./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/recursified_nla-digbench/recursified_sqrt1-ll.c --full-output --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --witnessprinter.yaml.format.version 2.1 --witnessprinter.generate.graphml.witnesses false --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version e378df2c Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReach.xml -i ../sv-benchmarks/c/recursified_nla-digbench/recursified_sqrt1-ll.c -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/certificate-witnesses-artifact/automizer --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash ac02a57e98f6481647f49b84c91fda6d0505e35fbffb37ed6b508f20e911a1af --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --witnessprinter.yaml.format.version 2.1 --witnessprinter.generate.graphml.witnesses false --- Real Ultimate output --- This is Ultimate 0.2.5-wip.dk.contract-modifies-e378df2-m [2024-10-15 15:25:30,110 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-10-15 15:25:30,160 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-10-15 15:25:30,165 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-10-15 15:25:30,166 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-10-15 15:25:30,189 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-10-15 15:25:30,195 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-10-15 15:25:30,195 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-10-15 15:25:30,196 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-10-15 15:25:30,196 INFO L153 SettingsManager]: * Use memory slicer=true [2024-10-15 15:25:30,196 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-10-15 15:25:30,196 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-10-15 15:25:30,197 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-10-15 15:25:30,197 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-10-15 15:25:30,197 INFO L153 SettingsManager]: * Use SBE=true [2024-10-15 15:25:30,197 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-10-15 15:25:30,198 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-10-15 15:25:30,198 INFO L153 SettingsManager]: * sizeof long=4 [2024-10-15 15:25:30,200 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-10-15 15:25:30,201 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-10-15 15:25:30,201 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-10-15 15:25:30,201 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-10-15 15:25:30,202 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-10-15 15:25:30,202 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-10-15 15:25:30,202 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-10-15 15:25:30,202 INFO L153 SettingsManager]: * sizeof long double=12 [2024-10-15 15:25:30,202 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-10-15 15:25:30,203 INFO L153 SettingsManager]: * Use constant arrays=true [2024-10-15 15:25:30,203 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-10-15 15:25:30,203 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-10-15 15:25:30,203 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-10-15 15:25:30,203 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-10-15 15:25:30,204 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-10-15 15:25:30,204 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-10-15 15:25:30,204 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-10-15 15:25:30,204 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-10-15 15:25:30,204 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-10-15 15:25:30,205 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-10-15 15:25:30,205 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-10-15 15:25:30,208 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-10-15 15:25:30,209 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-10-15 15:25:30,209 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-10-15 15:25:30,209 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/certificate-witnesses-artifact/automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> ac02a57e98f6481647f49b84c91fda6d0505e35fbffb37ed6b508f20e911a1af Applying setting for plugin de.uni_freiburg.informatik.ultimate.boogie.procedureinliner: Inline calls to implemented procedures -> NEVER Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> All Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: YAML Format version -> 2.1 Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Generate GraphML witnesses -> false [2024-10-15 15:25:30,398 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-10-15 15:25:30,427 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-10-15 15:25:30,429 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-10-15 15:25:30,430 INFO L270 PluginConnector]: Initializing CDTParser... [2024-10-15 15:25:30,430 INFO L274 PluginConnector]: CDTParser initialized [2024-10-15 15:25:30,431 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/recursified_nla-digbench/recursified_sqrt1-ll.c [2024-10-15 15:25:31,731 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-10-15 15:25:31,870 INFO L384 CDTParser]: Found 1 translation units. [2024-10-15 15:25:31,870 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursified_nla-digbench/recursified_sqrt1-ll.c [2024-10-15 15:25:31,880 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/4f13d1f78/9ff66dc87cbc4ba8a33448de09eeb097/FLAG1569e6eda [2024-10-15 15:25:31,895 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/4f13d1f78/9ff66dc87cbc4ba8a33448de09eeb097 [2024-10-15 15:25:31,897 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-10-15 15:25:31,898 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-10-15 15:25:31,900 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-10-15 15:25:31,900 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-10-15 15:25:31,904 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-10-15 15:25:31,904 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.10 03:25:31" (1/1) ... [2024-10-15 15:25:31,905 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@4595f6e0 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:31, skipping insertion in model container [2024-10-15 15:25:31,905 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.10 03:25:31" (1/1) ... [2024-10-15 15:25:31,923 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-10-15 15:25:32,054 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursified_nla-digbench/recursified_sqrt1-ll.c[1052,1065] [2024-10-15 15:25:32,065 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-10-15 15:25:32,072 INFO L200 MainTranslator]: Completed pre-run [2024-10-15 15:25:32,081 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/recursified_nla-digbench/recursified_sqrt1-ll.c[1052,1065] [2024-10-15 15:25:32,106 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-10-15 15:25:32,118 INFO L204 MainTranslator]: Completed translation [2024-10-15 15:25:32,119 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32 WrapperNode [2024-10-15 15:25:32,119 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-10-15 15:25:32,120 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-10-15 15:25:32,120 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-10-15 15:25:32,120 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-10-15 15:25:32,125 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,131 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,136 INFO L138 Inliner]: procedures = 16, calls = 58, calls flagged for inlining = 0, calls inlined = 0, statements flattened = 0 [2024-10-15 15:25:32,136 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-10-15 15:25:32,137 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-10-15 15:25:32,137 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-10-15 15:25:32,137 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-10-15 15:25:32,144 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,144 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,146 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,158 INFO L175 MemorySlicer]: Split 33 memory accesses to 5 slices as follows [2, 2, 9, 8, 12]. 36 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2, 0, 0, 0, 0]. The 7 writes are split as follows [0, 1, 2, 2, 2]. [2024-10-15 15:25:32,158 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,158 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,170 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,172 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,173 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,174 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,175 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-10-15 15:25:32,176 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-10-15 15:25:32,176 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-10-15 15:25:32,176 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-10-15 15:25:32,177 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (1/1) ... [2024-10-15 15:25:32,182 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-10-15 15:25:32,197 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:25:32,214 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-10-15 15:25:32,218 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-10-15 15:25:32,252 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-10-15 15:25:32,252 INFO L130 BoogieDeclarations]: Found specification of procedure main [2024-10-15 15:25:32,252 INFO L138 BoogieDeclarations]: Found implementation of procedure main [2024-10-15 15:25:32,252 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-10-15 15:25:32,252 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-10-15 15:25:32,253 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2024-10-15 15:25:32,253 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2024-10-15 15:25:32,254 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#4 [2024-10-15 15:25:32,254 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnStack [2024-10-15 15:25:32,254 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#0 [2024-10-15 15:25:32,254 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#1 [2024-10-15 15:25:32,254 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#2 [2024-10-15 15:25:32,255 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#3 [2024-10-15 15:25:32,255 INFO L130 BoogieDeclarations]: Found specification of procedure write~int#4 [2024-10-15 15:25:32,255 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.init [2024-10-15 15:25:32,255 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.init [2024-10-15 15:25:32,255 INFO L130 BoogieDeclarations]: Found specification of procedure func_to_recursive_line_29_to_40_0 [2024-10-15 15:25:32,255 INFO L138 BoogieDeclarations]: Found implementation of procedure func_to_recursive_line_29_to_40_0 [2024-10-15 15:25:32,256 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-10-15 15:25:32,256 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-10-15 15:25:32,256 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#0 [2024-10-15 15:25:32,256 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#1 [2024-10-15 15:25:32,256 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#2 [2024-10-15 15:25:32,257 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#3 [2024-10-15 15:25:32,257 INFO L130 BoogieDeclarations]: Found specification of procedure read~int#4 [2024-10-15 15:25:32,257 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_assert [2024-10-15 15:25:32,257 INFO L138 BoogieDeclarations]: Found implementation of procedure __VERIFIER_assert [2024-10-15 15:25:32,257 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2024-10-15 15:25:32,343 INFO L238 CfgBuilder]: Building ICFG [2024-10-15 15:25:32,345 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-10-15 15:25:32,513 INFO L? ?]: Removed 6 outVars from TransFormulas that were not future-live. [2024-10-15 15:25:32,513 INFO L287 CfgBuilder]: Performing block encoding [2024-10-15 15:25:32,533 INFO L309 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-10-15 15:25:32,533 INFO L314 CfgBuilder]: Removed 1 assume(true) statements. [2024-10-15 15:25:32,534 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.10 03:25:32 BoogieIcfgContainer [2024-10-15 15:25:32,534 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-10-15 15:25:32,536 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-10-15 15:25:32,536 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-10-15 15:25:32,538 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-10-15 15:25:32,539 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 15.10 03:25:31" (1/3) ... [2024-10-15 15:25:32,539 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@68ca0f64 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 15.10 03:25:32, skipping insertion in model container [2024-10-15 15:25:32,539 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 03:25:32" (2/3) ... [2024-10-15 15:25:32,541 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@68ca0f64 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 15.10 03:25:32, skipping insertion in model container [2024-10-15 15:25:32,541 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.10 03:25:32" (3/3) ... [2024-10-15 15:25:32,542 INFO L112 eAbstractionObserver]: Analyzing ICFG recursified_sqrt1-ll.c [2024-10-15 15:25:32,556 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:All NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-10-15 15:25:32,556 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-10-15 15:25:32,595 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-10-15 15:25:32,600 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@55911fe8, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-10-15 15:25:32,600 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-10-15 15:25:32,603 INFO L276 IsEmpty]: Start isEmpty. Operand has 34 states, 18 states have (on average 1.2222222222222223) internal successors, (22), 20 states have internal predecessors, (22), 10 states have call successors, (10), 4 states have call predecessors, (10), 4 states have return successors, (10), 10 states have call predecessors, (10), 10 states have call successors, (10) [2024-10-15 15:25:32,608 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 13 [2024-10-15 15:25:32,608 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:25:32,608 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:25:32,609 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:25:32,612 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:25:32,613 INFO L85 PathProgramCache]: Analyzing trace with hash 793561350, now seen corresponding path program 1 times [2024-10-15 15:25:32,619 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:25:32,619 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1536620916] [2024-10-15 15:25:32,619 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:25:32,620 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:25:32,741 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:25:33,262 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 15:25:33,264 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:25:33,269 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 15:25:33,270 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:25:33,271 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1536620916] [2024-10-15 15:25:33,271 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1536620916] provided 1 perfect and 0 imperfect interpolant sequences [2024-10-15 15:25:33,272 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-10-15 15:25:33,272 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-10-15 15:25:33,273 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2127024183] [2024-10-15 15:25:33,274 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-10-15 15:25:33,277 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-10-15 15:25:33,277 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:25:33,295 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-10-15 15:25:33,295 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2024-10-15 15:25:33,297 INFO L87 Difference]: Start difference. First operand has 34 states, 18 states have (on average 1.2222222222222223) internal successors, (22), 20 states have internal predecessors, (22), 10 states have call successors, (10), 4 states