./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/email_spec7_product34.cil.c --full-output --architecture 32bit


--------------------------------------------------------------------------------


Checking for ERROR reachability
Using default analysis
Version c00e63dc
Calling Ultimate with: /root/.sdkman/candidates/java/21.0.5-tem/bin/java -Dosgi.configuration.area=/storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/email_spec7_product34.cil.c -s /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) )

 --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 5f7b52dfa978a30892cebb35c28a84cc12db47d20591a31b18d58060a0678455
--- Real Ultimate output ---
This is Ultimate 0.3.0-?-c00e63d-m
[2025-02-05 15:47:38,178 INFO  L188        SettingsManager]: Resetting all preferences to default values...
[2025-02-05 15:47:38,245 INFO  L114        SettingsManager]: Loading settings from /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf
[2025-02-05 15:47:38,249 WARN  L101        SettingsManager]: Preference file contains the following unknown settings:
[2025-02-05 15:47:38,249 WARN  L103        SettingsManager]:   * de.uni_freiburg.informatik.ultimate.core.Log level for class
[2025-02-05 15:47:38,269 INFO  L130        SettingsManager]: Preferences different from defaults after loading the file:
[2025-02-05 15:47:38,270 INFO  L151        SettingsManager]: Preferences of UltimateCore differ from their defaults:
[2025-02-05 15:47:38,270 INFO  L153        SettingsManager]:  * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR;
[2025-02-05 15:47:38,270 INFO  L151        SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults:
[2025-02-05 15:47:38,271 INFO  L153        SettingsManager]:  * Use memory slicer=true
[2025-02-05 15:47:38,272 INFO  L151        SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults:
[2025-02-05 15:47:38,272 INFO  L153        SettingsManager]:  * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS
[2025-02-05 15:47:38,272 INFO  L151        SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults:
[2025-02-05 15:47:38,273 INFO  L153        SettingsManager]:  * Create parallel compositions if possible=false
[2025-02-05 15:47:38,273 INFO  L153        SettingsManager]:  * Use SBE=true
[2025-02-05 15:47:38,273 INFO  L151        SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults:
[2025-02-05 15:47:38,273 INFO  L153        SettingsManager]:  * Pointer base address is valid at dereference=IGNORE
[2025-02-05 15:47:38,273 INFO  L153        SettingsManager]:  * sizeof long=4
[2025-02-05 15:47:38,274 INFO  L153        SettingsManager]:  * Overapproximate operations on floating types=true
[2025-02-05 15:47:38,274 INFO  L153        SettingsManager]:  * sizeof POINTER=4
[2025-02-05 15:47:38,274 INFO  L153        SettingsManager]:  * Check division by zero=IGNORE
[2025-02-05 15:47:38,274 INFO  L153        SettingsManager]:  * Pointer to allocated memory at dereference=IGNORE
[2025-02-05 15:47:38,274 INFO  L153        SettingsManager]:  * If two pointers are subtracted or compared they have the same base address=IGNORE
[2025-02-05 15:47:38,274 INFO  L153        SettingsManager]:  * Check array bounds for arrays that are off heap=IGNORE
[2025-02-05 15:47:38,274 INFO  L153        SettingsManager]:  * sizeof long double=12
[2025-02-05 15:47:38,274 INFO  L153        SettingsManager]:  * Check if freed pointer was valid=false
[2025-02-05 15:47:38,274 INFO  L153        SettingsManager]:  * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR
[2025-02-05 15:47:38,274 INFO  L153        SettingsManager]:  * Use constant arrays=true
[2025-02-05 15:47:38,274 INFO  L151        SettingsManager]: Preferences of IcfgBuilder differ from their defaults:
[2025-02-05 15:47:38,274 INFO  L153        SettingsManager]:  * Size of a code block=SequenceOfStatements
[2025-02-05 15:47:38,275 INFO  L153        SettingsManager]:  * Only consider context switches at boundaries of atomic blocks=true
[2025-02-05 15:47:38,275 INFO  L153        SettingsManager]:  * SMT solver=External_DefaultMode
[2025-02-05 15:47:38,275 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2025-02-05 15:47:38,275 INFO  L151        SettingsManager]: Preferences of TraceAbstraction differ from their defaults:
[2025-02-05 15:47:38,275 INFO  L153        SettingsManager]:  * Compute Interpolants along a Counterexample=FPandBP
[2025-02-05 15:47:38,275 INFO  L153        SettingsManager]:  * Compute procedure contracts=false
[2025-02-05 15:47:38,275 INFO  L153        SettingsManager]:  * Positions where we compute the Hoare Annotation=LoopHeads
[2025-02-05 15:47:38,276 INFO  L153        SettingsManager]:  * Trace refinement strategy=CAMEL
[2025-02-05 15:47:38,276 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in
[2025-02-05 15:47:38,276 INFO  L153        SettingsManager]:  * Apply one-shot large block encoding in concurrent analysis=false
[2025-02-05 15:47:38,276 INFO  L153        SettingsManager]:  * Automaton type used in concurrency analysis=PETRI_NET
[2025-02-05 15:47:38,276 INFO  L153        SettingsManager]:  * Order on configurations for Petri net unfoldings=DBO
[2025-02-05 15:47:38,276 INFO  L153        SettingsManager]:  * SMT solver=External_ModelsAndUnsatCoreMode
[2025-02-05 15:47:38,276 INFO  L153        SettingsManager]:  * Looper check in Petri net analysis=SEMANTIC
Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) )


Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 5f7b52dfa978a30892cebb35c28a84cc12db47d20591a31b18d58060a0678455
[2025-02-05 15:47:38,527 INFO  L75    nceAwareModelManager]: Repository-Root is: /tmp
[2025-02-05 15:47:38,535 INFO  L261   ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized
[2025-02-05 15:47:38,537 INFO  L217   ainManager$Toolchain]: [Toolchain 1]: Toolchain selected.
[2025-02-05 15:47:38,538 INFO  L270        PluginConnector]: Initializing CDTParser...
[2025-02-05 15:47:38,538 INFO  L274        PluginConnector]: CDTParser initialized
[2025-02-05 15:47:38,540 INFO  L431   ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/email_spec7_product34.cil.c
[2025-02-05 15:47:39,894 INFO  L533              CDTParser]: Created temporary CDT project at /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/data/226953072/dd81a01ced0243988bdeae6310089d98/FLAGcc467333c
[2025-02-05 15:47:40,434 INFO  L384              CDTParser]: Found 1 translation units.
[2025-02-05 15:47:40,434 INFO  L180              CDTParser]: Scanning /storage/repos/ultimate-jdk21/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec7_product34.cil.c
[2025-02-05 15:47:40,474 INFO  L427              CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/data/226953072/dd81a01ced0243988bdeae6310089d98/FLAGcc467333c
[2025-02-05 15:47:40,492 INFO  L435              CDTParser]: Successfully deleted /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/data/226953072/dd81a01ced0243988bdeae6310089d98
[2025-02-05 15:47:40,494 INFO  L299   ainManager$Toolchain]: ####################### [Toolchain 1] #######################
[2025-02-05 15:47:40,495 INFO  L133        ToolchainWalker]: Walking toolchain with 6 elements.
[2025-02-05 15:47:40,497 INFO  L112        PluginConnector]: ------------------------CACSL2BoogieTranslator----------------------------
[2025-02-05 15:47:40,498 INFO  L270        PluginConnector]: Initializing CACSL2BoogieTranslator...
[2025-02-05 15:47:40,503 INFO  L274        PluginConnector]: CACSL2BoogieTranslator initialized
[2025-02-05 15:47:40,504 INFO  L184        PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 05.02 03:47:40" (1/1) ...
[2025-02-05 15:47:40,505 INFO  L204        PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@30c7e046 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:40, skipping insertion in model container
[2025-02-05 15:47:40,505 INFO  L184        PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 05.02 03:47:40" (1/1) ...
[2025-02-05 15:47:40,551 INFO  L175         MainTranslator]: Built tables and reachable declarations
[2025-02-05 15:47:40,803 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate-jdk21/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec7_product34.cil.c[10988,11001]
[2025-02-05 15:47:40,990 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2025-02-05 15:47:41,005 INFO  L200         MainTranslator]: Completed pre-run
[2025-02-05 15:47:41,012 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [48]
[2025-02-05 15:47:41,013 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Email.i","") [380]
[2025-02-05 15:47:41,013 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EncryptVerify_spec.i","") [528]
[2025-02-05 15:47:41,013 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [547]
[2025-02-05 15:47:41,013 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [556]
[2025-02-05 15:47:41,013 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EmailLib.i","") [922]
[2025-02-05 15:47:41,013 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [1324]
[2025-02-05 15:47:41,014 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"ClientLib.i","") [1359]
[2025-02-05 15:47:41,014 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Util.i","") [2428]
[2025-02-05 15:47:41,014 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Client.i","") [2445]
[2025-02-05 15:47:41,015 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [2842]
[2025-02-05 15:47:41,032 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate-jdk21/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec7_product34.cil.c[10988,11001]
[2025-02-05 15:47:41,098 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2025-02-05 15:47:41,131 INFO  L204         MainTranslator]: Completed translation
[2025-02-05 15:47:41,132 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41 WrapperNode
[2025-02-05 15:47:41,133 INFO  L131        PluginConnector]: ------------------------ END CACSL2BoogieTranslator----------------------------
[2025-02-05 15:47:41,134 INFO  L112        PluginConnector]: ------------------------Boogie Procedure Inliner----------------------------
[2025-02-05 15:47:41,135 INFO  L270        PluginConnector]: Initializing Boogie Procedure Inliner...
[2025-02-05 15:47:41,135 INFO  L274        PluginConnector]: Boogie Procedure Inliner initialized
[2025-02-05 15:47:41,141 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,163 INFO  L184        PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,202 INFO  L138                Inliner]: procedures = 134, calls = 218, calls flagged for inlining = 62, calls inlined = 59, statements flattened = 1089
[2025-02-05 15:47:41,203 INFO  L131        PluginConnector]: ------------------------ END Boogie Procedure Inliner----------------------------
[2025-02-05 15:47:41,203 INFO  L112        PluginConnector]: ------------------------Boogie Preprocessor----------------------------
[2025-02-05 15:47:41,203 INFO  L270        PluginConnector]: Initializing Boogie Preprocessor...
[2025-02-05 15:47:41,203 INFO  L274        PluginConnector]: Boogie Preprocessor initialized
[2025-02-05 15:47:41,211 INFO  L184        PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,211 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,219 INFO  L184        PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,243 INFO  L175           MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 4, 4, 4]. 29 percent of accesses are in the largest equivalence class. The 14 initializations are split as follows [2, 4, 4, 4]. The 0 writes are split as follows [0, 0, 0, 0].
[2025-02-05 15:47:41,246 INFO  L184        PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,246 INFO  L184        PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,257 INFO  L184        PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,261 INFO  L184        PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,263 INFO  L184        PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,269 INFO  L184        PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,275 INFO  L131        PluginConnector]: ------------------------ END Boogie Preprocessor----------------------------
[2025-02-05 15:47:41,276 INFO  L112        PluginConnector]: ------------------------IcfgBuilder----------------------------
[2025-02-05 15:47:41,276 INFO  L270        PluginConnector]: Initializing IcfgBuilder...
[2025-02-05 15:47:41,276 INFO  L274        PluginConnector]: IcfgBuilder initialized
[2025-02-05 15:47:41,277 INFO  L184        PluginConnector]: Executing the observer IcfgBuilderObserver from plugin IcfgBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (1/1) ...
