,182 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:33,185 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 61 [2024-09-25 11:34:33,188 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:33,193 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 71 [2024-09-25 11:34:33,194 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:33,196 INFO L134 CoverageAnalysis]: Checked inductivity of 141 backedges. 29 proven. 0 refuted. 0 times theorem prover too weak. 112 trivial. 0 not checked. [2024-09-25 11:34:33,196 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:34:33,197 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2095650539] [2024-09-25 11:34:33,197 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2095650539] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-25 11:34:33,197 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-25 11:34:33,197 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2024-09-25 11:34:33,197 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1978892123] [2024-09-25 11:34:33,197 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 11:34:33,198 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2024-09-25 11:34:33,198 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:34:33,199 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2024-09-25 11:34:33,199 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=28, Invalid=154, Unknown=0, NotChecked=0, Total=182 [2024-09-25 11:34:33,199 INFO L87 Difference]: Start difference. First operand 381 states and 439 transitions. Second operand has 14 states, 10 states have (on average 3.3) internal successors, (33), 11 states have internal predecessors, (33), 8 states have call successors, (16), 4 states have call predecessors, (16), 2 states have return successors, (11), 5 states have call predecessors, (11), 8 states have call successors, (11) [2024-09-25 11:34:33,916 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:34:33,917 INFO L93 Difference]: Finished difference Result 525 states and 619 transitions. [2024-09-25 11:34:33,918 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-09-25 11:34:33,918 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 10 states have (on average 3.3) internal successors, (33), 11 states have internal predecessors, (33), 8 states have call successors, (16), 4 states have call predecessors, (16), 2 states have return successors, (11), 5 states have call predecessors, (11), 8 states have call successors, (11) Word has length 81 [2024-09-25 11:34:33,918 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:34:33,920 INFO L225 Difference]: With dead ends: 525 [2024-09-25 11:34:33,921 INFO L226 Difference]: Without dead ends: 264 [2024-09-25 11:34:33,922 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 55 GetRequests, 32 SyntacticMatches, 0 SemanticMatches, 23 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 71 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=90, Invalid=510, Unknown=0, NotChecked=0, Total=600 [2024-09-25 11:34:33,923 INFO L434 NwaCegarLoop]: 30 mSDtfsCounter, 40 mSDsluCounter, 135 mSDsCounter, 0 mSdLazyCounter, 501 mSolverCounterSat, 28 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 42 SdHoareTripleChecker+Valid, 165 SdHoareTripleChecker+Invalid, 529 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 28 IncrementalHoareTripleChecker+Valid, 501 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-09-25 11:34:33,923 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [42 Valid, 165 Invalid, 529 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [28 Valid, 501 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-09-25 11:34:33,924 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 264 states. [2024-09-25 11:34:34,028 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 264 to 264. [2024-09-25 11:34:34,029 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 264 states, 169 states have (on average 1.0650887573964498) internal successors, (180), 176 states have internal predecessors, (180), 48 states have call successors, (48), 39 states have call predecessors, (48), 46 states have return successors, (65), 48 states have call predecessors, (65), 44 states have call successors, (65) [2024-09-25 11:34:34,031 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 264 states to 264 states and 293 transitions. [2024-09-25 11:34:34,031 INFO L78 Accepts]: Start accepts. Automaton has 264 states and 293 transitions. Word has length 81 [2024-09-25 11:34:34,032 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:34:34,032 INFO L474 AbstractCegarLoop]: Abstraction has 264 states and 293 transitions. [2024-09-25 11:34:34,032 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 10 states have (on average 3.3) internal successors, (33), 11 states have internal predecessors, (33), 8 states have call successors, (16), 4 states have call predecessors, (16), 2 states have return successors, (11), 5 states have call predecessors, (11), 8 states have call successors, (11) [2024-09-25 11:34:34,033 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:34,033 INFO L276 IsEmpty]: Start isEmpty. Operand 264 states and 293 transitions. [2024-09-25 11:34:34,034 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 90 [2024-09-25 11:34:34,034 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:34:34,034 INFO L216 NwaCegarLoop]: trace histogram [10, 9, 9, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:34:34,034 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12 [2024-09-25 11:34:34,034 INFO L399 AbstractCegarLoop]: === Iteration 14 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:34:34,035 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:34,035 INFO L85 PathProgramCache]: Analyzing trace with hash -987042471, now seen corresponding path program 1 times [2024-09-25 11:34:34,035 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:34:34,035 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [996927245] [2024-09-25 11:34:34,036 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:34:34,036 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:34:34,088 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:34:34,094 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1334493367] [2024-09-25 11:34:34,094 