have call predecessors, (10), 4 states have return successors, (10), 10 states have call predecessors, (10), 10 states have call successors, (10) Second operand has 8 states, 6 states have (on average 1.1666666666666667) internal successors, (7), 6 states have internal predecessors, (7), 3 states have call successors, (4), 3 states have call predecessors, (4), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-10-15 15:25:33,518 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:25:33,518 INFO L93 Difference]: Finished difference Result 80 states and 113 transitions. [2024-10-15 15:25:33,519 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-10-15 15:25:33,520 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 1.1666666666666667) internal successors, (7), 6 states have internal predecessors, (7), 3 states have call successors, (4), 3 states have call predecessors, (4), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 12 [2024-10-15 15:25:33,524 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:25:33,529 INFO L225 Difference]: With dead ends: 80 [2024-10-15 15:25:33,529 INFO L226 Difference]: Without dead ends: 48 [2024-10-15 15:25:33,550 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 13 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=27, Invalid=83, Unknown=0, NotChecked=0, Total=110 [2024-10-15 15:25:33,557 INFO L432 NwaCegarLoop]: 27 mSDtfsCounter, 17 mSDsluCounter, 133 mSDsCounter, 0 mSdLazyCounter, 118 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 160 SdHoareTripleChecker+Invalid, 126 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 118 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-10-15 15:25:33,558 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 160 Invalid, 126 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 118 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-10-15 15:25:33,574 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 48 states. [2024-10-15 15:25:33,616 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 48 to 45. [2024-10-15 15:25:33,618 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 45 states, 26 states have (on average 1.1153846153846154) internal successors, (29), 28 states have internal predecessors, (29), 13 states have call successors, (13), 6 states have call predecessors, (13), 5 states have return successors, (12), 11 states have call predecessors, (12), 11 states have call successors, (12) [2024-10-15 15:25:33,619 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 45 states to 45 states and 54 transitions. [2024-10-15 15:25:33,620 INFO L78 Accepts]: Start accepts. Automaton has 45 states and 54 transitions. Word has length 12 [2024-10-15 15:25:33,621 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:25:33,621 INFO L471 AbstractCegarLoop]: Abstraction has 45 states and 54 transitions. [2024-10-15 15:25:33,621 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 1.1666666666666667) internal successors, (7), 6 states have internal predecessors, (7), 3 states have call successors, (4), 3 states have call predecessors, (4), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-10-15 15:25:33,621 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:25:33,621 INFO L276 IsEmpty]: Start isEmpty. Operand 45 states and 54 transitions. [2024-10-15 15:25:33,622 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2024-10-15 15:25:33,622 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:25:33,622 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:25:33,622 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-10-15 15:25:33,622 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:25:33,623 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:25:33,623 INFO L85 PathProgramCache]: Analyzing trace with hash -179619090, now seen corresponding path program 1 times [2024-10-15 15:25:33,623 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:25:33,623 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1466741659] [2024-10-15 15:25:33,623 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:25:33,623 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:25:33,641 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:25:33,643 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1834162587] [2024-10-15 15:25:33,643 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:25:33,644 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:25:33,644 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:25:33,646 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:25:33,647 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-10-15 15:25:33,710 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:25:33,712 INFO L255 TraceCheckSpWp]: Trace formula consists of 164 conjuncts, 46 conjuncts are in the unsatisfiable core [2024-10-15 15:25:33,717 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:25:33,745 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:25:33,749 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:25:33,960 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 15:25:33,964 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:25:34,232 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 43 treesize of output 27 [2024-10-15 15:25:34,377 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 15:25:34,377 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:25:34,377 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1466741659] [2024-10-15 15:25:34,378 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-10-15 15:25:34,378 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1834162587] [2024-10-15 15:25:34,378 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1834162587] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 15:25:34,378 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-10-15 15:25:34,379 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [13, 12] total 21 [2024-10-15 15:25:34,379 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [962058565] [2024-10-15 15:25:34,379 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-10-15 15:25:34,380 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2024-10-15 15:25:34,380 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:25:34,380 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2024-10-15 15:25:34,381 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=60, Invalid=360, Unknown=0, NotChecked=0, Total=420 [2024-10-15 15:25:34,381 INFO L87 Difference]: Start difference. First operand 45 states and 54 transitions. Second operand has 21 states, 15 states have (on average 1.2) internal successors, (18), 15 states have internal predecessors, (18), 7 states have call successors, (8), 5 states have call predecessors, (8), 3 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-10-15 15:25:39,173 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [] [2024-10-15 15:25:43,337 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [1] [2024-10-15 15:25:43,368 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:25:43,368 INFO L93 Difference]: Finished difference Result 81 states and 95 transitions. [2024-10-15 15:25:43,368 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 25 states. [2024-10-15 15:25:43,369 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 15 states have (on average 1.2) internal successors, (18), 15 states have internal predecessors, (18), 7 states have call successors, (8), 5 states have call predecessors, (8), 3 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) Word has length 18 [2024-10-15 15:25:43,369 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:25:43,371 INFO L225 Difference]: With dead ends: 81 [2024-10-15 15:25:43,371 INFO L226 Difference]: Without dead ends: 79 [2024-10-15 15:25:43,372 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 48 GetRequests, 14 SyntacticMatches, 2 SemanticMatches, 32 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 168 ImplicationChecksByTransitivity, 0.8s TimeCoverageRelationStatistics Valid=191, Invalid=931, Unknown=0, NotChecked=0, Total=1122 [2024-10-15 15:25:43,373 INFO L432 NwaCegarLoop]: 18 mSDtfsCounter, 59 mSDsluCounter, 162 mSDsCounter, 0 mSdLazyCounter, 435 mSolverCounterSat, 33 mSolverCounterUnsat, 2 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 8.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 61 SdHoareTripleChecker+Valid, 180 SdHoareTripleChecker+Invalid, 470 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 33 IncrementalHoareTripleChecker+Valid, 435 IncrementalHoareTripleChecker+Invalid, 2 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 8.6s IncrementalHoareTripleChecker+Time [2024-10-15 15:25:43,373 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [61 Valid, 180 Invalid, 470 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [33 Valid, 435 Invalid, 2 Unknown, 0 Unchecked, 8.6s Time] [2024-10-15 15:25:43,374 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 79 states. [2024-10-15 15:25:43,391 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 79 to 77. [2024-10-15 15:25:43,391 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 77 states, 46 states have (on average 1.108695652173913) internal successors, (51), 49 states have internal predecessors, (51), 20 states have call successors, (20), 10 states have call predecessors, (20), 10 states have return successors, (20), 18 states have call predecessors, (20), 17 states have call successors, (20) [2024-10-15 15:25:43,393 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 77 states to 77 states and 91 transitions. [2024-10-15 15:25:43,393 INFO L78 Accepts]: Start accepts. Automaton has 77 states and 91 transitions. Word has length 18 [2024-10-15 15:25:43,393 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:25:43,393 INFO L471 AbstractCegarLoop]: Abstraction has 77 states and 91 transitions. [2024-10-15 15:25:43,393 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 15 states have (on average 1.2) internal successors, (18), 15 states have internal predecessors, (18), 7 states have call successors, (8), 5 states have call predecessors, (8), 3 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-10-15 15:25:43,394 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:25:43,394 INFO L276 IsEmpty]: Start isEmpty. Operand 77 states and 91 transitions. [2024-10-15 15:25:43,394 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2024-10-15 15:25:43,394 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:25:43,394 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:25:43,407 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-10-15 15:25:43,595 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:25:43,596 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:25:43,596 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:25:43,596 INFO L85 PathProgramCache]: Analyzing trace with hash 1495099348, now seen corresponding path program 1 times [2024-10-15 15:25:43,596 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:25:43,596 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [959910068] [2024-10-15 15:25:43,596 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:25:43,596 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:25:43,615 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:25:43,615 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [723525136] [2024-10-15 15:25:43,615 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:25:43,615 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:25:43,616 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:25:43,618 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:25:43,619 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-10-15 15:25:43,682 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:25:43,684 INFO L255 TraceCheckSpWp]: Trace formula consists of 181 conjuncts, 39 conjuncts are in the unsatisfiable core [2024-10-15 15:25:43,685 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:25:43,692 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:25:43,695 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:25:43,830 INFO L134 CoverageAnalysis]: Checked inductivity of 8 backedges. 0 proven. 4 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-10-15 15:25:43,831 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:25:43,928 INFO L134 CoverageAnalysis]: Checked inductivity of 8 backedges. 4 proven. 0 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-10-15 15:25:43,929 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:25:43,929 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [959910068] [2024-10-15 15:25:43,929 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-10-15 15:25:43,929 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [723525136] [2024-10-15 15:25:43,929 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [723525136] provided 1 perfect and 1 imperfect interpolant sequences [2024-10-15 15:25:43,929 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-10-15 15:25:43,929 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [9] total 13 [2024-10-15 15:25:43,930 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [570354793] [2024-10-15 15:25:43,930 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-10-15 15:25:43,930 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-10-15 15:25:43,930 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:25:43,930 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-10-15 15:25:43,931 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=30, Invalid=126, Unknown=0, NotChecked=0, Total=156 [2024-10-15 15:25:43,931 INFO L87 Difference]: Start difference. First operand 77 states and 91 transitions. Second operand has 8 states, 6 states have (on average 2.0) internal successors, (12), 6 states have internal predecessors, (12), 4 states have call successors, (6), 3 states have call predecessors, (6), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-10-15 15:25:44,933 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:25:44,933 INFO L93 Difference]: Finished difference Result 91 states and 105 transitions. [2024-10-15 15:25:44,933 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-10-15 15:25:44,934 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 2.0) internal successors, (12), 6 states have internal predecessors, (12), 4 states have call successors, (6), 3 states have call predecessors, (6), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 24 [2024-10-15 15:25:44,934 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:25:44,935 INFO L225 Difference]: With dead ends: 91 [2024-10-15 15:25:44,935 INFO L226 Difference]: Without dead ends: 89 [2024-10-15 15:25:44,935 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 50 GetRequests, 31 SyntacticMatches, 5 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 21 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=44, Invalid=196, Unknown=0, NotChecked=0, Total=240 [2024-10-15 15:25:44,936 INFO L432 NwaCegarLoop]: 24 mSDtfsCounter, 17 mSDsluCounter, 97 mSDsCounter, 0 mSdLazyCounter, 123 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 19 SdHoareTripleChecker+Valid, 121 SdHoareTripleChecker+Invalid, 132 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 123 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.9s IncrementalHoareTripleChecker+Time [2024-10-15 15:25:44,936 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [19 Valid, 121 Invalid, 132 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 123 Invalid, 0 Unknown, 0 Unchecked, 0.9s Time] [2024-10-15 15:25:44,937 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 89 states. [2024-10-15 15:25:44,959 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 89 to 89. [2024-10-15 15:25:44,960 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 89 states, 54 states have (on average 1.0925925925925926) internal successors, (59), 57 states have internal predecessors, (59), 20 states have call successors, (20), 12 states have call predecessors, (20), 14 states have return successors, (23), 19 states have call predecessors, (23), 17 states have call successors, (23) [2024-10-15 15:25:44,960 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 89 states to 89 states and 102 transitions. [2024-10-15 15:25:44,961 INFO L78 Accepts]: Start accepts. Automaton has 89 states and 102 transitions. Word has length 24 [2024-10-15 15:25:44,961 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:25:44,961 INFO L471 AbstractCegarLoop]: Abstraction has 89 states and 102 transitions. [2024-10-15 15:25:44,961 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 2.0) internal successors, (12), 6 states have internal predecessors, (12), 4 states have call successors, (6), 3 states have call predecessors, (6), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-10-15 15:25:44,961 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:25:44,962 INFO L276 IsEmpty]: Start isEmpty. Operand 89 states and 102 transitions. [2024-10-15 15:25:44,962 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2024-10-15 15:25:44,962 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:25:44,962 INFO L215 NwaCegarLoop]: trace histogram [4, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:25:44,977 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-10-15 15:25:45,166 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:25:45,167 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:25:45,167 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:25:45,169 INFO L85 PathProgramCache]: Analyzing trace with hash -1496297149, now seen corresponding path program 1 times [2024-10-15 15:25:45,169 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:25:45,169 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [623049886] [2024-10-15 15:25:45,169 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:25:45,169 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:25:45,184 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:25:45,690 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 15:25:45,691 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:25:45,693 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-10-15 15:25:45,694 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:25:45,696 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-10-15 15:25:45,697 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:25:45,699 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-10-15 15:25:45,699 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:25:45,701 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 6 proven. 