./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/loops-crafted-1/vnew1.c --full-output --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --traceabstraction.encode.modifies.clause.in.ensures.clause.of.contracts true --witnessprinter.yaml.format.version 2.1 --witnessprinter.generate.graphml.witnesses false --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version fb1cb0b9 Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReach.xml -i ../sv-benchmarks/c/loops-crafted-1/vnew1.c -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/certificate-witnesses-artifact/automizer --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 92c9725cc4c9709a9ab81826fb3481ef81541ab6f68244b6727f50e97bc0f0c0 --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --traceabstraction.encode.modifies.clause.in.ensures.clause.of.contracts true --witnessprinter.yaml.format.version 2.1 --witnessprinter.generate.graphml.witnesses false --- Real Ultimate output --- This is Ultimate 0.2.4-tmp.dk.referee-eval-fb1cb0b-m [2024-09-25 10:34:58,846 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-09-25 10:34:58,896 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-09-25 10:34:58,899 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-09-25 10:34:58,899 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-09-25 10:34:58,918 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-09-25 10:34:58,920 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-09-25 10:34:58,920 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-09-25 10:34:58,921 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-09-25 10:34:58,922 INFO L153 SettingsManager]: * Use memory slicer=true [2024-09-25 10:34:58,922 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-09-25 10:34:58,922 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-09-25 10:34:58,923 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-09-25 10:34:58,923 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-09-25 10:34:58,923 INFO L153 SettingsManager]: * Use SBE=true [2024-09-25 10:34:58,923 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-09-25 10:34:58,924 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-09-25 10:34:58,924 INFO L153 SettingsManager]: * sizeof long=4 [2024-09-25 10:34:58,927 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-09-25 10:34:58,927 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-09-25 10:34:58,928 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-09-25 10:34:58,929 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-09-25 10:34:58,930 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-09-25 10:34:58,930 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-09-25 10:34:58,931 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-09-25 10:34:58,931 INFO L153 SettingsManager]: * sizeof long double=12 [2024-09-25 10:34:58,931 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-09-25 10:34:58,931 INFO L153 SettingsManager]: * Use constant arrays=true [2024-09-25 10:34:58,931 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-09-25 10:34:58,932 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-09-25 10:34:58,932 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-09-25 10:34:58,932 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-09-25 10:34:58,932 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-25 10:34:58,933 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-09-25 10:34:58,933 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-09-25 10:34:58,933 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-09-25 10:34:58,933 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-09-25 10:34:58,934 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-09-25 10:34:58,934 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-09-25 10:34:58,934 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-09-25 10:34:58,935 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-09-25 10:34:58,935 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-09-25 10:34:58,935 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/certificate-witnesses-artifact/automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 92c9725cc4c9709a9ab81826fb3481ef81541ab6f68244b6727f50e97bc0f0c0 Applying setting for plugin de.uni_freiburg.informatik.ultimate.boogie.procedureinliner: Inline calls to implemented procedures -> NEVER Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> All Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Encode 'modifies' clause in 'ensures' clause of contracts -> true Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: YAML Format version -> 2.1 Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Generate GraphML witnesses -> false [2024-09-25 10:34:59,180 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-09-25 10:34:59,200 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-09-25 10:34:59,202 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-09-25 10:34:59,202 INFO L270 PluginConnector]: Initializing CDTParser... [2024-09-25 10:34:59,203 INFO L274 PluginConnector]: CDTParser initialized [2024-09-25 10:34:59,204 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/loops-crafted-1/vnew1.c [2024-09-25 10:35:00,466 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-09-25 10:35:00,598 INFO L384 CDTParser]: Found 1 translation units. [2024-09-25 10:35:00,598 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/loops-crafted-1/vnew1.c [2024-09-25 10:35:00,604 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/06a03fd39/47adbdfee006419e8c463b62eb392127/FLAG3bc98ba8b [2024-09-25 10:35:00,614 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/06a03fd39/47adbdfee006419e8c463b62eb392127 [2024-09-25 10:35:00,615 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-09-25 10:35:00,616 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-09-25 10:35:00,617 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-09-25 10:35:00,617 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-09-25 10:35:00,621 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-09-25 10:35:00,621 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,622 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@56388fbb and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00, skipping insertion in model container [2024-09-25 10:35:00,622 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,634 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-09-25 10:35:00,736 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/loops-crafted-1/vnew1.c[403,416] [2024-09-25 10:35:00,747 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-25 10:35:00,756 INFO L200 MainTranslator]: Completed pre-run [2024-09-25 10:35:00,765 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/loops-crafted-1/vnew1.c[403,416] [2024-09-25 10:35:00,767 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-09-25 10:35:00,778 INFO L204 MainTranslator]: Completed translation [2024-09-25 10:35:00,779 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00 WrapperNode [2024-09-25 10:35:00,779 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-09-25 10:35:00,780 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-09-25 10:35:00,780 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-09-25 10:35:00,780 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-09-25 10:35:00,785 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,789 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,793 INFO L138 Inliner]: procedures = 14, calls = 16, calls flagged for inlining = 0, calls inlined = 0, statements flattened = 0 [2024-09-25 10:35:00,794 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-09-25 10:35:00,794 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-09-25 10:35:00,794 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-09-25 10:35:00,795 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-09-25 10:35:00,801 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,801 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,802 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,824 INFO L175 MemorySlicer]: Split 10 memory accesses to 2 slices as follows [2, 8]. 80 percent of accesses are in the largest equivalence class. The 10 initializations are split as follows [2, 8]. The 0 writes are split as follows [0, 0]. [2024-09-25 10:35:00,824 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,824 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,827 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,829 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,830 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,831 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,832 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-09-25 10:35:00,836 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-09-25 10:35:00,836 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-09-25 10:35:00,836 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-09-25 10:35:00,836 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (1/1) ... [2024-09-25 10:35:00,840 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-09-25 10:35:00,850 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:35:00,865 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-09-25 10:35:00,867 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-09-25 10:35:00,902 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-09-25 10:35:00,902 INFO L130 BoogieDeclarations]: Found specification of procedure main [2024-09-25 10:35:00,902 INFO L138 BoogieDeclarations]: Found implementation of procedure main [2024-09-25 10:35:00,903 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-09-25 10:35:00,903 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-09-25 10:35:00,903 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.init [2024-09-25 10:35:00,903 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.init [2024-09-25 10:35:00,904 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-09-25 10:35:00,904 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-09-25 10:35:00,904 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_assert [2024-09-25 10:35:00,904 INFO L138 BoogieDeclarations]: Found implementation of procedure __VERIFIER_assert [2024-09-25 10:35:00,957 INFO L241 CfgBuilder]: Building ICFG [2024-09-25 10:35:00,959 INFO L267 CfgBuilder]: Building CFG for each procedure with an implementation [2024-09-25 10:35:01,086 INFO L? ?]: Removed 7 outVars from TransFormulas that were not future-live. [2024-09-25 10:35:01,087 INFO L290 CfgBuilder]: Performing block encoding [2024-09-25 10:35:01,104 INFO L312 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-09-25 10:35:01,104 INFO L317 CfgBuilder]: Removed 2 assume(true) statements. [2024-09-25 10:35:01,105 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 25.09 10:35:01 BoogieIcfgContainer [2024-09-25 10:35:01,105 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-09-25 10:35:01,106 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-09-25 10:35:01,106 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-09-25 10:35:01,108 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-09-25 10:35:01,109 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 25.09 10:35:00" (1/3) ... [2024-09-25 10:35:01,109 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6be4fdf9 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 25.09 10:35:01, skipping insertion in model container [2024-09-25 10:35:01,110 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.09 10:35:00" (2/3) ... [2024-09-25 10:35:01,110 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6be4fdf9 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 25.09 10:35:01, skipping insertion in model container [2024-09-25 10:35:01,110 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 25.09 10:35:01" (3/3) ... [2024-09-25 10:35:01,111 INFO L112 eAbstractionObserver]: Analyzing ICFG vnew1.c [2024-09-25 10:35:01,124 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:All NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-09-25 10:35:01,125 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-09-25 10:35:01,167 INFO L335 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-09-25 10:35:01,174 INFO L336 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@2a29524d, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-09-25 10:35:01,175 INFO L337 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-09-25 10:35:01,179 INFO L276 IsEmpty]: Start isEmpty. Operand has 22 