./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/email_spec1_productSimulator.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 8fc3dc66 Calling Ultimate with: /root/.sdkman/candidates/java/21.0.5-tem/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/email_spec1_productSimulator.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash c2ee13e5ae0bbed1c37b7eadefb29cbd7041f4c5e0d498dc3d4ea1e000526be8 --- Real Ultimate output --- This is Ultimate 0.3.0-?-8fc3dc6-m [2025-03-16 18:40:36,617 INFO L188 SettingsManager]: Resetting all preferences to default values... [2025-03-16 18:40:36,677 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2025-03-16 18:40:36,681 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2025-03-16 18:40:36,684 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2025-03-16 18:40:36,704 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2025-03-16 18:40:36,705 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2025-03-16 18:40:36,705 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2025-03-16 18:40:36,705 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2025-03-16 18:40:36,705 INFO L153 SettingsManager]: * Use memory slicer=true [2025-03-16 18:40:36,706 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2025-03-16 18:40:36,706 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2025-03-16 18:40:36,707 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2025-03-16 18:40:36,707 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2025-03-16 18:40:36,707 INFO L153 SettingsManager]: * Use SBE=true [2025-03-16 18:40:36,707 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2025-03-16 18:40:36,707 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2025-03-16 18:40:36,707 INFO L153 SettingsManager]: * sizeof long=4 [2025-03-16 18:40:36,707 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * sizeof POINTER=4 [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * sizeof long double=12 [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Use constant arrays=true [2025-03-16 18:40:36,708 INFO L151 SettingsManager]: Preferences of IcfgBuilder differ from their defaults: [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2025-03-16 18:40:36,708 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Compute procedure contracts=false [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2025-03-16 18:40:36,708 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2025-03-16 18:40:36,709 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> c2ee13e5ae0bbed1c37b7eadefb29cbd7041f4c5e0d498dc3d4ea1e000526be8 [2025-03-16 18:40:36,917 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2025-03-16 18:40:36,926 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2025-03-16 18:40:36,928 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2025-03-16 18:40:36,929 INFO L270 PluginConnector]: Initializing CDTParser... [2025-03-16 18:40:36,929 INFO L274 PluginConnector]: CDTParser initialized [2025-03-16 18:40:36,930 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/email_spec1_productSimulator.cil.c [2025-03-16 18:40:38,103 INFO L533 CDTParser]: Created temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/788fefc27/15b455b83b904e6fb5d3d52827e6c380/FLAGce08cc7a0 [2025-03-16 18:40:38,479 INFO L384 CDTParser]: Found 1 translation units. [2025-03-16 18:40:38,480 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec1_productSimulator.cil.c [2025-03-16 18:40:38,504 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/788fefc27/15b455b83b904e6fb5d3d52827e6c380/FLAGce08cc7a0 [2025-03-16 18:40:38,680 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/788fefc27/15b455b83b904e6fb5d3d52827e6c380 [2025-03-16 18:40:38,683 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2025-03-16 18:40:38,684 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2025-03-16 18:40:38,684 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2025-03-16 18:40:38,685 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2025-03-16 18:40:38,687 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2025-03-16 18:40:38,688 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.03 06:40:38" (1/1) ... [2025-03-16 18:40:38,689 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@3f561a38 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:38, skipping insertion in model container [2025-03-16 18:40:38,689 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.03 06:40:38" (1/1) ... [2025-03-16 18:40:38,727 INFO L175 MainTranslator]: Built tables and reachable declarations [2025-03-16 18:40:39,005 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec1_productSimulator.cil.c[35789,35802] [2025-03-16 18:40:39,094 INFO L210 PostProcessor]: Analyzing one entry point: main [2025-03-16 18:40:39,107 INFO L200 MainTranslator]: Completed pre-run [2025-03-16 18:40:39,114 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"AddressBookEncrypt_spec.i","") [48] [2025-03-16 18:40:39,116 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [89] [2025-03-16 18:40:39,116 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Email.i","") [366] [2025-03-16 18:40:39,116 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Client.i","") [583] [2025-03-16 18:40:39,117 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EmailLib.i","") [1155] [2025-03-16 18:40:39,117 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [1552] [2025-03-16 18:40:39,117 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [1915] [2025-03-16 18:40:39,117 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [1924] [2025-03-16 18:40:39,117 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"ClientLib.i","") [2290] [2025-03-16 18:40:39,117 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [3350] [2025-03-16 18:40:39,117 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Util.i","") [3457] [2025-03-16 18:40:39,168 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec1_productSimulator.cil.c[35789,35802] [2025-03-16 18:40:39,198 INFO L210 PostProcessor]: Analyzing one entry point: main [2025-03-16 18:40:39,235 INFO L204 MainTranslator]: Completed translation [2025-03-16 18:40:39,236 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39 WrapperNode [2025-03-16 18:40:39,237 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2025-03-16 18:40:39,238 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2025-03-16 18:40:39,238 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2025-03-16 18:40:39,238 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2025-03-16 18:40:39,243 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,260 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,295 INFO L138 Inliner]: procedures = 151, calls = 263, calls flagged for inlining = 67, calls inlined = 64, statements flattened = 1314 [2025-03-16 18:40:39,295 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2025-03-16 18:40:39,296 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2025-03-16 18:40:39,296 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2025-03-16 18:40:39,296 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2025-03-16 18:40:39,306 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,306 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,312 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,347 INFO L175 MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 4, 4, 4]. 29 percent of accesses are in the largest equivalence class. The 14 initializations are split as follows [2, 4, 4, 4]. The 0 writes are split as follows [0, 0, 0, 0]. [2025-03-16 18:40:39,352 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,352 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,371 INFO L184 PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,376 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,384 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,388 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,397 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2025-03-16 18:40:39,397 INFO L112 PluginConnector]: ------------------------IcfgBuilder---------------------------- [2025-03-16 18:40:39,398 INFO L270 PluginConnector]: Initializing IcfgBuilder... [2025-03-16 18:40:39,398 INFO L274 PluginConnector]: IcfgBuilder initialized [2025-03-16 18:40:39,398 INFO L184 PluginConnector]: Executing the observer IcfgBuilderObserver from plugin IcfgBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (1/1) ... [2025-03-16 18:40:39,404 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2025-03-16 18:40:39,414 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:40:39,426 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2025-03-16 18:40:39,429 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2025-03-16 18:40:39,447 INFO L130 BoogieDeclarations]: Found specification of procedure getClientPrivateKey [2025-03-16 18:40:39,447 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientPrivateKey [2025-03-16 18:40:39,447 INFO L130 BoogieDeclarations]: Found specification of procedure setup_chuck__before__Keys [2025-03-16 18:40:39,447 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_chuck__before__Keys [2025-03-16 18:40:39,447 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__Sign [2025-03-16 18:40:39,447 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__Sign [2025-03-16 18:40:39,447 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookSize [2025-03-16 18:40:39,447 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookSize [2025-03-16 18:40:39,447 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey [2025-03-16 18:40:39,447 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey [2025-03-16 18:40:39,447 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookAddress [2025-03-16 18:40:39,447 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookAddress [2025-03-16 18:40:39,447 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey [2025-03-16 18:40:39,447 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey [2025-03-16 18:40:39,447 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Verify [2025-03-16 18:40:39,447 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Verify [2025-03-16 18:40:39,447 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailTo [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailTo [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure setup_bob__before__Keys [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_bob__before__Keys [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailFrom [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailFrom [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure createClientKeyringEntry [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Decrypt [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Decrypt [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__Encrypt [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__Encrypt [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailSignKey [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailSignKey [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAdd [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAdd [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Forward [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Forward [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailFrom [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailFrom [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure queue [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure queue [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure setClientId [2025-03-16 18:40:39,448 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientId [2025-03-16 18:40:39,448 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable__before__Encrypt [2025-03-16 18:40:39,450 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable__before__Encrypt [2025-03-16 18:40:39,450 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2025-03-16 18:40:39,450 INFO L130 BoogieDeclarations]: Found specification of procedure isSigned [2025-03-16 18:40:39,450 INFO L138 BoogieDeclarations]: Found implementation of procedure isSigned [2025-03-16 18:40:39,451 INFO L130 BoogieDeclarations]: Found specification of procedure isKeyPairValid [2025-03-16 18:40:39,451 INFO L138 BoogieDeclarations]: Found implementation of procedure isKeyPairValid [2025-03-16 18:40:39,451 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__AddressBook [2025-03-16 18:40:39,451 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__AddressBook [2025-03-16 18:40:39,451 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Encrypt [2025-03-16 18:40:39,451 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Encrypt [2025-03-16 18:40:39,451 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__AutoResponder [2025-03-16 18:40:39,452 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__AutoResponder [2025-03-16 18:40:39,452 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookSize [2025-03-16 18:40:39,452 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookSize [2025-03-16 18:40:39,452 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringUser [2025-03-16 18:40:39,452 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringUser [2025-03-16 18:40:39,452 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey [2025-03-16 18:40:39,452 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey [2025-03-16 18:40:39,452 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure findPublicKey [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure findPublicKey [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure sendEmail [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure sendEmail [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure isEncrypted [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure isEncrypted [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure setup_rjh__before__Keys [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_rjh__before__Keys [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Verify [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Verify [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure setClientPrivateKey [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientPrivateKey [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailTo [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailTo [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure generateKeyPair [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure generateKeyPair [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Sign [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Sign [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure select_one [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure select_one [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookAddress [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookAddress [2025-03-16 18:40:39,453 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2025-03-16 18:40:39,453 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2025-03-16 18:40:39,647 INFO L256 CfgBuilder]: Building ICFG [2025-03-16 18:40:39,649 INFO L286 CfgBuilder]: Building CFG for each procedure with an implementation [2025-03-16 18:40:39,685 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L518: #res := ~retValue_acc~0; [2025-03-16 18:40:39,694 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1459: #res := ~retValue_acc~18; [2025-03-16 18:40:39,705 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1039: #res := ~retValue_acc~9; [2025-03-16 18:40:39,716 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2892: #res := ~retValue_acc~34; [2025-03-16 18:40:39,778 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2436: #res := ~retValue_acc~28; [2025-03-16 18:40:39,807 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1196-1: getEmailId_#res#1 := getEmailId_~retValue_acc~11#1; [2025-03-16 18:40:39,834 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1422: #res := ~retValue_acc~17; [2025-03-16 18:40:39,857 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1270: #res := ~retValue_acc~13; [2025-03-16 18:40:39,898 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L538-1: isReadable__role__Encrypt_#res#1 := isReadable__role__Encrypt_~retValue_acc~1#1; [2025-03-16 18:40:39,898 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L556: #res#1 := ~retValue_acc~2#1; [2025-03-16 18:40:39,970 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2939-1: getClientKeyringSize_#res#1 := getClientKeyringSize_~retValue_acc~35#1; [2025-03-16 18:40:39,970 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2984: #res#1 := ~retValue_acc~36#1; [2025-03-16 18:40:40,020 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3208: #res := ~retValue_acc~39; [2025-03-16 18:40:40,027 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L580-1: createEmail_#res#1 := createEmail_~retValue_acc~4#1; [2025-03-16 18:40:40,033 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1385: #res := ~retValue_acc~16; [2025-03-16 18:40:40,066 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3327-1: getClientId_#res#1 := getClientId_~retValue_acc~41#1; [2025-03-16 18:40:40,099 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1533-1: isVerified_#res#1 := isVerified_~retValue_acc~20#1; [2025-03-16 18:40:40,099 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3280-1: getClientForwardReceiver_#res#1 := getClientForwardReceiver_~retValue_acc~40#1; [2025-03-16 18:40:40,106 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1496: #res := ~retValue_acc~19; [2025-03-16 18:40:40,132 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3359: #res := ~retValue_acc~42; [2025-03-16 18:40:40,193 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2762: #res := ~retValue_acc~32; [2025-03-16 18:40:40,214 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2845-1: getClientAutoResponse_#res#1 := getClientAutoResponse_~retValue_acc~33#1; [2025-03-16 18:40:40,446 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3454-1: valid_product_#res#1 := valid_product_~retValue_acc~43#1; [2025-03-16 18:40:40,447 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L996-1: is_queue_empty_#res#1 := is_queue_empty_~retValue_acc~6#1; [2025-03-16 18:40:40,447 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1014-1: get_queued_email_#res#1 := get_queued_email_~retValue_acc~8#1; [2025-03-16 18:40:40,447 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3047-1: getClientKeyringUser_#res#1 := getClientKeyringUser_~retValue_acc~37#1; [2025-03-16 18:40:40,447 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1005-1: get_queued_client_#res#1 := get_queued_client_~retValue_acc~7#1; [2025-03-16 18:40:40,447 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3154-1: getClientKeyringPublicKey_#res#1 := getClientKeyringPublicKey_~retValue_acc~38#1; [2025-03-16 18:40:40,452 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1233: #res := ~retValue_acc~12; [2025-03-16 18:40:40,614 INFO L? ?]: Removed 603 outVars from TransFormulas that were not future-live. [2025-03-16 18:40:40,615 INFO L307 CfgBuilder]: Performing block encoding [2025-03-16 18:40:40,646 INFO L331 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2025-03-16 18:40:40,646 INFO L336 CfgBuilder]: Removed 0 assume(true) statements. [2025-03-16 18:40:40,646 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 16.03 06:40:40 BoogieIcfgContainer [2025-03-16 18:40:40,646 INFO L131 PluginConnector]: ------------------------ END IcfgBuilder---------------------------- [2025-03-16 18:40:40,648 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2025-03-16 18:40:40,648 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2025-03-16 18:40:40,651 INFO L274 PluginConnector]: TraceAbstraction initialized [2025-03-16 18:40:40,652 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 16.03 06:40:38" (1/3) ... [2025-03-16 18:40:40,652 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@55f4ad1c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.03 06:40:40, skipping insertion in model container [2025-03-16 18:40:40,652 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:40:39" (2/3) ... [2025-03-16 18:40:40,652 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@55f4ad1c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.03 06:40:40, skipping insertion in model container [2025-03-16 18:40:40,652 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 16.03 06:40:40" (3/3) ... [2025-03-16 18:40:40,657 INFO L128 eAbstractionObserver]: Analyzing ICFG email_spec1_productSimulator.cil.c [2025-03-16 18:40:40,668 INFO L216 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2025-03-16 18:40:40,670 INFO L151 ceAbstractionStarter]: Applying trace abstraction to ICFG email_spec1_productSimulator.cil.c that has 44 procedures, 585 locations, 1 initial locations, 1 loop locations, and 1 error locations. [2025-03-16 18:40:40,724 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2025-03-16 18:40:40,735 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@2e1a7bd5, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2025-03-16 18:40:40,735 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2025-03-16 18:40:40,740 INFO L276 IsEmpty]: Start isEmpty. Operand has 585 states, 430 states have (on average 1.5348837209302326) internal successors, (660), 450 states have internal predecessors, (660), 110 states have call successors, (110), 43 states have call predecessors, (110), 43 states have return successors, (110), 109 states have call predecessors, (110), 110 states have call successors, (110) [2025-03-16 18:40:40,757 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 124 [2025-03-16 18:40:40,757 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:40,758 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:40,758 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:40,762 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:40,762 INFO L85 PathProgramCache]: Analyzing trace with hash -283480582, now seen corresponding path program 1 times [2025-03-16 18:40:40,768 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:40,768 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [229785834] [2025-03-16 18:40:40,768 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:40,769 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:40,897 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 123 statements into 1 equivalence classes. [2025-03-16 18:40:40,969 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 123 of 123 statements. [2025-03-16 18:40:40,969 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:40,969 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:41,355 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:40:41,356 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:41,356 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [229785834] [2025-03-16 18:40:41,357 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [229785834] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:41,357 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:41,358 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2025-03-16 18:40:41,359 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1379015593] [2025-03-16 18:40:41,359 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:41,362 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2025-03-16 18:40:41,362 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:41,385 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2025-03-16 18:40:41,386 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2025-03-16 18:40:41,388 INFO L87 Difference]: Start difference. First operand has 585 states, 430 states have (on average 1.5348837209302326) internal successors, (660), 450 states have internal predecessors, (660), 110 states have call successors, (110), 43 states have call predecessors, (110), 43 states have return successors, (110), 109 states have call predecessors, (110), 110 states have call successors, (110) Second operand has 5 states, 5 states have (on average 11.8) internal successors, (59), 5 states have internal predecessors, (59), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2025-03-16 18:40:41,549 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:41,550 INFO L93 Difference]: Finished difference Result 1137 states and 1718 transitions. [2025-03-16 18:40:41,551 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2025-03-16 18:40:41,552 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 11.8) internal successors, (59), 5 states have internal predecessors, (59), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) Word has length 123 [2025-03-16 18:40:41,552 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:41,569 INFO L225 Difference]: With dead ends: 1137 [2025-03-16 18:40:41,569 INFO L226 Difference]: Without dead ends: 581 [2025-03-16 18:40:41,576 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2025-03-16 18:40:41,582 INFO L435 NwaCegarLoop]: 875 mSDtfsCounter, 0 mSDsluCounter, 2612 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 3487 SdHoareTripleChecker+Invalid, 24 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:41,582 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 3487 Invalid, 24 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:41,596 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 581 states. [2025-03-16 18:40:41,653 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 581 to 581. [2025-03-16 18:40:41,654 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 581 states, 427 states have (on average 1.5128805620608898) internal successors, (646), 446 states have internal predecessors, (646), 110 states have call successors, (110), 43 states have call predecessors, (110), 43 states have return successors, (109), 108 states have call predecessors, (109), 109 states have call successors, (109) [2025-03-16 18:40:41,663 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 581 states to 581 states and 865 transitions. [2025-03-16 18:40:41,667 INFO L78 Accepts]: Start accepts. Automaton has 581 states and 865 transitions. Word has length 123 [2025-03-16 18:40:41,669 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:41,670 INFO L471 AbstractCegarLoop]: Abstraction has 581 states and 865 transitions. [2025-03-16 18:40:41,670 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 11.8) internal successors, (59), 5 states have internal predecessors, (59), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2025-03-16 18:40:41,670 INFO L276 IsEmpty]: Start isEmpty. Operand 581 states and 865 transitions. [2025-03-16 18:40:41,677 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 129 [2025-03-16 18:40:41,677 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:41,678 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:41,678 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2025-03-16 18:40:41,678 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:41,679 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:41,680 INFO L85 PathProgramCache]: Analyzing trace with hash -377379424, now seen corresponding path program 1 times [2025-03-16 18:40:41,680 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:41,680 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [81101347] [2025-03-16 18:40:41,680 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:41,680 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:41,706 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 128 statements into 1 equivalence classes. [2025-03-16 18:40:41,731 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 128 of 128 statements. [2025-03-16 18:40:41,735 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:41,736 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:41,868 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:40:41,868 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:41,868 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [81101347] [2025-03-16 18:40:41,868 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [81101347] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:41,868 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:41,868 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:41,869 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [37944737] [2025-03-16 18:40:41,869 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:41,870 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:41,870 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:41,871 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:41,872 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:41,872 INFO L87 Difference]: Start difference. First operand 581 states and 865 transitions. Second operand has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 3 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) [2025-03-16 18:40:41,946 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:41,947 INFO L93 Difference]: Finished difference Result 1139 states and 1715 transitions. [2025-03-16 18:40:41,949 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:41,950 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 3 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) Word has length 128 [2025-03-16 18:40:41,950 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:41,955 INFO L225 Difference]: With dead ends: 1139 [2025-03-16 18:40:41,955 INFO L226 Difference]: Without dead ends: 580 [2025-03-16 18:40:41,957 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:41,958 INFO L435 NwaCegarLoop]: 849 mSDtfsCounter, 834 mSDsluCounter, 7 mSDsCounter, 0 mSdLazyCounter, 7 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 834 SdHoareTripleChecker+Valid, 856 SdHoareTripleChecker+Invalid, 11 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 7 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:41,958 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [834 Valid, 856 Invalid, 11 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 7 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:41,959 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 580 states. [2025-03-16 18:40:41,982 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 580 to 580. [2025-03-16 18:40:41,983 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 580 states, 428 states have (on average 1.5) internal successors, (642), 445 states have internal predecessors, (642), 107 states have call successors, (107), 44 states have call predecessors, (107), 44 states have return successors, (106), 105 states have call predecessors, (106), 106 states have call successors, (106) [2025-03-16 18:40:41,987 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 580 states to 580 states and 855 transitions. [2025-03-16 18:40:41,987 INFO L78 Accepts]: Start accepts. Automaton has 580 states and 855 transitions. Word has length 128 [2025-03-16 18:40:41,988 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:41,988 INFO L471 AbstractCegarLoop]: Abstraction has 580 states and 855 transitions. [2025-03-16 18:40:41,988 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 3 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) [2025-03-16 18:40:41,988 INFO L276 IsEmpty]: Start isEmpty. Operand 580 states and 855 transitions. [2025-03-16 18:40:41,991 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 152 [2025-03-16 18:40:41,992 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:41,993 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:41,993 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2025-03-16 18:40:41,993 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:41,993 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:41,994 INFO L85 PathProgramCache]: Analyzing trace with hash -534787066, now seen corresponding path program 1 times [2025-03-16 18:40:41,994 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:41,995 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [497567304] [2025-03-16 18:40:41,995 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:41,995 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:42,024 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 151 statements into 1 equivalence classes. [2025-03-16 18:40:42,037 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 151 of 151 statements. [2025-03-16 18:40:42,039 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:42,039 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:42,096 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:40:42,097 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:42,098 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [497567304] [2025-03-16 18:40:42,098 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [497567304] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:42,098 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:42,098 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:42,098 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1689469642] [2025-03-16 18:40:42,098 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:42,098 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:42,098 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:42,099 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:42,101 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:42,101 INFO L87 Difference]: Start difference. First operand 580 states and 855 transitions. Second operand has 3 states, 3 states have (on average 27.0) internal successors, (81), 3 states have internal predecessors, (81), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2025-03-16 18:40:42,153 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:42,154 INFO L93 Difference]: Finished difference Result 1132 states and 1683 transitions. [2025-03-16 18:40:42,154 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:42,155 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 27.0) internal successors, (81), 3 states have internal predecessors, (81), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 151 [2025-03-16 18:40:42,155 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:42,161 INFO L225 Difference]: With dead ends: 1132 [2025-03-16 18:40:42,161 INFO L226 Difference]: Without dead ends: 579 [2025-03-16 18:40:42,165 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:42,165 INFO L435 NwaCegarLoop]: 847 mSDtfsCounter, 820 mSDsluCounter, 26 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 820 SdHoareTripleChecker+Valid, 873 SdHoareTripleChecker+Invalid, 5 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:42,165 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [820 Valid, 873 Invalid, 5 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:42,170 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 579 states. [2025-03-16 18:40:42,198 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 579 to 579. [2025-03-16 18:40:42,200 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 579 states, 428 states have (on average 1.4953271028037383) internal successors, (640), 444 states have internal predecessors, (640), 106 states have call successors, (106), 44 states have call predecessors, (106), 44 states have return successors, (105), 104 states have call predecessors, (105), 105 states have call successors, (105) [2025-03-16 18:40:42,203 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 579 