./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/email_spec8_productSimulator.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 8fc3dc66 Calling Ultimate with: /root/.sdkman/candidates/java/21.0.5-tem/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/email_spec8_productSimulator.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash fdf21b24c583a6d136f11a4b24a73548bc1166a9ff6f145f509a3c93fdab8434 --- Real Ultimate output --- This is Ultimate 0.3.0-?-8fc3dc6-m [2025-03-16 18:45:45,523 INFO L188 SettingsManager]: Resetting all preferences to default values... [2025-03-16 18:45:45,586 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2025-03-16 18:45:45,592 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2025-03-16 18:45:45,592 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2025-03-16 18:45:45,616 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2025-03-16 18:45:45,617 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2025-03-16 18:45:45,617 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2025-03-16 18:45:45,618 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2025-03-16 18:45:45,618 INFO L153 SettingsManager]: * Use memory slicer=true [2025-03-16 18:45:45,619 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2025-03-16 18:45:45,619 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2025-03-16 18:45:45,619 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2025-03-16 18:45:45,619 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2025-03-16 18:45:45,619 INFO L153 SettingsManager]: * Use SBE=true [2025-03-16 18:45:45,619 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2025-03-16 18:45:45,619 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2025-03-16 18:45:45,619 INFO L153 SettingsManager]: * sizeof long=4 [2025-03-16 18:45:45,619 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2025-03-16 18:45:45,619 INFO L153 SettingsManager]: * sizeof POINTER=4 [2025-03-16 18:45:45,619 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * sizeof long double=12 [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * Use constant arrays=true [2025-03-16 18:45:45,620 INFO L151 SettingsManager]: Preferences of IcfgBuilder differ from their defaults: [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2025-03-16 18:45:45,620 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2025-03-16 18:45:45,620 INFO L153 SettingsManager]: * Compute procedure contracts=false [2025-03-16 18:45:45,621 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2025-03-16 18:45:45,621 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2025-03-16 18:45:45,621 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2025-03-16 18:45:45,621 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2025-03-16 18:45:45,621 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2025-03-16 18:45:45,621 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2025-03-16 18:45:45,621 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2025-03-16 18:45:45,621 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> fdf21b24c583a6d136f11a4b24a73548bc1166a9ff6f145f509a3c93fdab8434 [2025-03-16 18:45:45,841 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2025-03-16 18:45:45,848 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2025-03-16 18:45:45,850 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2025-03-16 18:45:45,850 INFO L270 PluginConnector]: Initializing CDTParser... [2025-03-16 18:45:45,851 INFO L274 PluginConnector]: CDTParser initialized [2025-03-16 18:45:45,851 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/email_spec8_productSimulator.cil.c [2025-03-16 18:45:47,021 INFO L533 CDTParser]: Created temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/d8656a635/1af3bd531f624fea92440fd26f14d643/FLAG3a58c9274 [2025-03-16 18:45:47,366 INFO L384 CDTParser]: Found 1 translation units. [2025-03-16 18:45:47,366 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec8_productSimulator.cil.c [2025-03-16 18:45:47,393 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/d8656a635/1af3bd531f624fea92440fd26f14d643/FLAG3a58c9274 [2025-03-16 18:45:47,599 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/d8656a635/1af3bd531f624fea92440fd26f14d643 [2025-03-16 18:45:47,602 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2025-03-16 18:45:47,603 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2025-03-16 18:45:47,604 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2025-03-16 18:45:47,604 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2025-03-16 18:45:47,607 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2025-03-16 18:45:47,608 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.03 06:45:47" (1/1) ... [2025-03-16 18:45:47,608 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@526c2332 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:47, skipping insertion in model container [2025-03-16 18:45:47,609 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.03 06:45:47" (1/1) ... [2025-03-16 18:45:47,659 INFO L175 MainTranslator]: Built tables and reachable declarations [2025-03-16 18:45:48,061 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec8_productSimulator.cil.c[73270,73283] [2025-03-16 18:45:48,063 INFO L210 PostProcessor]: Analyzing one entry point: main [2025-03-16 18:45:48,079 INFO L200 MainTranslator]: Completed pre-run [2025-03-16 18:45:48,086 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [48] [2025-03-16 18:45:48,087 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [168] [2025-03-16 18:45:48,087 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Util.i","") [445] [2025-03-16 18:45:48,087 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [463] [2025-03-16 18:45:48,088 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"ClientLib.i","") [829] [2025-03-16 18:45:48,088 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EmailLib.i","") [1909] [2025-03-16 18:45:48,088 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EncryptAutoResponder_spec.i","") [2321] [2025-03-16 18:45:48,088 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Email.i","") [2365] [2025-03-16 