[2025-02-05 15:47:41,280 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2025-02-05 15:47:41,292 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3
[2025-02-05 15:47:41,304 INFO  L229       MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null)
[2025-02-05 15:47:41,306 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process
[2025-02-05 15:47:41,324 INFO  L130     BoogieDeclarations]: Found specification of procedure getClientPrivateKey
[2025-02-05 15:47:41,324 INFO  L138     BoogieDeclarations]: Found implementation of procedure getClientPrivateKey
[2025-02-05 15:47:41,325 INFO  L130     BoogieDeclarations]: Found specification of procedure getClientAddressBookSize
[2025-02-05 15:47:41,325 INFO  L138     BoogieDeclarations]: Found implementation of procedure getClientAddressBookSize
[2025-02-05 15:47:41,325 INFO  L130     BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey
[2025-02-05 15:47:41,325 INFO  L138     BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey
[2025-02-05 15:47:41,325 INFO  L130     BoogieDeclarations]: Found specification of procedure setClientAddressBookAddress
[2025-02-05 15:47:41,325 INFO  L138     BoogieDeclarations]: Found implementation of procedure setClientAddressBookAddress
[2025-02-05 15:47:41,325 INFO  L130     BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey
[2025-02-05 15:47:41,325 INFO  L138     BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey
[2025-02-05 15:47:41,325 INFO  L130     BoogieDeclarations]: Found specification of procedure getEmailTo
[2025-02-05 15:47:41,325 INFO  L138     BoogieDeclarations]: Found implementation of procedure getEmailTo
[2025-02-05 15:47:41,326 INFO  L130     BoogieDeclarations]: Found specification of procedure setEmailFrom
[2025-02-05 15:47:41,326 INFO  L138     BoogieDeclarations]: Found implementation of procedure setEmailFrom
[2025-02-05 15:47:41,326 INFO  L130     BoogieDeclarations]: Found specification of procedure isReadable
[2025-02-05 15:47:41,326 INFO  L138     BoogieDeclarations]: Found implementation of procedure isReadable
[2025-02-05 15:47:41,326 INFO  L130     BoogieDeclarations]: Found specification of procedure createClientKeyringEntry
[2025-02-05 15:47:41,326 INFO  L138     BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry
[2025-02-05 15:47:41,326 INFO  L130     BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted
[2025-02-05 15:47:41,326 INFO  L138     BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted
[2025-02-05 15:47:41,326 INFO  L130     BoogieDeclarations]: Found specification of procedure getEmailSignKey
[2025-02-05 15:47:41,326 INFO  L138     BoogieDeclarations]: Found implementation of procedure getEmailSignKey
[2025-02-05 15:47:41,326 INFO  L130     BoogieDeclarations]: Found specification of procedure chuckKeyAdd
[2025-02-05 15:47:41,326 INFO  L138     BoogieDeclarations]: Found implementation of procedure chuckKeyAdd
[2025-02-05 15:47:41,326 INFO  L130     BoogieDeclarations]: Found specification of procedure getEmailFrom
[2025-02-05 15:47:41,326 INFO  L138     BoogieDeclarations]: Found implementation of procedure getEmailFrom
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure setClientId
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure setClientId
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure isSigned
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure isSigned
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure isKeyPairValid
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure isKeyPairValid
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure setClientAddressBookSize
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure setClientAddressBookSize
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure setClientKeyringUser
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure setClientKeyringUser
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure outgoing
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure outgoing
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure outgoing__wrappee__Encrypt
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure outgoing__wrappee__Encrypt
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure findPublicKey
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure findPublicKey
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure sendEmail
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure sendEmail
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure isEncrypted
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure isEncrypted
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure setClientPrivateKey
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure setClientPrivateKey
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure setEmailTo
[2025-02-05 15:47:41,327 INFO  L138     BoogieDeclarations]: Found implementation of procedure setEmailTo
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure write~init~int#0
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure write~init~int#1
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure write~init~int#2
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure write~init~int#3
[2025-02-05 15:47:41,327 INFO  L130     BoogieDeclarations]: Found specification of procedure generateKeyPair
[2025-02-05 15:47:41,328 INFO  L138     BoogieDeclarations]: Found implementation of procedure generateKeyPair
[2025-02-05 15:47:41,328 INFO  L130     BoogieDeclarations]: Found specification of procedure getClientAddressBookAddress
[2025-02-05 15:47:41,328 INFO  L138     BoogieDeclarations]: Found implementation of procedure getClientAddressBookAddress
[2025-02-05 15:47:41,328 INFO  L130     BoogieDeclarations]: Found specification of procedure ULTIMATE.start
[2025-02-05 15:47:41,328 INFO  L138     BoogieDeclarations]: Found implementation of procedure ULTIMATE.start
[2025-02-05 15:47:41,515 INFO  L257             CfgBuilder]: Building ICFG
[2025-02-05 15:47:41,517 INFO  L287             CfgBuilder]: Building CFG for each procedure with an implementation
[2025-02-05 15:47:41,612 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L1231: #res := ~retValue_acc~16;
[2025-02-05 15:47:41,626 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L2738: #res := ~retValue_acc~43;
[2025-02-05 15:47:41,671 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L2017-1: getClientKeyringSize_#res#1 := getClientKeyringSize_~retValue_acc~31#1;
[2025-02-05 15:47:41,671 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L2062: #res#1 := ~retValue_acc~32#1;
[2025-02-05 15:47:41,944 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L2358-1: getClientForwardReceiver_#res#1 := getClientForwardReceiver_~retValue_acc~36#1;
[2025-02-05 15:47:41,948 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L1305-1: isVerified_#res#1 := isVerified_~retValue_acc~18#1;
[2025-02-05 15:47:41,948 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L968-1: getEmailId_#res#1 := getEmailId_~retValue_acc~9#1;
[2025-02-05 15:47:41,948 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L2405-1: getClientId_#res#1 := getClientId_~retValue_acc~37#1;
[2025-02-05 15:47:41,981 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L2286: #res := ~retValue_acc~35;
[2025-02-05 15:47:41,989 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L1970: #res := ~retValue_acc~30;
[2025-02-05 15:47:41,999 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L525-1: createEmail_#res#1 := createEmail_~retValue_acc~4#1;
[2025-02-05 15:47:42,011 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L1514: #res := ~retValue_acc~24;
[2025-02-05 15:47:42,023 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L1157: #res := ~retValue_acc~14;
[2025-02-05 15:47:42,060 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L1194: #res := ~retValue_acc~15;
[2025-02-05 15:47:42,067 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L1268: #res := ~retValue_acc~17;
[2025-02-05 15:47:42,108 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L1042: #res := ~retValue_acc~11;
[2025-02-05 15:47:42,158 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L1840: #res := ~retValue_acc~28;
[2025-02-05 15:47:42,373 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L2232-1: getClientKeyringPublicKey_#res#1 := getClientKeyringPublicKey_~retValue_acc~34#1;
[2025-02-05 15:47:42,373 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L2695-1: is_queue_empty_#res#1 := is_queue_empty_~retValue_acc~40#1;
[2025-02-05 15:47:42,373 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L2713-1: get_queued_email_#res#1 := get_queued_email_~retValue_acc~42#1;
[2025-02-05 15:47:42,373 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L2125-1: getClientKeyringUser_#res#1 := getClientKeyringUser_~retValue_acc~33#1;
[2025-02-05 15:47:42,373 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L2704-1: get_queued_client_#res#1 := get_queued_client_~retValue_acc~41#1;
[2025-02-05 15:47:42,374 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L1356-1: valid_product_#res#1 := valid_product_~retValue_acc~20#1;
[2025-02-05 15:47:42,379 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L1005: #res := ~retValue_acc~10;
[2025-02-05 15:47:42,386 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L481-1: isReadable__wrappee__Keys_#res#1 := isReadable__wrappee__Keys_~retValue_acc~1#1;
[2025-02-05 15:47:42,387 INFO  L1309  $ProcedureCfgBuilder]: dead code at ProgramPoint L501: #res#1 := ~retValue_acc~2#1;
[2025-02-05 15:47:42,511 INFO  L?                        ?]: Removed 580 outVars from TransFormulas that were not future-live.
[2025-02-05 15:47:42,511 INFO  L308             CfgBuilder]: Performing block encoding
[2025-02-05 15:47:42,533 INFO  L332             CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start)
[2025-02-05 15:47:42,533 INFO  L337             CfgBuilder]: Removed 0 assume(true) statements.
[2025-02-05 15:47:42,534 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 05.02 03:47:42 BoogieIcfgContainer
[2025-02-05 15:47:42,534 INFO  L131        PluginConnector]: ------------------------ END IcfgBuilder----------------------------
[2025-02-05 15:47:42,539 INFO  L112        PluginConnector]: ------------------------TraceAbstraction----------------------------
[2025-02-05 15:47:42,539 INFO  L270        PluginConnector]: Initializing TraceAbstraction...
[2025-02-05 15:47:42,543 INFO  L274        PluginConnector]: TraceAbstraction initialized
[2025-02-05 15:47:42,543 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 05.02 03:47:40" (1/3) ...
[2025-02-05 15:47:42,544 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@290edc56 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 05.02 03:47:42, skipping insertion in model container
[2025-02-05 15:47:42,544 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 05.02 03:47:41" (2/3) ...
[2025-02-05 15:47:42,544 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@290edc56 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 05.02 03:47:42, skipping insertion in model container
[2025-02-05 15:47:42,544 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 05.02 03:47:42" (3/3) ...
[2025-02-05 15:47:42,545 INFO  L128   eAbstractionObserver]: Analyzing ICFG email_spec7_product34.cil.c
[2025-02-05 15:47:42,558 INFO  L216   ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION
[2025-02-05 15:47:42,562 INFO  L151   ceAbstractionStarter]: Applying trace abstraction to ICFG email_spec7_product34.cil.c that has 29 procedures, 443 locations, 1 initial locations, 1 loop locations, and 1 error locations.
[2025-02-05 15:47:42,648 INFO  L332      AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ========
[2025-02-05 15:47:42,657 INFO  L333      AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@58ea3a90, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms]
[2025-02-05 15:47:42,658 INFO  L334      AbstractCegarLoop]: Starting to check reachability of 1 error locations.
[2025-02-05 15:47:42,663 INFO  L276                IsEmpty]: Start isEmpty. Operand  has 443 states, 343 states have (on average 1.5364431486880465) internal successors, (527), 348 states have internal predecessors, (527), 70 states have call successors, (70), 28 states have call predecessors, (70), 28 states have return successors, (70), 69 states have call predecessors, (70), 70 states have call successors, (70)
[2025-02-05 15:47:42,678 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 130
[2025-02-05 15:47:42,679 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:42,679 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:42,680 INFO  L396      AbstractCegarLoop]: === Iteration 1 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:42,683 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:42,684 INFO  L85        PathProgramCache]: Analyzing trace with hash -364269687, now seen corresponding path program 1 times
[2025-02-05 15:47:42,688 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:42,689 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1928103343]
[2025-02-05 15:47:42,689 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:42,689 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:42,779 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 129 statements into 1 equivalence classes.
[2025-02-05 15:47:42,836 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 129 of 129 statements.
[2025-02-05 15:47:42,840 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:42,840 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:43,303 INFO  L134       CoverageAnalysis]: Checked inductivity of 36 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked.
[2025-02-05 15:47:43,303 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:43,303 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1928103343]
[2025-02-05 15:47:43,305 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1928103343] provided 0 perfect and 1 imperfect interpolant sequences
[2025-02-05 15:47:43,306 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1369024448]
[2025-02-05 15:47:43,306 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:43,306 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true
[2025-02-05 15:47:43,306 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3
[2025-02-05 15:47:43,308 INFO  L229       MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null)
[2025-02-05 15:47:43,310 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process
[2025-02-05 15:47:43,502 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 129 statements into 1 equivalence classes.
[2025-02-05 15:47:43,622 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 129 of 129 statements.
[2025-02-05 15:47:43,622 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:43,622 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:43,628 INFO  L256         TraceCheckSpWp]: Trace formula consists of 1167 conjuncts, 1 conjuncts are in the unsatisfiable core
[2025-02-05 15:47:43,634 INFO  L279         TraceCheckSpWp]: Computing forward predicates...
[2025-02-05 15:47:43,649 INFO  L134       CoverageAnalysis]: Checked inductivity of 36 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked.
[2025-02-05 15:47:43,649 INFO  L308         TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect
[2025-02-05 15:47:43,650 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleZ3 [1369024448] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:43,650 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences.
[2025-02-05 15:47:43,650 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [5] total 5
[2025-02-05 15:47:43,652 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1413757326]
[2025-02-05 15:47:43,652 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:43,655 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 2 states
[2025-02-05 15:47:43,655 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:43,671 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants.