states to 579 states and 851 transitions. [2025-03-16 18:40:42,203 INFO L78 Accepts]: Start accepts. Automaton has 579 states and 851 transitions. Word has length 151 [2025-03-16 18:40:42,204 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:42,204 INFO L471 AbstractCegarLoop]: Abstraction has 579 states and 851 transitions. [2025-03-16 18:40:42,204 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 27.0) internal successors, (81), 3 states have internal predecessors, (81), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2025-03-16 18:40:42,204 INFO L276 IsEmpty]: Start isEmpty. Operand 579 states and 851 transitions. [2025-03-16 18:40:42,206 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 146 [2025-03-16 18:40:42,208 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:42,208 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:42,208 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2025-03-16 18:40:42,208 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:42,208 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:42,209 INFO L85 PathProgramCache]: Analyzing trace with hash 476288696, now seen corresponding path program 1 times [2025-03-16 18:40:42,209 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:42,209 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [712493290] [2025-03-16 18:40:42,209 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:42,209 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:42,235 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 145 statements into 1 equivalence classes. [2025-03-16 18:40:42,244 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 145 of 145 statements. [2025-03-16 18:40:42,245 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:42,245 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:42,332 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:40:42,332 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:42,333 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [712493290] [2025-03-16 18:40:42,333 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [712493290] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:42,333 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:42,333 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:42,333 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [637054816] [2025-03-16 18:40:42,333 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:42,333 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:42,334 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:42,335 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:42,335 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:42,335 INFO L87 Difference]: Start difference. First operand 579 states and 851 transitions. Second operand has 3 states, 3 states have (on average 25.666666666666668) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (25), 2 states have call predecessors, (25), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2025-03-16 18:40:42,395 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:42,396 INFO L93 Difference]: Finished difference Result 1112 states and 1641 transitions. [2025-03-16 18:40:42,396 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:42,396 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 25.666666666666668) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (25), 2 states have call predecessors, (25), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 145 [2025-03-16 18:40:42,397 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:42,400 INFO L225 Difference]: With dead ends: 1112 [2025-03-16 18:40:42,401 INFO L226 Difference]: Without dead ends: 576 [2025-03-16 18:40:42,403 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:42,403 INFO L435 NwaCegarLoop]: 820 mSDtfsCounter, 792 mSDsluCounter, 30 mSDsCounter, 0 mSdLazyCounter, 14 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 792 SdHoareTripleChecker+Valid, 850 SdHoareTripleChecker+Invalid, 24 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 14 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:42,405 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [792 Valid, 850 Invalid, 24 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 14 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:42,407 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 576 states. [2025-03-16 18:40:42,433 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 576 to 576. [2025-03-16 18:40:42,434 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 576 states, 428 states have (on average 1.469626168224299) internal successors, (629), 439 states have internal predecessors, (629), 103 states have call successors, (103), 44 states have call predecessors, (103), 44 states have return successors, (102), 101 states have call predecessors, (102), 102 states have call successors, (102) [2025-03-16 18:40:42,437 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 576 states to 576 states and 834 transitions. [2025-03-16 18:40:42,437 INFO L78 Accepts]: Start accepts. Automaton has 576 states and 834 transitions. Word has length 145 [2025-03-16 18:40:42,438 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:42,438 INFO L471 AbstractCegarLoop]: Abstraction has 576 states and 834 transitions. [2025-03-16 18:40:42,439 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 25.666666666666668) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (25), 2 states have call predecessors, (25), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2025-03-16 18:40:42,439 INFO L276 IsEmpty]: Start isEmpty. Operand 576 states and 834 transitions. [2025-03-16 18:40:42,441 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 171 [2025-03-16 18:40:42,441 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:42,441 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:42,441 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2025-03-16 18:40:42,442 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:42,442 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:42,442 INFO L85 PathProgramCache]: Analyzing trace with hash 375010707, now seen corresponding path program 1 times [2025-03-16 18:40:42,442 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:42,442 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1092959431] [2025-03-16 18:40:42,442 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:42,443 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:42,463 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 170 statements into 1 equivalence classes. [2025-03-16 18:40:42,477 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 170 of 170 statements. [2025-03-16 18:40:42,481 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:42,482 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:42,741 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 106 trivial. 0 not checked. [2025-03-16 18:40:42,741 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:42,741 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1092959431] [2025-03-16 18:40:42,741 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1092959431] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:40:42,741 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1308276707] [2025-03-16 18:40:42,742 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:42,742 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:40:42,742 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:40:42,744 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:40:42,746 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2025-03-16 18:40:42,924 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 170 statements into 1 equivalence classes. [2025-03-16 18:40:43,078 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 170 of 170 statements. [2025-03-16 18:40:43,078 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:43,079 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:43,086 INFO L256 TraceCheckSpWp]: Trace formula consists of 1398 conjuncts, 2 conjuncts are in the unsatisfiable core [2025-03-16 18:40:43,096 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:40:43,139 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 112 trivial. 0 not checked. [2025-03-16 18:40:43,139 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:40:43,140 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1308276707] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:43,140 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:40:43,140 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [8] total 9 [2025-03-16 18:40:43,140 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [334814090] [2025-03-16 18:40:43,140 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:43,140 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:43,140 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:43,141 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:43,142 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:40:43,142 INFO L87 Difference]: Start difference. First operand 576 states and 834 transitions. Second operand has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:43,184 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:43,185 INFO L93 Difference]: Finished difference Result 894 states and 1276 transitions. [2025-03-16 18:40:43,185 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:43,186 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 170 [2025-03-16 18:40:43,186 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:43,190 INFO L225 Difference]: With dead ends: 894 [2025-03-16 18:40:43,190 INFO L226 Difference]: Without dead ends: 577 [2025-03-16 18:40:43,192 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 177 GetRequests, 170 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:40:43,194 INFO L435 NwaCegarLoop]: 831 mSDtfsCounter, 0 mSDsluCounter, 829 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 1660 SdHoareTripleChecker+Invalid, 3 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:43,194 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 1660 Invalid, 3 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:43,195 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 577 states. [2025-03-16 18:40:43,220 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 577 to 577. [2025-03-16 18:40:43,221 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 577 states, 429 states have (on average 1.4685314685314685) internal successors, (630), 440 states have internal predecessors, (630), 103 states have call successors, (103), 44 states have call predecessors, (103), 44 states have return successors, (102), 101 states have call predecessors, (102), 102 states have call successors, (102) [2025-03-16 18:40:43,224 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 577 states to 577 states and 835 transitions. [2025-03-16 18:40:43,225 INFO L78 Accepts]: Start accepts. Automaton has 577 states and 835 transitions. Word has length 170 [2025-03-16 18:40:43,225 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:43,225 INFO L471 AbstractCegarLoop]: Abstraction has 577 states and 835 transitions. [2025-03-16 18:40:43,225 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:43,226 INFO L276 IsEmpty]: Start isEmpty. Operand 577 states and 835 transitions. [2025-03-16 18:40:43,229 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 170 [2025-03-16 18:40:43,229 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:43,229 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:43,238 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2025-03-16 18:40:43,430 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:40:43,430 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:43,431 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:43,431 INFO L85 PathProgramCache]: Analyzing trace with hash -1137142358, now seen corresponding path program 1 times [2025-03-16 18:40:43,431 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:43,431 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1415173276] [2025-03-16 18:40:43,431 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:43,431 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:43,458 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 169 statements into 1 equivalence classes. [2025-03-16 18:40:43,468 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 169 of 169 statements. [2025-03-16 18:40:43,468 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:43,468 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:43,680 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 107 trivial. 0 not checked. [2025-03-16 18:40:43,681 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:43,681 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1415173276] [2025-03-16 18:40:43,681 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1415173276] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:40:43,681 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [348123687] [2025-03-16 18:40:43,681 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:43,681 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:40:43,681 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:40:43,683 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:40:43,685 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2025-03-16 18:40:43,859 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 169 statements into 1 equivalence classes. [2025-03-16 18:40:44,008 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 169 of 169 statements. [2025-03-16 18:40:44,008 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:44,008 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:44,014 INFO L256 TraceCheckSpWp]: Trace formula consists of 1381 conjuncts, 3 conjuncts are in the unsatisfiable core [2025-03-16 18:40:44,023 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:40:44,047 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 112 trivial. 0 not checked. [2025-03-16 18:40:44,048 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:40:44,048 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [348123687] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:44,048 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:40:44,048 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [8] total 9 [2025-03-16 18:40:44,048 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1835501726] [2025-03-16 18:40:44,048 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:44,048 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:44,049 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:44,049 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:44,049 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:40:44,049 INFO L87 Difference]: Start difference. First operand 577 states and 835 transitions. Second operand has 3 states, 3 states have (on average 29.666666666666668) internal successors, (89), 3 states have internal predecessors, (89), 2 states have call successors, (28), 2 states have call predecessors, (28), 2 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:40:44,091 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:44,091 INFO L93 Difference]: Finished difference Result 1175 states and 1732 transitions. [2025-03-16 18:40:44,092 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:44,092 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 29.666666666666668) internal successors, (89), 3 states have internal predecessors, (89), 2 states have call successors, (28), 2 states have call predecessors, (28), 2 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 169 [2025-03-16 18:40:44,092 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:44,096 INFO L225 Difference]: With dead ends: 1175 [2025-03-16 18:40:44,096 INFO L226 Difference]: Without dead ends: 671 [2025-03-16 18:40:44,098 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 176 GetRequests, 169 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:40:44,098 INFO L435 NwaCegarLoop]: 849 mSDtfsCounter, 162 mSDsluCounter, 785 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 180 SdHoareTripleChecker+Valid, 1634 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:44,098 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [180 Valid, 1634 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:44,099 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 671 states. [2025-03-16 18:40:44,135 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 671 to 663. [2025-03-16 18:40:44,137 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 663 states, 501 states have (on average 1.4850299401197604) internal successors, (744), 512 states have internal predecessors, (744), 117 states have call successors, (117), 44 states have call predecessors, (117), 44 states have return successors, (116), 115 states have call predecessors, (116), 116 states have call successors, (116) [2025-03-16 18:40:44,141 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 663 states to 663 states and 977 transitions. [2025-03-16 18:40:44,142 INFO L78 Accepts]: Start accepts. Automaton has 663 states and 977 transitions. Word has length 169 [2025-03-16 18:40:44,143 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:44,143 INFO L471 AbstractCegarLoop]: Abstraction has 663 states and 977 transitions. [2025-03-16 18:40:44,143 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 29.666666666666668) internal successors, (89), 3 states have internal predecessors, (89), 2 states have call successors, (28), 2 states have call predecessors, (28), 2 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:40:44,144 INFO L276 IsEmpty]: Start isEmpty. Operand 663 states and 977 transitions. [2025-03-16 18:40:44,146 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 178 [2025-03-16 18:40:44,146 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:44,146 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:44,155 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2025-03-16 18:40:44,352 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2025-03-16 18:40:44,352 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:44,353 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:44,353 INFO L85 PathProgramCache]: Analyzing trace with hash 1307575568, now seen corresponding path program 1 times [2025-03-16 18:40:44,353 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:44,353 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [536226680] [2025-03-16 18:40:44,353 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:44,353 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:44,374 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 177 statements into 1 equivalence classes. [2025-03-16 18:40:44,382 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 177 of 177 statements. [2025-03-16 18:40:44,383 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:44,383 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:44,567 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 107 trivial. 