18:45:48,088 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Client.i","") [2572] [2025-03-16 18:45:48,088 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [3132] [2025-03-16 18:45:48,088 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [3481] [2025-03-16 18:45:48,159 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec8_productSimulator.cil.c[73270,73283] [2025-03-16 18:45:48,160 INFO L210 PostProcessor]: Analyzing one entry point: main [2025-03-16 18:45:48,192 INFO L204 MainTranslator]: Completed translation [2025-03-16 18:45:48,193 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48 WrapperNode [2025-03-16 18:45:48,193 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2025-03-16 18:45:48,194 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2025-03-16 18:45:48,194 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2025-03-16 18:45:48,194 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2025-03-16 18:45:48,199 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,216 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,263 INFO L138 Inliner]: procedures = 152, calls = 266, calls flagged for inlining = 68, calls inlined = 65, statements flattened = 1328 [2025-03-16 18:45:48,268 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2025-03-16 18:45:48,268 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2025-03-16 18:45:48,268 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2025-03-16 18:45:48,268 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2025-03-16 18:45:48,274 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,275 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,283 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,314 INFO L175 MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 4, 4, 4]. 29 percent of accesses are in the largest equivalence class. The 14 initializations are split as follows [2, 4, 4, 4]. The 0 writes are split as follows [0, 0, 0, 0]. [2025-03-16 18:45:48,314 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,314 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,328 INFO L184 PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,333 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,337 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,340 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,350 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2025-03-16 18:45:48,350 INFO L112 PluginConnector]: ------------------------IcfgBuilder---------------------------- [2025-03-16 18:45:48,351 INFO L270 PluginConnector]: Initializing IcfgBuilder... [2025-03-16 18:45:48,351 INFO L274 PluginConnector]: IcfgBuilder initialized [2025-03-16 18:45:48,351 INFO L184 PluginConnector]: Executing the observer IcfgBuilderObserver from plugin IcfgBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (1/1) ... [2025-03-16 18:45:48,360 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2025-03-16 18:45:48,374 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:45:48,387 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2025-03-16 18:45:48,390 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2025-03-16 18:45:48,409 INFO L130 BoogieDeclarations]: Found specification of procedure getClientPrivateKey [2025-03-16 18:45:48,410 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientPrivateKey [2025-03-16 18:45:48,410 INFO L130 BoogieDeclarations]: Found specification of procedure setup_chuck__before__Keys [2025-03-16 18:45:48,410 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_chuck__before__Keys [2025-03-16 18:45:48,410 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__Sign [2025-03-16 18:45:48,410 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__Sign [2025-03-16 18:45:48,410 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookSize [2025-03-16 18:45:48,411 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookSize [2025-03-16 18:45:48,411 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey [2025-03-16 18:45:48,411 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey [2025-03-16 18:45:48,411 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookAddress [2025-03-16 18:45:48,411 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookAddress [2025-03-16 18:45:48,411 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey [2025-03-16 18:45:48,411 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey [2025-03-16 18:45:48,412 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Verify [2025-03-16 18:45:48,412 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Verify [2025-03-16 18:45:48,412 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailTo [2025-03-16 18:45:48,412 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailTo [2025-03-16 18:45:48,412 INFO L130 BoogieDeclarations]: Found specification of procedure setup_bob__before__Keys [2025-03-16 18:45:48,412 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_bob__before__Keys [2025-03-16 18:45:48,412 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailFrom [2025-03-16 18:45:48,412 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailFrom [2025-03-16 18:45:48,412 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable [2025-03-16 18:45:48,412 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable [2025-03-16 18:45:48,412 INFO L130 BoogieDeclarations]: Found specification of procedure createClientKeyringEntry [2025-03-16 18:45:48,412 INFO L138 BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry [2025-03-16 18:45:48,413 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Decrypt [2025-03-16 18:45:48,413 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Decrypt [2025-03-16 18:45:48,413 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__Encrypt [2025-03-16 18:45:48,413 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__Encrypt [2025-03-16 18:45:48,413 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted [2025-03-16 18:45:48,413 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted [2025-03-16 18:45:48,414 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailSignKey [2025-03-16 