3 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-10-15 15:25:45,702 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:25:45,702 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [623049886] [2024-10-15 15:25:45,702 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [623049886] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 15:25:45,702 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1649689812] [2024-10-15 15:25:45,702 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:25:45,702 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:25:45,702 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:25:45,704 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:25:45,709 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-10-15 15:25:45,792 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:25:45,794 INFO L255 TraceCheckSpWp]: Trace formula consists of 249 conjuncts, 69 conjuncts are in the unsatisfiable core [2024-10-15 15:25:45,796 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:25:45,801 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:25:45,805 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-10-15 15:25:46,081 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:25:46,086 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:25:46,137 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 2 proven. 15 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-10-15 15:25:46,138 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:25:50,532 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 7 proven. 8 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-10-15 15:25:50,532 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1649689812] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 15:25:50,532 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 15:25:50,532 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 16, 10] total 26 [2024-10-15 15:25:50,532 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [458214327] [2024-10-15 15:25:50,533 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 15:25:50,533 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 26 states [2024-10-15 15:25:50,533 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:25:50,534 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 26 interpolants. [2024-10-15 15:25:50,534 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=86, Invalid=563, Unknown=1, NotChecked=0, Total=650 [2024-10-15 15:25:50,534 INFO L87 Difference]: Start difference. First operand 89 states and 102 transitions. Second operand has 26 states, 20 states have (on average 1.95) internal successors, (39), 19 states have internal predecessors, (39), 10 states have call successors, (19), 9 states have call predecessors, (19), 4 states have return successors, (10), 3 states have call predecessors, (10), 5 states have call successors, (10) [2024-10-15 15:25:55,896 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.02s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [1] [2024-10-15 15:25:59,966 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.07s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [1] [2024-10-15 15:26:00,834 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:26:00,834 INFO L93 Difference]: Finished difference Result 97 states and 108 transitions. [2024-10-15 15:26:00,835 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 23 states. [2024-10-15 15:26:00,835 INFO L78 Accepts]: Start accepts. Automaton has has 26 states, 20 states have (on average 1.95) internal successors, (39), 19 states have internal predecessors, (39), 10 states have call successors, (19), 9 states have call predecessors, (19), 4 states have return successors, (10), 3 states have call predecessors, (10), 5 states have call successors, (10) Word has length 34 [2024-10-15 15:26:00,835 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:26:00,836 INFO L225 Difference]: With dead ends: 97 [2024-10-15 15:26:00,836 INFO L226 Difference]: Without dead ends: 95 [2024-10-15 15:26:00,837 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 100 GetRequests, 59 SyntacticMatches, 6 SemanticMatches, 35 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 258 ImplicationChecksByTransitivity, 5.2s TimeCoverageRelationStatistics Valid=194, Invalid=1137, Unknown=1, NotChecked=0, Total=1332 [2024-10-15 15:26:00,837 INFO L432 NwaCegarLoop]: 24 mSDtfsCounter, 78 mSDsluCounter, 174 mSDsCounter, 0 mSdLazyCounter, 458 mSolverCounterSat, 35 mSolverCounterUnsat, 2 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 9.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 80 SdHoareTripleChecker+Valid, 198 SdHoareTripleChecker+Invalid, 495 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 35 IncrementalHoareTripleChecker+Valid, 458 IncrementalHoareTripleChecker+Invalid, 2 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 9.5s IncrementalHoareTripleChecker+Time [2024-10-15 15:26:00,838 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [80 Valid, 198 Invalid, 495 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [35 Valid, 458 Invalid, 2 Unknown, 0 Unchecked, 9.5s Time] [2024-10-15 15:26:00,838 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 95 states. [2024-10-15 15:26:00,860 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 95 to 93. [2024-10-15 15:26:00,861 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 93 states, 57 states have (on average 1.087719298245614) internal successors, (62), 60 states have internal predecessors, (62), 20 states have call successors, (20), 13 states have call predecessors, (20), 15 states have return successors, (23), 19 states have call predecessors, (23), 17 states have call successors, (23) [2024-10-15 15:26:00,861 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 93 states to 93 states and 105 transitions. [2024-10-15 15:26:00,862 INFO L78 Accepts]: Start accepts. Automaton has 93 states and 105 transitions. Word has length 34 [2024-10-15 15:26:00,862 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:26:00,862 INFO L471 AbstractCegarLoop]: Abstraction has 93 states and 105 transitions. [2024-10-15 15:26:00,862 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 26 states, 20 states have (on average 1.95) internal successors, (39), 19 states have internal predecessors, (39), 10 states have call successors, (19), 9 states have call predecessors, (19), 4 states have return successors, (10), 3 states have call predecessors, (10), 5 states have call successors, (10) [2024-10-15 15:26:00,862 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:00,863 INFO L276 IsEmpty]: Start isEmpty. Operand 93 states and 105 transitions. [2024-10-15 15:26:00,863 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2024-10-15 15:26:00,863 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:26:00,863 INFO L215 NwaCegarLoop]: trace histogram [4, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:26:00,877 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-10-15 15:26:01,067 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:26:01,068 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:26:01,068 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:01,068 INFO L85 PathProgramCache]: Analyzing trace with hash 2049263454, now seen corresponding path program 1 times [2024-10-15 15:26:01,068 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:26:01,068 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [937658586] [2024-10-15 15:26:01,068 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:26:01,068 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:26:01,082 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:01,349 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 15:26:01,350 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:01,405 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2024-10-15 15:26:01,410 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:01,494 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-10-15 15:26:01,496 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:01,498 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-10-15 15:26:01,500 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:01,501 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-10-15 15:26:01,503 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:01,505 INFO L134 CoverageAnalysis]: Checked inductivity of 18 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-10-15 15:26:01,506 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:26:01,506 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [937658586] [2024-10-15 15:26:01,506 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [937658586] provided 1 perfect and 0 imperfect interpolant sequences [2024-10-15 15:26:01,507 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-10-15 15:26:01,507 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-10-15 15:26:01,507 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1681834519] [2024-10-15 15:26:01,507 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-10-15 15:26:01,507 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-10-15 15:26:01,507 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:26:01,508 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-10-15 15:26:01,508 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=14, Invalid=42, Unknown=0, NotChecked=0, Total=56 [2024-10-15 15:26:01,508 INFO L87 Difference]: Start difference. First operand 93 states and 105 transitions. Second operand has 8 states, 7 states have (on average 2.2857142857142856) internal successors, (16), 6 states have internal predecessors, (16), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2024-10-15 15:26:02,228 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:26:02,228 INFO L93 Difference]: Finished difference Result 99 states and 110 transitions. [2024-10-15 15:26:02,228 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-10-15 15:26:02,229 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 2.2857142857142856) internal successors, (16), 6 states have internal predecessors, (16), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) Word has length 34 [2024-10-15 15:26:02,229 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:26:02,230 INFO L225 Difference]: With dead ends: 99 [2024-10-15 15:26:02,230 INFO L226 Difference]: Without dead ends: 97 [2024-10-15 15:26:02,230 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 21 GetRequests, 12 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=30, Invalid=80, Unknown=0, NotChecked=0, Total=110 [2024-10-15 15:26:02,231 INFO L432 NwaCegarLoop]: 17 mSDtfsCounter, 17 mSDsluCounter, 49 mSDsCounter, 0 mSdLazyCounter, 146 mSolverCounterSat, 12 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 20 SdHoareTripleChecker+Valid, 66 SdHoareTripleChecker+Invalid, 158 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 12 IncrementalHoareTripleChecker+Valid, 146 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-10-15 15:26:02,231 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [20 Valid, 66 Invalid, 158 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [12 Valid, 146 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-10-15 15:26:02,231 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 97 states. [2024-10-15 15:26:02,253 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 97 to 97. [2024-10-15 15:26:02,253 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 97 states, 60 states have (on average 1.0833333333333333) internal successors, (65), 63 states have internal predecessors, (65), 20 states have call successors, (20), 14 states have call predecessors, (20), 16 states have return successors, (23), 19 states have call predecessors, (23), 17 states have call successors, (23) [2024-10-15 15:26:02,254 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 97 states to 97 states and 108 transitions. [2024-10-15 15:26:02,256 INFO L78 Accepts]: Start accepts. Automaton has 97 states and 108 transitions. Word has length 34 [2024-10-15 15:26:02,256 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:26:02,257 INFO L471 AbstractCegarLoop]: Abstraction has 97 states and 108 transitions. [2024-10-15 15:26:02,257 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 2.2857142857142856) internal successors, (16), 6 states have internal predecessors, (16), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2024-10-15 15:26:02,257 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:02,257 INFO L276 IsEmpty]: Start isEmpty. Operand 97 states and 108 transitions. [2024-10-15 15:26:02,258 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 41 [2024-10-15 15:26:02,258 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:26:02,258 INFO L215 NwaCegarLoop]: trace histogram [5, 4, 4, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:26:02,258 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-10-15 15:26:02,258 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:26:02,258 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:02,258 INFO L85 PathProgramCache]: Analyzing trace with hash 863672261, now seen corresponding path program 1 times [2024-10-15 15:26:02,258 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:26:02,258 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [361357683] [2024-10-15 15:26:02,258 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:26:02,258 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:26:02,280 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:26:02,281 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1307003397] [2024-10-15 15:26:02,281 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:26:02,281 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:26:02,281 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:26:02,285 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:26:02,288 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-10-15 15:26:02,353 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:02,354 INFO L255 TraceCheckSpWp]: Trace formula consists of 216 conjuncts, 19 conjuncts are in the unsatisfiable core [2024-10-15 15:26:02,356 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:26:02,366 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:26:02,382 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:26:03,009 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 18 proven. 