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:34:34,094 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:34:34,094 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:34:34,096 INFO L229 MonitoredProcess]: Starting monitored process 13 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:34:34,098 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Waiting until timeout for monitored process [2024-09-25 11:34:34,289 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:34:34,299 INFO L262 TraceCheckSpWp]: Trace formula consists of 550 conjuncts, 112 conjuncts are in the unsatisfiable core [2024-09-25 11:34:34,304 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:34:34,308 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:34:34,394 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:34:34,398 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:34,416 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:35,104 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:34:35,109 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 29 treesize of output 17 [2024-09-25 11:34:35,194 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-25 11:34:35,194 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 35 treesize of output 31 [2024-09-25 11:34:35,198 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 9 [2024-09-25 11:34:35,255 INFO L134 CoverageAnalysis]: Checked inductivity of 176 backedges. 20 proven. 35 refuted. 0 times theorem prover too weak. 121 trivial. 0 not checked. [2024-09-25 11:34:35,255 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:34:39,977 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:34:39,977 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [996927245] [2024-09-25 11:34:39,978 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:34:39,978 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1334493367] [2024-09-25 11:34:39,978 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1334493367] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:34:39,978 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:34:39,978 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [23] total 23 [2024-09-25 11:34:39,978 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1444511435] [2024-09-25 11:34:39,978 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:34:39,978 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2024-09-25 11:34:39,978 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:34:39,979 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2024-09-25 11:34:39,979 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=92, Invalid=663, Unknown=1, NotChecked=0, Total=756 [2024-09-25 11:34:39,979 INFO L87 Difference]: Start difference. First operand 264 states and 293 transitions. Second operand has 23 states, 18 states have (on average 2.111111111111111) internal successors, (38), 20 states have internal predecessors, (38), 11 states have call successors, (17), 6 states have call predecessors, (17), 6 states have return successors, (13), 7 states have call predecessors, (13), 8 states have call successors, (13) [2024-09-25 11:34:44,021 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-25 11:34:45,200 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:34:45,201 INFO L93 Difference]: Finished difference Result 272 states and 302 transitions. [2024-09-25 11:34:45,201 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 24 states. [2024-09-25 11:34:45,201 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 18 states have (on average 2.111111111111111) internal successors, (38), 20 states have internal predecessors, (38), 11 states have call successors, (17), 6 states have call predecessors, (17), 6 states have return successors, (13), 7 states have call predecessors, (13), 8 states have call successors, (13) Word has length 89 [2024-09-25 11:34:45,201 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:34:45,203 INFO L225 Difference]: With dead ends: 272 [2024-09-25 11:34:45,203 INFO L226 Difference]: Without dead ends: 270 [2024-09-25 11:34:45,204 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 114 GetRequests, 54 SyntacticMatches, 20 SemanticMatches, 40 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 395 ImplicationChecksByTransitivity, 5.1s TimeCoverageRelationStatistics Valid=227, Invalid=1494, Unknown=1, NotChecked=0, Total=1722 [2024-09-25 11:34:45,204 INFO L434 NwaCegarLoop]: 30 mSDtfsCounter, 52 mSDsluCounter, 264 mSDsCounter, 0 mSdLazyCounter, 994 mSolverCounterSat, 41 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 55 SdHoareTripleChecker+Valid, 294 SdHoareTripleChecker+Invalid, 1036 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 41 IncrementalHoareTripleChecker+Valid, 994 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.8s IncrementalHoareTripleChecker+Time [2024-09-25 11:34:45,205 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [55 Valid, 294 Invalid, 1036 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [41 Valid, 994 Invalid, 1 Unknown, 0 Unchecked, 4.8s Time] [2024-09-25 11:34:45,205 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 270 states. [2024-09-25 11:34:45,298 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 270 to 268. [2024-09-25 11:34:45,299 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 268 states, 172 states have (on average 1.063953488372093) internal successors, (183), 179 states have internal predecessors, (183), 48 states have call successors, (48), 40 states have call predecessors, (48), 47 states have return successors, (65), 48 states have call predecessors, (65), 44 states have call successors, (65) [2024-09-25 11:34:45,300 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 268 states to 268 states and 296 transitions. [2024-09-25 11:34:45,301 INFO L78 Accepts]: Start accepts. Automaton has 268 states and 296 transitions. Word has length 89 [2024-09-25 11:34:45,301 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:34:45,301 INFO L474 AbstractCegarLoop]: Abstraction has 268 states and 296 transitions. [2024-09-25 11:34:45,301 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 18 states have (on average 2.111111111111111) internal successors, (38), 20 states have internal predecessors, (38), 11 states have call successors, (17), 6 states have call