./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/loops-crafted-1/vnew1.c --full-output --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --witnessprinter.yaml.format.version 2.1 --witnessprinter.generate.graphml.witnesses false --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version e378df2c Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/certificate-witnesses-artifact/automizer/data/config -Xmx15G -Xms4m -jar /storage/repos/certificate-witnesses-artifact/automizer/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/certificate-witnesses-artifact/automizer/data -tc /storage/repos/certificate-witnesses-artifact/automizer/config/AutomizerReach.xml -i ../sv-benchmarks/c/loops-crafted-1/vnew1.c -s /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/certificate-witnesses-artifact/automizer --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 92c9725cc4c9709a9ab81826fb3481ef81541ab6f68244b6727f50e97bc0f0c0 --procedureinliner.inline.calls.to.implemented.procedures NEVER --traceabstraction.positions.where.we.compute.the.hoare.annotation All --witnessprinter.yaml.format.version 2.1 --witnessprinter.generate.graphml.witnesses false --- Real Ultimate output --- This is Ultimate 0.2.5-wip.dk.contract-modifies-e378df2-m [2024-10-15 14:29:32,805 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-10-15 14:29:32,856 INFO L114 SettingsManager]: Loading settings from /storage/repos/certificate-witnesses-artifact/automizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-10-15 14:29:32,860 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-10-15 14:29:32,861 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-10-15 14:29:32,879 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-10-15 14:29:32,880 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-10-15 14:29:32,882 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-10-15 14:29:32,882 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-10-15 14:29:32,883 INFO L153 SettingsManager]: * Use memory slicer=true [2024-10-15 14:29:32,883 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-10-15 14:29:32,883 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-10-15 14:29:32,884 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-10-15 14:29:32,885 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-10-15 14:29:32,886 INFO L153 SettingsManager]: * Use SBE=true [2024-10-15 14:29:32,886 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-10-15 14:29:32,886 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-10-15 14:29:32,887 INFO L153 SettingsManager]: * sizeof long=4 [2024-10-15 14:29:32,887 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-10-15 14:29:32,887 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-10-15 14:29:32,887 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-10-15 14:29:32,890 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-10-15 14:29:32,890 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-10-15 14:29:32,890 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-10-15 14:29:32,891 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-10-15 14:29:32,891 INFO L153 SettingsManager]: * sizeof long double=12 [2024-10-15 14:29:32,891 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-10-15 14:29:32,891 INFO L153 SettingsManager]: * Use constant arrays=true [2024-10-15 14:29:32,891 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-10-15 14:29:32,892 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-10-15 14:29:32,892 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-10-15 14:29:32,892 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-10-15 14:29:32,892 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-10-15 14:29:32,892 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-10-15 14:29:32,892 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-10-15 14:29:32,893 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-10-15 14:29:32,893 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-10-15 14:29:32,893 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-10-15 14:29:32,893 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-10-15 14:29:32,893 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-10-15 14:29:32,894 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-10-15 14:29:32,894 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-10-15 14:29:32,894 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/certificate-witnesses-artifact/automizer/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/certificate-witnesses-artifact/automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 92c9725cc4c9709a9ab81826fb3481ef81541ab6f68244b6727f50e97bc0f0c0 Applying setting for plugin de.uni_freiburg.informatik.ultimate.boogie.procedureinliner: Inline calls to implemented procedures -> NEVER Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Positions where we compute the Hoare Annotation -> All Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: YAML Format version -> 2.1 Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Generate GraphML witnesses -> false [2024-10-15 14:29:33,072 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-10-15 14:29:33,091 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-10-15 14:29:33,093 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-10-15 14:29:33,093 INFO L270 PluginConnector]: Initializing CDTParser... [2024-10-15 14:29:33,094 INFO L274 PluginConnector]: CDTParser initialized [2024-10-15 14:29:33,094 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/certificate-witnesses-artifact/automizer/../sv-benchmarks/c/loops-crafted-1/vnew1.c [2024-10-15 14:29:34,271 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-10-15 14:29:34,416 INFO L384 CDTParser]: Found 1 translation units. [2024-10-15 14:29:34,416 INFO L180 CDTParser]: Scanning /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/loops-crafted-1/vnew1.c [2024-10-15 14:29:34,422 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/certificate-witnesses-artifact/automizer/data/046415d02/bc04ded07d7646328dfbba1a3ff81d2c/FLAG2a9877089 [2024-10-15 14:29:34,438 INFO L435 CDTParser]: Successfully deleted /storage/repos/certificate-witnesses-artifact/automizer/data/046415d02/bc04ded07d7646328dfbba1a3ff81d2c [2024-10-15 14:29:34,440 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-10-15 14:29:34,441 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-10-15 14:29:34,444 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-10-15 14:29:34,444 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-10-15 14:29:34,448 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-10-15 14:29:34,449 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,449 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@54107c1f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34, skipping insertion in model container [2024-10-15 14:29:34,449 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,466 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-10-15 14:29:34,600 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/loops-crafted-1/vnew1.c[403,416] [2024-10-15 14:29:34,613 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-10-15 14:29:34,622 INFO L200 MainTranslator]: Completed pre-run [2024-10-15 14:29:34,632 WARN L248 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/certificate-witnesses-artifact/sv-benchmarks/c/loops-crafted-1/vnew1.c[403,416] [2024-10-15 14:29:34,635 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-10-15 14:29:34,647 INFO L204 MainTranslator]: Completed translation [2024-10-15 14:29:34,647 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34 WrapperNode [2024-10-15 14:29:34,647 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-10-15 14:29:34,648 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-10-15 14:29:34,648 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-10-15 14:29:34,649 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-10-15 14:29:34,655 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,661 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,666 INFO L138 Inliner]: procedures = 14, calls = 16, calls flagged for inlining = 0, calls inlined = 0, statements flattened = 0 [2024-10-15 14:29:34,666 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-10-15 14:29:34,667 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-10-15 14:29:34,667 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-10-15 14:29:34,667 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-10-15 14:29:34,674 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,675 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,679 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,692 INFO L175 MemorySlicer]: Split 10 memory accesses to 2 slices as follows [2, 8]. 80 percent of accesses are in the largest equivalence class. The 10 initializations are split as follows [2, 8]. The 0 writes are split as follows [0, 0]. [2024-10-15 14:29:34,692 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,692 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,698 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,700 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,700 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,701 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,703 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-10-15 14:29:34,705 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-10-15 14:29:34,705 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-10-15 14:29:34,705 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-10-15 14:29:34,706 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (1/1) ... [2024-10-15 14:29:34,710 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-10-15 14:29:34,727 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:29:34,739 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-10-15 14:29:34,740 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-10-15 14:29:34,770 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-10-15 14:29:34,771 INFO L130 BoogieDeclarations]: Found specification of procedure main [2024-10-15 14:29:34,771 INFO L138 BoogieDeclarations]: Found implementation of procedure main [2024-10-15 14:29:34,771 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-10-15 14:29:34,771 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-10-15 14:29:34,771 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.init [2024-10-15 14:29:34,771 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.init [2024-10-15 14:29:34,771 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-10-15 14:29:34,771 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-10-15 14:29:34,771 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_assert [2024-10-15 14:29:34,771 INFO L138 BoogieDeclarations]: Found implementation of procedure __VERIFIER_assert [2024-10-15 14:29:34,816 INFO L238 CfgBuilder]: Building ICFG [2024-10-15 14:29:34,817 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-10-15 14:29:34,955 INFO L? ?]: Removed 7 outVars from TransFormulas that were not future-live. [2024-10-15 14:29:34,957 INFO L287 CfgBuilder]: Performing block encoding [2024-10-15 14:29:34,979 INFO L309 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-10-15 14:29:34,979 INFO L314 CfgBuilder]: Removed 2 assume(true) statements. [2024-10-15 14:29:34,979 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.10 02:29:34 BoogieIcfgContainer [2024-10-15 14:29:34,979 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-10-15 14:29:34,996 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-10-15 14:29:34,997 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-10-15 14:29:35,001 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-10-15 14:29:35,002 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 15.10 02:29:34" (1/3) ... [2024-10-15 14:29:35,002 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7eab4cdd and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 15.10 02:29:35, skipping insertion in model container [2024-10-15 14:29:35,002 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 15.10 02:29:34" (2/3) ... [2024-10-15 14:29:35,003 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7eab4cdd and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 15.10 02:29:35, skipping insertion in model container [2024-10-15 14:29:35,003 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 15.10 02:29:34" (3/3) ... [2024-10-15 14:29:35,004 INFO L112 eAbstractionObserver]: Analyzing ICFG vnew1.c [2024-10-15 14:29:35,017 INFO L209 ceAbstractionStarter]: Automizer settings: Hoare:All NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-10-15 14:29:35,017 INFO L149 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-10-15 14:29:35,079 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-10-15 14:29:35,085 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@47a330e1, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-10-15 14:29:35,085 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-10-15 14:29:35,090 INFO L276 IsEmpty]: Start isEmpty. Operand has 22 states, 14 states have (on average 1.5) internal successors, (21), 15 states have internal predecessors, (21), 3 states have call successors, (3), 3 states have call predecessors, (3), 3 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-10-15 14:29:35,096 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 14 [2024-10-15 14:29:35,097 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:29:35,097 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:29:35,097 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:29:35,101 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:29:35,102 INFO L85 PathProgramCache]: Analyzing trace with hash 1892212544, now seen corresponding path program 1 times [2024-10-15 14:29:35,108 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:29:35,109 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [618572844] [2024-10-15 14:29:35,109 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:29:35,109 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:29:35,199 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:35,573 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:29:35,580 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:35,615 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:35,615 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:29:35,615 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [618572844] [2024-10-15 14:29:35,616 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [618572844] provided 1 perfect and 0 imperfect interpolant sequences [2024-10-15 14:29:35,616 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-10-15 14:29:35,616 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2024-10-15 14:29:35,617 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2025247335] [2024-10-15 14:29:35,622 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-10-15 14:29:35,625 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2024-10-15 14:29:35,625 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:29:35,643 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2024-10-15 14:29:35,644 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=19, Invalid=71, Unknown=0, NotChecked=0, Total=90 [2024-10-15 14:29:35,646 INFO L87 Difference]: Start difference. First operand has 22 states, 14 states have (on average 1.5) internal successors, (21), 15 states have internal predecessors, (21), 3 states have call successors, (3), 3 states have call predecessors, (3), 3 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) Second operand has 10 states, 7 states have (on average 1.2857142857142858) internal successors, (9), 7 states have internal predecessors, (9), 3 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-10-15 14:29:35,884 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 14:29:35,888 INFO L93 Difference]: Finished difference Result 46 states and 60 transitions. [2024-10-15 14:29:35,891 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2024-10-15 14:29:35,892 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 7 states have (on average 1.2857142857142858) internal successors, (9), 7 states have internal predecessors, (9), 3 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 13 [2024-10-15 14:29:35,892 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 14:29:35,897 INFO L225 Difference]: With dead ends: 46 [2024-10-15 14:29:35,897 INFO L226 Difference]: Without dead ends: 26 [2024-10-15 14:29:35,900 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 14 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=67, Invalid=173, Unknown=0, NotChecked=0, Total=240 [2024-10-15 14:29:35,903 INFO L432 NwaCegarLoop]: 4 mSDtfsCounter, 57 mSDsluCounter, 23 mSDsCounter, 0 mSdLazyCounter, 122 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 58 SdHoareTripleChecker+Valid, 27 SdHoareTripleChecker+Invalid, 133 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 122 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-10-15 14:29:35,905 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [58 Valid, 27 Invalid, 133 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 122 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-10-15 14:29:35,932 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 26 states. [2024-10-15 14:29:35,947 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 26 to 25. [2024-10-15 14:29:35,950 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 25 states, 17 states have (on average 1.1764705882352942) internal successors, (20), 18 states have internal predecessors, (20), 4 states have call successors, (4), 4 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-10-15 14:29:35,951 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 25 states to 25 states and 27 transitions. [2024-10-15 14:29:35,952 INFO L78 Accepts]: Start accepts. Automaton has 25 states and 27 transitions. Word has length 13 [2024-10-15 14:29:35,953 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 14:29:35,954 INFO L471 AbstractCegarLoop]: Abstraction has 25 states and 27 transitions. [2024-10-15 14:29:35,954 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 7 states have (on average 1.2857142857142858) internal successors, (9), 7 states have internal predecessors, (9), 3 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-10-15 14:29:35,954 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:29:35,955 INFO L276 IsEmpty]: Start isEmpty. Operand 25 states and 27 transitions. [2024-10-15 14:29:35,955 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 15 [2024-10-15 14:29:35,956 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:29:35,956 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:29:35,956 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-10-15 14:29:35,956 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:29:35,956 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:29:35,957 INFO L85 PathProgramCache]: Analyzing trace with hash 706153222, now seen corresponding path program 1 times [2024-10-15 14:29:35,958 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:29:35,958 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1494392455] [2024-10-15 14:29:35,958 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:29:35,958 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:29:36,000 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:36,332 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:29:36,333 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:36,338 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:36,339 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:29:36,340 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1494392455] [2024-10-15 14:29:36,340 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1494392455] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 14:29:36,340 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1606614860] [2024-10-15 14:29:36,340 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:29:36,340 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:29:36,341 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:29:36,342 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 14:29:36,347 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-10-15 14:29:36,385 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:36,389 INFO L255 TraceCheckSpWp]: Trace formula consists of 72 conjuncts, 15 conjuncts are in the unsatisfiable core [2024-10-15 14:29:36,392 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 14:29:36,596 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:36,596 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 14:29:36,824 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:36,824 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1606614860] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 14:29:36,824 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 14:29:36,824 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 9, 8] total 21 [2024-10-15 14:29:36,825 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1696053129] [2024-10-15 14:29:36,825 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 14:29:36,826 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2024-10-15 14:29:36,826 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:29:36,827 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2024-10-15 14:29:36,827 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=73, Invalid=347, Unknown=0, NotChecked=0, Total=420 [2024-10-15 14:29:36,827 INFO L87 Difference]: Start difference. First operand 25 states and 27 transitions. Second operand has 21 states, 18 states have (on average 1.3888888888888888) internal successors, (25), 18 states have internal predecessors, (25), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-10-15 14:29:37,385 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 14:29:37,385 INFO L93 Difference]: Finished difference Result 50 states and 58 transitions. [2024-10-15 14:29:37,385 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2024-10-15 14:29:37,385 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 18 states have (on average 1.3888888888888888) internal successors, (25), 18 states have internal predecessors, (25), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 14 [2024-10-15 14:29:37,386 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 14:29:37,387 INFO L225 Difference]: With dead ends: 50 [2024-10-15 14:29:37,387 INFO L226 Difference]: Without dead ends: 48 [2024-10-15 14:29:37,388 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 54 GetRequests, 18 SyntacticMatches, 2 SemanticMatches, 34 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 170 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=247, Invalid=1013, Unknown=0, NotChecked=0, Total=1260 [2024-10-15 14:29:37,389 INFO L432 NwaCegarLoop]: 3 mSDtfsCounter, 90 mSDsluCounter, 22 mSDsCounter, 0 mSdLazyCounter, 274 mSolverCounterSat, 51 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 90 SdHoareTripleChecker+Valid, 25 SdHoareTripleChecker+Invalid, 325 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 51 IncrementalHoareTripleChecker+Valid, 274 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-10-15 14:29:37,389 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [90 Valid, 25 Invalid, 325 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [51 Valid, 274 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-10-15 14:29:37,389 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 48 states. [2024-10-15 14:29:37,398 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 48 to 40. [2024-10-15 14:29:37,398 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 40 states, 29 states have (on average 1.206896551724138) internal successors, (35), 30 states have internal predecessors, (35), 6 states have call successors, (6), 5 states have call predecessors, (6), 4 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2024-10-15 14:29:37,399 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 40 states to 40 states and 46 transitions. [2024-10-15 14:29:37,399 INFO L78 Accepts]: Start accepts. Automaton has 40 states and 46 transitions. Word has length 14 [2024-10-15 14:29:37,399 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 14:29:37,399 INFO L471 AbstractCegarLoop]: Abstraction has 40 states and 46 transitions. [2024-10-15 14:29:37,399 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 18 states have (on average 1.3888888888888888) internal successors, (25), 18 states have internal predecessors, (25), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-10-15 14:29:37,400 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:29:37,400 INFO L276 IsEmpty]: Start isEmpty. Operand 40 states and 46 transitions. [2024-10-15 14:29:37,401 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-10-15 14:29:37,401 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:29:37,401 INFO L215 NwaCegarLoop]: trace histogram [4, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:29:37,413 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-10-15 14:29:37,601 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:29:37,602 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:29:37,602 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:29:37,602 INFO L85 PathProgramCache]: Analyzing trace with hash 1759027392, now seen corresponding path program 2 times [2024-10-15 14:29:37,603 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:29:37,603 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1609320749] [2024-10-15 14:29:37,603 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:29:37,603 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:29:37,616 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:37,831 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:29:37,833 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:37,850 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 0 proven. 