states, 14 states have (on average 1.5) internal successors, (21), 15 states have internal predecessors, (21), 3 states have call successors, (3), 3 states have call predecessors, (3), 3 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-25 10:35:01,185 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 14 [2024-09-25 10:35:01,186 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:35:01,186 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:35:01,187 INFO L399 AbstractCegarLoop]: === Iteration 1 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:35:01,191 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:01,192 INFO L85 PathProgramCache]: Analyzing trace with hash 1892212544, now seen corresponding path program 1 times [2024-09-25 10:35:01,198 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:35:01,199 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1045463462] [2024-09-25 10:35:01,199 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:35:01,199 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:35:01,327 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:01,799 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:35:01,804 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:01,837 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:01,838 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:35:01,838 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1045463462] [2024-09-25 10:35:01,839 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1045463462] provided 1 perfect and 0 imperfect interpolant sequences [2024-09-25 10:35:01,839 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-09-25 10:35:01,839 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2024-09-25 10:35:01,841 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2025459498] [2024-09-25 10:35:01,842 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-09-25 10:35:01,845 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2024-09-25 10:35:01,846 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:35:01,863 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2024-09-25 10:35:01,864 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=19, Invalid=71, Unknown=0, NotChecked=0, Total=90 [2024-09-25 10:35:01,866 INFO L87 Difference]: Start difference. First operand has 22 states, 14 states have (on average 1.5) internal successors, (21), 15 states have internal predecessors, (21), 3 states have call successors, (3), 3 states have call predecessors, (3), 3 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) Second operand has 10 states, 7 states have (on average 1.2857142857142858) internal successors, (9), 7 states have internal predecessors, (9), 3 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-25 10:35:02,098 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 10:35:02,099 INFO L93 Difference]: Finished difference Result 46 states and 60 transitions. [2024-09-25 10:35:02,100 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2024-09-25 10:35:02,101 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 7 states have (on average 1.2857142857142858) internal successors, (9), 7 states have internal predecessors, (9), 3 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 13 [2024-09-25 10:35:02,101 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 10:35:02,106 INFO L225 Difference]: With dead ends: 46 [2024-09-25 10:35:02,106 INFO L226 Difference]: Without dead ends: 26 [2024-09-25 10:35:02,108 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 14 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=67, Invalid=173, Unknown=0, NotChecked=0, Total=240 [2024-09-25 10:35:02,111 INFO L434 NwaCegarLoop]: 4 mSDtfsCounter, 57 mSDsluCounter, 23 mSDsCounter, 0 mSdLazyCounter, 122 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 58 SdHoareTripleChecker+Valid, 27 SdHoareTripleChecker+Invalid, 133 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 122 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-09-25 10:35:02,112 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [58 Valid, 27 Invalid, 133 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 122 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-09-25 10:35:02,125 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 26 states. [2024-09-25 10:35:02,140 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 26 to 25. [2024-09-25 10:35:02,141 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 25 states, 17 states have (on average 1.1764705882352942) internal successors, (20), 18 states have internal predecessors, (20), 4 states have call successors, (4), 4 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-09-25 10:35:02,142 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 25 states to 25 states and 27 transitions. [2024-09-25 10:35:02,143 INFO L78 Accepts]: Start accepts. Automaton has 25 states and 27 transitions. Word has length 13 [2024-09-25 10:35:02,143 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 10:35:02,143 INFO L474 AbstractCegarLoop]: Abstraction has 25 states and 27 transitions. [2024-09-25 10:35:02,143 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 7 states have (on average 1.2857142857142858) internal successors, (9), 7 states have internal predecessors, (9), 3 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-09-25 10:35:02,144 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:02,147 INFO L276 IsEmpty]: Start isEmpty. Operand 25 states and 27 transitions. [2024-09-25 10:35:02,147 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 15 [2024-09-25 10:35:02,147 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:35:02,147 INFO L216 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:35:02,147 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-09-25 10:35:02,148 INFO L399 AbstractCegarLoop]: === Iteration 2 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:35:02,149 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:02,149 INFO L85 PathProgramCache]: Analyzing trace with hash 706153222, now seen corresponding path program 1 times [2024-09-25 10:35:02,149 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:35:02,149 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1111798171] [2024-09-25 10:35:02,150 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:35:02,150 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:35:02,179 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:02,490 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:35:02,492 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:02,497 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:02,498 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:35:02,498 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1111798171] [2024-09-25 10:35:02,498 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1111798171] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 10:35:02,498 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1496637228] [2024-09-25 10:35:02,498 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:35:02,499 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:35:02,499 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:35:02,501 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 10:35:02,502 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-09-25 10:35:02,545 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:02,548 INFO L262 TraceCheckSpWp]: Trace formula consists of 72 conjuncts, 15 conjuncts are in the unsatisfiable core [2024-09-25 10:35:02,551 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 10:35:02,785 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:02,786 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 10:35:03,063 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:03,064 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1496637228] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 10:35:03,064 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-25 10:35:03,064 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 9, 8] total 21 [2024-09-25 10:35:03,065 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [542214417] [2024-09-25 10:35:03,065 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-25 10:35:03,066 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2024-09-25 10:35:03,066 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:35:03,067 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2024-09-25 10:35:03,069 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=73, Invalid=347, Unknown=0, NotChecked=0, Total=420 [2024-09-25 10:35:03,070 INFO L87 Difference]: Start difference. First operand 25 states and 27 transitions. Second operand has 21 states, 18 states have (on average 1.3888888888888888) internal successors, (25), 18 states have internal predecessors, (25), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 10:35:03,622 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 10:35:03,622 INFO L93 Difference]: Finished difference Result 50 states and 58 transitions. [2024-09-25 10:35:03,622 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2024-09-25 10:35:03,623 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 18 states have (on average 1.3888888888888888) internal successors, (25), 18 states have internal predecessors, (25), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 14 [2024-09-25 10:35:03,623 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 10:35:03,624 INFO L225 Difference]: With dead ends: 50 [2024-09-25 10:35:03,624 INFO L226 Difference]: Without dead ends: 48 [2024-09-25 10:35:03,625 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 54 GetRequests, 18 SyntacticMatches, 2 SemanticMatches, 34 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 170 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=247, Invalid=1013, Unknown=0, NotChecked=0, Total=1260 [2024-09-25 10:35:03,626 INFO L434 NwaCegarLoop]: 3 mSDtfsCounter, 90 mSDsluCounter, 22 mSDsCounter, 0 mSdLazyCounter, 274 mSolverCounterSat, 51 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 90 SdHoareTripleChecker+Valid, 25 SdHoareTripleChecker+Invalid, 325 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 51 IncrementalHoareTripleChecker+Valid, 274 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-25 10:35:03,626 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [90 Valid, 25 Invalid, 325 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [51 Valid, 274 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-25 10:35:03,626 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 48 states. [2024-09-25 10:35:03,635 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 48 to 40. [2024-09-25 10:35:03,636 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 40 states, 29 states have (on average 1.206896551724138) internal successors, (35), 30 states have internal predecessors, (35), 6 states have call successors, (6), 5 states have call predecessors, (6), 4 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2024-09-25 10:35:03,636 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 40 states to 40 states and 46 transitions. [2024-09-25 10:35:03,636 INFO L78 Accepts]: Start accepts. Automaton has 40 states and 46 transitions. Word has length 14 [2024-09-25 10:35:03,637 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 10:35:03,637 INFO L474 AbstractCegarLoop]: Abstraction has 40 states and 46 transitions. [2024-09-25 10:35:03,637 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 18 states have (on average 1.3888888888888888) internal successors, (25), 18 states have internal predecessors, (25), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 10:35:03,637 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:03,637 INFO L276 IsEmpty]: Start isEmpty. Operand 40 states and 46 transitions. [2024-09-25 10:35:03,638 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-09-25 10:35:03,638 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:35:03,638 INFO L216 NwaCegarLoop]: trace histogram [4, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:35:03,650 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-09-25 10:35:03,842 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:35:03,843 INFO L399 AbstractCegarLoop]: === Iteration 3 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:35:03,843 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:03,843 INFO L85 PathProgramCache]: Analyzing trace with hash 1759027392, now seen corresponding path program 2 times [2024-09-25 10:35:03,843 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:35:03,843 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [208125887] [2024-09-25 10:35:03,843 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:35:03,844 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:35:03,870 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:04,085 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:35:04,087 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:04,104 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 0 proven. 