2 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-10-15 15:26:03,009 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:26:03,580 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:26:03,580 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [361357683] [2024-10-15 15:26:03,580 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-10-15 15:26:03,580 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1307003397] [2024-10-15 15:26:03,581 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1307003397] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 15:26:03,581 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-10-15 15:26:03,581 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8] total 8 [2024-10-15 15:26:03,581 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1829697991] [2024-10-15 15:26:03,581 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-10-15 15:26:03,581 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-10-15 15:26:03,581 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:26:03,582 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-10-15 15:26:03,582 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=23, Invalid=87, Unknown=0, NotChecked=0, Total=110 [2024-10-15 15:26:03,582 INFO L87 Difference]: Start difference. First operand 97 states and 108 transitions. Second operand has 8 states, 7 states have (on average 2.857142857142857) internal successors, (20), 7 states have internal predecessors, (20), 4 states have call successors, (8), 4 states have call predecessors, (8), 3 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) [2024-10-15 15:26:04,461 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:26:04,462 INFO L93 Difference]: Finished difference Result 105 states and 114 transitions. [2024-10-15 15:26:04,462 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-10-15 15:26:04,463 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 2.857142857142857) internal successors, (20), 7 states have internal predecessors, (20), 4 states have call successors, (8), 4 states have call predecessors, (8), 3 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) Word has length 40 [2024-10-15 15:26:04,464 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:26:04,465 INFO L225 Difference]: With dead ends: 105 [2024-10-15 15:26:04,465 INFO L226 Difference]: Without dead ends: 101 [2024-10-15 15:26:04,465 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 62 GetRequests, 46 SyntacticMatches, 3 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 14 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=49, Invalid=161, Unknown=0, NotChecked=0, Total=210 [2024-10-15 15:26:04,466 INFO L432 NwaCegarLoop]: 15 mSDtfsCounter, 26 mSDsluCounter, 50 mSDsCounter, 0 mSdLazyCounter, 158 mSolverCounterSat, 25 mSolverCounterUnsat, 2 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 26 SdHoareTripleChecker+Valid, 65 SdHoareTripleChecker+Invalid, 185 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 25 IncrementalHoareTripleChecker+Valid, 158 IncrementalHoareTripleChecker+Invalid, 2 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-10-15 15:26:04,466 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [26 Valid, 65 Invalid, 185 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [25 Valid, 158 Invalid, 2 Unknown, 0 Unchecked, 0.6s Time] [2024-10-15 15:26:04,466 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 101 states. [2024-10-15 15:26:04,499 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 101 to 99. [2024-10-15 15:26:04,500 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 99 states, 62 states have (on average 1.064516129032258) internal successors, (66), 64 states have internal predecessors, (66), 20 states have call successors, (20), 15 states have call predecessors, (20), 16 states have return successors, (23), 19 states have call predecessors, (23), 17 states have call successors, (23) [2024-10-15 15:26:04,500 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 99 states to 99 states and 109 transitions. [2024-10-15 15:26:04,501 INFO L78 Accepts]: Start accepts. Automaton has 99 states and 109 transitions. Word has length 40 [2024-10-15 15:26:04,501 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:26:04,501 INFO L471 AbstractCegarLoop]: Abstraction has 99 states and 109 transitions. [2024-10-15 15:26:04,501 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 2.857142857142857) internal successors, (20), 7 states have internal predecessors, (20), 4 states have call successors, (8), 4 states have call predecessors, (8), 3 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) [2024-10-15 15:26:04,501 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:04,501 INFO L276 IsEmpty]: Start isEmpty. Operand 99 states and 109 transitions. [2024-10-15 15:26:04,502 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 47 [2024-10-15 15:26:04,502 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:26:04,502 INFO L215 NwaCegarLoop]: trace histogram [6, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:26:04,519 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-10-15 15:26:04,706 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:26:04,707 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:26:04,707 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:04,707 INFO L85 PathProgramCache]: Analyzing trace with hash 398231530, now seen corresponding path program 1 times [2024-10-15 15:26:04,707 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:26:04,708 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1935513640] [2024-10-15 15:26:04,708 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:26:04,708 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:26:04,722 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:26:04,723 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [486079652] [2024-10-15 15:26:04,724 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:26:04,724 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:26:04,724 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:26:04,727 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:26:04,734 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-10-15 15:26:04,844 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:04,846 INFO L255 TraceCheckSpWp]: Trace formula consists of 233 conjuncts, 23 conjuncts are in the unsatisfiable core [2024-10-15 15:26:04,850 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:26:04,859 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:26:04,875 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:26:05,627 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 30 proven. 4 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-10-15 15:26:05,628 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:26:06,112 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:26:06,113 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1935513640] [2024-10-15 15:26:06,113 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-10-15 15:26:06,113 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [486079652] [2024-10-15 15:26:06,113 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [486079652] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 15:26:06,113 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-10-15 15:26:06,113 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8] total 8 [2024-10-15 15:26:06,113 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1515712357] [2024-10-15 15:26:06,113 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-10-15 15:26:06,113 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-10-15 15:26:06,113 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:26:06,114 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-10-15 15:26:06,114 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=23, Invalid=87, Unknown=0, NotChecked=0, Total=110 [2024-10-15 15:26:06,114 INFO L87 Difference]: Start difference. First operand 99 states and 109 transitions. Second operand has 8 states, 7 states have (on average 3.0) internal successors, (21), 7 states have internal predecessors, (21), 4 states have call successors, (9), 4 states have call predecessors, (9), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) [2024-10-15 15:26:06,928 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:26:06,928 INFO L93 Difference]: Finished difference Result 101 states and 110 transitions. [2024-10-15 15:26:06,929 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-10-15 15:26:06,929 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 3.0) internal successors, (21), 7 states have internal predecessors, (21), 4 states have call successors, (9), 4 states have call predecessors, (9), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) Word has length 46 [2024-10-15 15:26:06,929 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:26:06,930 INFO L225 Difference]: With dead ends: 101 [2024-10-15 15:26:06,930 INFO L226 Difference]: Without dead ends: 81 [2024-10-15 15:26:06,930 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 73 GetRequests, 55 SyntacticMatches, 5 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 15 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=49, Invalid=161, Unknown=0, NotChecked=0, Total=210 [2024-10-15 15:26:06,931 INFO L432 NwaCegarLoop]: 15 mSDtfsCounter, 18 mSDsluCounter, 53 mSDsCounter, 0 mSdLazyCounter, 157 mSolverCounterSat, 23 mSolverCounterUnsat, 2 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 68 SdHoareTripleChecker+Invalid, 182 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 23 IncrementalHoareTripleChecker+Valid, 157 IncrementalHoareTripleChecker+Invalid, 2 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-10-15 15:26:06,931 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 68 Invalid, 182 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [23 Valid, 157 Invalid, 2 Unknown, 0 Unchecked, 0.5s Time] [2024-10-15 15:26:06,931 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 81 states. [2024-10-15 15:26:06,957 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 81 to 81. [2024-10-15 15:26:06,957 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 81 states, 50 states have (on average 1.06) internal successors, (53), 52 states have internal predecessors, (53), 17 states have call successors, (17), 12 states have call predecessors, (17), 13 states have return successors, (20), 16 states have call predecessors, (20), 15 states have call successors, (20) [2024-10-15 15:26:06,958 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 81 states to 81 states and 90 transitions. [2024-10-15 15:26:06,958 INFO L78 Accepts]: Start accepts. Automaton has 81 states and 90 transitions. Word has length 46 [2024-10-15 15:26:06,958 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:26:06,958 INFO L471 AbstractCegarLoop]: Abstraction has 81 states and 90 transitions. [2024-10-15 15:26:06,959 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 3.0) internal successors, (21), 7 states have internal predecessors, (21), 4 states have call successors, (9), 4 states have call predecessors, (9), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) [2024-10-15 15:26:06,959 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:06,959 INFO L276 IsEmpty]: Start isEmpty. Operand 81 states and 90 transitions. [2024-10-15 15:26:06,959 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 59 [2024-10-15 15:26:06,959 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:26:06,960 INFO L215 NwaCegarLoop]: trace histogram [7, 6, 6, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:26:06,972 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-10-15 15:26:07,163 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable6 [2024-10-15 15:26:07,164 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:26:07,164 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:07,164 INFO L85 PathProgramCache]: Analyzing trace with hash 15363389, now seen corresponding path program 1 times [2024-10-15 15:26:07,164 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:26:07,164 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1740610590] [2024-10-15 15:26:07,164 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:26:07,164 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:26:07,178 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:07,736 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 15:26:07,736 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:07,805 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2024-10-15 15:26:07,817 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:08,655 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-10-15 15:26:08,657 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:08,680 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-10-15 15:26:08,681 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:08,692 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-10-15 15:26:08,693 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:08,703 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 21 [2024-10-15 15:26:08,706 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:08,842 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-10-15 15:26:08,844 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:08,845 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-10-15 15:26:08,846 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:08,848 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-10-15 15:26:08,848 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:08,850 INFO L134 CoverageAnalysis]: Checked inductivity of 83 backedges. 12 proven. 10 refuted. 0 times theorem prover too weak. 61 trivial. 0 not checked. [2024-10-15 15:26:08,850 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:26:08,851 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1740610590] [2024-10-15 15:26:08,851 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1740610590] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 15:26:08,851 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2065377259] [2024-10-15 15:26:08,851 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:26:08,851 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:26:08,851 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:26:08,852 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:26:08,859 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-10-15 15:26:08,938 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:08,940 INFO L255 TraceCheckSpWp]: Trace formula consists of 303 conjuncts, 44 conjuncts are in the unsatisfiable core [2024-10-15 15:26:08,943 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:26:10,107 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 21 [2024-10-15 15:26:10,115 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 21 [2024-10-15 15:26:10,455 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 15 [2024-10-15 15:26:10,463 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:26:10,764 INFO L134 CoverageAnalysis]: Checked inductivity of 83 backedges. 10 proven. 54 refuted. 0 times theorem prover too weak. 19 trivial. 