18:45:48,414 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailSignKey [2025-03-16 18:45:48,414 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAdd [2025-03-16 18:45:48,414 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAdd [2025-03-16 18:45:48,414 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Forward [2025-03-16 18:45:48,414 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Forward [2025-03-16 18:45:48,414 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailFrom [2025-03-16 18:45:48,414 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailFrom [2025-03-16 18:45:48,414 INFO L130 BoogieDeclarations]: Found specification of procedure queue [2025-03-16 18:45:48,414 INFO L138 BoogieDeclarations]: Found implementation of procedure queue [2025-03-16 18:45:48,414 INFO L130 BoogieDeclarations]: Found specification of procedure setClientId [2025-03-16 18:45:48,414 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientId [2025-03-16 18:45:48,414 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable__before__Encrypt [2025-03-16 18:45:48,414 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable__before__Encrypt [2025-03-16 18:45:48,414 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2025-03-16 18:45:48,414 INFO L130 BoogieDeclarations]: Found specification of procedure isSigned [2025-03-16 18:45:48,415 INFO L138 BoogieDeclarations]: Found implementation of procedure isSigned [2025-03-16 18:45:48,415 INFO L130 BoogieDeclarations]: Found specification of procedure isKeyPairValid [2025-03-16 18:45:48,415 INFO L138 BoogieDeclarations]: Found implementation of procedure isKeyPairValid [2025-03-16 18:45:48,415 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__before__AddressBook [2025-03-16 18:45:48,415 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__before__AddressBook [2025-03-16 18:45:48,415 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Encrypt [2025-03-16 18:45:48,415 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Encrypt [2025-03-16 18:45:48,415 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__AutoResponder [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__AutoResponder [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookSize [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookSize [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringUser [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringUser [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure findPublicKey [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure findPublicKey [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure sendEmail [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure sendEmail [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure isEncrypted [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure isEncrypted [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure setup_rjh__before__Keys [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_rjh__before__Keys [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__before__Verify [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__before__Verify [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure setClientPrivateKey [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientPrivateKey [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailTo [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailTo [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure generateKeyPair [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure generateKeyPair [2025-03-16 18:45:48,416 INFO L130 BoogieDeclarations]: Found specification of procedure printMail__before__Sign [2025-03-16 18:45:48,416 INFO L138 BoogieDeclarations]: Found implementation of procedure printMail__before__Sign [2025-03-16 18:45:48,418 INFO L130 BoogieDeclarations]: Found specification of procedure select_one [2025-03-16 18:45:48,418 INFO L138 BoogieDeclarations]: Found implementation of procedure select_one [2025-03-16 18:45:48,418 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookAddress [2025-03-16 18:45:48,418 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookAddress [2025-03-16 18:45:48,418 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2025-03-16 18:45:48,418 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2025-03-16 18:45:48,612 INFO L256 CfgBuilder]: Building ICFG [2025-03-16 18:45:48,615 INFO L286 CfgBuilder]: Building CFG for each procedure with an implementation [2025-03-16 18:45:48,654 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2507: #res := ~retValue_acc~34; [2025-03-16 18:45:48,668 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2228: #res := ~retValue_acc~31; [2025-03-16 18:45:48,685 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L3016: #res := ~retValue_acc~43; [2025-03-16 18:45:48,701 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1451: #res := ~retValue_acc~15; [2025-03-16 18:45:48,770 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L995: #res := ~retValue_acc~9; [2025-03-16 18:45:48,803 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1965-1: getEmailId_#res#1 := getEmailId_~retValue_acc~24#1; [2025-03-16 18:45:48,848 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2191: #res := ~retValue_acc~30; [2025-03-16 18:45:48,880 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2039: #res := ~retValue_acc~26; [2025-03-16 18:45:48,934 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2527-1: isReadable__role__Encrypt_#res#1 := isReadable__role__Encrypt_~retValue_acc~35#1; [2025-03-16 18:45:48,934 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2545: #res#1 := ~retValue_acc~36#1; [2025-03-16 18:45:49,017 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1498-1: getClientKeyringSize_#res#1 := getClientKeyringSize_~retValue_acc~16#1; [2025-03-16 18:45:49,017 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1543: #res#1 := ~retValue_acc~17#1; [2025-03-16 18:45:49,053 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1767: #res := ~retValue_acc~20; [2025-03-16 18:45:49,063 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2569-1: createEmail_#res#1 := createEmail_~retValue_acc~38#1; [2025-03-16 18:45:49,069 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2154: #res := ~retValue_acc~29; [2025-03-16 18:45:49,118 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1886-1: getClientId_#res#1 := getClientId_~retValue_acc~22#1; [2025-03-16 18:45:49,166 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2302-1: isVerified_#res#1 := isVerified_~retValue_acc~33#1; [2025-03-16 18:45:49,167 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1839-1: getClientForwardReceiver_#res#1 := getClientForwardReceiver_~retValue_acc~21#1; [2025-03-16 18:45:49,175 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2265: #res := ~retValue_acc~32; [2025-03-16 18:45:49,198 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L70: #res := ~retValue_acc~0; [2025-03-16 18:45:49,217 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1321: #res := ~retValue_acc~13; [2025-03-16 18:45:49,233 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1404-1: getClientAutoResponse_#res#1 := getClientAutoResponse_~retValue_acc~14#1; [2025-03-16 18:45:49,498 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1606-1: getClientKeyringUser_#res#1 := getClientKeyringUser_~retValue_acc~18#1; [2025-03-16 18:45:49,498 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2982-1: get_queued_client_#res#1 := get_queued_client_~retValue_acc~41#1; [2025-03-16 18:45:49,498 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L1713-1: getClientKeyringPublicKey_#res#1 := getClientKeyringPublicKey_~retValue_acc~19#1; [2025-03-16 18:45:49,498 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L165-1: valid_product_#res#1 := valid_product_~retValue_acc~1#1; [2025-03-16 18:45:49,498 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2973-1: is_queue_empty_#res#1 := is_queue_empty_~retValue_acc~40#1; [2025-03-16 18:45:49,498 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2991-1: get_queued_email_#res#1 := get_queued_email_~retValue_acc~42#1; [2025-03-16 18:45:49,504 INFO L1322 $ProcedureCfgBuilder]: dead code at ProgramPoint L2002: #res := ~retValue_acc~25; [2025-03-16 18:45:49,702 INFO L? ?]: Removed 604 outVars from TransFormulas that were not future-live. [2025-03-16 18:45:49,702 INFO L307 CfgBuilder]: Performing block encoding [2025-03-16 18:45:49,725 INFO L331 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2025-03-16 18:45:49,730 INFO L336 CfgBuilder]: Removed 0 assume(true) statements. [2025-03-16 18:45:49,730 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 16.03 06:45:49 BoogieIcfgContainer [2025-03-16 18:45:49,730 INFO L131 PluginConnector]: ------------------------ END IcfgBuilder---------------------------- [2025-03-16 18:45:49,732 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2025-03-16 18:45:49,732 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2025-03-16 18:45:49,735 INFO L274 PluginConnector]: TraceAbstraction initialized [2025-03-16 18:45:49,735 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 16.03 06:45:47" (1/3) ... [2025-03-16 18:45:49,736 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@17472dc5 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.03 06:45:49, skipping insertion in model container [2025-03-16 18:45:49,736 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.03 06:45:48" (2/3) ... [2025-03-16 18:45:49,736 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@17472dc5 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.03 06:45:49, skipping insertion in model container [2025-03-16 18:45:49,736 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 16.03 06:45:49" (3/3) ... [2025-03-16 18:45:49,737 INFO L128 eAbstractionObserver]: Analyzing ICFG email_spec8_productSimulator.cil.c [2025-03-16 18:45:49,748 INFO L216 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2025-03-16 18:45:49,753 INFO L151 ceAbstractionStarter]: Applying trace abstraction to ICFG email_spec8_productSimulator.cil.c that has 44 procedures, 585 locations, 1 initial locations, 1 loop locations, and 1 error locations. [2025-03-16 18:45:49,823 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2025-03-16 18:45:49,834 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@327d56b9, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2025-03-16 18:45:49,834 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2025-03-16 18:45:49,841 INFO L276 IsEmpty]: Start isEmpty. Operand has 585 states, 430 states have (on average 1.5348837209302326) internal successors, (660), 450 states have internal predecessors, (660), 110 states have call successors, (110), 43 states have call predecessors, (110), 43 states have return successors, (110), 109 states have call predecessors, (110), 110 states have call successors, (110) [2025-03-16 18:45:49,864 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 124 [2025-03-16 18:45:49,865 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:49,866 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:49,866 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:49,870 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:49,871 INFO L85 PathProgramCache]: Analyzing trace with hash 1523973881, now seen corresponding path program 1 times [2025-03-16 18:45:49,876 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:49,876 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [289278635] [2025-03-16 18:45:49,876 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:49,877 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:49,961 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 123 statements into 1 equivalence classes. [2025-03-16 18:45:50,022 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 123 of 123 statements. [2025-03-16 18:45:50,022 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:50,022 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:50,457 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:45:50,458 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:50,458 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [289278635] [2025-03-16 18:45:50,459 