predecessors, (17), 6 states have return successors, (13), 7 states have call predecessors, (13), 8 states have call successors, (13) [2024-09-25 11:34:45,302 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:45,302 INFO L276 IsEmpty]: Start isEmpty. Operand 268 states and 296 transitions. [2024-09-25 11:34:45,303 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 96 [2024-09-25 11:34:45,303 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:34:45,303 INFO L216 NwaCegarLoop]: trace histogram [11, 10, 10, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:34:45,322 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Ended with exit code 0 [2024-09-25 11:34:45,503 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 13 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable13 [2024-09-25 11:34:45,503 INFO L399 AbstractCegarLoop]: === Iteration 15 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:34:45,504 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:34:45,504 INFO L85 PathProgramCache]: Analyzing trace with hash -568318842, now seen corresponding path program 2 times [2024-09-25 11:34:45,504 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:34:45,504 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [135048823] [2024-09-25 11:34:45,504 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:34:45,504 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:34:45,557 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:34:45,559 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1055248101] [2024-09-25 11:34:45,559 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-25 11:34:45,559 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:34:45,559 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:34:45,561 INFO L229 MonitoredProcess]: Starting monitored process 14 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:34:45,563 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Waiting until timeout for monitored process [2024-09-25 11:34:45,777 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-25 11:34:45,777 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 11:34:45,785 INFO L262 TraceCheckSpWp]: Trace formula consists of 567 conjuncts, 169 conjuncts are in the unsatisfiable core [2024-09-25 11:34:45,791 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:34:45,795 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:34:45,797 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:34:45,823 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:45,829 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:34:46,057 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:34:46,066 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:46,098 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:34:46,889 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:34:46,906 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 29 treesize of output 17 [2024-09-25 11:34:46,980 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2024-09-25 11:34:46,996 INFO L349 Elim1Store]: treesize reduction 29, result has 34.1 percent of original size [2024-09-25 11:34:46,996 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 29 [2024-09-25 11:34:47,005 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 37 treesize of output 29 [2024-09-25 11:34:47,046 INFO L349 Elim1Store]: treesize reduction 24, result has 53.8 percent of original size [2024-09-25 11:34:47,047 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 46 treesize of output 57 [2024-09-25 11:34:47,928 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-25 11:34:47,928 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 4 select indices, 4 select index equivalence classes, 0 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 6 case distinctions, treesize of input 110 treesize of output 154 [2024-09-25 11:34:47,980 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-25 11:34:47,980 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 5 select indices, 5 select index equivalence classes, 0 disjoint index pairs (out of 10 index pairs), introduced 5 new quantified variables, introduced 10 case distinctions, treesize of input 150 treesize of output 222 [2024-09-25 11:34:47,998 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-25 11:34:47,998 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 93 treesize of output 77 [2024-09-25 11:34:48,197 INFO L134 CoverageAnalysis]: Checked inductivity of 216 backedges. 0 proven. 71 refuted. 0 times theorem prover too weak. 145 trivial. 0 not checked. [2024-09-25 11:34:48,198 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:35:04,876 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:35:04,876 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [135048823] [2024-09-25 11:35:04,876 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:35:04,876 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1055248101] [2024-09-25 11:35:04,876 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1055248101] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:35:04,876 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:35:04,876 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [22] total 22 [2024-09-25 11:35:04,876 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1804578690] [2024-09-25 11:35:04,877 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:35:04,877 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2024-09-25 11:35:04,877 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:35:04,878 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2024-09-25 11:35:04,878 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=82, Invalid=670, Unknown=4, NotChecked=0, Total=756 [2024-09-25 11:35:04,879 INFO L87 Difference]: Start difference. First operand 268 states and 296 transitions. Second operand has 22 states, 17 states have (on average 2.2941176470588234) internal successors, (39), 17 states have internal predecessors, (39), 10 states have call successors, (18), 7 states have call predecessors, (18), 6 states have return successors, (14), 8 states have call predecessors, (14), 8 states have call successors, (14) [2024-09-25 11:35:11,826 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-25 11:35:12,108 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:35:12,108 