./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/email_spec6_productSimulator.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 8fc3dc66 Calling Ultimate with: /root/.sdkman/candidates/java/21.0.5-tem/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/email_spec6_productSimulator.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash c86855dab8667fe80df418e2dda62d52081f1a657b6492a63fb3d2a1da4890b5 --- Real Ultimate output --- This is Ultimate 0.3.0-?-8fc3dc6-m [2025-03-16 18:44:19,689 INFO L188 SettingsManager]: Resetting all preferences to default values... [2025-03-16 18:44:19,740 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2025-03-16 18:44:19,746 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2025-03-16 18:44:19,746 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2025-03-16 18:44:19,773 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2025-03-16 18:44:19,774 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2025-03-16 18:44:19,774 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2025-03-16 18:44:19,774 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2025-03-16 18:44:19,774 INFO L153 SettingsManager]: * Use memory slicer=true [2025-03-16 18:44:19,774 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2025-03-16 18:44:19,774 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2025-03-16 18:44:19,775 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * Use SBE=true [2025-03-16 18:44:19,775 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * sizeof long=4 [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * sizeof POINTER=4 [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * sizeof long double=12 [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2025-03-16 18:44:19,775 INFO L153 SettingsManager]: * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Use constant arrays=true [2025-03-16 18:44:19,776 INFO L151 SettingsManager]: Preferences of IcfgBuilder differ from their defaults: [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2025-03-16 18:44:19,776 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Compute procedure contracts=false [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2025-03-16 18:44:19,776 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> c86855dab8667fe80df418e2dda62d52081f1a657b6492a63fb3d2a1da4890b5 [2025-03-16 18:44:20,005 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2025-03-16 18:44:20,012 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2025-03-16 18:44:20,019 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2025-03-16 18:44:20,020 INFO L270 PluginConnector]: Initializing CDTParser... [2025-03-16 18:44:20,020 INFO L274 PluginConnector]: CDTParser initialized [2025-03-16 18:44:20,022 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/email_spec6_productSimulator.cil.c [2025-03-16 18:44:21,278 INFO L533 CDTParser]: Created temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/5aeec9abd/690e67180977460c8ad8c88e8a58eef7/FLAGa9483c396 [2025-03-16 18:44:21,618 INFO L384 CDTParser]: Found 1 translation units. [2025-03-16 18:44:21,618 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec6_productSimulator.cil.c [2025-03-16 18:44:21,635 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/5aeec9abd/690e67180977460c8ad8c88e8a58eef7/FLAGa9483c396 [2025-03-16 18:44:21,859 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/5aeec9abd/690e67180977460c8ad8c88e8a58eef7 [2025-03-16 18:44:21,861 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2025-03-16 18:44:21,862 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2025-03-16 18:44:21,863 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2025-03-16 18:44:21,863 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2025-03-16 18:44:21,866 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2025-03-16 18:44:21,867 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.03 06:44:21" (1/1) ... [2025-03-16 18:44:21,867 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@36fba6cb and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:21, skipping insertion in model container [2025-03-16 18:44:21,867 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.03 06:44:21" (1/1) ... [2025-03-16 18:44:21,916 INFO L175 MainTranslator]: Built tables and reachable declarations [2025-03-16 18:44:22,203 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec6_productSimulator.cil.c[17001,17014] [2025-03-16 18:44:22,449 INFO L210 PostProcessor]: Analyzing one entry point: main [2025-03-16 18:44:22,466 INFO L200 MainTranslator]: Completed pre-run [2025-03-16 18:44:22,472 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EncryptDecrypt_spec.i","") [48] [2025-03-16 18:44:22,474 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [111] [2025-03-16 18:44:22,474 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Email.i","") [477] [2025-03-16 18:44:22,474 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [692] [2025-03-16 18:44:22,474 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [701] [2025-03-16 18:44:22,475 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"ClientLib.i","") [811] [2025-03-16 18:44:22,475 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Util.i","") [1890] [2025-03-16 18:44:22,475 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [1907] [2025-03-16 18:44:22,475 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [2184] [2025-03-16 18:44:22,476 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EmailLib.i","") [2539] [2025-03-16 18:44:22,476 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Client.i","") [2941] [2025-03-16 18:44:22,511 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec6_productSimulator.cil.c[17001,17014] [2025-03-16 18:44:22,570 INFO L210 PostProcessor]: Analyzing one entry point: main [2025-03-16 18:44:22,601 INFO L204 MainTranslator]: Completed translation [2025-03-16 18:44:22,601 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22 WrapperNode [2025-03-16 18:44:22,602 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2025-03-16 18:44:22,602 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2025-03-16 18:44:22,602 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2025-03-16 18:44:22,603 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2025-03-16 18:44:22,607 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,626 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,661 INFO L138 Inliner]: procedures = 152, calls = 268, calls flagged for inlining = 68, calls inlined = 65, statements flattened = 1341 [2025-03-16 18:44:22,661 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2025-03-16 18:44:22,662 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2025-03-16 18:44:22,662 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2025-03-16 18:44:22,662 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2025-03-16 18:44:22,672 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,672 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,677 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,712 INFO L175 MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 4, 4, 4]. 29 percent of accesses are in the largest equivalence class. The 14 initializations are split as follows [2, 4, 4, 4]. The 0 writes are split as follows [0, 0, 0, 0]. [2025-03-16 18:44:22,715 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,715 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,731 INFO L184 PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,738 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,745 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,748 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,761 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2025-03-16 18:44:22,762 INFO L112 PluginConnector]: ------------------------IcfgBuilder---------------------------- [2025-03-16 18:44:22,762 INFO L270 PluginConnector]: Initializing IcfgBuilder... [2025-03-16 18:44:22,762 INFO L274 PluginConnector]: IcfgBuilder initialized [2025-03-16 18:44:22,767 INFO L184 PluginConnector]: Executing the observer IcfgBuilderObserver from plugin IcfgBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (1/1) ... [2025-03-16 18:44:22,771 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2025-03-16 18:44:22,783 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:22,795 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2025-03-16 18:44:22,800 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2025-03-16 18:44:22,820 INFO L130 BoogieDeclarations]: Found specification of procedure getClientPrivateKey [2025-03-16 18:44:22,820 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientPrivateKey [2025-03-16 18:44:22,820 INFO L130 BoogieDeclarations]: Found specification of procedure setup_chuck__before__Keys [2025-03-16 18:44:22,820 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_chuck__before__Keys [2025-03-16 18:44:22,820 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__Sign [2025-03-16 18:44:22,820 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__Sign [2025-03-16 18:44:22,820 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookSize [2025-03-16 18:44:22,821 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookSize [2025-03-16 18:44:22,821 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey [2025-03-16 18:44:22,821 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey [2025-03-16 18:44:22,821 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookAddress [2025-03-16 18:44:22,821 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookAddress [2025-03-16 18:44:22,821 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey [2025-03-16 18:44:22,822 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey [2025-03-16 18:44:22,822 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Verify [2025-03-16 18:44:22,822 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Verify [2025-03-16 18:44:22,822 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailTo [2025-03-16 18:44:22,823 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailTo [2025-03-16 18:44:22,823 INFO L130 BoogieDeclarations]: Found specification of procedure setup_bob__before__Keys [2025-03-16 18:44:22,823 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_bob__before__Keys [2025-03-16 18:44:22,823 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailFrom [2025-03-16 18:44:22,824 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailFrom [2025-03-16 18:44:22,824 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable [2025-03-16 18:44:22,824 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable [2025-03-16 18:44:22,824 INFO L130 BoogieDeclarations]: Found specification of procedure createClientKeyringEntry [2025-03-16 18:44:22,824 INFO L138 BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry [2025-03-16 18:44:22,824 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Decrypt [2025-03-16 18:44:22,824 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Decrypt [2025-03-16 18:44:22,824 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__Encrypt [2025-03-16 18:44:22,824 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__Encrypt [2025-03-16 18:44:22,824 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted [2025-03-16 18:44:22,825 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted [2025-03-16 18:44:22,825 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailSignKey [2025-03-16 18:44:22,825 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailSignKey [2025-03-16 18:44:22,825 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAdd [2025-03-16 18:44:22,825 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAdd [2025-03-16 18:44:22,825 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Forward [2025-03-16 18:44:22,825 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Forward [2025-03-16 18:44:22,825 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailFrom [2025-03-16 18:44:22,826 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailFrom [2025-03-16 18:44:22,826 INFO L130 BoogieDeclarations]: Found specification of procedure queue [2025-03-16 18:44:22,826 INFO L138 BoogieDeclarations]: Found implementation of procedure queue [2025-03-16 18:44:22,826 INFO L130 BoogieDeclarations]: Found specification of procedure setClientId [2025-03-16 18:44:22,826 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientId [2025-03-16 18:44:22,826 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable__before__Encrypt [2025-03-16 18:44:22,826 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable__before__Encrypt [2025-03-16 18:44:22,826 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2025-03-16 18:44:22,826 INFO L130 BoogieDeclarations]: Found specification of procedure isSigned [2025-03-16 18:44:22,826 INFO L138 BoogieDeclarations]: Found implementation of procedure isSigned [2025-03-16 18:44:22,826 INFO L130 BoogieDeclarations]: Found specification of procedure isKeyPairValid [2025-03-16 18:44:22,826 INFO L138 BoogieDeclarations]: Found implementation of procedure isKeyPairValid [2025-03-16 18:44:22,826 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__AddressBook [2025-03-16 18:44:22,826 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__AddressBook [2025-03-16 18:44:22,826 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Encrypt [2025-03-16 18:44:22,826 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Encrypt [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__AutoResponder [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__AutoResponder [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookSize [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookSize [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringUser [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringUser [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure findPublicKey [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure findPublicKey [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure sendEmail [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure sendEmail [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure isEncrypted [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure isEncrypted [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure setup_rjh__before__Keys [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_rjh__before__Keys [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Verify [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Verify [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure setClientPrivateKey [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientPrivateKey [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailTo [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailTo [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure generateKeyPair [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure generateKeyPair [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Sign [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Sign [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure select_one [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure select_one [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookAddress [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookAddress [2025-03-16 18:44:22,827 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2025-03-16 18:44:22,827 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2025-03-16 18:44:23,036 INFO L256 CfgBuilder]: Building ICFG [2025-03-16 18:44:23,038 INFO L286 CfgBuilder]: Building CFG for each procedure with an implementation [2025-03-16 18:44:23,100 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L627: #res := ~retValue_acc~3; [2025-03-16 18:44:23,112 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2848: #res := ~retValue_acc~37; [2025-03-16 18:44:23,124 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3380: #res := ~retValue_acc~44; [2025-03-16 18:44:23,137 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1432: #res := ~retValue_acc~19; [2025-03-16 18:44:23,210 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L976: #res := ~retValue_acc~13; [2025-03-16 18:44:23,244 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2585-1: getEmailId_#res#1 := getEmailId_~retValue_acc~30#1; [2025-03-16 18:44:23,281 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2811: #res := ~retValue_acc~36; [2025-03-16 18:44:23,309 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2659: #res := ~retValue_acc~32; [2025-03-16 18:44:23,370 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L665: #res#1 := ~retValue_acc~5#1; [2025-03-16 18:44:23,370 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L647-1: isReadable__role__Encrypt_#res#1 := isReadable__role__Encrypt_~retValue_acc~4#1; [2025-03-16 18:44:23,442 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1524: #res#1 := ~retValue_acc~21#1; [2025-03-16 18:44:23,443 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1479-1: getClientKeyringSize_#res#1 := getClientKeyringSize_~retValue_acc~20#1; [2025-03-16 18:44:23,486 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1748: #res := ~retValue_acc~24; [2025-03-16 18:44:23,494 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L689-1: createEmail_#res#1 := createEmail_~retValue_acc~7#1; [2025-03-16 18:44:23,499 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2774: #res := ~retValue_acc~35; [2025-03-16 18:44:23,541 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1867-1: getClientId_#res#1 := getClientId_~retValue_acc~26#1; [2025-03-16 18:44:23,581 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2922-1: isVerified_#res#1 := isVerified_~retValue_acc~39#1; [2025-03-16 18:44:23,581 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1820-1: getClientForwardReceiver_#res#1 := getClientForwardReceiver_~retValue_acc~25#1; [2025-03-16 18:44:23,585 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2885: #res := ~retValue_acc~38; [2025-03-16 18:44:23,605 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L713: #res := ~retValue_acc~8; [2025-03-16 18:44:23,630 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1302: #res := ~retValue_acc~17; [2025-03-16 18:44:23,645 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1385-1: getClientAutoResponse_#res#1 := getClientAutoResponse_~retValue_acc~18#1; [2025-03-16 18:44:23,885 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3355-1: get_queued_email_#res#1 := get_queued_email_~retValue_acc~43#1; [2025-03-16 18:44:23,885 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1694-1: getClientKeyringPublicKey_#res#1 := getClientKeyringPublicKey_~retValue_acc~23#1; [2025-03-16 18:44:23,885 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3346-1: get_queued_client_#res#1 := get_queued_client_~retValue_acc~42#1; [2025-03-16 18:44:23,885 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L808-1: valid_product_#res#1 := valid_product_~retValue_acc~9#1; [2025-03-16 18:44:23,885 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3337-1: is_queue_empty_#res#1 := is_queue_empty_~retValue_acc~41#1; [2025-03-16 18:44:23,885 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1587-1: getClientKeyringUser_#res#1 := getClientKeyringUser_~retValue_acc~22#1; [2025-03-16 18:44:23,891 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2622: #res := ~retValue_acc~31; [2025-03-16 18:44:24,035 INFO L? ?]: Removed 606 outVars from TransFormulas that were not future-live. [2025-03-16 18:44:24,035 INFO L307 CfgBuilder]: Performing block encoding [2025-03-16 18:44:24,057 INFO L331 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2025-03-16 18:44:24,058 INFO L336 CfgBuilder]: Removed 0 assume(true) statements. [2025-03-16 18:44:24,058 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 16.03 06:44:24 BoogieIcfgContainer [2025-03-16 18:44:24,058 INFO L131 PluginConnector]: ------------------------ END IcfgBuilder---------------------------- [2025-03-16 18:44:24,062 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2025-03-16 18:44:24,062 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2025-03-16 18:44:24,069 INFO L274 PluginConnector]: TraceAbstraction initialized [2025-03-16 18:44:24,070 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 16.03 06:44:21" (1/3) ... [2025-03-16 18:44:24,070 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@48ecc3b7 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.03 06:44:24, skipping insertion in model container [2025-03-16 18:44:24,070 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:22" (2/3) ... [2025-03-16 18:44:24,070 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@48ecc3b7 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.03 06:44:24, skipping insertion in model container [2025-03-16 18:44:24,070 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 16.03 06:44:24" (3/3) ... [2025-03-16 18:44:24,071 INFO L128 eAbstractionObserver]: Analyzing ICFG email_spec6_productSimulator.cil.c [2025-03-16 18:44:24,082 INFO L216 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2025-03-16 18:44:24,084 INFO L151 ceAbstractionStarter]: Applying trace abstraction to ICFG email_spec6_productSimulator.cil.c that has 44 procedures, 589 locations, 1 initial locations, 1 loop locations, and 1 error locations. [2025-03-16 18:44:24,160 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2025-03-16 18:44:24,167 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@37a515, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2025-03-16 18:44:24,167 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2025-03-16 18:44:24,171 INFO L276 IsEmpty]: Start isEmpty. Operand has 589 states, 432 states have (on average 1.5324074074074074) internal successors, (662), 452 states have internal predecessors, (662), 112 states have call successors, (112), 43 states have call predecessors, (112), 43 states have return successors, (112), 111 states have call predecessors, (112), 112 states have call successors, (112) [2025-03-16 18:44:24,190 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 169 [2025-03-16 18:44:24,190 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:24,191 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:24,191 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:24,195 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:24,195 INFO L85 PathProgramCache]: Analyzing trace with hash -371767688, now seen corresponding path program 1 times [2025-03-16 18:44:24,200 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:24,203 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1289530550] [2025-03-16 18:44:24,203 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:24,203 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:24,293 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 168 statements into 1 equivalence classes. [2025-03-16 18:44:24,360 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 168 of 168 statements. [2025-03-16 18:44:24,362 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:24,363 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:24,774 INFO L134 CoverageAnalysis]: Checked inductivity of 104 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 104 trivial. 0 not checked. [2025-03-16 18:44:24,776 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:24,776 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1289530550] [2025-03-16 18:44:24,776 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1289530550] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:24,777 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:24,777 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2025-03-16 18:44:24,778 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [8318747] [2025-03-16 18:44:24,779 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:24,782 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2025-03-16 18:44:24,783 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:24,800 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2025-03-16 18:44:24,801 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2025-03-16 18:44:24,803 INFO L87 Difference]: Start difference. First operand has 589 states, 432 states have (on average 1.5324074074074074) internal successors, (662), 452 states have internal predecessors, (662), 112 states have call successors, (112), 43 states have call predecessors, (112), 43 states have return successors, (112), 111 states have call predecessors, (112), 112 states have call successors, (112) Second operand has 5 states, 5 states have (on average 17.4) internal successors, (87), 5 states have internal predecessors, (87), 2 states have call successors, (30), 2 states have call predecessors, (30), 1 states have return successors, (25), 2 states have call predecessors, (25), 2 states have call successors, (25) [2025-03-16 18:44:24,934 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:24,937 INFO L93 Difference]: Finished difference Result 1145 states and 1730 transitions. [2025-03-16 18:44:24,938 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2025-03-16 18:44:24,939 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 17.4) internal successors, (87), 5 states have internal predecessors, (87), 2 states have call successors, (30), 2 states have call predecessors, (30), 1 states have return successors, (25), 2 states have call predecessors, (25), 2 states have call successors, (25) Word has length 168 [2025-03-16 18:44:24,939 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:24,954 INFO L225 Difference]: With dead ends: 1145 [2025-03-16 18:44:24,954 INFO L226 Difference]: Without dead ends: 585 [2025-03-16 18:44:24,960 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2025-03-16 18:44:24,965 INFO L435 NwaCegarLoop]: 881 mSDtfsCounter, 0 mSDsluCounter, 2630 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 3511 SdHoareTripleChecker+Invalid, 24 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:24,966 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 3511 Invalid, 24 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:24,977 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 585 states. [2025-03-16 18:44:25,029 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 585 to 585. [2025-03-16 18:44:25,033 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 585 states, 429 states have (on average 1.5104895104895104) internal successors, (648), 448 states have internal predecessors, (648), 112 states have call successors, (112), 43 states have call predecessors, (112), 43 states have return successors, (111), 110 states have call predecessors, (111), 111 states have call successors, (111) [2025-03-16 18:44:25,040 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 585 states to 585 states and 871 transitions. [2025-03-16 18:44:25,045 INFO L78 Accepts]: Start accepts. Automaton has 585 states and 871 transitions. Word has length 168 [2025-03-16 18:44:25,046 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:25,047 INFO L471 AbstractCegarLoop]: Abstraction has 585 states and 871 transitions. [2025-03-16 18:44:25,047 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 17.4) internal successors, (87), 5 states have internal predecessors, (87), 2 states have call successors, (30), 2 states have call predecessors, (30), 1 states have return successors, (25), 2 states have call predecessors, (25), 2 states have call successors, (25) [2025-03-16 18:44:25,047 INFO L276 IsEmpty]: Start isEmpty. Operand 585 states and 871 transitions. [2025-03-16 18:44:25,052 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 153 [2025-03-16 18:44:25,054 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:25,054 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:25,054 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2025-03-16 18:44:25,054 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:25,055 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:25,055 INFO L85 PathProgramCache]: Analyzing trace with hash -770324534, now seen corresponding path program 1 times [2025-03-16 18:44:25,056 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:25,056 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1707739794] [2025-03-16 18:44:25,056 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:25,056 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:25,088 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 152 statements into 1 equivalence classes. [2025-03-16 18:44:25,101 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 152 of 152 statements. [2025-03-16 18:44:25,101 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:25,101 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:25,222 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:44:25,223 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:25,223 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1707739794] [2025-03-16 18:44:25,223 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1707739794] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:25,223 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:25,224 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:25,224 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [627948171] [2025-03-16 18:44:25,224 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:25,225 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:25,225 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:25,225 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:25,225 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:25,227 INFO L87 Difference]: Start difference. First operand 585 states and 871 transitions. Second operand has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 3 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (22), 3 states have call predecessors, (22), 3 states have call successors, (22) [2025-03-16 18:44:25,300 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:25,303 INFO L93 Difference]: Finished difference Result 1147 states and 1727 transitions. [2025-03-16 18:44:25,303 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:25,303 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 3 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (22), 3 states have call predecessors, (22), 3 states have call successors, (22) Word has length 152 [2025-03-16 18:44:25,303 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:25,308 INFO L225 Difference]: With dead ends: 1147 [2025-03-16 18:44:25,308 INFO L226 Difference]: Without dead ends: 584 [2025-03-16 18:44:25,310 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:25,311 INFO L435 NwaCegarLoop]: 855 mSDtfsCounter, 840 mSDsluCounter, 7 mSDsCounter, 0 mSdLazyCounter, 7 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 840 SdHoareTripleChecker+Valid, 862 SdHoareTripleChecker+Invalid, 11 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 7 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:25,311 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [840 Valid, 862 Invalid, 11 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 7 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:25,314 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 584 states. [2025-03-16 18:44:25,350 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 584 to 584. [2025-03-16 18:44:25,351 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 584 states, 430 states have (on average 1.4976744186046511) internal successors, (644), 447 states have internal predecessors, (644), 109 states have call successors, (109), 44 states have call predecessors, (109), 44 states have return successors, (108), 107 states have call predecessors, (108), 108 states have call successors, (108) [2025-03-16 18:44:25,356 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 584 states to 584 states and 861 transitions. [2025-03-16 18:44:25,359 INFO L78 Accepts]: Start accepts. Automaton has 584 states and 861 transitions. Word has length 152 [2025-03-16 18:44:25,359 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:25,359 INFO L471 AbstractCegarLoop]: Abstraction has 584 states and 861 transitions. [2025-03-16 18:44:25,359 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 3 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (22), 3 states have call predecessors, (22), 3 states have call successors, (22) [2025-03-16 18:44:25,359 INFO L276 IsEmpty]: Start isEmpty. Operand 584 states and 861 transitions. [2025-03-16 18:44:25,362 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 176 [2025-03-16 18:44:25,364 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:25,364 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:25,365 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2025-03-16 18:44:25,365 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:25,366 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:25,366 INFO L85 PathProgramCache]: Analyzing trace with hash -1614172424, now seen corresponding path program 1 times [2025-03-16 18:44:25,366 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:25,367 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1680365445] [2025-03-16 18:44:25,367 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:25,367 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:25,404 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 175 statements into 1 equivalence classes. [2025-03-16 18:44:25,414 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 175 of 175 statements. [2025-03-16 18:44:25,414 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:25,414 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:25,497 INFO L134 CoverageAnalysis]: Checked inductivity of 104 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 104 trivial. 0 not checked. [2025-03-16 18:44:25,499 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:25,499 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1680365445] [2025-03-16 18:44:25,499 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1680365445] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:25,499 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:25,499 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:25,499 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1617003377] [2025-03-16 18:44:25,500 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:25,500 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:25,500 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:25,501 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:25,501 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:25,501 INFO L87 Difference]: Start difference. First operand 584 states and 861 transitions. Second operand has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (30), 2 states have call predecessors, (30), 1 states have return successors, (25), 2 states have call predecessors, (25), 2 states have call successors, (25) [2025-03-16 18:44:25,567 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:25,567 INFO L93 Difference]: Finished difference Result 1140 states and 1695 transitions. [2025-03-16 18:44:25,568 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:25,568 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (30), 2 states have call predecessors, (30), 1 states have return successors, (25), 2 states have call predecessors, (25), 2 states have call successors, (25) Word has length 175 [2025-03-16 18:44:25,568 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:25,573 INFO L225 Difference]: With dead ends: 1140 [2025-03-16 18:44:25,573 INFO L226 Difference]: Without dead ends: 583 [2025-03-16 18:44:25,575 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:25,576 INFO L435 NwaCegarLoop]: 853 mSDtfsCounter, 826 mSDsluCounter, 26 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 826 SdHoareTripleChecker+Valid, 879 SdHoareTripleChecker+Invalid, 5 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:25,576 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [826 Valid, 879 Invalid, 5 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:25,577 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 583 states. [2025-03-16 18:44:25,610 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 583 to 583. [2025-03-16 18:44:25,611 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 583 states, 430 states have (on average 1.4930232558139536) internal successors, (642), 446 states have internal predecessors, (642), 108 states have call successors, (108), 44 states have call predecessors, (108), 44 states have return successors, (107), 106 states have call predecessors, (107), 107 states have call successors, (107) [2025-03-16 18:44:25,615 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 583 states to 583 states and 857 transitions. [2025-03-16 18:44:25,616 INFO L78 Accepts]: Start accepts. Automaton has 583 states and 857 transitions. Word has length 175 [2025-03-16 18:44:25,617 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:25,617 INFO L471 AbstractCegarLoop]: Abstraction has 583 states and 857 transitions. [2025-03-16 18:44:25,617 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (30), 2 states have call predecessors, (30), 1 states have return successors, (25), 2 states have call predecessors, (25), 2 states have call successors, (25) [2025-03-16 18:44:25,617 INFO L276 IsEmpty]: Start isEmpty. Operand 583 states and 857 transitions. [2025-03-16 18:44:25,621 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 170 [2025-03-16 18:44:25,621 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:25,621 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:25,621 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2025-03-16 18:44:25,621 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:25,622 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:25,622 INFO L85 PathProgramCache]: Analyzing trace with hash -71455506, now seen corresponding path program 1 times [2025-03-16 18:44:25,622 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:25,622 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1341332076] [2025-03-16 18:44:25,623 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:25,623 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:25,651 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 169 statements into 1 equivalence classes. [2025-03-16 18:44:25,668 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 169 of 169 statements. [2025-03-16 18:44:25,668 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:25,668 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:25,733 INFO L134 CoverageAnalysis]: Checked inductivity of 104 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 104 trivial. 