0 not checked. [2025-03-16 18:40:44,568 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:44,568 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [536226680] [2025-03-16 18:40:44,568 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [536226680] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:40:44,568 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1650012021] [2025-03-16 18:40:44,568 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:44,568 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:40:44,568 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:40:44,570 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:40:44,573 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2025-03-16 18:40:44,739 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 177 statements into 1 equivalence classes. [2025-03-16 18:40:44,889 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 177 of 177 statements. [2025-03-16 18:40:44,889 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:44,889 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:44,895 INFO L256 TraceCheckSpWp]: Trace formula consists of 1416 conjuncts, 10 conjuncts are in the unsatisfiable core [2025-03-16 18:40:44,899 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:40:44,992 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 94 trivial. 0 not checked. [2025-03-16 18:40:44,994 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:40:44,995 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1650012021] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:44,995 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:40:44,995 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [8] total 14 [2025-03-16 18:40:44,995 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [301475857] [2025-03-16 18:40:44,995 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:44,995 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:40:44,996 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:44,996 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:40:44,996 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=31, Invalid=151, Unknown=0, NotChecked=0, Total=182 [2025-03-16 18:40:44,997 INFO L87 Difference]: Start difference. First operand 663 states and 977 transitions. Second operand has 8 states, 6 states have (on average 17.333333333333332) internal successors, (104), 8 states have internal predecessors, (104), 4 states have call successors, (29), 2 states have call predecessors, (29), 4 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:40:45,122 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:45,124 INFO L93 Difference]: Finished difference Result 1276 states and 1894 transitions. [2025-03-16 18:40:45,125 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:40:45,125 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 17.333333333333332) internal successors, (104), 8 states have internal predecessors, (104), 4 states have call successors, (29), 2 states have call predecessors, (29), 4 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) Word has length 177 [2025-03-16 18:40:45,126 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:45,130 INFO L225 Difference]: With dead ends: 1276 [2025-03-16 18:40:45,130 INFO L226 Difference]: Without dead ends: 665 [2025-03-16 18:40:45,132 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 185 GetRequests, 172 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 15 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=35, Invalid=175, Unknown=0, NotChecked=0, Total=210 [2025-03-16 18:40:45,133 INFO L435 NwaCegarLoop]: 821 mSDtfsCounter, 4 mSDsluCounter, 4909 mSDsCounter, 0 mSdLazyCounter, 83 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 5730 SdHoareTripleChecker+Invalid, 83 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 83 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:45,133 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 5730 Invalid, 83 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 83 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:45,134 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 665 states. [2025-03-16 18:40:45,160 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 665 to 665. [2025-03-16 18:40:45,162 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 665 states, 502 states have (on average 1.4840637450199203) internal successors, (745), 514 states have internal predecessors, (745), 117 states have call successors, (117), 44 states have call predecessors, (117), 45 states have return successors, (118), 115 states have call predecessors, (118), 116 states have call successors, (118) [2025-03-16 18:40:45,165 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 665 states to 665 states and 980 transitions. [2025-03-16 18:40:45,167 INFO L78 Accepts]: Start accepts. Automaton has 665 states and 980 transitions. Word has length 177 [2025-03-16 18:40:45,167 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:45,167 INFO L471 AbstractCegarLoop]: Abstraction has 665 states and 980 transitions. [2025-03-16 18:40:45,167 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 17.333333333333332) internal successors, (104), 8 states have internal predecessors, (104), 4 states have call successors, (29), 2 states have call predecessors, (29), 4 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:40:45,168 INFO L276 IsEmpty]: Start isEmpty. Operand 665 states and 980 transitions. [2025-03-16 18:40:45,170 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 179 [2025-03-16 18:40:45,170 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:45,170 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:45,179 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2025-03-16 18:40:45,375 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,4 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:40:45,375 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:45,375 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:45,376 INFO L85 PathProgramCache]: Analyzing trace with hash 316340928, now seen corresponding path program 1 times [2025-03-16 18:40:45,376 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:45,376 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [459183854] [2025-03-16 18:40:45,376 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:45,376 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:45,396 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 178 statements into 1 equivalence classes. [2025-03-16 18:40:45,403 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 178 of 178 statements. [2025-03-16 18:40:45,403 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:45,403 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:45,565 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 101 trivial. 0 not checked. [2025-03-16 18:40:45,565 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:45,565 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [459183854] [2025-03-16 18:40:45,565 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [459183854] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:40:45,566 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1256757952] [2025-03-16 18:40:45,566 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:45,566 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:40:45,566 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:40:45,568 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:40:45,569 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2025-03-16 18:40:45,729 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 178 statements into 1 equivalence classes. [2025-03-16 18:40:45,855 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 178 of 178 statements. [2025-03-16 18:40:45,855 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:45,855 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:45,862 INFO L256 TraceCheckSpWp]: Trace formula consists of 1417 conjuncts, 8 conjuncts are in the unsatisfiable core [2025-03-16 18:40:45,866 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:40:45,930 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 94 trivial. 0 not checked. [2025-03-16 18:40:45,930 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:40:45,931 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1256757952] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:45,931 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:40:45,931 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [9] total 13 [2025-03-16 18:40:45,931 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [908031557] [2025-03-16 18:40:45,931 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:45,932 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2025-03-16 18:40:45,932 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:45,932 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2025-03-16 18:40:45,932 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=26, Invalid=130, Unknown=0, NotChecked=0, Total=156 [2025-03-16 18:40:45,933 INFO L87 Difference]: Start difference. First operand 665 states and 980 transitions. Second operand has 6 states, 5 states have (on average 21.2) internal successors, (106), 6 states have internal predecessors, (106), 3 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:40:46,025 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:46,025 INFO L93 Difference]: Finished difference Result 1277 states and 1898 transitions. [2025-03-16 18:40:46,026 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2025-03-16 18:40:46,026 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 21.2) internal successors, (106), 6 states have internal predecessors, (106), 3 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) Word has length 178 [2025-03-16 18:40:46,026 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:46,032 INFO L225 Difference]: With dead ends: 1277 [2025-03-16 18:40:46,032 INFO L226 Difference]: Without dead ends: 667 [2025-03-16 18:40:46,034 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 186 GetRequests, 175 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=26, Invalid=130, Unknown=0, NotChecked=0, Total=156 [2025-03-16 18:40:46,034 INFO L435 NwaCegarLoop]: 821 mSDtfsCounter, 2 mSDsluCounter, 3267 mSDsCounter, 0 mSdLazyCounter, 64 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 4088 SdHoareTripleChecker+Invalid, 64 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 64 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:46,034 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 4088 Invalid, 64 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 64 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:46,036 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 667 states. [2025-03-16 18:40:46,062 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 667 to 667. [2025-03-16 18:40:46,063 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 667 states, 503 states have (on average 1.4831013916500995) internal successors, (746), 516 states have internal predecessors, (746), 117 states have call successors, (117), 44 states have call predecessors, (117), 46 states have return successors, (123), 115 states have call predecessors, (123), 116 states have call successors, (123) [2025-03-16 18:40:46,067 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 667 states to 667 states and 986 transitions. [2025-03-16 18:40:46,068 INFO L78 Accepts]: Start accepts. Automaton has 667 states and 986 transitions. Word has length 178 [2025-03-16 18:40:46,068 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:46,068 INFO L471 AbstractCegarLoop]: Abstraction has 667 states and 986 transitions. [2025-03-16 18:40:46,068 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 21.2) internal successors, (106), 6 states have internal predecessors, (106), 3 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:40:46,068 INFO L276 IsEmpty]: Start isEmpty. Operand 667 states and 986 transitions. [2025-03-16 18:40:46,070 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 180 [2025-03-16 18:40:46,070 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:46,070 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:46,080 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2025-03-16 18:40:46,275 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,5 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:40:46,276 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:46,277 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:46,277 INFO L85 PathProgramCache]: Analyzing trace with hash -1755087607, now seen corresponding path program 1 times [2025-03-16 18:40:46,277 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:46,277 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2123373995] [2025-03-16 18:40:46,277 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:46,277 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:46,301 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 179 statements into 1 equivalence classes. [2025-03-16 18:40:46,311 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 179 of 179 statements. [2025-03-16 18:40:46,312 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:46,312 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:46,515 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 107 trivial. 0 not checked. [2025-03-16 18:40:46,515 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:46,515 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2123373995] [2025-03-16 18:40:46,516 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2123373995] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:46,516 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:46,516 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2025-03-16 18:40:46,516 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [258985834] [2025-03-16 18:40:46,516 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:46,516 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:40:46,516 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:46,517 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:40:46,517 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2025-03-16 18:40:46,517 INFO L87 Difference]: Start difference. First operand 667 states and 986 transitions. Second operand has 8 states, 6 states have (on average 17.0) internal successors, (102), 8 states have internal predecessors, (102), 4 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:40:46,615 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:46,618 INFO L93 Difference]: Finished difference Result 1265 states and 1885 transitions. [2025-03-16 18:40:46,618 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:40:46,618 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 17.0) internal successors, (102), 8 states have internal predecessors, (102), 4 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) Word has length 179 [2025-03-16 18:40:46,619 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:46,623 INFO L225 Difference]: With dead ends: 1265 [2025-03-16 18:40:46,624 INFO L226 Difference]: Without dead ends: 667 [2025-03-16 18:40:46,626 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=55, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:40:46,627 INFO L435 NwaCegarLoop]: 822 mSDtfsCounter, 4 mSDsluCounter, 4915 mSDsCounter, 0 mSdLazyCounter, 76 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 5737 SdHoareTripleChecker+Invalid, 76 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 76 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:46,627 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 5737 Invalid, 76 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 76 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:46,628 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 667 states. [2025-03-16 18:40:46,655 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 667 to 667. [2025-03-16 18:40:46,656 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 667 states, 503 states have (on average 1.4831013916500995) internal successors, (746), 516 states have internal predecessors, (746), 117 states have call successors, (117), 44 states have call predecessors, (117), 46 states have return successors, (122), 115 states have call predecessors, (122), 116 states have call successors, (122) [2025-03-16 18:40:46,659 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 667 states to 667 states and 985 transitions. [2025-03-16 18:40:46,661 INFO L78 Accepts]: Start accepts. Automaton has 667 states and 985 transitions. Word has length 179 [2025-03-16 18:40:46,663 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:46,663 INFO L471 AbstractCegarLoop]: Abstraction has 667 states and 985 transitions. [2025-03-16 18:40:46,663 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 17.0) internal successors, (102), 8 states have internal predecessors, (102), 4 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:40:46,663 INFO L276 IsEmpty]: Start isEmpty. Operand 667 states and 985 transitions. [2025-03-16 18:40:46,666 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 181 [2025-03-16 18:40:46,667 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:46,667 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:46,668 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2025-03-16 18:40:46,668 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:46,668 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:46,669 INFO L85 PathProgramCache]: Analyzing trace with hash 1656269379, now seen corresponding path program 2 times [2025-03-16 18:40:46,669 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:46,669 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [183771022] [2025-03-16 18:40:46,669 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2025-03-16 18:40:46,670 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:46,693 INFO L108 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 partitioned 180 statements into 2 equivalence classes. [2025-03-16 18:40:46,715 INFO L111 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) and asserted 180 of 180 statements. [2025-03-16 18:40:46,716 INFO L114 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2025-03-16 18:40:46,716 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:46,880 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 108 trivial. 