0 not checked. [2024-10-15 15:26:10,765 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:26:11,886 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2065377259] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 15:26:11,887 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-10-15 15:26:11,887 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 14] total 22 [2024-10-15 15:26:11,887 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1198379528] [2024-10-15 15:26:11,890 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-10-15 15:26:11,890 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2024-10-15 15:26:11,890 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:26:11,891 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2024-10-15 15:26:11,891 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=60, Invalid=446, Unknown=0, NotChecked=0, Total=506 [2024-10-15 15:26:11,891 INFO L87 Difference]: Start difference. First operand 81 states and 90 transitions. Second operand has 22 states, 17 states have (on average 2.411764705882353) internal successors, (41), 18 states have internal predecessors, (41), 10 states have call successors, (17), 6 states have call predecessors, (17), 6 states have return successors, (14), 8 states have call predecessors, (14), 8 states have call successors, (14) [2024-10-15 15:26:14,213 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:26:14,216 INFO L93 Difference]: Finished difference Result 90 states and 99 transitions. [2024-10-15 15:26:14,216 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2024-10-15 15:26:14,217 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 17 states have (on average 2.411764705882353) internal successors, (41), 18 states have internal predecessors, (41), 10 states have call successors, (17), 6 states have call predecessors, (17), 6 states have return successors, (14), 8 states have call predecessors, (14), 8 states have call successors, (14) Word has length 58 [2024-10-15 15:26:14,217 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:26:14,218 INFO L225 Difference]: With dead ends: 90 [2024-10-15 15:26:14,218 INFO L226 Difference]: Without dead ends: 88 [2024-10-15 15:26:14,218 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 112 GetRequests, 75 SyntacticMatches, 5 SemanticMatches, 32 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 187 ImplicationChecksByTransitivity, 3.2s TimeCoverageRelationStatistics Valid=162, Invalid=960, Unknown=0, NotChecked=0, Total=1122 [2024-10-15 15:26:14,219 INFO L432 NwaCegarLoop]: 14 mSDtfsCounter, 46 mSDsluCounter, 66 mSDsCounter, 0 mSdLazyCounter, 331 mSolverCounterSat, 37 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 47 SdHoareTripleChecker+Valid, 80 SdHoareTripleChecker+Invalid, 368 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 37 IncrementalHoareTripleChecker+Valid, 331 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2024-10-15 15:26:14,219 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [47 Valid, 80 Invalid, 368 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [37 Valid, 331 Invalid, 0 Unknown, 0 Unchecked, 1.2s Time] [2024-10-15 15:26:14,219 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 88 states. [2024-10-15 15:26:14,259 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 88 to 85. [2024-10-15 15:26:14,260 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 85 states, 53 states have (on average 1.0566037735849056) internal successors, (56), 55 states have internal predecessors, (56), 17 states have call successors, (17), 13 states have call predecessors, (17), 14 states have return successors, (20), 16 states have call predecessors, (20), 15 states have call successors, (20) [2024-10-15 15:26:14,262 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 85 states to 85 states and 93 transitions. [2024-10-15 15:26:14,262 INFO L78 Accepts]: Start accepts. Automaton has 85 states and 93 transitions. Word has length 58 [2024-10-15 15:26:14,262 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:26:14,262 INFO L471 AbstractCegarLoop]: Abstraction has 85 states and 93 transitions. [2024-10-15 15:26:14,263 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 17 states have (on average 2.411764705882353) internal successors, (41), 18 states have internal predecessors, (41), 10 states have call successors, (17), 6 states have call predecessors, (17), 6 states have return successors, (14), 8 states have call predecessors, (14), 8 states have call successors, (14) [2024-10-15 15:26:14,263 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:14,263 INFO L276 IsEmpty]: Start isEmpty. Operand 85 states and 93 transitions. [2024-10-15 15:26:14,264 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 63 [2024-10-15 15:26:14,264 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:26:14,264 INFO L215 NwaCegarLoop]: trace histogram [8, 7, 7, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:26:14,277 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2024-10-15 15:26:14,468 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,7 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:26:14,469 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:26:14,469 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:14,469 INFO L85 PathProgramCache]: Analyzing trace with hash -1755980760, now seen corresponding path program 2 times [2024-10-15 15:26:14,469 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:26:14,469 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1660665392] [2024-10-15 15:26:14,470 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:26:14,470 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:26:14,494 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:26:14,497 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1494213842] [2024-10-15 15:26:14,501 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-10-15 15:26:14,501 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:26:14,501 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:26:14,503 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:26:14,504 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-10-15 15:26:14,597 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-10-15 15:26:14,598 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 15:26:14,601 INFO L255 TraceCheckSpWp]: Trace formula consists of 364 conjuncts, 110 conjuncts are in the unsatisfiable core [2024-10-15 15:26:14,604 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:26:14,614 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:26:14,629 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:26:15,231 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:26:15,249 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:26:16,607 INFO L349 Elim1Store]: treesize reduction 11, result has 8.3 percent of original size [2024-10-15 15:26:16,607 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 15 treesize of output 7 [2024-10-15 15:26:16,691 INFO L349 Elim1Store]: treesize reduction 29, result has 34.1 percent of original size [2024-10-15 15:26:16,691 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 29 [2024-10-15 15:26:16,721 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:26:17,528 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 2 proven. 100 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-10-15 15:26:17,528 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:26:18,885 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 49 treesize of output 33 [2024-10-15 15:26:32,920 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 23 proven. 28 refuted. 0 times theorem prover too weak. 67 trivial. 0 not checked. [2024-10-15 15:26:32,920 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:26:32,920 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1660665392] [2024-10-15 15:26:32,920 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-10-15 15:26:32,920 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1494213842] [2024-10-15 15:26:32,920 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1494213842] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 15:26:32,920 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-10-15 15:26:32,921 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20, 15] total 31 [2024-10-15 15:26:32,921 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1092844357] [2024-10-15 15:26:32,921 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-10-15 15:26:32,921 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 31 states [2024-10-15 15:26:32,921 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:26:32,922 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 31 interpolants. [2024-10-15 15:26:32,922 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=100, Invalid=829, Unknown=1, NotChecked=0, Total=930 [2024-10-15 15:26:32,922 INFO L87 Difference]: Start difference. First operand 85 states and 93 transitions. Second operand has 31 states, 25 states have (on average 2.16) internal successors, (54), 24 states have internal predecessors, (54), 15 states have call successors, (24), 11 states have call predecessors, (24), 6 states have return successors, (15), 7 states have call predecessors, (15), 9 states have call successors, (15) [2024-10-15 15:26:45,397 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.39s for a HTC check with result VALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [1] [2024-10-15 15:26:49,435 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [] [2024-10-15 15:26:51,705 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:26:51,705 INFO L93 Difference]: Finished difference Result 159 states and 167 transitions. [2024-10-15 15:26:51,706 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 49 states. [2024-10-15 15:26:51,706 INFO L78 Accepts]: Start accepts. Automaton has has 31 states, 25 states have (on average 2.16) internal successors, (54), 24 states have internal predecessors, (54), 15 states have call successors, (24), 11 states have call predecessors, (24), 6 states have return successors, (15), 7 states have call predecessors, (15), 9 states have call successors, (15) Word has length 62 [2024-10-15 15:26:51,707 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:26:51,728 INFO L225 Difference]: With dead ends: 159 [2024-10-15 15:26:51,728 INFO L226 Difference]: Without dead ends: 157 [2024-10-15 15:26:51,729 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 160 GetRequests, 83 SyntacticMatches, 12 SemanticMatches, 65 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1034 ImplicationChecksByTransitivity, 24.0s TimeCoverageRelationStatistics Valid=529, Invalid=3892, Unknown=1, NotChecked=0, Total=4422 [2024-10-15 15:26:51,730 INFO L432 NwaCegarLoop]: 39 mSDtfsCounter, 140 mSDsluCounter, 296 mSDsCounter, 0 mSdLazyCounter, 1026 mSolverCounterSat, 64 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 10.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 144 SdHoareTripleChecker+Valid, 335 SdHoareTripleChecker+Invalid, 1091 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 64 IncrementalHoareTripleChecker+Valid, 1026 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 10.9s IncrementalHoareTripleChecker+Time [2024-10-15 15:26:51,730 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [144 Valid, 335 Invalid, 1091 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [64 Valid, 1026 Invalid, 1 Unknown, 0 Unchecked, 10.9s Time] [2024-10-15 15:26:51,730 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 157 states. [2024-10-15 15:26:51,774 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 157 to 121. [2024-10-15 15:26:51,775 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 121 states, 78 states have (on average 1.0512820512820513) internal successors, (82), 81 states have internal predecessors, (82), 21 states have call successors, (21), 20 states have call predecessors, (21), 21 states have return successors, (25), 20 states have call predecessors, (25), 19 states have call successors, (25) [2024-10-15 15:26:51,775 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 121 states to 121 states and 128 transitions. [2024-10-15 15:26:51,776 INFO L78 Accepts]: Start accepts. Automaton has 121 states and 128 transitions. Word has length 62 [2024-10-15 15:26:51,776 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:26:51,776 INFO L471 AbstractCegarLoop]: Abstraction has 121 states and 128 transitions. [2024-10-15 15:26:51,776 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 31 states, 25 states have (on average 2.16) internal successors, (54), 24 states have internal predecessors, (54), 15 states have call successors, (24), 11 states have call predecessors, (24), 6 states have return successors, (15), 7 states have call predecessors, (15), 9 states have call successors, (15) [2024-10-15 15:26:51,776 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:51,776 INFO L276 IsEmpty]: Start isEmpty. Operand 121 states and 128 transitions. [2024-10-15 15:26:51,777 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 65 [2024-10-15 15:26:51,777 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:26:51,777 INFO L215 NwaCegarLoop]: trace histogram [8, 7, 7, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:26:51,790 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Forceful destruction successful, exit code 0 [2024-10-15 15:26:51,978 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,8 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:26:51,978 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:26:51,979 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:26:51,979 INFO L85 PathProgramCache]: Analyzing trace with hash 765303396, now seen corresponding path program 1 times [2024-10-15 15:26:51,979 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:26:51,979 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [43690129] [2024-10-15 15:26:51,979 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:26:51,979 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:26:51,995 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:26:51,997 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [636966074] [2024-10-15 15:26:51,997 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:26:51,998 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:26:51,998 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:26:51,999 INFO L229 MonitoredProcess]: Starting monitored process 9 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:26:52,000 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-10-15 15:26:52,086 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:26:52,089 INFO L255 TraceCheckSpWp]: Trace formula consists of 318 conjuncts, 141 conjuncts are in the unsatisfiable core [2024-10-15 15:26:52,093 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:26:52,106 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:26:52,123 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:26:52,139 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:26:52,156 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-10-15 15:26:54,340 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:26:59,117 WARN L873 $PredicateComparison]: unable to prove that (exists ((|v_func_to_recursive_line_29_to_40_0_#in~s.base_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_29_to_40_0_#in~s.offset_BEFORE_CALL_7| Int) (|v_func_to_recursive_line_29_to_40_0_#in~a.offset_BEFORE_CALL_12| Int) (|v_func_to_recursive_line_29_to_40_0_#in~a.base_BEFORE_CALL_12| Int)) (<= (select (select |c_#memory_int#3| |v_func_to_recursive_line_29_to_40_0_#in~s.base_BEFORE_CALL_7|) |v_func_to_recursive_line_29_to_40_0_#in~s.offset_BEFORE_CALL_7|) (let ((.cse0 (select (select |c_#memory_int#2| |v_func_to_recursive_line_29_to_40_0_#in~a.base_BEFORE_CALL_12|) |v_func_to_recursive_line_29_to_40_0_#in~a.offset_BEFORE_CALL_12|))) (+ (* .cse0 .cse0) 1 (* .cse0 2))))) is different from true [2024-10-15 15:26:59,984 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:27:00,026 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:27:00,044 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:27:00,845 INFO L134 CoverageAnalysis]: Checked inductivity of 109 backedges. 21 proven. 57 refuted. 0 times theorem prover too weak. 11 trivial. 