[2025-02-05 15:47:43,671 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20
[2025-02-05 15:47:43,674 INFO  L87              Difference]: Start difference. First operand  has 443 states, 343 states have (on average 1.5364431486880465) internal successors, (527), 348 states have internal predecessors, (527), 70 states have call successors, (70), 28 states have call predecessors, (70), 28 states have return successors, (70), 69 states have call predecessors, (70), 70 states have call successors, (70) Second operand  has 2 states, 2 states have (on average 35.5) internal successors, (71), 2 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17)
[2025-02-05 15:47:43,720 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:43,721 INFO  L93              Difference]: Finished difference Result 694 states and 1026 transitions.
[2025-02-05 15:47:43,725 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. 
[2025-02-05 15:47:43,726 INFO  L78                 Accepts]: Start accepts. Automaton has  has 2 states, 2 states have (on average 35.5) internal successors, (71), 2 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 129
[2025-02-05 15:47:43,726 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:43,744 INFO  L225             Difference]: With dead ends: 694
[2025-02-05 15:47:43,744 INFO  L226             Difference]: Without dead ends: 436
[2025-02-05 15:47:43,751 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 133 GetRequests, 130 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20
[2025-02-05 15:47:43,753 INFO  L435           NwaCegarLoop]: 664 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 664 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:43,754 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 664 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:43,765 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 436 states.
[2025-02-05 15:47:43,813 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 436 to 436.
[2025-02-05 15:47:43,815 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 436 states, 337 states have (on average 1.5341246290801187) internal successors, (517), 341 states have internal predecessors, (517), 70 states have call successors, (70), 28 states have call predecessors, (70), 28 states have return successors, (69), 68 states have call predecessors, (69), 69 states have call successors, (69)
[2025-02-05 15:47:43,823 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 436 states to 436 states and 656 transitions.
[2025-02-05 15:47:43,825 INFO  L78                 Accepts]: Start accepts. Automaton has 436 states and 656 transitions. Word has length 129
[2025-02-05 15:47:43,825 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:43,826 INFO  L471      AbstractCegarLoop]: Abstraction has 436 states and 656 transitions.
[2025-02-05 15:47:43,826 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 2 states, 2 states have (on average 35.5) internal successors, (71), 2 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17)
[2025-02-05 15:47:43,826 INFO  L276                IsEmpty]: Start isEmpty. Operand 436 states and 656 transitions.
[2025-02-05 15:47:43,834 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 150
[2025-02-05 15:47:43,834 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:43,834 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:43,843 INFO  L552       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0
[2025-02-05 15:47:44,035 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable0
[2025-02-05 15:47:44,037 INFO  L396      AbstractCegarLoop]: === Iteration 2 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:44,037 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:44,037 INFO  L85        PathProgramCache]: Analyzing trace with hash 891773171, now seen corresponding path program 1 times
[2025-02-05 15:47:44,037 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:44,037 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1996825761]
[2025-02-05 15:47:44,037 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:44,037 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:44,076 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 149 statements into 1 equivalence classes.
[2025-02-05 15:47:44,086 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 149 of 149 statements.
[2025-02-05 15:47:44,086 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:44,086 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:44,338 INFO  L134       CoverageAnalysis]: Checked inductivity of 48 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 42 trivial. 0 not checked.
[2025-02-05 15:47:44,339 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:44,343 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1996825761]
[2025-02-05 15:47:44,348 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1996825761] provided 0 perfect and 1 imperfect interpolant sequences
[2025-02-05 15:47:44,349 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [128516185]
[2025-02-05 15:47:44,349 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:44,349 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true
[2025-02-05 15:47:44,349 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3
[2025-02-05 15:47:44,355 INFO  L229       MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null)
[2025-02-05 15:47:44,357 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process
[2025-02-05 15:47:44,599 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 149 statements into 1 equivalence classes.
[2025-02-05 15:47:44,744 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 149 of 149 statements.
[2025-02-05 15:47:44,745 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:44,745 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:44,750 INFO  L256         TraceCheckSpWp]: Trace formula consists of 1246 conjuncts, 2 conjuncts are in the unsatisfiable core
[2025-02-05 15:47:44,764 INFO  L279         TraceCheckSpWp]: Computing forward predicates...
[2025-02-05 15:47:44,799 INFO  L134       CoverageAnalysis]: Checked inductivity of 48 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked.
[2025-02-05 15:47:44,799 INFO  L308         TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect
[2025-02-05 15:47:44,799 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleZ3 [128516185] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:44,799 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences.
[2025-02-05 15:47:44,799 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6
[2025-02-05 15:47:44,799 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [839282588]
[2025-02-05 15:47:44,799 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:44,800 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:47:44,800 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:44,804 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:47:44,806 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30
[2025-02-05 15:47:44,807 INFO  L87              Difference]: Start difference. First operand 436 states and 656 transitions. Second operand  has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 2 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:47:44,876 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:44,876 INFO  L93              Difference]: Finished difference Result 683 states and 1004 transitions.
[2025-02-05 15:47:44,891 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:47:44,894 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 2 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 149
[2025-02-05 15:47:44,894 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:44,897 INFO  L225             Difference]: With dead ends: 683
[2025-02-05 15:47:44,897 INFO  L226             Difference]: Without dead ends: 438
[2025-02-05 15:47:44,901 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 153 GetRequests, 149 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30
[2025-02-05 15:47:44,905 INFO  L435           NwaCegarLoop]: 655 mSDtfsCounter, 0 mSDsluCounter, 653 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 1308 SdHoareTripleChecker+Invalid, 3 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:44,906 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 1308 Invalid, 3 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:44,907 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 438 states.
[2025-02-05 15:47:44,971 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 438 to 438.
[2025-02-05 15:47:44,972 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 438 states, 339 states have (on average 1.5309734513274336) internal successors, (519), 343 states have internal predecessors, (519), 70 states have call successors, (70), 28 states have call predecessors, (70), 28 states have return successors, (69), 68 states have call predecessors, (69), 69 states have call successors, (69)
[2025-02-05 15:47:44,975 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 438 states to 438 states and 658 transitions.
[2025-02-05 15:47:44,975 INFO  L78                 Accepts]: Start accepts. Automaton has 438 states and 658 transitions. Word has length 149
[2025-02-05 15:47:44,975 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:44,976 INFO  L471      AbstractCegarLoop]: Abstraction has 438 states and 658 transitions.
[2025-02-05 15:47:44,976 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 2 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:47:44,976 INFO  L276                IsEmpty]: Start isEmpty. Operand 438 states and 658 transitions.
[2025-02-05 15:47:44,991 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 136
[2025-02-05 15:47:44,991 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:44,991 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:45,008 INFO  L552       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0
[2025-02-05 15:47:45,196 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,3 /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true
[2025-02-05 15:47:45,196 INFO  L396      AbstractCegarLoop]: === Iteration 3 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:45,197 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:45,197 INFO  L85        PathProgramCache]: Analyzing trace with hash -1210505100, now seen corresponding path program 1 times
[2025-02-05 15:47:45,197 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:45,197 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1736479544]
[2025-02-05 15:47:45,197 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:45,197 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:45,266 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 135 statements into 1 equivalence classes.
[2025-02-05 15:47:45,299 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 135 of 135 statements.
[2025-02-05 15:47:45,302 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:45,302 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:45,501 INFO  L134       CoverageAnalysis]: Checked inductivity of 38 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 32 trivial. 0 not checked.
[2025-02-05 15:47:45,501 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:45,501 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1736479544]
[2025-02-05 15:47:45,501 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1736479544] provided 0 perfect and 1 imperfect interpolant sequences
[2025-02-05 15:47:45,501 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [493265025]
[2025-02-05 15:47:45,501 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:45,501 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true
[2025-02-05 15:47:45,502 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3
[2025-02-05 15:47:45,523 INFO  L229       MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null)
[2025-02-05 15:47:45,524 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process
[2025-02-05 15:47:45,783 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 135 statements into 1 equivalence classes.
[2025-02-05 15:47:45,933 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 135 of 135 statements.
[2025-02-05 15:47:45,934 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:45,934 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:45,939 INFO  L256         TraceCheckSpWp]: Trace formula consists of 1180 conjuncts, 3 conjuncts are in the unsatisfiable core
[2025-02-05 15:47:45,945 INFO  L279         TraceCheckSpWp]: Computing forward predicates...
[2025-02-05 15:47:45,964 INFO  L134       CoverageAnalysis]: Checked inductivity of 38 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked.
[2025-02-05 15:47:45,964 INFO  L308         TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect
[2025-02-05 15:47:45,964 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleZ3 [493265025] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:45,964 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences.
[2025-02-05 15:47:45,964 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6
[2025-02-05 15:47:45,964 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [730189023]
[2025-02-05 15:47:45,964 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:45,965 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:47:45,965 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:45,965 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:47:45,965 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30
[2025-02-05 15:47:45,965 INFO  L87              Difference]: Start difference. First operand 438 states and 658 transitions. Second operand  has 3 states, 3 states have (on average 25.666666666666668) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17)
[2025-02-05 15:47:46,009 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:46,010 INFO  L93              Difference]: Finished difference Result 923 states and 1407 transitions.
[2025-02-05 15:47:46,011 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:47:46,011 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 25.666666666666668) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 135
[2025-02-05 15:47:46,012 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:46,015 INFO  L225             Difference]: With dead ends: 923
[2025-02-05 15:47:46,016 INFO  L226             Difference]: Without dead ends: 512
[2025-02-05 15:47:46,018 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 139 GetRequests, 135 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30
[2025-02-05 15:47:46,019 INFO  L435           NwaCegarLoop]: 665 mSDtfsCounter, 134 mSDsluCounter, 610 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 152 SdHoareTripleChecker+Valid, 1275 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:46,019 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [152 Valid, 1275 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:46,020 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 512 states.
[2025-02-05 15:47:46,038 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 512 to 504.
[2025-02-05 15:47:46,039 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 504 states, 391 states have (on average 1.5524296675191815) internal successors, (607), 395 states have internal predecessors, (607), 84 states have call successors, (84), 28 states have call predecessors, (84), 28 states have return successors, (83), 82 states have call predecessors, (83), 83 states have call successors, (83)
[2025-02-05 15:47:46,042 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 504 states to 504 states and 774 transitions.
[2025-02-05 15:47:46,043 INFO  L78                 Accepts]: Start accepts. Automaton has 504 states and 774 transitions. Word has length 135
[2025-02-05 15:47:46,043 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:46,043 INFO  L471      AbstractCegarLoop]: Abstraction has 504 states and 774 transitions.
[2025-02-05 15:47:46,044 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 25.666666666666668) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17)
[2025-02-05 15:47:46,044 INFO  L276                IsEmpty]: Start isEmpty. Operand 504 states and 774 transitions.
[2025-02-05 15:47:46,046 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 156
[2025-02-05 15:47:46,046 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:46,046 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:46,054 INFO  L540       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0
[2025-02-05 15:47:46,246 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,4 /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true
[2025-02-05 15:47:46,247 INFO  L396      AbstractCegarLoop]: === Iteration 4 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:46,247 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:46,247 INFO  L85        PathProgramCache]: Analyzing trace with hash 223628014, now seen corresponding path program 1 times
[2025-02-05 15:47:46,247 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:46,247 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1779045457]
[2025-02-05 15:47:46,247 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:46,248 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:46,274 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 155 statements into 1 equivalence classes.
[2025-02-05 15:47:46,283 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 155 of 155 statements.
[2025-02-05 15:47:46,283 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:46,283 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:46,442 INFO  L134       CoverageAnalysis]: Checked inductivity of 50 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 44 trivial. 0 not checked.
[2025-02-05 15:47:46,442 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:46,442 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1779045457]
[2025-02-05 15:47:46,442 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1779045457] provided 0 perfect and 1 imperfect interpolant sequences
[2025-02-05 15:47:46,443 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1151010652]
[2025-02-05 15:47:46,443 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:46,443 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true
[2025-02-05 15:47:46,443 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3
[2025-02-05 15:47:46,445 INFO  L229       MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null)
[2025-02-05 15:47:46,447 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process
[2025-02-05 15:47:46,637 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 155 statements into 1 equivalence classes.
[2025-02-05 15:47:46,768 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 155 of 155 statements.
[2025-02-05 15:47:46,768 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:46,768 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:46,781 INFO  L256         TraceCheckSpWp]: Trace formula consists of 1263 conjuncts, 8 conjuncts are in the unsatisfiable core
[2025-02-05 15:47:46,789 INFO  L279         TraceCheckSpWp]: Computing forward predicates...
[2025-02-05 15:47:46,859 INFO  L134       CoverageAnalysis]: Checked inductivity of 50 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked.