10 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:04,104 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:35:04,106 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [208125887] [2024-09-25 10:35:04,106 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [208125887] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 10:35:04,106 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1228013124] [2024-09-25 10:35:04,107 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-25 10:35:04,107 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:35:04,107 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:35:04,110 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 10:35:04,112 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-09-25 10:35:04,146 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-25 10:35:04,146 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 10:35:04,148 INFO L262 TraceCheckSpWp]: Trace formula consists of 87 conjuncts, 28 conjuncts are in the unsatisfiable core [2024-09-25 10:35:04,149 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 10:35:04,319 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 0 proven. 10 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:04,319 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 10:35:04,589 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 0 proven. 10 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:04,590 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1228013124] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 10:35:04,590 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-25 10:35:04,590 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 10, 10] total 26 [2024-09-25 10:35:04,590 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2026017036] [2024-09-25 10:35:04,590 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-25 10:35:04,590 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 26 states [2024-09-25 10:35:04,590 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:35:04,591 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 26 interpolants. [2024-09-25 10:35:04,591 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=100, Invalid=550, Unknown=0, NotChecked=0, Total=650 [2024-09-25 10:35:04,591 INFO L87 Difference]: Start difference. First operand 40 states and 46 transitions. Second operand has 26 states, 25 states have (on average 1.32) internal successors, (33), 23 states have internal predecessors, (33), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 10:35:05,878 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 10:35:05,878 INFO L93 Difference]: Finished difference Result 82 states and 101 transitions. [2024-09-25 10:35:05,879 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 23 states. [2024-09-25 10:35:05,879 INFO L78 Accepts]: Start accepts. Automaton has has 26 states, 25 states have (on average 1.32) internal successors, (33), 23 states have internal predecessors, (33), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 17 [2024-09-25 10:35:05,879 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 10:35:05,881 INFO L225 Difference]: With dead ends: 82 [2024-09-25 10:35:05,881 INFO L226 Difference]: Without dead ends: 80 [2024-09-25 10:35:05,881 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 64 GetRequests, 21 SyntacticMatches, 0 SemanticMatches, 43 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 272 ImplicationChecksByTransitivity, 1.0s TimeCoverageRelationStatistics Valid=373, Invalid=1607, Unknown=0, NotChecked=0, Total=1980 [2024-09-25 10:35:05,882 INFO L434 NwaCegarLoop]: 3 mSDtfsCounter, 154 mSDsluCounter, 25 mSDsCounter, 0 mSdLazyCounter, 389 mSolverCounterSat, 57 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 154 SdHoareTripleChecker+Valid, 28 SdHoareTripleChecker+Invalid, 446 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 57 IncrementalHoareTripleChecker+Valid, 389 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-09-25 10:35:05,882 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [154 Valid, 28 Invalid, 446 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [57 Valid, 389 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-09-25 10:35:05,883 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 80 states. [2024-09-25 10:35:05,897 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 80 to 48. [2024-09-25 10:35:05,898 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 48 states, 37 states have (on average 1.3783783783783783) internal successors, (51), 38 states have internal predecessors, (51), 6 states have call successors, (6), 5 states have call predecessors, (6), 4 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2024-09-25 10:35:05,898 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 48 states to 48 states and 62 transitions. [2024-09-25 10:35:05,899 INFO L78 Accepts]: Start accepts. Automaton has 48 states and 62 transitions. Word has length 17 [2024-09-25 10:35:05,899 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 10:35:05,899 INFO L474 AbstractCegarLoop]: Abstraction has 48 states and 62 transitions. [2024-09-25 10:35:05,899 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 26 states, 25 states have (on average 1.32) internal successors, (33), 23 states have internal predecessors, (33), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 10:35:05,899 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:05,899 INFO L276 IsEmpty]: Start isEmpty. Operand 48 states and 62 transitions. [2024-09-25 10:35:05,900 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2024-09-25 10:35:05,900 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:35:05,900 INFO L216 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:35:05,913 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-09-25 10:35:06,100 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:35:06,101 INFO L399 AbstractCegarLoop]: === Iteration 4 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:35:06,101 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:06,101 INFO L85 PathProgramCache]: Analyzing trace with hash 447679010, now seen corresponding path program 1 times [2024-09-25 10:35:06,102 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:35:06,102 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1506063777] [2024-09-25 10:35:06,102 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:35:06,102 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:35:06,120 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:06,389 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:35:06,390 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:06,410 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-09-25 10:35:06,411 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:06,413 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:06,414 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:35:06,414 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1506063777] [2024-09-25 10:35:06,414 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1506063777] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 10:35:06,414 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [20783534] [2024-09-25 10:35:06,414 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:35:06,414 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:35:06,414 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:35:06,417 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 10:35:06,419 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-09-25 10:35:06,458 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:06,459 INFO L262 TraceCheckSpWp]: Trace formula consists of 96 conjuncts, 23 conjuncts are in the unsatisfiable core [2024-09-25 10:35:06,460 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 10:35:06,631 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:06,632 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 10:35:06,815 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:06,816 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [20783534] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 10:35:06,816 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-25 10:35:06,816 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 10, 9] total 23 [2024-09-25 10:35:06,816 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1642264286] [2024-09-25 10:35:06,816 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-25 10:35:06,817 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2024-09-25 10:35:06,817 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:35:06,818 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2024-09-25 10:35:06,819 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=73, Invalid=433, Unknown=0, NotChecked=0, Total=506 [2024-09-25 10:35:06,819 INFO L87 Difference]: Start difference. First operand 48 states and 62 transitions. Second operand has 23 states, 23 states have (on average 1.6521739130434783) internal successors, (38), 20 states have internal predecessors, (38), 8 states have call successors, (10), 6 states have call predecessors, (10), 2 states have return successors, (5), 5 states have call predecessors, (5), 3 states have call successors, (5) [2024-09-25 10:35:08,809 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 10:35:08,811 INFO L93 Difference]: Finished difference Result 93 states and 116 transitions. [2024-09-25 10:35:08,812 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2024-09-25 10:35:08,812 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 23 states have (on average 1.6521739130434783) internal successors, (38), 20 states have internal predecessors, (38), 8 states have call successors, (10), 6 states have call predecessors, (10), 2 states have return successors, (5), 5 states have call predecessors, (5), 3 states have call successors, (5) Word has length 23 [2024-09-25 10:35:08,812 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 10:35:08,814 INFO L225 Difference]: With dead ends: 93 [2024-09-25 10:35:08,815 INFO L226 Difference]: Without dead ends: 91 [2024-09-25 10:35:08,815 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 74 GetRequests, 36 SyntacticMatches, 3 SemanticMatches, 35 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 247 ImplicationChecksByTransitivity, 0.6s TimeCoverageRelationStatistics Valid=235, Invalid=1097, Unknown=0, NotChecked=0, Total=1332 [2024-09-25 10:35:08,816 INFO L434 NwaCegarLoop]: 3 mSDtfsCounter, 102 mSDsluCounter, 38 mSDsCounter, 0 mSdLazyCounter, 485 mSolverCounterSat, 43 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 102 SdHoareTripleChecker+Valid, 41 SdHoareTripleChecker+Invalid, 528 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 43 IncrementalHoareTripleChecker+Valid, 485 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.7s IncrementalHoareTripleChecker+Time [2024-09-25 10:35:08,817 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [102 Valid, 41 Invalid, 528 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [43 Valid, 485 Invalid, 0 Unknown, 0 Unchecked, 1.7s Time] [2024-09-25 10:35:08,818 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 91 states. [2024-09-25 10:35:08,853 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 91 to 89. [2024-09-25 10:35:08,853 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 89 states, 65 states have (on average 1.2153846153846153) internal successors, (79), 71 states have internal predecessors, (79), 17 states have call successors, (17), 7 states have call predecessors, (17), 6 states have return successors, (16), 10 states have call predecessors, (16), 16 states have call successors, (16) [2024-09-25 10:35:08,856 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 89 states to 89 states and 112 transitions. [2024-09-25 10:35:08,856 INFO L78 Accepts]: Start accepts. Automaton has 89 states and 112 transitions. Word has length 23 [2024-09-25 10:35:08,857 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 10:35:08,857 INFO L474 AbstractCegarLoop]: Abstraction has 89 states and 112 transitions. [2024-09-25 10:35:08,858 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 23 states have (on average 1.6521739130434783) internal successors, (38), 20 states have internal predecessors, (38), 8 states have call successors, (10), 6 states have call predecessors, (10), 2 states have return successors, (5), 5 states have call predecessors, (5), 3 states have call successors, (5) [2024-09-25 10:35:08,859 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:08,859 INFO L276 IsEmpty]: Start isEmpty. Operand 89 states and 112 transitions. [2024-09-25 10:35:08,860 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2024-09-25 10:35:08,860 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:35:08,860 INFO L216 NwaCegarLoop]: trace histogram [12, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:35:08,879 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-09-25 10:35:09,060 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:35:09,061 INFO L399 AbstractCegarLoop]: === Iteration 5 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:35:09,061 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:09,061 INFO L85 PathProgramCache]: Analyzing trace with hash -1692277824, now seen corresponding path program 3 times [2024-09-25 10:35:09,062 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:35:09,062 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [259093189] [2024-09-25 10:35:09,062 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:35:09,062 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:35:09,098 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:09,577 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:35:09,579 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:09,604 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 0 proven. 