INFO L93 Difference]: Finished difference Result 392 states and 433 transitions. [2024-09-25 11:35:12,110 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 25 states. [2024-09-25 11:35:12,110 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 17 states have (on average 2.2941176470588234) internal successors, (39), 17 states have internal predecessors, (39), 10 states have call successors, (18), 7 states have call predecessors, (18), 6 states have return successors, (14), 8 states have call predecessors, (14), 8 states have call successors, (14) Word has length 95 [2024-09-25 11:35:12,110 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:35:12,112 INFO L225 Difference]: With dead ends: 392 [2024-09-25 11:35:12,113 INFO L226 Difference]: Without dead ends: 390 [2024-09-25 11:35:12,115 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 123 GetRequests, 66 SyntacticMatches, 20 SemanticMatches, 37 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 358 ImplicationChecksByTransitivity, 17.9s TimeCoverageRelationStatistics Valid=162, Invalid=1316, Unknown=4, NotChecked=0, Total=1482 [2024-09-25 11:35:12,116 INFO L434 NwaCegarLoop]: 48 mSDtfsCounter, 67 mSDsluCounter, 363 mSDsCounter, 0 mSdLazyCounter, 901 mSolverCounterSat, 30 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 6.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 68 SdHoareTripleChecker+Valid, 411 SdHoareTripleChecker+Invalid, 932 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 30 IncrementalHoareTripleChecker+Valid, 901 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 6.2s IncrementalHoareTripleChecker+Time [2024-09-25 11:35:12,117 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [68 Valid, 411 Invalid, 932 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [30 Valid, 901 Invalid, 1 Unknown, 0 Unchecked, 6.2s Time] [2024-09-25 11:35:12,118 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 390 states. [2024-09-25 11:35:12,340 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 390 to 382. [2024-09-25 11:35:12,341 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 382 states, 246 states have (on average 1.0731707317073171) internal successors, (264), 257 states have internal predecessors, (264), 67 states have call successors, (67), 57 states have call predecessors, (67), 68 states have return successors, (94), 67 states have call predecessors, (94), 62 states have call successors, (94) [2024-09-25 11:35:12,343 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 382 states to 382 states and 425 transitions. [2024-09-25 11:35:12,343 INFO L78 Accepts]: Start accepts. Automaton has 382 states and 425 transitions. Word has length 95 [2024-09-25 11:35:12,344 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:35:12,344 INFO L474 AbstractCegarLoop]: Abstraction has 382 states and 425 transitions. [2024-09-25 11:35:12,344 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 17 states have (on average 2.2941176470588234) internal successors, (39), 17 states have internal predecessors, (39), 10 states have call successors, (18), 7 states have call predecessors, (18), 6 states have return successors, (14), 8 states have call predecessors, (14), 8 states have call successors, (14) [2024-09-25 11:35:12,344 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:35:12,345 INFO L276 IsEmpty]: Start isEmpty. Operand 382 states and 425 transitions. [2024-09-25 11:35:12,346 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 110 [2024-09-25 11:35:12,346 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:35:12,346 INFO L216 NwaCegarLoop]: trace histogram [14, 13, 13, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:35:12,365 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Forceful destruction successful, exit code 0 [2024-09-25 11:35:12,546 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 14 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable14 [2024-09-25 11:35:12,547 INFO L399 AbstractCegarLoop]: === Iteration 16 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:35:12,547 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:35:12,547 INFO L85 PathProgramCache]: Analyzing trace with hash 1765205061, now seen corresponding path program 3 times [2024-09-25 11:35:12,547 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:35:12,547 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [312721795] [2024-09-25 11:35:12,547 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:35:12,547 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:35:12,603 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:35:12,609 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1730188161] [2024-09-25 11:35:12,611 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-25 11:35:12,612 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:35:12,612 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:35:12,614 INFO L229 MonitoredProcess]: Starting monitored process 15 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:35:12,615 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Waiting until timeout for monitored process [2024-09-25 11:35:12,804 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 6 check-sat command(s) [2024-09-25 11:35:12,804 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 11:35:12,806 INFO L262 TraceCheckSpWp]: Trace formula consists of 354 conjuncts, 48 conjuncts are in the unsatisfiable core [2024-09-25 11:35:12,810 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:35:12,813 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:35:26,650 WARN L876 $PredicateComparison]: unable to prove that (exists ((v_func_to_recursive_line_41_to_52_0_~y.offset_BEFORE_CALL_24 Int) (v_func_to_recursive_line_41_to_52_0_~a.base_BEFORE_CALL_33 Int) (v_func_to_recursive_line_41_to_52_0_~a.offset_BEFORE_CALL_33 Int) (v_func_to_recursive_line_41_to_52_0_~b.base_BEFORE_CALL_35 Int) (v_func_to_recursive_line_41_to_52_0_~b.offset_BEFORE_CALL_35 Int) (v_func_to_recursive_line_41_to_52_0_~y.base_BEFORE_CALL_24 Int)) (= (* (select (select |c_#memory_int#3| v_func_to_recursive_line_41_to_52_0_~a.base_BEFORE_CALL_33) v_func_to_recursive_line_41_to_52_0_~a.offset_BEFORE_CALL_33) (select (select |c_#memory_int#5| v_func_to_recursive_line_41_to_52_0_~y.base_BEFORE_CALL_24) v_func_to_recursive_line_41_to_52_0_~y.offset_BEFORE_CALL_24)) (select (select |c_#memory_int#2| v_func_to_recursive_line_41_to_52_0_~b.base_BEFORE_CALL_35) v_func_to_recursive_line_41_to_52_0_~b.offset_BEFORE_CALL_35))) is different from true [2024-09-25 11:35:26,675 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 25 treesize of output 17 [2024-09-25 11:35:30,695 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 27 treesize of output 19 [2024-09-25 11:35:30,697 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 15 [2024-09-25 11:35:30,698 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:35:31,840 INFO L134 CoverageAnalysis]: Checked inductivity of 370 backedges. 