[2025-02-05 15:47:46,859 INFO  L308         TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect
[2025-02-05 15:47:46,859 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleZ3 [1151010652] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:46,860 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences.
[2025-02-05 15:47:46,860 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [5] total 8
[2025-02-05 15:47:46,860 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1455432418]
[2025-02-05 15:47:46,860 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:46,860 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 5 states
[2025-02-05 15:47:46,860 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:46,861 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants.
[2025-02-05 15:47:46,861 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56
[2025-02-05 15:47:46,861 INFO  L87              Difference]: Start difference. First operand 504 states and 774 transitions. Second operand  has 5 states, 4 states have (on average 23.25) internal successors, (93), 5 states have internal predecessors, (93), 3 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20)
[2025-02-05 15:47:46,929 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:46,930 INFO  L93              Difference]: Finished difference Result 999 states and 1538 transitions.
[2025-02-05 15:47:46,930 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. 
[2025-02-05 15:47:46,930 INFO  L78                 Accepts]: Start accepts. Automaton has  has 5 states, 4 states have (on average 23.25) internal successors, (93), 5 states have internal predecessors, (93), 3 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20) Word has length 155
[2025-02-05 15:47:46,930 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:46,933 INFO  L225             Difference]: With dead ends: 999
[2025-02-05 15:47:46,933 INFO  L226             Difference]: Without dead ends: 506
[2025-02-05 15:47:46,935 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 159 GetRequests, 153 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56
[2025-02-05 15:47:46,935 INFO  L435           NwaCegarLoop]: 648 mSDtfsCounter, 2 mSDsluCounter, 1933 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2581 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:46,935 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2581 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:46,936 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 506 states.
[2025-02-05 15:47:46,950 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 506 to 506.
[2025-02-05 15:47:46,952 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 506 states, 392 states have (on average 1.5510204081632653) internal successors, (608), 397 states have internal predecessors, (608), 84 states have call successors, (84), 28 states have call predecessors, (84), 29 states have return successors, (85), 82 states have call predecessors, (85), 83 states have call successors, (85)
[2025-02-05 15:47:46,955 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 506 states to 506 states and 777 transitions.
[2025-02-05 15:47:46,956 INFO  L78                 Accepts]: Start accepts. Automaton has 506 states and 777 transitions. Word has length 155
[2025-02-05 15:47:46,956 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:46,956 INFO  L471      AbstractCegarLoop]: Abstraction has 506 states and 777 transitions.
[2025-02-05 15:47:46,956 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 5 states, 4 states have (on average 23.25) internal successors, (93), 5 states have internal predecessors, (93), 3 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20)
[2025-02-05 15:47:46,956 INFO  L276                IsEmpty]: Start isEmpty. Operand 506 states and 777 transitions.
[2025-02-05 15:47:46,959 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 138
[2025-02-05 15:47:46,959 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:46,959 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:46,967 INFO  L540       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0
[2025-02-05 15:47:47,164 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,5 /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true
[2025-02-05 15:47:47,164 INFO  L396      AbstractCegarLoop]: === Iteration 5 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:47,165 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:47,165 INFO  L85        PathProgramCache]: Analyzing trace with hash 618115982, now seen corresponding path program 1 times
[2025-02-05 15:47:47,165 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:47,166 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [298808898]
[2025-02-05 15:47:47,166 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:47,166 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:47,372 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 137 statements into 1 equivalence classes.
[2025-02-05 15:47:47,382 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 137 of 137 statements.
[2025-02-05 15:47:47,382 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:47,382 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:47,534 INFO  L134       CoverageAnalysis]: Checked inductivity of 38 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 26 trivial. 0 not checked.
[2025-02-05 15:47:47,535 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:47,535 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [298808898]
[2025-02-05 15:47:47,535 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [298808898] provided 0 perfect and 1 imperfect interpolant sequences
[2025-02-05 15:47:47,535 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [877099002]
[2025-02-05 15:47:47,535 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:47,535 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true
[2025-02-05 15:47:47,535 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3
[2025-02-05 15:47:47,538 INFO  L229       MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null)
[2025-02-05 15:47:47,539 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process
[2025-02-05 15:47:47,679 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 137 statements into 1 equivalence classes.
[2025-02-05 15:47:47,834 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 137 of 137 statements.
[2025-02-05 15:47:47,835 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:47,835 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:47,850 INFO  L256         TraceCheckSpWp]: Trace formula consists of 1186 conjuncts, 6 conjuncts are in the unsatisfiable core
[2025-02-05 15:47:47,853 INFO  L279         TraceCheckSpWp]: Computing forward predicates...
[2025-02-05 15:47:47,925 INFO  L134       CoverageAnalysis]: Checked inductivity of 38 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 19 trivial. 0 not checked.
[2025-02-05 15:47:47,926 INFO  L308         TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect
[2025-02-05 15:47:47,926 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleZ3 [877099002] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:47,926 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences.
[2025-02-05 15:47:47,927 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [8] total 11
[2025-02-05 15:47:47,927 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [313131216]
[2025-02-05 15:47:47,927 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:47,929 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 5 states
[2025-02-05 15:47:47,929 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:47,929 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants.
[2025-02-05 15:47:47,931 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110
[2025-02-05 15:47:47,931 INFO  L87              Difference]: Start difference. First operand 506 states and 777 transitions. Second operand  has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17)
[2025-02-05 15:47:48,017 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:48,017 INFO  L93              Difference]: Finished difference Result 1001 states and 1543 transitions.
[2025-02-05 15:47:48,017 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. 
[2025-02-05 15:47:48,018 INFO  L78                 Accepts]: Start accepts. Automaton has  has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17) Word has length 137
[2025-02-05 15:47:48,018 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:48,020 INFO  L225             Difference]: With dead ends: 1001
[2025-02-05 15:47:48,021 INFO  L226             Difference]: Without dead ends: 508
[2025-02-05 15:47:48,022 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 144 GetRequests, 135 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110
[2025-02-05 15:47:48,024 INFO  L435           NwaCegarLoop]: 646 mSDtfsCounter, 2 mSDsluCounter, 1921 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2567 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:48,024 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2567 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:48,026 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 508 states.
[2025-02-05 15:47:48,064 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 508 to 508.
[2025-02-05 15:47:48,065 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 508 states, 393 states have (on average 1.549618320610687) internal successors, (609), 399 states have internal predecessors, (609), 84 states have call successors, (84), 28 states have call predecessors, (84), 30 states have return successors, (90), 82 states have call predecessors, (90), 83 states have call successors, (90)
[2025-02-05 15:47:48,082 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 508 states to 508 states and 783 transitions.
[2025-02-05 15:47:48,082 INFO  L78                 Accepts]: Start accepts. Automaton has 508 states and 783 transitions. Word has length 137
[2025-02-05 15:47:48,083 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:48,083 INFO  L471      AbstractCegarLoop]: Abstraction has 508 states and 783 transitions.
[2025-02-05 15:47:48,083 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17)
[2025-02-05 15:47:48,083 INFO  L276                IsEmpty]: Start isEmpty. Operand 508 states and 783 transitions.
[2025-02-05 15:47:48,085 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 139
[2025-02-05 15:47:48,085 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:48,085 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:48,111 INFO  L552       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0
[2025-02-05 15:47:48,290 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,6 /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true
[2025-02-05 15:47:48,290 INFO  L396      AbstractCegarLoop]: === Iteration 6 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:48,290 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:48,290 INFO  L85        PathProgramCache]: Analyzing trace with hash -1796258920, now seen corresponding path program 1 times
[2025-02-05 15:47:48,290 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:48,290 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1388571081]
[2025-02-05 15:47:48,290 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:48,291 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:48,350 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 138 statements into 1 equivalence classes.
[2025-02-05 15:47:48,357 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 138 of 138 statements.
[2025-02-05 15:47:48,357 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:48,358 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:48,520 INFO  L134       CoverageAnalysis]: Checked inductivity of 38 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 32 trivial. 0 not checked.
[2025-02-05 15:47:48,520 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:48,520 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1388571081]
[2025-02-05 15:47:48,520 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1388571081] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:48,520 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:48,520 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5
[2025-02-05 15:47:48,520 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1514346281]
[2025-02-05 15:47:48,520 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:48,521 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 5 states
[2025-02-05 15:47:48,521 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:48,521 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants.
[2025-02-05 15:47:48,521 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20
[2025-02-05 15:47:48,521 INFO  L87              Difference]: Start difference. First operand 508 states and 783 transitions. Second operand  has 5 states, 4 states have (on average 21.0) internal successors, (84), 5 states have internal predecessors, (84), 3 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17)
[2025-02-05 15:47:48,559 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:48,559 INFO  L93              Difference]: Finished difference Result 993 states and 1534 transitions.
[2025-02-05 15:47:48,559 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. 
[2025-02-05 15:47:48,559 INFO  L78                 Accepts]: Start accepts. Automaton has  has 5 states, 4 states have (on average 21.0) internal successors, (84), 5 states have internal predecessors, (84), 3 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) Word has length 138
[2025-02-05 15:47:48,559 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:48,562 INFO  L225             Difference]: With dead ends: 993
[2025-02-05 15:47:48,562 INFO  L226             Difference]: Without dead ends: 508
[2025-02-05 15:47:48,563 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20
[2025-02-05 15:47:48,563 INFO  L435           NwaCegarLoop]: 649 mSDtfsCounter, 2 mSDsluCounter, 1936 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2585 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:48,564 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2585 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:48,564 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 508 states.
[2025-02-05 15:47:48,574 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 508 to 508.
[2025-02-05 15:47:48,575 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 508 states, 393 states have (on average 1.549618320610687) internal successors, (609), 399 states have internal predecessors, (609), 84 states have call successors, (84), 28 states have call predecessors, (84), 30 states have return successors, (89), 82 states have call predecessors, (89), 83 states have call successors, (89)
[2025-02-05 15:47:48,577 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 508 states to 508 states and 782 transitions.
[2025-02-05 15:47:48,578 INFO  L78                 Accepts]: Start accepts. Automaton has 508 states and 782 transitions. Word has length 138
[2025-02-05 15:47:48,578 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:48,578 INFO  L471      AbstractCegarLoop]: Abstraction has 508 states and 782 transitions.
[2025-02-05 15:47:48,578 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 5 states, 4 states have (on average 21.0) internal successors, (84), 5 states have internal predecessors, (84), 3 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17)
[2025-02-05 15:47:48,578 INFO  L276                IsEmpty]: Start isEmpty. Operand 508 states and 782 transitions.
[2025-02-05 15:47:48,580 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 140
[2025-02-05 15:47:48,580 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:48,580 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:48,580 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5
[2025-02-05 15:47:48,580 INFO  L396      AbstractCegarLoop]: === Iteration 7 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:48,580 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:48,580 INFO  L85        PathProgramCache]: Analyzing trace with hash -93258503, now seen corresponding path program 2 times
[2025-02-05 15:47:48,580 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:48,580 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1903748683]
[2025-02-05 15:47:48,580 INFO  L95    rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1
[2025-02-05 15:47:48,580 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:48,597 INFO  L108    AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 partitioned 139 statements into 2 equivalence classes.
[2025-02-05 15:47:48,602 INFO  L111    AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 issued 1 check-sat command(s) and asserted 59 of 139 statements.
[2025-02-05 15:47:48,602 INFO  L114    AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 issued 1 check-sat command(s)
[2025-02-05 15:47:48,602 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:48,735 INFO  L134       CoverageAnalysis]: Checked inductivity of 39 backedges. 8 proven. 0 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked.
[2025-02-05 15:47:48,735 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:48,735 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1903748683]
[2025-02-05 15:47:48,735 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1903748683] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:48,735 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:48,735 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8
[2025-02-05 15:47:48,735 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1201339423]
[2025-02-05 15:47:48,735 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:48,736 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 8 states
[2025-02-05 15:47:48,736 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:48,736 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants.
[2025-02-05 15:47:48,738 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=14, Invalid=42, Unknown=0, NotChecked=0, Total=56
[2025-02-05 15:47:48,738 INFO  L87              Difference]: Start difference. First operand 508 states and 782 transitions. Second operand  has 8 states, 8 states have (on average 10.75) internal successors, (86), 7 states have internal predecessors, (86), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 4 states have call predecessors, (17), 3 states have call successors, (17)
[2025-02-05 15:47:49,222 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:49,223 INFO  L93              Difference]: Finished difference Result 1390 states and 2111 transitions.
