./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/recursified_nla-digbench/recursified_ps5-ll.c --full-output --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --traceabstraction.encode.modifies.clause.in.ensures.clause.of.contracts true --witnessprinter.yaml.format.version 2.1 --witnessprinter.generate.graphml.witnesses false --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version fb1cb0b9 Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReach.xml -i ../sv-benchmarks/c/recursified_nla-digbench/recursified_ps5-ll.c -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/certificate-witnesses-artifact/automizer --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 02d2a7ecaeb1f9a3fd2c207ee063800bfd7475435ba7bc7e95648b1704092bfe --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --traceabstraction.encode.modifies.clause.in.ensures.clause.of.contracts true --witnessprinter.yaml.format.version 2.1 --witnessprinter.generate.graphml.witnesses false --- Real Ultimate output --- This is Ultimate 0.2.4-tmp.dk.referee-eval-fb1cb0b-m [2024-09-25 11:40:12,082 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-09-25 11:40:12,133 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-09-25 11:40:12,136 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-09-25 11:40:12,136 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-09-25 11:40:12,158 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-09-25 11:40:12,159 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-09-25 11:40:12,159 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-09-25 11:40:12,160 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-09-25 11:40:12,162 INFO L153 SettingsManager]: * Use memory slicer=true [2024-09-25 11:40:12,163 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-09-25 11:40:12,163 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-09-25 11:40:12,163 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-09-25 11:40:12,163 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-09-25 11:40:12,164 INFO L153 SettingsManager]: * Use SBE=true [2024-09-25 11:40:12,164 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-09-25 11:40:12,166 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-09-25 11:40:12,166 INFO L153 SettingsManager]: * sizeof long=4 [2024-09-25 11:40:12,166 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-09-25 11:40:12,167 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-09-25 11:40:12,167 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-09-25 11:40:12,167 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-09-25 11:40:12,167 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-09-25 11:40:12,167 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-09-25 11:40:12,168 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-09-25 11:40:12,168 INFO L153 SettingsManager]: * sizeof long double=12 [2024-09-25 11:40:12,168 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-09-25 11:40:12,168 INFO L153 SettingsManager]: * Use constant arrays=true [2024-09-25 11:40:12,168 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-09-25 11:40:12,168 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-09-25 11:40:12,168 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-09-25 11:40:12,169 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-09-25 11:40:12,169 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-25 11:40:12,169 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-09-25 11:40:12,169 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-09-25 11:40:12,169 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-09-25 11:40:12,175 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-09-25 11:40:12,175 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-09-25 11:40:12,176 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-09-25 11:40:12,176 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-09-25 11:40:12,176 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-09-25 11:40:12,177 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-09-25 11:40:12,177 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/certificate-witnesses-artifact/automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 02d2a7ecaeb1f9a3fd2c207ee063800bfd7475435ba7bc7e95648b1704092bfe Applying setting for plugin de.uni_freiburg.informatik.ultimate.boogie.procedureinliner: Inline calls to implemented procedures -> NEVER Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> All Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Encode 'modifies' clause in 'ensures' clause of contracts -> true Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: YAML Format version -> 2.1 Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Generate GraphML witnesses -> false [2024-09-25 11:40:12,408 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-09-25 11:40:12,425 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-09-25 11:40:12,427 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-09-25 11:40:12,427 INFO L270 PluginConnector]: Initializing CDTParser... [2024-09-25 11:40:12,428 INFO L274 PluginConnector]: CDTParser initialized [2024-09-25 11:40:12,429 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/recursified_nla-digbench/recursified_ps5-ll.c [2024-09-25 11:40:13,582 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-09-25 11:40:13,731 INFO L384 CDTParser]: Found 1 translation units. [2024-09-25 11:40:13,731 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursified_nla-digbench/recursified_ps5-ll.c [2024-09-25 11:40:13,736 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/87ca81ff7/3da0ebe12bb04620adcfb1632b7625fc/FLAGa6b489097 [2024-09-25 11:40:14,128 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/87ca81ff7/3da0ebe12bb04620adcfb1632b7625fc [2024-09-25 11:40:14,131 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-09-25 11:40:14,132 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-09-25 11:40:14,135 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-09-25 11:40:14,135 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-09-25 11:40:14,139 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-09-25 11:40:14,139 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,140 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@2e8956b0 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14, skipping insertion in model container [2024-09-25 11:40:14,140 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,154 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-09-25 11:40:14,251 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursified_nla-digbench/recursified_ps5-ll.c[987,1000] [2024-09-25 11:40:14,267 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-25 11:40:14,280 INFO L200 MainTranslator]: Completed pre-run [2024-09-25 11:40:14,291 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursified_nla-digbench/recursified_ps5-ll.c[987,1000] [2024-09-25 11:40:14,306 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-25 11:40:14,319 INFO L204 MainTranslator]: Completed translation [2024-09-25 11:40:14,320 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14 WrapperNode [2024-09-25 11:40:14,320 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-09-25 11:40:14,321 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-09-25 11:40:14,321 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-09-25 11:40:14,321 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-09-25 11:40:14,326 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,337 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,345 INFO L138 Inliner]: procedures = 16, calls = 74, calls flagged for inlining = 0, calls inlined = 0, statements flattened = 0 [2024-09-25 11:40:14,346 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-09-25 11:40:14,347 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-09-25 11:40:14,347 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-09-25 11:40:14,347 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-09-25 11:40:14,354 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,354 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,356 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,374 INFO L175 MemorySlicer]: Split 51 memory accesses to 5 slices as follows [2, 4, 5, 36, 4]. 71 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2, 0, 0, 0, 0]. The 7 writes are split as follows [0, 1, 2, 2, 2]. [2024-09-25 11:40:14,374 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,374 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,382 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,383 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,386 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,387 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,391 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-09-25 11:40:14,392 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-09-25 11:40:14,392 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-09-25 11:40:14,392 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-09-25 11:40:14,392 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (1/1) ... [2024-09-25 11:40:14,398 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-25 11:40:14,407 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:40:14,418 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-09-25 11:40:14,425 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-09-25 11:40:14,467 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-09-25 11:40:14,468 INFO L130 BoogieDeclarations]: Found specification of procedure assume_abort_if_not [2024-09-25 11:40:14,468 INFO L138 BoogieDeclarations]: Found implementation of procedure assume_abort_if_not [2024-09-25 11:40:14,477 INFO L130 BoogieDeclarations]: Found specification of procedure