20 not checked. [2024-10-15 15:27:00,845 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:27:04,925 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 110 treesize of output 94 [2024-10-15 15:27:04,936 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 94 treesize of output 78 [2024-10-15 15:27:04,947 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 78 treesize of output 50 [2024-10-15 15:27:05,911 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:27:05,911 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [43690129] [2024-10-15 15:27:05,911 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-10-15 15:27:05,911 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [636966074] [2024-10-15 15:27:05,911 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [636966074] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 15:27:05,911 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-10-15 15:27:05,911 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [25] total 25 [2024-10-15 15:27:05,911 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [629343532] [2024-10-15 15:27:05,912 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-10-15 15:27:05,912 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-10-15 15:27:05,912 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:27:05,912 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-10-15 15:27:05,913 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=112, Invalid=947, Unknown=1, NotChecked=62, Total=1122 [2024-10-15 15:27:05,913 INFO L87 Difference]: Start difference. First operand 121 states and 128 transitions. Second operand has 25 states, 20 states have (on average 1.8) internal successors, (36), 22 states have internal predecessors, (36), 10 states have call successors, (12), 6 states have call predecessors, (12), 7 states have return successors, (10), 7 states have call predecessors, (10), 9 states have call successors, (10) [2024-10-15 15:27:11,903 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:27:11,903 INFO L93 Difference]: Finished difference Result 147 states and 153 transitions. [2024-10-15 15:27:11,903 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 29 states. [2024-10-15 15:27:11,904 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 20 states have (on average 1.8) internal successors, (36), 22 states have internal predecessors, (36), 10 states have call successors, (12), 6 states have call predecessors, (12), 7 states have return successors, (10), 7 states have call predecessors, (10), 9 states have call successors, (10) Word has length 64 [2024-10-15 15:27:11,904 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:27:11,906 INFO L225 Difference]: With dead ends: 147 [2024-10-15 15:27:11,906 INFO L226 Difference]: Without dead ends: 143 [2024-10-15 15:27:11,907 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 107 GetRequests, 48 SyntacticMatches, 5 SemanticMatches, 54 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 616 ImplicationChecksByTransitivity, 11.8s TimeCoverageRelationStatistics Valid=335, Invalid=2634, Unknown=5, NotChecked=106, Total=3080 [2024-10-15 15:27:11,911 INFO L432 NwaCegarLoop]: 14 mSDtfsCounter, 42 mSDsluCounter, 55 mSDsCounter, 0 mSdLazyCounter, 594 mSolverCounterSat, 26 mSolverCounterUnsat, 6 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 45 SdHoareTripleChecker+Valid, 69 SdHoareTripleChecker+Invalid, 682 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 26 IncrementalHoareTripleChecker+Valid, 594 IncrementalHoareTripleChecker+Invalid, 6 IncrementalHoareTripleChecker+Unknown, 56 IncrementalHoareTripleChecker+Unchecked, 2.2s IncrementalHoareTripleChecker+Time [2024-10-15 15:27:11,912 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [45 Valid, 69 Invalid, 682 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [26 Valid, 594 Invalid, 6 Unknown, 56 Unchecked, 2.2s Time] [2024-10-15 15:27:11,912 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 143 states. [2024-10-15 15:27:11,988 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 143 to 141. [2024-10-15 15:27:11,989 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 141 states, 91 states have (on average 1.043956043956044) internal successors, (95), 93 states have internal predecessors, (95), 24 states have call successors, (24), 23 states have call predecessors, (24), 25 states have return successors, (29), 24 states have call predecessors, (29), 21 states have call successors, (29) [2024-10-15 15:27:11,989 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 141 states to 141 states and 148 transitions. [2024-10-15 15:27:11,989 INFO L78 Accepts]: Start accepts. Automaton has 141 states and 148 transitions. Word has length 64 [2024-10-15 15:27:11,990 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:27:11,990 INFO L471 AbstractCegarLoop]: Abstraction has 141 states and 148 transitions. [2024-10-15 15:27:11,990 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 20 states have (on average 1.8) internal successors, (36), 22 states have internal predecessors, (36), 10 states have call successors, (12), 6 states have call predecessors, (12), 7 states have return successors, (10), 7 states have call predecessors, (10), 9 states have call successors, (10) [2024-10-15 15:27:11,990 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:27:11,990 INFO L276 IsEmpty]: Start isEmpty. Operand 141 states and 148 transitions. [2024-10-15 15:27:11,993 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 71 [2024-10-15 15:27:11,993 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:27:11,993 INFO L215 NwaCegarLoop]: trace histogram [9, 8, 8, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:27:12,006 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Ended with exit code 0 [2024-10-15 15:27:12,197 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,9 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:27:12,198 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:27:12,198 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:27:12,199 INFO L85 PathProgramCache]: Analyzing trace with hash 1393874761, now seen corresponding path program 1 times [2024-10-15 15:27:12,199 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:27:12,200 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1266551926] [2024-10-15 15:27:12,200 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:27:12,200 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:27:12,225 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:27:12,226 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1081454026] [2024-10-15 15:27:12,226 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:27:12,226 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:27:12,226 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:27:12,227 INFO L229 MonitoredProcess]: Starting monitored process 10 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:27:12,228 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2024-10-15 15:27:12,320 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 15:27:12,322 INFO L255 TraceCheckSpWp]: Trace formula consists of 335 conjuncts, 105 conjuncts are in the unsatisfiable core [2024-10-15 15:27:12,326 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:27:12,345 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-10-15 15:27:12,353 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:27:12,963 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 8 treesize of output 1 [2024-10-15 15:27:15,606 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 36 treesize of output 13 [2024-10-15 15:27:15,629 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:27:15,974 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:27:15,974 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 38 treesize of output 38 [2024-10-15 15:27:28,619 INFO L134 CoverageAnalysis]: Checked inductivity of 139 backedges. 79 proven. 44 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-10-15 15:27:28,619 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:27:37,030 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 43 treesize of output 39 [2024-10-15 15:27:41,429 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:27:41,429 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1266551926] [2024-10-15 15:27:41,429 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-10-15 15:27:41,429 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1081454026] [2024-10-15 15:27:41,430 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1081454026] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 15:27:41,430 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-10-15 15:27:41,430 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [28] total 28 [2024-10-15 15:27:41,430 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [424700666] [2024-10-15 15:27:41,430 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-10-15 15:27:41,430 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2024-10-15 15:27:41,430 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:27:41,431 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2024-10-15 15:27:41,431 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=122, Invalid=1065, Unknown=3, NotChecked=0, Total=1190 [2024-10-15 15:27:41,431 INFO L87 Difference]: Start difference. First operand 141 states and 148 transitions. Second operand has 28 states, 22 states have (on average 1.8181818181818181) internal successors, (40), 23 states have internal predecessors, (40), 10 states have call successors, (13), 7 states have call predecessors, (13), 8 states have return successors, (11), 7 states have call predecessors, (11), 9 states have call successors, (11) [2024-10-15 15:27:53,066 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-10-15 15:27:58,013 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-10-15 15:28:08,488 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 3.45s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-10-15 15:28:11,225 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.31s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-10-15 15:28:40,740 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:28:40,740 INFO L93 Difference]: Finished difference Result 143 states and 149 transitions. [2024-10-15 15:28:40,741 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 30 states. [2024-10-15 15:28:40,741 INFO L78 Accepts]: Start accepts. Automaton has has 28 states, 22 states have (on average 1.8181818181818181) internal successors, (40), 23 states have internal predecessors, (40), 10 states have call successors, (13), 7 states have call predecessors, (13), 8 states have return successors, (11), 7 states have call predecessors, (11), 9 states have call successors, (11) Word has length 70 [2024-10-15 15:28:40,741 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:28:40,742 INFO L225 Difference]: With dead ends: 143 [2024-10-15 15:28:40,743 INFO L226 Difference]: Without dead ends: 121 [2024-10-15 15:28:40,744 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 113 GetRequests, 50 SyntacticMatches, 5 SemanticMatches, 58 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 822 ImplicationChecksByTransitivity, 63.8s TimeCoverageRelationStatistics Valid=398, Invalid=3127, Unknown=15, NotChecked=0, Total=3540 [2024-10-15 15:28:40,745 INFO L432 NwaCegarLoop]: 15 mSDtfsCounter, 45 mSDsluCounter, 95 mSDsCounter, 0 mSdLazyCounter, 676 mSolverCounterSat, 44 mSolverCounterUnsat, 28 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 18.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 47 SdHoareTripleChecker+Valid, 110 SdHoareTripleChecker+Invalid, 748 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 44 IncrementalHoareTripleChecker+Valid, 676 IncrementalHoareTripleChecker+Invalid, 28 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 18.4s IncrementalHoareTripleChecker+Time [2024-10-15 15:28:40,745 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [47 Valid, 110 Invalid, 748 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [44 Valid, 676 Invalid, 28 Unknown, 0 Unchecked, 18.4s Time] [2024-10-15 15:28:40,745 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 121 states. [2024-10-15 15:28:40,803 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 121 to 121. [2024-10-15 15:28:40,803 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 121 states, 78 states have (on average 1.0384615384615385) internal successors, (81), 80 states have internal predecessors, (81), 21 states have call successors, (21), 20 states have call predecessors, (21), 21 states have return successors, (25), 20 states have call predecessors, (25), 19 states have call successors, (25) [2024-10-15 15:28:40,804 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 121 states to 121 states and 127 transitions. [2024-10-15 15:28:40,804 INFO L78 Accepts]: Start accepts. Automaton has 121 states and 127 transitions. Word has length 70 [2024-10-15 15:28:40,805 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:28:40,805 INFO L471 AbstractCegarLoop]: Abstraction has 121 states and 127 transitions. [2024-10-15 15:28:40,805 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 28 states, 22 states have (on average 1.8181818181818181) internal successors, (40), 23 states have internal predecessors, (40), 10 states have call successors, (13), 7 states have call predecessors, (13), 8 states have return successors, (11), 7 states have call predecessors, (11), 9 states have call successors, (11) [2024-10-15 15:28:40,805 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:28:40,805 INFO L276 IsEmpty]: Start isEmpty. Operand 121 states and 127 transitions. [2024-10-15 15:28:40,806 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 89 [2024-10-15 15:28:40,806 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:28:40,806 INFO L215 NwaCegarLoop]: trace histogram [11, 10, 10, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:28:40,819 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Ended with exit code 0 [2024-10-15 15:28:41,010 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 10 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-10-15 15:28:41,011 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:28:41,011 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:28:41,011 INFO L85 PathProgramCache]: Analyzing trace with hash 1385368131, now seen corresponding path program 2 times [2024-10-15 15:28:41,011 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:28:41,011 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [143320680] [2024-10-15 15:28:41,011 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:28:41,011 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:28:41,032 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:28:41,033 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1881680901] [2024-10-15 15:28:41,033 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-10-15 15:28:41,033 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:28:41,033 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:28:41,035 INFO L229 MonitoredProcess]: Starting monitored process 11 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:28:41,039 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Waiting until timeout for monitored process [2024-10-15 15:28:41,175 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-10-15 15:28:41,175 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 15:28:41,179 INFO L255 TraceCheckSpWp]: Trace formula consists of 420 conjuncts, 147 conjuncts are in the unsatisfiable core [2024-10-15 15:28:41,182 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:28:41,191 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:28:41,208 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:28:42,586 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2024-10-15 15:28:43,615 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 21 [2024-10-15 15:28:44,343 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:28:44,363 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:28:45,127 INFO L134 CoverageAnalysis]: Checked inductivity of 234 backedges. 31 proven. 148 refuted. 0 times theorem prover too weak. 55 trivial. 