10 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:37,850 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:29:37,851 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1609320749] [2024-10-15 14:29:37,852 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1609320749] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 14:29:37,852 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [410459473] [2024-10-15 14:29:37,852 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-10-15 14:29:37,852 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:29:37,852 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:29:37,853 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 14:29:37,855 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-10-15 14:29:37,891 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-10-15 14:29:37,891 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 14:29:37,892 INFO L255 TraceCheckSpWp]: Trace formula consists of 87 conjuncts, 28 conjuncts are in the unsatisfiable core [2024-10-15 14:29:37,893 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 14:29:38,063 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 0 proven. 10 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:38,064 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 14:29:38,296 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 0 proven. 10 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:38,296 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [410459473] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 14:29:38,296 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 14:29:38,296 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 10, 10] total 26 [2024-10-15 14:29:38,296 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [662291046] [2024-10-15 14:29:38,297 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 14:29:38,297 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 26 states [2024-10-15 14:29:38,297 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:29:38,297 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 26 interpolants. [2024-10-15 14:29:38,298 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=100, Invalid=550, Unknown=0, NotChecked=0, Total=650 [2024-10-15 14:29:38,298 INFO L87 Difference]: Start difference. First operand 40 states and 46 transitions. Second operand has 26 states, 25 states have (on average 1.32) internal successors, (33), 23 states have internal predecessors, (33), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-10-15 14:29:39,520 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 14:29:39,520 INFO L93 Difference]: Finished difference Result 82 states and 101 transitions. [2024-10-15 14:29:39,521 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 23 states. [2024-10-15 14:29:39,521 INFO L78 Accepts]: Start accepts. Automaton has has 26 states, 25 states have (on average 1.32) internal successors, (33), 23 states have internal predecessors, (33), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 17 [2024-10-15 14:29:39,521 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 14:29:39,523 INFO L225 Difference]: With dead ends: 82 [2024-10-15 14:29:39,523 INFO L226 Difference]: Without dead ends: 80 [2024-10-15 14:29:39,524 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 64 GetRequests, 21 SyntacticMatches, 0 SemanticMatches, 43 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 272 ImplicationChecksByTransitivity, 1.0s TimeCoverageRelationStatistics Valid=373, Invalid=1607, Unknown=0, NotChecked=0, Total=1980 [2024-10-15 14:29:39,525 INFO L432 NwaCegarLoop]: 3 mSDtfsCounter, 154 mSDsluCounter, 25 mSDsCounter, 0 mSdLazyCounter, 389 mSolverCounterSat, 57 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 154 SdHoareTripleChecker+Valid, 28 SdHoareTripleChecker+Invalid, 446 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 57 IncrementalHoareTripleChecker+Valid, 389 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-10-15 14:29:39,525 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [154 Valid, 28 Invalid, 446 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [57 Valid, 389 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-10-15 14:29:39,525 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 80 states. [2024-10-15 14:29:39,538 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 80 to 48. [2024-10-15 14:29:39,538 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 48 states, 37 states have (on average 1.3783783783783783) internal successors, (51), 38 states have internal predecessors, (51), 6 states have call successors, (6), 5 states have call predecessors, (6), 4 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2024-10-15 14:29:39,539 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 48 states to 48 states and 62 transitions. [2024-10-15 14:29:39,539 INFO L78 Accepts]: Start accepts. Automaton has 48 states and 62 transitions. Word has length 17 [2024-10-15 14:29:39,539 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 14:29:39,539 INFO L471 AbstractCegarLoop]: Abstraction has 48 states and 62 transitions. [2024-10-15 14:29:39,540 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 26 states, 25 states have (on average 1.32) internal successors, (33), 23 states have internal predecessors, (33), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-10-15 14:29:39,540 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:29:39,540 INFO L276 IsEmpty]: Start isEmpty. Operand 48 states and 62 transitions. [2024-10-15 14:29:39,540 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2024-10-15 14:29:39,541 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:29:39,541 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:29:39,552 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-10-15 14:29:39,741 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,3 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:29:39,741 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:29:39,742 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:29:39,742 INFO L85 PathProgramCache]: Analyzing trace with hash 447679010, now seen corresponding path program 1 times [2024-10-15 14:29:39,742 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:29:39,742 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1942623399] [2024-10-15 14:29:39,742 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:29:39,742 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:29:39,757 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:40,055 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:29:40,057 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:40,084 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-10-15 14:29:40,086 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:40,094 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:40,094 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:29:40,094 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1942623399] [2024-10-15 14:29:40,095 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1942623399] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 14:29:40,095 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [260792188] [2024-10-15 14:29:40,095 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:29:40,095 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:29:40,095 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:29:40,097 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 14:29:40,098 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-10-15 14:29:40,140 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:40,144 INFO L255 TraceCheckSpWp]: Trace formula consists of 96 conjuncts, 23 conjuncts are in the unsatisfiable core [2024-10-15 14:29:40,146 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 14:29:40,318 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:40,319 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 14:29:40,509 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:40,509 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [260792188] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 14:29:40,509 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 14:29:40,509 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 10, 9] total 23 [2024-10-15 14:29:40,509 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [636989530] [2024-10-15 14:29:40,509 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 14:29:40,510 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2024-10-15 14:29:40,510 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:29:40,510 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2024-10-15 14:29:40,511 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=73, Invalid=433, Unknown=0, NotChecked=0, Total=506 [2024-10-15 14:29:40,511 INFO L87 Difference]: Start difference. First operand 48 states and 62 transitions. Second operand has 23 states, 23 states have (on average 1.6521739130434783) internal successors, (38), 20 states have internal predecessors, (38), 8 states have call successors, (10), 6 states have call predecessors, (10), 2 states have return successors, (5), 5 states have call predecessors, (5), 3 states have call successors, (5) [2024-10-15 14:29:42,520 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 14:29:42,520 INFO L93 Difference]: Finished difference Result 93 states and 116 transitions. [2024-10-15 14:29:42,524 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2024-10-15 14:29:42,524 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 23 states have (on average 1.6521739130434783) internal successors, (38), 20 states have internal predecessors, (38), 8 states have call successors, (10), 6 states have call predecessors, (10), 2 states have return successors, (5), 5 states have call predecessors, (5), 3 states have call successors, (5) Word has length 23 [2024-10-15 14:29:42,524 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 14:29:42,525 INFO L225 Difference]: With dead ends: 93 [2024-10-15 14:29:42,526 INFO L226 Difference]: Without dead ends: 91 [2024-10-15 14:29:42,526 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 74 GetRequests, 36 SyntacticMatches, 3 SemanticMatches, 35 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 247 ImplicationChecksByTransitivity, 0.6s TimeCoverageRelationStatistics Valid=235, Invalid=1097, Unknown=0, NotChecked=0, Total=1332 [2024-10-15 14:29:42,527 INFO L432 NwaCegarLoop]: 3 mSDtfsCounter, 102 mSDsluCounter, 38 mSDsCounter, 0 mSdLazyCounter, 485 mSolverCounterSat, 43 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 102 SdHoareTripleChecker+Valid, 41 SdHoareTripleChecker+Invalid, 528 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 43 IncrementalHoareTripleChecker+Valid, 485 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.7s IncrementalHoareTripleChecker+Time [2024-10-15 14:29:42,527 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [102 Valid, 41 Invalid, 528 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [43 Valid, 485 Invalid, 0 Unknown, 0 Unchecked, 1.7s Time] [2024-10-15 14:29:42,528 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 91 states. [2024-10-15 14:29:42,554 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 91 to 89. [2024-10-15 14:29:42,554 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 89 states, 65 states have (on average 1.2153846153846153) internal successors, (79), 71 states have internal predecessors, (79), 17 states have call successors, (17), 7 states have call predecessors, (17), 6 states have return successors, (16), 10 states have call predecessors, (16), 16 states have call successors, (16) [2024-10-15 