[2025-02-05 15:47:49,223 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. 
[2025-02-05 15:47:49,224 INFO  L78                 Accepts]: Start accepts. Automaton has  has 8 states, 8 states have (on average 10.75) internal successors, (86), 7 states have internal predecessors, (86), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 4 states have call predecessors, (17), 3 states have call successors, (17) Word has length 139
[2025-02-05 15:47:49,225 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:49,232 INFO  L225             Difference]: With dead ends: 1390
[2025-02-05 15:47:49,232 INFO  L226             Difference]: Without dead ends: 1151
[2025-02-05 15:47:49,233 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 13 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=39, Invalid=117, Unknown=0, NotChecked=0, Total=156
[2025-02-05 15:47:49,234 INFO  L435           NwaCegarLoop]: 705 mSDtfsCounter, 793 mSDsluCounter, 4008 mSDsCounter, 0 mSdLazyCounter, 366 mSolverCounterSat, 35 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 815 SdHoareTripleChecker+Valid, 4713 SdHoareTripleChecker+Invalid, 401 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 35 IncrementalHoareTripleChecker+Valid, 366 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:49,234 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [815 Valid, 4713 Invalid, 401 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [35 Valid, 366 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time]
[2025-02-05 15:47:49,237 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 1151 states.
[2025-02-05 15:47:49,278 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 1151 to 1011.
[2025-02-05 15:47:49,280 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 1011 states, 784 states have (on average 1.5535714285714286) internal successors, (1218), 793 states have internal predecessors, (1218), 166 states have call successors, (166), 57 states have call predecessors, (166), 60 states have return successors, (180), 164 states have call predecessors, (180), 164 states have call successors, (180)
[2025-02-05 15:47:49,287 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 1011 states to 1011 states and 1564 transitions.
[2025-02-05 15:47:49,288 INFO  L78                 Accepts]: Start accepts. Automaton has 1011 states and 1564 transitions. Word has length 139
[2025-02-05 15:47:49,288 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:49,288 INFO  L471      AbstractCegarLoop]: Abstraction has 1011 states and 1564 transitions.
[2025-02-05 15:47:49,288 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 8 states, 8 states have (on average 10.75) internal successors, (86), 7 states have internal predecessors, (86), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 4 states have call predecessors, (17), 3 states have call successors, (17)
[2025-02-05 15:47:49,288 INFO  L276                IsEmpty]: Start isEmpty. Operand 1011 states and 1564 transitions.
[2025-02-05 15:47:49,292 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 160
[2025-02-05 15:47:49,292 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:49,293 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:49,293 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6
[2025-02-05 15:47:49,293 INFO  L396      AbstractCegarLoop]: === Iteration 8 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:49,294 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:49,294 INFO  L85        PathProgramCache]: Analyzing trace with hash 23915162, now seen corresponding path program 1 times
[2025-02-05 15:47:49,294 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:49,294 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [626977434]
[2025-02-05 15:47:49,294 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:49,295 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:49,316 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 159 statements into 1 equivalence classes.
[2025-02-05 15:47:49,321 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 159 of 159 statements.
[2025-02-05 15:47:49,321 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:49,321 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:49,447 INFO  L134       CoverageAnalysis]: Checked inductivity of 51 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 44 trivial. 0 not checked.
[2025-02-05 15:47:49,447 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:49,447 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [626977434]
[2025-02-05 15:47:49,447 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [626977434] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:49,448 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:49,448 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5
[2025-02-05 15:47:49,448 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [227201280]
[2025-02-05 15:47:49,448 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:49,448 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 5 states
[2025-02-05 15:47:49,448 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:49,449 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants.
[2025-02-05 15:47:49,449 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20
[2025-02-05 15:47:49,449 INFO  L87              Difference]: Start difference. First operand 1011 states and 1564 transitions. Second operand  has 5 states, 4 states have (on average 23.5) internal successors, (94), 5 states have internal predecessors, (94), 3 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20)
[2025-02-05 15:47:49,524 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:49,524 INFO  L93              Difference]: Finished difference Result 1991 states and 3088 transitions.
[2025-02-05 15:47:49,525 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. 
[2025-02-05 15:47:49,525 INFO  L78                 Accepts]: Start accepts. Automaton has  has 5 states, 4 states have (on average 23.5) internal successors, (94), 5 states have internal predecessors, (94), 3 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20) Word has length 159
[2025-02-05 15:47:49,525 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:49,531 INFO  L225             Difference]: With dead ends: 1991
[2025-02-05 15:47:49,531 INFO  L226             Difference]: Without dead ends: 1015
[2025-02-05 15:47:49,533 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20
[2025-02-05 15:47:49,534 INFO  L435           NwaCegarLoop]: 650 mSDtfsCounter, 1 mSDsluCounter, 1938 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 2588 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:49,534 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 2588 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:49,535 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 1015 states.
[2025-02-05 15:47:49,571 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 1015 to 1015.
[2025-02-05 15:47:49,575 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 1015 states, 786 states have (on average 1.5521628498727735) internal successors, (1220), 797 states have internal predecessors, (1220), 166 states have call successors, (166), 57 states have call predecessors, (166), 62 states have return successors, (183), 164 states have call predecessors, (183), 164 states have call successors, (183)
[2025-02-05 15:47:49,581 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 1015 states to 1015 states and 1569 transitions.
[2025-02-05 15:47:49,583 INFO  L78                 Accepts]: Start accepts. Automaton has 1015 states and 1569 transitions. Word has length 159
[2025-02-05 15:47:49,583 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:49,583 INFO  L471      AbstractCegarLoop]: Abstraction has 1015 states and 1569 transitions.
[2025-02-05 15:47:49,583 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 5 states, 4 states have (on average 23.5) internal successors, (94), 5 states have internal predecessors, (94), 3 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20)
[2025-02-05 15:47:49,583 INFO  L276                IsEmpty]: Start isEmpty. Operand 1015 states and 1569 transitions.
[2025-02-05 15:47:49,586 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 142
[2025-02-05 15:47:49,586 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:49,586 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:49,586 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7
[2025-02-05 15:47:49,586 INFO  L396      AbstractCegarLoop]: === Iteration 9 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:49,587 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:49,587 INFO  L85        PathProgramCache]: Analyzing trace with hash 1453326565, now seen corresponding path program 1 times
[2025-02-05 15:47:49,587 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:49,587 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1648093260]
[2025-02-05 15:47:49,587 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:49,587 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:49,602 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 141 statements into 1 equivalence classes.
[2025-02-05 15:47:49,607 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 141 of 141 statements.
[2025-02-05 15:47:49,607 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:49,607 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:49,719 INFO  L134       CoverageAnalysis]: Checked inductivity of 39 backedges. 13 proven. 0 refuted. 0 times theorem prover too weak. 26 trivial. 0 not checked.
[2025-02-05 15:47:49,719 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:49,719 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1648093260]
[2025-02-05 15:47:49,719 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1648093260] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:49,719 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:49,720 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8
[2025-02-05 15:47:49,720 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2145232778]
[2025-02-05 15:47:49,720 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:49,720 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 8 states
[2025-02-05 15:47:49,720 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:49,720 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants.
[2025-02-05 15:47:49,720 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56
[2025-02-05 15:47:49,721 INFO  L87              Difference]: Start difference. First operand 1015 states and 1569 transitions. Second operand  has 8 states, 7 states have (on average 13.0) internal successors, (91), 8 states have internal predecessors, (91), 4 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 4 states have call successors, (17)
[2025-02-05 15:47:49,847 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:49,848 INFO  L93              Difference]: Finished difference Result 1989 states and 3080 transitions.
[2025-02-05 15:47:49,848 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. 
[2025-02-05 15:47:49,848 INFO  L78                 Accepts]: Start accepts. Automaton has  has 8 states, 7 states have (on average 13.0) internal successors, (91), 8 states have internal predecessors, (91), 4 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 4 states have call successors, (17) Word has length 141
[2025-02-05 15:47:49,848 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:49,854 INFO  L225             Difference]: With dead ends: 1989
[2025-02-05 15:47:49,854 INFO  L226             Difference]: Without dead ends: 1019
[2025-02-05 15:47:49,857 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=69, Unknown=0, NotChecked=0, Total=90
[2025-02-05 15:47:49,858 INFO  L435           NwaCegarLoop]: 640 mSDtfsCounter, 7 mSDsluCounter, 3811 mSDsCounter, 0 mSdLazyCounter, 145 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 4451 SdHoareTripleChecker+Invalid, 149 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 145 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:49,858 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 4451 Invalid, 149 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 145 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time]
[2025-02-05 15:47:49,859 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 1019 states.
[2025-02-05 15:47:49,893 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 1019 to 1017.
[2025-02-05 15:47:49,895 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 1017 states, 788 states have (on average 1.5507614213197969) internal successors, (1222), 798 states have internal predecessors, (1222), 166 states have call successors, (166), 58 states have call predecessors, (166), 62 states have return successors, (181), 164 states have call predecessors, (181), 164 states have call successors, (181)
[2025-02-05 15:47:49,901 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 1017 states to 1017 states and 1569 transitions.
[2025-02-05 15:47:49,902 INFO  L78                 Accepts]: Start accepts. Automaton has 1017 states and 1569 transitions. Word has length 141
[2025-02-05 15:47:49,902 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:49,902 INFO  L471      AbstractCegarLoop]: Abstraction has 1017 states and 1569 transitions.
[2025-02-05 15:47:49,902 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 8 states, 7 states have (on average 13.0) internal successors, (91), 8 states have internal predecessors, (91), 4 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 4 states have call successors, (17)
[2025-02-05 15:47:49,903 INFO  L276                IsEmpty]: Start isEmpty. Operand 1017 states and 1569 transitions.
[2025-02-05 15:47:49,906 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 162
[2025-02-05 15:47:49,906 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:49,906 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:49,906 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8
[2025-02-05 15:47:49,906 INFO  L396      AbstractCegarLoop]: === Iteration 10 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:49,907 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:49,907 INFO  L85        PathProgramCache]: Analyzing trace with hash -630498522, now seen corresponding path program 1 times
[2025-02-05 15:47:49,907 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:49,907 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [655385175]
[2025-02-05 15:47:49,907 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:49,907 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:49,927 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 161 statements into 1 equivalence classes.
[2025-02-05 15:47:49,933 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 161 of 161 statements.
[2025-02-05 15:47:49,933 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:49,933 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:50,081 INFO  L134       CoverageAnalysis]: Checked inductivity of 52 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked.
[2025-02-05 15:47:50,081 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:50,081 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [655385175]
[2025-02-05 15:47:50,081 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [655385175] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:50,081 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:50,081 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8
[2025-02-05 15:47:50,081 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1490229686]
[2025-02-05 15:47:50,082 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:50,082 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 8 states
[2025-02-05 15:47:50,082 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:50,082 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants.
[2025-02-05 15:47:50,082 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56
[2025-02-05 15:47:50,083 INFO  L87              Difference]: Start difference. First operand 1017 states and 1569 transitions. Second operand  has 8 states, 7 states have (on average 14.142857142857142) internal successors, (99), 8 states have internal predecessors, (99), 4 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20)
[2025-02-05 15:47:50,221 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:50,221 INFO  L93              Difference]: Finished difference Result 2003 states and 3100 transitions.
[2025-02-05 15:47:50,221 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. 
[2025-02-05 15:47:50,222 INFO  L78                 Accepts]: Start accepts. Automaton has  has 8 states, 7 states have (on average 14.142857142857142) internal successors, (99), 8 states have internal predecessors, (99), 4 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) Word has length 161
[2025-02-05 15:47:50,222 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:50,227 INFO  L225             Difference]: With dead ends: 2003
[2025-02-05 15:47:50,227 INFO  L226             Difference]: Without dead ends: 1027
[2025-02-05 15:47:50,230 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=69, Unknown=0, NotChecked=0, Total=90
[2025-02-05 15:47:50,231 INFO  L435           NwaCegarLoop]: 642 mSDtfsCounter, 5 mSDsluCounter, 3823 mSDsCounter, 0 mSdLazyCounter, 158 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 6 SdHoareTripleChecker+Valid, 4465 SdHoareTripleChecker+Invalid, 163 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 158 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:50,231 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [6 Valid, 4465 Invalid, 163 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 158 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time]
[2025-02-05 15:47:50,232 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 1027 states.