0 not checked. [2025-03-16 18:40:46,880 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:46,880 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [183771022] [2025-03-16 18:40:46,880 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [183771022] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:46,880 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:46,881 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2025-03-16 18:40:46,881 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [732190175] [2025-03-16 18:40:46,881 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:46,881 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2025-03-16 18:40:46,881 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:46,882 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2025-03-16 18:40:46,882 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2025-03-16 18:40:46,882 INFO L87 Difference]: Start difference. First operand 667 states and 985 transitions. Second operand has 6 states, 5 states have (on average 20.4) internal successors, (102), 6 states have internal predecessors, (102), 3 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:40:46,956 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:46,957 INFO L93 Difference]: Finished difference Result 1262 states and 1879 transitions. [2025-03-16 18:40:46,957 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2025-03-16 18:40:46,957 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 20.4) internal successors, (102), 6 states have internal predecessors, (102), 3 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) Word has length 180 [2025-03-16 18:40:46,958 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:46,962 INFO L225 Difference]: With dead ends: 1262 [2025-03-16 18:40:46,962 INFO L226 Difference]: Without dead ends: 667 [2025-03-16 18:40:46,964 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2025-03-16 18:40:46,964 INFO L435 NwaCegarLoop]: 822 mSDtfsCounter, 2 mSDsluCounter, 3271 mSDsCounter, 0 mSdLazyCounter, 59 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 4093 SdHoareTripleChecker+Invalid, 59 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 59 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:46,964 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 4093 Invalid, 59 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 59 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:46,965 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 667 states. [2025-03-16 18:40:46,985 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 667 to 667. [2025-03-16 18:40:46,987 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 667 states, 503 states have (on average 1.4831013916500995) internal successors, (746), 516 states have internal predecessors, (746), 117 states have call successors, (117), 44 states have call predecessors, (117), 46 states have return successors, (121), 115 states have call predecessors, (121), 116 states have call successors, (121) [2025-03-16 18:40:46,990 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 667 states to 667 states and 984 transitions. [2025-03-16 18:40:46,992 INFO L78 Accepts]: Start accepts. Automaton has 667 states and 984 transitions. Word has length 180 [2025-03-16 18:40:46,992 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:46,992 INFO L471 AbstractCegarLoop]: Abstraction has 667 states and 984 transitions. [2025-03-16 18:40:46,992 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 20.4) internal successors, (102), 6 states have internal predecessors, (102), 3 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:40:46,993 INFO L276 IsEmpty]: Start isEmpty. Operand 667 states and 984 transitions. [2025-03-16 18:40:46,995 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 182 [2025-03-16 18:40:46,995 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:46,995 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:46,995 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2025-03-16 18:40:46,995 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:46,996 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:46,996 INFO L85 PathProgramCache]: Analyzing trace with hash -557886618, now seen corresponding path program 3 times [2025-03-16 18:40:46,996 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:46,996 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [691971848] [2025-03-16 18:40:46,996 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2025-03-16 18:40:46,996 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:47,015 INFO L108 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST2 partitioned 181 statements into 8 equivalence classes. [2025-03-16 18:40:47,031 INFO L111 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) and asserted 134 of 181 statements. [2025-03-16 18:40:47,031 INFO L114 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2025-03-16 18:40:47,031 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:47,145 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 108 trivial. 0 not checked. [2025-03-16 18:40:47,145 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:47,145 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [691971848] [2025-03-16 18:40:47,145 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [691971848] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:47,145 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:47,145 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2025-03-16 18:40:47,145 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1474078629] [2025-03-16 18:40:47,146 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:47,146 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2025-03-16 18:40:47,146 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:47,146 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2025-03-16 18:40:47,147 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2025-03-16 18:40:47,147 INFO L87 Difference]: Start difference. First operand 667 states and 984 transitions. Second operand has 6 states, 5 states have (on average 20.6) internal successors, (103), 6 states have internal predecessors, (103), 3 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:40:47,221 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:47,222 INFO L93 Difference]: Finished difference Result 1264 states and 1885 transitions. [2025-03-16 18:40:47,222 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2025-03-16 18:40:47,222 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 20.6) internal successors, (103), 6 states have internal predecessors, (103), 3 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) Word has length 181 [2025-03-16 18:40:47,223 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:47,227 INFO L225 Difference]: With dead ends: 1264 [2025-03-16 18:40:47,227 INFO L226 Difference]: Without dead ends: 669 [2025-03-16 18:40:47,229 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2025-03-16 18:40:47,229 INFO L435 NwaCegarLoop]: 825 mSDtfsCounter, 1 mSDsluCounter, 3282 mSDsCounter, 0 mSdLazyCounter, 64 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 4107 SdHoareTripleChecker+Invalid, 64 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 64 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:47,229 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 4107 Invalid, 64 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 64 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:47,230 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 669 states. [2025-03-16 18:40:47,253 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 669 to 669. [2025-03-16 18:40:47,254 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 669 states, 504 states have (on average 1.4821428571428572) internal successors, (747), 518 states have internal predecessors, (747), 117 states have call successors, (117), 44 states have call predecessors, (117), 47 states have return successors, (126), 115 states have call predecessors, (126), 116 states have call successors, (126) [2025-03-16 18:40:47,258 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 669 states to 669 states and 990 transitions. [2025-03-16 18:40:47,259 INFO L78 Accepts]: Start accepts. Automaton has 669 states and 990 transitions. Word has length 181 [2025-03-16 18:40:47,260 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:47,260 INFO L471 AbstractCegarLoop]: Abstraction has 669 states and 990 transitions. [2025-03-16 18:40:47,260 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 20.6) internal successors, (103), 6 states have internal predecessors, (103), 3 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:40:47,260 INFO L276 IsEmpty]: Start isEmpty. Operand 669 states and 990 transitions. [2025-03-16 18:40:47,262 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 176 [2025-03-16 18:40:47,263 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:47,263 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:47,263 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2025-03-16 18:40:47,263 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:47,263 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:47,263 INFO L85 PathProgramCache]: Analyzing trace with hash -657329561, now seen corresponding path program 1 times [2025-03-16 18:40:47,264 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:47,264 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1585572091] [2025-03-16 18:40:47,264 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:47,264 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:47,294 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 175 statements into 1 equivalence classes. [2025-03-16 18:40:47,305 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 175 of 175 statements. [2025-03-16 18:40:47,305 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:47,305 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:47,466 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 108 trivial. 0 not checked. [2025-03-16 18:40:47,466 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:47,466 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1585572091] [2025-03-16 18:40:47,466 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1585572091] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:47,466 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:47,466 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2025-03-16 18:40:47,466 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1051293893] [2025-03-16 18:40:47,466 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:47,467 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:40:47,469 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:47,469 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:40:47,469 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2025-03-16 18:40:47,469 INFO L87 Difference]: Start difference. First operand 669 states and 990 transitions. Second operand has 8 states, 6 states have (on average 16.666666666666668) internal successors, (100), 8 states have internal predecessors, (100), 4 states have call successors, (28), 2 states have call predecessors, (28), 3 states have return successors, (23), 3 states have call predecessors, (23), 4 states have call successors, (23) [2025-03-16 18:40:47,557 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:47,557 INFO L93 Difference]: Finished difference Result 1271 states and 1896 transitions. [2025-03-16 18:40:47,558 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:40:47,558 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 16.666666666666668) internal successors, (100), 8 states have internal predecessors, (100), 4 states have call successors, (28), 2 states have call predecessors, (28), 3 states have return successors, (23), 3 states have call predecessors, (23), 4 states have call successors, (23) Word has length 175 [2025-03-16 18:40:47,559 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:47,564 INFO L225 Difference]: With dead ends: 1271 [2025-03-16 18:40:47,565 INFO L226 Difference]: Without dead ends: 671 [2025-03-16 18:40:47,567 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=55, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:40:47,567 INFO L435 NwaCegarLoop]: 823 mSDtfsCounter, 3 mSDsluCounter, 4920 mSDsCounter, 0 mSdLazyCounter, 83 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 5743 SdHoareTripleChecker+Invalid, 83 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 83 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:47,567 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 5743 Invalid, 83 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 83 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:47,568 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 671 states. [2025-03-16 18:40:47,587 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 671 to 671. [2025-03-16 18:40:47,588 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 671 states, 505 states have (on average 1.4811881188118812) internal successors, (748), 520 states have internal predecessors, (748), 117 states have call successors, (117), 44 states have call predecessors, (117), 48 states have return successors, (128), 115 states have call predecessors, (128), 116 states have call successors, (128) [2025-03-16 18:40:47,591 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 671 states to 671 states and 993 transitions. [2025-03-16 18:40:47,593 INFO L78 Accepts]: Start accepts. Automaton has 671 states and 993 transitions. Word has length 175 [2025-03-16 18:40:47,593 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:47,593 INFO L471 AbstractCegarLoop]: Abstraction has 671 states and 993 transitions. [2025-03-16 18:40:47,593 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 16.666666666666668) internal successors, (100), 8 states have internal predecessors, (100), 4 states have call successors, (28), 2 states have call predecessors, (28), 3 states have return successors, (23), 3 states have call predecessors, (23), 4 states have call successors, (23) [2025-03-16 18:40:47,593 INFO L276 IsEmpty]: Start isEmpty. Operand 671 states and 993 transitions. [2025-03-16 18:40:47,596 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 184 [2025-03-16 18:40:47,596 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:47,596 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:47,596 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2025-03-16 18:40:47,596 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:47,596 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:47,596 INFO L85 PathProgramCache]: Analyzing trace with hash 671537801, now seen corresponding path program 1 times [2025-03-16 18:40:47,597 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:47,597 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1572546217] [2025-03-16 18:40:47,597 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:47,597 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:47,613 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 183 statements into 1 equivalence classes. [2025-03-16 18:40:47,621 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 183 of 183 statements. [2025-03-16 18:40:47,621 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:47,621 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:47,733 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:47,733 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:47,734 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1572546217] [2025-03-16 18:40:47,734 