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [289278635] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:50,459 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:50,459 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2025-03-16 18:45:50,460 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1696446139] [2025-03-16 18:45:50,461 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:50,464 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2025-03-16 18:45:50,466 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:50,482 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2025-03-16 18:45:50,482 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2025-03-16 18:45:50,484 INFO L87 Difference]: Start difference. First operand has 585 states, 430 states have (on average 1.5348837209302326) internal successors, (660), 450 states have internal predecessors, (660), 110 states have call successors, (110), 43 states have call predecessors, (110), 43 states have return successors, (110), 109 states have call predecessors, (110), 110 states have call successors, (110) Second operand has 5 states, 5 states have (on average 11.8) internal successors, (59), 5 states have internal predecessors, (59), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2025-03-16 18:45:50,637 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:50,638 INFO L93 Difference]: Finished difference Result 1137 states and 1718 transitions. [2025-03-16 18:45:50,639 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2025-03-16 18:45:50,640 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 11.8) internal successors, (59), 5 states have internal predecessors, (59), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) Word has length 123 [2025-03-16 18:45:50,641 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:50,655 INFO L225 Difference]: With dead ends: 1137 [2025-03-16 18:45:50,656 INFO L226 Difference]: Without dead ends: 581 [2025-03-16 18:45:50,665 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2025-03-16 18:45:50,669 INFO L435 NwaCegarLoop]: 875 mSDtfsCounter, 0 mSDsluCounter, 2612 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 3487 SdHoareTripleChecker+Invalid, 24 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:50,670 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 3487 Invalid, 24 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:50,689 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 581 states. [2025-03-16 18:45:50,738 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 581 to 581. [2025-03-16 18:45:50,740 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 581 states, 427 states have (on average 1.5128805620608898) internal successors, (646), 446 states have internal predecessors, (646), 110 states have call successors, (110), 43 states have call predecessors, (110), 43 states have return successors, (109), 108 states have call predecessors, (109), 109 states have call successors, (109) [2025-03-16 18:45:50,749 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 581 states to 581 states and 865 transitions. [2025-03-16 18:45:50,752 INFO L78 Accepts]: Start accepts. Automaton has 581 states and 865 transitions. Word has length 123 [2025-03-16 18:45:50,753 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:50,753 INFO L471 AbstractCegarLoop]: Abstraction has 581 states and 865 transitions. [2025-03-16 18:45:50,754 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 11.8) internal successors, (59), 5 states have internal predecessors, (59), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2025-03-16 18:45:50,754 INFO L276 IsEmpty]: Start isEmpty. Operand 581 states and 865 transitions. [2025-03-16 18:45:50,759 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 129 [2025-03-16 18:45:50,759 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:50,759 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:50,760 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2025-03-16 18:45:50,760 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:50,760 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:50,761 INFO L85 PathProgramCache]: Analyzing trace with hash 1430075039, now seen corresponding path program 1 times [2025-03-16 18:45:50,761 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:50,761 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [979510012] [2025-03-16 18:45:50,761 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:50,761 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:50,790 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 128 statements into 1 equivalence classes. [2025-03-16 18:45:50,801 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 128 of 128 statements. [2025-03-16 18:45:50,801 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:50,802 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:50,950 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:45:50,951 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:50,951 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [979510012] [2025-03-16 18:45:50,951 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [979510012] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:50,951 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:50,951 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:50,951 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1899070899] [2025-03-16 18:45:50,951 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:50,952 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:50,953 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:50,953 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:50,954 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:50,954 INFO L87 Difference]: Start difference. First operand 581 states and 865 transitions. Second operand has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 3 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) [2025-03-16 18:45:51,033 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:51,037 INFO L93 Difference]: Finished difference Result 1139 states and 1715 transitions. [2025-03-16 