78 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:09,604 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:35:09,604 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [259093189] [2024-09-25 10:35:09,604 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [259093189] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 10:35:09,604 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [797838040] [2024-09-25 10:35:09,604 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-25 10:35:09,604 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:35:09,604 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:35:09,606 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 10:35:09,607 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-09-25 10:35:09,657 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 7 check-sat command(s) [2024-09-25 10:35:09,658 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 10:35:09,659 INFO L262 TraceCheckSpWp]: Trace formula consists of 127 conjuncts, 56 conjuncts are in the unsatisfiable core [2024-09-25 10:35:09,660 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 10:35:10,115 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 0 proven. 78 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:10,116 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 10:35:10,880 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 0 proven. 78 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-09-25 10:35:10,881 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [797838040] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 10:35:10,881 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-25 10:35:10,881 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 17, 17] total 48 [2024-09-25 10:35:10,881 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1976607677] [2024-09-25 10:35:10,882 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-25 10:35:10,882 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 48 states [2024-09-25 10:35:10,882 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:35:10,883 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 48 interpolants. [2024-09-25 10:35:10,884 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=376, Invalid=1880, Unknown=0, NotChecked=0, Total=2256 [2024-09-25 10:35:10,884 INFO L87 Difference]: Start difference. First operand 89 states and 112 transitions. Second operand has 48 states, 47 states have (on average 1.2127659574468086) internal successors, (57), 45 states have internal predecessors, (57), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 10:35:22,415 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-09-25 10:35:30,980 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-09-25 10:35:31,730 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 10:35:31,731 INFO L93 Difference]: Finished difference Result 151 states and 195 transitions. [2024-09-25 10:35:31,731 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 41 states. [2024-09-25 10:35:31,731 INFO L78 Accepts]: Start accepts. Automaton has has 48 states, 47 states have (on average 1.2127659574468086) internal successors, (57), 45 states have internal predecessors, (57), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 25 [2024-09-25 10:35:31,732 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 10:35:31,733 INFO L225 Difference]: With dead ends: 151 [2024-09-25 10:35:31,735 INFO L226 Difference]: Without dead ends: 149 [2024-09-25 10:35:31,736 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 106 GetRequests, 23 SyntacticMatches, 0 SemanticMatches, 83 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 755 ImplicationChecksByTransitivity, 12.7s TimeCoverageRelationStatistics Valid=1319, Invalid=5821, Unknown=0, NotChecked=0, Total=7140 [2024-09-25 10:35:31,736 INFO L434 NwaCegarLoop]: 3 mSDtfsCounter, 384 mSDsluCounter, 73 mSDsCounter, 0 mSdLazyCounter, 1459 mSolverCounterSat, 173 mSolverCounterUnsat, 2 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 9.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 384 SdHoareTripleChecker+Valid, 76 SdHoareTripleChecker+Invalid, 1634 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 173 IncrementalHoareTripleChecker+Valid, 1459 IncrementalHoareTripleChecker+Invalid, 2 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 9.3s IncrementalHoareTripleChecker+Time [2024-09-25 10:35:31,737 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [384 Valid, 76 Invalid, 1634 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [173 Valid, 1459 Invalid, 2 Unknown, 0 Unchecked, 9.3s Time] [2024-09-25 10:35:31,737 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 149 states. [2024-09-25 10:35:31,780 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 149 to 126. [2024-09-25 10:35:31,781 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 126 states, 96 states have (on average 1.3020833333333333) internal successors, (125), 105 states have internal predecessors, (125), 21 states have call successors, (21), 9 states have call predecessors, (21), 8 states have return successors, (20), 11 states have call predecessors, (20), 20 states have call successors, (20) [2024-09-25 10:35:31,782 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 126 states to 126 states and 166 transitions. [2024-09-25 10:35:31,782 INFO L78 Accepts]: Start accepts. Automaton has 126 states and 166 transitions. Word has length 25 [2024-09-25 10:35:31,782 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 10:35:31,782 INFO L474 AbstractCegarLoop]: Abstraction has 126 states and 166 transitions. [2024-09-25 10:35:31,782 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 48 states, 47 states have (on average 1.2127659574468086) internal successors, (57), 45 states have internal predecessors, (57), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-09-25 10:35:31,783 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:31,783 INFO L276 IsEmpty]: Start isEmpty. Operand 126 states and 166 transitions. [2024-09-25 10:35:31,784 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2024-09-25 10:35:31,784 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:35:31,784 INFO L216 NwaCegarLoop]: trace histogram [3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:35:31,798 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-09-25 10:35:31,988 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:35:31,989 INFO L399 AbstractCegarLoop]: === Iteration 6 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:35:31,989 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:31,989 INFO L85 PathProgramCache]: Analyzing trace with hash 1835559814, now seen corresponding path program 2 times [2024-09-25 10:35:31,989 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:35:31,989 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1572816166] [2024-09-25 10:35:31,989 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:35:31,989 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:35:32,007 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:32,213 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:35:32,214 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:32,215 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2024-09-25 10:35:32,217 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:32,219 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 17 [2024-09-25 10:35:32,220 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:32,222 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-25 10:35:32,222 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:35:32,223 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1572816166] [2024-09-25 10:35:32,223 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1572816166] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 10:35:32,223 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [597322003] [2024-09-25 10:35:32,223 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-25 10:35:32,223 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:35:32,223 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:35:32,224 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 10:35:32,225 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-09-25 10:35:32,263 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-25 10:35:32,263 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 10:35:32,263 INFO L262 TraceCheckSpWp]: Trace formula consists of 100 conjuncts, 12 conjuncts are in the unsatisfiable core [2024-09-25 10:35:32,264 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 10:35:32,331 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-25 10:35:32,331 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 10:35:32,605 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-25 10:35:32,605 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [597322003] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 10:35:32,605 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-25 10:35:32,605 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 8, 8] total 20 [2024-09-25 10:35:32,605 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1183317491] [2024-09-25 10:35:32,605 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-25 10:35:32,606 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2024-09-25 10:35:32,606 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:35:32,606 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2024-09-25 10:35:32,606 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=77, Invalid=303, Unknown=0, NotChecked=0, Total=380 [2024-09-25 10:35:32,606 INFO L87 Difference]: Start difference. First operand 126 states and 166 transitions. Second operand has 20 states, 20 states have (on average 1.7) internal successors, (34), 19 states have internal predecessors, (34), 8 states have call successors, (10), 3 states have call predecessors, (10), 1 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) [2024-09-25 10:35:33,055 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 10:35:33,055 INFO L93 Difference]: Finished difference Result 161 states and 204 transitions. [2024-09-25 10:35:33,055 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 16 states. [2024-09-25 10:35:33,055 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 20 states have (on average 1.7) internal successors, (34), 19 states have internal predecessors, (34), 8 states have call successors, (10), 3 states have call predecessors, (10), 1 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) Word has length 28 [2024-09-25 10:35:33,055 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 10:35:33,056 INFO L225 Difference]: With