main [2024-09-25 11:40:14,477 INFO L138 BoogieDeclarations]: Found implementation of procedure main [2024-09-25 11:40:14,477 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-09-25 11:40:14,477 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-09-25 11:40:14,479 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2024-09-25 11:40:14,479 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2024-09-25 11:40:14,479 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#4 [2024-09-25 11:40:14,479 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnStack [2024-09-25 11:40:14,479 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#0 [2024-09-25 11:40:14,479 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#1 [2024-09-25 11:40:14,479 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#2 [2024-09-25 11:40:14,479 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#3 [2024-09-25 11:40:14,480 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#4 [2024-09-25 11:40:14,480 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.init [2024-09-25 11:40:14,480 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.init [2024-09-25 11:40:14,480 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-09-25 11:40:14,480 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-09-25 11:40:14,481 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#0 [2024-09-25 11:40:14,481 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#1 [2024-09-25 11:40:14,481 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#2 [2024-09-25 11:40:14,481 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#3 [2024-09-25 11:40:14,481 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#4 [2024-09-25 11:40:14,481 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_assert [2024-09-25 11:40:14,482 INFO L138 BoogieDeclarations]: Found implementation of procedure __VERIFIER_assert [2024-09-25 11:40:14,482 INFO L130 BoogieDeclarations]: Found specification of procedure func_to_recursive_line_27_to_35_0 [2024-09-25 11:40:14,482 INFO L138 BoogieDeclarations]: Found implementation of procedure func_to_recursive_line_27_to_35_0 [2024-09-25 11:40:14,482 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2024-09-25 11:40:14,575 INFO L241 CfgBuilder]: Building ICFG [2024-09-25 11:40:14,577 INFO L267 CfgBuilder]: Building CFG for each procedure with an implementation [2024-09-25 11:40:14,775 INFO L? ?]: Removed 7 outVars from TransFormulas that were not future-live. [2024-09-25 11:40:14,775 INFO L290 CfgBuilder]: Performing block encoding [2024-09-25 11:40:14,794 INFO L312 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-09-25 11:40:14,794 INFO L317 CfgBuilder]: Removed 1 assume(true) statements. [2024-09-25 11:40:14,794 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 25.09 11:40:14 BoogieIcfgContainer [2024-09-25 11:40:14,794 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-09-25 11:40:14,796 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-09-25 11:40:14,797 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-09-25 11:40:14,799 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-09-25 11:40:14,799 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 25.09 11:40:14" (1/3) ... [2024-09-25 11:40:14,800 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@c56dbda and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 25.09 11:40:14, skipping insertion in model container [2024-09-25 11:40:14,800 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 11:40:14" (2/3) ... [2024-09-25 11:40:14,801 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@c56dbda and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 25.09 11:40:14, skipping insertion in model container [2024-09-25 11:40:14,801 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 25.09 11:40:14" (3/3) ... [2024-09-25 11:40:14,802 INFO L112 eAbstractionObserver]: Analyzing ICFG recursified_ps5-ll.c [2024-09-25 11:40:14,813 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:All NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-09-25 11:40:14,814 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-09-25 11:40:14,866 INFO L335 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-09-25 11:40:14,874 INFO L336 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@763c70c4, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-09-25 11:40:14,874 INFO L337 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-09-25 11:40:14,877 INFO L276 IsEmpty]: Start isEmpty. Operand has 34 states, 19 states have (on average 1.263157894736842) internal successors, (24), 21 states have internal predecessors, (24), 8 states have call successors, (8), 5 states have call predecessors, (8), 5 states have return successors, (8), 8 states have call predecessors, (8), 8 states have call successors, (8) [2024-09-25 11:40:14,883 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2024-09-25 11:40:14,883 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:40:14,884 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:40:14,885 INFO L399 AbstractCegarLoop]: === Iteration 1 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:40:14,890 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:14,891 INFO L85 PathProgramCache]: Analyzing trace with hash 460517386, now seen corresponding path program 1 times [2024-09-25 11:40:14,897 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:40:14,898 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2079011089] [2024-09-25 11:40:14,898 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:14,899 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:40:14,998 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:40:15,055 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 11:40:15,057 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:40:15,061 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2024-09-25 11:40:15,063 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:40:15,066 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 11:40:15,066 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:40:15,067 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2079011089] [2024-09-25 11:40:15,067 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2079011089] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-25 11:40:15,067 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-25 11:40:15,068 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-09-25 11:40:15,069 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1622481010] [2024-09-25 11:40:15,069 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 11:40:15,073 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-09-25 11:40:15,073 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:40:15,093 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-09-25 11:40:15,094 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-09-25 11:40:15,096 INFO L87 Difference]: Start difference. First operand has 34 states, 19 states have (on average 1.263157894736842) internal successors, (24), 21 states have internal predecessors, (24), 8 states have call successors, (8), 5 states have call predecessors, (8), 5 states have return successors, (8), 8 states have call predecessors, (8), 8 states have call successors, (8) Second operand has 2 states, 2 states have (on average 5.5) internal successors, (11), 2 states have internal predecessors, (11), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 11:40:15,122 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:40:15,125 INFO L93 Difference]: Finished difference Result 60 states and 76 transitions. [2024-09-25 11:40:15,126 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-09-25 11:40:15,127 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 5.5) internal successors, (11), 2 states have internal predecessors, (11), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 18 [2024-09-25 11:40:15,129 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:40:15,133 INFO L225 Difference]: With dead ends: 60 [2024-09-25 11:40:15,134 INFO L226 Difference]: Without dead ends: 30 [2024-09-25 11:40:15,136 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 7 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-09-25 11:40:15,140 INFO L434 NwaCegarLoop]: 35 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 2 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 35 SdHoareTripleChecker+Invalid, 2 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 2 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-09-25 11:40:15,141 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 35 Invalid, 2 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 2 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-09-25 11:40:15,155 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 30 states. [2024-09-25 11:40:15,170 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 30 to 30. [2024-09-25 11:40:15,172 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 30 states, 17 states have (on average 1.1176470588235294) internal successors, (19), 19 states have internal predecessors, (19), 8 states have call successors, (8), 5 states have call predecessors, (8), 4 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-09-25 11:40:15,173 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 30 states to 30 states and 33 transitions. [2024-09-25 11:40:15,175 INFO L78 Accepts]: Start accepts. Automaton has 30 states and 33 transitions. Word has length 18 [2024-09-25 11:40:15,175 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:40:15,176 INFO L474 AbstractCegarLoop]: Abstraction has 30 states and 33 transitions. [2024-09-25 11:40:15,176 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 5.5) internal successors, (11), 2 states have internal predecessors, (11), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 