[2025-02-05 15:47:50,259 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 1027 to 1025.
[2025-02-05 15:47:50,261 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 1025 states, 794 states have (on average 1.5465994962216625) internal successors, (1228), 805 states have internal predecessors, (1228), 166 states have call successors, (166), 59 states have call predecessors, (166), 64 states have return successors, (188), 164 states have call predecessors, (188), 164 states have call successors, (188)
[2025-02-05 15:47:50,266 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 1025 states to 1025 states and 1582 transitions.
[2025-02-05 15:47:50,268 INFO  L78                 Accepts]: Start accepts. Automaton has 1025 states and 1582 transitions. Word has length 161
[2025-02-05 15:47:50,268 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:50,268 INFO  L471      AbstractCegarLoop]: Abstraction has 1025 states and 1582 transitions.
[2025-02-05 15:47:50,268 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 8 states, 7 states have (on average 14.142857142857142) internal successors, (99), 8 states have internal predecessors, (99), 4 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20)
[2025-02-05 15:47:50,268 INFO  L276                IsEmpty]: Start isEmpty. Operand 1025 states and 1582 transitions.
[2025-02-05 15:47:50,271 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 163
[2025-02-05 15:47:50,271 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:50,271 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:50,272 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9
[2025-02-05 15:47:50,272 INFO  L396      AbstractCegarLoop]: === Iteration 11 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:50,272 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:50,272 INFO  L85        PathProgramCache]: Analyzing trace with hash 1592079443, now seen corresponding path program 1 times
[2025-02-05 15:47:50,272 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:50,272 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [994420699]
[2025-02-05 15:47:50,272 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:50,272 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:50,289 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 162 statements into 1 equivalence classes.
[2025-02-05 15:47:50,295 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 162 of 162 statements.
[2025-02-05 15:47:50,295 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:50,295 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:50,360 INFO  L134       CoverageAnalysis]: Checked inductivity of 52 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked.
[2025-02-05 15:47:50,360 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:50,360 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [994420699]
[2025-02-05 15:47:50,360 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [994420699] provided 0 perfect and 1 imperfect interpolant sequences
[2025-02-05 15:47:50,360 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [790626739]
[2025-02-05 15:47:50,361 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:50,361 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true
[2025-02-05 15:47:50,361 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3
[2025-02-05 15:47:50,363 INFO  L229       MonitoredProcess]: Starting monitored process 7 with /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null)
[2025-02-05 15:47:50,364 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process
[2025-02-05 15:47:50,533 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 162 statements into 1 equivalence classes.
[2025-02-05 15:47:50,649 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 162 of 162 statements.
[2025-02-05 15:47:50,650 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:50,650 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:50,654 INFO  L256         TraceCheckSpWp]: Trace formula consists of 1270 conjuncts, 3 conjuncts are in the unsatisfiable core
[2025-02-05 15:47:50,658 INFO  L279         TraceCheckSpWp]: Computing forward predicates...
[2025-02-05 15:47:50,687 INFO  L134       CoverageAnalysis]: Checked inductivity of 52 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked.
[2025-02-05 15:47:50,688 INFO  L312         TraceCheckSpWp]: Computing backward predicates...
[2025-02-05 15:47:50,776 INFO  L134       CoverageAnalysis]: Checked inductivity of 52 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked.
[2025-02-05 15:47:50,776 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleZ3 [790626739] provided 0 perfect and 2 imperfect interpolant sequences
[2025-02-05 15:47:50,776 INFO  L185   FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences.
[2025-02-05 15:47:50,776 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 7
[2025-02-05 15:47:50,777 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2060563622]
[2025-02-05 15:47:50,777 INFO  L85    oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton
[2025-02-05 15:47:50,777 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 7 states
[2025-02-05 15:47:50,777 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:50,778 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants.
[2025-02-05 15:47:50,778 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42
[2025-02-05 15:47:50,778 INFO  L87              Difference]: Start difference. First operand 1025 states and 1582 transitions. Second operand  has 7 states, 7 states have (on average 19.857142857142858) internal successors, (139), 7 states have internal predecessors, (139), 2 states have call successors, (37), 2 states have call predecessors, (37), 2 states have return successors, (34), 2 states have call predecessors, (34), 2 states have call successors, (34)
[2025-02-05 15:47:51,000 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:51,000 INFO  L93              Difference]: Finished difference Result 2391 states and 3819 transitions.
[2025-02-05 15:47:51,001 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. 
[2025-02-05 15:47:51,001 INFO  L78                 Accepts]: Start accepts. Automaton has  has 7 states, 7 states have (on average 19.857142857142858) internal successors, (139), 7 states have internal predecessors, (139), 2 states have call successors, (37), 2 states have call predecessors, (37), 2 states have return successors, (34), 2 states have call predecessors, (34), 2 states have call successors, (34) Word has length 162
[2025-02-05 15:47:51,001 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:51,010 INFO  L225             Difference]: With dead ends: 2391
[2025-02-05 15:47:51,010 INFO  L226             Difference]: Without dead ends: 1899
[2025-02-05 15:47:51,011 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 326 GetRequests, 321 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42
[2025-02-05 15:47:51,012 INFO  L435           NwaCegarLoop]: 694 mSDtfsCounter, 518 mSDsluCounter, 1768 mSDsCounter, 0 mSdLazyCounter, 80 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 572 SdHoareTripleChecker+Valid, 2462 SdHoareTripleChecker+Invalid, 90 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 80 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:51,012 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [572 Valid, 2462 Invalid, 90 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 80 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time]
[2025-02-05 15:47:51,013 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 1899 states.
[2025-02-05 15:47:51,073 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 1899 to 1851.
[2025-02-05 15:47:51,076 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 1851 states, 1462 states have (on average 1.6169630642954855) internal successors, (2364), 1473 states have internal predecessors, (2364), 324 states have call successors, (324), 59 states have call predecessors, (324), 64 states have return successors, (371), 322 states have call predecessors, (371), 322 states have call successors, (371)
[2025-02-05 15:47:51,086 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 1851 states to 1851 states and 3059 transitions.
[2025-02-05 15:47:51,088 INFO  L78                 Accepts]: Start accepts. Automaton has 1851 states and 3059 transitions. Word has length 162
[2025-02-05 15:47:51,088 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:51,088 INFO  L471      AbstractCegarLoop]: Abstraction has 1851 states and 3059 transitions.
[2025-02-05 15:47:51,088 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 7 states, 7 states have (on average 19.857142857142858) internal successors, (139), 7 states have internal predecessors, (139), 2 states have call successors, (37), 2 states have call predecessors, (37), 2 states have return successors, (34), 2 states have call predecessors, (34), 2 states have call successors, (34)
[2025-02-05 15:47:51,088 INFO  L276                IsEmpty]: Start isEmpty. Operand 1851 states and 3059 transitions.
[2025-02-05 15:47:51,096 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 169
[2025-02-05 15:47:51,096 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:51,097 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:51,104 INFO  L552       MonitoredProcess]: [MP /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Ended with exit code 0
[2025-02-05 15:47:51,297 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 7 /storage/repos/ultimate-jdk21/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10
[2025-02-05 15:47:51,297 INFO  L396      AbstractCegarLoop]: === Iteration 12 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:51,298 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:51,298 INFO  L85        PathProgramCache]: Analyzing trace with hash 1476193747, now seen corresponding path program 1 times
[2025-02-05 15:47:51,298 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:51,298 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [704686762]
[2025-02-05 15:47:51,298 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:51,298 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:51,388 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 168 statements into 1 equivalence classes.
[2025-02-05 15:47:51,424 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 168 of 168 statements.
[2025-02-05 15:47:51,425 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:51,425 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:51,504 INFO  L134       CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked.
[2025-02-05 15:47:51,504 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:51,505 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [704686762]
[2025-02-05 15:47:51,505 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [704686762] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:51,505 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:51,505 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-02-05 15:47:51,505 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [787419132]
[2025-02-05 15:47:51,505 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:51,505 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:47:51,505 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:51,506 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:47:51,506 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:51,506 INFO  L87              Difference]: Start difference. First operand 1851 states and 3059 transitions. Second operand  has 3 states, 3 states have (on average 33.666666666666664) internal successors, (101), 3 states have internal predecessors, (101), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:47:51,583 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:51,584 INFO  L93              Difference]: Finished difference Result 4411 states and 7402 transitions.
[2025-02-05 15:47:51,584 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:47:51,584 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 33.666666666666664) internal successors, (101), 3 states have internal predecessors, (101), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 168
[2025-02-05 15:47:51,584 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:51,598 INFO  L225             Difference]: With dead ends: 4411
[2025-02-05 15:47:51,599 INFO  L226             Difference]: Without dead ends: 2687
[2025-02-05 15:47:51,606 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:51,606 INFO  L435           NwaCegarLoop]: 679 mSDtfsCounter, 132 mSDsluCounter, 654 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 150 SdHoareTripleChecker+Valid, 1333 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:51,607 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [150 Valid, 1333 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:51,609 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 2687 states.
[2025-02-05 15:47:51,684 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 2687 to 2671.
[2025-02-05 15:47:51,688 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 2671 states, 2124 states have (on average 1.6355932203389831) internal successors, (3474), 2135 states have internal predecessors, (3474), 482 states have call successors, (482), 59 states have call predecessors, (482), 64 states have return successors, (554), 480 states have call predecessors, (554), 480 states have call successors, (554)
[2025-02-05 15:47:51,699 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 2671 states to 2671 states and 4510 transitions.
[2025-02-05 15:47:51,701 INFO  L78                 Accepts]: Start accepts. Automaton has 2671 states and 4510 transitions. Word has length 168
[2025-02-05 15:47:51,702 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:51,702 INFO  L471      AbstractCegarLoop]: Abstraction has 2671 states and 4510 transitions.
[2025-02-05 15:47:51,702 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 33.666666666666664) internal successors, (101), 3 states have internal predecessors, (101), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:47:51,702 INFO  L276                IsEmpty]: Start isEmpty. Operand 2671 states and 4510 transitions.
[2025-02-05 15:47:51,713 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 151
[2025-02-05 15:47:51,713 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:51,713 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:51,713 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11
[2025-02-05 15:47:51,713 INFO  L396      AbstractCegarLoop]: === Iteration 13 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:51,714 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:51,714 INFO  L85        PathProgramCache]: Analyzing trace with hash -1414965138, now seen corresponding path program 1 times
[2025-02-05 15:47:51,714 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:51,714 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1135390248]
[2025-02-05 15:47:51,714 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:51,714 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:51,729 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 150 statements into 1 equivalence classes.
[2025-02-05 15:47:51,736 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 150 of 150 statements.
[2025-02-05 15:47:51,736 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:51,736 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:51,766 INFO  L134       CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked.
[2025-02-05 15:47:51,767 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:51,767 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1135390248]
[2025-02-05 15:47:51,767 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1135390248] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:51,767 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:51,767 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-02-05 15:47:51,767 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1121707749]
[2025-02-05 15:47:51,767 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:51,767 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:47:51,768 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:51,768 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:47:51,768 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:51,768 INFO  L87              Difference]: Start difference. First operand 2671 states and 4510 transitions. Second operand  has 3 states, 3 states have (on average 31.666666666666668) internal successors, (95), 3 states have internal predecessors, (95), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17)
[2025-02-05 15:47:51,874 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:51,874 INFO  L93              Difference]: Finished difference Result 6417 states and 10929 transitions.
[2025-02-05 15:47:51,875 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:47:51,875 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 31.666666666666668) internal successors, (95), 3 states have internal predecessors, (95), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 150
[2025-02-05 15:47:51,875 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:51,894 INFO  L225             Difference]: With dead ends: 6417
[2025-02-05 15:47:51,894 INFO  L226             Difference]: Without dead ends: 3975
[2025-02-05 15:47:51,901 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:51,902 INFO  L435           NwaCegarLoop]: 657 mSDtfsCounter, 130 mSDsluCounter, 649 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 148 SdHoareTripleChecker+Valid, 1306 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:51,902 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [148 Valid, 1306 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:51,905 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 3975 states.
[2025-02-05 15:47:52,031 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 3975 to 3959.