dead ends: 161 [2024-09-25 10:35:33,056 INFO L226 Difference]: Without dead ends: 118 [2024-09-25 10:35:33,057 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 84 GetRequests, 52 SyntacticMatches, 1 SemanticMatches, 31 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 175 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=205, Invalid=851, Unknown=0, NotChecked=0, Total=1056 [2024-09-25 10:35:33,057 INFO L434 NwaCegarLoop]: 3 mSDtfsCounter, 32 mSDsluCounter, 28 mSDsCounter, 0 mSdLazyCounter, 184 mSolverCounterSat, 16 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 33 SdHoareTripleChecker+Valid, 31 SdHoareTripleChecker+Invalid, 200 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 16 IncrementalHoareTripleChecker+Valid, 184 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-09-25 10:35:33,058 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [33 Valid, 31 Invalid, 200 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [16 Valid, 184 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-09-25 10:35:33,058 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 118 states. [2024-09-25 10:35:33,113 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 118 to 118. [2024-09-25 10:35:33,114 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 118 states, 90 states have (on average 1.288888888888889) internal successors, (116), 98 states have internal predecessors, (116), 20 states have call successors, (20), 8 states have call predecessors, (20), 7 states have return successors, (19), 11 states have call predecessors, (19), 19 states have call successors, (19) [2024-09-25 10:35:33,114 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 118 states to 118 states and 155 transitions. [2024-09-25 10:35:33,115 INFO L78 Accepts]: Start accepts. Automaton has 118 states and 155 transitions. Word has length 28 [2024-09-25 10:35:33,115 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 10:35:33,115 INFO L474 AbstractCegarLoop]: Abstraction has 118 states and 155 transitions. [2024-09-25 10:35:33,115 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 20 states have (on average 1.7) internal successors, (34), 19 states have internal predecessors, (34), 8 states have call successors, (10), 3 states have call predecessors, (10), 1 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) [2024-09-25 10:35:33,116 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:33,116 INFO L276 IsEmpty]: Start isEmpty. Operand 118 states and 155 transitions. [2024-09-25 10:35:33,117 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 34 [2024-09-25 10:35:33,118 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:35:33,118 INFO L216 NwaCegarLoop]: trace histogram [6, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:35:33,133 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-09-25 10:35:33,319 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2024-09-25 10:35:33,319 INFO L399 AbstractCegarLoop]: === Iteration 7 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:35:33,320 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:35:33,320 INFO L85 PathProgramCache]: Analyzing trace with hash -2066924416, now seen corresponding path program 3 times [2024-09-25 10:35:33,320 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:35:33,320 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1130004821] [2024-09-25 10:35:33,320 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:35:33,320 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:35:33,345 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:34,213 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:35:34,215 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:34,237 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 15 [2024-09-25 10:35:34,239 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:34,241 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 22 [2024-09-25 10:35:34,243 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:35:34,244 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 4 proven. 28 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-25 10:35:34,245 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:35:34,245 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1130004821] [2024-09-25 10:35:34,245 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1130004821] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 10:35:34,246 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1625445858] [2024-09-25 10:35:34,246 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-09-25 10:35:34,246 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:35:34,246 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:35:34,247 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 10:35:34,248 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-09-25 10:35:34,306 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 4 check-sat command(s) [2024-09-25 10:35:34,306 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 10:35:34,307 INFO L262 TraceCheckSpWp]: Trace formula consists of 125 conjuncts, 43 conjuncts are in the unsatisfiable core [2024-09-25 10:35:34,308 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 10:35:34,715 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 3 proven. 32 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-09-25 10:35:34,715 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 10:36:05,482 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 4 proven. 28 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-25 10:36:05,482 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1625445858] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 10:36:05,482 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-25 10:36:05,482 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [17, 15, 13] total 37 [2024-09-25 10:36:05,482 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2000447905] [2024-09-25 10:36:05,483 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-25 10:36:05,483 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 37 states [2024-09-25 10:36:05,483 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:36:05,483 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 37 interpolants. [2024-09-25 10:36:05,484 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=179, Invalid=1151, Unknown=2, NotChecked=0, Total=1332 [2024-09-25 10:36:05,484 INFO L87 Difference]: Start difference. First operand 118 states and 155 transitions. Second operand has 37 states, 36 states have (on average 1.5555555555555556) internal successors, (56), 35 states have internal predecessors, (56), 10 states have call successors, (12), 5 states have call predecessors, (12), 3 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) [2024-09-25 10:36:09,943 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-09-25 10:36:21,068 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-09-25 10:36:21,240 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 10:36:21,241 INFO L93 Difference]: Finished difference Result 172 states and 219 transitions. [2024-09-25 10:36:21,241 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 28 states. [2024-09-25 10:36:21,241 INFO L78 Accepts]: Start accepts. Automaton has has 37 states, 36 states have (on average 1.5555555555555556) internal successors, (56), 35 states have internal predecessors, (56), 10 states have call successors, (12), 5 states have call predecessors, (12), 3 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) Word has length 33 [2024-09-25 10:36:21,241 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 10:36:21,242 INFO L225 Difference]: With dead ends: 172 [2024-09-25 10:36:21,242 INFO L226 Difference]: Without dead ends: 170 [2024-09-25 10:36:21,243 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 111 GetRequests, 51 SyntacticMatches, 1 SemanticMatches, 59 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 489 ImplicationChecksByTransitivity, 37.9s TimeCoverageRelationStatistics Valid=584, Invalid=3073, Unknown=3, NotChecked=0, Total=3660 [2024-09-25 10:36:21,243 INFO L434 NwaCegarLoop]: 3 mSDtfsCounter, 169 mSDsluCounter, 41 mSDsCounter, 0 mSdLazyCounter, 520 mSolverCounterSat, 80 mSolverCounterUnsat, 2 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 9.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 169 SdHoareTripleChecker+Valid, 44 SdHoareTripleChecker+Invalid, 602 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 80 IncrementalHoareTripleChecker+Valid, 520 IncrementalHoareTripleChecker+Invalid, 2 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 9.5s IncrementalHoareTripleChecker+Time [2024-09-25 10:36:21,244 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [169 Valid, 44 Invalid, 602 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [80 Valid, 520 Invalid, 2 Unknown, 0 Unchecked, 9.5s Time] [2024-09-25 10:36:21,244 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 170 states. [2024-09-25 10:36:21,301 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 170 to 169. [2024-09-25 10:36:21,302 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 169 states, 125 states have (on average 1.208) internal successors, (151), 136 states have internal predecessors, (151), 33 states have call successors, (33), 11 states have call predecessors, (33), 10 states have return successors, (32), 21 states have call predecessors, (32), 32 states have call successors, (32) [2024-09-25 10:36:21,304 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 169 states to 169 states and 216 transitions. [2024-09-25 10:36:21,305 INFO L78 Accepts]: Start accepts. Automaton has 169 states and 216 transitions. Word has length 33 [2024-09-25 10:36:21,305 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 10:36:21,305 INFO L474 AbstractCegarLoop]: Abstraction has 169 states and 216 transitions. [2024-09-25 10:36:21,306 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 37 states, 36 states have (on average 1.5555555555555556) internal successors, (56), 35 states have internal predecessors, (56), 10 states have call successors, (12), 5 states have call predecessors, (12), 3 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) [2024-09-25 10:36:21,306 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:36:21,306 INFO L276 IsEmpty]: Start isEmpty. Operand 169 states and 216 transitions. [2024-09-25 10:36:21,309 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2024-09-25 10:36:21,310 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:36:21,310 INFO L216 NwaCegarLoop]: trace histogram [14, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:36:21,323 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2024-09-25 10:36:21,510 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,7 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:36:21,511 INFO L399 AbstractCegarLoop]: === Iteration 8 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:36:21,511 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:36:21,512 INFO L85 PathProgramCache]: Analyzing trace with hash 2049998720, now seen corresponding path program 4 times [2024-09-25 10:36:21,512 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:36:21,512 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1194345844] [2024-09-25 10:36:21,512 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:36:21,512 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:36:21,568 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:22,342 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:36:22,343 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:22,377 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2024-09-25 10:36:22,379 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:22,381 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 30 [2024-09-25 10:36:22,383 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:22,385 INFO L134 CoverageAnalysis]: Checked inductivity of 120 backedges. 4 proven. 