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1572546217] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:40:47,734 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1571732471] [2025-03-16 18:40:47,734 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:47,734 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:40:47,734 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:40:47,736 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:40:47,737 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2025-03-16 18:40:47,899 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 183 statements into 1 equivalence classes. [2025-03-16 18:40:48,025 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 183 of 183 statements. [2025-03-16 18:40:48,026 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:48,026 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:48,031 INFO L256 TraceCheckSpWp]: Trace formula consists of 1422 conjuncts, 3 conjuncts are in the unsatisfiable core [2025-03-16 18:40:48,035 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:40:48,057 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:48,057 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2025-03-16 18:40:48,165 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:48,165 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1571732471] provided 0 perfect and 2 imperfect interpolant sequences [2025-03-16 18:40:48,165 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2025-03-16 18:40:48,165 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 7 [2025-03-16 18:40:48,165 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1453230811] [2025-03-16 18:40:48,166 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2025-03-16 18:40:48,167 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2025-03-16 18:40:48,167 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:48,167 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2025-03-16 18:40:48,168 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2025-03-16 18:40:48,168 INFO L87 Difference]: Start difference. First operand 671 states and 993 transitions. Second operand has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (36), 2 states have call predecessors, (36), 2 states have return successors, (31), 2 states have call predecessors, (31), 2 states have call successors, (31) [2025-03-16 18:40:48,314 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:48,314 INFO L93 Difference]: Finished difference Result 1527 states and 2334 transitions. [2025-03-16 18:40:48,314 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2025-03-16 18:40:48,315 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (36), 2 states have call predecessors, (36), 2 states have return successors, (31), 2 states have call predecessors, (31), 2 states have call successors, (31) Word has length 183 [2025-03-16 18:40:48,315 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:48,321 INFO L225 Difference]: With dead ends: 1527 [2025-03-16 18:40:48,321 INFO L226 Difference]: Without dead ends: 1210 [2025-03-16 18:40:48,323 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 368 GetRequests, 363 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2025-03-16 18:40:48,324 INFO L435 NwaCegarLoop]: 885 mSDtfsCounter, 863 mSDsluCounter, 1348 mSDsCounter, 0 mSdLazyCounter, 76 mSolverCounterSat, 25 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 917 SdHoareTripleChecker+Valid, 2233 SdHoareTripleChecker+Invalid, 101 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 25 IncrementalHoareTripleChecker+Valid, 76 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:48,324 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [917 Valid, 2233 Invalid, 101 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [25 Valid, 76 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2025-03-16 18:40:48,325 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1210 states. [2025-03-16 18:40:48,361 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1210 to 1186. [2025-03-16 18:40:48,363 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1186 states, 941 states have (on average 1.538788522848034) internal successors, (1448), 956 states have internal predecessors, (1448), 196 states have call successors, (196), 44 states have call predecessors, (196), 48 states have return successors, (217), 194 states have call predecessors, (217), 195 states have call successors, (217) [2025-03-16 18:40:48,370 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1186 states to 1186 states and 1861 transitions. [2025-03-16 18:40:48,372 INFO L78 Accepts]: Start accepts. Automaton has 1186 states and 1861 transitions. Word has length 183 [2025-03-16 18:40:48,372 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:48,372 INFO L471 AbstractCegarLoop]: Abstraction has 1186 states and 1861 transitions. [2025-03-16 18:40:48,373 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (36), 2 states have call predecessors, (36), 2 states have return successors, (31), 2 states have call predecessors, (31), 2 states have call successors, (31) [2025-03-16 18:40:48,373 INFO L276 IsEmpty]: Start isEmpty. Operand 1186 states and 1861 transitions. [2025-03-16 18:40:48,377 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 189 [2025-03-16 18:40:48,377 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:48,378 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:48,387 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2025-03-16 18:40:48,578 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2025-03-16 18:40:48,579 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:48,579 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:48,579 INFO L85 PathProgramCache]: Analyzing trace with hash -1953079467, now seen corresponding path program 1 times [2025-03-16 18:40:48,579 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:48,579 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1059574062] [2025-03-16 18:40:48,579 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:48,579 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:48,594 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 188 statements into 1 equivalence classes. [2025-03-16 18:40:48,604 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 188 of 188 statements. [2025-03-16 18:40:48,604 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:48,604 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:48,664 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:48,664 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:48,664 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1059574062] [2025-03-16 18:40:48,664 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1059574062] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:48,664 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:48,664 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:48,664 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1483428572] [2025-03-16 18:40:48,664 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:48,664 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:48,665 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:48,665 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:48,665 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:48,665 INFO L87 Difference]: Start difference. First operand 1186 states and 1861 transitions. Second operand has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:48,724 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:48,725 INFO L93 Difference]: Finished difference Result 2737 states and 4362 transitions. [2025-03-16 18:40:48,725 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:48,725 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 188 [2025-03-16 18:40:48,725 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:48,735 INFO L225 Difference]: With dead ends: 2737 [2025-03-16 18:40:48,735 INFO L226 Difference]: Without dead ends: 1675 [2025-03-16 18:40:48,739 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:48,740 INFO L435 NwaCegarLoop]: 853 mSDtfsCounter, 160 mSDsluCounter, 819 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 178 SdHoareTripleChecker+Valid, 1672 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:48,740 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [178 Valid, 1672 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:48,742 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1675 states. [2025-03-16 18:40:48,812 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1675 to 1667. [2025-03-16 18:40:48,814 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1667 states, 1343 states have (on average 1.5517498138495904) internal successors, (2084), 1358 states have internal predecessors, (2084), 275 states have call successors, (275), 44 states have call predecessors, (275), 48 states have return successors, (306), 273 states have call predecessors, (306), 274 states have call successors, (306) [2025-03-16 18:40:48,820 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1667 states to 1667 states and 2665 transitions. [2025-03-16 18:40:48,822 INFO L78 Accepts]: Start accepts. Automaton has 1667 states and 2665 transitions. Word has length 188 [2025-03-16 18:40:48,822 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:48,822 INFO L471 AbstractCegarLoop]: Abstraction has 1667 states and 2665 transitions. [2025-03-16 18:40:48,822 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:48,822 INFO L276 IsEmpty]: Start isEmpty. Operand 1667 states and 2665 transitions. [2025-03-16 18:40:48,828 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 183 [2025-03-16 18:40:48,828 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:48,828 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:48,828 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13 [2025-03-16 18:40:48,828 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:48,829 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:48,829 INFO L85 PathProgramCache]: Analyzing trace with hash 2080931896, now seen corresponding path program 1 times [2025-03-16 18:40:48,829 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:48,829 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [637597875] [2025-03-16 18:40:48,829 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:48,829 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:48,847 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 182 statements into 1 equivalence classes. [2025-03-16 18:40:48,857 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 182 of 182 statements. [2025-03-16 18:40:48,857 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:48,857 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:48,888 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:48,889 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:48,889 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [637597875] [2025-03-16 18:40:48,889 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [637597875] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:48,889 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:48,889 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:48,889 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [920624699] [2025-03-16 18:40:48,889 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:48,889 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:48,889 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:48,890 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:48,890 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:48,890 INFO L87 Difference]: Start difference. First operand 1667 states and 2665 transitions. Second operand has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:40:48,944 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:48,945 INFO L93 Difference]: Finished difference Result 3931 states and 6350 transitions. [2025-03-16 18:40:48,945 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:48,945 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 182 [2025-03-16 18:40:48,945 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:48,957 INFO L225 Difference]: With dead ends: 3931 [2025-03-16 18:40:48,957 INFO L226 Difference]: Without dead ends: 2446 [2025-03-16 18:40:48,964 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:48,964 INFO L435 NwaCegarLoop]: 835 mSDtfsCounter, 158 mSDsluCounter, 823 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 176 SdHoareTripleChecker+Valid, 1658 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:48,965 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [176 Valid, 1658 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:48,967 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2446 states. [2025-03-16 18:40:49,069 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2446 to 2438. [2025-03-16 18:40:49,072 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2438 states, 1995 states have (on average 1.5669172932330826) internal successors, (3126), 2010 states have internal predecessors, (3126), 394 states have call successors, (394), 44 states have call predecessors, (394), 48 states have return successors, (425), 392 states have call predecessors, (425), 393 states have call successors, (425) [2025-03-16 18:40:49,081 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2438 states to 2438 states and 3945 transitions. [2025-03-16 18:40:49,084 INFO L78 Accepts]: Start accepts. Automaton has 2438 states and 3945 transitions. Word has length 182 [2025-03-16 18:40:49,084 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:49,084 INFO L471 AbstractCegarLoop]: Abstraction has 2438 states and 3945 transitions. [2025-03-16 18:40:49,084 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:40:49,085 INFO L276 IsEmpty]: Start isEmpty. Operand 2438 states and 3945 transitions. [2025-03-16 18:40:49,095 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 184 [2025-03-16 18:40:49,095 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:49,095 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:49,095 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14 [2025-03-16 18:40:49,095 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:49,096 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:49,096 INFO L85 PathProgramCache]: Analyzing trace with hash -2050643271, now seen corresponding path program 1 times [2025-03-16 18:40:49,096 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:49,096 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1946383554] [2025-03-16 18:40:49,096 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:49,096 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:49,112 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 183 statements into 1 equivalence classes. [2025-03-16 18:40:49,124 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 183 of 183 statements. [2025-03-16 18:40:49,125 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:49,125 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:49,160 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:49,160 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:49,160 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1946383554] [2025-03-16 18:40:49,160 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1946383554] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:49,161 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:49,161 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:49,161 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [993328765] [2025-03-16 18:40:49,161 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:49,161 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:49,161 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:49,162 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:49,162 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:49,163 INFO L87 Difference]: Start difference. First operand 2438 states and 3945 transitions. Second operand has 3 states, 3 states have (on average 35.0) internal successors, (105), 3 states have internal predecessors, (105), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:40:49,240 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:49,240 INFO L93 Difference]: Finished difference Result 5741 states and 9384 transitions. [2025-03-16 18:40:49,241 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:49,241 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 35.0) internal successors, (105), 3 states have internal predecessors, (105), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 183 [2025-03-16 18:40:49,241 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:49,263 INFO L225 Difference]: With dead ends: 5741 [2025-03-16 18:40:49,263 INFO L226 Difference]: Without dead ends: 3631 [2025-03-16 18:40:49,271 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:49,272 INFO L435 NwaCegarLoop]: 831 mSDtfsCounter, 156 mSDsluCounter, 820 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 174 SdHoareTripleChecker+Valid, 1651 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:49,272 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [174 Valid, 1651 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:49,276 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 3631 states. [2025-03-16 18:40:49,398 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 3631 to 3623. [2025-03-16 18:40:49,404 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 3623 states, 3018 states have (on average 1.5798542080848244) internal successors, (4768), 3033 states have internal predecessors, (4768), 556 states have call successors, (556), 44 states have call predecessors, (556), 48 states have return successors, (603), 554 states have call predecessors, (603), 555 states have call successors, (603) [2025-03-16 18:40:49,422 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 3623 states to 3623 states and 5927 transitions. [2025-03-16 18:40:49,425 INFO L78 Accepts]: Start accepts. Automaton has 3623 states and 5927 transitions. Word has length 183 [2025-03-16 18:40:49,425 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:49,426 INFO L471 AbstractCegarLoop]: Abstraction has 3623 states and 5927 transitions. [2025-03-16 18:40:49,426 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 35.0) internal successors, (105), 3 states have internal predecessors, (105), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:40:49,426 INFO L276 IsEmpty]: Start isEmpty. Operand 3623 states and 5927 transitions. [2025-03-16 18:40:49,437 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 192 [2025-03-16 18:40:49,438 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:49,438 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:49,438 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15 [2025-03-16 18:40:49,438 INFO L396 AbstractCegarLoop]: === Iteration 17 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:49,438 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:49,439 INFO L85 PathProgramCache]: Analyzing trace with hash 448485910, now seen corresponding path program 1 times [2025-03-16 18:40:49,439 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:49,439 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [60570041] [2025-03-16 18:40:49,439 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:49,439 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:49,455 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 191 statements into 1 equivalence classes. [2025-03-16 18:40:49,464 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 191 of 191 statements. [2025-03-16 18:40:49,464 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:49,465 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:49,497 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:49,497 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:49,497 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [60570041] [2025-03-16 18:40:49,497 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [60570041] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:49,498 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:49,498 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:49,498 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1560125220] [2025-03-16 18:40:49,498 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:49,498 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:49,498 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:49,499 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:49,499 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:49,499 INFO L87 Difference]: Start difference. First operand 3623 states and 5927 transitions. Second operand has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:49,601 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:49,601 INFO L93 Difference]: Finished difference Result 8595 states and 14188 transitions. [2025-03-16 18:40:49,602 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:49,602 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 191 [2025-03-16 18:40:49,602 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:49,627 INFO L225 Difference]: With dead ends: 8595 [2025-03-16 18:40:49,628 INFO L226 Difference]: Without dead ends: 5542 [2025-03-16 18:40:49,638 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:49,639 INFO L435 NwaCegarLoop]: 831 mSDtfsCounter, 154 mSDsluCounter, 820 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 172 SdHoareTripleChecker+Valid, 1651 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:49,639 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [172 Valid, 1651 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:49,644 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 5542 states. [2025-03-16 18:40:49,829 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 5542 to 5534. [2025-03-16 18:40:49,840 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 5534 states, 4684 states have (on average 1.590734415029889) internal successors, (7451), 4699 states have internal predecessors, (7451), 801 states have call successors, (801), 44 states have call predecessors, (801), 48 states have return successors, (874), 799 states have call predecessors, (874), 800 states have call successors, (874) [2025-03-16 18:40:49,860 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 5534 states to 5534 states and 9126 transitions. [2025-03-16 18:40:49,863 INFO L78 Accepts]: Start accepts. Automaton has 5534 states and 9126 transitions. Word has length 191 [2025-03-16 18:40:49,863 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:49,863 INFO L471 AbstractCegarLoop]: Abstraction has 5534 states and 9126 transitions. [2025-03-16 18:40:49,864 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:49,864 INFO L276 IsEmpty]: Start isEmpty. Operand 5534 states and 9126 transitions. [2025-03-16 18:40:49,877 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 193 [2025-03-16 18:40:49,878 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:49,878 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:49,878 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable16 [2025-03-16 18:40:49,878 INFO L396 AbstractCegarLoop]: === Iteration 18 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:49,879 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:49,880 INFO L85 PathProgramCache]: Analyzing trace with hash -1516933773, now seen corresponding path program 1 times [2025-03-16 18:40:49,880 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:49,880 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1218435695] [2025-03-16 18:40:49,880 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:49,880 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:49,897 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 192 statements into 1 equivalence classes. [2025-03-16 18:40:49,905 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 192 of 192 statements. [2025-03-16 18:40:49,905 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:49,905 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:49,938 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:49,938 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:49,938 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1218435695] [2025-03-16 18:40:49,938 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1218435695] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:49,938 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:49,938 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:49,938 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [24552690] [2025-03-16 18:40:49,938 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:49,940 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:49,940 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:49,940 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:49,940 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:49,940 INFO L87 Difference]: Start difference. First operand 5534 states and 9126 transitions. Second operand has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:50,204 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:50,204 INFO L93 Difference]: Finished difference Result 13387 states and 22185 transitions. [2025-03-16 18:40:50,204 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:50,204 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 192 [2025-03-16 18:40:50,205 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:50,252 INFO L225 Difference]: With dead ends: 13387 [2025-03-16 18:40:50,252 INFO L226 Difference]: Without dead ends: 8779 [2025-03-16 18:40:50,270 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:50,270 INFO L435 NwaCegarLoop]: 844 mSDtfsCounter, 152 mSDsluCounter, 820 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 170 SdHoareTripleChecker+Valid, 1664 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:50,270 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [170 Valid, 1664 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:50,279 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 8779 states. [2025-03-16 18:40:50,597 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 8779 to 8771. [2025-03-16 18:40:50,611 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8771 states, 7428 states have (on average 1.5868336025848142) internal successors, (11787), 7443 states have internal predecessors, (11787), 1294 states have call successors, (1294), 44 states have call predecessors, (1294), 48 states have return successors, (1411), 1292 states have call predecessors, (1411), 1293 states have call successors, (1411) [2025-03-16 18:40:50,637 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 8771 states to 8771 states and 14492 transitions. [2025-03-16 18:40:50,641 INFO L78 Accepts]: Start accepts. Automaton has 8771 states and 14492 transitions. Word has length 192 [2025-03-16 18:40:50,642 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:50,642 INFO L471 AbstractCegarLoop]: Abstraction has 8771 states and 14492 transitions. [2025-03-16 18:40:50,642 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:50,642 INFO L276 IsEmpty]: Start isEmpty. Operand 8771 states and 14492 transitions. [2025-03-16 18:40:50,661 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 194 [2025-03-16 18:40:50,661 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:50,661 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:50,661 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17 [2025-03-16 18:40:50,662 INFO L396 AbstractCegarLoop]: === Iteration 19 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:50,662 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:50,662 INFO L85 PathProgramCache]: Analyzing trace with hash -1921832329, now seen corresponding path program 1 times [2025-03-16 18:40:50,662 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:50,662 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1807240560] [2025-03-16 18:40:50,662 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:50,663 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:50,680 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 193 statements into 1 equivalence classes. [2025-03-16 18:40:50,689 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 193 of 193 statements. [2025-03-16 18:40:50,689 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:50,689 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:50,729 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:50,729 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:50,729 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1807240560] [2025-03-16 18:40:50,729 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1807240560] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:50,729 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:50,729 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:50,729 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1916865920] [2025-03-16 18:40:50,729 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:50,730 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:50,730 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:50,731 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:50,731 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:50,731 INFO L87 Difference]: Start difference. First operand 8771 states and 14492 transitions. Second operand has 3 states, 3 states have (on average 37.666666666666664) internal successors, (113), 3 states have internal predecessors, (113), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:51,003 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:51,003 INFO L93 Difference]: Finished difference Result 21951 states and 36561 transitions. [2025-03-16 18:40:51,004 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:51,004 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 37.666666666666664) internal successors, (113), 3 states have internal predecessors, (113), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 193 [2025-03-16 18:40:51,004 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:51,051 INFO L225 Difference]: With dead ends: 21951 [2025-03-16 18:40:51,051 INFO L226 Difference]: Without dead ends: 14570 [2025-03-16 18:40:51,070 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:51,070 INFO L435 NwaCegarLoop]: 833 mSDtfsCounter, 150 mSDsluCounter, 823 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 168 SdHoareTripleChecker+Valid, 1656 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:51,071 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [168 Valid, 1656 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:51,080 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 14570 states. [2025-03-16 18:40:51,500 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 14570 to 14562. [2025-03-16 18:40:51,519 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14562 states, 12397 states have (on average 1.593611357586513) internal successors, (19756), 12412 states have internal predecessors, (19756), 2116 states have call successors, (2116), 44 states have call predecessors, (2116), 48 states have return successors, (2311), 2114 states have call predecessors, (2311), 2115 states have call successors, (2311) [2025-03-16 18:40:51,558 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 14562 states to 14562 states and 24183 transitions. [2025-03-16 18:40:51,564 INFO L78 Accepts]: Start accepts. Automaton has 14562 states and 24183 transitions. Word has length 193 [2025-03-16 18:40:51,564 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:51,564 INFO L471 AbstractCegarLoop]: Abstraction has 14562 states and 24183 transitions. [2025-03-16 18:40:51,565 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 37.666666666666664) internal successors, (113), 3 states have internal predecessors, (113), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:51,565 INFO L276 IsEmpty]: Start isEmpty. Operand 14562 states and 24183 transitions. [2025-03-16 18:40:51,588 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 195 [2025-03-16 18:40:51,588 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:51,588 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:51,589 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18 [2025-03-16 18:40:51,589 INFO L396 AbstractCegarLoop]: === Iteration 20 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:51,589 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:51,589 INFO L85 PathProgramCache]: Analyzing trace with hash 107332658, now seen corresponding path program 1 times [2025-03-16 18:40:51,589 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:51,589 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [550602222] [2025-03-16 18:40:51,590 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:51,590 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:51,607 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 194 statements into 1 equivalence classes. [2025-03-16 18:40:51,615 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 194 of 194 statements. [2025-03-16 18:40:51,615 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:51,615 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:51,648 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:51,648 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:51,648 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [550602222] [2025-03-16 18:40:51,648 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [550602222] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:51,648 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:51,648 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:51,648 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2005025495] [2025-03-16 18:40:51,649 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:51,650 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:51,650 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:51,650 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:51,650 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:51,651 INFO L87 Difference]: Start difference. First operand 14562 states and 24183 transitions. Second operand has 3 states, 3 states have (on average 38.0) internal successors, (114), 3 states have internal predecessors, (114), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:52,286 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:52,287 INFO L93 Difference]: Finished difference Result 35005 states and 57909 transitions. [2025-03-16 18:40:52,287 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:52,287 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 38.0) internal successors, (114), 3 states have internal predecessors, (114), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 194 [2025-03-16 18:40:52,288 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:52,374 INFO L225 Difference]: With dead ends: 35005 [2025-03-16 18:40:52,374 INFO L226 Difference]: Without dead ends: 22920 [2025-03-16 18:40:52,412 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:52,415 INFO L435 NwaCegarLoop]: 853 mSDtfsCounter, 148 mSDsluCounter, 797 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 166 SdHoareTripleChecker+Valid, 1650 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:52,415 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [166 Valid, 1650 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:52,441 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 