[2025-02-05 15:47:52,037 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 3959 states, 3174 states have (on average 1.6483931947069943) internal successors, (5232), 3185 states have internal predecessors, (5232), 720 states have call successors, (720), 59 states have call predecessors, (720), 64 states have return successors, (808), 718 states have call predecessors, (808), 718 states have call successors, (808)
[2025-02-05 15:47:52,054 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 3959 states to 3959 states and 6760 transitions.
[2025-02-05 15:47:52,057 INFO  L78                 Accepts]: Start accepts. Automaton has 3959 states and 6760 transitions. Word has length 150
[2025-02-05 15:47:52,058 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:52,058 INFO  L471      AbstractCegarLoop]: Abstraction has 3959 states and 6760 transitions.
[2025-02-05 15:47:52,058 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 31.666666666666668) internal successors, (95), 3 states have internal predecessors, (95), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17)
[2025-02-05 15:47:52,058 INFO  L276                IsEmpty]: Start isEmpty. Operand 3959 states and 6760 transitions.
[2025-02-05 15:47:52,077 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 152
[2025-02-05 15:47:52,077 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:52,077 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:52,077 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12
[2025-02-05 15:47:52,077 INFO  L396      AbstractCegarLoop]: === Iteration 14 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:52,078 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:52,078 INFO  L85        PathProgramCache]: Analyzing trace with hash -1600217753, now seen corresponding path program 1 times
[2025-02-05 15:47:52,078 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:52,078 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1939244816]
[2025-02-05 15:47:52,078 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:52,078 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:52,093 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 151 statements into 1 equivalence classes.
[2025-02-05 15:47:52,100 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 151 of 151 statements.
[2025-02-05 15:47:52,101 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:52,101 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:52,129 INFO  L134       CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked.
[2025-02-05 15:47:52,129 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:52,129 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1939244816]
[2025-02-05 15:47:52,129 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1939244816] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:52,129 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:52,129 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-02-05 15:47:52,129 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [680167008]
[2025-02-05 15:47:52,129 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:52,130 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:47:52,130 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:52,130 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:47:52,130 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:52,130 INFO  L87              Difference]: Start difference. First operand 3959 states and 6760 transitions. Second operand  has 3 states, 3 states have (on average 32.0) internal successors, (96), 3 states have internal predecessors, (96), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17)
[2025-02-05 15:47:52,334 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:52,338 INFO  L93              Difference]: Finished difference Result 9441 states and 16263 transitions.
[2025-02-05 15:47:52,339 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:47:52,339 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 32.0) internal successors, (96), 3 states have internal predecessors, (96), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 151
[2025-02-05 15:47:52,339 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:52,387 INFO  L225             Difference]: With dead ends: 9441
[2025-02-05 15:47:52,387 INFO  L226             Difference]: Without dead ends: 5955
[2025-02-05 15:47:52,409 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:52,414 INFO  L435           NwaCegarLoop]: 655 mSDtfsCounter, 128 mSDsluCounter, 646 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 146 SdHoareTripleChecker+Valid, 1301 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:52,414 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [146 Valid, 1301 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:52,436 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 5955 states.
[2025-02-05 15:47:52,662 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 5955 to 5939.
[2025-02-05 15:47:52,676 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 5939 states, 4830 states have (on average 1.6583850931677018) internal successors, (8010), 4841 states have internal predecessors, (8010), 1044 states have call successors, (1044), 59 states have call predecessors, (1044), 64 states have return successors, (1182), 1042 states have call predecessors, (1182), 1042 states have call successors, (1182)
[2025-02-05 15:47:52,699 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 5939 states to 5939 states and 10236 transitions.
[2025-02-05 15:47:52,703 INFO  L78                 Accepts]: Start accepts. Automaton has 5939 states and 10236 transitions. Word has length 151
[2025-02-05 15:47:52,703 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:52,703 INFO  L471      AbstractCegarLoop]: Abstraction has 5939 states and 10236 transitions.
[2025-02-05 15:47:52,704 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 32.0) internal successors, (96), 3 states have internal predecessors, (96), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17)
[2025-02-05 15:47:52,704 INFO  L276                IsEmpty]: Start isEmpty. Operand 5939 states and 10236 transitions.
[2025-02-05 15:47:52,734 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 172
[2025-02-05 15:47:52,734 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:52,734 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:52,734 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13
[2025-02-05 15:47:52,735 INFO  L396      AbstractCegarLoop]: === Iteration 15 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:52,735 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:52,735 INFO  L85        PathProgramCache]: Analyzing trace with hash 207926732, now seen corresponding path program 1 times
[2025-02-05 15:47:52,736 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:52,736 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1579982892]
[2025-02-05 15:47:52,736 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:52,736 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:52,756 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 171 statements into 1 equivalence classes.
[2025-02-05 15:47:52,762 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 171 of 171 statements.
[2025-02-05 15:47:52,762 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:52,762 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:52,802 INFO  L134       CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked.
[2025-02-05 15:47:52,803 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:52,803 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1579982892]
[2025-02-05 15:47:52,803 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1579982892] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:52,804 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:52,804 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-02-05 15:47:52,804 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [918351933]
[2025-02-05 15:47:52,809 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:52,810 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:47:52,810 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:52,810 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:47:52,810 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:52,810 INFO  L87              Difference]: Start difference. First operand 5939 states and 10236 transitions. Second operand  has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:47:53,104 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:53,104 INFO  L93              Difference]: Finished difference Result 14227 states and 24717 transitions.
[2025-02-05 15:47:53,104 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:47:53,105 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 171
[2025-02-05 15:47:53,105 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:53,183 INFO  L225             Difference]: With dead ends: 14227
[2025-02-05 15:47:53,185 INFO  L226             Difference]: Without dead ends: 9161
[2025-02-05 15:47:53,206 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:53,206 INFO  L435           NwaCegarLoop]: 655 mSDtfsCounter, 126 mSDsluCounter, 646 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 144 SdHoareTripleChecker+Valid, 1301 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:53,207 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [144 Valid, 1301 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:53,214 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 9161 states.
[2025-02-05 15:47:53,526 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 9161 to 9145.
[2025-02-05 15:47:53,546 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 9145 states, 7546 states have (on average 1.6655181553140737) internal successors, (12568), 7557 states have internal predecessors, (12568), 1534 states have call successors, (1534), 59 states have call predecessors, (1534), 64 states have return successors, (1755), 1532 states have call predecessors, (1755), 1532 states have call successors, (1755)
[2025-02-05 15:47:53,585 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 9145 states to 9145 states and 15857 transitions.
[2025-02-05 15:47:53,590 INFO  L78                 Accepts]: Start accepts. Automaton has 9145 states and 15857 transitions. Word has length 171
[2025-02-05 15:47:53,590 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:53,590 INFO  L471      AbstractCegarLoop]: Abstraction has 9145 states and 15857 transitions.
[2025-02-05 15:47:53,591 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:47:53,591 INFO  L276                IsEmpty]: Start isEmpty. Operand 9145 states and 15857 transitions.
[2025-02-05 15:47:53,629 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 173
[2025-02-05 15:47:53,629 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:53,630 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:53,630 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14
[2025-02-05 15:47:53,630 INFO  L396      AbstractCegarLoop]: === Iteration 16 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:53,631 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:53,631 INFO  L85        PathProgramCache]: Analyzing trace with hash -1103506955, now seen corresponding path program 1 times
[2025-02-05 15:47:53,631 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:53,631 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1316833087]
[2025-02-05 15:47:53,631 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:53,631 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:53,655 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 172 statements into 1 equivalence classes.
[2025-02-05 15:47:53,662 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 172 of 172 statements.
[2025-02-05 15:47:53,663 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:53,663 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:53,699 INFO  L134       CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked.
[2025-02-05 15:47:53,700 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:53,700 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1316833087]
[2025-02-05 15:47:53,700 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1316833087] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:53,700 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:53,700 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-02-05 15:47:53,700 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2117562951]
[2025-02-05 15:47:53,700 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:53,701 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:47:53,701 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:53,702 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:47:53,702 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:53,702 INFO  L87              Difference]: Start difference. First operand 9145 states and 15857 transitions. Second operand  has 3 states, 3 states have (on average 35.0) internal successors, (105), 3 states have internal predecessors, (105), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:47:54,051 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:54,051 INFO  L93              Difference]: Finished difference Result 22207 states and 38816 transitions.
[2025-02-05 15:47:54,051 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:47:54,052 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 35.0) internal successors, (105), 3 states have internal predecessors, (105), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 172
[2025-02-05 15:47:54,052 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:54,183 INFO  L225             Difference]: With dead ends: 22207
[2025-02-05 15:47:54,183 INFO  L226             Difference]: Without dead ends: 14549
[2025-02-05 15:47:54,201 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:54,202 INFO  L435           NwaCegarLoop]: 677 mSDtfsCounter, 124 mSDsluCounter, 646 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 142 SdHoareTripleChecker+Valid, 1323 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:54,202 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [142 Valid, 1323 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:54,212 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 14549 states.
[2025-02-05 15:47:54,571 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 14549 to 14533.
[2025-02-05 15:47:54,592 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 14533 states, 11948 states have (on average 1.6655507197857382) internal successors, (19900), 11959 states have internal predecessors, (19900), 2520 states have call successors, (2520), 59 states have call predecessors, (2520), 64 states have return successors, (2885), 2518 states have call predecessors, (2885), 2518 states have call successors, (2885)
[2025-02-05 15:47:54,640 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 14533 states to 14533 states and 25305 transitions.
[2025-02-05 15:47:54,772 INFO  L78                 Accepts]: Start accepts. Automaton has 14533 states and 25305 transitions. Word has length 172
[2025-02-05 15:47:54,772 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:54,772 INFO  L471      AbstractCegarLoop]: Abstraction has 14533 states and 25305 transitions.
[2025-02-05 15:47:54,773 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 35.0) internal successors, (105), 3 states have internal predecessors, (105), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:47:54,773 INFO  L276                IsEmpty]: Start isEmpty. Operand 14533 states and 25305 transitions.
[2025-02-05 15:47:54,819 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 155
[2025-02-05 15:47:54,819 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:54,819 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:54,819 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15
[2025-02-05 15:47:54,820 INFO  L396      AbstractCegarLoop]: === Iteration 17 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:54,820 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:54,820 INFO  L85        PathProgramCache]: Analyzing trace with hash -700868688, now seen corresponding path program 1 times
[2025-02-05 15:47:54,820 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:54,820 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1696179292]
[2025-02-05 15:47:54,820 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:54,821 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:54,834 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 154 statements into 1 equivalence classes.
[2025-02-05 15:47:54,840 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 154 of 154 statements.
[2025-02-05 15:47:54,841 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:54,841 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:54,874 INFO  L134       CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked.
[2025-02-05 15:47:54,874 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:54,874 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1696179292]
[2025-02-05 15:47:54,874 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1696179292] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:54,874 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:54,874 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-02-05 15:47:54,874 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1624912738]
[2025-02-05 15:47:54,875 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:54,875 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:47:54,875 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:54,875 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:47:54,875 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:54,876 INFO  L87              Difference]: Start difference. First operand 14533 states and 25305 transitions. Second operand  has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17)
[2025-02-05 15:47:55,299 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:55,299 INFO  L93              Difference]: Finished difference Result 36667 states and 64224 transitions.
[2025-02-05 15:47:55,300 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:47:55,300 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 154
[2025-02-05 15:47:55,300 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:55,380 INFO  L225             Difference]: With dead ends: 36667
[2025-02-05 15:47:55,380 INFO  L226             Difference]: Without dead ends: 24363
[2025-02-05 15:47:55,409 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:55,410 INFO  L435           NwaCegarLoop]: 657 mSDtfsCounter, 122 mSDsluCounter, 649 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 140 SdHoareTripleChecker+Valid, 1306 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:55,411 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [140 Valid, 1306 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:55,429 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 24363 states.
[2025-02-05 15:47:56,256 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 24363 to 24347.
[2025-02-05 15:47:56,293 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 24347 states, 20118 states have (on average 1.6669649070484143) internal successors, (33536), 20129 states have internal predecessors, (33536), 4164 states have call successors, (4164), 59 states have call predecessors, (4164), 64 states have return successors, (4718), 4162 states have call predecessors, (4718), 4162 states have call successors, (4718)
[2025-02-05 15:47:56,385 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 24347 states to 24347 states and 42418 transitions.