11:40:15,176 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:15,177 INFO L276 IsEmpty]: Start isEmpty. Operand 30 states and 33 transitions. [2024-09-25 11:40:15,177 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2024-09-25 11:40:15,178 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:40:15,178 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:40:15,178 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-09-25 11:40:15,178 INFO L399 AbstractCegarLoop]: === Iteration 2 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:40:15,179 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:15,179 INFO L85 PathProgramCache]: Analyzing trace with hash 1161581964, now seen corresponding path program 1 times [2024-09-25 11:40:15,179 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:40:15,180 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1751322867] [2024-09-25 11:40:15,180 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:15,180 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:40:15,234 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:40:15,237 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [172420986] [2024-09-25 11:40:15,237 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:15,238 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:15,238 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:40:15,240 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:40:15,241 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-09-25 11:40:15,350 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:40:15,353 INFO L262 TraceCheckSpWp]: Trace formula consists of 184 conjuncts, 43 conjuncts are in the unsatisfiable core [2024-09-25 11:40:15,360 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:40:15,403 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:15,411 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:15,560 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 11:40:15,564 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-25 11:40:15,564 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:40:15,564 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1751322867] [2024-09-25 11:40:15,565 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:40:15,565 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [172420986] [2024-09-25 11:40:15,565 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [172420986] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-25 11:40:15,565 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-25 11:40:15,565 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-09-25 11:40:15,566 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1068444202] [2024-09-25 11:40:15,566 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 11:40:15,567 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-09-25 11:40:15,567 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:40:15,567 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-09-25 11:40:15,568 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2024-09-25 11:40:15,568 INFO L87 Difference]: Start difference. First operand 30 states and 33 transitions. Second operand has 8 states, 6 states have (on average 1.8333333333333333) internal successors, (11), 6 states have internal predecessors, (11), 3 states have call successors, (5), 3 states have call predecessors, (5), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 11:40:15,737 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:40:15,737 INFO L93 Difference]: Finished difference Result 44 states and 48 transitions. [2024-09-25 11:40:15,738 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-09-25 11:40:15,738 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 1.8333333333333333) internal successors, (11), 6 states have internal predecessors, (11), 3 states have call successors, (5), 3 states have call predecessors, (5), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 18 [2024-09-25 11:40:15,739 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:40:15,740 INFO L225 Difference]: With dead ends: 44 [2024-09-25 11:40:15,740 INFO L226 Difference]: Without dead ends: 42 [2024-09-25 11:40:15,741 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 20 GetRequests, 11 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=27, Invalid=83, Unknown=0, NotChecked=0, Total=110 [2024-09-25 11:40:15,741 INFO L434 NwaCegarLoop]: 24 mSDtfsCounter, 12 mSDsluCounter, 129 mSDsCounter, 0 mSdLazyCounter, 76 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 12 SdHoareTripleChecker+Valid, 153 SdHoareTripleChecker+Invalid, 80 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 76 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-25 11:40:15,743 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [12 Valid, 153 Invalid, 80 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 76 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-25 11:40:15,743 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 42 states. [2024-09-25 11:40:15,754 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 42 to 41. [2024-09-25 11:40:15,754 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 41 states, 25 states have (on average 1.12) internal successors, (28), 27 states have internal predecessors, (28), 9 states have call successors, (9), 7 states have call predecessors, (9), 6 states have return successors, (8), 7 states have call predecessors, (8), 7 states have call successors, (8) [2024-09-25 11:40:15,755 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 41 states to 41 states and 45 transitions. [2024-09-25 11:40:15,756 INFO L78 Accepts]: Start accepts. Automaton has 41 states and 45 transitions. Word has length 18 [2024-09-25 11:40:15,757 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:40:15,757 INFO L474 AbstractCegarLoop]: Abstraction has 41 states and 45 transitions. [2024-09-25 11:40:15,757 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 1.8333333333333333) internal successors, (11), 6 states have internal predecessors, (11), 3 states have call successors, (5), 3 states have call predecessors, (5), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 11:40:15,757 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:15,757 INFO L276 IsEmpty]: Start isEmpty. Operand 41 states and 45 transitions. [2024-09-25 11:40:15,758 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2024-09-25 11:40:15,758 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:40:15,758 INFO L216 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:40:15,771 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-09-25 11:40:15,959 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:15,959 INFO L399 AbstractCegarLoop]: === Iteration 3 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:40:15,960 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:15,960 INFO L85 PathProgramCache]: Analyzing trace with hash -915195064, now seen corresponding path program 1 times [2024-09-25 11:40:15,960 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:40:15,960 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1294248450] [2024-09-25 11:40:15,960 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:15,960 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:40:16,010 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:40:16,016 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [541708863] [2024-09-25 11:40:16,018 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:16,018 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:16,018 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:40:16,020 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:40:16,022 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-09-25 11:40:16,144 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:40:16,146 INFO L262 TraceCheckSpWp]: Trace formula consists of 276 conjuncts, 81 conjuncts are in the unsatisfiable core [2024-09-25 11:40:16,150 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:40:16,160 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:16,164 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:16,291 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:40:16,295 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:40:16,455 INFO L134 CoverageAnalysis]: Checked inductivity of 5 backedges. 0 proven. 5 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 11:40:16,456 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:40:16,656 INFO L134 CoverageAnalysis]: Checked inductivity of 5 backedges. 2 proven. 