22920 states. [2025-03-16 18:40:53,236 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 22920 to 22912. [2025-03-16 18:40:53,274 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 22912 states, 19544 states have (on average 1.5685120753172328) internal successors, (30655), 19559 states have internal predecessors, (30655), 3319 states have call successors, (3319), 44 states have call predecessors, (3319), 48 states have return successors, (3658), 3317 states have call predecessors, (3658), 3318 states have call successors, (3658) [2025-03-16 18:40:53,348 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 22912 states to 22912 states and 37632 transitions. [2025-03-16 18:40:53,360 INFO L78 Accepts]: Start accepts. Automaton has 22912 states and 37632 transitions. Word has length 194 [2025-03-16 18:40:53,360 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:53,360 INFO L471 AbstractCegarLoop]: Abstraction has 22912 states and 37632 transitions. [2025-03-16 18:40:53,361 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 38.0) internal successors, (114), 3 states have internal predecessors, (114), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:53,361 INFO L276 IsEmpty]: Start isEmpty. Operand 22912 states and 37632 transitions. [2025-03-16 18:40:53,390 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 196 [2025-03-16 18:40:53,391 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:53,391 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:53,391 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19 [2025-03-16 18:40:53,391 INFO L396 AbstractCegarLoop]: === Iteration 21 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:53,392 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:53,392 INFO L85 PathProgramCache]: Analyzing trace with hash -1473656392, now seen corresponding path program 1 times [2025-03-16 18:40:53,392 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:53,392 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [129598568] [2025-03-16 18:40:53,392 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:53,392 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:53,414 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 195 statements into 1 equivalence classes. [2025-03-16 18:40:53,426 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 195 of 195 statements. [2025-03-16 18:40:53,426 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:53,427 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:53,463 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:53,464 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:53,464 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [129598568] [2025-03-16 18:40:53,464 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [129598568] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:53,464 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:53,464 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:53,464 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [566281719] [2025-03-16 18:40:53,464 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:53,465 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:53,465 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:53,465 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:53,465 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:53,466 INFO L87 Difference]: Start difference. First operand 22912 states and 37632 transitions. Second operand has 3 states, 3 states have (on average 38.333333333333336) internal successors, (115), 3 states have internal predecessors, (115), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:54,272 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:54,272 INFO L93 Difference]: Finished difference Result 60417 states and 99616 transitions. [2025-03-16 18:40:54,272 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:54,273 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 38.333333333333336) internal successors, (115), 3 states have internal predecessors, (115), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 195 [2025-03-16 18:40:54,274 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:54,420 INFO L225 Difference]: With dead ends: 60417 [2025-03-16 18:40:54,420 INFO L226 Difference]: Without dead ends: 40736 [2025-03-16 18:40:54,453 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:54,455 INFO L435 NwaCegarLoop]: 831 mSDtfsCounter, 146 mSDsluCounter, 824 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 164 SdHoareTripleChecker+Valid, 1655 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:54,455 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [164 Valid, 1655 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:54,482 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 40736 states. [2025-03-16 18:40:55,735 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 40736 to 40728. [2025-03-16 18:40:55,785 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 40728 states, 34910 states have (on average 1.5690346605557146) internal successors, (54775), 34925 states have internal predecessors, (54775), 5769 states have call successors, (5769), 44 states have call predecessors, (5769), 48 states have return successors, (6382), 5767 states have call predecessors, (6382), 5768 states have call successors, (6382) [2025-03-16 18:40:55,914 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 40728 states to 40728 states and 66926 transitions. [2025-03-16 18:40:55,931 INFO L78 Accepts]: Start accepts. Automaton has 40728 states and 66926 transitions. Word has length 195 [2025-03-16 18:40:55,931 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:40:55,932 INFO L471 AbstractCegarLoop]: Abstraction has 40728 states and 66926 transitions. [2025-03-16 18:40:55,932 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 38.333333333333336) internal successors, (115), 3 states have internal predecessors, (115), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:40:55,932 INFO L276 IsEmpty]: Start isEmpty. Operand 40728 states and 66926 transitions. [2025-03-16 18:40:55,963 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 190 [2025-03-16 18:40:55,963 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:40:55,963 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:40:55,963 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable20 [2025-03-16 18:40:55,964 INFO L396 AbstractCegarLoop]: === Iteration 22 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:40:55,964 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:40:55,964 INFO L85 PathProgramCache]: Analyzing trace with hash -2082047012, now seen corresponding path program 1 times [2025-03-16 18:40:55,964 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:40:55,964 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1593150268] [2025-03-16 18:40:55,964 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:40:55,964 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:40:55,985 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 189 statements into 1 equivalence classes. [2025-03-16 18:40:55,996 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 189 of 189 statements. [2025-03-16 18:40:55,997 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:40:55,997 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:40:56,040 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:40:56,040 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:40:56,040 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1593150268] [2025-03-16 18:40:56,040 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1593150268] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:40:56,040 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:40:56,040 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:40:56,040 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [164514294] [2025-03-16 18:40:56,040 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:40:56,041 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:40:56,041 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:40:56,042 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:40:56,042 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:56,042 INFO L87 Difference]: Start difference. First operand 40728 states and 66926 transitions. Second operand has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:40:57,580 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:40:57,581 INFO L93 Difference]: Finished difference Result 110279 states and 182238 transitions. [2025-03-16 18:40:57,581 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:40:57,581 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 189 [2025-03-16 18:40:57,581 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:40:57,850 INFO L225 Difference]: With dead ends: 110279 [2025-03-16 18:40:57,850 INFO L226 Difference]: Without dead ends: 73888 [2025-03-16 18:40:57,949 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:40:57,953 INFO L435 NwaCegarLoop]: 836 mSDtfsCounter, 144 mSDsluCounter, 823 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 162 SdHoareTripleChecker+Valid, 1659 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:40:57,953 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [162 Valid, 1659 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:40:58,015 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 73888 states. [2025-03-16 18:41:00,496 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 73888 to 73880. [2025-03-16 18:41:00,576 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 73880 states, 63549 states have (on average 1.573699035390014) internal successors, (100007), 63564 states have internal predecessors, (100007), 10282 states have call successors, (10282), 44 states have call predecessors, (10282), 48 states have return successors, (11427), 10280 states have call predecessors, (11427), 10281 states have call successors, (11427) [2025-03-16 18:41:00,822 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 73880 states to 73880 states and 121716 transitions. [2025-03-16 18:41:00,847 INFO L78 Accepts]: Start accepts. Automaton has 73880 states and 121716 transitions. Word has length 189 [2025-03-16 18:41:00,848 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:41:00,848 INFO L471 AbstractCegarLoop]: Abstraction has 73880 states and 121716 transitions. [2025-03-16 18:41:00,848 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:41:00,848 INFO L276 IsEmpty]: Start isEmpty. Operand 73880 states and 121716 transitions. [2025-03-16 18:41:00,883 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 191 [2025-03-16 18:41:00,884 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:41:00,884 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:41:00,884 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable21 [2025-03-16 18:41:00,884 INFO L396 AbstractCegarLoop]: === Iteration 23 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:41:00,885 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:41:00,885 INFO L85 PathProgramCache]: Analyzing trace with hash -577192204, now seen corresponding path program 1 times [2025-03-16 18:41:00,885 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:41:00,885 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [873506028] [2025-03-16 18:41:00,885 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:41:00,885 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:41:00,905 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 190 statements into 1 equivalence classes. [2025-03-16 18:41:00,916 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 190 of 190 statements. [2025-03-16 18:41:00,916 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:41:00,916 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:41:00,957 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:41:00,958 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:41:00,958 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [873506028] [2025-03-16 18:41:00,958 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [873506028] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:41:00,958 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:41:00,958 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:41:00,958 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [42255423] [2025-03-16 18:41:00,958 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:41:00,959 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:41:00,959 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:41:00,959 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:41:00,959 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:41:00,960 INFO L87 Difference]: Start difference. First operand 73880 states and 121716 transitions. Second operand has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:41:03,482 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:41:03,482 INFO L93 Difference]: Finished difference Result 137940 states and 228130 transitions. [2025-03-16 18:41:03,482 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:41:03,482 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 190 [2025-03-16 18:41:03,483 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:41:03,986 INFO L225 Difference]: With dead ends: 137940 [2025-03-16 18:41:03,986 INFO L226 Difference]: Without dead ends: 137623 [2025-03-16 18:41:04,067 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:41:04,068 INFO L435 NwaCegarLoop]: 840 mSDtfsCounter, 138 mSDsluCounter, 830 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 155 SdHoareTripleChecker+Valid, 1670 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:41:04,068 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [155 Valid, 1670 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:41:04,162 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 137623 states. [2025-03-16 18:41:08,225 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 137623 to 137615. [2025-03-16 18:41:08,346 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 137615 states, 118916 states have (on average 1.573362709811968) internal successors, (187098), 118931 states have internal predecessors, (187098), 18650 states have call successors, (18650), 44 states have call predecessors, (18650), 48 states have return successors, (20841), 18648 states have call predecessors, (20841), 18649 states have call successors, (20841) [2025-03-16 18:41:09,034 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 137615 states to 137615 states and 226589 transitions. [2025-03-16 18:41:09,079 INFO L78 Accepts]: Start accepts. Automaton has 137615 states and 226589 transitions. Word has length 190 [2025-03-16 18:41:09,080 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:41:09,080 INFO L471 AbstractCegarLoop]: Abstraction has 137615 states and 226589 transitions. [2025-03-16 18:41:09,080 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:41:09,080 INFO L276 IsEmpty]: Start isEmpty. Operand 137615 states and 226589 transitions. [2025-03-16 18:41:09,119 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 199 [2025-03-16 18:41:09,119 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:41:09,119 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:41:09,119 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable22 [2025-03-16 18:41:09,119 INFO L396 AbstractCegarLoop]: === Iteration 24 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:41:09,120 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:41:09,120 INFO L85 PathProgramCache]: Analyzing trace with hash 612528688, now seen corresponding path program 1 times [2025-03-16 18:41:09,120 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:41:09,120 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [988657827] [2025-03-16 18:41:09,120 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:41:09,120 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:41:09,137 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 198 statements into 1 equivalence classes. [2025-03-16 18:41:09,148 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 198 of 198 statements. [2025-03-16 18:41:09,149 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:41:09,149 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:41:09,414 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:41:09,414 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:41:09,414 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [988657827] [2025-03-16 18:41:09,414 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [988657827] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:41:09,414 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:41:09,414 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2025-03-16 18:41:09,414 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [939224841] [2025-03-16 18:41:09,415 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:41:09,415 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2025-03-16 18:41:09,415 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:41:09,415 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2025-03-16 18:41:09,416 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=25, Invalid=157, Unknown=0, NotChecked=0, Total=182 [2025-03-16 18:41:09,416 INFO L87 Difference]: Start difference. First operand 137615 states and 226589 transitions. Second operand has 14 states, 12 states have (on average 9.833333333333334) internal successors, (118), 12 states have internal predecessors, (118), 7 states have call successors, (29), 4 states have call predecessors, (29), 4 states have return successors, (24), 7 states have call predecessors, (24), 7 states have call successors, (24)