112 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-25 10:36:22,387 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:36:22,387 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1194345844] [2024-09-25 10:36:22,387 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1194345844] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 10:36:22,387 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2137171002] [2024-09-25 10:36:22,387 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2024-09-25 10:36:22,387 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:36:22,387 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:36:22,389 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 10:36:22,390 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-09-25 10:36:22,500 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2024-09-25 10:36:22,500 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 10:36:22,501 INFO L262 TraceCheckSpWp]: Trace formula consists of 165 conjuncts, 66 conjuncts are in the unsatisfiable core [2024-09-25 10:36:22,502 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 10:36:23,142 INFO L134 CoverageAnalysis]: Checked inductivity of 120 backedges. 4 proven. 112 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-25 10:36:23,143 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 10:36:24,376 INFO L134 CoverageAnalysis]: Checked inductivity of 120 backedges. 4 proven. 112 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-09-25 10:36:24,376 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2137171002] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 10:36:24,377 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-25 10:36:24,377 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [24, 21, 21] total 60 [2024-09-25 10:36:24,377 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1004809579] [2024-09-25 10:36:24,377 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-25 10:36:24,377 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 60 states [2024-09-25 10:36:24,377 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:36:24,378 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 60 interpolants. [2024-09-25 10:36:24,378 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=540, Invalid=3000, Unknown=0, NotChecked=0, Total=3540 [2024-09-25 10:36:24,379 INFO L87 Difference]: Start difference. First operand 169 states and 216 transitions. Second operand has 60 states, 59 states have (on average 1.3220338983050848) internal successors, (78), 57 states have internal predecessors, (78), 11 states have call successors, (13), 5 states have call predecessors, (13), 2 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) [2024-09-25 10:36:31,116 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 10:36:31,117 INFO L93 Difference]: Finished difference Result 224 states and 282 transitions. [2024-09-25 10:36:31,117 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 34 states. [2024-09-25 10:36:31,117 INFO L78 Accepts]: Start accepts. Automaton has has 60 states, 59 states have (on average 1.3220338983050848) internal successors, (78), 57 states have internal predecessors, (78), 11 states have call successors, (13), 5 states have call predecessors, (13), 2 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) Word has length 41 [2024-09-25 10:36:31,117 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 10:36:31,119 INFO L225 Difference]: With dead ends: 224 [2024-09-25 10:36:31,119 INFO L226 Difference]: Without dead ends: 222 [2024-09-25 10:36:31,120 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 140 GetRequests, 50 SyntacticMatches, 2 SemanticMatches, 88 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 795 ImplicationChecksByTransitivity, 7.3s TimeCoverageRelationStatistics Valid=1321, Invalid=6689, Unknown=0, NotChecked=0, Total=8010 [2024-09-25 10:36:31,121 INFO L434 NwaCegarLoop]: 3 mSDtfsCounter, 220 mSDsluCounter, 74 mSDsCounter, 0 mSdLazyCounter, 1458 mSolverCounterSat, 133 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 220 SdHoareTripleChecker+Valid, 77 SdHoareTripleChecker+Invalid, 1591 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 133 IncrementalHoareTripleChecker+Valid, 1458 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.4s IncrementalHoareTripleChecker+Time [2024-09-25 10:36:31,121 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [220 Valid, 77 Invalid, 1591 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [133 Valid, 1458 Invalid, 0 Unknown, 0 Unchecked, 1.4s Time] [2024-09-25 10:36:31,122 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 222 states. [2024-09-25 10:36:31,203 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 222 to 212. [2024-09-25 10:36:31,204 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 212 states, 153 states have (on average 1.1699346405228759) internal successors, (179), 168 states have internal predecessors, (179), 46 states have call successors, (46), 13 states have call predecessors, (46), 12 states have return successors, (45), 30 states have call predecessors, (45), 45 states have call successors, (45) [2024-09-25 10:36:31,204 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 212 states to 212 states and 270 transitions. [2024-09-25 10:36:31,205 INFO L78 Accepts]: Start accepts. Automaton has 212 states and 270 transitions. Word has length 41 [2024-09-25 10:36:31,205 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 10:36:31,205 INFO L474 AbstractCegarLoop]: Abstraction has 212 states and 270 transitions. [2024-09-25 10:36:31,205 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 60 states, 59 states have (on average 1.3220338983050848) internal successors, (78), 57 states have internal predecessors, (78), 11 states have call successors, (13), 5 states have call predecessors, (13), 2 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) [2024-09-25 10:36:31,205 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:36:31,205 INFO L276 IsEmpty]: Start isEmpty. Operand 212 states and 270 transitions. [2024-09-25 10:36:31,207 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 45 [2024-09-25 10:36:31,207 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:36:31,207 INFO L216 NwaCegarLoop]: trace histogram [5, 5, 5, 4, 4, 4, 4, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:36:31,220 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Ended with exit code 0 [2024-09-25 10:36:31,407 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,8 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:36:31,408 INFO L399 AbstractCegarLoop]: === Iteration 9 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:36:31,408 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:36:31,408 INFO L85 PathProgramCache]: Analyzing trace with hash 1054157638, now seen corresponding path program 5 times [2024-09-25 10:36:31,408 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:36:31,408 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [498644157] [2024-09-25 10:36:31,408 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:36:31,408 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:36:31,433 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:31,846 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:36:31,848 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:31,870 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-09-25 10:36:31,871 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:31,873 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 19 [2024-09-25 10:36:31,874 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:31,875 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 26 [2024-09-25 10:36:31,877 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:31,879 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 33 [2024-09-25 10:36:31,879 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:31,881 INFO L134 CoverageAnalysis]: Checked inductivity of 64 backedges. 12 proven. 28 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-09-25 10:36:31,881 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:36:31,881 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [498644157] [2024-09-25 10:36:31,882 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [498644157] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 10:36:31,882 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1476920987] [2024-09-25 10:36:31,882 INFO L93 rtionOrderModulation]: Changing assertion order to INSIDE_LOOP_FIRST1 [2024-09-25 10:36:31,882 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:36:31,882 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:36:31,884 INFO L229 MonitoredProcess]: Starting monitored process 9 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 10:36:31,886 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-09-25 10:36:31,947 INFO L228 tOrderPrioritization]: Assert order INSIDE_LOOP_FIRST1 issued 5 check-sat command(s) [2024-09-25 10:36:31,947 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 10:36:31,948 INFO L262 TraceCheckSpWp]: Trace formula consists of 138 conjuncts, 26 conjuncts are in the unsatisfiable core [2024-09-25 10:36:31,953 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 10:36:32,295 INFO L134 CoverageAnalysis]: Checked inductivity of 64 backedges. 8 proven. 32 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-09-25 10:36:32,296 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 10:36:33,240 INFO L134 CoverageAnalysis]: Checked inductivity of 64 backedges. 8 proven. 32 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-09-25 10:36:33,240 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1476920987] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 10:36:33,240 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-25 10:36:33,240 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [16, 14, 14] total 38 [2024-09-25 10:36:33,240 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1396303691] [2024-09-25 10:36:33,240 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-25 10:36:33,240 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 38 states [2024-09-25 10:36:33,240 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:36:33,241 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 38 interpolants. [2024-09-25 10:36:33,241 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=119, Invalid=1287, Unknown=0, NotChecked=0, Total=1406 [2024-09-25 10:36:33,241 INFO L87 Difference]: Start difference. First operand 212 states and 270 transitions. Second operand has 38 states, 37 states have (on average 1.5405405405405406) internal successors, (57), 36 states have internal predecessors, (57), 17 states have call successors, (19), 5 states have call predecessors, (19), 2 states have return successors, (14), 14 states have call predecessors, (14), 13 states have call successors, (14) [2024-09-25 10:36:41,146 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.55s for a HTC check with result VALID. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-09-25 10:36:42,444 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 10:36:42,444 INFO L93 Difference]: Finished difference Result 253 states and 315 transitions. [2024-09-25 10:36:42,444 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 32 states. [2024-09-25 10:36:42,445 INFO L78 Accepts]: Start accepts. Automaton has has 38 states, 37 states have (on average 1.5405405405405406) internal successors, (57), 36 states have internal predecessors, (57), 17 states have call successors, (19), 5 states have call predecessors, (19), 2 states have return successors, (14), 14 states have call predecessors, (14), 13 states have call successors, (14) Word has length 44 [2024-09-25 10:36:42,445 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 10:36:42,446 INFO L225 Difference]: With dead ends: 253 [2024-09-25 10:36:42,446 INFO L226 Difference]: Without dead ends: 224 [2024-09-25 10:36:42,447 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 140 GetRequests, 74 SyntacticMatches, 2 SemanticMatches, 64 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 569 ImplicationChecksByTransitivity, 6.8s TimeCoverageRelationStatistics Valid=662, Invalid=3628, Unknown=0, NotChecked=0, Total=4290 [2024-09-25 10:36:42,450 INFO L434 NwaCegarLoop]: 3 mSDtfsCounter, 173 mSDsluCounter, 79 mSDsCounter, 0 mSdLazyCounter, 732 mSolverCounterSat, 82 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 173 SdHoareTripleChecker+Valid, 82 SdHoareTripleChecker+Invalid, 814 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 82 IncrementalHoareTripleChecker+Valid, 732 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.6s IncrementalHoareTripleChecker+Time [2024-09-25 10:36:42,450 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [173 Valid, 82 Invalid, 814 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [82 Valid, 732 Invalid, 0 Unknown, 0 Unchecked, 3.6s Time] [2024-09-25 10:36:42,450 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 224 states. [2024-09-25 10:36:42,536 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 