1 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-09-25 11:40:16,657 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:40:16,657 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1294248450] [2024-09-25 11:40:16,657 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:40:16,657 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [541708863] [2024-09-25 11:40:16,657 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [541708863] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 11:40:16,657 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-09-25 11:40:16,658 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 8] total 15 [2024-09-25 11:40:16,658 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [394724626] [2024-09-25 11:40:16,658 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-09-25 11:40:16,658 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2024-09-25 11:40:16,658 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:40:16,659 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2024-09-25 11:40:16,659 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=36, Invalid=174, Unknown=0, NotChecked=0, Total=210 [2024-09-25 11:40:16,659 INFO L87 Difference]: Start difference. First operand 41 states and 45 transitions. Second operand has 15 states, 11 states have (on average 2.4545454545454546) internal successors, (27), 11 states have internal predecessors, (27), 8 states have call successors, (11), 6 states have call predecessors, (11), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) [2024-09-25 11:40:17,079 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:40:17,079 INFO L93 Difference]: Finished difference Result 71 states and 78 transitions. [2024-09-25 11:40:17,079 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2024-09-25 11:40:17,080 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 11 states have (on average 2.4545454545454546) internal successors, (27), 11 states have internal predecessors, (27), 8 states have call successors, (11), 6 states have call predecessors, (11), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) Word has length 28 [2024-09-25 11:40:17,080 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:40:17,082 INFO L225 Difference]: With dead ends: 71 [2024-09-25 11:40:17,082 INFO L226 Difference]: Without dead ends: 69 [2024-09-25 11:40:17,082 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 64 GetRequests, 39 SyntacticMatches, 3 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 53 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=98, Invalid=454, Unknown=0, NotChecked=0, Total=552 [2024-09-25 11:40:17,083 INFO L434 NwaCegarLoop]: 27 mSDtfsCounter, 42 mSDsluCounter, 187 mSDsCounter, 0 mSdLazyCounter, 206 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 42 SdHoareTripleChecker+Valid, 214 SdHoareTripleChecker+Invalid, 217 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 206 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-25 11:40:17,084 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [42 Valid, 214 Invalid, 217 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 206 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-25 11:40:17,084 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 69 states. [2024-09-25 11:40:17,097 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 69 to 57. [2024-09-25 11:40:17,098 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 57 states, 35 states have (on average 1.1142857142857143) internal successors, (39), 38 states have internal predecessors, (39), 11 states have call successors, (11), 9 states have call predecessors, (11), 10 states have return successors, (14), 10 states have call predecessors, (14), 9 states have call successors, (14) [2024-09-25 11:40:17,103 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 57 states to 57 states and 64 transitions. [2024-09-25 11:40:17,103 INFO L78 Accepts]: Start accepts. Automaton has 57 states and 64 transitions. Word has length 28 [2024-09-25 11:40:17,103 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:40:17,104 INFO L474 AbstractCegarLoop]: Abstraction has 57 states and 64 transitions. [2024-09-25 11:40:17,104 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 11 states have (on average 2.4545454545454546) internal successors, (27), 11 states have internal predecessors, (27), 8 states have call successors, (11), 6 states have call predecessors, (11), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) [2024-09-25 11:40:17,104 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:17,104 INFO L276 IsEmpty]: Start isEmpty. Operand 57 states and 64 transitions. [2024-09-25 11:40:17,105 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2024-09-25 11:40:17,105 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:40:17,105 INFO L216 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:40:17,118 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-09-25 11:40:17,305 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:17,306 INFO L399 AbstractCegarLoop]: === Iteration 4 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:40:17,306 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:17,306 INFO L85 PathProgramCache]: Analyzing trace with hash 1701306935, now seen corresponding path program 1 times [2024-09-25 11:40:17,306 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:40:17,306 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [103990003] [2024-09-25 11:40:17,306 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:17,306 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:40:17,330 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:40:17,335 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1770638997] [2024-09-25 11:40:17,335 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:17,335 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:17,335 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:40:17,337 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:40:17,343 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-09-25 11:40:17,414 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:40:17,415 INFO L262 TraceCheckSpWp]: Trace formula consists of 228 conjuncts, 27 conjuncts are in the unsatisfiable core [2024-09-25 11:40:17,419 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:40:17,429 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:17,436 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:17,517 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 11:40:17,517 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-09-25 11:40:17,517 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:40:17,517 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [103990003] [2024-09-25 11:40:17,517 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:40:17,517 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1770638997] [2024-09-25 11:40:17,517 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1770638997] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-25 11:40:17,518 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-25 11:40:17,518 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-09-25 11:40:17,518 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [345600297] [2024-09-25 11:40:17,518 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 11:40:17,518 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-09-25 11:40:17,519 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:40:17,519 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-09-25 11:40:17,519 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2024-09-25 11:40:17,520 INFO L87 Difference]: Start difference. First operand 57 states and 64 transitions. Second operand has 7 states, 6 states have (on average 3.0) internal successors, (18), 6 states have internal predecessors, (18), 4 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) [2024-09-25 11:40:17,655 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:40:17,656 INFO L93 Difference]: Finished difference Result 68 states and 75 transitions. [2024-09-25 11:40:17,656 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-09-25 11:40:17,656 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 6 states have (on average 3.0) internal successors, (18), 6 states have internal predecessors, (18), 4 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) Word has length 28 [2024-09-25 11:40:17,657 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:40:17,657 INFO L225 Difference]: With dead ends: 68 [2024-09-25 11:40:17,658 INFO L226 Difference]: Without dead ends: 66 [2024-09-25 11:40:17,658 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 30 GetRequests, 23 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-09-25 11:40:17,658 INFO L434 NwaCegarLoop]: 16 mSDtfsCounter, 13 mSDsluCounter, 51 mSDsCounter, 0 mSdLazyCounter, 117 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 15 SdHoareTripleChecker+Valid, 67 SdHoareTripleChecker+Invalid, 125 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 117 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-25 11:40:17,659 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [15 Valid, 67 Invalid, 125 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 117 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-25 11:40:17,659 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 66 states. [2024-09-25 11:40:17,678 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 66 to 65. [2024-09-25 11:40:17,678 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 65 states, 40 states have (on average 1.1) internal successors, (44), 43 states have internal predecessors, (44), 12 states have call successors, (12), 10 states have call predecessors, (12), 12 states have return successors, (16), 11 states have call predecessors, (16), 10 states have call successors, (16) [2024-09-25 11:40:17,679 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 65 states to 65 states and 72 transitions. [2024-09-25 11:40:17,679 INFO L78 Accepts]: Start accepts. Automaton has 65 states and 72 transitions. Word has length 28 [2024-09-25 11:40:17,680 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:40:17,680 INFO L474 AbstractCegarLoop]: Abstraction has 65 states and 72 transitions. [2024-09-25 11:40:17,680 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 6 states have (on average 3.0) internal successors, (18), 6 states have internal predecessors, (18), 4 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) [2024-09-25 11:40:17,680 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:17,680 INFO L276 IsEmpty]: Start isEmpty. Operand 65 states and 72 transitions. [2024-09-25 11:40:17,681 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2024-09-25 11:40:17,681 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:40:17,682 INFO L216 NwaCegarLoop]: trace histogram [3, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:40:17,694 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-09-25 11:40:17,882 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:17,882 