139 proven. 37 refuted. 0 times theorem prover too weak. 182 trivial. 12 not checked. [2024-09-25 11:35:31,840 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:35:39,898 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 35 treesize of output 27 [2024-09-25 11:35:44,954 INFO L134 CoverageAnalysis]: Checked inductivity of 370 backedges. 71 proven. 7 refuted. 0 times theorem prover too weak. 292 trivial. 0 not checked. [2024-09-25 11:35:44,955 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:35:44,955 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [312721795] [2024-09-25 11:35:44,955 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:35:44,955 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1730188161] [2024-09-25 11:35:44,955 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1730188161] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 11:35:44,955 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-25 11:35:44,955 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 10] total 20 [2024-09-25 11:35:44,955 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1727242080] [2024-09-25 11:35:44,955 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-25 11:35:44,956 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2024-09-25 11:35:44,956 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:35:44,956 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2024-09-25 11:35:44,957 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=51, Invalid=288, Unknown=7, NotChecked=34, Total=380 [2024-09-25 11:35:44,957 INFO L87 Difference]: Start difference. First operand 382 states and 425 transitions. Second operand has 20 states, 17 states have (on average 3.0) internal successors, (51), 19 states have internal predecessors, (51), 6 states have call successors, (20), 5 states have call predecessors, (20), 6 states have return successors, (16), 3 states have call predecessors, (16), 5 states have call successors, (16) [2024-09-25 11:35:48,351 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 3.00s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:35:49,535 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.18s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:35:52,415 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.87s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:35:53,221 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:35:53,221 INFO L93 Difference]: Finished difference Result 392 states and 434 transitions. [2024-09-25 11:35:53,222 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 14 states. [2024-09-25 11:35:53,223 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 17 states have (on average 3.0) internal successors, (51), 19 states have internal predecessors, (51), 6 states have call successors, (20), 5 states have call predecessors, (20), 6 states have return successors, (16), 3 states have call predecessors, (16), 5 states have call successors, (16) Word has length 109 [2024-09-25 11:35:53,223 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:35:53,225 INFO L225 Difference]: With dead ends: 392 [2024-09-25 11:35:53,225 INFO L226 Difference]: Without dead ends: 390 [2024-09-25 11:35:53,226 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 226 GetRequests, 196 SyntacticMatches, 4 SemanticMatches, 26 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 71 ImplicationChecksByTransitivity, 32.2s TimeCoverageRelationStatistics Valid=112, Invalid=587, Unknown=7, NotChecked=50, Total=756 [2024-09-25 11:35:53,226 INFO L434 NwaCegarLoop]: 34 mSDtfsCounter, 39 mSDsluCounter, 289 mSDsCounter, 0 mSdLazyCounter, 416 mSolverCounterSat, 18 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 7.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 42 SdHoareTripleChecker+Valid, 323 SdHoareTripleChecker+Invalid, 494 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 18 IncrementalHoareTripleChecker+Valid, 416 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 60 IncrementalHoareTripleChecker+Unchecked, 7.8s IncrementalHoareTripleChecker+Time [2024-09-25 11:35:53,227 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [42 Valid, 323 Invalid, 494 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [18 Valid, 416 Invalid, 0 Unknown, 60 Unchecked, 7.8s Time] [2024-09-25 11:35:53,228 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 390 states. [2024-09-25 11:35:53,418 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 390 to 375. [2024-09-25 11:35:53,419 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 375 states, 243 states have (on average 1.0699588477366255) internal successors, (260), 251 states have internal predecessors, (260), 64 states have call successors, (64), 56 states have call predecessors, (64), 67 states have return successors, (91), 67 states have call predecessors, (91), 59 states have call successors, (91) [2024-09-25 11:35:53,420 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 375 states to 375 states and 415 transitions. [2024-09-25 11:35:53,421 INFO L78 Accepts]: Start accepts. Automaton has 375 states and 415 transitions. Word has length 109 [2024-09-25 11:35:53,421 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:35:53,421 INFO L474 AbstractCegarLoop]: Abstraction has 375 states and 415 transitions. [2024-09-25 11:35:53,422 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 17 states have (on average 3.0) internal successors, (51), 19 states have internal predecessors, (51), 6 states have call successors, (20), 5 states have call predecessors, (20), 6 states have return successors, (16), 3 states have call predecessors, (16), 