0 not checked. [2025-03-16 18:44:25,734 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:25,734 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1341332076] [2025-03-16 18:44:25,734 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1341332076] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:25,734 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:25,734 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:25,734 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2144878853] [2025-03-16 18:44:25,734 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:25,735 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:25,735 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:25,736 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:25,736 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:25,736 INFO L87 Difference]: Start difference. First operand 583 states and 857 transitions. Second operand has 3 states, 3 states have (on average 30.0) internal successors, (90), 3 states have internal predecessors, (90), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:44:25,807 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:25,808 INFO L93 Difference]: Finished difference Result 1120 states and 1653 transitions. [2025-03-16 18:44:25,808 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:25,808 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 30.0) internal successors, (90), 3 states have internal predecessors, (90), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 169 [2025-03-16 18:44:25,809 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:25,812 INFO L225 Difference]: With dead ends: 1120 [2025-03-16 18:44:25,812 INFO L226 Difference]: Without dead ends: 580 [2025-03-16 18:44:25,814 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:25,815 INFO L435 NwaCegarLoop]: 826 mSDtfsCounter, 798 mSDsluCounter, 30 mSDsCounter, 0 mSdLazyCounter, 14 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 798 SdHoareTripleChecker+Valid, 856 SdHoareTripleChecker+Invalid, 24 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 14 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:25,815 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [798 Valid, 856 Invalid, 24 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 14 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:25,816 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 580 states. [2025-03-16 18:44:25,854 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 580 to 580. [2025-03-16 18:44:25,855 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 580 states, 430 states have (on average 1.4674418604651163) internal successors, (631), 441 states have internal predecessors, (631), 105 states have call successors, (105), 44 states have call predecessors, (105), 44 states have return successors, (104), 103 states have call predecessors, (104), 104 states have call successors, (104) [2025-03-16 18:44:25,858 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 580 states to 580 states and 840 transitions. [2025-03-16 18:44:25,859 INFO L78 Accepts]: Start accepts. Automaton has 580 states and 840 transitions. Word has length 169 [2025-03-16 18:44:25,859 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:25,859 INFO L471 AbstractCegarLoop]: Abstraction has 580 states and 840 transitions. [2025-03-16 18:44:25,860 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 30.0) internal successors, (90), 3 states have internal predecessors, (90), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:44:25,860 INFO L276 IsEmpty]: Start isEmpty. Operand 580 states and 840 transitions. [2025-03-16 18:44:25,887 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 188 [2025-03-16 18:44:25,887 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:25,888 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:25,888 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2025-03-16 18:44:25,888 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:25,888 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:25,889 INFO L85 PathProgramCache]: Analyzing trace with hash 804260888, now seen corresponding path program 1 times [2025-03-16 18:44:25,889 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:25,889 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1555646794] [2025-03-16 18:44:25,889 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:25,889 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:25,913 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 187 statements into 1 equivalence classes. [2025-03-16 18:44:25,922 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 187 of 187 statements. [2025-03-16 18:44:25,922 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:25,923 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:26,156 INFO L134 CoverageAnalysis]: Checked inductivity of 116 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 110 trivial. 0 not checked. [2025-03-16 18:44:26,157 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:26,157 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1555646794] [2025-03-16 18:44:26,157 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1555646794] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:26,157 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [221783770] [2025-03-16 18:44:26,158 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:26,158 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:26,158 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:26,161 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:26,162 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2025-03-16 18:44:26,340 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 187 statements into 1 equivalence classes. [2025-03-16 18:44:26,521 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 187 of 187 statements. [2025-03-16 18:44:26,522 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:26,522 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:26,531 INFO L256 TraceCheckSpWp]: Trace formula consists of 1480 conjuncts, 2 conjuncts are in the unsatisfiable core [2025-03-16 18:44:26,544 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:26,582 INFO L134 CoverageAnalysis]: Checked inductivity of 116 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 116 trivial. 0 not checked. [2025-03-16 18:44:26,582 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:44:26,583 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [221783770] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:26,583 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:44:26,583 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [8] total 9 [2025-03-16 18:44:26,583 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1235594795] [2025-03-16 18:44:26,583 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:26,584 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:26,584 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:26,584 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:26,585 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:26,585 INFO L87 Difference]: Start difference. First operand 580 states and 840 transitions. Second operand has 3 states, 3 states have (on average 32.0) internal successors, (96), 3 states have internal predecessors, (96), 2 states have call successors, (32), 2 states have call predecessors, (32), 2 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:26,650 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:26,650 INFO L93 Difference]: Finished difference Result 902 states and 1288 transitions. [2025-03-16 18:44:26,651 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:26,651 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 32.0) internal successors, (96), 3 states have internal predecessors, (96), 2 states have call successors, (32), 2 states have call predecessors, (32), 2 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) Word has length 187 [2025-03-16 18:44:26,651 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:26,654 INFO L225 Difference]: With dead ends: 902 [2025-03-16 18:44:26,654 INFO L226 Difference]: Without dead ends: 581 [2025-03-16 18:44:26,655 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 194 GetRequests, 187 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:26,656 INFO L435 NwaCegarLoop]: 837 mSDtfsCounter, 0 mSDsluCounter, 835 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 1672 SdHoareTripleChecker+Invalid, 3 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:26,656 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 1672 Invalid, 3 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:26,657 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 581 states. [2025-03-16 18:44:26,679 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 581 to 581. [2025-03-16 18:44:26,680 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 581 states, 431 states have (on average 1.4663573085846868) internal successors, (632), 442 states have internal predecessors, (632), 105 states have call successors, (105), 44 states have call predecessors, (105), 44 states have return successors, (104), 103 states have call predecessors, (104), 104 states have call successors, (104) [2025-03-16 18:44:26,683 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 581 states to 581 states and 841 transitions. [2025-03-16 18:44:26,684 INFO L78 Accepts]: Start accepts. Automaton has 581 states and 841 transitions. Word has length 187 [2025-03-16 18:44:26,684 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:26,684 INFO L471 AbstractCegarLoop]: Abstraction has 581 states and 841 transitions. [2025-03-16 18:44:26,684 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 32.0) internal successors, (96), 3 states have internal predecessors, (96), 2 states have call successors, (32), 2 states have call predecessors, (32), 2 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:26,684 INFO L276 IsEmpty]: Start isEmpty. Operand 581 states and 841 transitions. [2025-03-16 18:44:26,686 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 194 [2025-03-16 18:44:26,686 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:26,687 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:26,695 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2025-03-16 18:44:26,891 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:26,891 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:26,893 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:26,893 INFO L85 PathProgramCache]: Analyzing trace with hash -336132376, now seen corresponding path program 1 times [2025-03-16 18:44:26,893 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:26,893 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [249636822] [2025-03-16 18:44:26,893 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:26,893 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:26,932 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 193 statements into 1 equivalence classes. [2025-03-16 18:44:26,940 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 193 of 193 statements. [2025-03-16 18:44:26,940 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:26,940 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:27,182 INFO L134 CoverageAnalysis]: Checked inductivity of 117 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 111 trivial. 0 not checked. [2025-03-16 18:44:27,183 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:27,183 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [249636822] [2025-03-16 18:44:27,183 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [249636822] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:27,183 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2058392690] [2025-03-16 18:44:27,183 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:27,183 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:27,183 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:27,186 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:27,187 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2025-03-16 18:44:27,351 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 193 statements into 1 equivalence classes. [2025-03-16 18:44:27,525 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 193 of 193 statements. [2025-03-16 18:44:27,526 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:27,526 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:27,531 INFO L256 TraceCheckSpWp]: Trace formula consists of 1493 conjuncts, 3 conjuncts are in the unsatisfiable core [2025-03-16 18:44:27,536 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:27,561 INFO L134 CoverageAnalysis]: Checked inductivity of 117 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 116 trivial. 0 not checked. [2025-03-16 18:44:27,562 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:44:27,562 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2058392690] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:27,562 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:44:27,562 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [8] total 9 [2025-03-16 18:44:27,562 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [77712639] [2025-03-16 18:44:27,562 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:27,562 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:27,563 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:27,563 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:27,563 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:27,563 INFO L87 Difference]: Start difference. First operand 581 states and 841 transitions. Second operand has 3 states, 3 states have (on average 34.0) internal successors, (102), 3 states have internal predecessors, (102), 2 states have call successors, (32), 2 states have call predecessors, (32), 2 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:27,610 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:27,610 INFO L93 Difference]: Finished difference Result 1183 states and 1744 transitions. [2025-03-16 18:44:27,611 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:27,611 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 34.0) internal successors, (102), 3 states have internal predecessors, (102), 2 states have call successors, (32), 2 states have call predecessors, (32), 2 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) Word has length 193 [2025-03-16 18:44:27,612 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:27,616 INFO L225 Difference]: With dead ends: 1183 [2025-03-16 18:44:27,616 INFO L226 Difference]: Without dead ends: 675 [2025-03-16 18:44:27,618 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 200 GetRequests, 193 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:27,619 INFO L435 NwaCegarLoop]: 856 mSDtfsCounter, 162 mSDsluCounter, 791 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 180 SdHoareTripleChecker+Valid, 1647 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:27,619 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [180 Valid, 1647 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:27,621 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 675 states. [2025-03-16 18:44:27,660 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 675 to 667. [2025-03-16 18:44:27,661 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 667 states, 503 states have (on average 1.4831013916500995) internal successors, (746), 514 states have internal predecessors, (746), 119 states have call successors, (119), 44 states have call predecessors, (119), 44 states have return successors, (118), 117 states have call predecessors, (118), 118 states have call successors, (118) [2025-03-16 18:44:27,665 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 667 states to 667 states and 983 transitions. [2025-03-16 18:44:27,666 INFO L78 Accepts]: Start accepts. Automaton has 667 states and 983 transitions. Word has length 193 [2025-03-16 18:44:27,667 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:27,667 INFO L471 AbstractCegarLoop]: Abstraction has 667 states and 983 transitions. [2025-03-16 18:44:27,668 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 34.0) internal successors, (102), 3 states have internal predecessors, (102), 2 states have call successors, (32), 2 states have call predecessors, (32), 2 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:27,668 INFO L276 IsEmpty]: Start isEmpty. Operand 667 states and 983 transitions. [2025-03-16 18:44:27,671 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 202 [2025-03-16 18:44:27,671 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:27,671 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:27,683 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2025-03-16 18:44:27,872 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2025-03-16 18:44:27,872 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:27,873 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:27,874 INFO L85 PathProgramCache]: Analyzing trace with hash 1290012778, now seen corresponding path program 1 times [2025-03-16 18:44:27,874 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:27,874 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1845142929] [2025-03-16 18:44:27,874 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:27,874 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:27,905 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 201 statements into 1 equivalence classes. [2025-03-16 18:44:27,915 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 201 of 201 statements. [2025-03-16 18:44:27,915 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:27,915 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:28,130 INFO L134 CoverageAnalysis]: Checked inductivity of 117 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 111 trivial. 0 not checked. [2025-03-16 18:44:28,130 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:28,130 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1845142929] [2025-03-16 18:44:28,131 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1845142929] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:28,131 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1931670448] [2025-03-16 18:44:28,131 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:28,131 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:28,131 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:28,133 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:28,135 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2025-03-16 18:44:28,328 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 201 statements into 1 equivalence classes. [2025-03-16 18:44:28,482 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 201 of 201 statements. [2025-03-16 18:44:28,483 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:28,483 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:28,488 INFO L256 TraceCheckSpWp]: Trace formula consists of 1528 conjuncts, 10 conjuncts are in the unsatisfiable core [2025-03-16 18:44:28,496 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:28,596 INFO L134 CoverageAnalysis]: Checked inductivity of 117 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 98 trivial. 0 not checked. [2025-03-16 18:44:28,598 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:44:28,598 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1931670448] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:28,598 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:44:28,599 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [8] total 14 [2025-03-16 18:44:28,599 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1647687312] [2025-03-16 18:44:28,599 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:28,599 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:44:28,599 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:28,600 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:44:28,600 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=31, Invalid=151, Unknown=0, NotChecked=0, Total=182 [2025-03-16 18:44:28,600 INFO L87 Difference]: Start difference. First operand 667 states and 983 transitions. Second operand has 8 states, 6 states have (on average 19.5) internal successors, (117), 8 states have internal predecessors, (117), 4 states have call successors, (33), 2 states have call predecessors, (33), 4 states have return successors, (28), 3 states have call predecessors, (28), 4 states have call successors, (28) [2025-03-16 18:44:28,730 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:28,731 INFO L93 Difference]: Finished difference Result 1284 states and 1906 transitions. [2025-03-16 18:44:28,732 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:44:28,732 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 19.5) internal successors, (117), 8 states have internal predecessors, (117), 4 states have call successors, (33), 2 states have call predecessors, (33), 4 states have return successors, (28), 3 states have call predecessors, (28), 4 states have call successors, (28) Word has length 201 [2025-03-16 18:44:28,732 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:28,737 INFO L225 Difference]: With dead ends: 1284 [2025-03-16 18:44:28,737 INFO L226 Difference]: Without dead ends: 669 [2025-03-16 18:44:28,739 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 209 GetRequests, 196 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 15 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=35, Invalid=175, Unknown=0, NotChecked=0, Total=210 [2025-03-16 18:44:28,740 INFO L435 NwaCegarLoop]: 827 mSDtfsCounter, 4 mSDsluCounter, 4945 mSDsCounter, 0 mSdLazyCounter, 83 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 5772 SdHoareTripleChecker+Invalid, 83 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 83 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:28,740 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 5772 Invalid, 83 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 83 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:28,741 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 669 states. [2025-03-16 18:44:28,768 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 669 to 669. [2025-03-16 18:44:28,770 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 669 states, 504 states have (on average 1.4821428571428572) internal successors, (747), 516 states have internal predecessors, (747), 119 states have call successors, (119), 44 states have call predecessors, (119), 45 states have return successors, (120), 117 states have call predecessors, (120), 118 states have call successors, (120) [2025-03-16 18:44:28,773 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 669 states to 669 states and 986 transitions. [2025-03-16 18:44:28,773 INFO L78 Accepts]: Start accepts. Automaton has 669 states and 986 transitions. Word has length 201 [2025-03-16 18:44:28,774 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:28,774 INFO L471 AbstractCegarLoop]: Abstraction has 669 states and 986 transitions. [2025-03-16 18:44:28,774 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 19.5) internal successors, (117), 8 states have internal predecessors, (117), 4 states have call successors, (33), 2 states have call predecessors, (33), 4 states have return successors, (28), 3 states have call predecessors, (28), 4 states have call successors, (28) [2025-03-16 18:44:28,774 INFO L276 IsEmpty]: Start isEmpty. Operand 669 states and 986 transitions. [2025-03-16 18:44:28,776 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 196 [2025-03-16 18:44:28,777 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:28,777 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:28,785 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2025-03-16 18:44:28,981 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,4 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:28,981 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:28,982 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:28,982 INFO L85 PathProgramCache]: Analyzing trace with hash -336151141, now seen corresponding path program 1 times [2025-03-16 18:44:28,982 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:28,982 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1296215808] [2025-03-16 18:44:28,982 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:28,982 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:29,001 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 195 statements into 1 equivalence classes. [2025-03-16 18:44:29,007 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 195 of 195 statements. [2025-03-16 18:44:29,007 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:29,008 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:29,153 INFO L134 CoverageAnalysis]: Checked inductivity of 117 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 105 trivial. 0 not checked. [2025-03-16 18:44:29,154 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:29,154 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1296215808] [2025-03-16 18:44:29,154 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1296215808] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:29,154 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1985897929] [2025-03-16 18:44:29,154 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:29,154 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:29,154 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:29,156 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:29,158 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2025-03-16 18:44:29,333 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 195 statements into 1 equivalence classes. [2025-03-16 18:44:29,484 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 195 of 195 statements. [2025-03-16 18:44:29,485 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:29,485 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:29,490 INFO L256 TraceCheckSpWp]: Trace formula consists of 1499 conjuncts, 8 conjuncts are in the unsatisfiable core [2025-03-16 18:44:29,494 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:29,552 INFO L134 CoverageAnalysis]: Checked inductivity of 117 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 98 trivial. 0 not checked. [2025-03-16 18:44:29,553 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:44:29,553 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1985897929] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:29,553 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:44:29,553 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [9] total 13 [2025-03-16 18:44:29,554 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1367233836] [2025-03-16 18:44:29,554 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:29,554 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2025-03-16 18:44:29,554 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:29,554 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2025-03-16 18:44:29,555 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=26, Invalid=130, Unknown=0, NotChecked=0, Total=156 [2025-03-16 18:44:29,555 INFO L87 Difference]: Start difference. First operand 669 states and 986 transitions. Second operand has 6 states, 5 states have (on average 22.8) internal successors, (114), 6 states have internal predecessors, (114), 3 states have call successors, (32), 2 states have call predecessors, (32), 3 states have return successors, (27), 3 states have call predecessors, (27), 3 states have call successors, (27) [2025-03-16 18:44:29,629 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:29,629 INFO L93 Difference]: Finished difference Result 1285 states and 1910 transitions. [2025-03-16 18:44:29,630 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2025-03-16 18:44:29,630 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 22.8) internal successors, (114), 6 states have internal predecessors, (114), 3 states have call successors, (32), 2 states have call predecessors, (32), 3 states have return successors, (27), 3 states have call predecessors, (27), 3 states have call successors, (27) Word has length 195 [2025-03-16 18:44:29,630 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:29,634 INFO L225 Difference]: With dead ends: 1285 [2025-03-16 18:44:29,634 INFO L226 Difference]: Without dead ends: 671 [2025-03-16 18:44:29,636 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 203 GetRequests, 192 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=26, Invalid=130, Unknown=0, NotChecked=0, Total=156 [2025-03-16 18:44:29,636 INFO L435 NwaCegarLoop]: 827 mSDtfsCounter, 2 mSDsluCounter, 3291 mSDsCounter, 0 mSdLazyCounter, 64 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 4118 SdHoareTripleChecker+Invalid, 64 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 64 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:29,637 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 4118 Invalid, 64 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 64 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:29,639 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 671 states. [2025-03-16 18:44:29,662 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 671 to 671. [2025-03-16 18:44:29,664 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 671 states, 505 states have (on average 1.4811881188118812) internal successors, (748), 518 states have internal predecessors, (748), 119 states have call successors, (119), 44 states have call predecessors, (119), 46 states have return successors, (125), 117 states have call predecessors, (125), 118 states have call successors, (125) [2025-03-16 18:44:29,668 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 671 states to 671 states and 992 transitions. [2025-03-16 18:44:29,670 INFO L78 Accepts]: Start accepts. Automaton has 671 states and 992 transitions. Word has length 195 [2025-03-16 18:44:29,670 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:29,670 INFO L471 AbstractCegarLoop]: Abstraction has 671 states and 992 transitions. [2025-03-16 18:44:29,670 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 22.8) internal successors, (114), 6 states have internal predecessors, (114), 3 states have call successors, (32), 2 states have call predecessors, (32), 3 states have return successors, (27), 3 states have call predecessors, (27), 3 states have call successors, (27) [2025-03-16 18:44:29,670 INFO L276 IsEmpty]: Start isEmpty. Operand 671 states and 992 transitions. [2025-03-16 18:44:29,673 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 204 [2025-03-16 18:44:29,673 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:29,673 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:29,682 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2025-03-16 18:44:29,876 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,5 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:29,877 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:29,877 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:29,878 INFO L85 PathProgramCache]: Analyzing trace with hash 2081161307, now seen corresponding path program 1 times [2025-03-16 18:44:29,878 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:29,878 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1079184900] [2025-03-16 18:44:29,878 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:29,878 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:29,901 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 203 statements into 1 equivalence classes. [2025-03-16 18:44:29,914 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 203 of 203 statements. [2025-03-16 18:44:29,915 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:29,915 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:30,105 INFO L134 CoverageAnalysis]: Checked inductivity of 117 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 111 trivial. 0 not checked. [2025-03-16 18:44:30,106 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:30,106 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1079184900] [2025-03-16 18:44:30,106 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1079184900] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:30,106 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:30,106 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2025-03-16 18:44:30,106 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [647024857] [2025-03-16 18:44:30,106 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:30,106 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:44:30,106 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:30,107 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:44:30,107 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2025-03-16 18:44:30,107 INFO L87 Difference]: Start difference. First operand 671 states and 992 transitions. Second operand has 8 states, 6 states have (on average 19.166666666666668) internal successors, (115), 8 states have internal predecessors, (115), 4 states have call successors, (33), 2 states have call predecessors, (33), 3 states have return successors, (28), 3 states have call predecessors, (28), 4 states have call successors, (28) [2025-03-16 18:44:30,195 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:30,196 INFO L93 Difference]: Finished difference Result 1273 states and 1897 transitions. [2025-03-16 18:44:30,196 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:44:30,196 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 19.166666666666668) internal successors, (115), 8 states have internal predecessors, (115), 4 states have call successors, (33), 2 states have call predecessors, (33), 3 states have return successors, (28), 3 states have call predecessors, (28), 4 states have call successors, (28) Word has length 203 [2025-03-16 18:44:30,196 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:30,200 INFO L225 Difference]: With dead ends: 1273 [2025-03-16 18:44:30,200 INFO L226 Difference]: Without dead ends: 671 [2025-03-16 18:44:30,201 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=55, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:30,202 INFO L435 NwaCegarLoop]: 828 mSDtfsCounter, 4 mSDsluCounter, 4951 mSDsCounter, 0 mSdLazyCounter, 76 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 5779 SdHoareTripleChecker+Invalid, 76 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 76 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:30,202 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 5779 Invalid, 76 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 76 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:30,203 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 671 states. [2025-03-16 18:44:30,234 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 671 to 671. [2025-03-16 18:44:30,235 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 671 states, 505 states have (on average 1.4811881188118812) internal successors, (748), 518 states have internal predecessors, (748), 119 states have call successors, (119), 44 states have call predecessors, (119), 46 states have return successors, (124), 117 states have call predecessors, (124), 118 states have call successors, (124) [2025-03-16 18:44:30,238 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 671 states to 671 states and 991 transitions. [2025-03-16 18:44:30,239 INFO L78 Accepts]: Start accepts. Automaton has 671 states and 991 transitions. Word has length 203 [2025-03-16 18:44:30,240 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:30,240 INFO L471 AbstractCegarLoop]: Abstraction has 671 states and 991 transitions. [2025-03-16 18:44:30,240 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 19.166666666666668) internal successors, (115), 8 states have internal predecessors, (115), 4 states have call successors, (33), 2 states have call predecessors, (33), 3 states have return successors, (28), 3 states have call predecessors, (28), 4 states have call successors, (28) [2025-03-16 18:44:30,240 INFO L276 IsEmpty]: Start isEmpty. Operand 671 states and 991 transitions. [2025-03-16 18:44:30,244 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 198 [2025-03-16 18:44:30,244 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:30,245 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:30,245 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2025-03-16 18:44:30,245 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:30,246 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:30,246 INFO L85 PathProgramCache]: Analyzing trace with hash 1259155808, now seen corresponding path program 1 times [2025-03-16 18:44:30,246 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:30,246 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1389066501] [2025-03-16 18:44:30,246 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:30,246 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:30,265 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 197 statements into 1 equivalence classes. [2025-03-16 18:44:30,275 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 197 of 197 statements. [2025-03-16 18:44:30,275 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:30,275 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:30,439 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 111 trivial. 