INFO L399 AbstractCegarLoop]: === Iteration 5 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:40:17,883 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:17,883 INFO L85 PathProgramCache]: Analyzing trace with hash -2032764367, now seen corresponding path program 1 times [2024-09-25 11:40:17,883 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:40:17,883 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1886496293] [2024-09-25 11:40:17,883 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:17,883 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:40:17,920 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:40:17,921 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1697088720] [2024-09-25 11:40:17,921 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:17,921 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:17,922 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:40:17,923 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:40:17,924 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-09-25 11:40:18,002 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:40:18,004 INFO L262 TraceCheckSpWp]: Trace formula consists of 245 conjuncts, 37 conjuncts are in the unsatisfiable core [2024-09-25 11:40:18,006 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:40:18,009 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:40:18,013 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:18,016 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:18,175 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 7 [2024-09-25 11:40:18,216 INFO L134 CoverageAnalysis]: Checked inductivity of 8 backedges. 6 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 11:40:18,217 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:40:18,378 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:40:18,378 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1886496293] [2024-09-25 11:40:18,379 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:40:18,379 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1697088720] [2024-09-25 11:40:18,379 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1697088720] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:40:18,379 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:40:18,379 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12] total 12 [2024-09-25 11:40:18,379 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1777722441] [2024-09-25 11:40:18,379 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:40:18,379 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2024-09-25 11:40:18,379 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:40:18,380 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2024-09-25 11:40:18,380 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=32, Invalid=150, Unknown=0, NotChecked=0, Total=182 [2024-09-25 11:40:18,380 INFO L87 Difference]: Start difference. First operand 65 states and 72 transitions. Second operand has 12 states, 10 states have (on average 2.2) internal successors, (22), 10 states have internal predecessors, (22), 5 states have call successors, (7), 4 states have call predecessors, (7), 3 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) [2024-09-25 11:40:18,735 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:40:18,735 INFO L93 Difference]: Finished difference Result 73 states and 79 transitions. [2024-09-25 11:40:18,735 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2024-09-25 11:40:18,736 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 10 states have (on average 2.2) internal successors, (22), 10 states have internal predecessors, (22), 5 states have call successors, (7), 4 states have call predecessors, (7), 3 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) Word has length 34 [2024-09-25 11:40:18,736 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:40:18,737 INFO L225 Difference]: With dead ends: 73 [2024-09-25 11:40:18,737 INFO L226 Difference]: Without dead ends: 57 [2024-09-25 11:40:18,737 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 48 GetRequests, 26 SyntacticMatches, 3 SemanticMatches, 19 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 62 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=71, Invalid=349, Unknown=0, NotChecked=0, Total=420 [2024-09-25 11:40:18,738 INFO L434 NwaCegarLoop]: 12 mSDtfsCounter, 18 mSDsluCounter, 46 mSDsCounter, 0 mSdLazyCounter, 267 mSolverCounterSat, 12 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 19 SdHoareTripleChecker+Valid, 58 SdHoareTripleChecker+Invalid, 279 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 12 IncrementalHoareTripleChecker+Valid, 267 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-25 11:40:18,738 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [19 Valid, 58 Invalid, 279 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [12 Valid, 267 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-25 11:40:18,738 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 57 states. [2024-09-25 11:40:18,762 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 57 to 57. [2024-09-25 11:40:18,762 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 57 states, 35 states have (on average 1.0857142857142856) internal successors, (38), 37 states have internal predecessors, (38), 11 states have call successors, (11), 9 states have call predecessors, (11), 10 states have return successors, (14), 10 states have call predecessors, (14), 9 states have call successors, (14) [2024-09-25 11:40:18,763 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 57 states to 57 states and 63 transitions. [2024-09-25 11:40:18,763 INFO L78 Accepts]: Start accepts. Automaton has 57 states and 63 transitions. Word has length 34 [2024-09-25 11:40:18,763 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:40:18,763 INFO L474 AbstractCegarLoop]: Abstraction has 57 states and 63 transitions. [2024-09-25 11:40:18,763 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 10 states have (on average 2.2) internal successors, (22), 10 states have internal predecessors, (22), 5 states have call successors, (7), 4 states have call predecessors, (7), 3 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) [2024-09-25 11:40:18,764 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:18,764 INFO L276 IsEmpty]: Start isEmpty. Operand 57 states and 63 transitions. [2024-09-25 11:40:18,765 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 41 [2024-09-25 11:40:18,765 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:40:18,765 INFO L216 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:40:18,778 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2024-09-25 11:40:18,966 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:18,966 INFO L399 AbstractCegarLoop]: === Iteration 6 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:40:18,966 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:18,966 INFO L85 PathProgramCache]: Analyzing trace with hash 937633571, now seen corresponding path program 1 times [2024-09-25 11:40:18,967 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:40:18,967 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [236299794] [2024-09-25 11:40:18,967 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:18,967 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:40:19,012 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:40:19,018 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1962183836] [2024-09-25 11:40:19,018 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:19,018 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:19,018 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:40:19,020 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:40:19,021 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-09-25 11:40:19,125 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:40:19,128 INFO L262 TraceCheckSpWp]: Trace formula consists of 322 conjuncts, 123 conjuncts are in the unsatisfiable core [2024-09-25 11:40:19,131 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:40:19,133 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:40:19,140 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:19,149 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:19,153 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:19,411 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2024-09-25 11:40:19,586 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:40:19,590 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:40:19,706 INFO L134 CoverageAnalysis]: Checked inductivity of 15 backedges. 4 proven. 6 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2024-09-25 11:40:19,707 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:40:21,039 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 99 treesize of output 95 [2024-09-25 11:40:21,045 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 95 treesize of output 43 [2024-09-25 11:40:21,051 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 43 treesize of output 39 [2024-09-25 11:40:21,843 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:40:21,843 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [236299794] [2024-09-25 11:40:21,843 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:40:21,843 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1962183836] [2024-09-25 11:40:21,843 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1962183836] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:40:21,843 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:40:21,843 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [15] total 15 [2024-09-25 11:40:21,844 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2047846931] [2024-09-25 11:40:21,844 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:40:21,844 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2024-09-25 11:40:21,844 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:40:21,845 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2024-09-25 11:40:21,845 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=70, Invalid=436, Unknown=0, NotChecked=0, Total=506 [2024-09-25 11:40:21,845 INFO L87 Difference]: Start difference. First operand 57 states and 63 transitions. Second operand has 15 states, 12 states have (on average 1.9166666666666667) internal successors, (23), 12 states have internal predecessors, (23), 6 states have call successors, (8), 3 states have call predecessors, (8), 3 states have return successors, (6), 5 states have call predecessors, (6), 5 states have call successors, (6) [2024-09-25 11:40:22,358 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:40:22,358 INFO L93 Difference]: Finished difference Result 66 states and 72 transitions. [2024-09-25 11:40:22,358 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2024-09-25 11:40:22,359 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 12 states have (on average 1.9166666666666667) internal successors, (23), 12 states have internal predecessors, (23), 6 states have call successors, (8), 3 states have call predecessors, (8), 3 states have return successors, (6), 5 states have call predecessors, (6), 5 states have call successors, (6) Word has length 40 [2024-09-25 11:40:22,359 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:40:22,359 INFO L225 Difference]: With dead ends: 66 [2024-09-25 11:40:22,359 INFO L226 Difference]: Without dead ends: 64 [2024-09-25 11:40:22,360 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 59 GetRequests, 31 SyntacticMatches, 2 SemanticMatches, 26 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 138 ImplicationChecksByTransitivity, 1.6s TimeCoverageRelationStatistics Valid=104, Invalid=652, Unknown=0, NotChecked=0, Total=756 [2024-09-25 11:40:22,360 INFO L434 NwaCegarLoop]: 14 mSDtfsCounter, 18 mSDsluCounter, 54 mSDsCounter, 0 mSdLazyCounter, 358 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 20 SdHoareTripleChecker+Valid, 68 SdHoareTripleChecker+Invalid, 366 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 358 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-09-25 11:40:22,361 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [20 Valid, 68 Invalid, 366 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 358 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-09-25 11:40:22,361 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 64 states. [2024-09-25 11:40:22,379 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 64 to 63. [2024-09-25 11:40:22,379 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 63 states, 39 states have (on average 1.0769230769230769) internal successors, (42), 41 states have internal predecessors, (42), 12 states have call successors, (12), 10 states have call predecessors, (12), 11 states have return successors, (15), 11 states have call predecessors, (15), 10 states have call successors, (15) [2024-09-25 11:40:22,380 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 63 states to 63 states and 69 transitions. [2024-09-25 11:40:22,380 INFO L78 Accepts]: Start accepts. Automaton has 63 states and 69 transitions. Word has length 40 [2024-09-25 11:40:22,380 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:40:22,380 INFO L474 AbstractCegarLoop]: Abstraction has 63 states and 69 transitions. [2024-09-25 11:40:22,380 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 12 states have (on average 1.9166666666666667) internal successors, (23), 12 states have internal predecessors, (23), 6 states have call successors, (8), 3 states have call predecessors, (8), 3 states have return successors, (6), 5 states have call predecessors, (6), 5 states have call successors, (6) [2024-09-25 11:40:22,380 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:22,380 INFO L276 IsEmpty]: Start isEmpty. Operand 63 states and 69 transitions. [2024-09-25 11:40:22,381 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 47 [2024-09-25 11:40:22,381 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:40:22,381 INFO L216 NwaCegarLoop]: trace histogram [4, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:40:22,394 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-09-25 11:40:22,582 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2024-09-25 11:40:22,582 INFO L399 AbstractCegarLoop]: === Iteration 7 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:40:22,583 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:22,583 INFO L85 PathProgramCache]: Analyzing trace with hash 1024286237, now seen corresponding path program 1 times [2024-09-25 11:40:22,583 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:40:22,583 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [694477296] [2024-09-25 11:40:22,583 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:22,583 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:40:22,618 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:40:22,623 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1879013043] [2024-09-25 11:40:22,623 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:22,623 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:22,623 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:40:22,625 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:40:22,626 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-09-25 11:40:22,720 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 11:40:22,722 INFO L262 TraceCheckSpWp]: Trace formula consists of 339 conjuncts, 79 conjuncts are in the unsatisfiable core [2024-09-25 11:40:22,725 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:40:22,733 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-09-25 11:40:22,735 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:22,739 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:22,884 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2024-09-25 11:40:23,008 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:40:23,108 INFO L134 CoverageAnalysis]: Checked inductivity of 25 backedges. 12 proven. 8 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2024-09-25 11:40:23,108 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:40:23,658 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 53 treesize of output 49 [2024-09-25 11:40:23,663 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 49 treesize of output 33 [2024-09-25 11:40:43,933 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:40:43,933 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [694477296] [2024-09-25 11:40:43,934 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:40:43,934 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1879013043] [2024-09-25 11:40:43,934 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1879013043] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:40:43,934 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:40:43,934 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [16] total 16 [2024-09-25 11:40:43,934 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1535611851] [2024-09-25 11:40:43,934 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:40:43,934 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 16 states [2024-09-25 11:40:43,934 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:40:43,935 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 16 interpolants. [2024-09-25 11:40:43,935 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=71, Invalid=479, Unknown=2, NotChecked=0, Total=552 [2024-09-25 11:40:43,935 INFO L87 Difference]: Start difference. First operand 63 states and 69 transitions. Second operand has 16 states, 13 states have (on average 2.076923076923077) internal successors, (27), 14 states have internal predecessors, (27), 7 states have call successors, (9), 4 states have call predecessors, (9), 4 states have return successors, (7), 5 states have call predecessors, (7), 6 states have call successors, (7) [2024-09-25 11:40:44,368 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:40:44,368 INFO L93 Difference]: Finished difference Result 71 states and 76 transitions. [2024-09-25 11:40:44,369 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 14 states. [2024-09-25 11:40:44,369 INFO L78 Accepts]: Start accepts. Automaton has has 16 states, 13 states have (on average 2.076923076923077) internal successors, (27), 14 states have internal predecessors, (27), 7 states have call successors, (9), 4 states have call predecessors, (9), 4 states have return successors, (7), 5 states have call predecessors, (7), 6 states have call successors, (7) Word has length 46 [2024-09-25 11:40:44,369 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:40:44,370 INFO L225 Difference]: With dead ends: 71 [2024-09-25 11:40:44,370 INFO L226 Difference]: Without dead ends: 53 [2024-09-25 11:40:44,370 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 74 GetRequests, 42 SyntacticMatches, 3 SemanticMatches, 29 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 182 ImplicationChecksByTransitivity, 20.6s TimeCoverageRelationStatistics Valid=118, Invalid=810, Unknown=2, NotChecked=0, Total=930 [2024-09-25 11:40:44,371 INFO L434 NwaCegarLoop]: 13 mSDtfsCounter, 19 mSDsluCounter, 52 mSDsCounter, 0 mSdLazyCounter, 385 mSolverCounterSat, 10 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 20 SdHoareTripleChecker+Valid, 65 SdHoareTripleChecker+Invalid, 396 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 385 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-25 11:40:44,371 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [20 Valid, 65 Invalid, 396 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 385 Invalid, 1 Unknown, 0 Unchecked, 0.2s Time] [2024-09-25 11:40:44,371 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 53 states. [2024-09-25 11:40:44,381 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 53 to 53. [2024-09-25 11:40:44,381 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 53 states, 33 states have (on average 1.0606060606060606) internal successors, (35), 34 states have internal predecessors, (35), 11 states have call successors, (11), 9 states have call predecessors, (11), 8 states have return successors, (12), 9 states have call predecessors, (12), 9 states have call successors, (12) [2024-09-25 11:40:44,382 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 53 states to 53 states and 58 transitions. [2024-09-25 11:40:44,382 INFO L78 Accepts]: Start accepts. Automaton has 53 states and 58 transitions. Word has length 46 [2024-09-25 11:40:44,382 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:40:44,382 INFO L474 AbstractCegarLoop]: Abstraction has 53 states and 58 transitions. [2024-09-25 11:40:44,382 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 16 states, 13 states have (on average 2.076923076923077) internal successors, (27), 14 states have internal predecessors, (27), 7 states have call successors, (9), 4 states have call predecessors, (9), 4 states have return successors, (7), 5 states have call predecessors, (7), 6 states have call successors, (7) [2024-09-25 11:40:44,382 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:44,382 INFO L276 IsEmpty]: Start isEmpty. Operand 53 states and 58 transitions. [2024-09-25 11:40:44,383 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2024-09-25 11:40:44,383 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:40:44,383 INFO L216 NwaCegarLoop]: trace histogram [4, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:40:44,396 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2024-09-25 11:40:44,587 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,7 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:44,588 INFO L399 AbstractCegarLoop]: === Iteration 8 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:40:44,588 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:40:44,588 INFO L85 PathProgramCache]: Analyzing trace with hash 586229519, now seen corresponding path program 2 times [2024-09-25 11:40:44,588 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:40:44,588 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1479025655] [2024-09-25 11:40:44,588 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:40:44,588 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:40:44,635 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:40:44,639 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1595457754] [2024-09-25 11:40:44,639 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-25 11:40:44,639 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:40:44,640 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:40:44,641 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:40:44,642 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-09-25 11:40:44,903 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-25 11:40:44,903 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 11:40:44,906 INFO L262 TraceCheckSpWp]: Trace formula consists of 416 conjuncts, 168 conjuncts are in the unsatisfiable core [2024-09-25 11:40:44,910 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:40:44,925 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:44,929 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:44,933 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:40:49,793 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:40:49,803 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:40:49,936 INFO L134 CoverageAnalysis]: Checked inductivity of 40 backedges. 11 proven. 21 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2024-09-25 11:40:49,936 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:41:11,870 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 170 treesize of output 162 [2024-09-25 11:41:11,878 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 162 treesize of output 58 [2024-09-25 11:41:35,137 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:41:35,138 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1479025655] [2024-09-25 11:41:35,138 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:41:35,138 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1595457754] [2024-09-25 11:41:35,138 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1595457754] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:41:35,138 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:41:35,138 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [21] total 21 [2024-09-25 11:41:35,138 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [717876555] [2024-09-25 11:41:35,138 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:41:35,138 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2024-09-25 11:41:35,139 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:41:35,139 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2024-09-25 11:41:35,139 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=82, Invalid=725, Unknown=5, NotChecked=0, Total=812 [2024-09-25 11:41:35,139 INFO L87 Difference]: Start difference. First operand 53 states and 58 transitions. Second operand has 21 states, 16 states have (on average 1.875) internal successors, (30), 17 states have internal predecessors, (30), 8 states have call successors, (10), 4 states have call predecessors, (10), 6 states have return successors, (8), 7 states have call predecessors, (8), 7 states have call successors, (8) [2024-09-25 11:41:42,553 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:41:42,554 INFO L93 Difference]: Finished difference Result 64 states and 71 transitions. [2024-09-25 11:41:42,554 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2024-09-25 11:41:42,555 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 16 states have (on average 1.875) internal successors, (30), 17 states have internal predecessors, (30), 8 states have call successors, (10), 4 states have call predecessors, (10), 6 states have return successors, (8), 7 states have call predecessors, (8), 7 states have call successors, (8) Word has length 52 [2024-09-25 11:41:42,555 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:41:42,555 INFO L225 Difference]: With dead ends: 64 [2024-09-25 11:41:42,556 INFO L226 Difference]: Without dead ends: 62 [2024-09-25 11:41:42,556 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 74 GetRequests, 37 SyntacticMatches, 0 SemanticMatches, 37 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 217 ImplicationChecksByTransitivity, 49.1s TimeCoverageRelationStatistics Valid=158, Invalid=1319, Unknown=5, NotChecked=0, Total=1482 [2024-09-25 11:41:42,556 INFO L434 NwaCegarLoop]: 15 mSDtfsCounter, 29 mSDsluCounter, 117 mSDsCounter, 0 mSdLazyCounter, 479 mSolverCounterSat, 22 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 31 SdHoareTripleChecker+Valid, 132 SdHoareTripleChecker+Invalid, 501 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 22 IncrementalHoareTripleChecker+Valid, 479 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-09-25 11:41:42,557 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [31 Valid, 132 Invalid, 501 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [22 Valid, 479 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-09-25 11:41:42,557 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 62 states. [2024-09-25 11:41:42,577 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 62 to 61. [2024-09-25 11:41:42,578 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 61 states, 38 states have (on average 1.0526315789473684) internal successors, (40), 39 states have internal predecessors, (40), 12 states have call successors, (12), 10 states have call predecessors, (12), 10 states have return successors, (16), 11 states have call predecessors, (16), 10 states have call successors, (16) [2024-09-25 11:41:42,578 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 61 states to 61 states and 68 transitions. [2024-09-25 11:41:42,578 INFO L78 Accepts]: Start accepts. Automaton has 61 states and 68 transitions. Word has length 52 [2024-09-25 11:41:42,578 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:41:42,578 INFO L474 AbstractCegarLoop]: Abstraction has 61 states and 68 transitions. [2024-09-25 11:41:42,579 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 16 states have (on average 1.875) internal successors, (30), 17 states have internal predecessors, (30), 8 states have call successors, (10), 4 states have call predecessors, (10), 6 states have return successors, (8), 7 states have call predecessors, (8), 7 states have call successors, (8) [2024-09-25 11:41:42,579 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:41:42,579 INFO L276 IsEmpty]: Start isEmpty. Operand 61 states and 68 transitions. [2024-09-25 11:41:42,580 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 65 [2024-09-25 11:41:42,580 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:41:42,580 INFO L216 NwaCegarLoop]: trace histogram [5, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:41:42,587 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Ended with exit code 0 [2024-09-25 11:41:42,780 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,8 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:41:42,781 INFO L399 AbstractCegarLoop]: === Iteration 9 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:41:42,781 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:41:42,781 INFO L85 PathProgramCache]: Analyzing trace with hash 680927739, now seen corresponding path