0 not checked. [2024-10-15 15:28:45,128 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:28:47,742 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 51 treesize of output 35 [2024-10-15 15:28:47,773 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2024-10-15 15:28:49,292 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:28:49,292 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 124 treesize of output 107 [2024-10-15 15:28:51,456 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:28:51,457 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [143320680] [2024-10-15 15:28:51,457 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-10-15 15:28:51,457 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1881680901] [2024-10-15 15:28:51,457 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1881680901] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 15:28:51,457 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-10-15 15:28:51,457 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [21] total 21 [2024-10-15 15:28:51,457 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1559418871] [2024-10-15 15:28:51,457 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-10-15 15:28:51,457 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2024-10-15 15:28:51,457 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:28:51,458 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2024-10-15 15:28:51,458 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=80, Invalid=570, Unknown=0, NotChecked=0, Total=650 [2024-10-15 15:28:51,458 INFO L87 Difference]: Start difference. First operand 121 states and 127 transitions. Second operand has 21 states, 16 states have (on average 2.1875) internal successors, (35), 18 states have internal predecessors, (35), 9 states have call successors, (13), 6 states have call predecessors, (13), 7 states have return successors, (11), 7 states have call predecessors, (11), 8 states have call successors, (11) [2024-10-15 15:28:55,542 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:28:55,542 INFO L93 Difference]: Finished difference Result 145 states and 152 transitions. [2024-10-15 15:28:55,542 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2024-10-15 15:28:55,542 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 16 states have (on average 2.1875) internal successors, (35), 18 states have internal predecessors, (35), 9 states have call successors, (13), 6 states have call predecessors, (13), 7 states have return successors, (11), 7 states have call predecessors, (11), 8 states have call successors, (11) Word has length 88 [2024-10-15 15:28:55,543 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:28:55,543 INFO L225 Difference]: With dead ends: 145 [2024-10-15 15:28:55,543 INFO L226 Difference]: Without dead ends: 141 [2024-10-15 15:28:55,544 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 119 GetRequests, 70 SyntacticMatches, 10 SemanticMatches, 39 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 351 ImplicationChecksByTransitivity, 6.5s TimeCoverageRelationStatistics Valid=220, Invalid=1420, Unknown=0, NotChecked=0, Total=1640 [2024-10-15 15:28:55,544 INFO L432 NwaCegarLoop]: 16 mSDtfsCounter, 41 mSDsluCounter, 94 mSDsCounter, 0 mSdLazyCounter, 534 mSolverCounterSat, 27 mSolverCounterUnsat, 3 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 44 SdHoareTripleChecker+Valid, 110 SdHoareTripleChecker+Invalid, 564 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 27 IncrementalHoareTripleChecker+Valid, 534 IncrementalHoareTripleChecker+Invalid, 3 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.1s IncrementalHoareTripleChecker+Time [2024-10-15 15:28:55,544 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [44 Valid, 110 Invalid, 564 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [27 Valid, 534 Invalid, 3 Unknown, 0 Unchecked, 2.1s Time] [2024-10-15 15:28:55,545 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 141 states. [2024-10-15 15:28:55,620 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 141 to 139. [2024-10-15 15:28:55,620 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 139 states, 90 states have (on average 1.0333333333333334) internal successors, (93), 91 states have internal predecessors, (93), 24 states have call successors, (24), 23 states have call predecessors, (24), 24 states have return successors, (30), 24 states have call predecessors, (30), 21 states have call successors, (30) [2024-10-15 15:28:55,622 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 139 states to 139 states and 147 transitions. [2024-10-15 15:28:55,625 INFO L78 Accepts]: Start accepts. Automaton has 139 states and 147 transitions. Word has length 88 [2024-10-15 15:28:55,626 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:28:55,626 INFO L471 AbstractCegarLoop]: Abstraction has 139 states and 147 transitions. [2024-10-15 15:28:55,626 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 16 states have (on average 2.1875) internal successors, (35), 18 states have internal predecessors, (35), 9 states have call successors, (13), 6 states have call predecessors, (13), 7 states have return successors, (11), 7 states have call predecessors, (11), 8 states have call successors, (11) [2024-10-15 15:28:55,626 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:28:55,626 INFO L276 IsEmpty]: Start isEmpty. Operand 139 states and 147 transitions. [2024-10-15 15:28:55,627 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 95 [2024-10-15 15:28:55,627 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:28:55,627 INFO L215 NwaCegarLoop]: trace histogram [12, 11, 11, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:28:55,641 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Ended with exit code 0 [2024-10-15 15:28:55,827 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 11 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable11 [2024-10-15 15:28:55,828 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:28:55,828 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:28:55,828 INFO L85 PathProgramCache]: Analyzing trace with hash 344499176, now seen corresponding path program 2 times [2024-10-15 15:28:55,828 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:28:55,828 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1041253442] [2024-10-15 15:28:55,828 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:28:55,829 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:28:55,870 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:28:55,871 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [348942077] [2024-10-15 15:28:55,871 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-10-15 15:28:55,871 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:28:55,872 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:28:55,873 INFO L229 MonitoredProcess]: Starting monitored process 12 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:28:55,875 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Waiting until timeout for monitored process [2024-10-15 15:28:56,023 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-10-15 15:28:56,023 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 15:28:56,029 INFO L255 TraceCheckSpWp]: Trace formula consists of 437 conjuncts, 155 conjuncts are in the unsatisfiable core [2024-10-15 15:28:56,033 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:28:56,044 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:28:56,062 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:28:57,233 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 38 treesize of output 30 [2024-10-15 15:28:58,279 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 21 [2024-10-15 15:28:58,943 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:28:58,956 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:28:59,988 INFO L134 CoverageAnalysis]: Checked inductivity of 276 backedges. 53 proven. 167 refuted. 0 times theorem prover too weak. 56 trivial. 0 not checked. [2024-10-15 15:28:59,988 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:29:07,593 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 87 treesize of output 79 [2024-10-15 15:29:07,602 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 112 treesize of output 92 [2024-10-15 15:29:07,632 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:29:07,634 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 127 treesize of output 115 [2024-10-15 15:29:09,899 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:29:09,900 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 206 treesize of output 173 [2024-10-15 15:29:10,366 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 27 treesize of output 23 [2024-10-15 15:29:11,434 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:29:11,435 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1041253442] [2024-10-15 15:29:11,435 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-10-15 15:29:11,435 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [348942077] [2024-10-15 15:29:11,435 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [348942077] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 15:29:11,435 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-10-15 15:29:11,435 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [25] total 25 [2024-10-15 15:29:11,436 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1057733451] [2024-10-15 15:29:11,436 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-10-15 15:29:11,436 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-10-15 15:29:11,436 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:29:11,436 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-10-15 15:29:11,437 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=128, Invalid=1061, Unknown=1, NotChecked=0, Total=1190 [2024-10-15 15:29:11,437 INFO L87 Difference]: Start difference. First operand 139 states and 147 transitions. Second operand has 25 states, 19 states have (on average 2.0526315789473686) internal successors, (39), 22 states have internal predecessors, (39), 10 states have call successors, (14), 6 states have call predecessors, (14), 8 states have return successors, (12), 7 states have call predecessors, (12), 9 states have call successors, (12) [2024-10-15 15:29:16,004 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:29:16,004 INFO L93 Difference]: Finished difference Result 141 states and 148 transitions. [2024-10-15 15:29:16,004 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 24 states. [2024-10-15 15:29:16,005 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 19 states have (on average 2.0526315789473686) internal successors, (39), 22 states have internal predecessors, (39), 10 states have call successors, (14), 6 states have call predecessors, (14), 8 states have return successors, (12), 7 states have call predecessors, (12), 9 states have call successors, (12) Word has length 94 [2024-10-15 15:29:16,005 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:29:16,006 INFO L225 Difference]: With dead ends: 141 [2024-10-15 15:29:16,006 INFO L226 Difference]: Without dead ends: 117 [2024-10-15 15:29:16,007 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 135 GetRequests, 74 SyntacticMatches, 11 SemanticMatches, 50 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 675 ImplicationChecksByTransitivity, 10.0s TimeCoverageRelationStatistics Valid=316, Invalid=2335, Unknown=1, NotChecked=0, Total=2652 [2024-10-15 15:29:16,007 INFO L432 NwaCegarLoop]: 16 mSDtfsCounter, 35 mSDsluCounter, 112 mSDsCounter, 0 mSdLazyCounter, 653 mSolverCounterSat, 30 mSolverCounterUnsat, 6 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 37 SdHoareTripleChecker+Valid, 128 SdHoareTripleChecker+Invalid, 689 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 30 IncrementalHoareTripleChecker+Valid, 653 IncrementalHoareTripleChecker+Invalid, 6 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.3s IncrementalHoareTripleChecker+Time [2024-10-15 15:29:16,007 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [37 Valid, 128 Invalid, 689 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [30 Valid, 653 Invalid, 6 Unknown, 0 Unchecked, 2.3s Time] [2024-10-15 15:29:16,008 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 117 states. [2024-10-15 15:29:16,062 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 117 to 117. [2024-10-15 15:29:16,063 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 117 states, 76 states have (on average 1.0263157894736843) internal successors, (78), 77 states have internal predecessors, (78), 21 states have call successors, (21), 20 states have call predecessors, (21), 19 states have return successors, (25), 19 states have call predecessors, (25), 19 states have call successors, (25) [2024-10-15 15:29:16,063 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 117 states to 117 states and 124 transitions. [2024-10-15 15:29:16,063 INFO L78 Accepts]: Start accepts. Automaton has 117 states and 124 transitions. Word has length 94 [2024-10-15 15:29:16,064 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:29:16,064 INFO L471 AbstractCegarLoop]: Abstraction has 117 states and 124 transitions. [2024-10-15 15:29:16,064 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 19 states have (on average 2.0526315789473686) internal successors, (39), 22 states have internal predecessors, (39), 10 states have call successors, (14), 6 states have call predecessors, (14), 8 states have return successors, (12), 7 states have call predecessors, (12), 9 states have call successors, (12) [2024-10-15 15:29:16,064 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:29:16,064 INFO L276 IsEmpty]: Start isEmpty. Operand 117 states and 124 transitions. [2024-10-15 15:29:16,065 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 113 [2024-10-15 15:29:16,065 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:29:16,065 INFO L215 NwaCegarLoop]: trace histogram [14, 13, 13, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:29:16,079 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Forceful destruction successful, exit code 0 [2024-10-15 15:29:16,269 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12,12 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:29:16,270 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:29:16,270 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:29:16,270 INFO L85 PathProgramCache]: Analyzing trace with hash -42363038, now seen corresponding path program 3 times [2024-10-15 15:29:16,270 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:29:16,270 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2087312051] [2024-10-15 15:29:16,270 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:29:16,270 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:29:16,295 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:29:16,296 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1087719429] [2024-10-15 15:29:16,296 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-10-15 15:29:16,296 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:29:16,296 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:29:16,298 INFO L229 MonitoredProcess]: Starting monitored process 13 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:29:16,310 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Waiting until timeout for monitored process [2024-10-15 15:29:16,511 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 4 check-sat command(s) [2024-10-15 15:29:16,511 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 15:29:16,516 INFO L255 TraceCheckSpWp]: Trace formula consists of 456 conjuncts, 177 conjuncts are in the unsatisfiable core [2024-10-15 15:29:16,520 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:29:16,548 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:29:16,563 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:29:18,436 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 9 [2024-10-15 15:29:20,017 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:29:20,708 INFO L134 CoverageAnalysis]: Checked inductivity of 407 backedges. 160 proven. 62 refuted. 0 times theorem prover too weak. 185 trivial. 