[2025-02-05 15:47:56,397 INFO  L78                 Accepts]: Start accepts. Automaton has 24347 states and 42418 transitions. Word has length 154
[2025-02-05 15:47:56,398 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:56,398 INFO  L471      AbstractCegarLoop]: Abstraction has 24347 states and 42418 transitions.
[2025-02-05 15:47:56,398 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17)
[2025-02-05 15:47:56,398 INFO  L276                IsEmpty]: Start isEmpty. Operand 24347 states and 42418 transitions.
[2025-02-05 15:47:56,466 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 175
[2025-02-05 15:47:56,467 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:56,467 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:56,467 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable16
[2025-02-05 15:47:56,468 INFO  L396      AbstractCegarLoop]: === Iteration 18 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:56,469 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:56,469 INFO  L85        PathProgramCache]: Analyzing trace with hash -568409258, now seen corresponding path program 1 times
[2025-02-05 15:47:56,469 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:56,469 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [255432751]
[2025-02-05 15:47:56,469 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:56,470 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:56,489 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 174 statements into 1 equivalence classes.
[2025-02-05 15:47:56,496 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 174 of 174 statements.
[2025-02-05 15:47:56,497 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:56,497 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:56,536 INFO  L134       CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked.
[2025-02-05 15:47:56,536 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:56,536 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [255432751]
[2025-02-05 15:47:56,536 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [255432751] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:56,536 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:56,537 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-02-05 15:47:56,537 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [397399289]
[2025-02-05 15:47:56,537 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:56,537 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:47:56,537 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:56,538 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:47:56,539 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:56,539 INFO  L87              Difference]: Start difference. First operand 24347 states and 42418 transitions. Second operand  has 3 states, 3 states have (on average 35.666666666666664) internal successors, (107), 3 states have internal predecessors, (107), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:47:57,400 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:47:57,400 INFO  L93              Difference]: Finished difference Result 58179 states and 101364 transitions.
[2025-02-05 15:47:57,401 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:47:57,401 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 35.666666666666664) internal successors, (107), 3 states have internal predecessors, (107), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 174
[2025-02-05 15:47:57,401 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:47:57,602 INFO  L225             Difference]: With dead ends: 58179
[2025-02-05 15:47:57,603 INFO  L226             Difference]: Without dead ends: 37995
[2025-02-05 15:47:57,676 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:57,676 INFO  L435           NwaCegarLoop]: 655 mSDtfsCounter, 120 mSDsluCounter, 621 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 138 SdHoareTripleChecker+Valid, 1276 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:47:57,677 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [138 Valid, 1276 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:47:57,845 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 37995 states.
[2025-02-05 15:47:58,701 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 37995 to 37979.
[2025-02-05 15:47:58,748 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 37979 states, 31344 states have (on average 1.6445252679938744) internal successors, (51546), 31355 states have internal predecessors, (51546), 6570 states have call successors, (6570), 59 states have call predecessors, (6570), 64 states have return successors, (7549), 6568 states have call predecessors, (7549), 6568 states have call successors, (7549)
[2025-02-05 15:47:58,851 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 37979 states to 37979 states and 65665 transitions.
[2025-02-05 15:47:58,868 INFO  L78                 Accepts]: Start accepts. Automaton has 37979 states and 65665 transitions. Word has length 174
[2025-02-05 15:47:58,868 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:47:58,868 INFO  L471      AbstractCegarLoop]: Abstraction has 37979 states and 65665 transitions.
[2025-02-05 15:47:58,868 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 35.666666666666664) internal successors, (107), 3 states have internal predecessors, (107), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:47:58,868 INFO  L276                IsEmpty]: Start isEmpty. Operand 37979 states and 65665 transitions.
[2025-02-05 15:47:58,942 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 176
[2025-02-05 15:47:58,942 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:47:58,942 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:47:58,942 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17
[2025-02-05 15:47:58,943 INFO  L396      AbstractCegarLoop]: === Iteration 19 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:47:58,943 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:47:58,944 INFO  L85        PathProgramCache]: Analyzing trace with hash -1906660918, now seen corresponding path program 1 times
[2025-02-05 15:47:58,944 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:47:58,944 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1016855130]
[2025-02-05 15:47:58,944 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:47:58,944 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:47:58,961 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 175 statements into 1 equivalence classes.
[2025-02-05 15:47:58,970 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 175 of 175 statements.
[2025-02-05 15:47:58,970 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:47:58,970 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:47:59,002 INFO  L134       CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked.
[2025-02-05 15:47:59,002 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:47:59,002 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1016855130]
[2025-02-05 15:47:59,002 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1016855130] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:47:59,002 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:47:59,003 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-02-05 15:47:59,003 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1673398465]
[2025-02-05 15:47:59,003 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:47:59,004 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:47:59,004 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:47:59,004 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:47:59,004 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:47:59,004 INFO  L87              Difference]: Start difference. First operand 37979 states and 65665 transitions. Second operand  has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:48:01,257 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:48:01,257 INFO  L93              Difference]: Finished difference Result 100253 states and 174137 transitions.
[2025-02-05 15:48:01,257 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:48:01,258 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 175
[2025-02-05 15:48:01,258 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:48:01,561 INFO  L225             Difference]: With dead ends: 100253
[2025-02-05 15:48:01,561 INFO  L226             Difference]: Without dead ends: 67705
[2025-02-05 15:48:01,642 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:48:01,642 INFO  L435           NwaCegarLoop]: 662 mSDtfsCounter, 118 mSDsluCounter, 650 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 136 SdHoareTripleChecker+Valid, 1312 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:48:01,642 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [136 Valid, 1312 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:48:01,687 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 67705 states.
[2025-02-05 15:48:04,159 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 67705 to 67689.
[2025-02-05 15:48:04,258 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 67689 states, 56154 states have (on average 1.64226947323432) internal successors, (92220), 56165 states have internal predecessors, (92220), 11470 states have call successors, (11470), 59 states have call predecessors, (11470), 64 states have return successors, (13263), 11468 states have call predecessors, (13263), 11468 states have call successors, (13263)
[2025-02-05 15:48:04,569 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 67689 states to 67689 states and 116953 transitions.
[2025-02-05 15:48:04,603 INFO  L78                 Accepts]: Start accepts. Automaton has 67689 states and 116953 transitions. Word has length 175
[2025-02-05 15:48:04,604 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:48:04,604 INFO  L471      AbstractCegarLoop]: Abstraction has 67689 states and 116953 transitions.
[2025-02-05 15:48:04,604 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:48:04,604 INFO  L276                IsEmpty]: Start isEmpty. Operand 67689 states and 116953 transitions.
[2025-02-05 15:48:05,095 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 177
[2025-02-05 15:48:05,095 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:48:05,095 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:48:05,095 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18
[2025-02-05 15:48:05,095 INFO  L396      AbstractCegarLoop]: === Iteration 20 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:48:05,096 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:48:05,096 INFO  L85        PathProgramCache]: Analyzing trace with hash 989346199, now seen corresponding path program 1 times
[2025-02-05 15:48:05,096 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:48:05,096 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1867182046]
[2025-02-05 15:48:05,096 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:48:05,096 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:48:05,116 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 176 statements into 1 equivalence classes.
[2025-02-05 15:48:05,122 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 176 of 176 statements.
[2025-02-05 15:48:05,122 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:48:05,122 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:48:05,154 INFO  L134       CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked.
[2025-02-05 15:48:05,158 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:48:05,159 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1867182046]
[2025-02-05 15:48:05,159 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1867182046] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:48:05,159 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:48:05,159 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-02-05 15:48:05,159 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1792357756]
[2025-02-05 15:48:05,159 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:48:05,160 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:48:05,160 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:48:05,160 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:48:05,160 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:48:05,160 INFO  L87              Difference]: Start difference. First operand 67689 states and 116953 transitions. Second operand  has 3 states, 3 states have (on average 36.333333333333336) internal successors, (109), 3 states have internal predecessors, (109), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:48:07,859 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:48:07,860 INFO  L93              Difference]: Finished difference Result 184437 states and 319321 transitions.
[2025-02-05 15:48:07,860 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:48:07,860 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 36.333333333333336) internal successors, (109), 3 states have internal predecessors, (109), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 176
[2025-02-05 15:48:07,861 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:48:08,879 INFO  L225             Difference]: With dead ends: 184437
[2025-02-05 15:48:08,880 INFO  L226             Difference]: Without dead ends: 123993
[2025-02-05 15:48:09,155 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:48:09,156 INFO  L435           NwaCegarLoop]: 662 mSDtfsCounter, 116 mSDsluCounter, 650 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 134 SdHoareTripleChecker+Valid, 1312 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:48:09,159 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [134 Valid, 1312 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:48:09,319 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 123993 states.
[2025-02-05 15:48:13,504 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 123993 to 123977.
[2025-02-05 15:48:13,657 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 123977 states, 103416 states have (on average 1.6387792991413321) internal successors, (169476), 103427 states have internal predecessors, (169476), 20496 states have call successors, (20496), 59 states have call predecessors, (20496), 64 states have return successors, (23353), 20494 states have call predecessors, (23353), 20494 states have call successors, (23353)
[2025-02-05 15:48:14,527 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 123977 states to 123977 states and 213325 transitions.
[2025-02-05 15:48:14,575 INFO  L78                 Accepts]: Start accepts. Automaton has 123977 states and 213325 transitions. Word has length 176
[2025-02-05 15:48:14,580 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-02-05 15:48:14,580 INFO  L471      AbstractCegarLoop]: Abstraction has 123977 states and 213325 transitions.
[2025-02-05 15:48:14,580 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 36.333333333333336) internal successors, (109), 3 states have internal predecessors, (109), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20)
[2025-02-05 15:48:14,580 INFO  L276                IsEmpty]: Start isEmpty. Operand 123977 states and 213325 transitions.
[2025-02-05 15:48:14,762 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 159
[2025-02-05 15:48:14,762 INFO  L210           NwaCegarLoop]: Found error trace
[2025-02-05 15:48:14,762 INFO  L218           NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-02-05 15:48:14,762 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19
[2025-02-05 15:48:14,762 INFO  L396      AbstractCegarLoop]: === Iteration 21 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-02-05 15:48:14,763 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-02-05 15:48:14,763 INFO  L85        PathProgramCache]: Analyzing trace with hash -709452654, now seen corresponding path program 1 times
[2025-02-05 15:48:14,763 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-02-05 15:48:14,763 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [303119022]
[2025-02-05 15:48:14,763 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-02-05 15:48:14,763 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-02-05 15:48:14,777 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 158 statements into 1 equivalence classes.
[2025-02-05 15:48:14,782 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 158 of 158 statements.
[2025-02-05 15:48:14,782 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-02-05 15:48:14,783 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-02-05 15:48:14,809 INFO  L134       CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked.
[2025-02-05 15:48:14,809 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-02-05 15:48:14,809 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [303119022]
[2025-02-05 15:48:14,809 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [303119022] provided 1 perfect and 0 imperfect interpolant sequences
[2025-02-05 15:48:14,809 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-02-05 15:48:14,809 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-02-05 15:48:14,809 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1218963613]
[2025-02-05 15:48:14,809 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-02-05 15:48:14,810 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-02-05 15:48:14,810 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-02-05 15:48:14,810 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-02-05 15:48:14,810 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:48:14,810 INFO  L87              Difference]: Start difference. First operand 123977 states and 213325 transitions. Second operand  has 3 states, 3 states have (on average 34.333333333333336) internal successors, (103), 3 states have internal predecessors, (103), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17)
[2025-02-05 15:48:18,697 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-02-05 15:48:18,698 INFO  L93              Difference]: Finished difference Result 232165 states and 400424 transitions.
[2025-02-05 15:48:18,698 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-02-05 15:48:18,698 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 34.333333333333336) internal successors, (103), 3 states have internal predecessors, (103), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 158
[2025-02-05 15:48:18,698 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-02-05 15:48:19,566 INFO  L225             Difference]: With dead ends: 232165
[2025-02-05 15:48:19,567 INFO  L226             Difference]: Without dead ends: 231673
[2025-02-05 15:48:19,658 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-02-05 15:48:19,659 INFO  L435           NwaCegarLoop]: 657 mSDtfsCounter, 111 mSDsluCounter, 653 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 128 SdHoareTripleChecker+Valid, 1310 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-02-05 15:48:19,659 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [128 Valid, 1310 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-02-05 15:48:19,829 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 231673 states.