program 3 times [2024-09-25 11:41:42,781 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:41:42,781 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [671584164] [2024-09-25 11:41:42,781 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:41:42,781 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:41:42,855 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:41:42,861 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1331837460] [2024-09-25 11:41:42,862 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-25 11:41:42,862 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:41:42,862 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:41:42,864 INFO L229 MonitoredProcess]: Starting monitored process 9 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:41:42,865 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-09-25 11:41:43,240 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 4 check-sat command(s) [2024-09-25 11:41:43,240 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 11:41:43,244 INFO L262 TraceCheckSpWp]: Trace formula consists of 508 conjuncts, 170 conjuncts are in the unsatisfiable core [2024-09-25 11:41:43,248 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:41:43,267 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:41:43,270 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:41:43,857 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:41:43,865 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:41:43,980 INFO L134 CoverageAnalysis]: Checked inductivity of 77 backedges. 16 proven. 22 refuted. 0 times theorem prover too weak. 39 trivial. 0 not checked. [2024-09-25 11:41:43,980 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:42:09,064 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 170 treesize of output 162 [2024-09-25 11:42:09,072 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 162 treesize of output 58 [2024-09-25 11:42:35,614 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 11:42:35,615 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [671584164] [2024-09-25 11:42:35,615 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-09-25 11:42:35,615 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1331837460] [2024-09-25 11:42:35,615 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1331837460] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 11:42:35,615 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-09-25 11:42:35,615 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20] total 20 [2024-09-25 11:42:35,615 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1133870027] [2024-09-25 11:42:35,615 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-09-25 11:42:35,615 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2024-09-25 11:42:35,615 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 11:42:35,616 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2024-09-25 11:42:35,616 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=74, Invalid=677, Unknown=5, NotChecked=0, Total=756 [2024-09-25 11:42:35,616 INFO L87 Difference]: Start difference. First operand 61 states and 68 transitions. Second operand has 20 states, 16 states have (on average 1.6875) internal successors, (27), 17 states have internal predecessors, (27), 7 states have call successors, (8), 3 states have call predecessors, (8), 7 states have return successors, (8), 8 states have call predecessors, (8), 6 states have call successors, (8) [2024-09-25 11:43:03,401 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.58s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [] [2024-09-25 11:43:03,442 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 11:43:03,442 INFO L93 Difference]: Finished difference Result 72 states and 81 transitions. [2024-09-25 11:43:03,442 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2024-09-25 11:43:03,442 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 16 states have (on average 1.6875) internal successors, (27), 17 states have internal predecessors, (27), 7 states have call successors, (8), 3 states have call predecessors, (8), 7 states have return successors, (8), 8 states have call predecessors, (8), 6 states have call successors, (8) Word has length 64 [2024-09-25 11:43:03,443 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 11:43:03,443 INFO L225 Difference]: With dead ends: 72 [2024-09-25 11:43:03,443 INFO L226 Difference]: Without dead ends: 70 [2024-09-25 11:43:03,444 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 86 GetRequests, 50 SyntacticMatches, 0 SemanticMatches, 36 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 194 ImplicationChecksByTransitivity, 57.0s TimeCoverageRelationStatistics Valid=134, Invalid=1263, Unknown=9, NotChecked=0, Total=1406 [2024-09-25 11:43:03,444 INFO L434 NwaCegarLoop]: 19 mSDtfsCounter, 18 mSDsluCounter, 160 mSDsCounter, 0 mSdLazyCounter, 537 mSolverCounterSat, 14 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 19 SdHoareTripleChecker+Valid, 179 SdHoareTripleChecker+Invalid, 552 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 14 IncrementalHoareTripleChecker+Valid, 537 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.4s IncrementalHoareTripleChecker+Time [2024-09-25 11:43:03,445 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [19 Valid, 179 Invalid, 552 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [14 Valid, 537 Invalid, 1 Unknown, 0 Unchecked, 5.4s Time] [2024-09-25 11:43:03,445 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 70 states. [2024-09-25 11:43:03,459 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 70 to 63. [2024-09-25 11:43:03,459 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 63 states, 39 states have (on average 1.0512820512820513) internal successors, (41), 40 states have internal predecessors, (41), 12 states have call successors, (12), 10 states have call predecessors, (12), 11 states have return successors, (19), 12 states have call predecessors, (19), 10 states have call successors, (19) [2024-09-25 11:43:03,460 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 63 states to 63 states and 72 transitions. [2024-09-25 11:43:03,460 INFO L78 Accepts]: Start accepts. Automaton has 63 states and 72 transitions. Word has length 64 [2024-09-25 11:43:03,460 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 11:43:03,460 INFO L474 AbstractCegarLoop]: Abstraction has 63 states and 72 transitions. [2024-09-25 11:43:03,461 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 16 states have (on average 1.6875) internal successors, (27), 17 states have internal predecessors, (27), 7 states have call successors, (8), 3 states have call predecessors, (8), 7 states have return successors, (8), 8 states have call predecessors, (8), 6 states have call successors, (8) [2024-09-25 11:43:03,461 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:43:03,461 INFO L276 IsEmpty]: Start isEmpty. Operand 63 states and 72 transitions. [2024-09-25 11:43:03,462 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 77 [2024-09-25 11:43:03,463 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 11:43:03,464 INFO L216 NwaCegarLoop]: trace histogram [6, 5, 5, 5, 5, 5, 5, 5, 5, 4, 4, 4, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 11:43:03,478 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Forceful destruction successful, exit code 0 [2024-09-25 11:43:03,664 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,9 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:43:03,666 INFO L399 AbstractCegarLoop]: === Iteration 10 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 11:43:03,666 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 11:43:03,666 INFO L85 PathProgramCache]: Analyzing trace with hash 1749440487, now seen corresponding path program 4 times [2024-09-25 11:43:03,666 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 11:43:03,666 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1174287851] [2024-09-25 11:43:03,666 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 11:43:03,666 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 11:43:03,718 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-09-25 11:43:03,720 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [836962497] [2024-09-25 11:43:03,720 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2024-09-25 11:43:03,720 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 11:43:03,720 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 11:43:03,722 INFO L229 MonitoredProcess]: Starting monitored process 10 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 11:43:03,723 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2024-09-25 11:43:04,688 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2024-09-25 11:43:04,689 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 11:43:04,693 INFO L262 TraceCheckSpWp]: Trace formula consists of 604 conjuncts, 173 conjuncts are in the unsatisfiable core [2024-09-25 11:43:04,697 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 11:43:04,702 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:43:04,705 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:43:04,709 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-09-25 11:43:05,196 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:43:05,200 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-09-25 11:43:05,300 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 10 proven. 55 refuted. 0 times theorem prover too weak. 61 trivial. 0 not checked. [2024-09-25 11:43:05,301 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 11:43:24,939 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 85 treesize of output 81 [2024-09-25 11:43:24,946 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 81 treesize of output 29