18:45:51,037 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:51,038 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 3 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) Word has length 128 [2025-03-16 18:45:51,038 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:51,046 INFO L225 Difference]: With dead ends: 1139 [2025-03-16 18:45:51,046 INFO L226 Difference]: Without dead ends: 580 [2025-03-16 18:45:51,049 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:51,050 INFO L435 NwaCegarLoop]: 849 mSDtfsCounter, 834 mSDsluCounter, 7 mSDsCounter, 0 mSdLazyCounter, 7 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 834 SdHoareTripleChecker+Valid, 856 SdHoareTripleChecker+Invalid, 11 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 7 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:51,050 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [834 Valid, 856 Invalid, 11 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 7 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:51,052 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 580 states. [2025-03-16 18:45:51,093 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 580 to 580. [2025-03-16 18:45:51,095 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 580 states, 428 states have (on average 1.5) internal successors, (642), 445 states have internal predecessors, (642), 107 states have call successors, (107), 44 states have call predecessors, (107), 44 states have return successors, (106), 105 states have call predecessors, (106), 106 states have call successors, (106) [2025-03-16 18:45:51,099 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 580 states to 580 states and 855 transitions. [2025-03-16 18:45:51,103 INFO L78 Accepts]: Start accepts. Automaton has 580 states and 855 transitions. Word has length 128 [2025-03-16 18:45:51,104 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:51,104 INFO L471 AbstractCegarLoop]: Abstraction has 580 states and 855 transitions. [2025-03-16 18:45:51,105 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 3 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) [2025-03-16 18:45:51,105 INFO L276 IsEmpty]: Start isEmpty. Operand 580 states and 855 transitions. [2025-03-16 18:45:51,109 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 152 [2025-03-16 18:45:51,110 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:51,111 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:51,111 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2025-03-16 18:45:51,111 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:51,112 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:51,115 INFO L85 PathProgramCache]: Analyzing trace with hash 1272667397, now seen corresponding path program 1 times [2025-03-16 18:45:51,115 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:51,115 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2046629971] [2025-03-16 18:45:51,115 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:51,115 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:51,146 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 151 statements into 1 equivalence classes. [2025-03-16 18:45:51,165 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 151 of 151 statements. [2025-03-16 18:45:51,165 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:51,165 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:51,236 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:45:51,236 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:51,237 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2046629971] [2025-03-16 18:45:51,237 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2046629971] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:51,238 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:51,238 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:51,238 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [33834839] [2025-03-16 18:45:51,239 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:51,239 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:51,239 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:51,240 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:51,240 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:51,240 INFO L87 Difference]: Start difference. First operand 580 states and 855 transitions. Second operand has 3 states, 3 states have (on average 27.0) internal successors, (81), 3 states have internal predecessors, (81), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2025-03-16 18:45:51,299 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:51,299 INFO L93 Difference]: Finished difference Result 1132 states and 1683 transitions. [2025-03-16 18:45:51,302 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:51,303 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 27.0) internal successors, (81), 3 states have internal predecessors, (81), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 151 [2025-03-16 18:45:51,303 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:51,310 INFO L225 Difference]: With dead ends: 1132 [2025-03-16 18:45:51,310 INFO L226 Difference]: Without dead ends: 579 [2025-03-16 18:45:51,313 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:51,314 INFO L435 NwaCegarLoop]: 847 mSDtfsCounter, 820 mSDsluCounter, 26 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 820 SdHoareTripleChecker+Valid, 873 SdHoareTripleChecker+Invalid, 5 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:51,314 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [820 Valid, 873 Invalid, 5 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:51,315 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 579 states. [2025-03-16 18:45:51,365 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 579 to 579. [2025-03-16 18:45:51,367 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 579 states, 428 states have (on average 1.4953271028037383) internal successors, (640), 444 states have internal predecessors, (640), 106 states have call successors, (106), 44 states have call predecessors, (106), 44 states have