224 to 222. [2024-09-25 10:36:42,537 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 222 states, 160 states have (on average 1.15625) internal successors, (185), 174 states have internal predecessors, (185), 48 states have call successors, (48), 14 states have call predecessors, (48), 13 states have return successors, (47), 33 states have call predecessors, (47), 47 states have call successors, (47) [2024-09-25 10:36:42,538 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 222 states to 222 states and 280 transitions. [2024-09-25 10:36:42,538 INFO L78 Accepts]: Start accepts. Automaton has 222 states and 280 transitions. Word has length 44 [2024-09-25 10:36:42,538 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 10:36:42,538 INFO L474 AbstractCegarLoop]: Abstraction has 222 states and 280 transitions. [2024-09-25 10:36:42,538 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 38 states, 37 states have (on average 1.5405405405405406) internal successors, (57), 36 states have internal predecessors, (57), 17 states have call successors, (19), 5 states have call predecessors, (19), 2 states have return successors, (14), 14 states have call predecessors, (14), 13 states have call successors, (14) [2024-09-25 10:36:42,538 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:36:42,538 INFO L276 IsEmpty]: Start isEmpty. Operand 222 states and 280 transitions. [2024-09-25 10:36:42,539 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 44 [2024-09-25 10:36:42,539 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:36:42,539 INFO L216 NwaCegarLoop]: trace histogram [9, 4, 4, 4, 3, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:36:42,552 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Ended with exit code 0 [2024-09-25 10:36:42,740 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,9 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:36:42,740 INFO L399 AbstractCegarLoop]: === Iteration 10 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:36:42,741 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:36:42,741 INFO L85 PathProgramCache]: Analyzing trace with hash 1495655394, now seen corresponding path program 6 times [2024-09-25 10:36:42,741 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:36:42,741 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1879177220] [2024-09-25 10:36:42,741 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:36:42,741 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:36:42,766 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:43,212 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:36:43,213 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:43,236 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 18 [2024-09-25 10:36:43,237 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:43,238 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-09-25 10:36:43,239 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:43,240 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 32 [2024-09-25 10:36:43,241 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:43,242 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 6 proven. 60 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-09-25 10:36:43,242 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:36:43,242 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1879177220] [2024-09-25 10:36:43,242 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1879177220] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 10:36:43,243 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [469028099] [2024-09-25 10:36:43,243 INFO L93 rtionOrderModulation]: Changing assertion order to MIX_INSIDE_OUTSIDE [2024-09-25 10:36:43,243 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:36:43,243 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:36:43,244 INFO L229 MonitoredProcess]: Starting monitored process 10 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 10:36:43,245 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2024-09-25 10:36:43,346 INFO L228 tOrderPrioritization]: Assert order MIX_INSIDE_OUTSIDE issued 6 check-sat command(s) [2024-09-25 10:36:43,346 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 10:36:43,347 INFO L262 TraceCheckSpWp]: Trace formula consists of 154 conjuncts, 57 conjuncts are in the unsatisfiable core [2024-09-25 10:36:43,349 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 10:36:43,806 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 8 proven. 64 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-09-25 10:36:43,807 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 10:36:44,481 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 6 proven. 60 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-09-25 10:36:44,482 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [469028099] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 10:36:44,482 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-25 10:36:44,482 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20, 19, 17] total 49 [2024-09-25 10:36:44,482 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2076611204] [2024-09-25 10:36:44,482 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-25 10:36:44,482 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 49 states [2024-09-25 10:36:44,482 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:36:44,483 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 49 interpolants. [2024-09-25 10:36:44,483 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=358, Invalid=1994, Unknown=0, NotChecked=0, Total=2352 [2024-09-25 10:36:44,483 INFO L87 Difference]: Start difference. First operand 222 states and 280 transitions. Second operand has 49 states, 48 states have (on average 1.5) internal successors, (72), 47 states have internal predecessors, (72), 14 states have call successors, (16), 5 states have call predecessors, (16), 3 states have return successors, (11), 11 states have call predecessors, (11), 10 states have call successors, (11) [2024-09-25 10:36:47,196 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 10:36:47,196 INFO L93 Difference]: Finished difference Result 256 states and 320 transitions. [2024-09-25 10:36:47,196 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 30 states. [2024-09-25 10:36:47,196 INFO L78 Accepts]: Start accepts. Automaton has has 49 states, 48 states have (on average 1.5) internal successors, (72), 47 states have internal predecessors, (72), 14 states have call successors, (16), 5 states have call predecessors, (16), 3 states have return successors, (11), 11 states have call predecessors, (11), 10 states have call successors, (11) Word has length 43 [2024-09-25 10:36:47,197 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 10:36:47,198 INFO L225 Difference]: With dead ends: 256 [2024-09-25 10:36:47,198 INFO L226 Difference]: Without dead ends: 254 [2024-09-25 10:36:47,199 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 138 GetRequests, 65 SyntacticMatches, 0 SemanticMatches, 73 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 654 ImplicationChecksByTransitivity, 3.2s TimeCoverageRelationStatistics Valid=894, Invalid=4656, Unknown=0, NotChecked=0, Total=5550 [2024-09-25 10:36:47,199 INFO L434 NwaCegarLoop]: 3 mSDtfsCounter, 137 mSDsluCounter, 65 mSDsCounter, 0 mSdLazyCounter, 900 mSolverCounterSat, 101 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 137 SdHoareTripleChecker+Valid, 68 SdHoareTripleChecker+Invalid, 1001 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 101 IncrementalHoareTripleChecker+Valid, 900 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-09-25 10:36:47,199 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [137 Valid, 68 Invalid, 1001 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [101 Valid, 900 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-09-25 10:36:47,200 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 254 states. [2024-09-25 10:36:47,292 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 254 to 241. [2024-09-25 10:36:47,292 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 241 states, 173 states have (on average 1.1445086705202312) internal successors, (198), 187 states have internal predecessors, (198), 53 states have call successors, (53), 15 states have call predecessors, (53), 14 states have return successors, (52), 38 states have call predecessors, (52), 52 states have call successors, (52) [2024-09-25 10:36:47,293 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 241 states to 241 states and 303 transitions. [2024-09-25 10:36:47,293 INFO L78 Accepts]: Start accepts. Automaton has 241 states and 303 transitions. Word has length 43 [2024-09-25 10:36:47,294 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 10:36:47,294 INFO L474 AbstractCegarLoop]: Abstraction has 241 states and 303 transitions. [2024-09-25 10:36:47,294 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 49 states, 48 states have (on average 1.5) internal successors, (72), 47 states have internal predecessors, (72), 14 states have call successors, (16), 5 states have call predecessors, (16), 3 states have return successors, (11), 11 states have call predecessors, (11), 10 states have call successors, (11) [2024-09-25 10:36:47,294 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:36:47,294 INFO L276 IsEmpty]: Start isEmpty. Operand 241 states and 303 transitions. [2024-09-25 10:36:47,295 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2024-09-25 10:36:47,295 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:36:47,295 INFO L216 NwaCegarLoop]: trace histogram [6, 6, 6, 5, 5, 5, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:36:47,308 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Ended with exit code 0 [2024-09-25 10:36:47,495 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 10 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-09-25 10:36:47,496 INFO L399 AbstractCegarLoop]: === Iteration 11 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:36:47,496 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:36:47,496 INFO L85 PathProgramCache]: Analyzing trace with hash -123973150, now seen corresponding path program 7 times [2024-09-25 10:36:47,497 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:36:47,497 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1470192197] [2024-09-25 10:36:47,497 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:36:47,497 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:36:47,522 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:48,721 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:36:48,723 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:48,746 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-09-25 10:36:48,747 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:48,748 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 21 [2024-09-25 10:36:48,749 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:48,750 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 28 [2024-09-25 10:36:48,751 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:48,752 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 35 [2024-09-25 10:36:48,752 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:48,755 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 42 [2024-09-25 10:36:48,756 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:48,758 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 10 proven. 55 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-09-25 10:36:48,758 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:36:48,758 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1470192197] [2024-09-25 10:36:48,758 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1470192197] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 10:36:48,758 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1112937561] [2024-09-25 10:36:48,758 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2024-09-25 10:36:48,758 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:36:48,759 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:36:48,760 INFO L229 MonitoredProcess]: Starting monitored process 11 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 10:36:48,761 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Waiting until timeout for monitored process [2024-09-25 10:36:48,871 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:36:48,873 INFO L262 TraceCheckSpWp]: Trace formula consists of 162 conjuncts, 27 conjuncts are in the unsatisfiable core [2024-09-25 10:36:48,874 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 10:36:49,301 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 15 proven. 