14:29:42,555 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 89 states to 89 states and 112 transitions. [2024-10-15 14:29:42,555 INFO L78 Accepts]: Start accepts. Automaton has 89 states and 112 transitions. Word has length 23 [2024-10-15 14:29:42,556 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 14:29:42,556 INFO L471 AbstractCegarLoop]: Abstraction has 89 states and 112 transitions. [2024-10-15 14:29:42,556 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 23 states have (on average 1.6521739130434783) internal successors, (38), 20 states have internal predecessors, (38), 8 states have call successors, (10), 6 states have call predecessors, (10), 2 states have return successors, (5), 5 states have call predecessors, (5), 3 states have call successors, (5) [2024-10-15 14:29:42,556 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:29:42,556 INFO L276 IsEmpty]: Start isEmpty. Operand 89 states and 112 transitions. [2024-10-15 14:29:42,557 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2024-10-15 14:29:42,557 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:29:42,557 INFO L215 NwaCegarLoop]: trace histogram [12, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:29:42,575 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-10-15 14:29:42,761 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,4 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:29:42,762 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:29:42,762 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:29:42,763 INFO L85 PathProgramCache]: Analyzing trace with hash -1692277824, now seen corresponding path program 3 times [2024-10-15 14:29:42,763 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:29:42,763 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [251464190] [2024-10-15 14:29:42,763 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:29:42,763 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:29:42,801 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:43,271 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:29:43,273 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:29:43,307 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 0 proven. 78 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:43,307 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:29:43,307 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [251464190] [2024-10-15 14:29:43,307 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [251464190] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 14:29:43,307 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1494820601] [2024-10-15 14:29:43,310 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-10-15 14:29:43,310 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:29:43,310 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:29:43,312 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 14:29:43,313 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-10-15 14:29:43,364 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 7 check-sat command(s) [2024-10-15 14:29:43,364 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 14:29:43,370 INFO L255 TraceCheckSpWp]: Trace formula consists of 127 conjuncts, 56 conjuncts are in the unsatisfiable core [2024-10-15 14:29:43,372 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 14:29:43,807 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 0 proven. 78 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:43,808 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 14:29:44,591 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 0 proven. 78 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-10-15 14:29:44,592 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1494820601] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 14:29:44,592 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 14:29:44,592 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 17, 17] total 48 [2024-10-15 14:29:44,593 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [799640455] [2024-10-15 14:29:44,593 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 14:29:44,593 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 48 states [2024-10-15 14:29:44,593 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:29:44,595 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 48 interpolants. [2024-10-15 14:29:44,597 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=376, Invalid=1880, Unknown=0, NotChecked=0, Total=2256 [2024-10-15 14:29:44,598 INFO L87 Difference]: Start difference. First operand 89 states and 112 transitions. Second operand has 48 states, 47 states have (on average 1.2127659574468086) internal successors, (57), 45 states have internal predecessors, (57), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-10-15 14:29:56,307 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:30:05,065 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:30:05,840 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 14:30:05,840 INFO L93 Difference]: Finished difference Result 151 states and 195 transitions. [2024-10-15 14:30:05,841 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 41 states. [2024-10-15 14:30:05,841 INFO L78 Accepts]: Start accepts. Automaton has has 48 states, 47 states have (on average 1.2127659574468086) internal successors, (57), 45 states have internal predecessors, (57), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 25 [2024-10-15 14:30:05,841 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 14:30:05,842 INFO L225 Difference]: With dead ends: 151 [2024-10-15 14:30:05,842 INFO L226 Difference]: Without dead ends: 149 [2024-10-15 14:30:05,844 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 106 GetRequests, 23 SyntacticMatches, 0 SemanticMatches, 83 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 755 ImplicationChecksByTransitivity, 13.1s TimeCoverageRelationStatistics Valid=1319, Invalid=5821, Unknown=0, NotChecked=0, Total=7140 [2024-10-15 14:30:05,845 INFO L432 NwaCegarLoop]: 3 mSDtfsCounter, 384 mSDsluCounter, 73 mSDsCounter, 0 mSdLazyCounter, 1459 mSolverCounterSat, 173 mSolverCounterUnsat, 2 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 9.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 384 SdHoareTripleChecker+Valid, 76 SdHoareTripleChecker+Invalid, 1634 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 173 IncrementalHoareTripleChecker+Valid, 1459 IncrementalHoareTripleChecker+Invalid, 2 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 9.3s IncrementalHoareTripleChecker+Time [2024-10-15 14:30:05,845 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [384 Valid, 76 Invalid, 1634 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [173 Valid, 1459 Invalid, 2 Unknown, 0 Unchecked, 9.3s Time] [2024-10-15 14:30:05,846 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 149 states. [2024-10-15 14:30:05,893 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 149 to 126. [2024-10-15 14:30:05,895 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 126 states, 96 states have (on average 1.3020833333333333) internal successors, (125), 105 states have internal predecessors, (125), 21 states have call successors, (21), 9 states have call predecessors, (21), 8 states have return successors, (20), 11 states have call predecessors, (20), 20 states have call successors, (20) [2024-10-15 14:30:05,896 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 126 states to 126 states and 166 transitions. [2024-10-15 14:30:05,897 INFO L78 Accepts]: Start accepts. Automaton has 126 states and 166 transitions. Word has length 25 [2024-10-15 14:30:05,897 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 14:30:05,897 INFO L471 AbstractCegarLoop]: Abstraction has 126 states and 166 transitions. [2024-10-15 14:30:05,899 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 48 states, 47 states have (on average 1.2127659574468086) internal successors, (57), 45 states have internal predecessors, (57), 5 states have call successors, (7), 5 states have call predecessors, (7), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-10-15 14:30:05,899 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:30:05,899 INFO L276 IsEmpty]: Start isEmpty. Operand 126 states and 166 transitions. [2024-10-15 14:30:05,900 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2024-10-15 14:30:05,901 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:30:05,901 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:30:05,916 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2024-10-15 14:30:06,106 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,5 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:30:06,107 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:30:06,107 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:30:06,107 INFO L85 PathProgramCache]: Analyzing trace with hash 1835559814, now seen corresponding path program 2 times [2024-10-15 14:30:06,107 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:30:06,107 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1236954937] [2024-10-15 14:30:06,107 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:30:06,107 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:30:06,123 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:06,310 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:30:06,311 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:06,312 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2024-10-15 14:30:06,313 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:06,315 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 17 [2024-10-15 14:30:06,316 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:06,318 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-10-15 14:30:06,318 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:30:06,318 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1236954937] [2024-10-15 14:30:06,318 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1236954937] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 14:30:06,319 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [819597436] [2024-10-15 14:30:06,319 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-10-15 14:30:06,319 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:30:06,319 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:30:06,320 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 14:30:06,321 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-10-15 14:30:06,365 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-10-15 14:30:06,365 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 14:30:06,366 INFO L255 TraceCheckSpWp]: Trace formula consists of 100 conjuncts, 12 conjuncts are in the unsatisfiable core [2024-10-15 14:30:06,367 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 14:30:06,445 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-10-15 14:30:06,445 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 14:30:06,694 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-10-15 14:30:06,694 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [819597436] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 14:30:06,694 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 14:30:06,694 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 8, 8] total 20 [2024-10-15 14:30:06,694 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [314493263] [2024-10-15 14:30:06,694 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 14:30:06,695 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2024-10-15 14:30:06,695 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:30:06,695 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2024-10-15 14:30:06,696 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=77, Invalid=303, Unknown=0, NotChecked=0, Total=380 [2024-10-15 14:30:06,696 INFO L87 Difference]: Start difference. First operand 126 states and 166 transitions. Second operand has 20 states, 20 states have (on average 1.7) internal successors, (34), 19 states have internal predecessors, (34), 8 states have call successors, (10), 3 states have call predecessors, (10), 1 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) [2024-10-15 14:30:07,098 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 14:30:07,098 INFO L93 Difference]: Finished difference Result 161 states and 204 transitions. [2024-10-15 14:30:07,099 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 16 states. [2024-10-15 14:30:07,099 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 20 states have (on average 1.7) internal successors, (34), 19 states have internal predecessors, (34), 8 states have call successors, (10), 3 states have call predecessors, (10), 1 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) Word has length 28 [2024-10-15 14:30:07,099 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 14:30:07,100 INFO L225 Difference]: With dead ends: 161 [2024-10-15 14:30:07,100 INFO L226 Difference]: Without dead ends: 118 [2024-10-15 14:30:07,100 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 84 GetRequests, 52 SyntacticMatches, 1 SemanticMatches, 31 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 175 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=205, Invalid=851, Unknown=0, NotChecked=0, Total=1056 [2024-10-15 14:30:07,101 INFO L432 NwaCegarLoop]: 3 mSDtfsCounter, 32 mSDsluCounter, 28 mSDsCounter, 0 mSdLazyCounter, 184 mSolverCounterSat, 16 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 33 SdHoareTripleChecker+Valid, 31 SdHoareTripleChecker+Invalid, 200 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 16 IncrementalHoareTripleChecker+Valid, 184 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-10-15 14:30:07,101 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [33 Valid, 31 Invalid, 200 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [16 Valid, 184 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-10-15 14:30:07,102 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 118 states. [2024-10-15 14:30:07,143 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 118 to 118. [2024-10-15 14:30:07,144 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 118 states, 90 states have (on average 1.288888888888889) internal successors, (116), 98 states have internal predecessors, (116), 20 states have call successors, (20), 8 states have call predecessors, (20), 7 states have return successors, (19), 11 states have call predecessors, (19), 19 states have call successors, (19) [2024-10-15 14:30:07,145 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 118 states to 118 states and 155 transitions. [2024-10-15 14:30:07,145 INFO L78 Accepts]: Start accepts. Automaton has 118 states and 155 transitions. Word has length 28 [2024-10-15 14:30:07,145 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 14:30:07,145 INFO L471 AbstractCegarLoop]: Abstraction has 118 states and 155 transitions. [2024-10-15 14:30:07,146 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 20 states have (on average 1.7) internal successors, (34), 19 states have internal predecessors, (34), 8 states have call successors, (10), 3 states have call predecessors, (10), 1 states have return successors, (7), 7 states have call predecessors, (7), 7 states have call successors, (7) [2024-10-15 14:30:07,146 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:30:07,146 INFO L276 IsEmpty]: Start isEmpty. Operand 118 states and 155 transitions. [2024-10-15 14:30:07,147 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 34 [2024-10-15 14:30:07,148 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:30:07,148 INFO L215 NwaCegarLoop]: trace histogram [6, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:30:07,168 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2024-10-15 14:30:07,349 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2024-10-15 14:30:07,349 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:30:07,352 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:30:07,352 INFO L85 PathProgramCache]: Analyzing trace with hash -2066924416, now seen corresponding path program 3 times [2024-10-15 14:30:07,352 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:30:07,352 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1386319568] [2024-10-15 14:30:07,352 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:30:07,352 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:30:07,398 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:08,094 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:30:08,096 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:08,116 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 15 [2024-10-15 14:30:08,116 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:08,118 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 22 [2024-10-15 14:30:08,119 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:08,120 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 4 proven. 28 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-10-15 14:30:08,120 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:30:08,120 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1386319568] [2024-10-15 14:30:08,120 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1386319568] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 14:30:08,120 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1817830728] [2024-10-15 14:30:08,121 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-10-15 14:30:08,121 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:30:08,121 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:30:08,122 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 14:30:08,123 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-10-15 14:30:08,178 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 4 check-sat command(s) [2024-10-15 14:30:08,178 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 14:30:08,179 INFO L255 TraceCheckSpWp]: Trace formula consists of 125 conjuncts, 43 conjuncts are in the unsatisfiable core [2024-10-15 14:30:08,181 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 14:30:08,512 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 3 proven. 32 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-10-15 14:30:08,512 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 14:30:35,026 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 4 proven. 28 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-10-15 14:30:35,026 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1817830728] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 14:30:35,026 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 14:30:35,026 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [17, 15, 13] total 37 [2024-10-15 14:30:35,026 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1427780123] [2024-10-15 14:30:35,026 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 14:30:35,027 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 37 states [2024-10-15 14:30:35,027 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:30:35,028 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 37 interpolants. [2024-10-15 14:30:35,028 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=180, Invalid=1151, Unknown=1, NotChecked=0, Total=1332 [2024-10-15 14:30:35,028 INFO L87 Difference]: Start difference. First operand 118 states and 155 transitions. Second operand has 37 states, 36 states have (on average 1.5555555555555556) internal successors, (56), 35 states have internal predecessors, (56), 10 states have call successors, (12), 5 states have call predecessors, (12), 3 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) [2024-10-15 14:30:39,482 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:30:48,140 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:30:53,478 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:30:53,546 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 14:30:53,546 INFO L93 Difference]: Finished difference Result 171 states and 218 transitions. [2024-10-15 14:30:53,546 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 27 states. [2024-10-15 14:30:53,546 INFO L78 Accepts]: Start accepts. Automaton has has 37 states, 36 states have (on average 1.5555555555555556) internal successors, (56), 35 states have internal predecessors, (56), 10 states have call successors, (12), 5 states have call predecessors, (12), 3 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) Word has length 33 [2024-10-15 14:30:53,547 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 14:30:53,548 INFO L225 Difference]: With dead ends: 171 [2024-10-15 14:30:53,548 INFO L226 Difference]: Without dead ends: 169 [2024-10-15 14:30:53,549 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 110 GetRequests, 51 SyntacticMatches, 1 SemanticMatches, 58 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 469 ImplicationChecksByTransitivity, 33.0s TimeCoverageRelationStatistics Valid=554, Invalid=2984, Unknown=2, NotChecked=0, Total=3540 [2024-10-15 14:30:53,549 INFO L432 NwaCegarLoop]: 3 mSDtfsCounter, 168 mSDsluCounter, 41 mSDsCounter, 0 mSdLazyCounter, 537 mSolverCounterSat, 72 mSolverCounterUnsat, 3 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 12.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 168 SdHoareTripleChecker+Valid, 44 SdHoareTripleChecker+Invalid, 612 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 72 IncrementalHoareTripleChecker+Valid, 537 IncrementalHoareTripleChecker+Invalid, 3 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 12.6s IncrementalHoareTripleChecker+Time [2024-10-15 14:30:53,549 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [168 Valid, 44 Invalid, 612 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [72 Valid, 537 Invalid, 3 Unknown, 0 Unchecked, 12.6s Time] [2024-10-15 14:30:53,550 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 169 states. [2024-10-15 14:30:53,613 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 169 to 169. [2024-10-15 14:30:53,614 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 169 states, 125 states have (on average 1.208) internal successors, (151), 136 states have internal predecessors, (151), 33 states have call successors, (33), 11 states have call predecessors, (33), 10 states have return successors, (32), 21 states have call predecessors, (32), 32 states have call successors, (32) [2024-10-15 14:30:53,614 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 169 states to 169 states and 216 transitions. [2024-10-15 14:30:53,615 INFO L78 Accepts]: Start accepts. Automaton has 169 states and 216 transitions. Word has length 33 [2024-10-15 14:30:53,615 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 14:30:53,615 INFO L471 AbstractCegarLoop]: Abstraction has 169 states and 216 transitions. [2024-10-15 14:30:53,615 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 37 states, 36 states have (on average 1.5555555555555556) internal successors, (56), 35 states have internal predecessors, (56), 10 states have call successors, (12), 5 states have call predecessors, (12), 3 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) [2024-10-15 14:30:53,616 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:30:53,616 INFO L276 IsEmpty]: Start isEmpty. Operand 169 states and 216 transitions. [2024-10-15 14:30:53,617 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2024-10-15 14:30:53,618 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:30:53,618 INFO L215 NwaCegarLoop]: trace histogram [14, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:30:53,631 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Ended with exit code 0 [2024-10-15 14:30:53,818 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,7 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:30:53,819 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:30:53,819 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:30:53,819 INFO L85 PathProgramCache]: Analyzing trace with hash 2049998720, now seen corresponding path program 4 times [2024-10-15 14:30:53,819 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:30:53,819 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [747660805] [2024-10-15 14:30:53,819 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:30:53,819 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:30:53,879 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:54,827 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:30:54,829 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:54,875 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2024-10-15 14:30:54,876 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:54,878 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 30 [2024-10-15 14:30:54,882 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:30:54,884 INFO L134 CoverageAnalysis]: Checked inductivity of 120 backedges. 4 proven. 112 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-10-15 14:30:54,884 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:30:54,884 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [747660805] [2024-10-15 14:30:54,884 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [747660805] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 14:30:54,884 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [815598455] [2024-10-15 14:30:54,884 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2024-10-15 14:30:54,884 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:30:54,884 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:30:54,886 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 14:30:54,887 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-10-15 14:30:55,005 INFO L227 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2024-10-15 14:30:55,005 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 14:30:55,007 INFO L255 TraceCheckSpWp]: Trace formula consists of 165 conjuncts, 66 conjuncts are in the unsatisfiable core [2024-10-15 14:30:55,009 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 14:30:55,734 INFO L134 CoverageAnalysis]: Checked inductivity of 120 backedges. 4 proven. 112 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-10-15 14:30:55,734 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 14:30:57,250 INFO L134 CoverageAnalysis]: Checked inductivity of 120 backedges. 4 proven. 112 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-10-15 14:30:57,250 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [815598455] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 14:30:57,250 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 14:30:57,250 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [24, 21, 21] total 60 [2024-10-15 14:30:57,250 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [325628730] [2024-10-15 14:30:57,250 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 14:30:57,251 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 60 states [2024-10-15 14:30:57,251 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:30:57,251 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 60 interpolants. [2024-10-15 14:30:57,252 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=540, Invalid=3000, Unknown=0, NotChecked=0, Total=3540 [2024-10-15 14:30:57,252 INFO L87 Difference]: Start difference. First operand 169 states and 216 transitions. Second operand has 60 states, 59 states have (on average 1.3220338983050848) internal successors, (78), 57 states have internal predecessors, (78), 11 states have call successors, (13), 5 states have call predecessors, (13), 2 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) [2024-10-15 14:31:04,325 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 14:31:04,325 INFO L93 Difference]: Finished difference Result 224 states and 282 transitions. [2024-10-15 14:31:04,326 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 34 states. [2024-10-15 14:31:04,327 INFO L78 Accepts]: Start accepts. Automaton has has 60 states, 59 states have (on average 1.3220338983050848) internal successors, (78), 57 states have internal predecessors, (78), 11 states have call successors, (13), 5 states have call predecessors, (13), 2 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) Word has length 41 [2024-10-15 14:31:04,327 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 14:31:04,329 INFO L225 Difference]: With dead ends: 224 [2024-10-15 14:31:04,329 INFO L226 Difference]: Without dead ends: 222 [2024-10-15 14:31:04,331 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 140 GetRequests, 50 SyntacticMatches, 2 SemanticMatches, 88 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 795 ImplicationChecksByTransitivity, 8.0s TimeCoverageRelationStatistics Valid=1321, Invalid=6689, Unknown=0, NotChecked=0, Total=8010 [2024-10-15 14:31:04,331 INFO L432 NwaCegarLoop]: 3 mSDtfsCounter, 276 mSDsluCounter, 64 mSDsCounter, 0 mSdLazyCounter, 1290 mSolverCounterSat, 157 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 276 SdHoareTripleChecker+Valid, 67 SdHoareTripleChecker+Invalid, 1447 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 157 IncrementalHoareTripleChecker+Valid, 1290 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.4s IncrementalHoareTripleChecker+Time [2024-10-15 14:31:04,331 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [276 Valid, 67 Invalid, 1447 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [157 Valid, 1290 Invalid, 0 Unknown, 0 Unchecked, 1.4s Time] [2024-10-15 14:31:04,332 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 222 states. [2024-10-15 14:31:04,419 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 222 to 212. [2024-10-15 14:31:04,420 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 212 states, 153 states have (on average 1.1699346405228759) internal successors, (179), 168 states have internal predecessors, (179), 46 states have call successors, (46), 13 states have call predecessors, (46), 12 states have return successors, (45), 30 states have call predecessors, (45), 45 states have call successors, (45) [2024-10-15 14:31:04,421 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 212 states to 212 states and 270 transitions. [2024-10-15 14:31:04,421 INFO L78 Accepts]: Start accepts. Automaton has 212 states and 270 transitions. Word has length 41 [2024-10-15 14:31:04,421 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 14:31:04,421 INFO L471 AbstractCegarLoop]: Abstraction has 212 states and 270 transitions. [2024-10-15 14:31:04,422 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 60 states, 59 states have (on average 1.3220338983050848) internal successors, (78), 57 states have internal predecessors, (78), 11 states have call successors, (13), 5 states have call predecessors, (13), 2 states have return successors, (8), 8 states have call predecessors, (8), 7 states have call successors, (8) [2024-10-15 14:31:04,422 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:31:04,422 INFO L276 IsEmpty]: Start isEmpty. Operand 212 states and 270 transitions. [2024-10-15 14:31:04,423 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 45 [2024-10-15 14:31:04,423 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:31:04,423 INFO L215 NwaCegarLoop]: trace histogram [5, 5, 5, 4, 4, 4, 4, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:31:04,437 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Ended with exit code 0 [2024-10-15 14:31:04,626 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,8 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:31:04,627 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:31:04,627 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:31:04,627 INFO L85 PathProgramCache]: Analyzing trace with hash 1054157638, now seen corresponding path program 5 times [2024-10-15 14:31:04,627 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:31:04,627 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [190949743] [2024-10-15 14:31:04,627 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:31:04,628 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:31:04,659 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:05,129 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:31:05,131 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:05,153 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-10-15 14:31:05,154 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:05,156 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 19 [2024-10-15 14:31:05,158 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:05,160 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 26 [2024-10-15 14:31:05,161 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:05,163 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 33 [2024-10-15 14:31:05,164 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:05,166 INFO L134 CoverageAnalysis]: Checked inductivity of 64 backedges. 12 proven. 28 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-10-15 14:31:05,166 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:31:05,166 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [190949743] [2024-10-15 14:31:05,166 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [190949743] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 14:31:05,167 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1234809858] [2024-10-15 14:31:05,167 INFO L93 rtionOrderModulation]: Changing assertion order to INSIDE_LOOP_FIRST1 [2024-10-15 14:31:05,167 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:31:05,167 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:31:05,168 INFO L229 MonitoredProcess]: Starting monitored process 9 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 14:31:05,173 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-10-15 14:31:05,233 INFO L227 tOrderPrioritization]: Assert order INSIDE_LOOP_FIRST1 issued 5 check-sat command(s) [2024-10-15 14:31:05,233 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 14:31:05,234 INFO L255 TraceCheckSpWp]: Trace formula consists of 138 conjuncts, 26 conjuncts are in the unsatisfiable core [2024-10-15 14:31:05,235 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 14:31:05,570 INFO L134 CoverageAnalysis]: Checked inductivity of 64 backedges. 8 proven. 32 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-10-15 14:31:05,571 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 14:31:06,478 INFO L134 CoverageAnalysis]: Checked inductivity of 64 backedges. 8 proven. 32 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-10-15 14:31:06,479 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1234809858] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 14:31:06,479 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 14:31:06,479 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [16, 14, 14] total 38 [2024-10-15 14:31:06,479 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [95698923] [2024-10-15 14:31:06,481 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 14:31:06,481 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 38 states [2024-10-15 14:31:06,482 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:31:06,482 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 38 interpolants. [2024-10-15 14:31:06,482 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=119, Invalid=1287, Unknown=0, NotChecked=0, Total=1406 [2024-10-15 14:31:06,482 INFO L87 Difference]: Start difference. First operand 212 states and 270 transitions. Second operand has 38 states, 37 states have (on average 1.5405405405405406) internal successors, (57), 36 states have internal predecessors, (57), 17 states have call successors, (19), 5 states have call predecessors, (19), 2 states have return successors, (14), 14 states have call predecessors, (14), 13 states have call successors, (14) [2024-10-15 14:31:10,684 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:31:16,032 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 14:31:16,034 INFO L93 Difference]: Finished difference Result 253 states and 315 transitions. [2024-10-15 14:31:16,034 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 32 states. [2024-10-15 14:31:16,034 INFO L78 Accepts]: Start accepts. Automaton has has 38 states, 37 states have (on average 1.5405405405405406) internal successors, (57), 36 states have internal predecessors, (57), 17 states have call successors, (19), 5 states have call predecessors, (19), 2 states have return successors, (14), 14 states have call predecessors, (14), 13 states have call successors, (14) Word has length 44 [2024-10-15 14:31:16,034 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 14:31:16,036 INFO L225 Difference]: With dead ends: 253 [2024-10-15 14:31:16,036 INFO L226 Difference]: Without dead ends: 224 [2024-10-15 14:31:16,040 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 140 GetRequests, 74 SyntacticMatches, 2 SemanticMatches, 64 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 567 ImplicationChecksByTransitivity, 5.0s TimeCoverageRelationStatistics Valid=653, Invalid=3637, Unknown=0, NotChecked=0, Total=4290 [2024-10-15 14:31:16,041 INFO L432 NwaCegarLoop]: 3 mSDtfsCounter, 176 mSDsluCounter, 64 mSDsCounter, 0 mSdLazyCounter, 656 mSolverCounterSat, 82 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 176 SdHoareTripleChecker+Valid, 67 SdHoareTripleChecker+Invalid, 739 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 82 IncrementalHoareTripleChecker+Valid, 656 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.7s IncrementalHoareTripleChecker+Time [2024-10-15 14:31:16,042 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [176 Valid, 67 Invalid, 739 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [82 Valid, 656 Invalid, 1 Unknown, 0 Unchecked, 5.7s Time] [2024-10-15 14:31:16,044 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 224 states. [2024-10-15 14:31:16,164 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 224 to 222. [2024-10-15 14:31:16,164 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 222 states, 160 states have (on average 1.15625) internal successors, (185), 174 states have internal predecessors, (185), 48 states have call successors, (48), 14 states have call predecessors, (48), 13 states have return successors, (47), 33 states have call predecessors, (47), 47 states have call successors, (47) [2024-10-15 14:31:16,166 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 222 states to 222 states and 280 transitions. [2024-10-15 14:31:16,167 INFO L78 Accepts]: Start accepts. Automaton has 222 states and 280 transitions. Word has length 44 [2024-10-15 14:31:16,167 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 14:31:16,167 INFO L471 AbstractCegarLoop]: Abstraction has 222 states and 280 transitions. [2024-10-15 14:31:16,167 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 38 states, 37 states have (on average 1.5405405405405406) internal successors, (57), 36 states have internal predecessors, (57), 17 states have call successors, (19), 5 states have call predecessors, (19), 2 states have return successors, (14), 14 states have call predecessors, (14), 13 states have call successors, (14) [2024-10-15 14:31:16,167 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:31:16,167 INFO L276 IsEmpty]: Start isEmpty. Operand 222 states and 280 transitions. [2024-10-15 14:31:16,169 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 44 [2024-10-15 14:31:16,169 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:31:16,169 INFO L215 NwaCegarLoop]: trace histogram [9, 4, 4, 4, 3, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:31:16,182 INFO L540 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Forceful destruction successful, exit code 0 [2024-10-15 14:31:16,373 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,9 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:31:16,374 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:31:16,374 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:31:16,374 INFO L85 PathProgramCache]: Analyzing trace with hash 1495655394, now seen corresponding path program 6 times [2024-10-15 14:31:16,374 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:31:16,374 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1804054842] [2024-10-15 14:31:16,374 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:31:16,374 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:31:16,401 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:17,034 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:31:17,036 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:17,058 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 18 [2024-10-15 14:31:17,060 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:17,061 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-10-15 14:31:17,062 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:17,063 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 32 [2024-10-15 14:31:17,063 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:17,065 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 6 proven. 60 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-10-15 14:31:17,065 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:31:17,065 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1804054842] [2024-10-15 14:31:17,065 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1804054842] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 14:31:17,065 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [665128574] [2024-10-15 14:31:17,065 INFO L93 rtionOrderModulation]: Changing assertion order to MIX_INSIDE_OUTSIDE [2024-10-15 14:31:17,065 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:31:17,066 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:31:17,067 INFO L229 MonitoredProcess]: Starting monitored process 10 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 14:31:17,068 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2024-10-15 14:31:17,174 INFO L227 tOrderPrioritization]: Assert order MIX_INSIDE_OUTSIDE issued 6 check-sat command(s) [2024-10-15 14:31:17,174 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 14:31:17,177 INFO L255 TraceCheckSpWp]: Trace formula consists of 154 conjuncts, 57 conjuncts are in the unsatisfiable core [2024-10-15 14:31:17,178 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 14:31:17,673 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 8 proven. 64 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-10-15 14:31:17,673 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 14:31:18,440 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 6 proven. 60 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-10-15 14:31:18,440 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [665128574] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 14:31:18,440 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 14:31:18,440 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20, 19, 17] total 49 [2024-10-15 14:31:18,440 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1814057960] [2024-10-15 14:31:18,440 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 14:31:18,441 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 49 states [2024-10-15 14:31:18,441 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:31:18,441 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 49 interpolants. [2024-10-15 14:31:18,442 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=358, Invalid=1994, Unknown=0, NotChecked=0, Total=2352 [2024-10-15 14:31:18,442 INFO L87 Difference]: Start difference. First operand 222 states and 280 transitions. Second operand has 49 states, 48 states have (on average 1.5) internal successors, (72), 47 states have internal predecessors, (72), 14 states have call successors, (16), 5 states have call predecessors, (16), 3 states have return successors, (11), 11 states have call predecessors, (11), 10 states have call successors, (11) [2024-10-15 14:31:21,381 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 14:31:21,381 INFO L93 Difference]: Finished difference Result 256 states and 320 transitions. [2024-10-15 14:31:21,381 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 30 states. [2024-10-15 14:31:21,381 INFO L78 Accepts]: Start accepts. Automaton has has 49 states, 48 states have (on average 1.5) internal successors, (72), 47 states have internal predecessors, (72), 14 states have call successors, (16), 5 states have call predecessors, (16), 3 states have return successors, (11), 11 states have call predecessors, (11), 10 states have call successors, (11) Word has length 43 [2024-10-15 14:31:21,382 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 14:31:21,383 INFO L225 Difference]: With dead ends: 256 [2024-10-15 14:31:21,383 INFO L226 Difference]: Without dead ends: 254 [2024-10-15 14:31:21,384 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 138 GetRequests, 65 SyntacticMatches, 0 SemanticMatches, 73 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 654 ImplicationChecksByTransitivity, 3.5s TimeCoverageRelationStatistics Valid=894, Invalid=4656, Unknown=0, NotChecked=0, Total=5550 [2024-10-15 14:31:21,384 INFO L432 NwaCegarLoop]: 3 mSDtfsCounter, 179 mSDsluCounter, 70 mSDsCounter, 0 mSdLazyCounter, 920 mSolverCounterSat, 113 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 179 SdHoareTripleChecker+Valid, 73 SdHoareTripleChecker+Invalid, 1033 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 113 IncrementalHoareTripleChecker+Valid, 920 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.8s IncrementalHoareTripleChecker+Time [2024-10-15 14:31:21,385 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [179 Valid, 73 Invalid, 1033 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [113 Valid, 920 Invalid, 0 Unknown, 0 Unchecked, 0.8s Time] [2024-10-15 14:31:21,385 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 254 states. [2024-10-15 14:31:21,474 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 254 to 241. [2024-10-15 14:31:21,475 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 241 states, 173 states have (on average 1.1445086705202312) internal successors, (198), 187 states have internal predecessors, (198), 53 states have call successors, (53), 15 states have call predecessors, (53), 14 states have return successors, (52), 38 states have call predecessors, (52), 52 states have call successors, (52) [2024-10-15 14:31:21,476 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 241 states to 241 states and 303 transitions. [2024-10-15 14:31:21,476 INFO L78 Accepts]: Start accepts. Automaton has 241 states and 303 transitions. Word has length 43 [2024-10-15 14:31:21,477 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 14:31:21,477 INFO L471 AbstractCegarLoop]: Abstraction has 241 states and 303 transitions. [2024-10-15 14:31:21,477 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 49 states, 48 states have (on average 1.5) internal successors, (72), 47 states have internal predecessors, (72), 14 states have call successors, (16), 5 states have call predecessors, (16), 3 states have return successors, (11), 11 states have call predecessors, (11), 10 states have call successors, (11) [2024-10-15 14:31:21,477 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:31:21,477 INFO L276 IsEmpty]: Start isEmpty. Operand 241 states and 303 transitions. [2024-10-15 14:31:21,478 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2024-10-15 14:31:21,478 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:31:21,478 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 6, 5, 5, 5, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:31:21,491 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Ended with exit code 0 [2024-10-15 14:31:21,679 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 10 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-10-15 14:31:21,680 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:31:21,680 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:31:21,680 INFO L85 PathProgramCache]: Analyzing trace with hash -123973150, now seen corresponding path program 7 times [2024-10-15 14:31:21,680 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:31:21,680 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [15964057] [2024-10-15 14:31:21,680 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:31:21,680 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:31:21,706 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:26,994 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:31:26,996 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:27,024 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-10-15 14:31:27,025 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:27,026 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 21 [2024-10-15 14:31:27,027 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:27,028 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 28 [2024-10-15 14:31:27,029 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:27,030 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 35 [2024-10-15 14:31:27,031 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:27,033 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 42 [2024-10-15 14:31:27,034 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:27,036 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 10 proven. 55 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-10-15 14:31:27,036 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:31:27,036 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [15964057] [2024-10-15 14:31:27,037 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [15964057] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 14:31:27,037 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1279347895] [2024-10-15 14:31:27,037 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2024-10-15 14:31:27,037 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:31:27,037 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:31:27,038 INFO L229 MonitoredProcess]: Starting monitored process 11 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 14:31:27,040 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Waiting until timeout for monitored process [2024-10-15 14:31:27,151 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:31:27,155 INFO L255 TraceCheckSpWp]: Trace formula consists of 162 conjuncts, 27 conjuncts are in the unsatisfiable core [2024-10-15 14:31:27,156 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 14:31:27,612 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 15 proven. 