0 not checked. [2024-10-15 15:29:20,708 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:29:24,363 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 51 treesize of output 35 [2024-10-15 15:29:27,014 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:29:27,014 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 128 treesize of output 111 [2024-10-15 15:29:27,500 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:29:27,500 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2087312051] [2024-10-15 15:29:27,500 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-10-15 15:29:27,500 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1087719429] [2024-10-15 15:29:27,500 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1087719429] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 15:29:27,500 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-10-15 15:29:27,500 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [22] total 22 [2024-10-15 15:29:27,500 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1318264923] [2024-10-15 15:29:27,500 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-10-15 15:29:27,500 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2024-10-15 15:29:27,501 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:29:27,501 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2024-10-15 15:29:27,501 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=78, Invalid=678, Unknown=0, NotChecked=0, Total=756 [2024-10-15 15:29:27,501 INFO L87 Difference]: Start difference. First operand 117 states and 124 transitions. Second operand has 22 states, 17 states have (on average 2.1176470588235294) internal successors, (36), 19 states have internal predecessors, (36), 9 states have call successors, (13), 6 states have call predecessors, (13), 8 states have return successors, (12), 7 states have call predecessors, (12), 8 states have call successors, (12) [2024-10-15 15:29:32,914 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:29:32,914 INFO L93 Difference]: Finished difference Result 141 states and 150 transitions. [2024-10-15 15:29:32,915 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 26 states. [2024-10-15 15:29:32,915 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 17 states have (on average 2.1176470588235294) internal successors, (36), 19 states have internal predecessors, (36), 9 states have call successors, (13), 6 states have call predecessors, (13), 8 states have return successors, (12), 7 states have call predecessors, (12), 8 states have call successors, (12) Word has length 112 [2024-10-15 15:29:32,915 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:29:32,916 INFO L225 Difference]: With dead ends: 141 [2024-10-15 15:29:32,917 INFO L226 Difference]: Without dead ends: 137 [2024-10-15 15:29:32,918 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 147 GetRequests, 98 SyntacticMatches, 4 SemanticMatches, 45 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 378 ImplicationChecksByTransitivity, 5.1s TimeCoverageRelationStatistics Valid=264, Invalid=1898, Unknown=0, NotChecked=0, Total=2162 [2024-10-15 15:29:32,918 INFO L432 NwaCegarLoop]: 18 mSDtfsCounter, 40 mSDsluCounter, 122 mSDsCounter, 0 mSdLazyCounter, 800 mSolverCounterSat, 35 mSolverCounterUnsat, 6 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 42 SdHoareTripleChecker+Valid, 140 SdHoareTripleChecker+Invalid, 841 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 35 IncrementalHoareTripleChecker+Valid, 800 IncrementalHoareTripleChecker+Invalid, 6 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.9s IncrementalHoareTripleChecker+Time [2024-10-15 15:29:32,918 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [42 Valid, 140 Invalid, 841 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [35 Valid, 800 Invalid, 6 Unknown, 0 Unchecked, 2.9s Time] [2024-10-15 15:29:32,918 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 137 states. [2024-10-15 15:29:32,988 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 137 to 135. [2024-10-15 15:29:32,988 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 135 states, 88 states have (on average 1.0227272727272727) internal successors, (90), 88 states have internal predecessors, (90), 24 states have call successors, (24), 23 states have call predecessors, (24), 22 states have return successors, (31), 23 states have call predecessors, (31), 21 states have call successors, (31) [2024-10-15 15:29:32,990 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 135 states to 135 states and 145 transitions. [2024-10-15 15:29:32,990 INFO L78 Accepts]: Start accepts. Automaton has 135 states and 145 transitions. Word has length 112 [2024-10-15 15:29:32,990 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:29:32,991 INFO L471 AbstractCegarLoop]: Abstraction has 135 states and 145 transitions. [2024-10-15 15:29:32,991 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 17 states have (on average 2.1176470588235294) internal successors, (36), 19 states have internal predecessors, (36), 9 states have call successors, (13), 6 states have call predecessors, (13), 8 states have return successors, (12), 7 states have call predecessors, (12), 8 states have call successors, (12) [2024-10-15 15:29:32,991 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:29:32,991 INFO L276 IsEmpty]: Start isEmpty. Operand 135 states and 145 transitions. [2024-10-15 15:29:32,992 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 137 [2024-10-15 15:29:32,992 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:29:32,992 INFO L215 NwaCegarLoop]: trace histogram [17, 16, 16, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 4, 4, 4, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:29:33,000 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Forceful destruction successful, exit code 0 [2024-10-15 15:29:33,196 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 13 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable13 [2024-10-15 15:29:33,197 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:29:33,197 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:29:33,197 INFO L85 PathProgramCache]: Analyzing trace with hash -1115426367, now seen corresponding path program 4 times [2024-10-15 15:29:33,197 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:29:33,198 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [126335959] [2024-10-15 15:29:33,198 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:29:33,198 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:29:33,241 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:29:33,242 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [696501056] [2024-10-15 15:29:33,242 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2024-10-15 15:29:33,242 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:29:33,243 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:29:33,244 INFO L229 MonitoredProcess]: Starting monitored process 14 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:29:33,245 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Waiting until timeout for monitored process [2024-10-15 15:29:33,569 INFO L227 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2024-10-15 15:29:33,569 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 15:29:33,573 INFO L255 TraceCheckSpWp]: Trace formula consists of 545 conjuncts, 142 conjuncts are in the unsatisfiable core [2024-10-15 15:29:33,576 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:29:35,333 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 21 [2024-10-15 15:29:35,343 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 21 [2024-10-15 15:29:35,377 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2024-10-15 15:29:36,827 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 15 [2024-10-15 15:29:37,490 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:29:37,492 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 60 treesize of output 60 [2024-10-15 15:29:37,633 INFO L349 Elim1Store]: treesize reduction 12, result has 67.6 percent of original size [2024-10-15 15:29:37,634 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 0 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 96 treesize of output 68 [2024-10-15 15:29:38,015 INFO L134 CoverageAnalysis]: Checked inductivity of 628 backedges. 291 proven. 108 refuted. 0 times theorem prover too weak. 229 trivial. 0 not checked. [2024-10-15 15:29:38,016 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:29:48,822 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:29:48,822 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 218 treesize of output 169 [2024-10-15 15:29:48,866 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:29:48,866 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 115 treesize of output 106 [2024-10-15 15:29:48,881 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 98 treesize of output 90 [2024-10-15 15:29:50,864 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:29:50,868 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 218 treesize of output 169 [2024-10-15 15:29:50,904 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:29:50,904 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 115 treesize of output 106 [2024-10-15 15:29:50,921 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 98 treesize of output 90 [2024-10-15 15:29:52,124 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:29:52,125 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 226 treesize of output 177 [2024-10-15 15:29:52,156 INFO L349 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2024-10-15 15:29:52,156 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 115 treesize of output 106 [2024-10-15 15:29:52,185 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 98 treesize of output 90 [2024-10-15 15:29:52,995 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 15:29:52,996 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [126335959] [2024-10-15 15:29:52,996 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-10-15 15:29:52,996 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [696501056] [2024-10-15 15:29:52,996 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [696501056] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 15:29:52,996 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-10-15 15:29:52,996 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [25] total 25 [2024-10-15 15:29:52,997 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2045984765] [2024-10-15 15:29:52,997 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-10-15 15:29:52,998 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-10-15 15:29:52,998 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 15:29:52,998 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-10-15 15:29:52,998 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=113, Invalid=942, Unknown=1, NotChecked=0, Total=1056 [2024-10-15 15:29:52,999 INFO L87 Difference]: Start difference. First operand 135 states and 145 transitions. Second operand has 25 states, 20 states have (on average 2.4) internal successors, (48), 21 states have internal predecessors, (48), 11 states have call successors, (20), 5 states have call predecessors, (20), 8 states have return successors, (19), 10 states have call predecessors, (19), 10 states have call successors, (19) [2024-10-15 15:29:58,866 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 15:29:58,866 INFO L93 Difference]: Finished difference Result 141 states and 150 transitions. [2024-10-15 15:29:58,867 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 25 states. [2024-10-15 15:29:58,867 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 20 states have (on average 2.4) internal successors, (48), 21 states have internal predecessors, (48), 11 states have call successors, (20), 5 states have call predecessors, (20), 8 states have return successors, (19), 10 states have call predecessors, (19), 10 states have call successors, (19) Word has length 136 [2024-10-15 15:29:58,867 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 15:29:58,868 INFO L225 Difference]: With dead ends: 141 [2024-10-15 15:29:58,868 INFO L226 Difference]: Without dead ends: 137 [2024-10-15 15:29:58,869 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 182 GetRequests, 123 SyntacticMatches, 7 SemanticMatches, 52 ConstructedPredicates, 0 IntricatePredicates, 1 DeprecatedPredicates, 766 ImplicationChecksByTransitivity, 10.9s TimeCoverageRelationStatistics Valid=416, Invalid=2445, Unknown=1, NotChecked=0, Total=2862 [2024-10-15 15:29:58,869 INFO L432 NwaCegarLoop]: 14 mSDtfsCounter, 48 mSDsluCounter, 70 mSDsCounter, 0 mSdLazyCounter, 500 mSolverCounterSat, 57 mSolverCounterUnsat, 24 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 48 SdHoareTripleChecker+Valid, 84 SdHoareTripleChecker+Invalid, 581 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 57 IncrementalHoareTripleChecker+Valid, 500 IncrementalHoareTripleChecker+Invalid, 24 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.4s IncrementalHoareTripleChecker+Time [2024-10-15 15:29:58,870 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [48 Valid, 84 Invalid, 581 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [57 Valid, 500 Invalid, 24 Unknown, 0 Unchecked, 2.4s Time] [2024-10-15 15:29:58,870 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 137 states. [2024-10-15 15:29:58,958 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 137 to 119. [2024-10-15 15:29:58,958 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 119 states, 78 states have (on average 1.0128205128205128) internal successors, (79), 78 states have internal predecessors, (79), 21 states have call successors, (21), 21 states have call predecessors, (21), 19 states have return successors, (25), 19 states have call predecessors, (25), 19 states have call successors, (25) [2024-10-15 15:29:58,958 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 119 states to 119 states and 125 transitions. [2024-10-15 15:29:58,959 INFO L78 Accepts]: Start accepts. Automaton has 119 states and 125 transitions. Word has length 136 [2024-10-15 15:29:58,959 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 15:29:58,961 INFO L471 AbstractCegarLoop]: Abstraction has 119 states and 125 transitions. [2024-10-15 15:29:58,961 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 20 states have (on average 2.4) internal successors, (48), 21 states have internal predecessors, (48), 11 states have call successors, (20), 5 states have call predecessors, (20), 8 states have return successors, (19), 10 states have call predecessors, (19), 10 states have call successors, (19) [2024-10-15 15:29:58,961 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:29:58,961 INFO L276 IsEmpty]: Start isEmpty. Operand 119 states and 125 transitions. [2024-10-15 15:29:58,962 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 119 [2024-10-15 15:29:58,962 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 15:29:58,962 INFO L215 NwaCegarLoop]: trace histogram [15, 14, 14, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 15:29:58,970 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Forceful destruction successful, exit code 0 [2024-10-15 15:29:59,162 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 14 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable14 [2024-10-15 15:29:59,163 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 15:29:59,163 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 15:29:59,163 INFO L85 PathProgramCache]: Analyzing trace with hash -1317888569, now seen corresponding path program 3 times [2024-10-15 15:29:59,163 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 15:29:59,163 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [5882794] [2024-10-15 15:29:59,163 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 15:29:59,164 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 15:29:59,188 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-10-15 15:29:59,189 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [508873132] [2024-10-15 15:29:59,189 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-10-15 15:29:59,189 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 15:29:59,189 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 15:29:59,191 INFO L229 MonitoredProcess]: Starting monitored process 15 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 15:29:59,194 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Waiting until timeout for monitored process [2024-10-15 15:29:59,418 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 4 check-sat command(s) [2024-10-15 15:29:59,418 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 15:29:59,426 INFO L255 TraceCheckSpWp]: Trace formula consists of 454 conjuncts, 119 conjuncts are in the unsatisfiable core [2024-10-15 15:29:59,429 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 15:29:59,452 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:29:59,467 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2024-10-15 15:30:01,107 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:30:01,119 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 11 [2024-10-15 15:30:02,022 INFO L134 CoverageAnalysis]: Checked inductivity of 461 backedges. 140 proven. 55 refuted. 0 times theorem prover too weak. 266 trivial. 0 not checked. [2024-10-15 15:30:02,022 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 15:30:05,852 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 29 treesize of output 25 [2024-10-15 15:30:05,866 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 25 treesize of output 13