5 states have call successors, (16) [2024-09-25 11:35:53,422 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:35:53,422 INFO L276 IsEmpty]: Start isEmpty. Operand 375 states and 415 transitions. [2024-09-25 11:35:53,423 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 108 [2024-09-25 11:35:53,423 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:35:53,423 INFO L216 NwaCegarLoop]: trace histogram [12, 11, 11, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:35:53,443 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Ended with exit code 0 [2024-09-25 11:35:53,623 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 15 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable15 [2024-09-25 11:35:53,624 INFO L399 AbstractCegarLoop]: === Iteration 17 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:35:53,624 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:35:53,624 INFO L85 PathProgramCache]: Analyzing trace with hash -944121027, now seen corresponding path program 1 times [2024-09-25 11:35:53,625 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:35:53,625 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [940923419] [2024-09-25 11:35:53,625 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:35:53,625 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:35:53,673 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:35:53,676 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1192022482] [2024-09-25 11:35:53,676 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:35:53,676 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:35:53,676 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:35:53,678 INFO L229 MonitoredProcess]: Starting monitored process 16 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:35:53,679 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Waiting until timeout for monitored process [2024-09-25 11:35:53,875 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:35:53,879 INFO L262 TraceCheckSpWp]: Trace formula consists of 593 conjuncts, 162 conjuncts are in the unsatisfiable core [2024-09-25 11:35:53,884 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:35:53,893 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:35:53,897 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:35:53,925 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:35:53,930 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:35:53,953 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:35:54,260 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:35:54,277 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:35:54,334 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:35:54,680 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 29 treesize of output 17 [2024-09-25 11:35:54,710 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:35:54,784 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 37 treesize of output 29 [2024-09-25 11:35:55,185 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 35 treesize of output 23 [2024-09-25 11:35:55,193 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:35:55,251 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-25 11:35:55,252 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 41 treesize of output 37 [2024-09-25 11:35:55,255 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 15 [2024-09-25 11:35:55,262 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:35:55,321 INFO L134 CoverageAnalysis]: Checked inductivity of 262 backedges. 30 proven. 40 refuted. 0 times theorem prover too weak. 192 trivial. 0 not checked. [2024-09-25 11:35:55,321 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:35:56,802 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 48 treesize of output 40 [2024-09-25 11:35:56,808 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 40 treesize of output 32 [2024-09-25 11:36:00,827 WARN L854 $PredicateComparison]: unable to prove that (and (or (< (select (select |c_#memory_int#6| |c_func_to_recursive_line_32_to_55_0_#in~x.base|) |c_func_to_recursive_line_32_to_55_0_#in~x.offset|) (+ (* (select (select |c_#memory_int#5| |c_func_to_recursive_line_32_to_55_0_#in~y.base|) |c_func_to_recursive_line_32_to_55_0_#in~y.offset|) (select (select |c_old(#memory_int#4)| |c_func_to_recursive_line_32_to_55_0_#in~q.base|) |c_func_to_recursive_line_32_to_55_0_#in~q.offset|)) (select (select |c_old(#memory_int#1)| |c_func_to_recursive_line_32_to_55_0_#in~r.base|) |c_func_to_recursive_line_32_to_55_0_#in~r.offset|) 1)) (forall ((|v_func_to_recursive_line_32_to_55_0_#in~y.base_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~q.offset_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~r.base_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~x.base_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~x.offset_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~r.offset_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~y.offset_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~q.base_BEFORE_CALL_14| Int)) (= (+ (* (select (select |c_#memory_int#5| |v_func_to_recursive_line_32_to_55_0_#in~y.base_BEFORE_CALL_14|) |v_func_to_recursive_line_32_to_55_0_#in~y.offset_BEFORE_CALL_14|) (select (select |c_#memory_int#4| |v_func_to_recursive_line_32_to_55_0_#in~q.base_BEFORE_CALL_14|) |v_func_to_recursive_line_32_to_55_0_#in~q.offset_BEFORE_CALL_14|)) (select (select |c_#memory_int#1| |v_func_to_recursive_line_32_to_55_0_#in~r.base_BEFORE_CALL_14|) |v_func_to_recursive_line_32_to_55_0_#in~r.offset_BEFORE_CALL_14|)) (select (select |c_#memory_int#6| |v_func_to_recursive_line_32_to_55_0_#in~x.base_BEFORE_CALL_14|) |v_func_to_recursive_line_32_to_55_0_#in~x.offset_BEFORE_CALL_14|)))) (forall ((|v_func_to_recursive_line_32_to_55_0_#in~y.base_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~q.offset_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~r.base_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~x.base_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~x.offset_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~r.offset_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~y.offset_BEFORE_CALL_14| Int) (|v_func_to_recursive_line_32_to_55_0_#in~q.base_BEFORE_CALL_14| Int)) (let ((.cse0 (select (select |c_#memory_int#5| |v_func_to_recursive_line_32_to_55_0_#in~y.base_BEFORE_CALL_14|) |v_func_to_recursive_line_32_to_55_0_#in~y.offset_BEFORE_CALL_14|)) (.cse1 (select (select |c_#memory_int#6| |v_func_to_recursive_line_32_to_55_0_#in~x.base_BEFORE_CALL_14|) |v_func_to_recursive_line_32_to_55_0_#in~x.offset_BEFORE_CALL_14|))) (or (not (= (+ (* (select (select |c_old(#memory_int#4)| |v_func_to_recursive_line_32_to_55_0_#in~q.base_BEFORE_CALL_14|) |v_func_to_recursive_line_32_to_55_0_#in~q.offset_BEFORE_CALL_14|) .cse0) (select (select |c_old(#memory_int#1)| |v_func_to_recursive_line_32_to_55_0_#in~r.base_BEFORE_CALL_14|) |v_func_to_recursive_line_32_to_55_0_#in~r.offset_BEFORE_CALL_14|)) .cse1)) (= (+ (* .cse0 (select (select |c_#memory_int#4| |v_func_to_recursive_line_32_to_55_0_#in~q.base_BEFORE_CALL_14|) |v_func_to_recursive_line_32_to_55_0_#in~q.offset_BEFORE_CALL_14|)) (select (select |c_#memory_int#1| |v_func_to_recursive_line_32_to_55_0_#in~r.base_BEFORE_CALL_14|) |v_func_to_recursive_line_32_to_55_0_#in~r.offset_BEFORE_CALL_14|)) .cse1))))) is different from false [2024-09-25 11:36:00,965 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:36:00,965 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [940923419] [2024-09-25 11:36:00,965 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:36:00,966 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1192022482] [2024-09-25 11:36:00,966 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1192022482] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:36:00,966 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:36:00,966 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [27] total 27 [2024-09-25 11:36:00,966 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1278547925] [2024-09-25 11:36:00,966 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:36:00,966 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 27 states [2024-09-25 11:36:00,966 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:36:00,967 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 27 interpolants. [2024-09-25 11:36:00,967 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=116, Invalid=943, Unknown=1, NotChecked=62, Total=1122 [2024-09-25 11:36:00,968 INFO L87 Difference]: Start difference. First operand 375 states and 415 transitions. Second operand has 27 states, 20 states have (on average 2.2) internal successors, (44), 22 states have internal predecessors, (44), 12 states have call successors, (19), 5 states have call predecessors, (19), 8 states have return successors, (17), 11 states have call predecessors, (17), 11 states have call successors, (17) [2024-09-25 11:36:04,995 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-25 11:36:06,952 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:36:06,952 INFO L93 Difference]: Finished difference Result 383 states and 424 transitions. [2024-09-25 11:36:06,953 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 28 states. [2024-09-25 11:36:06,953 INFO L78 Accepts]: Start accepts. Automaton has has 27 states, 20 states have (on average 2.2) internal successors, (44), 22 states have internal predecessors, (44), 12 states have call successors, (19), 5 states have call predecessors, (19), 8 states have return successors, (17), 11 states have call predecessors, (17), 11 states have call successors, (17) Word has length 107 [2024-09-25 11:36:06,953 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:36:06,956 INFO L225 Difference]: With dead ends: 383 [2024-09-25 11:36:06,956 INFO L226 Difference]: Without dead ends: 371 [2024-09-25 11:36:06,957 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 138 GetRequests, 86 SyntacticMatches, 2 SemanticMatches, 50 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 547 ImplicationChecksByTransitivity, 5.6s TimeCoverageRelationStatistics Valid=285, Invalid=2268, Unknown=1, NotChecked=98, Total=2652 [2024-09-25 11:36:06,958 INFO L434 NwaCegarLoop]: 17 mSDtfsCounter, 57 mSDsluCounter, 125 mSDsCounter, 0 mSdLazyCounter, 936 mSolverCounterSat, 57 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 59 SdHoareTripleChecker+Valid, 142 SdHoareTripleChecker+Invalid, 994 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 57 IncrementalHoareTripleChecker+Valid, 936 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.0s IncrementalHoareTripleChecker+Time [2024-09-25 11:36:06,958 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [59 Valid, 142 Invalid, 994 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [57 Valid, 936 Invalid, 1 Unknown, 0 Unchecked, 5.0s Time] [2024-09-25 11:36:06,959 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 371 states. [2024-09-25 11:36:07,177 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 371 to 371. [2024-09-25 11:36:07,177 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 371 states, 241 states have (on average 1.066390041493776) internal successors, (257), 248 states have internal predecessors, (257), 63 states have call successors, (63), 56 states have call predecessors, (63), 66 states have return successors, (92), 66 states have call predecessors, (92), 59 states have call successors, (92) [2024-09-25 11:36:07,179 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 371 states to 371 states and 412 transitions. [2024-09-25 11:36:07,179 INFO L78 Accepts]: Start accepts. Automaton has 371 states and 412 transitions. Word has length 107 [2024-09-25 11:36:07,179 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:36:07,180 INFO L474 AbstractCegarLoop]: Abstraction has 371 states and 412 transitions. [2024-09-25 11:36:07,180 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 27 states, 20 states have (on average 2.2) internal successors, (44), 22 states have internal predecessors, (44), 12 states have call successors, (19), 5 states have call predecessors, (19), 8 states have return successors, (17), 11 states have call predecessors, (17), 11 states have call successors, (17) [2024-09-25 11:36:07,180 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:36:07,180 INFO L276 IsEmpty]: Start isEmpty. Operand 371 states and 412 transitions. [2024-09-25 11:36:07,182 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 112 [2024-09-25 11:36:07,182 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:36:07,182 INFO L216 NwaCegarLoop]: trace