50 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-09-25 10:36:49,301 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 10:36:49,920 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 15 proven. 50 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-09-25 10:36:49,920 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1112937561] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 10:36:49,920 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-25 10:36:49,921 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 15, 15] total 45 [2024-09-25 10:36:49,921 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [448148553] [2024-09-25 10:36:49,921 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-25 10:36:49,921 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 45 states [2024-09-25 10:36:49,921 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:36:49,922 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 45 interpolants. [2024-09-25 10:36:49,922 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=180, Invalid=1800, Unknown=0, NotChecked=0, Total=1980 [2024-09-25 10:36:49,922 INFO L87 Difference]: Start difference. First operand 241 states and 303 transitions. Second operand has 45 states, 44 states have (on average 1.5681818181818181) internal successors, (69), 43 states have internal predecessors, (69), 19 states have call successors, (21), 5 states have call predecessors, (21), 2 states have return successors, (17), 17 states have call predecessors, (17), 16 states have call successors, (17) [2024-09-25 10:36:58,308 WARN L293 SmtUtils]: Spent 8.08s on a formula simplification. DAG size of input: 65 DAG size of output: 39 (called from [L 391] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-09-25 10:37:06,494 WARN L293 SmtUtils]: Spent 8.06s on a formula simplification. DAG size of input: 54 DAG size of output: 50 (called from [L 391] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-09-25 10:37:14,645 WARN L293 SmtUtils]: Spent 8.06s on a formula simplification. DAG size of input: 35 DAG size of output: 33 (called from [L 391] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-09-25 10:37:22,909 WARN L293 SmtUtils]: Spent 8.13s on a formula simplification. DAG size of input: 38 DAG size of output: 36 (called from [L 391] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-09-25 10:37:31,412 WARN L293 SmtUtils]: Spent 8.04s on a formula simplification. DAG size of input: 29 DAG size of output: 27 (called from [L 391] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-09-25 10:37:40,690 WARN L293 SmtUtils]: Spent 8.04s on a formula simplification. DAG size of input: 38 DAG size of output: 36 (called from [L 391] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-09-25 10:37:40,938 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-09-25 10:37:40,938 INFO L93 Difference]: Finished difference Result 295 states and 357 transitions. [2024-09-25 10:37:40,938 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 32 states. [2024-09-25 10:37:40,938 INFO L78 Accepts]: Start accepts. Automaton has has 45 states, 44 states have (on average 1.5681818181818181) internal successors, (69), 43 states have internal predecessors, (69), 19 states have call successors, (21), 5 states have call predecessors, (21), 2 states have return successors, (17), 17 states have call predecessors, (17), 16 states have call successors, (17) Word has length 53 [2024-09-25 10:37:40,938 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-09-25 10:37:40,939 INFO L225 Difference]: With dead ends: 295 [2024-09-25 10:37:40,940 INFO L226 Difference]: Without dead ends: 239 [2024-09-25 10:37:40,941 INFO L433 NwaCegarLoop]: 0 DeclaredPredicates, 165 GetRequests, 94 SyntacticMatches, 0 SemanticMatches, 71 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 730 ImplicationChecksByTransitivity, 50.8s TimeCoverageRelationStatistics Valid=613, Invalid=4643, Unknown=0, NotChecked=0, Total=5256 [2024-09-25 10:37:40,941 INFO L434 NwaCegarLoop]: 3 mSDtfsCounter, 164 mSDsluCounter, 79 mSDsCounter, 0 mSdLazyCounter, 1824 mSolverCounterSat, 46 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 164 SdHoareTripleChecker+Valid, 82 SdHoareTripleChecker+Invalid, 1870 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 46 IncrementalHoareTripleChecker+Valid, 1824 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.3s IncrementalHoareTripleChecker+Time [2024-09-25 10:37:40,941 INFO L435 NwaCegarLoop]: SdHoareTripleChecker [164 Valid, 82 Invalid, 1870 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [46 Valid, 1824 Invalid, 0 Unknown, 0 Unchecked, 1.3s Time] [2024-09-25 10:37:40,942 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 239 states. [2024-09-25 10:37:41,019 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 239 to 238. [2024-09-25 10:37:41,019 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 238 states, 172 states have (on average 1.1337209302325582) internal successors, (195), 185 states have internal predecessors, (195), 48 states have call successors, (48), 18 states have call predecessors, (48), 17 states have return successors, (47), 34 states have call predecessors, (47), 47 states have call successors, (47) [2024-09-25 10:37:41,020 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 238 states to 238 states and 290 transitions. [2024-09-25 10:37:41,021 INFO L78 Accepts]: Start accepts. Automaton has 238 states and 290 transitions. Word has length 53 [2024-09-25 10:37:41,021 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-09-25 10:37:41,021 INFO L474 AbstractCegarLoop]: Abstraction has 238 states and 290 transitions. [2024-09-25 10:37:41,021 INFO L475 AbstractCegarLoop]: INTERPOLANT automaton has has 45 states, 44 states have (on average 1.5681818181818181) internal successors, (69), 43 states have internal predecessors, (69), 19 states have call successors, (21), 5 states have call predecessors, (21), 2 states have return successors, (17), 17 states have call predecessors, (17), 16 states have call successors, (17) [2024-09-25 10:37:41,021 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:37:41,021 INFO L276 IsEmpty]: Start isEmpty. Operand 238 states and 290 transitions. [2024-09-25 10:37:41,022 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 56 [2024-09-25 10:37:41,022 INFO L208 NwaCegarLoop]: Found error trace [2024-09-25 10:37:41,022 INFO L216 NwaCegarLoop]: trace histogram [7, 6, 6, 6, 5, 5, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-09-25 10:37:41,035 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Forceful destruction successful, exit code 0 [2024-09-25 10:37:41,226 WARN L456 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 11 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-09-25 10:37:41,227 INFO L399 AbstractCegarLoop]: === Iteration 12 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-09-25 10:37:41,227 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2024-09-25 10:37:41,227 INFO L85 PathProgramCache]: Analyzing trace with hash -978711902, now seen corresponding path program 8 times [2024-09-25 10:37:41,227 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-09-25 10:37:41,227 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [954361606] [2024-09-25 10:37:41,227 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-09-25 10:37:41,227 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-09-25 10:37:41,244 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:37:42,122 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-09-25 10:37:42,123 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:37:42,164 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2024-09-25 10:37:42,165 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:37:42,168 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2024-09-25 10:37:42,169 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:37:42,173 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 30 [2024-09-25 10:37:42,173 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:37:42,176 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 37 [2024-09-25 10:37:42,177 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:37:42,180 INFO L381 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 44 [2024-09-25 10:37:42,181 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-09-25 10:37:42,184 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 10 proven. 68 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-09-25 10:37:42,184 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-09-25 10:37:42,184 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [954361606] [2024-09-25 10:37:42,184 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [954361606] provided 0 perfect and 1 imperfect interpolant sequences [2024-09-25 10:37:42,185 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [239680360] [2024-09-25 10:37:42,185 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-09-25 10:37:42,185 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-09-25 10:37:42,185 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-09-25 10:37:42,186 INFO L229 MonitoredProcess]: Starting monitored process 12 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-09-25 10:37:42,187 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Waiting until timeout for monitored process [2024-09-25 10:37:42,271 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-09-25 10:37:42,272 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2024-09-25 10:37:42,273 INFO L262 TraceCheckSpWp]: Trace formula consists of 172 conjuncts, 40 conjuncts are in the unsatisfiable core [2024-09-25 10:37:42,274 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2024-09-25 10:37:42,899 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 10 proven. 68 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-09-25 10:37:42,899 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2024-09-25 10:37:43,808 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 10 proven. 68 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-09-25 10:37:43,809 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [239680360] provided 0 perfect and 2 imperfect interpolant sequences [2024-09-25 10:37:43,809 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-09-25 10:37:43,809 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [23, 17, 17] total 51 [2024-09-25 10:37:43,809 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [185193646] [2024-09-25 10:37:43,809 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-09-25 10:37:43,809 INFO L551 AbstractCegarLoop]: INTERPOLANT automaton has 51 states [2024-09-25 10:37:43,809 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-09-25 10:37:43,810 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 51 interpolants. [2024-09-25 10:37:43,810 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=190, Invalid=2360, Unknown=0, NotChecked=0, Total=2550 [2024-09-25 10:37:43,810 INFO L87 Difference]: Start difference. First operand 238 states and 290 transitions. Second operand has 51 states, 49 states have (on average 1.530612244897959) internal successors, (75), 48 states have internal predecessors, (75), 20 states have call successors, (22), 5 states have call predecessors, (22), 2 states have return successors, (17), 17 states have call predecessors, (17), 16 states have call successors, (17) [2024-09-25 10:37:49,515 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-09-25 10:38:00,372 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-09-25 10:38:11,449 WARN L293 SmtUtils]: Spent 6.01s on a formula simplification. DAG size of input: 54 DAG size of output: 36 (called from [L 391] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-09-25 10:38:15,878 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-09-25 10:38:19,908 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-09-25 10:38:51,230 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-09-25 10:39:15,679 WARN L293 SmtUtils]: Spent 15.14s on a formula simplification. DAG size of input: 64 DAG size of output: 56 (called from [L 391] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-09-25 10:39:19,037 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 3.33s for a HTC check with result VALID. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers []