./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/email_spec7_productSimulator.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 8fc3dc66 Calling Ultimate with: /root/.sdkman/candidates/java/21.0.5-tem/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/email_spec7_productSimulator.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 1d8908adfa5a1758f016a2fa64af2c05db2b3cc5d1fb9ac5b8aa70e5689b8434 --- Real Ultimate output --- This is Ultimate 0.3.0-?-8fc3dc6-m [2025-03-16 18:44:45,781 INFO L188 SettingsManager]: Resetting all preferences to default values... [2025-03-16 18:44:45,838 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2025-03-16 18:44:45,843 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2025-03-16 18:44:45,843 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2025-03-16 18:44:45,864 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2025-03-16 18:44:45,865 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2025-03-16 18:44:45,865 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2025-03-16 18:44:45,866 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2025-03-16 18:44:45,866 INFO L153 SettingsManager]: * Use memory slicer=true [2025-03-16 18:44:45,866 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2025-03-16 18:44:45,866 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2025-03-16 18:44:45,867 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2025-03-16 18:44:45,867 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2025-03-16 18:44:45,867 INFO L153 SettingsManager]: * Use SBE=true [2025-03-16 18:44:45,867 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * sizeof long=4 [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * sizeof POINTER=4 [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * sizeof long double=12 [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR [2025-03-16 18:44:45,868 INFO L153 SettingsManager]: * Use constant arrays=true [2025-03-16 18:44:45,869 INFO L151 SettingsManager]: Preferences of IcfgBuilder differ from their defaults: [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2025-03-16 18:44:45,869 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Compute procedure contracts=false [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2025-03-16 18:44:45,869 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 1d8908adfa5a1758f016a2fa64af2c05db2b3cc5d1fb9ac5b8aa70e5689b8434 [2025-03-16 18:44:46,078 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2025-03-16 18:44:46,084 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2025-03-16 18:44:46,087 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2025-03-16 18:44:46,088 INFO L270 PluginConnector]: Initializing CDTParser... [2025-03-16 18:44:46,088 INFO L274 PluginConnector]: CDTParser initialized [2025-03-16 18:44:46,089 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/email_spec7_productSimulator.cil.c [2025-03-16 18:44:47,244 INFO L533 CDTParser]: Created temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/3535353a8/ebee16954f154e8590978e626865f9cc/FLAGbe350075b [2025-03-16 18:44:47,645 INFO L384 CDTParser]: Found 1 translation units. [2025-03-16 18:44:47,647 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec7_productSimulator.cil.c [2025-03-16 18:44:47,668 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/3535353a8/ebee16954f154e8590978e626865f9cc/FLAGbe350075b [2025-03-16 18:44:47,678 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/3535353a8/ebee16954f154e8590978e626865f9cc [2025-03-16 18:44:47,680 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2025-03-16 18:44:47,681 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2025-03-16 18:44:47,682 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2025-03-16 18:44:47,682 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2025-03-16 18:44:47,685 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2025-03-16 18:44:47,685 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.03 06:44:47" (1/1) ... [2025-03-16 18:44:47,686 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@69dfa27b and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:47, skipping insertion in model container [2025-03-16 18:44:47,686 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.03 06:44:47" (1/1) ... [2025-03-16 18:44:47,722 INFO L175 MainTranslator]: Built tables and reachable declarations [2025-03-16 18:44:48,168 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec7_productSimulator.cil.c[72622,72635] [2025-03-16 18:44:48,173 INFO L210 PostProcessor]: Analyzing one entry point: main [2025-03-16 18:44:48,184 INFO L200 MainTranslator]: Completed pre-run [2025-03-16 18:44:48,190 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Client.i","") [48] [2025-03-16 18:44:48,191 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EmailLib.i","") [642] [2025-03-16 18:44:48,191 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [1041] [2025-03-16 18:44:48,191 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EncryptVerify_spec.i","") [1416] [2025-03-16 18:44:48,192 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Email.i","") [1435] [2025-03-16 18:44:48,192 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"ClientLib.i","") [1639] [2025-03-16 18:44:48,192 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [2699] [2025-03-16 18:44:48,192 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [2965] [2025-03-16 18:44:48,192 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Util.i","") [3072] [2025-03-16 18:44:48,192 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [3089] [2025-03-16 18:44:48,192 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [3455] [2025-03-16 18:44:48,283 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec7_productSimulator.cil.c[72622,72635] [2025-03-16 18:44:48,284 INFO L210 PostProcessor]: Analyzing one entry point: main [2025-03-16 18:44:48,310 INFO L204 MainTranslator]: Completed translation [2025-03-16 18:44:48,311 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48 WrapperNode [2025-03-16 18:44:48,311 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2025-03-16 18:44:48,312 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2025-03-16 18:44:48,312 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2025-03-16 18:44:48,312 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2025-03-16 18:44:48,316 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,334 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,380 INFO L138 Inliner]: procedures = 151, calls = 262, calls flagged for inlining = 67, calls inlined = 64, statements flattened = 1303 [2025-03-16 18:44:48,380 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2025-03-16 18:44:48,381 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2025-03-16 18:44:48,381 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2025-03-16 18:44:48,381 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2025-03-16 18:44:48,392 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,392 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,400 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,428 INFO L175 MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 4, 4, 4]. 29 percent of accesses are in the largest equivalence class. The 14 initializations are split as follows [2, 4, 4, 4]. The 0 writes are split as follows [0, 0, 0, 0]. [2025-03-16 18:44:48,428 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,428 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,449 INFO L184 PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,455 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,460 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,470 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,480 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2025-03-16 18:44:48,481 INFO L112 PluginConnector]: ------------------------IcfgBuilder---------------------------- [2025-03-16 18:44:48,481 INFO L270 PluginConnector]: Initializing IcfgBuilder... [2025-03-16 18:44:48,481 INFO L274 PluginConnector]: IcfgBuilder initialized [2025-03-16 18:44:48,485 INFO L184 PluginConnector]: Executing the observer IcfgBuilderObserver from plugin IcfgBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (1/1) ... [2025-03-16 18:44:48,489 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2025-03-16 18:44:48,499 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:48,513 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2025-03-16 18:44:48,516 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2025-03-16 18:44:48,533 INFO L130 BoogieDeclarations]: Found specification of procedure getClientPrivateKey [2025-03-16 18:44:48,534 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientPrivateKey [2025-03-16 18:44:48,534 INFO L130 BoogieDeclarations]: Found specification of procedure setup_chuck__before__Keys [2025-03-16 18:44:48,534 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_chuck__before__Keys [2025-03-16 18:44:48,534 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__Sign [2025-03-16 18:44:48,534 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__Sign [2025-03-16 18:44:48,534 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookSize [2025-03-16 18:44:48,534 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookSize [2025-03-16 18:44:48,534 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey [2025-03-16 18:44:48,534 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey [2025-03-16 18:44:48,535 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookAddress [2025-03-16 18:44:48,535 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookAddress [2025-03-16 18:44:48,535 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey [2025-03-16 18:44:48,535 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey [2025-03-16 18:44:48,535 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Verify [2025-03-16 18:44:48,535 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Verify [2025-03-16 18:44:48,536 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailTo [2025-03-16 18:44:48,536 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailTo [2025-03-16 18:44:48,536 INFO L130 BoogieDeclarations]: Found specification of procedure setup_bob__before__Keys [2025-03-16 18:44:48,536 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_bob__before__Keys [2025-03-16 18:44:48,536 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailFrom [2025-03-16 18:44:48,536 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailFrom [2025-03-16 18:44:48,536 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable [2025-03-16 18:44:48,537 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable [2025-03-16 18:44:48,537 INFO L130 BoogieDeclarations]: Found specification of procedure createClientKeyringEntry [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Decrypt [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Decrypt [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__Encrypt [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__Encrypt [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailSignKey [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailSignKey [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAdd [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAdd [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Forward [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Forward [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailFrom [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailFrom [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure queue [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure queue [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure setClientId [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientId [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable__before__Encrypt [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable__before__Encrypt [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure isSigned [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure isSigned [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure isKeyPairValid [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure isKeyPairValid [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__AddressBook [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__AddressBook [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Encrypt [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Encrypt [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__AutoResponder [2025-03-16 18:44:48,538 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__AutoResponder [2025-03-16 18:44:48,538 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookSize [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookSize [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringUser [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringUser [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure findPublicKey [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure findPublicKey [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure sendEmail [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure sendEmail [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure isEncrypted [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure isEncrypted [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure setup_rjh__before__Keys [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_rjh__before__Keys [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Verify [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Verify [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure setClientPrivateKey [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientPrivateKey [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailTo [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailTo [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure generateKeyPair [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure generateKeyPair [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Sign [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Sign [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure select_one [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure select_one [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookAddress [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookAddress [2025-03-16 18:44:48,539 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2025-03-16 18:44:48,539 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2025-03-16 18:44:48,722 INFO L256 CfgBuilder]: Building ICFG [2025-03-16 18:44:48,724 INFO L286 CfgBuilder]: Building CFG for each procedure with an implementation [2025-03-16 18:44:48,761 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1574: #res := ~retValue_acc~17; [2025-03-16 18:44:48,773 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L948: #res := ~retValue_acc~13; [2025-03-16 18:44:48,788 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L522: #res := ~retValue_acc~4; [2025-03-16 18:44:48,802 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2241: #res := ~retValue_acc~31; [2025-03-16 18:44:48,864 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1785: #res := ~retValue_acc~25; [2025-03-16 18:44:48,908 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L685-1: getEmailId_#res#1 := getEmailId_~retValue_acc~6#1; [2025-03-16 18:44:48,953 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L911: #res := ~retValue_acc~12; [2025-03-16 18:44:48,967 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L759: #res := ~retValue_acc~8; [2025-03-16 18:44:49,022 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1594-1: isReadable__role__Encrypt_#res#1 := isReadable__role__Encrypt_~retValue_acc~18#1; [2025-03-16 18:44:49,023 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1612: #res#1 := ~retValue_acc~19#1; [2025-03-16 18:44:49,107 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2333: #res#1 := ~retValue_acc~33#1; [2025-03-16 18:44:49,107 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2288-1: getClientKeyringSize_#res#1 := getClientKeyringSize_~retValue_acc~32#1; [2025-03-16 18:44:49,148 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2557: #res := ~retValue_acc~36; [2025-03-16 18:44:49,155 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1636-1: createEmail_#res#1 := createEmail_~retValue_acc~21#1; [2025-03-16 18:44:49,159 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L874: #res := ~retValue_acc~11; [2025-03-16 18:44:49,189 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2676-1: getClientId_#res#1 := getClientId_~retValue_acc~38#1; [2025-03-16 18:44:49,220 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1022-1: isVerified_#res#1 := isVerified_~retValue_acc~15#1; [2025-03-16 18:44:49,220 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2629-1: getClientForwardReceiver_#res#1 := getClientForwardReceiver_~retValue_acc~37#1; [2025-03-16 18:44:49,225 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L985: #res := ~retValue_acc~14; [2025-03-16 18:44:49,247 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2974: #res := ~retValue_acc~39; [2025-03-16 18:44:49,264 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2111: #res := ~retValue_acc~29; [2025-03-16 18:44:49,281 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2194-1: getClientAutoResponse_#res#1 := getClientAutoResponse_~retValue_acc~30#1; [2025-03-16 18:44:49,473 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L488-1: get_queued_client_#res#1 := get_queued_client_~retValue_acc~2#1; [2025-03-16 18:44:49,473 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2503-1: getClientKeyringPublicKey_#res#1 := getClientKeyringPublicKey_~retValue_acc~35#1; [2025-03-16 18:44:49,474 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3069-1: valid_product_#res#1 := valid_product_~retValue_acc~40#1; [2025-03-16 18:44:49,474 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L479-1: is_queue_empty_#res#1 := is_queue_empty_~retValue_acc~1#1; [2025-03-16 18:44:49,474 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2396-1: getClientKeyringUser_#res#1 := getClientKeyringUser_~retValue_acc~34#1; [2025-03-16 18:44:49,474 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L497-1: get_queued_email_#res#1 := get_queued_email_~retValue_acc~3#1; [2025-03-16 18:44:49,480 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L722: #res := ~retValue_acc~7; [2025-03-16 18:44:49,663 INFO L? ?]: Removed 600 outVars from TransFormulas that were not future-live. [2025-03-16 18:44:49,663 INFO L307 CfgBuilder]: Performing block encoding [2025-03-16 18:44:49,687 INFO L331 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2025-03-16 18:44:49,691 INFO L336 CfgBuilder]: Removed 0 assume(true) statements. [2025-03-16 18:44:49,691 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 16.03 06:44:49 BoogieIcfgContainer [2025-03-16 18:44:49,691 INFO L131 PluginConnector]: ------------------------ END IcfgBuilder---------------------------- [2025-03-16 18:44:49,693 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2025-03-16 18:44:49,693 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2025-03-16 18:44:49,696 INFO L274 PluginConnector]: TraceAbstraction initialized [2025-03-16 18:44:49,696 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 16.03 06:44:47" (1/3) ... [2025-03-16 18:44:49,697 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@217c3fe and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.03 06:44:49, skipping insertion in model container [2025-03-16 18:44:49,697 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:44:48" (2/3) ... [2025-03-16 18:44:49,697 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@217c3fe and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.03 06:44:49, skipping insertion in model container [2025-03-16 18:44:49,697 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 16.03 06:44:49" (3/3) ... [2025-03-16 18:44:49,698 INFO L128 eAbstractionObserver]: Analyzing ICFG email_spec7_productSimulator.cil.c [2025-03-16 18:44:49,709 INFO L216 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2025-03-16 18:44:49,712 INFO L151 ceAbstractionStarter]: Applying trace abstraction to ICFG email_spec7_productSimulator.cil.c that has 44 procedures, 582 locations, 1 initial locations, 1 loop locations, and 1 error locations. [2025-03-16 18:44:49,775 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2025-03-16 18:44:49,784 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@6156390c, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2025-03-16 18:44:49,785 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2025-03-16 18:44:49,790 INFO L276 IsEmpty]: Start isEmpty. Operand has 582 states, 428 states have (on average 1.5350467289719627) internal successors, (657), 448 states have internal predecessors, (657), 109 states have call successors, (109), 43 states have call predecessors, (109), 43 states have return successors, (109), 108 states have call predecessors, (109), 109 states have call successors, (109) [2025-03-16 18:44:49,804 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 145 [2025-03-16 18:44:49,805 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:49,806 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:49,806 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:49,809 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:49,809 INFO L85 PathProgramCache]: Analyzing trace with hash -72438766, now seen corresponding path program 1 times [2025-03-16 18:44:49,814 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:49,814 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1892348078] [2025-03-16 18:44:49,815 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:49,815 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:49,906 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 144 statements into 1 equivalence classes. [2025-03-16 18:44:49,973 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 144 of 144 statements. [2025-03-16 18:44:49,974 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:49,974 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:50,358 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:44:50,361 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:50,361 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1892348078] [2025-03-16 18:44:50,362 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1892348078] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:50,362 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:50,362 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2025-03-16 18:44:50,364 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1844336327] [2025-03-16 18:44:50,365 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:50,368 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2025-03-16 18:44:50,369 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:50,386 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2025-03-16 18:44:50,386 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2025-03-16 18:44:50,389 INFO L87 Difference]: Start difference. First operand has 582 states, 428 states have (on average 1.5350467289719627) internal successors, (657), 448 states have internal predecessors, (657), 109 states have call successors, (109), 43 states have call predecessors, (109), 43 states have return successors, (109), 108 states have call predecessors, (109), 109 states have call successors, (109) Second operand has 5 states, 5 states have (on average 14.6) internal successors, (73), 5 states have internal predecessors, (73), 2 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2025-03-16 18:44:50,516 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:50,520 INFO L93 Difference]: Finished difference Result 1131 states and 1710 transitions. [2025-03-16 18:44:50,521 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2025-03-16 18:44:50,522 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 14.6) internal successors, (73), 5 states have internal predecessors, (73), 2 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 144 [2025-03-16 18:44:50,523 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:50,541 INFO L225 Difference]: With dead ends: 1131 [2025-03-16 18:44:50,541 INFO L226 Difference]: Without dead ends: 578 [2025-03-16 18:44:50,549 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2025-03-16 18:44:50,553 INFO L435 NwaCegarLoop]: 870 mSDtfsCounter, 0 mSDsluCounter, 2597 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 3467 SdHoareTripleChecker+Invalid, 24 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:50,555 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 3467 Invalid, 24 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:50,568 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 578 states. [2025-03-16 18:44:50,603 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 578 to 578. [2025-03-16 18:44:50,605 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 578 states, 425 states have (on average 1.5129411764705882) internal successors, (643), 444 states have internal predecessors, (643), 109 states have call successors, (109), 43 states have call predecessors, (109), 43 states have return successors, (108), 107 states have call predecessors, (108), 108 states have call successors, (108) [2025-03-16 18:44:50,612 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 578 states to 578 states and 860 transitions. [2025-03-16 18:44:50,615 INFO L78 Accepts]: Start accepts. Automaton has 578 states and 860 transitions. Word has length 144 [2025-03-16 18:44:50,615 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:50,615 INFO L471 AbstractCegarLoop]: Abstraction has 578 states and 860 transitions. [2025-03-16 18:44:50,616 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 14.6) internal successors, (73), 5 states have internal predecessors, (73), 2 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2025-03-16 18:44:50,616 INFO L276 IsEmpty]: Start isEmpty. Operand 578 states and 860 transitions. [2025-03-16 18:44:50,621 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 150 [2025-03-16 18:44:50,621 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:50,621 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:50,621 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2025-03-16 18:44:50,621 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:50,622 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:50,622 INFO L85 PathProgramCache]: Analyzing trace with hash -535949014, now seen corresponding path program 1 times [2025-03-16 18:44:50,622 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:50,622 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1659046717] [2025-03-16 18:44:50,622 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:50,622 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:50,654 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 149 statements into 1 equivalence classes. [2025-03-16 18:44:50,682 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 149 of 149 statements. [2025-03-16 18:44:50,684 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:50,684 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:50,830 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:44:50,830 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:50,830 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1659046717] [2025-03-16 18:44:50,830 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1659046717] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:50,830 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:50,830 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:50,831 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1473524394] [2025-03-16 18:44:50,831 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:50,832 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:50,832 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:50,833 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:50,833 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:50,834 INFO L87 Difference]: Start difference. First operand 578 states and 860 transitions. Second operand has 3 states, 3 states have (on average 26.0) internal successors, (78), 3 states have internal predecessors, (78), 3 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (21), 3 states have call predecessors, (21), 3 states have call successors, (21) [2025-03-16 18:44:50,917 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:50,918 INFO L93 Difference]: Finished difference Result 1127 states and 1689 transitions. [2025-03-16 18:44:50,918 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:50,918 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 26.0) internal successors, (78), 3 states have internal predecessors, (78), 3 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (21), 3 states have call predecessors, (21), 3 states have call successors, (21) Word has length 149 [2025-03-16 18:44:50,918 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:50,924 INFO L225 Difference]: With dead ends: 1127 [2025-03-16 18:44:50,925 INFO L226 Difference]: Without dead ends: 579 [2025-03-16 18:44:50,926 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:50,928 INFO L435 NwaCegarLoop]: 851 mSDtfsCounter, 825 mSDsluCounter, 22 mSDsCounter, 0 mSdLazyCounter, 5 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 825 SdHoareTripleChecker+Valid, 873 SdHoareTripleChecker+Invalid, 7 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 5 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:50,928 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [825 Valid, 873 Invalid, 7 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 5 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:50,929 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 579 states. [2025-03-16 18:44:50,956 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 579 to 579. [2025-03-16 18:44:50,957 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 579 states, 427 states have (on average 1.5035128805620608) internal successors, (642), 444 states have internal predecessors, (642), 107 states have call successors, (107), 44 states have call predecessors, (107), 44 states have return successors, (106), 105 states have call predecessors, (106), 106 states have call successors, (106) [2025-03-16 18:44:50,963 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 579 states to 579 states and 855 transitions. [2025-03-16 18:44:50,964 INFO L78 Accepts]: Start accepts. Automaton has 579 states and 855 transitions. Word has length 149 [2025-03-16 18:44:50,964 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:50,964 INFO L471 AbstractCegarLoop]: Abstraction has 579 states and 855 transitions. [2025-03-16 18:44:50,965 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 26.0) internal successors, (78), 3 states have internal predecessors, (78), 3 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (21), 3 states have call predecessors, (21), 3 states have call successors, (21) [2025-03-16 18:44:50,965 INFO L276 IsEmpty]: Start isEmpty. Operand 579 states and 855 transitions. [2025-03-16 18:44:50,969 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 151 [2025-03-16 18:44:50,969 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:50,969 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:50,970 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2025-03-16 18:44:50,970 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:50,970 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:50,970 INFO L85 PathProgramCache]: Analyzing trace with hash -1045045539, now seen corresponding path program 1 times [2025-03-16 18:44:50,970 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:50,971 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1653693010] [2025-03-16 18:44:50,971 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:50,971 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:50,995 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 150 statements into 1 equivalence classes. [2025-03-16 18:44:51,007 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 150 of 150 statements. [2025-03-16 18:44:51,010 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:51,010 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:51,076 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:44:51,077 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:51,077 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1653693010] [2025-03-16 18:44:51,077 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1653693010] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:51,077 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:51,077 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:51,077 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [638742767] [2025-03-16 18:44:51,077 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:51,078 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:51,078 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:51,079 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:51,079 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:51,080 INFO L87 Difference]: Start difference. First operand 579 states and 855 transitions. Second operand has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 2 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2025-03-16 18:44:51,176 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:51,177 INFO L93 Difference]: Finished difference Result 1656 states and 2479 transitions. [2025-03-16 18:44:51,177 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:51,177 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 2 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 150 [2025-03-16 18:44:51,178 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:51,187 INFO L225 Difference]: With dead ends: 1656 [2025-03-16 18:44:51,187 INFO L226 Difference]: Without dead ends: 1108 [2025-03-16 18:44:51,192 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:51,193 INFO L435 NwaCegarLoop]: 862 mSDtfsCounter, 812 mSDsluCounter, 821 mSDsCounter, 0 mSdLazyCounter, 8 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 812 SdHoareTripleChecker+Valid, 1683 SdHoareTripleChecker+Invalid, 14 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 8 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:51,193 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [812 Valid, 1683 Invalid, 14 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 8 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:51,195 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1108 states. [2025-03-16 18:44:51,260 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1108 to 1106. [2025-03-16 18:44:51,263 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1106 states, 819 states have (on average 1.5091575091575091) internal successors, (1236), 849 states have internal predecessors, (1236), 199 states have call successors, (199), 87 states have call predecessors, (199), 87 states have return successors, (210), 196 states have call predecessors, (210), 197 states have call successors, (210) [2025-03-16 18:44:51,269 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1106 states to 1106 states and 1645 transitions. [2025-03-16 18:44:51,270 INFO L78 Accepts]: Start accepts. Automaton has 1106 states and 1645 transitions. Word has length 150 [2025-03-16 18:44:51,271 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:51,271 INFO L471 AbstractCegarLoop]: Abstraction has 1106 states and 1645 transitions. [2025-03-16 18:44:51,271 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 2 states have call successors, (27), 2 states have call predecessors, (27), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2025-03-16 18:44:51,272 INFO L276 IsEmpty]: Start isEmpty. Operand 1106 states and 1645 transitions. [2025-03-16 18:44:51,276 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 145 [2025-03-16 18:44:51,277 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:51,277 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:51,277 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2025-03-16 18:44:51,278 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:51,278 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:51,278 INFO L85 PathProgramCache]: Analyzing trace with hash 1305836542, now seen corresponding path program 1 times [2025-03-16 18:44:51,278 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:51,280 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [365587789] [2025-03-16 18:44:51,280 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:51,280 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:51,306 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 144 statements into 1 equivalence classes. [2025-03-16 18:44:51,324 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 144 of 144 statements. [2025-03-16 18:44:51,325 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:51,325 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:51,388 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:44:51,388 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:51,388 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [365587789] [2025-03-16 18:44:51,388 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [365587789] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:51,389 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:51,389 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:51,389 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1053066234] [2025-03-16 18:44:51,389 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:51,389 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:51,389 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:51,390 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:51,390 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:51,390 INFO L87 Difference]: Start difference. First operand 1106 states and 1645 transitions. Second operand has 3 states, 3 states have (on average 25.0) internal successors, (75), 3 states have internal predecessors, (75), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2025-03-16 18:44:51,434 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:51,435 INFO L93 Difference]: Finished difference Result 1108 states and 1646 transitions. [2025-03-16 18:44:51,435 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:51,435 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 25.0) internal successors, (75), 3 states have internal predecessors, (75), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 144 [2025-03-16 18:44:51,436 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:51,439 INFO L225 Difference]: With dead ends: 1108 [2025-03-16 18:44:51,439 INFO L226 Difference]: Without dead ends: 580 [2025-03-16 18:44:51,441 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:51,442 INFO L435 NwaCegarLoop]: 841 mSDtfsCounter, 805 mSDsluCounter, 34 mSDsCounter, 0 mSdLazyCounter, 6 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 805 SdHoareTripleChecker+Valid, 875 SdHoareTripleChecker+Invalid, 8 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 6 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:51,442 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [805 Valid, 875 Invalid, 8 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 6 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:51,443 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 580 states. [2025-03-16 18:44:51,476 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 580 to 580. [2025-03-16 18:44:51,478 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 580 states, 429 states have (on average 1.491841491841492) internal successors, (640), 444 states have internal predecessors, (640), 105 states have call successors, (105), 45 states have call predecessors, (105), 45 states have return successors, (104), 103 states have call predecessors, (104), 104 states have call successors, (104) [2025-03-16 18:44:51,481 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 580 states to 580 states and 849 transitions. [2025-03-16 18:44:51,481 INFO L78 Accepts]: Start accepts. Automaton has 580 states and 849 transitions. Word has length 144 [2025-03-16 18:44:51,482 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:51,482 INFO L471 AbstractCegarLoop]: Abstraction has 580 states and 849 transitions. [2025-03-16 18:44:51,482 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 25.0) internal successors, (75), 3 states have internal predecessors, (75), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2025-03-16 18:44:51,482 INFO L276 IsEmpty]: Start isEmpty. Operand 580 states and 849 transitions. [2025-03-16 18:44:51,484 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 161 [2025-03-16 18:44:51,484 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:51,485 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:51,485 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2025-03-16 18:44:51,485 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:51,485 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:51,485 INFO L85 PathProgramCache]: Analyzing trace with hash -604796209, now seen corresponding path program 1 times [2025-03-16 18:44:51,485 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:51,485 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1826360202] [2025-03-16 18:44:51,486 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:51,486 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:51,511 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 160 statements into 1 equivalence classes. [2025-03-16 18:44:51,526 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 160 of 160 statements. [2025-03-16 18:44:51,527 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:51,527 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:51,590 INFO L134 CoverageAnalysis]: Checked inductivity of 104 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 104 trivial. 0 not checked. [2025-03-16 18:44:51,591 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:51,591 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1826360202] [2025-03-16 18:44:51,591 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1826360202] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:51,591 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:51,591 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:51,591 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [609949303] [2025-03-16 18:44:51,592 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:51,592 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:51,592 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:51,592 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:51,593 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:51,593 INFO L87 Difference]: Start difference. First operand 580 states and 849 transitions. Second operand has 3 states, 3 states have (on average 28.0) internal successors, (84), 3 states have internal predecessors, (84), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (22), 2 states have call predecessors, (22), 2 states have call successors, (22) [2025-03-16 18:44:51,671 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:51,671 INFO L93 Difference]: Finished difference Result 1117 states and 1641 transitions. [2025-03-16 18:44:51,672 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:51,672 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 28.0) internal successors, (84), 3 states have internal predecessors, (84), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (22), 2 states have call predecessors, (22), 2 states have call successors, (22) Word has length 160 [2025-03-16 18:44:51,672 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:51,676 INFO L225 Difference]: With dead ends: 1117 [2025-03-16 18:44:51,676 INFO L226 Difference]: Without dead ends: 583 [2025-03-16 18:44:51,678 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:51,678 INFO L435 NwaCegarLoop]: 822 mSDtfsCounter, 787 mSDsluCounter, 38 mSDsCounter, 0 mSdLazyCounter, 14 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 787 SdHoareTripleChecker+Valid, 860 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 14 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:51,679 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [787 Valid, 860 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 14 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:51,680 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 583 states. [2025-03-16 18:44:51,707 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 583 to 577. [2025-03-16 18:44:51,708 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 577 states, 429 states have (on average 1.4662004662004662) internal successors, (629), 439 states have internal predecessors, (629), 102 states have call successors, (102), 45 states have call predecessors, (102), 45 states have return successors, (101), 100 states have call predecessors, (101), 101 states have call successors, (101) [2025-03-16 18:44:51,712 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 577 states to 577 states and 832 transitions. [2025-03-16 18:44:51,713 INFO L78 Accepts]: Start accepts. Automaton has 577 states and 832 transitions. Word has length 160 [2025-03-16 18:44:51,713 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:51,713 INFO L471 AbstractCegarLoop]: Abstraction has 577 states and 832 transitions. [2025-03-16 18:44:51,713 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 28.0) internal successors, (84), 3 states have internal predecessors, (84), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (22), 2 states have call predecessors, (22), 2 states have call successors, (22) [2025-03-16 18:44:51,714 INFO L276 IsEmpty]: Start isEmpty. Operand 577 states and 832 transitions. [2025-03-16 18:44:51,716 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 172 [2025-03-16 18:44:51,716 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:51,716 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:51,716 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2025-03-16 18:44:51,716 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:51,716 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:51,717 INFO L85 PathProgramCache]: Analyzing trace with hash -1226252553, now seen corresponding path program 1 times [2025-03-16 18:44:51,717 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:51,717 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1906894124] [2025-03-16 18:44:51,717 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:51,717 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:51,741 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 171 statements into 1 equivalence classes. [2025-03-16 18:44:51,750 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 171 of 171 statements. [2025-03-16 18:44:51,750 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:51,750 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:51,992 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 106 trivial. 0 not checked. [2025-03-16 18:44:51,993 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:51,993 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1906894124] [2025-03-16 18:44:51,993 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1906894124] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:51,993 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [807180280] [2025-03-16 18:44:51,993 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:51,993 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:51,993 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:51,996 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:51,998 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2025-03-16 18:44:52,172 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 171 statements into 1 equivalence classes. [2025-03-16 18:44:52,313 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 171 of 171 statements. [2025-03-16 18:44:52,313 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:52,314 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:52,320 INFO L256 TraceCheckSpWp]: Trace formula consists of 1419 conjuncts, 2 conjuncts are in the unsatisfiable core [2025-03-16 18:44:52,327 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:52,366 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 112 trivial. 0 not checked. [2025-03-16 18:44:52,366 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:44:52,366 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [807180280] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:52,366 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:44:52,366 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [8] total 9 [2025-03-16 18:44:52,366 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1026175662] [2025-03-16 18:44:52,367 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:52,367 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:52,367 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:52,367 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:52,367 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:52,368 INFO L87 Difference]: Start difference. First operand 577 states and 832 transitions. Second operand has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (30), 2 states have call predecessors, (30), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:44:52,403 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:52,403 INFO L93 Difference]: Finished difference Result 893 states and 1270 transitions. [2025-03-16 18:44:52,403 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:52,404 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (30), 2 states have call predecessors, (30), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 171 [2025-03-16 18:44:52,404 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:52,407 INFO L225 Difference]: With dead ends: 893 [2025-03-16 18:44:52,407 INFO L226 Difference]: Without dead ends: 578 [2025-03-16 18:44:52,408 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 178 GetRequests, 171 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:52,408 INFO L435 NwaCegarLoop]: 827 mSDtfsCounter, 0 mSDsluCounter, 825 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 1652 SdHoareTripleChecker+Invalid, 3 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:52,408 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 1652 Invalid, 3 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:52,409 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 578 states. [2025-03-16 18:44:52,435 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 578 to 578. [2025-03-16 18:44:52,436 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 578 states, 430 states have (on average 1.4651162790697674) internal successors, (630), 440 states have internal predecessors, (630), 102 states have call successors, (102), 45 states have call predecessors, (102), 45 states have return successors, (101), 100 states have call predecessors, (101), 101 states have call successors, (101) [2025-03-16 18:44:52,439 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 578 states to 578 states and 833 transitions. [2025-03-16 18:44:52,440 INFO L78 Accepts]: Start accepts. Automaton has 578 states and 833 transitions. Word has length 171 [2025-03-16 18:44:52,441 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:52,441 INFO L471 AbstractCegarLoop]: Abstraction has 578 states and 833 transitions. [2025-03-16 18:44:52,441 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (30), 2 states have call predecessors, (30), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:44:52,441 INFO L276 IsEmpty]: Start isEmpty. Operand 578 states and 833 transitions. [2025-03-16 18:44:52,444 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 178 [2025-03-16 18:44:52,444 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:52,444 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:52,454 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2025-03-16 18:44:52,650 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2025-03-16 18:44:52,650 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:52,651 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:52,651 INFO L85 PathProgramCache]: Analyzing trace with hash 1687444935, now seen corresponding path program 1 times [2025-03-16 18:44:52,651 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:52,651 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1914749359] [2025-03-16 18:44:52,651 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:52,651 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:52,673 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 177 statements into 1 equivalence classes. [2025-03-16 18:44:52,684 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 177 of 177 statements. [2025-03-16 18:44:52,684 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:52,684 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:52,930 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 107 trivial. 0 not checked. [2025-03-16 18:44:52,930 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:52,930 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1914749359] [2025-03-16 18:44:52,931 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1914749359] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:52,931 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [396431816] [2025-03-16 18:44:52,931 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:52,931 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:52,931 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:52,933 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:52,935 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2025-03-16 18:44:53,094 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 177 statements into 1 equivalence classes. [2025-03-16 18:44:53,235 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 177 of 177 statements. [2025-03-16 18:44:53,235 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:53,235 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:53,241 INFO L256 TraceCheckSpWp]: Trace formula consists of 1432 conjuncts, 3 conjuncts are in the unsatisfiable core [2025-03-16 18:44:53,249 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:53,274 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 112 trivial. 0 not checked. [2025-03-16 18:44:53,274 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:44:53,274 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [396431816] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:53,274 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:44:53,274 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [8] total 9 [2025-03-16 18:44:53,274 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [418343937] [2025-03-16 18:44:53,274 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:53,274 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:53,274 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:53,275 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:53,275 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:53,275 INFO L87 Difference]: Start difference. First operand 578 states and 833 transitions. Second operand has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (30), 2 states have call predecessors, (30), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:44:53,311 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:53,312 INFO L93 Difference]: Finished difference Result 1174 states and 1726 transitions. [2025-03-16 18:44:53,312 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:53,312 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (30), 2 states have call predecessors, (30), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 177 [2025-03-16 18:44:53,313 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:53,317 INFO L225 Difference]: With dead ends: 1174 [2025-03-16 18:44:53,317 INFO L226 Difference]: Without dead ends: 672 [2025-03-16 18:44:53,319 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 184 GetRequests, 177 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:53,320 INFO L435 NwaCegarLoop]: 852 mSDtfsCounter, 162 mSDsluCounter, 781 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 180 SdHoareTripleChecker+Valid, 1633 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:53,320 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [180 Valid, 1633 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:53,322 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 672 states. [2025-03-16 18:44:53,346 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 672 to 664. [2025-03-16 18:44:53,347 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 664 states, 502 states have (on average 1.4820717131474104) internal successors, (744), 512 states have internal predecessors, (744), 116 states have call successors, (116), 45 states have call predecessors, (116), 45 states have return successors, (115), 114 states have call predecessors, (115), 115 states have call successors, (115) [2025-03-16 18:44:53,351 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 664 states to 664 states and 975 transitions. [2025-03-16 18:44:53,352 INFO L78 Accepts]: Start accepts. Automaton has 664 states and 975 transitions. Word has length 177 [2025-03-16 18:44:53,353 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:53,353 INFO L471 AbstractCegarLoop]: Abstraction has 664 states and 975 transitions. [2025-03-16 18:44:53,353 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (30), 2 states have call predecessors, (30), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:44:53,353 INFO L276 IsEmpty]: Start isEmpty. Operand 664 states and 975 transitions. [2025-03-16 18:44:53,355 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 179 [2025-03-16 18:44:53,355 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:53,355 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:53,364 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2025-03-16 18:44:53,560 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable6 [2025-03-16 18:44:53,560 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:53,560 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:53,560 INFO L85 PathProgramCache]: Analyzing trace with hash -1731179642, now seen corresponding path program 1 times [2025-03-16 18:44:53,560 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:53,560 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1495375520] [2025-03-16 18:44:53,561 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:53,561 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:53,587 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 178 statements into 1 equivalence classes. [2025-03-16 18:44:53,596 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 178 of 178 statements. [2025-03-16 18:44:53,596 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:53,596 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:53,775 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 107 trivial. 0 not checked. [2025-03-16 18:44:53,776 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:53,776 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1495375520] [2025-03-16 18:44:53,777 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1495375520] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:53,777 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [648788744] [2025-03-16 18:44:53,777 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:53,777 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:53,777 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:53,780 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:53,781 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2025-03-16 18:44:53,958 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 178 statements into 1 equivalence classes. [2025-03-16 18:44:54,089 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 178 of 178 statements. [2025-03-16 18:44:54,089 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:54,089 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:54,095 INFO L256 TraceCheckSpWp]: Trace formula consists of 1437 conjuncts, 10 conjuncts are in the unsatisfiable core [2025-03-16 18:44:54,100 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:54,189 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 94 trivial. 0 not checked. [2025-03-16 18:44:54,189 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:44:54,190 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [648788744] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:54,190 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:44:54,190 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [8] total 14 [2025-03-16 18:44:54,190 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1653319624] [2025-03-16 18:44:54,190 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:54,190 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:44:54,190 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:54,192 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:44:54,192 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=31, Invalid=151, Unknown=0, NotChecked=0, Total=182 [2025-03-16 18:44:54,192 INFO L87 Difference]: Start difference. First operand 664 states and 975 transitions. Second operand has 8 states, 6 states have (on average 17.333333333333332) internal successors, (104), 8 states have internal predecessors, (104), 4 states have call successors, (30), 2 states have call predecessors, (30), 4 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:44:54,300 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:54,300 INFO L93 Difference]: Finished difference Result 1275 states and 1888 transitions. [2025-03-16 18:44:54,301 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:44:54,301 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 17.333333333333332) internal successors, (104), 8 states have internal predecessors, (104), 4 states have call successors, (30), 2 states have call predecessors, (30), 4 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) Word has length 178 [2025-03-16 18:44:54,301 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:54,305 INFO L225 Difference]: With dead ends: 1275 [2025-03-16 18:44:54,305 INFO L226 Difference]: Without dead ends: 666 [2025-03-16 18:44:54,307 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 186 GetRequests, 173 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 15 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=35, Invalid=175, Unknown=0, NotChecked=0, Total=210 [2025-03-16 18:44:54,307 INFO L435 NwaCegarLoop]: 817 mSDtfsCounter, 4 mSDsluCounter, 4885 mSDsCounter, 0 mSdLazyCounter, 83 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 5702 SdHoareTripleChecker+Invalid, 83 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 83 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:54,307 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 5702 Invalid, 83 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 83 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:54,308 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 666 states. [2025-03-16 18:44:54,329 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 666 to 666. [2025-03-16 18:44:54,330 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 666 states, 503 states have (on average 1.4811133200795228) internal successors, (745), 514 states have internal predecessors, (745), 116 states have call successors, (116), 45 states have call predecessors, (116), 46 states have return successors, (117), 114 states have call predecessors, (117), 115 states have call successors, (117) [2025-03-16 18:44:54,334 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 666 states to 666 states and 978 transitions. [2025-03-16 18:44:54,335 INFO L78 Accepts]: Start accepts. Automaton has 666 states and 978 transitions. Word has length 178 [2025-03-16 18:44:54,335 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:54,335 INFO L471 AbstractCegarLoop]: Abstraction has 666 states and 978 transitions. [2025-03-16 18:44:54,335 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 17.333333333333332) internal successors, (104), 8 states have internal predecessors, (104), 4 states have call successors, (30), 2 states have call predecessors, (30), 4 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:44:54,335 INFO L276 IsEmpty]: Start isEmpty. Operand 666 states and 978 transitions. [2025-03-16 18:44:54,337 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 180 [2025-03-16 18:44:54,337 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:54,338 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:54,346 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2025-03-16 18:44:54,538 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,4 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:54,538 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:54,539 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:54,539 INFO L85 PathProgramCache]: Analyzing trace with hash -1463803558, now seen corresponding path program 1 times [2025-03-16 18:44:54,539 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:54,539 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [820021080] [2025-03-16 18:44:54,539 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:54,539 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:54,557 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 179 statements into 1 equivalence classes. [2025-03-16 18:44:54,565 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 179 of 179 statements. [2025-03-16 18:44:54,565 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:54,565 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:54,709 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 101 trivial. 0 not checked. [2025-03-16 18:44:54,709 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:54,709 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [820021080] [2025-03-16 18:44:54,709 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [820021080] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:54,709 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1278144672] [2025-03-16 18:44:54,710 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:54,710 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:54,710 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:54,711 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:54,713 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2025-03-16 18:44:54,878 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 179 statements into 1 equivalence classes. [2025-03-16 18:44:55,020 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 179 of 179 statements. [2025-03-16 18:44:55,020 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:55,020 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:55,028 INFO L256 TraceCheckSpWp]: Trace formula consists of 1438 conjuncts, 8 conjuncts are in the unsatisfiable core [2025-03-16 18:44:55,034 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:55,092 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 94 trivial. 0 not checked. [2025-03-16 18:44:55,092 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:44:55,092 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1278144672] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:55,093 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:44:55,093 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [9] total 13 [2025-03-16 18:44:55,093 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [573494354] [2025-03-16 18:44:55,093 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:55,093 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2025-03-16 18:44:55,093 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:55,094 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2025-03-16 18:44:55,094 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=26, Invalid=130, Unknown=0, NotChecked=0, Total=156 [2025-03-16 18:44:55,094 INFO L87 Difference]: Start difference. First operand 666 states and 978 transitions. Second operand has 6 states, 5 states have (on average 21.2) internal successors, (106), 6 states have internal predecessors, (106), 3 states have call successors, (30), 2 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:44:55,185 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:55,186 INFO L93 Difference]: Finished difference Result 1276 states and 1892 transitions. [2025-03-16 18:44:55,186 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2025-03-16 18:44:55,186 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 21.2) internal successors, (106), 6 states have internal predecessors, (106), 3 states have call successors, (30), 2 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) Word has length 179 [2025-03-16 18:44:55,187 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:55,190 INFO L225 Difference]: With dead ends: 1276 [2025-03-16 18:44:55,190 INFO L226 Difference]: Without dead ends: 668 [2025-03-16 18:44:55,192 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 187 GetRequests, 176 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=26, Invalid=130, Unknown=0, NotChecked=0, Total=156 [2025-03-16 18:44:55,192 INFO L435 NwaCegarLoop]: 817 mSDtfsCounter, 2 mSDsluCounter, 3251 mSDsCounter, 0 mSdLazyCounter, 64 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 4068 SdHoareTripleChecker+Invalid, 64 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 64 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:55,192 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 4068 Invalid, 64 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 64 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:55,193 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 668 states. [2025-03-16 18:44:55,217 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 668 to 668. [2025-03-16 18:44:55,218 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 668 states, 504 states have (on average 1.4801587301587302) internal successors, (746), 516 states have internal predecessors, (746), 116 states have call successors, (116), 45 states have call predecessors, (116), 47 states have return successors, (122), 114 states have call predecessors, (122), 115 states have call successors, (122) [2025-03-16 18:44:55,222 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 668 states to 668 states and 984 transitions. [2025-03-16 18:44:55,223 INFO L78 Accepts]: Start accepts. Automaton has 668 states and 984 transitions. Word has length 179 [2025-03-16 18:44:55,224 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:55,224 INFO L471 AbstractCegarLoop]: Abstraction has 668 states and 984 transitions. [2025-03-16 18:44:55,224 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 21.2) internal successors, (106), 6 states have internal predecessors, (106), 3 states have call successors, (30), 2 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:44:55,224 INFO L276 IsEmpty]: Start isEmpty. Operand 668 states and 984 transitions. [2025-03-16 18:44:55,227 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 188 [2025-03-16 18:44:55,227 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:55,227 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:55,237 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2025-03-16 18:44:55,428 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,5 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:55,429 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:55,430 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:55,430 INFO L85 PathProgramCache]: Analyzing trace with hash 309560255, now seen corresponding path program 1 times [2025-03-16 18:44:55,430 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:55,430 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1770364585] [2025-03-16 18:44:55,430 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:55,430 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:55,463 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 187 statements into 1 equivalence classes. [2025-03-16 18:44:55,478 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 187 of 187 statements. [2025-03-16 18:44:55,479 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:55,479 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:55,671 INFO L134 CoverageAnalysis]: Checked inductivity of 117 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 111 trivial. 0 not checked. [2025-03-16 18:44:55,671 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:55,671 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1770364585] [2025-03-16 18:44:55,671 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1770364585] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:55,671 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:55,671 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2025-03-16 18:44:55,671 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1290644411] [2025-03-16 18:44:55,672 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:55,672 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:44:55,672 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:55,672 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:44:55,672 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2025-03-16 18:44:55,673 INFO L87 Difference]: Start difference. First operand 668 states and 984 transitions. Second operand has 8 states, 6 states have (on average 17.333333333333332) internal successors, (104), 8 states have internal predecessors, (104), 4 states have call successors, (31), 2 states have call predecessors, (31), 3 states have return successors, (25), 3 states have call predecessors, (25), 4 states have call successors, (25) [2025-03-16 18:44:55,774 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:55,774 INFO L93 Difference]: Finished difference Result 1264 states and 1879 transitions. [2025-03-16 18:44:55,775 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:44:55,775 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 17.333333333333332) internal successors, (104), 8 states have internal predecessors, (104), 4 states have call successors, (31), 2 states have call predecessors, (31), 3 states have return successors, (25), 3 states have call predecessors, (25), 4 states have call successors, (25) Word has length 187 [2025-03-16 18:44:55,775 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:55,780 INFO L225 Difference]: With dead ends: 1264 [2025-03-16 18:44:55,780 INFO L226 Difference]: Without dead ends: 668 [2025-03-16 18:44:55,782 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=55, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:55,783 INFO L435 NwaCegarLoop]: 818 mSDtfsCounter, 4 mSDsluCounter, 4891 mSDsCounter, 0 mSdLazyCounter, 76 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 5709 SdHoareTripleChecker+Invalid, 76 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 76 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:55,783 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 5709 Invalid, 76 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 76 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:55,784 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 668 states. [2025-03-16 18:44:55,803 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 668 to 668. [2025-03-16 18:44:55,804 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 668 states, 504 states have (on average 1.4801587301587302) internal successors, (746), 516 states have internal predecessors, (746), 116 states have call successors, (116), 45 states have call predecessors, (116), 47 states have return successors, (121), 114 states have call predecessors, (121), 115 states have call successors, (121) [2025-03-16 18:44:55,807 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 668 states to 668 states and 983 transitions. [2025-03-16 18:44:55,809 INFO L78 Accepts]: Start accepts. Automaton has 668 states and 983 transitions. Word has length 187 [2025-03-16 18:44:55,809 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:55,809 INFO L471 AbstractCegarLoop]: Abstraction has 668 states and 983 transitions. [2025-03-16 18:44:55,809 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 17.333333333333332) internal successors, (104), 8 states have internal predecessors, (104), 4 states have call successors, (31), 2 states have call predecessors, (31), 3 states have return successors, (25), 3 states have call predecessors, (25), 4 states have call successors, (25) [2025-03-16 18:44:55,809 INFO L276 IsEmpty]: Start isEmpty. Operand 668 states and 983 transitions. [2025-03-16 18:44:55,811 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 182 [2025-03-16 18:44:55,811 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:55,812 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:55,812 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2025-03-16 18:44:55,812 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:55,812 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:55,812 INFO L85 PathProgramCache]: Analyzing trace with hash 499050311, now seen corresponding path program 1 times [2025-03-16 18:44:55,812 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:55,813 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1103961728] [2025-03-16 18:44:55,813 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:55,813 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:55,829 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 181 statements into 1 equivalence classes. [2025-03-16 18:44:55,838 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 181 of 181 statements. [2025-03-16 18:44:55,838 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:55,838 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:56,006 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 107 trivial. 0 not checked. [2025-03-16 18:44:56,006 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:56,006 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1103961728] [2025-03-16 18:44:56,006 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1103961728] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:56,006 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:56,007 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2025-03-16 18:44:56,007 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1001797303] [2025-03-16 18:44:56,007 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:56,007 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:44:56,007 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:56,008 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:44:56,008 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2025-03-16 18:44:56,008 INFO L87 Difference]: Start difference. First operand 668 states and 983 transitions. Second operand has 8 states, 6 states have (on average 17.166666666666668) internal successors, (103), 8 states have internal predecessors, (103), 4 states have call successors, (30), 2 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:44:56,106 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:56,107 INFO L93 Difference]: Finished difference Result 1266 states and 1882 transitions. [2025-03-16 18:44:56,107 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:44:56,107 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 17.166666666666668) internal successors, (103), 8 states have internal predecessors, (103), 4 states have call successors, (30), 2 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) Word has length 181 [2025-03-16 18:44:56,108 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:56,112 INFO L225 Difference]: With dead ends: 1266 [2025-03-16 18:44:56,112 INFO L226 Difference]: Without dead ends: 670 [2025-03-16 18:44:56,114 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=55, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:56,114 INFO L435 NwaCegarLoop]: 819 mSDtfsCounter, 3 mSDsluCounter, 4896 mSDsCounter, 0 mSdLazyCounter, 83 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 5715 SdHoareTripleChecker+Invalid, 83 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 83 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:56,115 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 5715 Invalid, 83 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 83 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2025-03-16 18:44:56,116 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 670 states. [2025-03-16 18:44:56,136 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 670 to 670. [2025-03-16 18:44:56,137 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 670 states, 505 states have (on average 1.4792079207920792) internal successors, (747), 518 states have internal predecessors, (747), 116 states have call successors, (116), 45 states have call predecessors, (116), 48 states have return successors, (123), 114 states have call predecessors, (123), 115 states have call successors, (123) [2025-03-16 18:44:56,140 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 670 states to 670 states and 986 transitions. [2025-03-16 18:44:56,141 INFO L78 Accepts]: Start accepts. Automaton has 670 states and 986 transitions. Word has length 181 [2025-03-16 18:44:56,141 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:56,141 INFO L471 AbstractCegarLoop]: Abstraction has 670 states and 986 transitions. [2025-03-16 18:44:56,141 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 17.166666666666668) internal successors, (103), 8 states have internal predecessors, (103), 4 states have call successors, (30), 2 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:44:56,142 INFO L276 IsEmpty]: Start isEmpty. Operand 670 states and 986 transitions. [2025-03-16 18:44:56,144 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 183 [2025-03-16 18:44:56,144 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:56,144 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:56,145 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2025-03-16 18:44:56,145 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:56,145 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:56,145 INFO L85 PathProgramCache]: Analyzing trace with hash 1768261996, now seen corresponding path program 1 times [2025-03-16 18:44:56,145 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:56,145 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [858167077] [2025-03-16 18:44:56,145 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:56,146 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:56,163 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 182 statements into 1 equivalence classes. [2025-03-16 18:44:56,174 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 182 of 182 statements. [2025-03-16 18:44:56,175 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:56,175 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:56,309 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 13 proven. 0 refuted. 0 times theorem prover too weak. 101 trivial. 0 not checked. [2025-03-16 18:44:56,310 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:56,310 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [858167077] [2025-03-16 18:44:56,310 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [858167077] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:56,310 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:56,310 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2025-03-16 18:44:56,310 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1837238406] [2025-03-16 18:44:56,310 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:56,310 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2025-03-16 18:44:56,310 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:56,311 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2025-03-16 18:44:56,311 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:56,311 INFO L87 Difference]: Start difference. First operand 670 states and 986 transitions. Second operand has 9 states, 7 states have (on average 15.285714285714286) internal successors, (107), 8 states have internal predecessors, (107), 4 states have call successors, (30), 2 states have call predecessors, (30), 4 states have return successors, (24), 4 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:44:56,446 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:56,446 INFO L93 Difference]: Finished difference Result 1263 states and 1876 transitions. [2025-03-16 18:44:56,447 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2025-03-16 18:44:56,447 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 7 states have (on average 15.285714285714286) internal successors, (107), 8 states have internal predecessors, (107), 4 states have call successors, (30), 2 states have call predecessors, (30), 4 states have return successors, (24), 4 states have call predecessors, (24), 4 states have call successors, (24) Word has length 182 [2025-03-16 18:44:56,447 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:56,451 INFO L225 Difference]: With dead ends: 1263 [2025-03-16 18:44:56,451 INFO L226 Difference]: Without dead ends: 670 [2025-03-16 18:44:56,453 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 12 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=23, Invalid=87, Unknown=0, NotChecked=0, Total=110 [2025-03-16 18:44:56,454 INFO L435 NwaCegarLoop]: 811 mSDtfsCounter, 7 mSDsluCounter, 5647 mSDsCounter, 0 mSdLazyCounter, 162 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 9 SdHoareTripleChecker+Valid, 6458 SdHoareTripleChecker+Invalid, 162 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 162 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:56,454 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [9 Valid, 6458 Invalid, 162 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 162 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2025-03-16 18:44:56,455 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 670 states. [2025-03-16 18:44:56,475 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 670 to 670. [2025-03-16 18:44:56,476 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 670 states, 505 states have (on average 1.4792079207920792) internal successors, (747), 518 states have internal predecessors, (747), 116 states have call successors, (116), 45 states have call predecessors, (116), 48 states have return successors, (122), 114 states have call predecessors, (122), 115 states have call successors, (122) [2025-03-16 18:44:56,479 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 670 states to 670 states and 985 transitions. [2025-03-16 18:44:56,480 INFO L78 Accepts]: Start accepts. Automaton has 670 states and 985 transitions. Word has length 182 [2025-03-16 18:44:56,481 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:56,481 INFO L471 AbstractCegarLoop]: Abstraction has 670 states and 985 transitions. [2025-03-16 18:44:56,481 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 7 states have (on average 15.285714285714286) internal successors, (107), 8 states have internal predecessors, (107), 4 states have call successors, (30), 2 states have call predecessors, (30), 4 states have return successors, (24), 4 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:44:56,481 INFO L276 IsEmpty]: Start isEmpty. Operand 670 states and 985 transitions. [2025-03-16 18:44:56,483 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 184 [2025-03-16 18:44:56,483 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:56,483 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:56,484 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2025-03-16 18:44:56,484 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:56,484 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:56,484 INFO L85 PathProgramCache]: Analyzing trace with hash 1638313519, now seen corresponding path program 2 times [2025-03-16 18:44:56,484 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:56,484 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [914574122] [2025-03-16 18:44:56,484 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2025-03-16 18:44:56,485 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:56,502 INFO L108 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 partitioned 183 statements into 2 equivalence classes. [2025-03-16 18:44:56,506 INFO L111 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 issued 1 check-sat command(s) and asserted 72 of 183 statements. [2025-03-16 18:44:56,506 INFO L114 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 issued 1 check-sat command(s) [2025-03-16 18:44:56,506 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:56,617 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 115 trivial. 0 not checked. [2025-03-16 18:44:56,618 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:56,618 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [914574122] [2025-03-16 18:44:56,618 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [914574122] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:56,618 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:56,618 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2025-03-16 18:44:56,618 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1998932309] [2025-03-16 18:44:56,618 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:56,619 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2025-03-16 18:44:56,619 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:56,619 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2025-03-16 18:44:56,619 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=73, Unknown=0, NotChecked=0, Total=90 [2025-03-16 18:44:56,619 INFO L87 Difference]: Start difference. First operand 670 states and 985 transitions. Second operand has 10 states, 10 states have (on average 10.1) internal successors, (101), 8 states have internal predecessors, (101), 1 states have call successors, (30), 1 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 1 states have call successors, (24) [2025-03-16 18:44:56,684 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:56,684 INFO L93 Difference]: Finished difference Result 676 states and 993 transitions. [2025-03-16 18:44:56,685 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2025-03-16 18:44:56,685 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 10.1) internal successors, (101), 8 states have internal predecessors, (101), 1 states have call successors, (30), 1 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 1 states have call successors, (24) Word has length 183 [2025-03-16 18:44:56,685 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:56,689 INFO L225 Difference]: With dead ends: 676 [2025-03-16 18:44:56,689 INFO L226 Difference]: Without dead ends: 674 [2025-03-16 18:44:56,690 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=73, Unknown=0, NotChecked=0, Total=90 [2025-03-16 18:44:56,690 INFO L435 NwaCegarLoop]: 822 mSDtfsCounter, 0 mSDsluCounter, 6563 mSDsCounter, 0 mSdLazyCounter, 60 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 7385 SdHoareTripleChecker+Invalid, 60 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 60 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:56,690 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 7385 Invalid, 60 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 60 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:56,691 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 674 states. [2025-03-16 18:44:56,711 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 674 to 674. [2025-03-16 18:44:56,712 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 674 states, 508 states have (on average 1.4763779527559056) internal successors, (750), 521 states have internal predecessors, (750), 116 states have call successors, (116), 45 states have call predecessors, (116), 49 states have return successors, (125), 115 states have call predecessors, (125), 115 states have call successors, (125) [2025-03-16 18:44:56,715 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 674 states to 674 states and 991 transitions. [2025-03-16 18:44:56,716 INFO L78 Accepts]: Start accepts. Automaton has 674 states and 991 transitions. Word has length 183 [2025-03-16 18:44:56,716 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:56,716 INFO L471 AbstractCegarLoop]: Abstraction has 674 states and 991 transitions. [2025-03-16 18:44:56,717 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 10 states have (on average 10.1) internal successors, (101), 8 states have internal predecessors, (101), 1 states have call successors, (30), 1 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 1 states have call successors, (24) [2025-03-16 18:44:56,717 INFO L276 IsEmpty]: Start isEmpty. Operand 674 states and 991 transitions. [2025-03-16 18:44:56,719 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 194 [2025-03-16 18:44:56,719 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:56,719 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:56,720 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12 [2025-03-16 18:44:56,720 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:56,720 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:56,720 INFO L85 PathProgramCache]: Analyzing trace with hash -753964752, now seen corresponding path program 1 times [2025-03-16 18:44:56,720 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:56,720 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1600109767] [2025-03-16 18:44:56,720 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:56,721 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:56,759 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 193 statements into 1 equivalence classes. [2025-03-16 18:44:56,769 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 193 of 193 statements. [2025-03-16 18:44:56,769 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:56,769 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:56,915 INFO L134 CoverageAnalysis]: Checked inductivity of 119 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 105 trivial. 0 not checked. [2025-03-16 18:44:56,915 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:56,915 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1600109767] [2025-03-16 18:44:56,915 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1600109767] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:56,915 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:56,915 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2025-03-16 18:44:56,915 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [111086803] [2025-03-16 18:44:56,915 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:56,916 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2025-03-16 18:44:56,916 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:56,917 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2025-03-16 18:44:56,917 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:44:56,917 INFO L87 Difference]: Start difference. First operand 674 states and 991 transitions. Second operand has 9 states, 7 states have (on average 16.142857142857142) internal successors, (113), 8 states have internal predecessors, (113), 4 states have call successors, (31), 2 states have call predecessors, (31), 4 states have return successors, (25), 4 states have call predecessors, (25), 4 states have call successors, (25) [2025-03-16 18:44:57,051 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:57,051 INFO L93 Difference]: Finished difference Result 1273 states and 1894 transitions. [2025-03-16 18:44:57,051 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2025-03-16 18:44:57,052 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 7 states have (on average 16.142857142857142) internal successors, (113), 8 states have internal predecessors, (113), 4 states have call successors, (31), 2 states have call predecessors, (31), 4 states have return successors, (25), 4 states have call predecessors, (25), 4 states have call successors, (25) Word has length 193 [2025-03-16 18:44:57,052 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:57,057 INFO L225 Difference]: With dead ends: 1273 [2025-03-16 18:44:57,057 INFO L226 Difference]: Without dead ends: 676 [2025-03-16 18:44:57,059 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=23, Invalid=87, Unknown=0, NotChecked=0, Total=110 [2025-03-16 18:44:57,059 INFO L435 NwaCegarLoop]: 813 mSDtfsCounter, 4 mSDsluCounter, 5661 mSDsCounter, 0 mSdLazyCounter, 171 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 6 SdHoareTripleChecker+Valid, 6474 SdHoareTripleChecker+Invalid, 172 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 171 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:57,060 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [6 Valid, 6474 Invalid, 172 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 171 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2025-03-16 18:44:57,061 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 676 states. [2025-03-16 18:44:57,083 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 676 to 676. [2025-03-16 18:44:57,084 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 676 states, 509 states have (on average 1.475442043222004) internal successors, (751), 523 states have internal predecessors, (751), 116 states have call successors, (116), 45 states have call predecessors, (116), 50 states have return successors, (130), 115 states have call predecessors, (130), 115 states have call successors, (130) [2025-03-16 18:44:57,087 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 676 states to 676 states and 997 transitions. [2025-03-16 18:44:57,089 INFO L78 Accepts]: Start accepts. Automaton has 676 states and 997 transitions. Word has length 193 [2025-03-16 18:44:57,089 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:57,089 INFO L471 AbstractCegarLoop]: Abstraction has 676 states and 997 transitions. [2025-03-16 18:44:57,089 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 7 states have (on average 16.142857142857142) internal successors, (113), 8 states have internal predecessors, (113), 4 states have call successors, (31), 2 states have call predecessors, (31), 4 states have return successors, (25), 4 states have call predecessors, (25), 4 states have call successors, (25) [2025-03-16 18:44:57,089 INFO L276 IsEmpty]: Start isEmpty. Operand 676 states and 997 transitions. [2025-03-16 18:44:57,092 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 188 [2025-03-16 18:44:57,092 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:57,092 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:57,092 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13 [2025-03-16 18:44:57,093 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:57,093 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:57,093 INFO L85 PathProgramCache]: Analyzing trace with hash -2040206208, now seen corresponding path program 1 times [2025-03-16 18:44:57,093 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:57,093 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1302286163] [2025-03-16 18:44:57,093 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:57,093 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:57,112 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 187 statements into 1 equivalence classes. [2025-03-16 18:44:57,127 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 187 of 187 statements. [2025-03-16 18:44:57,127 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:57,127 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:57,222 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:44:57,222 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:57,222 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1302286163] [2025-03-16 18:44:57,222 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1302286163] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:57,222 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [62625288] [2025-03-16 18:44:57,222 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:57,223 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:57,223 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:57,228 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:57,229 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2025-03-16 18:44:57,408 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 187 statements into 1 equivalence classes. [2025-03-16 18:44:57,533 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 187 of 187 statements. [2025-03-16 18:44:57,533 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:57,533 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:57,539 INFO L256 TraceCheckSpWp]: Trace formula consists of 1457 conjuncts, 3 conjuncts are in the unsatisfiable core [2025-03-16 18:44:57,544 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:57,717 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 115 trivial. 0 not checked. [2025-03-16 18:44:57,718 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:44:57,718 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [62625288] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:57,718 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:44:57,718 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [4] total 5 [2025-03-16 18:44:57,718 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1893284526] [2025-03-16 18:44:57,718 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:57,718 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:57,718 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:57,719 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:57,719 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2025-03-16 18:44:57,719 INFO L87 Difference]: Start difference. First operand 676 states and 997 transitions. Second operand has 3 states, 3 states have (on average 35.333333333333336) internal successors, (106), 3 states have internal predecessors, (106), 3 states have call successors, (30), 3 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:44:57,832 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:57,833 INFO L93 Difference]: Finished difference Result 1943 states and 2922 transitions. [2025-03-16 18:44:57,833 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:57,833 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 35.333333333333336) internal successors, (106), 3 states have internal predecessors, (106), 3 states have call successors, (30), 3 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) Word has length 187 [2025-03-16 18:44:57,834 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:57,838 INFO L225 Difference]: With dead ends: 1943 [2025-03-16 18:44:57,838 INFO L226 Difference]: Without dead ends: 671 [2025-03-16 18:44:57,842 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 190 GetRequests, 187 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2025-03-16 18:44:57,842 INFO L435 NwaCegarLoop]: 872 mSDtfsCounter, 671 mSDsluCounter, 800 mSDsCounter, 0 mSdLazyCounter, 11 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 671 SdHoareTripleChecker+Valid, 1672 SdHoareTripleChecker+Invalid, 20 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 11 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:57,842 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [671 Valid, 1672 Invalid, 20 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 11 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2025-03-16 18:44:57,843 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 671 states. [2025-03-16 18:44:57,865 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 671 to 671. [2025-03-16 18:44:57,867 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 671 states, 507 states have (on average 1.467455621301775) internal successors, (744), 519 states have internal predecessors, (744), 113 states have call successors, (113), 46 states have call predecessors, (113), 50 states have return successors, (124), 111 states have call predecessors, (124), 112 states have call successors, (124) [2025-03-16 18:44:57,870 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 671 states to 671 states and 981 transitions. [2025-03-16 18:44:57,871 INFO L78 Accepts]: Start accepts. Automaton has 671 states and 981 transitions. Word has length 187 [2025-03-16 18:44:57,871 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:57,871 INFO L471 AbstractCegarLoop]: Abstraction has 671 states and 981 transitions. [2025-03-16 18:44:57,872 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 35.333333333333336) internal successors, (106), 3 states have internal predecessors, (106), 3 states have call successors, (30), 3 states have call predecessors, (30), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:44:57,872 INFO L276 IsEmpty]: Start isEmpty. Operand 671 states and 981 transitions. [2025-03-16 18:44:57,874 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 204 [2025-03-16 18:44:57,875 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:57,875 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:57,884 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2025-03-16 18:44:58,075 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable14 [2025-03-16 18:44:58,076 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:58,076 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:58,076 INFO L85 PathProgramCache]: Analyzing trace with hash 156374657, now seen corresponding path program 1 times [2025-03-16 18:44:58,076 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:58,076 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [818373094] [2025-03-16 18:44:58,076 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:58,076 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:58,098 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 203 statements into 1 equivalence classes. [2025-03-16 18:44:58,104 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 203 of 203 statements. [2025-03-16 18:44:58,104 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:58,104 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:58,147 INFO L134 CoverageAnalysis]: Checked inductivity of 119 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 119 trivial. 0 not checked. [2025-03-16 18:44:58,147 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:58,147 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [818373094] [2025-03-16 18:44:58,147 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [818373094] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:58,147 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:58,147 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:58,147 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [647351791] [2025-03-16 18:44:58,147 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:58,148 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:58,148 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:58,148 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:58,149 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:58,149 INFO L87 Difference]: Start difference. First operand 671 states and 981 transitions. Second operand has 3 states, 3 states have (on average 38.333333333333336) internal successors, (115), 3 states have internal predecessors, (115), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (26), 2 states have call predecessors, (26), 2 states have call successors, (26) [2025-03-16 18:44:58,181 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:58,181 INFO L93 Difference]: Finished difference Result 1308 states and 1930 transitions. [2025-03-16 18:44:58,181 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:58,182 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 38.333333333333336) internal successors, (115), 3 states have internal predecessors, (115), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (26), 2 states have call predecessors, (26), 2 states have call successors, (26) Word has length 203 [2025-03-16 18:44:58,182 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:58,190 INFO L225 Difference]: With dead ends: 1308 [2025-03-16 18:44:58,190 INFO L226 Difference]: Without dead ends: 670 [2025-03-16 18:44:58,192 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:58,193 INFO L435 NwaCegarLoop]: 810 mSDtfsCounter, 783 mSDsluCounter, 26 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 783 SdHoareTripleChecker+Valid, 836 SdHoareTripleChecker+Invalid, 5 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:58,193 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [783 Valid, 836 Invalid, 5 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:58,194 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 670 states. [2025-03-16 18:44:58,216 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 670 to 670. [2025-03-16 18:44:58,218 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 670 states, 507 states have (on average 1.4635108481262327) internal successors, (742), 518 states have internal predecessors, (742), 112 states have call successors, (112), 46 states have call predecessors, (112), 50 states have return successors, (123), 110 states have call predecessors, (123), 111 states have call successors, (123) [2025-03-16 18:44:58,220 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 670 states to 670 states and 977 transitions. [2025-03-16 18:44:58,222 INFO L78 Accepts]: Start accepts. Automaton has 670 states and 977 transitions. Word has length 203 [2025-03-16 18:44:58,222 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:58,223 INFO L471 AbstractCegarLoop]: Abstraction has 670 states and 977 transitions. [2025-03-16 18:44:58,223 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 38.333333333333336) internal successors, (115), 3 states have internal predecessors, (115), 2 states have call successors, (32), 2 states have call predecessors, (32), 1 states have return successors, (26), 2 states have call predecessors, (26), 2 states have call successors, (26) [2025-03-16 18:44:58,223 INFO L276 IsEmpty]: Start isEmpty. Operand 670 states and 977 transitions. [2025-03-16 18:44:58,226 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 219 [2025-03-16 18:44:58,226 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:58,227 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:58,227 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15 [2025-03-16 18:44:58,227 INFO L396 AbstractCegarLoop]: === Iteration 17 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:58,228 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:58,228 INFO L85 PathProgramCache]: Analyzing trace with hash -1880975521, now seen corresponding path program 1 times [2025-03-16 18:44:58,228 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:58,229 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [52987375] [2025-03-16 18:44:58,229 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:58,229 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:58,250 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 218 statements into 1 equivalence classes. [2025-03-16 18:44:58,260 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 218 of 218 statements. [2025-03-16 18:44:58,260 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:58,261 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:58,338 INFO L134 CoverageAnalysis]: Checked inductivity of 123 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:44:58,339 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:58,339 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [52987375] [2025-03-16 18:44:58,339 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [52987375] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:44:58,339 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [364446751] [2025-03-16 18:44:58,339 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:58,339 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:44:58,339 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:44:58,341 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:44:58,344 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2025-03-16 18:44:58,539 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 218 statements into 1 equivalence classes. [2025-03-16 18:44:58,683 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 218 of 218 statements. [2025-03-16 18:44:58,683 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:58,683 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:58,689 INFO L256 TraceCheckSpWp]: Trace formula consists of 1574 conjuncts, 3 conjuncts are in the unsatisfiable core [2025-03-16 18:44:58,694 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:44:58,714 INFO L134 CoverageAnalysis]: Checked inductivity of 123 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:44:58,714 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2025-03-16 18:44:58,829 INFO L134 CoverageAnalysis]: Checked inductivity of 123 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:44:58,829 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [364446751] provided 0 perfect and 2 imperfect interpolant sequences [2025-03-16 18:44:58,829 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2025-03-16 18:44:58,829 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 7 [2025-03-16 18:44:58,830 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1185729117] [2025-03-16 18:44:58,830 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2025-03-16 18:44:58,830 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2025-03-16 18:44:58,831 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:58,831 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2025-03-16 18:44:58,832 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2025-03-16 18:44:58,832 INFO L87 Difference]: Start difference. First operand 670 states and 977 transitions. Second operand has 7 states, 7 states have (on average 23.142857142857142) internal successors, (162), 7 states have internal predecessors, (162), 2 states have call successors, (45), 2 states have call predecessors, (45), 2 states have return successors, (39), 2 states have call predecessors, (39), 2 states have call successors, (39) [2025-03-16 18:44:58,978 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:58,978 INFO L93 Difference]: Finished difference Result 1519 states and 2301 transitions. [2025-03-16 18:44:58,979 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2025-03-16 18:44:58,979 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 23.142857142857142) internal successors, (162), 7 states have internal predecessors, (162), 2 states have call successors, (45), 2 states have call predecessors, (45), 2 states have return successors, (39), 2 states have call predecessors, (39), 2 states have call successors, (39) Word has length 218 [2025-03-16 18:44:58,979 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:58,985 INFO L225 Difference]: With dead ends: 1519 [2025-03-16 18:44:58,985 INFO L226 Difference]: Without dead ends: 1209 [2025-03-16 18:44:58,987 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 438 GetRequests, 433 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2025-03-16 18:44:58,987 INFO L435 NwaCegarLoop]: 854 mSDtfsCounter, 582 mSDsluCounter, 2695 mSDsCounter, 0 mSdLazyCounter, 84 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 636 SdHoareTripleChecker+Valid, 3549 SdHoareTripleChecker+Invalid, 95 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 84 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:58,987 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [636 Valid, 3549 Invalid, 95 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 84 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2025-03-16 18:44:58,989 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1209 states. [2025-03-16 18:44:59,066 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1209 to 1185. [2025-03-16 18:44:59,068 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1185 states, 943 states have (on average 1.5291622481442206) internal successors, (1442), 954 states have internal predecessors, (1442), 191 states have call successors, (191), 46 states have call predecessors, (191), 50 states have return successors, (212), 189 states have call predecessors, (212), 190 states have call successors, (212) [2025-03-16 18:44:59,073 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1185 states to 1185 states and 1845 transitions. [2025-03-16 18:44:59,074 INFO L78 Accepts]: Start accepts. Automaton has 1185 states and 1845 transitions. Word has length 218 [2025-03-16 18:44:59,074 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:59,074 INFO L471 AbstractCegarLoop]: Abstraction has 1185 states and 1845 transitions. [2025-03-16 18:44:59,075 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 23.142857142857142) internal successors, (162), 7 states have internal predecessors, (162), 2 states have call successors, (45), 2 states have call predecessors, (45), 2 states have return successors, (39), 2 states have call predecessors, (39), 2 states have call successors, (39) [2025-03-16 18:44:59,075 INFO L276 IsEmpty]: Start isEmpty. Operand 1185 states and 1845 transitions. [2025-03-16 18:44:59,079 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 217 [2025-03-16 18:44:59,080 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:59,080 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:59,089 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Ended with exit code 0 [2025-03-16 18:44:59,284 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 7 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable16 [2025-03-16 18:44:59,284 INFO L396 AbstractCegarLoop]: === Iteration 18 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:59,284 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:59,285 INFO L85 PathProgramCache]: Analyzing trace with hash -113698484, now seen corresponding path program 1 times [2025-03-16 18:44:59,285 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:59,285 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1846066839] [2025-03-16 18:44:59,285 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:59,285 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:59,309 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 216 statements into 1 equivalence classes. [2025-03-16 18:44:59,321 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 216 of 216 statements. [2025-03-16 18:44:59,321 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:59,321 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:59,363 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:44:59,363 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:59,363 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1846066839] [2025-03-16 18:44:59,363 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1846066839] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:59,364 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:59,364 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:59,364 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1177049960] [2025-03-16 18:44:59,364 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:59,365 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:59,365 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:59,366 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:59,366 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:59,366 INFO L87 Difference]: Start difference. First operand 1185 states and 1845 transitions. Second operand has 3 states, 3 states have (on average 41.0) internal successors, (123), 3 states have internal predecessors, (123), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:59,433 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:59,434 INFO L93 Difference]: Finished difference Result 2729 states and 4329 transitions. [2025-03-16 18:44:59,434 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:59,434 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 41.0) internal successors, (123), 3 states have internal predecessors, (123), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) Word has length 216 [2025-03-16 18:44:59,435 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:59,443 INFO L225 Difference]: With dead ends: 2729 [2025-03-16 18:44:59,443 INFO L226 Difference]: Without dead ends: 1674 [2025-03-16 18:44:59,447 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:59,447 INFO L435 NwaCegarLoop]: 824 mSDtfsCounter, 160 mSDsluCounter, 800 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 178 SdHoareTripleChecker+Valid, 1624 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:59,447 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [178 Valid, 1624 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:59,449 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1674 states. [2025-03-16 18:44:59,512 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1674 to 1666. [2025-03-16 18:44:59,514 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1666 states, 1345 states have (on average 1.5449814126394052) internal successors, (2078), 1356 states have internal predecessors, (2078), 270 states have call successors, (270), 46 states have call predecessors, (270), 50 states have return successors, (301), 268 states have call predecessors, (301), 269 states have call successors, (301) [2025-03-16 18:44:59,520 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1666 states to 1666 states and 2649 transitions. [2025-03-16 18:44:59,522 INFO L78 Accepts]: Start accepts. Automaton has 1666 states and 2649 transitions. Word has length 216 [2025-03-16 18:44:59,522 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:59,522 INFO L471 AbstractCegarLoop]: Abstraction has 1666 states and 2649 transitions. [2025-03-16 18:44:59,523 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 41.0) internal successors, (123), 3 states have internal predecessors, (123), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:59,523 INFO L276 IsEmpty]: Start isEmpty. Operand 1666 states and 2649 transitions. [2025-03-16 18:44:59,530 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 218 [2025-03-16 18:44:59,531 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:59,531 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:59,531 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17 [2025-03-16 18:44:59,531 INFO L396 AbstractCegarLoop]: === Iteration 19 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:59,532 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:59,532 INFO L85 PathProgramCache]: Analyzing trace with hash 1163338058, now seen corresponding path program 1 times [2025-03-16 18:44:59,532 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:59,532 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [15195289] [2025-03-16 18:44:59,532 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:59,533 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:59,553 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 217 statements into 1 equivalence classes. [2025-03-16 18:44:59,561 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 217 of 217 statements. [2025-03-16 18:44:59,562 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:59,562 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:59,597 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:44:59,597 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:59,597 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [15195289] [2025-03-16 18:44:59,597 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [15195289] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:59,597 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:59,597 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:59,598 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1478421530] [2025-03-16 18:44:59,598 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:59,598 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:59,598 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:59,598 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:59,598 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:59,599 INFO L87 Difference]: Start difference. First operand 1666 states and 2649 transitions. Second operand has 3 states, 3 states have (on average 41.333333333333336) internal successors, (124), 3 states have internal predecessors, (124), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:59,655 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:59,656 INFO L93 Difference]: Finished difference Result 3923 states and 6317 transitions. [2025-03-16 18:44:59,656 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:59,656 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 41.333333333333336) internal successors, (124), 3 states have internal predecessors, (124), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) Word has length 217 [2025-03-16 18:44:59,658 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:59,669 INFO L225 Difference]: With dead ends: 3923 [2025-03-16 18:44:59,670 INFO L226 Difference]: Without dead ends: 2445 [2025-03-16 18:44:59,674 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:59,675 INFO L435 NwaCegarLoop]: 813 mSDtfsCounter, 158 mSDsluCounter, 803 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 176 SdHoareTripleChecker+Valid, 1616 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:59,675 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [176 Valid, 1616 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:59,677 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2445 states. [2025-03-16 18:44:59,749 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2445 to 2437. [2025-03-16 18:44:59,756 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2437 states, 1997 states have (on average 1.5623435152729093) internal successors, (3120), 2008 states have internal predecessors, (3120), 389 states have call successors, (389), 46 states have call predecessors, (389), 50 states have return successors, (420), 387 states have call predecessors, (420), 388 states have call successors, (420) [2025-03-16 18:44:59,766 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2437 states to 2437 states and 3929 transitions. [2025-03-16 18:44:59,769 INFO L78 Accepts]: Start accepts. Automaton has 2437 states and 3929 transitions. Word has length 217 [2025-03-16 18:44:59,770 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:44:59,770 INFO L471 AbstractCegarLoop]: Abstraction has 2437 states and 3929 transitions. [2025-03-16 18:44:59,770 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 41.333333333333336) internal successors, (124), 3 states have internal predecessors, (124), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:44:59,770 INFO L276 IsEmpty]: Start isEmpty. Operand 2437 states and 3929 transitions. [2025-03-16 18:44:59,781 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 226 [2025-03-16 18:44:59,781 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:44:59,782 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:44:59,782 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18 [2025-03-16 18:44:59,782 INFO L396 AbstractCegarLoop]: === Iteration 20 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:44:59,782 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:44:59,782 INFO L85 PathProgramCache]: Analyzing trace with hash 1305301768, now seen corresponding path program 1 times [2025-03-16 18:44:59,782 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:44:59,782 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1545749861] [2025-03-16 18:44:59,783 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:44:59,783 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:44:59,801 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 225 statements into 1 equivalence classes. [2025-03-16 18:44:59,810 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 225 of 225 statements. [2025-03-16 18:44:59,810 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:44:59,810 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:44:59,867 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:44:59,868 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:44:59,868 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1545749861] [2025-03-16 18:44:59,868 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1545749861] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:44:59,868 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:44:59,869 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:44:59,869 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2140495507] [2025-03-16 18:44:59,869 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:44:59,869 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:44:59,869 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:44:59,870 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:44:59,870 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:59,870 INFO L87 Difference]: Start difference. First operand 2437 states and 3929 transitions. Second operand has 3 states, 3 states have (on average 43.333333333333336) internal successors, (130), 3 states have internal predecessors, (130), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:44:59,948 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:44:59,948 INFO L93 Difference]: Finished difference Result 5733 states and 9351 transitions. [2025-03-16 18:44:59,949 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:44:59,953 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 43.333333333333336) internal successors, (130), 3 states have internal predecessors, (130), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 225 [2025-03-16 18:44:59,953 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:44:59,973 INFO L225 Difference]: With dead ends: 5733 [2025-03-16 18:44:59,973 INFO L226 Difference]: Without dead ends: 3630 [2025-03-16 18:44:59,981 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:44:59,983 INFO L435 NwaCegarLoop]: 811 mSDtfsCounter, 156 mSDsluCounter, 800 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 174 SdHoareTripleChecker+Valid, 1611 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:44:59,983 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [174 Valid, 1611 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:44:59,990 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 3630 states. [2025-03-16 18:45:00,101 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 3630 to 3622. [2025-03-16 18:45:00,105 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 3622 states, 3020 states have (on average 1.5768211920529802) internal successors, (4762), 3031 states have internal predecessors, (4762), 551 states have call successors, (551), 46 states have call predecessors, (551), 50 states have return successors, (598), 549 states have call predecessors, (598), 550 states have call successors, (598) [2025-03-16 18:45:00,118 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 3622 states to 3622 states and 5911 transitions. [2025-03-16 18:45:00,121 INFO L78 Accepts]: Start accepts. Automaton has 3622 states and 5911 transitions. Word has length 225 [2025-03-16 18:45:00,121 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:00,121 INFO L471 AbstractCegarLoop]: Abstraction has 3622 states and 5911 transitions. [2025-03-16 18:45:00,121 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 43.333333333333336) internal successors, (130), 3 states have internal predecessors, (130), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:00,121 INFO L276 IsEmpty]: Start isEmpty. Operand 3622 states and 5911 transitions. [2025-03-16 18:45:00,136 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 227 [2025-03-16 18:45:00,136 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:00,136 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:00,136 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19 [2025-03-16 18:45:00,136 INFO L396 AbstractCegarLoop]: === Iteration 21 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:00,137 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:00,137 INFO L85 PathProgramCache]: Analyzing trace with hash 2020872684, now seen corresponding path program 1 times [2025-03-16 18:45:00,137 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:00,137 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1741087501] [2025-03-16 18:45:00,137 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:00,137 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:00,155 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 226 statements into 1 equivalence classes. [2025-03-16 18:45:00,164 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 226 of 226 statements. [2025-03-16 18:45:00,164 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:00,164 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:00,198 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:45:00,199 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:00,199 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1741087501] [2025-03-16 18:45:00,199 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1741087501] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:00,199 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:00,199 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:00,199 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2139765904] [2025-03-16 18:45:00,199 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:00,199 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:00,200 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:00,200 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:00,200 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:00,200 INFO L87 Difference]: Start difference. First operand 3622 states and 5911 transitions. Second operand has 3 states, 3 states have (on average 43.666666666666664) internal successors, (131), 3 states have internal predecessors, (131), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:00,343 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:00,344 INFO L93 Difference]: Finished difference Result 8587 states and 14155 transitions. [2025-03-16 18:45:00,344 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:00,344 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 43.666666666666664) internal successors, (131), 3 states have internal predecessors, (131), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 226 [2025-03-16 18:45:00,346 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:00,377 INFO L225 Difference]: With dead ends: 8587 [2025-03-16 18:45:00,377 INFO L226 Difference]: Without dead ends: 5541 [2025-03-16 18:45:00,385 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:00,385 INFO L435 NwaCegarLoop]: 811 mSDtfsCounter, 154 mSDsluCounter, 800 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 172 SdHoareTripleChecker+Valid, 1611 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:00,386 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [172 Valid, 1611 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:00,390 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 5541 states. [2025-03-16 18:45:00,549 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 5541 to 5533. [2025-03-16 18:45:00,556 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 5533 states, 4686 states have (on average 1.5887750746905676) internal successors, (7445), 4697 states have internal predecessors, (7445), 796 states have call successors, (796), 46 states have call predecessors, (796), 50 states have return successors, (869), 794 states have call predecessors, (869), 795 states have call successors, (869) [2025-03-16 18:45:00,571 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 5533 states to 5533 states and 9110 transitions. [2025-03-16 18:45:00,575 INFO L78 Accepts]: Start accepts. Automaton has 5533 states and 9110 transitions. Word has length 226 [2025-03-16 18:45:00,575 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:00,576 INFO L471 AbstractCegarLoop]: Abstraction has 5533 states and 9110 transitions. [2025-03-16 18:45:00,576 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 43.666666666666664) internal successors, (131), 3 states have internal predecessors, (131), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:00,576 INFO L276 IsEmpty]: Start isEmpty. Operand 5533 states and 9110 transitions. [2025-03-16 18:45:00,596 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 228 [2025-03-16 18:45:00,596 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:00,596 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:00,596 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable20 [2025-03-16 18:45:00,596 INFO L396 AbstractCegarLoop]: === Iteration 22 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:00,597 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:00,597 INFO L85 PathProgramCache]: Analyzing trace with hash 1936914279, now seen corresponding path program 1 times [2025-03-16 18:45:00,597 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:00,597 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1886683955] [2025-03-16 18:45:00,597 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:00,597 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:00,617 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 227 statements into 1 equivalence classes. [2025-03-16 18:45:00,625 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 227 of 227 statements. [2025-03-16 18:45:00,625 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:00,625 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:00,658 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:45:00,659 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:00,659 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1886683955] [2025-03-16 18:45:00,659 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1886683955] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:00,659 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:00,659 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:00,659 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1196969882] [2025-03-16 18:45:00,659 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:00,659 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:00,659 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:00,660 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:00,660 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:00,660 INFO L87 Difference]: Start difference. First operand 5533 states and 9110 transitions. Second operand has 3 states, 3 states have (on average 44.0) internal successors, (132), 3 states have internal predecessors, (132), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:00,869 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:00,871 INFO L93 Difference]: Finished difference Result 13379 states and 22152 transitions. [2025-03-16 18:45:00,871 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:00,871 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 44.0) internal successors, (132), 3 states have internal predecessors, (132), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 227 [2025-03-16 18:45:00,872 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:00,912 INFO L225 Difference]: With dead ends: 13379 [2025-03-16 18:45:00,912 INFO L226 Difference]: Without dead ends: 8778 [2025-03-16 18:45:00,929 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:00,931 INFO L435 NwaCegarLoop]: 821 mSDtfsCounter, 152 mSDsluCounter, 799 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 170 SdHoareTripleChecker+Valid, 1620 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:00,932 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [170 Valid, 1620 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:00,941 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 8778 states. [2025-03-16 18:45:01,296 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 8778 to 8770. [2025-03-16 18:45:01,311 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8770 states, 7430 states have (on average 1.5855989232839838) internal successors, (11781), 7441 states have internal predecessors, (11781), 1289 states have call successors, (1289), 46 states have call predecessors, (1289), 50 states have return successors, (1406), 1287 states have call predecessors, (1406), 1288 states have call successors, (1406) [2025-03-16 18:45:01,338 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 8770 states to 8770 states and 14476 transitions. [2025-03-16 18:45:01,342 INFO L78 Accepts]: Start accepts. Automaton has 8770 states and 14476 transitions. Word has length 227 [2025-03-16 18:45:01,343 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:01,343 INFO L471 AbstractCegarLoop]: Abstraction has 8770 states and 14476 transitions. [2025-03-16 18:45:01,343 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 44.0) internal successors, (132), 3 states have internal predecessors, (132), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:01,343 INFO L276 IsEmpty]: Start isEmpty. Operand 8770 states and 14476 transitions. [2025-03-16 18:45:01,378 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 229 [2025-03-16 18:45:01,379 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:01,379 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:01,379 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable21 [2025-03-16 18:45:01,379 INFO L396 AbstractCegarLoop]: === Iteration 23 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:01,379 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:01,380 INFO L85 PathProgramCache]: Analyzing trace with hash 14344717, now seen corresponding path program 1 times [2025-03-16 18:45:01,380 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:01,380 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [561344881] [2025-03-16 18:45:01,380 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:01,380 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:01,404 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 228 statements into 1 equivalence classes. [2025-03-16 18:45:01,415 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 228 of 228 statements. [2025-03-16 18:45:01,416 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:01,417 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:01,465 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:45:01,466 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:01,466 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [561344881] [2025-03-16 18:45:01,466 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [561344881] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:01,466 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:01,466 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:01,466 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [659130297] [2025-03-16 18:45:01,466 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:01,466 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:01,467 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:01,467 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:01,467 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:01,467 INFO L87 Difference]: Start difference. First operand 8770 states and 14476 transitions. Second operand has 3 states, 3 states have (on average 44.333333333333336) internal successors, (133), 3 states have internal predecessors, (133), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:01,879 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:01,879 INFO L93 Difference]: Finished difference Result 21943 states and 36528 transitions. [2025-03-16 18:45:01,880 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:01,880 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 44.333333333333336) internal successors, (133), 3 states have internal predecessors, (133), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 228 [2025-03-16 18:45:01,880 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:01,934 INFO L225 Difference]: With dead ends: 21943 [2025-03-16 18:45:01,934 INFO L226 Difference]: Without dead ends: 14569 [2025-03-16 18:45:01,962 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:01,963 INFO L435 NwaCegarLoop]: 813 mSDtfsCounter, 150 mSDsluCounter, 803 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 168 SdHoareTripleChecker+Valid, 1616 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:01,963 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [168 Valid, 1616 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:01,979 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 14569 states. [2025-03-16 18:45:02,423 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 14569 to 14561. [2025-03-16 18:45:02,445 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14561 states, 12399 states have (on average 1.5928703927736108) internal successors, (19750), 12410 states have internal predecessors, (19750), 2111 states have call successors, (2111), 46 states have call predecessors, (2111), 50 states have return successors, (2306), 2109 states have call predecessors, (2306), 2110 states have call successors, (2306) [2025-03-16 18:45:02,482 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 14561 states to 14561 states and 24167 transitions. [2025-03-16 18:45:02,489 INFO L78 Accepts]: Start accepts. Automaton has 14561 states and 24167 transitions. Word has length 228 [2025-03-16 18:45:02,489 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:02,490 INFO L471 AbstractCegarLoop]: Abstraction has 14561 states and 24167 transitions. [2025-03-16 18:45:02,490 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 44.333333333333336) internal successors, (133), 3 states have internal predecessors, (133), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:02,490 INFO L276 IsEmpty]: Start isEmpty. Operand 14561 states and 24167 transitions. [2025-03-16 18:45:02,528 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 223 [2025-03-16 18:45:02,529 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:02,529 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:02,529 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable22 [2025-03-16 18:45:02,529 INFO L396 AbstractCegarLoop]: === Iteration 24 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:02,530 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:02,530 INFO L85 PathProgramCache]: Analyzing trace with hash 1682735695, now seen corresponding path program 1 times [2025-03-16 18:45:02,530 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:02,530 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [557282457] [2025-03-16 18:45:02,530 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:02,530 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:02,548 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 222 statements into 1 equivalence classes. [2025-03-16 18:45:02,557 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 222 of 222 statements. [2025-03-16 18:45:02,558 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:02,558 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:02,593 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:45:02,593 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:02,593 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [557282457] [2025-03-16 18:45:02,593 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [557282457] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:02,593 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:02,593 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:02,593 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [571580326] [2025-03-16 18:45:02,593 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:02,594 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:02,594 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:02,594 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:02,594 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:02,594 INFO L87 Difference]: Start difference. First operand 14561 states and 24167 transitions. Second operand has 3 states, 3 states have (on average 43.0) internal successors, (129), 3 states have internal predecessors, (129), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:45:03,027 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:03,028 INFO L93 Difference]: Finished difference Result 34997 states and 57876 transitions. [2025-03-16 18:45:03,028 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:03,028 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 43.0) internal successors, (129), 3 states have internal predecessors, (129), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) Word has length 222 [2025-03-16 18:45:03,028 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:03,110 INFO L225 Difference]: With dead ends: 34997 [2025-03-16 18:45:03,111 INFO L226 Difference]: Without dead ends: 22919 [2025-03-16 18:45:03,146 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:03,147 INFO L435 NwaCegarLoop]: 830 mSDtfsCounter, 148 mSDsluCounter, 776 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 166 SdHoareTripleChecker+Valid, 1606 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:03,147 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [166 Valid, 1606 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:03,168 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 22919 states. [2025-03-16 18:45:03,889 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 22919 to 22911. [2025-03-16 18:45:03,923 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 22911 states, 19546 states have (on average 1.5680446127084826) internal successors, (30649), 19557 states have internal predecessors, (30649), 3314 states have call successors, (3314), 46 states have call predecessors, (3314), 50 states have return successors, (3653), 3312 states have call predecessors, (3653), 3313 states have call successors, (3653) [2025-03-16 18:45:03,994 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 22911 states to 22911 states and 37616 transitions. [2025-03-16 18:45:04,002 INFO L78 Accepts]: Start accepts. Automaton has 22911 states and 37616 transitions. Word has length 222 [2025-03-16 18:45:04,003 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:04,003 INFO L471 AbstractCegarLoop]: Abstraction has 22911 states and 37616 transitions. [2025-03-16 18:45:04,003 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 43.0) internal successors, (129), 3 states have internal predecessors, (129), 2 states have call successors, (33), 2 states have call predecessors, (33), 1 states have return successors, (27), 2 states have call predecessors, (27), 2 states have call successors, (27) [2025-03-16 18:45:04,003 INFO L276 IsEmpty]: Start isEmpty. Operand 22911 states and 37616 transitions. [2025-03-16 18:45:04,055 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 231 [2025-03-16 18:45:04,056 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:04,056 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:04,056 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable23 [2025-03-16 18:45:04,056 INFO L396 AbstractCegarLoop]: === Iteration 25 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:04,057 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:04,057 INFO L85 PathProgramCache]: Analyzing trace with hash -1507127026, now seen corresponding path program 1 times [2025-03-16 18:45:04,057 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:04,058 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2003962807] [2025-03-16 18:45:04,058 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:04,058 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:04,082 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 230 statements into 1 equivalence classes. [2025-03-16 18:45:04,095 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 230 of 230 statements. [2025-03-16 18:45:04,095 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:04,096 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:04,143 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:45:04,143 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:04,144 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2003962807] [2025-03-16 18:45:04,144 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2003962807] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:04,144 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:04,144 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:04,144 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1143354093] [2025-03-16 18:45:04,144 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:04,144 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:04,144 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:04,145 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:04,145 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:04,145 INFO L87 Difference]: Start difference. First operand 22911 states and 37616 transitions. Second operand has 3 states, 3 states have (on average 45.0) internal successors, (135), 3 states have internal predecessors, (135), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:05,267 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:05,268 INFO L93 Difference]: Finished difference Result 60409 states and 99583 transitions. [2025-03-16 18:45:05,268 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:05,268 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 45.0) internal successors, (135), 3 states have internal predecessors, (135), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 230 [2025-03-16 18:45:05,268 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:05,585 INFO L225 Difference]: With dead ends: 60409 [2025-03-16 18:45:05,585 INFO L226 Difference]: Without dead ends: 40735 [2025-03-16 18:45:05,620 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:05,621 INFO L435 NwaCegarLoop]: 811 mSDtfsCounter, 146 mSDsluCounter, 804 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 164 SdHoareTripleChecker+Valid, 1615 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:05,622 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [164 Valid, 1615 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:05,648 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 40735 states. [2025-03-16 18:45:06,642 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 40735 to 40727. [2025-03-16 18:45:06,693 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 40727 states, 34912 states have (on average 1.5687729147571037) internal successors, (54769), 34923 states have internal predecessors, (54769), 5764 states have call successors, (5764), 46 states have call predecessors, (5764), 50 states have return successors, (6377), 5762 states have call predecessors, (6377), 5763 states have call successors, (6377) [2025-03-16 18:45:06,787 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 40727 states to 40727 states and 66910 transitions. [2025-03-16 18:45:06,798 INFO L78 Accepts]: Start accepts. Automaton has 40727 states and 66910 transitions. Word has length 230 [2025-03-16 18:45:06,798 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:06,798 INFO L471 AbstractCegarLoop]: Abstraction has 40727 states and 66910 transitions. [2025-03-16 18:45:06,799 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 45.0) internal successors, (135), 3 states have internal predecessors, (135), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:06,799 INFO L276 IsEmpty]: Start isEmpty. Operand 40727 states and 66910 transitions. [2025-03-16 18:45:06,855 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 232 [2025-03-16 18:45:06,856 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:06,856 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:06,856 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable24 [2025-03-16 18:45:06,856 INFO L396 AbstractCegarLoop]: === Iteration 26 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:06,856 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:06,857 INFO L85 PathProgramCache]: Analyzing trace with hash -504992443, now seen corresponding path program 1 times [2025-03-16 18:45:06,857 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:06,857 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1182609324] [2025-03-16 18:45:06,857 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:06,857 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:06,876 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 231 statements into 1 equivalence classes. [2025-03-16 18:45:06,885 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 231 of 231 statements. [2025-03-16 18:45:06,885 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:06,885 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:06,917 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:45:06,917 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:06,917 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1182609324] [2025-03-16 18:45:06,917 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1182609324] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:06,917 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:06,917 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:06,917 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1333098208] [2025-03-16 18:45:06,917 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:06,918 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:06,918 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:06,919 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:06,919 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:06,919 INFO L87 Difference]: Start difference. First operand 40727 states and 66910 transitions. Second operand has 3 states, 3 states have (on average 45.333333333333336) internal successors, (136), 3 states have internal predecessors, (136), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:08,514 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:08,515 INFO L93 Difference]: Finished difference Result 110271 states and 182205 transitions. [2025-03-16 18:45:08,515 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:08,515 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 45.333333333333336) internal successors, (136), 3 states have internal predecessors, (136), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 231 [2025-03-16 18:45:08,515 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:08,812 INFO L225 Difference]: With dead ends: 110271 [2025-03-16 18:45:08,812 INFO L226 Difference]: Without dead ends: 73887 [2025-03-16 18:45:08,911 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:08,912 INFO L435 NwaCegarLoop]: 821 mSDtfsCounter, 144 mSDsluCounter, 804 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 162 SdHoareTripleChecker+Valid, 1625 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:08,913 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [162 Valid, 1625 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:08,966 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 73887 states. [2025-03-16 18:45:11,219 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 73887 to 73879. [2025-03-16 18:45:11,291 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 73879 states, 63551 states have (on average 1.5735550974807635) internal successors, (100001), 63562 states have internal predecessors, (100001), 10277 states have call successors, (10277), 46 states have call predecessors, (10277), 50 states have return successors, (11422), 10275 states have call predecessors, (11422), 10276 states have call successors, (11422) [2025-03-16 18:45:11,487 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 73879 states to 73879 states and 121700 transitions. [2025-03-16 18:45:11,514 INFO L78 Accepts]: Start accepts. Automaton has 73879 states and 121700 transitions. Word has length 231 [2025-03-16 18:45:11,514 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:11,514 INFO L471 AbstractCegarLoop]: Abstraction has 73879 states and 121700 transitions. [2025-03-16 18:45:11,515 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 45.333333333333336) internal successors, (136), 3 states have internal predecessors, (136), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:11,515 INFO L276 IsEmpty]: Start isEmpty. Operand 73879 states and 121700 transitions. [2025-03-16 18:45:11,610 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 233 [2025-03-16 18:45:11,610 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:11,611 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:11,612 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable25 [2025-03-16 18:45:11,612 INFO L396 AbstractCegarLoop]: === Iteration 27 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:11,613 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:11,613 INFO L85 PathProgramCache]: Analyzing trace with hash 506526671, now seen corresponding path program 1 times [2025-03-16 18:45:11,613 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:11,613 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [478874689] [2025-03-16 18:45:11,613 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:11,613 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:11,632 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 232 statements into 1 equivalence classes. [2025-03-16 18:45:11,640 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 232 of 232 statements. [2025-03-16 18:45:11,640 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:11,640 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:11,682 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 122 trivial. 0 not checked. [2025-03-16 18:45:11,682 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:11,682 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [478874689] [2025-03-16 18:45:11,683 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [478874689] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:11,683 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:11,683 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:11,683 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1450398499] [2025-03-16 18:45:11,683 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:11,683 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:11,683 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:11,684 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:11,684 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:11,684 INFO L87 Difference]: Start difference. First operand 73879 states and 121700 transitions. Second operand has 3 states, 3 states have (on average 45.666666666666664) internal successors, (137), 3 states have internal predecessors, (137), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:14,677 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:14,677 INFO L93 Difference]: Finished difference Result 137932 states and 228097 transitions. [2025-03-16 18:45:14,678 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:14,678 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 45.666666666666664) internal successors, (137), 3 states have internal predecessors, (137), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) Word has length 232 [2025-03-16 18:45:14,678 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:15,239 INFO L225 Difference]: With dead ends: 137932 [2025-03-16 18:45:15,239 INFO L226 Difference]: Without dead ends: 137622 [2025-03-16 18:45:15,312 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:15,312 INFO L435 NwaCegarLoop]: 813 mSDtfsCounter, 138 mSDsluCounter, 809 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 155 SdHoareTripleChecker+Valid, 1622 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:15,312 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [155 Valid, 1622 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:15,427 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 137622 states. [2025-03-16 18:45:18,997 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 137622 to 137614. [2025-03-16 18:45:19,157 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 137614 states, 118918 states have (on average 1.5732857935720412) internal successors, (187092), 118929 states have internal predecessors, (187092), 18645 states have call successors, (18645), 46 states have call predecessors, (18645), 50 states have return successors, (20836), 18643 states have call predecessors, (20836), 18644 states have call successors, (20836) [2025-03-16 18:45:19,525 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 137614 states to 137614 states and 226573 transitions. [2025-03-16 18:45:19,559 INFO L78 Accepts]: Start accepts. Automaton has 137614 states and 226573 transitions. Word has length 232 [2025-03-16 18:45:19,560 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:19,560 INFO L471 AbstractCegarLoop]: Abstraction has 137614 states and 226573 transitions. [2025-03-16 18:45:19,560 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 45.666666666666664) internal successors, (137), 3 states have internal predecessors, (137), 2 states have call successors, (34), 2 states have call predecessors, (34), 1 states have return successors, (28), 2 states have call predecessors, (28), 2 states have call successors, (28) [2025-03-16 18:45:19,560 INFO L276 IsEmpty]: Start isEmpty. Operand 137614 states and 226573 transitions. [2025-03-16 18:45:19,670 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 234 [2025-03-16 18:45:19,671 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:19,671 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:19,671 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable26 [2025-03-16 18:45:19,671 INFO L396 AbstractCegarLoop]: === Iteration 28 === Targeting incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [incoming__before__DecryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:19,671 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:19,672 INFO L85 PathProgramCache]: Analyzing trace with hash 784119012, now seen corresponding path program 1 times [2025-03-16 18:45:19,672 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:19,672 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1669496497] [2025-03-16 18:45:19,672 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:19,672 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:19,690 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 233 statements into 1 equivalence classes. [2025-03-16 18:45:19,699 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 233 of 233 statements. [2025-03-16 18:45:19,700 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:19,700 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:20,009 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 120 trivial. 0 not checked. [2025-03-16 18:45:20,009 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:20,009 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1669496497] [2025-03-16 18:45:20,009 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1669496497] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:45:20,009 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1310692633] [2025-03-16 18:45:20,009 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:20,009 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:45:20,010 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:45:20,012 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:45:20,016 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2025-03-16 18:45:20,210 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 233 statements into 1 equivalence classes. [2025-03-16 18:45:20,339 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 233 of 233 statements. [2025-03-16 18:45:20,339 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:20,339 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:20,349 INFO L256 TraceCheckSpWp]: Trace formula consists of 1624 conjuncts, 13 conjuncts are in the unsatisfiable core [2025-03-16 18:45:20,355 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:45:20,539 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 18 proven. 6 refuted. 0 times theorem prover too weak. 98 trivial. 0 not checked. [2025-03-16 18:45:20,539 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2025-03-16 18:45:20,905 INFO L134 CoverageAnalysis]: Checked inductivity of 122 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 112 trivial. 0 not checked. [2025-03-16 18:45:20,905 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1310692633] provided 0 perfect and 2 imperfect interpolant sequences [2025-03-16 18:45:20,906 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2025-03-16 18:45:20,906 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 9, 9] total 28 [2025-03-16 18:45:20,906 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1898357252] [2025-03-16 18:45:20,906 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2025-03-16 18:45:20,907 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2025-03-16 18:45:20,907 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:20,907 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2025-03-16 18:45:20,908 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=68, Invalid=688, Unknown=0, NotChecked=0, Total=756 [2025-03-16 18:45:20,908 INFO L87 Difference]: Start difference. First operand 137614 states and 226573 transitions. Second operand has 28 states, 26 states have (on average 12.423076923076923) internal successors, (323), 24 states have internal predecessors, (323), 9 states have call successors, (77), 8 states have call predecessors, (77), 12 states have return successors, (66), 11 states have call predecessors, (66), 9 states have call successors, (66)