50 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-10-15 14:31:27,612 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 14:31:28,332 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 15 proven. 50 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-10-15 14:31:28,332 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1279347895] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 14:31:28,332 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 14:31:28,332 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 15, 15] total 45 [2024-10-15 14:31:28,333 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1008859781] [2024-10-15 14:31:28,333 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 14:31:28,333 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 45 states [2024-10-15 14:31:28,333 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:31:28,334 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 45 interpolants. [2024-10-15 14:31:28,334 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=180, Invalid=1799, Unknown=1, NotChecked=0, Total=1980 [2024-10-15 14:31:28,334 INFO L87 Difference]: Start difference. First operand 241 states and 303 transitions. Second operand has 45 states, 44 states have (on average 1.5681818181818181) internal successors, (69), 43 states have internal predecessors, (69), 19 states have call successors, (21), 5 states have call predecessors, (21), 2 states have return successors, (17), 17 states have call predecessors, (17), 16 states have call successors, (17) [2024-10-15 14:31:36,711 WARN L286 SmtUtils]: Spent 8.04s on a formula simplification. DAG size of input: 65 DAG size of output: 39 (called from [L 388] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-10-15 14:31:46,042 WARN L286 SmtUtils]: Spent 8.09s on a formula simplification. DAG size of input: 35 DAG size of output: 33 (called from [L 388] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-10-15 14:31:54,250 WARN L286 SmtUtils]: Spent 8.05s on a formula simplification. DAG size of input: 38 DAG size of output: 36 (called from [L 388] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-10-15 14:32:06,849 WARN L286 SmtUtils]: Spent 8.07s on a formula simplification. DAG size of input: 29 DAG size of output: 27 (called from [L 388] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-10-15 14:32:20,378 WARN L286 SmtUtils]: Spent 8.04s on a formula simplification. DAG size of input: 38 DAG size of output: 36 (called from [L 388] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-10-15 14:32:20,654 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-10-15 14:32:20,654 INFO L93 Difference]: Finished difference Result 295 states and 357 transitions. [2024-10-15 14:32:20,655 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 32 states. [2024-10-15 14:32:20,655 INFO L78 Accepts]: Start accepts. Automaton has has 45 states, 44 states have (on average 1.5681818181818181) internal successors, (69), 43 states have internal predecessors, (69), 19 states have call successors, (21), 5 states have call predecessors, (21), 2 states have return successors, (17), 17 states have call predecessors, (17), 16 states have call successors, (17) Word has length 53 [2024-10-15 14:32:20,655 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-10-15 14:32:20,656 INFO L225 Difference]: With dead ends: 295 [2024-10-15 14:32:20,659 INFO L226 Difference]: Without dead ends: 239 [2024-10-15 14:32:20,661 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 165 GetRequests, 94 SyntacticMatches, 0 SemanticMatches, 71 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 730 ImplicationChecksByTransitivity, 56.1s TimeCoverageRelationStatistics Valid=611, Invalid=4642, Unknown=3, NotChecked=0, Total=5256 [2024-10-15 14:32:20,661 INFO L432 NwaCegarLoop]: 3 mSDtfsCounter, 174 mSDsluCounter, 79 mSDsCounter, 0 mSdLazyCounter, 1822 mSolverCounterSat, 52 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 174 SdHoareTripleChecker+Valid, 82 SdHoareTripleChecker+Invalid, 1874 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 52 IncrementalHoareTripleChecker+Valid, 1822 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.5s IncrementalHoareTripleChecker+Time [2024-10-15 14:32:20,662 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [174 Valid, 82 Invalid, 1874 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [52 Valid, 1822 Invalid, 0 Unknown, 0 Unchecked, 1.5s Time] [2024-10-15 14:32:20,662 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 239 states. [2024-10-15 14:32:20,777 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 239 to 238. [2024-10-15 14:32:20,778 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 238 states, 172 states have (on average 1.1337209302325582) internal successors, (195), 185 states have internal predecessors, (195), 48 states have call successors, (48), 18 states have call predecessors, (48), 17 states have return successors, (47), 34 states have call predecessors, (47), 47 states have call successors, (47) [2024-10-15 14:32:20,782 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 238 states to 238 states and 290 transitions. [2024-10-15 14:32:20,783 INFO L78 Accepts]: Start accepts. Automaton has 238 states and 290 transitions. Word has length 53 [2024-10-15 14:32:20,783 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-10-15 14:32:20,783 INFO L471 AbstractCegarLoop]: Abstraction has 238 states and 290 transitions. [2024-10-15 14:32:20,783 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 45 states, 44 states have (on average 1.5681818181818181) internal successors, (69), 43 states have internal predecessors, (69), 19 states have call successors, (21), 5 states have call predecessors, (21), 2 states have return successors, (17), 17 states have call predecessors, (17), 16 states have call successors, (17) [2024-10-15 14:32:20,784 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:32:20,784 INFO L276 IsEmpty]: Start isEmpty. Operand 238 states and 290 transitions. [2024-10-15 14:32:20,785 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 56 [2024-10-15 14:32:20,785 INFO L207 NwaCegarLoop]: Found error trace [2024-10-15 14:32:20,785 INFO L215 NwaCegarLoop]: trace histogram [7, 6, 6, 6, 5, 5, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-10-15 14:32:20,812 INFO L552 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Ended with exit code 0 [2024-10-15 14:32:20,989 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 11 /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-10-15 14:32:20,990 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-10-15 14:32:20,990 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-10-15 14:32:20,990 INFO L85 PathProgramCache]: Analyzing trace with hash -978711902, now seen corresponding path program 8 times [2024-10-15 14:32:20,990 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-10-15 14:32:20,990 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1523520911] [2024-10-15 14:32:20,991 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-10-15 14:32:20,991 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-10-15 14:32:21,034 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:32:21,977 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2024-10-15 14:32:21,978 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:32:22,032 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2024-10-15 14:32:22,033 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:32:22,039 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2024-10-15 14:32:22,040 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:32:22,043 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 30 [2024-10-15 14:32:22,044 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:32:22,046 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 37 [2024-10-15 14:32:22,047 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:32:22,050 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 44 [2024-10-15 14:32:22,051 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-10-15 14:32:22,054 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 10 proven. 68 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-10-15 14:32:22,055 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-10-15 14:32:22,055 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1523520911] [2024-10-15 14:32:22,055 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1523520911] provided 0 perfect and 1 imperfect interpolant sequences [2024-10-15 14:32:22,055 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1118018670] [2024-10-15 14:32:22,055 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-10-15 14:32:22,055 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-10-15 14:32:22,055 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/certificate-witnesses-artifact/automizer/z3 [2024-10-15 14:32:22,057 INFO L229 MonitoredProcess]: Starting monitored process 12 with /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-10-15 14:32:22,059 INFO L327 MonitoredProcess]: [MP /storage/repos/certificate-witnesses-artifact/automizer/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Waiting until timeout for monitored process [2024-10-15 14:32:22,144 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-10-15 14:32:22,145 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-10-15 14:32:22,146 INFO L255 TraceCheckSpWp]: Trace formula consists of 172 conjuncts, 40 conjuncts are in the unsatisfiable core [2024-10-15 14:32:22,147 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-10-15 14:32:22,884 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 10 proven. 68 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-10-15 14:32:22,884 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-10-15 14:32:23,880 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 10 proven. 68 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-10-15 14:32:23,880 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1118018670] provided 0 perfect and 2 imperfect interpolant sequences [2024-10-15 14:32:23,880 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-10-15 14:32:23,880 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [23, 17, 17] total 51 [2024-10-15 14:32:23,880 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1098653626] [2024-10-15 14:32:23,880 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-10-15 14:32:23,881 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 51 states [2024-10-15 14:32:23,881 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-10-15 14:32:23,881 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 51 interpolants. [2024-10-15 14:32:23,882 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=190, Invalid=2360, Unknown=0, NotChecked=0, Total=2550 [2024-10-15 14:32:23,882 INFO L87 Difference]: Start difference. First operand 238 states and 290 transitions. Second operand has 51 states, 49 states have (on average 1.530612244897959) internal successors, (75), 48 states have internal predecessors, (75), 20 states have call successors, (22), 5 states have call predecessors, (22), 2 states have return successors, (17), 17 states have call predecessors, (17), 16 states have call successors, (17) [2024-10-15 14:32:30,097 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:32:46,254 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:33:08,320 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:33:25,146 WARN L286 SmtUtils]: Spent 7.49s on a formula simplification. DAG size of input: 54 DAG size of output: 36 (called from [L 388] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-10-15 14:33:29,168 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:33:33,206 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:33:55,474 WARN L286 SmtUtils]: Spent 12.44s on a formula simplification. DAG size of input: 64 DAG size of output: 60 (called from [L 388] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2024-10-15 14:33:59,533 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers [] [2024-10-15 14:34:03,537 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 4.00s for a HTC check with result UNKNOWN. Formula has sorts [Bool, Int], hasArrays=false, hasNonlinArith=false, quantifiers []