histogram [13, 12, 12, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:36:07,203 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Ended with exit code 0 [2024-09-25 11:36:07,382 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 16 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable16 [2024-09-25 11:36:07,383 INFO L399 AbstractCegarLoop]: === Iteration 18 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:36:07,383 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:36:07,383 INFO L85 PathProgramCache]: Analyzing trace with hash -1083053593, now seen corresponding path program 3 times [2024-09-25 11:36:07,383 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:36:07,384 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1886389153] [2024-09-25 11:36:07,384 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:36:07,384 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:36:07,426 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:36:07,430 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [2054046923] [2024-09-25 11:36:07,431 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-25 11:36:07,431 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:36:07,431 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:36:07,433 INFO L229 MonitoredProcess]: Starting monitored process 17 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:36:07,434 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (17)] Waiting until timeout for monitored process [2024-09-25 11:36:07,779 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 3 check-sat command(s) [2024-09-25 11:36:07,779 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 11:36:07,782 INFO L262 TraceCheckSpWp]: Trace formula consists of 410 conjuncts, 191 conjuncts are in the unsatisfiable core [2024-09-25 11:36:07,787 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:36:07,795 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:36:07,803 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:36:07,860 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:36:07,868 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-09-25 11:36:08,464 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 35 treesize of output 21 [2024-09-25 11:36:08,472 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 15 [2024-09-25 11:36:08,610 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:36:08,615 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 25 treesize of output 17 [2024-09-25 11:36:26,030 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 31 treesize of output 23 [2024-09-25 11:36:26,036 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-09-25 11:36:26,036 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 41 treesize of output 33 [2024-09-25 11:36:26,040 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 15 [2024-09-25 11:36:26,042 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:36:26,097 INFO L134 CoverageAnalysis]: Checked inductivity of 317 backedges. 2 proven. 156 refuted. 0 times theorem prover too weak. 159 trivial. 0 not checked. [2024-09-25 11:36:26,097 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:36:26,503 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 59 treesize of output 51 [2024-09-25 11:36:26,505 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 51 treesize of output 43 [2024-09-25 11:36:26,652 INFO L134 CoverageAnalysis]: Checked inductivity of 317 backedges. 60 proven. 10 refuted. 0 times theorem prover too weak. 247 trivial. 0 not checked. [2024-09-25 11:36:26,652 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:36:26,652 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1886389153] [2024-09-25 11:36:26,652 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:36:26,652 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2054046923] [2024-09-25 11:36:26,652 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2054046923] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 11:36:26,652 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-25 11:36:26,652 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [23, 15] total 36 [2024-09-25 11:36:26,653 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1053124796] [2024-09-25 11:36:26,653 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-25 11:36:26,653 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 36 states [2024-09-25 11:36:26,653 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:36:26,654 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 36 interpolants. [2024-09-25 11:36:26,654 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=124, Invalid=1135, Unknown=1, NotChecked=0, Total=1260 [2024-09-25 11:36:26,655 INFO L87 Difference]: Start difference. First operand 371 states and 412 transitions. Second operand has 36 states, 29 states have (on average 2.5517241379310347) internal successors, (74), 26 states have internal predecessors, (74), 16 states have call successors, (33), 12 states have call predecessors, (33), 6 states have return successors, (24), 8 states have call predecessors, (24), 10 states have call successors, (24) [2024-09-25 11:36:30,689 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-09-25 11:37:00,426 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:07,542 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.95s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:08,591 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.02s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:12,631 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:17,133 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:18,288 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.15s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:22,308 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:27,231 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:32,670 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:40,738 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:46,854 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.04s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:50,601 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 3.75s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-09-25 11:37:54,634 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0]