0 not checked. [2025-03-16 18:44:30,440 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:30,440 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1389066501] [2025-03-16 18:44:30,441 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1389066501] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:30,441 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:30,441 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2025-03-16 18:44:30,441 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1831205073] [2025-03-16 18:44:30,441 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:30,441 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:44:30,441 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:30,441 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:44:30,442 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2025-03-16 18:44:30,442 INFO L87 Difference]: Start difference. First operand 671 states and 991 transitions. Second operand has 8 states, 6 states have (on average 18.5) internal successors, (111), 8 states have internal predecessors, (111), 4 states have call successors, (32), 2 states have call predecessors, (32), 3 states have return successors, (27), 3 states have call predecessors, (27), 4 states have call successors, (27) [2025-03-16 18:44:30,536 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:30,537 INFO L93 Difference]: Finished difference Result 1275 states and 1900 transitions. [2025-03-16 18:44:30,537 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:44:30,537 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 18.5) internal successors, (111), 8 states have internal predecessors, (111), 4 states have call successors, (32), 2 states have call predecessors, (32), 3 states have return successors, (27), 3 states have call predecessors, (27), 4 states have call successors, (27) Word has length 197 [2025-03-16 18:44:30,537 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:30,542 INFO L225 Difference]: With dead ends: 1275 [2025-03-16 18:44:30,542 INFO L226 Difference]: Without dead ends: 673 [2025-03-16 18:44:30,544 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=55, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:30,544 INFO L435 NwaCegarLoop]: 829 mSDtfsCounter, 3 mSDsluCounter, 4956 mSDsCounter, 0 mSdLazyCounter, 83 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 5785 SdHoareTripleChecker+Invalid, 83 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 83 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:30,545 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 5785 Invalid, 83 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 83 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:30,546 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 673 states. [2025-03-16 18:44:30,566 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 673 to 673. [2025-03-16 18:44:30,567 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 673 states, 506 states have (on average 1.4802371541501975) internal successors, (749), 520 states have internal predecessors, (749), 119 states have call successors, (119), 44 states have call predecessors, (119), 47 states have return successors, (126), 117 states have call predecessors, (126), 118 states have call successors, (126) [2025-03-16 18:44:30,571 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 673 states to 673 states and 994 transitions. [2025-03-16 18:44:30,572 INFO L78 Accepts]: Start accepts. Automaton has 673 states and 994 transitions. Word has length 197 [2025-03-16 18:44:30,572 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:30,572 INFO L471 AbstractCegarLoop]: Abstraction has 673 states and 994 transitions. [2025-03-16 18:44:30,572 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 18.5) internal successors, (111), 8 states have internal predecessors, (111), 4 states have call successors, (32), 2 states have call predecessors, (32), 3 states have return successors, (27), 3 states have call predecessors, (27), 4 states have call successors, (27) [2025-03-16 18:44:30,573 INFO L276 IsEmpty]: Start isEmpty. Operand 673 states and 994 transitions. [2025-03-16 18:44:30,575 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 199 [2025-03-16 18:44:30,576 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:30,576 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:30,576 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2025-03-16 18:44:30,576 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:30,576 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:30,577 INFO L85 PathProgramCache]: Analyzing trace with hash 1500137721, now seen corresponding path program 1 times [2025-03-16 18:44:30,577 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:30,577 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1073726071] [2025-03-16 18:44:30,577 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:30,577 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:30,593 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 198 statements into 1 equivalence classes. [2025-03-16 18:44:30,602 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 198 of 198 statements. [2025-03-16 18:44:30,603 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:30,603 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:30,754 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 13 proven. 0 refuted. 0 times theorem prover too weak. 105 trivial. 0 not checked. [2025-03-16 18:44:30,754 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:30,755 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1073726071] [2025-03-16 18:44:30,755 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1073726071] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:30,755 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:30,755 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2025-03-16 18:44:30,755 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1115560078] [2025-03-16 18:44:30,755 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:30,755 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2025-03-16 18:44:30,755 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:30,756 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2025-03-16 18:44:30,756 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:30,756 INFO L87 Difference]: Start difference. First operand 673 states and 994 transitions. Second operand has 9 states, 7 states have (on average 16.428571428571427) internal successors, (115), 8 states have internal predecessors, (115), 4 states have call successors, (32), 2 states have call predecessors, (32), 4 states have return successors, (27), 4 states have call predecessors, (27), 4 states have call successors, (27) [2025-03-16 18:44:30,887 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:30,887 INFO L93 Difference]: Finished difference Result 1272 states and 1894 transitions. [2025-03-16 18:44:30,888 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2025-03-16 18:44:30,889 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 7 states have (on average 16.428571428571427) internal successors, (115), 8 states have internal predecessors, (115), 4 states have call successors, (32), 2 states have call predecessors, (32), 4 states have return successors, (27), 4 states have call predecessors, (27), 4 states have call successors, (27) Word has length 198 [2025-03-16 18:44:30,889 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:30,893 INFO L225 Difference]: With dead ends: 1272 [2025-03-16 18:44:30,893 INFO L226 Difference]: Without dead ends: 673 [2025-03-16 18:44:30,895 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 12 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=23, Invalid=87, Unknown=0, NotChecked=0, Total=110 [2025-03-16 18:44:30,896 INFO L435 NwaCegarLoop]: 821 mSDtfsCounter, 7 mSDsluCounter, 5717 mSDsCounter, 0 mSdLazyCounter, 162 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 9 SdHoareTripleChecker+Valid, 6538 SdHoareTripleChecker+Invalid, 162 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 162 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:30,897 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [9 Valid, 6538 Invalid, 162 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 162 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2025-03-16 18:44:30,898 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 673 states. [2025-03-16 18:44:30,920 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 673 to 673. [2025-03-16 18:44:30,921 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 673 states, 506 states have (on average 1.4802371541501975) internal successors, (749), 520 states have internal predecessors, (749), 119 states have call successors, (119), 44 states have call predecessors, (119), 47 states have return successors, (125), 117 states have call predecessors, (125), 118 states have call successors, (125) [2025-03-16 18:44:30,925 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 673 states to 673 states and 993 transitions. [2025-03-16 18:44:30,927 INFO L78 Accepts]: Start accepts. Automaton has 673 states and 993 transitions. Word has length 198 [2025-03-16 18:44:30,927 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:30,927 INFO L471 AbstractCegarLoop]: Abstraction has 673 states and 993 transitions. [2025-03-16 18:44:30,927 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 7 states have (on average 16.428571428571427) internal successors, (115), 8 states have internal predecessors, (115), 4 states have call successors, (32), 2 states have call predecessors, (32), 4 states have return successors, (27), 4 states have call predecessors, (27), 4 states have call successors, (27) [2025-03-16 18:44:30,927 INFO L276 IsEmpty]: Start isEmpty. Operand 673 states and 993 transitions. [2025-03-16 18:44:30,930 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 207 [2025-03-16 18:44:30,930 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:30,930 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:30,930 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2025-03-16 18:44:30,931 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:30,931 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:30,931 INFO L85 PathProgramCache]: Analyzing trace with hash -472754087, now seen corresponding path program 1 times [2025-03-16 18:44:30,931 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:30,931 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1963089509] [2025-03-16 18:44:30,931 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:30,931 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:30,953 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 206 statements into 1 equivalence classes. [2025-03-16 18:44:30,964 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 206 of 206 statements. [2025-03-16 18:44:30,964 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:30,964 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:31,106 INFO L134 CoverageAnalysis]: Checked inductivity of 119 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 105 trivial. 0 not checked. [2025-03-16 18:44:31,106 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:31,106 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1963089509] [2025-03-16 18:44:31,106 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1963089509] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:31,106 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:31,106 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2025-03-16 18:44:31,106 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [960469067] [2025-03-16 18:44:31,106 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:31,106 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2025-03-16 18:44:31,106 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:31,107 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2025-03-16 18:44:31,107 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:31,107 INFO L87 Difference]: Start difference. First operand 673 states and 993 transitions. Second operand has 9 states, 7 states have (on average 17.285714285714285) internal successors, (121), 8 states have internal predecessors, (121), 4 states have call successors, (33), 2 states have call predecessors, (33), 4 states have return successors, (28), 4 states have call predecessors, (28), 4 states have call successors, (28) [2025-03-16 18:44:31,265 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:31,265 INFO L93 Difference]: Finished difference Result 1274 states and 1900 transitions. [2025-03-16 18:44:31,265 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2025-03-16 18:44:31,266 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 7 states have (on average 17.285714285714285) internal successors, (121), 8 states have internal predecessors, (121), 4 states have call successors, (33), 2 states have call predecessors, (33), 4 states have return successors, (28), 4 states have call predecessors, (28), 4 states have call successors, (28) Word has length 206 [2025-03-16 18:44:31,266 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:31,270 INFO L225 Difference]: With dead ends: 1274 [2025-03-16 18:44:31,270 INFO L226 Difference]: Without dead ends: 675 [2025-03-16 18:44:31,271 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=23, Invalid=87, Unknown=0, NotChecked=0, Total=110 [2025-03-16 18:44:31,272 INFO L435 NwaCegarLoop]: 823 mSDtfsCounter, 4 mSDsluCounter, 5731 mSDsCounter, 0 mSdLazyCounter, 171 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 6 SdHoareTripleChecker+Valid, 6554 SdHoareTripleChecker+Invalid, 172 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 171 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:31,272 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [6 Valid, 6554 Invalid, 172 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 171 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2025-03-16 18:44:31,273 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 675 states. [2025-03-16 18:44:31,300 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 675 to 675. [2025-03-16 18:44:31,301 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 675 states, 507 states have (on average 1.4792899408284024) internal successors, (750), 522 states have internal predecessors, (750), 119 states have call successors, (119), 44 states have call predecessors, (119), 48 states have return successors, (130), 117 states have call predecessors, (130), 118 states have call successors, (130) [2025-03-16 18:44:31,304 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 675 states to 675 states and 999 transitions. [2025-03-16 18:44:31,306 INFO L78 Accepts]: Start accepts. Automaton has 675 states and 999 transitions. Word has length 206 [2025-03-16 18:44:31,306 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:31,306 INFO L471 AbstractCegarLoop]: Abstraction has 675 states and 999 transitions. [2025-03-16 18:44:31,306 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 7 states have (on average 17.285714285714285) internal successors, (121), 8 states have internal predecessors, (121), 4 states have call successors, (33), 2 states have call predecessors, (33), 4 states have return successors, (28), 4 states have call predecessors, (28), 4 states have call successors, (28) [2025-03-16 18:44:31,307 INFO L276 IsEmpty]: Start isEmpty. Operand 675 states and 999 transitions. [2025-03-16 18:44:31,310 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 208 [2025-03-16 18:44:31,310 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:31,310 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:31,310 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2025-03-16 18:44:31,310 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:31,311 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:31,311 INFO L85 PathProgramCache]: Analyzing trace with hash 1281635803, now seen corresponding path program 1 times [2025-03-16 18:44:31,311 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:31,311 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [670785827] [2025-03-16 18:44:31,311 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:31,311 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:31,341 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 207 statements into 1 equivalence classes. [2025-03-16 18:44:31,364 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 207 of 207 statements. [2025-03-16 18:44:31,364 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:31,364 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:31,483 INFO L134 CoverageAnalysis]: Checked inductivity of 119 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:31,483 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:31,483 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [670785827] [2025-03-16 18:44:31,483 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [670785827] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:31,483 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [767299219] [2025-03-16 18:44:31,483 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:31,483 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:31,484 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:31,485 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:31,487 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2025-03-16 18:44:31,664 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 207 statements into 1 equivalence classes. [2025-03-16 18:44:31,790 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 207 of 207 statements. [2025-03-16 18:44:31,790 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:31,791 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:31,796 INFO L256 TraceCheckSpWp]: Trace formula consists of 1534 conjuncts, 3 conjuncts are in the unsatisfiable core [2025-03-16 18:44:31,800 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:31,818 INFO L134 CoverageAnalysis]: Checked inductivity of 119 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:31,818 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2025-03-16 18:44:31,924 INFO L134 CoverageAnalysis]: Checked inductivity of 119 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:31,924 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [767299219] provided 0 perfect and 2 imperfect interpolant sequences [2025-03-16 18:44:31,924 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2025-03-16 18:44:31,924 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 7 [2025-03-16 18:44:31,924 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [443636530] [2025-03-16 18:44:31,924 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2025-03-16 18:44:31,925 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2025-03-16 18:44:31,925 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:31,926 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2025-03-16 18:44:31,926 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2025-03-16 18:44:31,926 INFO L87 Difference]: Start difference. First operand 675 states and 999 transitions. Second operand has 7 states, 7 states have (on average 22.142857142857142) internal successors, (155), 7 states have internal predecessors, (155), 2 states have call successors, (44), 2 states have call predecessors, (44), 2 states have return successors, (39), 2 states have call predecessors, (39), 2 states have call successors, (39) [2025-03-16 18:44:32,078 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:32,079 INFO L93 Difference]: Finished difference Result 1535 states and 2346 transitions. [2025-03-16 18:44:32,079 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2025-03-16 18:44:32,079 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 22.142857142857142) internal successors, (155), 7 states have internal predecessors, (155), 2 states have call successors, (44), 2 states have call predecessors, (44), 2 states have return successors, (39), 2 states have call predecessors, (39), 2 states have call successors, (39) Word has length 207 [2025-03-16 18:44:32,080 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:32,087 INFO L225 Difference]: With dead ends: 1535 [2025-03-16 18:44:32,087 INFO L226 Difference]: Without dead ends: 1214 [2025-03-16 18:44:32,089 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 416 GetRequests, 411 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2025-03-16 18:44:32,089 INFO L435 NwaCegarLoop]: 882 mSDtfsCounter, 618 mSDsluCounter, 2218 mSDsCounter, 0 mSdLazyCounter, 80 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 672 SdHoareTripleChecker+Valid, 3100 SdHoareTripleChecker+Invalid, 91 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 80 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:32,089 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [672 Valid, 3100 Invalid, 91 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 80 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2025-03-16 18:44:32,091 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1214 states. [2025-03-16 18:44:32,125 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1214 to 1190. [2025-03-16 18:44:32,127 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1190 states, 943 states have (on average 1.5376458112407212) internal successors, (1450), 958 states have internal predecessors, (1450), 198 states have call successors, (198), 44 states have call predecessors, (198), 48 states have return successors, (219), 196 states have call predecessors, (219), 197 states have call successors, (219) [2025-03-16 18:44:32,131 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1190 states to 1190 states and 1867 transitions. [2025-03-16 18:44:32,133 INFO L78 Accepts]: Start accepts. Automaton has 1190 states and 1867 transitions. Word has length 207 [2025-03-16 18:44:32,133 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:32,133 INFO L471 AbstractCegarLoop]: Abstraction has 1190 states and 1867 transitions. [2025-03-16 18:44:32,133 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 22.142857142857142) internal successors, (155), 7 states have internal predecessors, (155), 2 states have call successors, (44), 2 states have call predecessors, (44), 2 states have return successors, (39), 2 states have call predecessors, (39), 2 states have call successors, (39) [2025-03-16 18:44:32,134 INFO L276 IsEmpty]: Start isEmpty. Operand 1190 states and 1867 transitions. [2025-03-16 18:44:32,138 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 206 [2025-03-16 18:44:32,138 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:32,138 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:32,147 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2025-03-16 18:44:32,346 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2025-03-16 18:44:32,346 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:32,347 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:32,347 INFO L85 PathProgramCache]: Analyzing trace with hash 1549727886, now seen corresponding path program 1 times [2025-03-16 18:44:32,347 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:32,347 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [62955434] [2025-03-16 18:44:32,348 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:32,348 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:32,365 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 205 statements into 1 equivalence classes. [2025-03-16 18:44:32,375 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 205 of 205 statements. [2025-03-16 18:44:32,375 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:32,375 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:32,436 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:32,436 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:32,436 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [62955434] [2025-03-16 18:44:32,436 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [62955434] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:32,436 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:32,436 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:32,436 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1740845188] [2025-03-16 18:44:32,436 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:32,437 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:32,437 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:32,437 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:32,437 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:32,437 INFO L87 Difference]: Start difference. First operand 1190 states and 1867 transitions. Second operand has 3 states, 3 states have (on average 38.666666666666664) internal successors, (116), 3 states have internal predecessors, (116), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:32,489 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:32,489 INFO L93 Difference]: Finished difference Result 2745 states and 4374 transitions. [2025-03-16 18:44:32,490 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:32,490 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 38.666666666666664) internal successors, (116), 3 states have internal predecessors, (116), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) Word has length 205 [2025-03-16 18:44:32,490 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:32,499 INFO L225 Difference]: With dead ends: 2745 [2025-03-16 18:44:32,499 INFO L226 Difference]: Without dead ends: 1679 [2025-03-16 18:44:32,502 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:32,502 INFO L435 NwaCegarLoop]: 842 mSDtfsCounter, 160 mSDsluCounter, 824 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 178 SdHoareTripleChecker+Valid, 1666 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:32,503 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [178 Valid, 1666 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:32,504 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1679 states. [2025-03-16 18:44:32,546 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1679 to 1671. [2025-03-16 18:44:32,549 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1671 states, 1345 states have (on average 1.5509293680297398) internal successors, (2086), 1360 states have internal predecessors, (2086), 277 states have call successors, (277), 44 states have call predecessors, (277), 48 states have return successors, (308), 275 states have call predecessors, (308), 276 states have call successors, (308) [2025-03-16 18:44:32,555 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1671 states to 1671 states and 2671 transitions. [2025-03-16 18:44:32,556 INFO L78 Accepts]: Start accepts. Automaton has 1671 states and 2671 transitions. Word has length 205 [2025-03-16 18:44:32,557 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:32,557 INFO L471 AbstractCegarLoop]: Abstraction has 1671 states and 2671 transitions. [2025-03-16 18:44:32,557 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 38.666666666666664) internal successors, (116), 3 states have internal predecessors, (116), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:32,557 INFO L276 IsEmpty]: Start isEmpty. Operand 1671 states and 2671 transitions. [2025-03-16 18:44:32,564 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 214 [2025-03-16 18:44:32,564 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:32,564 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:32,564 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13 [2025-03-16 18:44:32,564 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:32,565 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:32,565 INFO L85 PathProgramCache]: Analyzing trace with hash 2066862279, now seen corresponding path program 1 times [2025-03-16 18:44:32,565 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:32,565 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [372923298] [2025-03-16 18:44:32,565 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:32,565 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:32,582 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 213 statements into 1 equivalence classes. [2025-03-16 18:44:32,590 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 213 of 213 statements. [2025-03-16 18:44:32,590 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:32,590 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:32,626 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:32,627 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:32,627 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [372923298] [2025-03-16 18:44:32,627 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [372923298] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:32,627 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:32,627 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:32,627 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1735525295] [2025-03-16 18:44:32,627 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:32,627 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:32,628 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:32,628 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:32,628 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:32,628 INFO L87 Difference]: Start difference. First operand 1671 states and 2671 transitions. Second operand has 3 states, 3 states have (on average 40.666666666666664) internal successors, (122), 3 states have internal predecessors, (122), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:32,689 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:32,689 INFO L93 Difference]: Finished difference Result 3939 states and 6362 transitions. [2025-03-16 18:44:32,690 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:32,690 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 40.666666666666664) internal successors, (122), 3 states have internal predecessors, (122), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 213 [2025-03-16 18:44:32,690 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:32,702 INFO L225 Difference]: With dead ends: 3939 [2025-03-16 18:44:32,702 INFO L226 Difference]: Without dead ends: 2450 [2025-03-16 18:44:32,707 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:32,707 INFO L435 NwaCegarLoop]: 839 mSDtfsCounter, 158 mSDsluCounter, 829 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 176 SdHoareTripleChecker+Valid, 1668 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:32,707 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [176 Valid, 1668 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:32,709 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2450 states. [2025-03-16 18:44:32,781 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2450 to 2442. [2025-03-16 18:44:32,785 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2442 states, 1997 states have (on average 1.5663495242864296) internal successors, (3128), 2012 states have internal predecessors, (3128), 396 states have call successors, (396), 44 states have call predecessors, (396), 48 states have return successors, (427), 394 states have call predecessors, (427), 395 states have call successors, (427) [2025-03-16 18:44:32,833 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2442 states to 2442 states and 3951 transitions. [2025-03-16 18:44:32,835 INFO L78 Accepts]: Start accepts. Automaton has 2442 states and 3951 transitions. Word has length 213 [2025-03-16 18:44:32,835 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:32,835 INFO L471 AbstractCegarLoop]: Abstraction has 2442 states and 3951 transitions. [2025-03-16 18:44:32,835 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 40.666666666666664) internal successors, (122), 3 states have internal predecessors, (122), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:32,835 INFO L276 IsEmpty]: Start isEmpty. Operand 2442 states and 3951 transitions. [2025-03-16 18:44:32,845 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 208 [2025-03-16 18:44:32,845 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:32,845 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:32,845 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14 [2025-03-16 18:44:32,845 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:32,846 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:32,846 INFO L85 PathProgramCache]: Analyzing trace with hash -83093521, now seen corresponding path program 1 times [2025-03-16 18:44:32,846 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:32,846 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [598742525] [2025-03-16 18:44:32,846 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:32,846 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:32,863 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 207 statements into 1 equivalence classes. [2025-03-16 18:44:32,871 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 207 of 207 statements. [2025-03-16 18:44:32,871 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:32,871 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:32,905 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:32,905 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:32,905 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [598742525] [2025-03-16 18:44:32,905 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [598742525] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:32,905 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:32,905 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:32,905 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [391137461] [2025-03-16 18:44:32,905 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:32,906 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:32,906 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:32,907 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:32,907 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:32,907 INFO L87 Difference]: Start difference. First operand 2442 states and 3951 transitions. Second operand has 3 states, 3 states have (on average 39.333333333333336) internal successors, (118), 3 states have internal predecessors, (118), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:32,980 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:32,981 INFO L93 Difference]: Finished difference Result 5749 states and 9396 transitions. [2025-03-16 18:44:32,981 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:32,981 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 39.333333333333336) internal successors, (118), 3 states have internal predecessors, (118), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) Word has length 207 [2025-03-16 18:44:32,982 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:33,000 INFO L225 Difference]: With dead ends: 5749 [2025-03-16 18:44:33,000 INFO L226 Difference]: Without dead ends: 3635 [2025-03-16 18:44:33,008 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:33,009 INFO L435 NwaCegarLoop]: 837 mSDtfsCounter, 156 mSDsluCounter, 826 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 174 SdHoareTripleChecker+Valid, 1663 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:33,009 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [174 Valid, 1663 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:33,012 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 3635 states. [2025-03-16 18:44:33,112 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 3635 to 3627. [2025-03-16 18:44:33,117 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 3627 states, 3020 states have (on average 1.5794701986754967) internal successors, (4770), 3035 states have internal predecessors, (4770), 558 states have call successors, (558), 44 states have call predecessors, (558), 48 states have return successors, (605), 556 states have call predecessors, (605), 557 states have call successors, (605) [2025-03-16 18:44:33,128 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 3627 states to 3627 states and 5933 transitions. [2025-03-16 18:44:33,131 INFO L78 Accepts]: Start accepts. Automaton has 3627 states and 5933 transitions. Word has length 207 [2025-03-16 18:44:33,131 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:33,131 INFO L471 AbstractCegarLoop]: Abstraction has 3627 states and 5933 transitions. [2025-03-16 18:44:33,131 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 39.333333333333336) internal successors, (118), 3 states have internal predecessors, (118), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:33,131 INFO L276 IsEmpty]: Start isEmpty. Operand 3627 states and 5933 transitions. [2025-03-16 18:44:33,144 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 216 [2025-03-16 18:44:33,144 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:33,144 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:33,144 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15 [2025-03-16 18:44:33,145 INFO L396 AbstractCegarLoop]: === Iteration 17 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:33,145 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:33,145 INFO L85 PathProgramCache]: Analyzing trace with hash -1491587992, now seen corresponding path program 1 times [2025-03-16 18:44:33,145 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:33,145 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1208021667] [2025-03-16 18:44:33,145 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:33,145 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:33,183 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 215 statements into 1 equivalence classes. [2025-03-16 18:44:33,191 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 215 of 215 statements. [2025-03-16 18:44:33,191 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:33,191 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:33,230 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:33,230 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:33,230 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1208021667] [2025-03-16 18:44:33,230 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1208021667] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:33,230 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:33,230 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:33,230 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [383578937] [2025-03-16 18:44:33,230 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:33,231 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:33,231 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:33,232 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:33,232 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:33,232 INFO L87 Difference]: Start difference. First operand 3627 states and 5933 transitions. Second operand has 3 states, 3 states have (on average 41.333333333333336) internal successors, (124), 3 states have internal predecessors, (124), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:33,323 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:33,323 INFO L93 Difference]: Finished difference Result 8603 states and 14200 transitions. [2025-03-16 18:44:33,323 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:33,326 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 41.333333333333336) internal successors, (124), 3 states have internal predecessors, (124), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 215 [2025-03-16 18:44:33,327 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:33,352 INFO L225 Difference]: With dead ends: 8603 [2025-03-16 18:44:33,352 INFO L226 Difference]: Without dead ends: 5546 [2025-03-16 18:44:33,362 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:33,362 INFO L435 NwaCegarLoop]: 837 mSDtfsCounter, 154 mSDsluCounter, 826 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 172 SdHoareTripleChecker+Valid, 1663 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:33,363 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [172 Valid, 1663 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:33,368 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 5546 states. [2025-03-16 18:44:33,562 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 5546 to 5538. [2025-03-16 18:44:33,573 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 5538 states, 4686 states have (on average 1.5904822876653864) internal successors, (7453), 4701 states have internal predecessors, (7453), 803 states have call successors, (803), 44 states have call predecessors, (803), 48 states have return successors, (876), 801 states have call predecessors, (876), 802 states have call successors, (876) [2025-03-16 18:44:33,595 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 5538 states to 5538 states and 9132 transitions. [2025-03-16 18:44:33,598 INFO L78 Accepts]: Start accepts. Automaton has 5538 states and 9132 transitions. Word has length 215 [2025-03-16 18:44:33,598 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:33,598 INFO L471 AbstractCegarLoop]: Abstraction has 5538 states and 9132 transitions. [2025-03-16 18:44:33,599 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 41.333333333333336) internal successors, (124), 3 states have internal predecessors, (124), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:33,599 INFO L276 IsEmpty]: Start isEmpty. Operand 5538 states and 9132 transitions. [2025-03-16 18:44:33,617 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 217 [2025-03-16 18:44:33,617 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:33,618 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:33,618 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable16 [2025-03-16 18:44:33,618 INFO L396 AbstractCegarLoop]: === Iteration 18 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:33,618 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:33,618 INFO L85 PathProgramCache]: Analyzing trace with hash 1338004321, now seen corresponding path program 1 times [2025-03-16 18:44:33,618 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:33,618 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1756911469] [2025-03-16 18:44:33,618 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:33,618 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:33,641 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 216 statements into 1 equivalence classes. [2025-03-16 18:44:33,651 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 216 of 216 statements. [2025-03-16 18:44:33,651 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:33,651 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:33,698 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:33,698 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:33,698 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1756911469] [2025-03-16 18:44:33,698 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1756911469] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:33,698 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:33,698 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:33,698 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2007268447] [2025-03-16 18:44:33,698 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:33,699 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:33,699 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:33,700 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:33,700 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:33,700 INFO L87 Difference]: Start difference. First operand 5538 states and 9132 transitions. Second operand has 3 states, 3 states have (on average 41.666666666666664) internal successors, (125), 3 states have internal predecessors, (125), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:33,924 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:33,924 INFO L93 Difference]: Finished difference Result 13395 states and 22197 transitions. [2025-03-16 18:44:33,924 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:33,925 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 41.666666666666664) internal successors, (125), 3 states have internal predecessors, (125), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 216 [2025-03-16 18:44:33,926 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:33,972 INFO L225 Difference]: With dead ends: 13395 [2025-03-16 18:44:33,973 INFO L226 Difference]: Without dead ends: 8783 [2025-03-16 18:44:33,989 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:33,989 INFO L435 NwaCegarLoop]: 855 mSDtfsCounter, 152 mSDsluCounter, 825 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 170 SdHoareTripleChecker+Valid, 1680 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:33,989 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [170 Valid, 1680 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:33,997 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 8783 states. [2025-03-16 18:44:34,258 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 8783 to 8775. [2025-03-16 18:44:34,271 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8775 states, 7430 states have (on average 1.5866756393001347) internal successors, (11789), 7445 states have internal predecessors, (11789), 1296 states have call successors, (1296), 44 states have call predecessors, (1296), 48 states have return successors, (1413), 1294 states have call predecessors, (1413), 1295 states have call successors, (1413) [2025-03-16 18:44:34,298 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 8775 states to 8775 states and 14498 transitions. [2025-03-16 18:44:34,301 INFO L78 Accepts]: Start accepts. Automaton has 8775 states and 14498 transitions. Word has length 216 [2025-03-16 18:44:34,302 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:34,302 INFO L471 AbstractCegarLoop]: Abstraction has 8775 states and 14498 transitions. [2025-03-16 18:44:34,302 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 41.666666666666664) internal successors, (125), 3 states have internal predecessors, (125), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:34,302 INFO L276 IsEmpty]: Start isEmpty. Operand 8775 states and 14498 transitions. [2025-03-16 18:44:34,329 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 211 [2025-03-16 18:44:34,329 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:34,329 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:34,329 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17 [2025-03-16 18:44:34,329 INFO L396 AbstractCegarLoop]: === Iteration 19 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:34,330 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:34,330 INFO L85 PathProgramCache]: Analyzing trace with hash -1294443448, now seen corresponding path program 1 times [2025-03-16 18:44:34,330 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:34,330 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1819005838] [2025-03-16 18:44:34,330 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:34,331 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:34,348 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 210 statements into 1 equivalence classes. [2025-03-16 18:44:34,356 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 210 of 210 statements. [2025-03-16 18:44:34,356 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:34,356 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:34,390 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:34,390 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:34,390 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1819005838] [2025-03-16 18:44:34,391 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1819005838] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:34,391 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:34,391 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:34,391 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1175759833] [2025-03-16 18:44:34,391 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:34,392 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:34,392 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:34,392 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:34,392 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:34,392 INFO L87 Difference]: Start difference. First operand 8775 states and 14498 transitions. Second operand has 3 states, 3 states have (on average 40.333333333333336) internal successors, (121), 3 states have internal predecessors, (121), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:34,650 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:34,651 INFO L93 Difference]: Finished difference Result 21959 states and 36573 transitions. [2025-03-16 18:44:34,651 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:34,651 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 40.333333333333336) internal successors, (121), 3 states have internal predecessors, (121), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) Word has length 210 [2025-03-16 18:44:34,651 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:34,700 INFO L225 Difference]: With dead ends: 21959 [2025-03-16 18:44:34,701 INFO L226 Difference]: Without dead ends: 14574 [2025-03-16 18:44:34,725 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:34,725 INFO L435 NwaCegarLoop]: 837 mSDtfsCounter, 150 mSDsluCounter, 829 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 168 SdHoareTripleChecker+Valid, 1666 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:34,725 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [168 Valid, 1666 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:34,738 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 14574 states. [2025-03-16 18:44:35,127 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 14574 to 14566. [2025-03-16 18:44:35,147 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14566 states, 12399 states have (on average 1.593515606097266) internal successors, (19758), 12414 states have internal predecessors, (19758), 2118 states have call successors, (2118), 44 states have call predecessors, (2118), 48 states have return successors, (2313), 2116 states have call predecessors, (2313), 2117 states have call successors, (2313) [2025-03-16 18:44:35,189 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 14566 states to 14566 states and 24189 transitions. [2025-03-16 18:44:35,194 INFO L78 Accepts]: Start accepts. Automaton has 14566 states and 24189 transitions. Word has length 210 [2025-03-16 18:44:35,194 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:35,194 INFO L471 AbstractCegarLoop]: Abstraction has 14566 states and 24189 transitions. [2025-03-16 18:44:35,194 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 40.333333333333336) internal successors, (121), 3 states have internal predecessors, (121), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:35,194 INFO L276 IsEmpty]: Start isEmpty. Operand 14566 states and 24189 transitions. [2025-03-16 18:44:35,229 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 219 [2025-03-16 18:44:35,229 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:35,230 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:35,230 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18 [2025-03-16 18:44:35,230 INFO L396 AbstractCegarLoop]: === Iteration 20 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:35,230 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:35,230 INFO L85 PathProgramCache]: Analyzing trace with hash 897530272, now seen corresponding path program 1 times [2025-03-16 18:44:35,230 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:35,230 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1812102736] [2025-03-16 18:44:35,231 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:35,231 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:35,247 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 218 statements into 1 equivalence classes. [2025-03-16 18:44:35,256 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 218 of 218 statements. [2025-03-16 18:44:35,256 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:35,256 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:35,294 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:35,294 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:35,294 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1812102736] [2025-03-16 18:44:35,294 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1812102736] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:35,295 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:35,295 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:35,295 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [684957182] [2025-03-16 18:44:35,295 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:35,296 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:35,296 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:35,296 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:35,296 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:35,297 INFO L87 Difference]: Start difference. First operand 14566 states and 24189 transitions. Second operand has 3 states, 3 states have (on average 42.333333333333336) internal successors, (127), 3 states have internal predecessors, (127), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:35,928 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:35,929 INFO L93 Difference]: Finished difference Result 35013 states and 57921 transitions. [2025-03-16 18:44:35,929 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:35,929 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 42.333333333333336) internal successors, (127), 3 states have internal predecessors, (127), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 218 [2025-03-16 18:44:35,930 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:36,018 INFO L225 Difference]: With dead ends: 35013 [2025-03-16 18:44:36,018 INFO L226 Difference]: Without dead ends: 22924 [2025-03-16 18:44:36,070 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:36,071 INFO L435 NwaCegarLoop]: 855 mSDtfsCounter, 148 mSDsluCounter, 802 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 166 SdHoareTripleChecker+Valid, 1657 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:36,071 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [166 Valid, 1657 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:36,095 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 22924 states. [2025-03-16 18:44:36,882 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 22924 to 22916. [2025-03-16 18:44:36,915 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 22916 states, 19546 states have (on average 1.5684539036119922) internal successors, (30657), 19561 states have internal predecessors, (30657), 3321 states have call successors, (3321), 44 states have call predecessors, (3321), 48 states have return successors, (3660), 3319 states have call predecessors, (3660), 3320 states have call successors, (3660) [2025-03-16 18:44:36,971 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 22916 states to 22916 states and 37638 transitions. [2025-03-16 18:44:36,979 INFO L78 Accepts]: Start accepts. Automaton has 22916 states and 37638 transitions. Word has length 218 [2025-03-16 18:44:36,979 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:36,980 INFO L471 AbstractCegarLoop]: Abstraction has 22916 states and 37638 transitions. [2025-03-16 18:44:36,980 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 42.333333333333336) internal successors, (127), 3 states have internal predecessors, (127), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:36,980 INFO L276 IsEmpty]: Start isEmpty. Operand 22916 states and 37638 transitions. [2025-03-16 18:44:37,020 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 220 [2025-03-16 18:44:37,021 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:37,021 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:37,021 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19 [2025-03-16 18:44:37,021 INFO L396 AbstractCegarLoop]: === Iteration 21 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:37,022 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:37,022 INFO L85 PathProgramCache]: Analyzing trace with hash 968498442, now seen corresponding path program 1 times [2025-03-16 18:44:37,022 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:37,022 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [536688273] [2025-03-16 18:44:37,023 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:37,023 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:37,042 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 219 statements into 1 equivalence classes. [2025-03-16 18:44:37,049 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 219 of 219 statements. [2025-03-16 18:44:37,050 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:37,050 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:37,082 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:37,083 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:37,083 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [536688273] [2025-03-16 18:44:37,083 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [536688273] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:37,083 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:37,083 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:37,083 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [926400977] [2025-03-16 18:44:37,083 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:37,083 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:37,084 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:37,084 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:37,084 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:37,084 INFO L87 Difference]: Start difference. First operand 22916 states and 37638 transitions. Second operand has 3 states, 3 states have (on average 42.666666666666664) internal successors, (128), 3 states have internal predecessors, (128), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:37,787 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:37,787 INFO L93 Difference]: Finished difference Result 60425 states and 99628 transitions. [2025-03-16 18:44:37,788 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:37,788 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 42.666666666666664) internal successors, (128), 3 states have internal predecessors, (128), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 219 [2025-03-16 18:44:37,788 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:37,934 INFO L225 Difference]: With dead ends: 60425 [2025-03-16 18:44:37,935 INFO L226 Difference]: Without dead ends: 40740 [2025-03-16 18:44:37,984 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:37,985 INFO L435 NwaCegarLoop]: 837 mSDtfsCounter, 146 mSDsluCounter, 830 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 164 SdHoareTripleChecker+Valid, 1667 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:37,985 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [164 Valid, 1667 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:38,016 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 40740 states. [2025-03-16 18:44:39,119 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 40740 to 40732. [2025-03-16 18:44:39,172 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 40732 states, 34912 states have (on average 1.5690020623281393) internal successors, (54777), 34927 states have internal predecessors, (54777), 5771 states have call successors, (5771), 44 states have call predecessors, (5771), 48 states have return successors, (6384), 5769 states have call predecessors, (6384), 5770 states have call successors, (6384) [2025-03-16 18:44:39,304 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 40732 states to 40732 states and 66932 transitions. [2025-03-16 18:44:39,317 INFO L78 Accepts]: Start accepts. Automaton has 40732 states and 66932 transitions. Word has length 219 [2025-03-16 18:44:39,318 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:39,318 INFO L471 AbstractCegarLoop]: Abstraction has 40732 states and 66932 transitions. [2025-03-16 18:44:39,318 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 42.666666666666664) internal successors, (128), 3 states have internal predecessors, (128), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:39,318 INFO L276 IsEmpty]: Start isEmpty. Operand 40732 states and 66932 transitions. [2025-03-16 18:44:39,380 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 214 [2025-03-16 18:44:39,380 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:39,380 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:39,380 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable20 [2025-03-16 18:44:39,381 INFO L396 AbstractCegarLoop]: === Iteration 22 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:39,381 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:39,381 INFO L85 PathProgramCache]: Analyzing trace with hash -927708526, now seen corresponding path program 1 times [2025-03-16 18:44:39,381 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:39,381 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [297854303] [2025-03-16 18:44:39,381 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:39,382 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:39,403 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 213 statements into 1 equivalence classes. [2025-03-16 18:44:39,413 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 213 of 213 statements. [2025-03-16 18:44:39,414 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:39,414 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:39,458 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:39,459 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:39,459 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [297854303] [2025-03-16 18:44:39,459 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [297854303] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:39,459 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:39,459 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:39,459 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1485433851] [2025-03-16 18:44:39,459 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:39,460 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:39,460 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:39,460 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:39,460 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:39,460 INFO L87 Difference]: Start difference. First operand 40732 states and 66932 transitions. Second operand has 3 states, 3 states have (on average 41.333333333333336) internal successors, (124), 3 states have internal predecessors, (124), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:41,266 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:41,266 INFO L93 Difference]: Finished difference Result 110287 states and 182250 transitions. [2025-03-16 18:44:41,269 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:41,269 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 41.333333333333336) internal successors, (124), 3 states have internal predecessors, (124), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) Word has length 213 [2025-03-16 18:44:41,270 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:41,527 INFO L225 Difference]: With dead ends: 110287 [2025-03-16 18:44:41,527 INFO L226 Difference]: Without dead ends: 73892 [2025-03-16 18:44:41,603 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:41,606 INFO L435 NwaCegarLoop]: 844 mSDtfsCounter, 144 mSDsluCounter, 830 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 162 SdHoareTripleChecker+Valid, 1674 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:41,606 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [162 Valid, 1674 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:41,649 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 73892 states. [2025-03-16 18:44:43,469 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 73892 to 73884. [2025-03-16 18:44:43,543 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 73884 states, 63551 states have (on average 1.5736809806297305) internal successors, (100009), 63566 states have internal predecessors, (100009), 10284 states have call successors, (10284), 44 states have call predecessors, (10284), 48 states have return successors, (11429), 10282 states have call predecessors, (11429), 10283 states have call successors, (11429) [2025-03-16 18:44:43,733 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 73884 states to 73884 states and 121722 transitions. [2025-03-16 18:44:43,757 INFO L78 Accepts]: Start accepts. Automaton has 73884 states and 121722 transitions. Word has length 213 [2025-03-16 18:44:43,757 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:43,757 INFO L471 AbstractCegarLoop]: Abstraction has 73884 states and 121722 transitions. [2025-03-16 18:44:43,757 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 41.333333333333336) internal successors, (124), 3 states have internal predecessors, (124), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:43,757 INFO L276 IsEmpty]: Start isEmpty. Operand 73884 states and 121722 transitions. [2025-03-16 18:44:43,834 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 222 [2025-03-16 18:44:43,834 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:43,834 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:43,834 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable21 [2025-03-16 18:44:43,834 INFO L396 AbstractCegarLoop]: === Iteration 23 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:43,835 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:43,835 INFO L85 PathProgramCache]: Analyzing trace with hash 58214539, now seen corresponding path program 1 times [2025-03-16 18:44:43,835 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:43,835 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [36026399] [2025-03-16 18:44:43,835 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:43,835 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:43,855 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 221 statements into 1 equivalence classes. [2025-03-16 18:44:43,864 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 221 of 221 statements. [2025-03-16 18:44:43,865 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:43,865 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:43,905 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 118 trivial. 0 not checked. [2025-03-16 18:44:43,906 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:43,906 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [36026399] [2025-03-16 18:44:43,906 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [36026399] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:43,906 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:43,906 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:43,906 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1346054943] [2025-03-16 18:44:43,906 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:43,907 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:43,907 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:43,907 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:43,907 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:43,908 INFO L87 Difference]: Start difference. First operand 73884 states and 121722 transitions. Second operand has 3 states, 3 states have (on average 43.333333333333336) internal successors, (130), 3 states have internal predecessors, (130), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:46,824 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:46,824 INFO L93 Difference]: Finished difference Result 137948 states and 228142 transitions. [2025-03-16 18:44:46,824 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:46,825 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 43.333333333333336) internal successors, (130), 3 states have internal predecessors, (130), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 221 [2025-03-16 18:44:46,825 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:47,308 INFO L225 Difference]: With dead ends: 137948 [2025-03-16 18:44:47,308 INFO L226 Difference]: Without dead ends: 137627 [2025-03-16 18:44:47,366 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:47,367 INFO L435 NwaCegarLoop]: 839 mSDtfsCounter, 138 mSDsluCounter, 835 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 155 SdHoareTripleChecker+Valid, 1674 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:47,367 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [155 Valid, 1674 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:47,467 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 137627 states. [2025-03-16 18:44:51,335 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 137627 to 137619. [2025-03-16 18:44:51,484 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 137619 states, 118918 states have (on average 1.5733530668191527) internal successors, (187100), 118933 states have internal predecessors, (187100), 18652 states have call successors, (18652), 44 states have call predecessors, (18652), 48 states have return successors, (20843), 18650 states have call predecessors, (20843), 18651 states have call successors, (20843) [2025-03-16 18:44:51,882 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 137619 states to 137619 states and 226595 transitions. [2025-03-16 18:44:51,918 INFO L78 Accepts]: Start accepts. Automaton has 137619 states and 226595 transitions. Word has length 221 [2025-03-16 18:44:51,918 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:51,918 INFO L471 AbstractCegarLoop]: Abstraction has 137619 states and 226595 transitions. [2025-03-16 18:44:51,919 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 43.333333333333336) internal successors, (130), 3 states have internal predecessors, (130), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:51,919 INFO L276 IsEmpty]: Start isEmpty. Operand 137619 states and 226595 transitions. [2025-03-16 18:44:52,018 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 216 [2025-03-16 18:44:52,018 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:52,019 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:52,019 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable22 [2025-03-16 18:44:52,019 INFO L396 AbstractCegarLoop]: === Iteration 24 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:52,019 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:52,019 INFO L85 PathProgramCache]: Analyzing trace with hash -1792714605, now seen corresponding path program 1 times [2025-03-16 18:44:52,019 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:52,019 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [356020790] [2025-03-16 18:44:52,020 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:52,020 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:52,037 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 215 statements into 1 equivalence classes. [2025-03-16 18:44:52,045 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 215 of 215 statements. [2025-03-16 18:44:52,046 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:52,046 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:52,343 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 116 trivial. 0 not checked. [2025-03-16 18:44:52,343 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:52,343 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [356020790] [2025-03-16 18:44:52,344 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [356020790] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:52,344 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1315768159] [2025-03-16 18:44:52,344 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:52,344 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:52,344 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:52,346 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:52,350 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2025-03-16 18:44:52,581 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 215 statements into 1 equivalence classes. [2025-03-16 18:44:52,714 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 215 of 215 statements. [2025-03-16 18:44:52,714 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:52,714 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:52,725 INFO L256 TraceCheckSpWp]: Trace formula consists of 1554 conjuncts, 23 conjuncts are in the unsatisfiable core [2025-03-16 18:44:52,730 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:53,216 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 24 proven. 0 refuted. 0 times theorem prover too weak. 94 trivial. 0 not checked. [2025-03-16 18:44:53,216 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:44:53,216 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1315768159] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:53,216 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:44:53,216 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [13] imperfect sequences [14] total 26 [2025-03-16 18:44:53,216 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [475570613] [2025-03-16 18:44:53,216 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:53,217 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2025-03-16 18:44:53,217 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:53,217 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2025-03-16 18:44:53,218 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=69, Invalid=581, Unknown=0, NotChecked=0, Total=650 [2025-03-16 18:44:53,218 INFO L87 Difference]: Start difference. First operand 137619 states and 226595 transitions. Second operand has 14 states, 12 states have (on average 11.333333333333334) internal successors, (136), 11 states have internal predecessors, (136), 6 states have call successors, (32), 5 states have call predecessors, (32), 6 states have return successors, (27), 6 states have call predecessors, (27), 6 states have call successors, (27) [2025-03-16 18:45:00,398 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:00,398 INFO L93 Difference]: Finished difference Result 274290 states and 457095 transitions. [2025-03-16 18:45:00,398 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2025-03-16 18:45:00,398 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 12 states have (on average 11.333333333333334) internal successors, (136), 11 states have internal predecessors, (136), 6 states have call successors, (32), 5 states have call predecessors, (32), 6 states have return successors, (27), 6 states have call predecessors, (27), 6 states have call successors, (27) Word has length 215 [2025-03-16 18:45:00,399 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:01,930 INFO L225 Difference]: With dead ends: 274290 [2025-03-16 18:45:01,930 INFO L226 Difference]: Without dead ends: 273975 [2025-03-16 18:45:02,074 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 247 GetRequests, 207 SyntacticMatches, 0 SemanticMatches, 40 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 229 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=210, Invalid=1512, Unknown=0, NotChecked=0, Total=1722 [2025-03-16 18:45:02,074 INFO L435 NwaCegarLoop]: 995 mSDtfsCounter, 2137 mSDsluCounter, 7445 mSDsCounter, 0 mSdLazyCounter, 2866 mSolverCounterSat, 535 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2145 SdHoareTripleChecker+Valid, 8440 SdHoareTripleChecker+Invalid, 3401 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 535 IncrementalHoareTripleChecker+Valid, 2866 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.5s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:02,074 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2145 Valid, 8440 Invalid, 3401 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [535 Valid, 2866 Invalid, 0 Unknown, 0 Unchecked, 1.5s Time] [2025-03-16 18:45:02,283 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 273975 states.