return successors, (105), 104 states have call predecessors, (105), 105 states have call successors, (105) [2025-03-16 18:45:51,371 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 579 states to 579 states and 851 transitions. [2025-03-16 18:45:51,372 INFO L78 Accepts]: Start accepts. Automaton has 579 states and 851 transitions. Word has length 151 [2025-03-16 18:45:51,373 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:51,373 INFO L471 AbstractCegarLoop]: Abstraction has 579 states and 851 transitions. [2025-03-16 18:45:51,373 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 27.0) internal successors, (81), 3 states have internal predecessors, (81), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2025-03-16 18:45:51,374 INFO L276 IsEmpty]: Start isEmpty. Operand 579 states and 851 transitions. [2025-03-16 18:45:51,376 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 153 [2025-03-16 18:45:51,376 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:51,376 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:51,376 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2025-03-16 18:45:51,376 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:51,379 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:51,380 INFO L85 PathProgramCache]: Analyzing trace with hash 73550196, now seen corresponding path program 1 times [2025-03-16 18:45:51,380 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:51,380 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [948359321] [2025-03-16 18:45:51,380 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:51,380 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:51,409 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 152 statements into 1 equivalence classes. [2025-03-16 18:45:51,429 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 152 of 152 statements. [2025-03-16 18:45:51,430 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:51,430 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:51,506 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2025-03-16 18:45:51,506 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:51,506 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [948359321] [2025-03-16 18:45:51,506 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [948359321] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:51,506 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:51,506 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:51,506 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1212816212] [2025-03-16 18:45:51,506 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:51,507 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:51,507 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:51,507 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:51,507 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:51,507 INFO L87 Difference]: Start difference. First operand 579 states and 851 transitions. Second operand has 3 states, 3 states have (on average 27.333333333333332) internal successors, (82), 3 states have internal predecessors, (82), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2025-03-16 18:45:51,581 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:51,581 INFO L93 Difference]: Finished difference Result 1112 states and 1641 transitions. [2025-03-16 18:45:51,581 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:51,582 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 27.333333333333332) internal successors, (82), 3 states have internal predecessors, (82), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 152 [2025-03-16 18:45:51,582 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:51,588 INFO L225 Difference]: With dead ends: 1112 [2025-03-16 18:45:51,589 INFO L226 Difference]: Without dead ends: 576 [2025-03-16 18:45:51,592 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:51,592 INFO L435 NwaCegarLoop]: 820 mSDtfsCounter, 792 mSDsluCounter, 30 mSDsCounter, 0 mSdLazyCounter, 14 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 792 SdHoareTripleChecker+Valid, 850 SdHoareTripleChecker+Invalid, 24 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 14 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:51,592 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [792 Valid, 850 Invalid, 24 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 14 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:51,595 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 576 states. [2025-03-16 18:45:51,628 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 576 to 576. [2025-03-16 18:45:51,630 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 576 states, 428 states have (on average 1.469626168224299) internal successors, (629), 439 states have internal predecessors, (629), 103 states have call successors, (103), 44 states have call predecessors, (103), 44 states have return successors, (102), 101 states have call predecessors, (102), 102 states have call successors, (102) [2025-03-16 18:45:51,636 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 576 states to 576 states and 834 transitions. [2025-03-16 18:45:51,637 INFO L78 Accepts]: Start accepts. Automaton has 576 states and 834 transitions. Word has length 152 [2025-03-16 18:45:51,637 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:51,637 INFO L471 AbstractCegarLoop]: Abstraction has 576 states and 834 transitions. [2025-03-16 18:45:51,638 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 27.333333333333332) internal successors, (82), 3 states have internal predecessors, (82), 2 states have call successors, (26), 2 states have call predecessors, (26), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2025-03-16 18:45:51,638 INFO L276 IsEmpty]: Start isEmpty. Operand 576 states and 834 transitions. [2025-03-16 18:45:51,640 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 164 [2025-03-16 18:45:51,641 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:51,641 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:51,641 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2025-03-16 18:45:51,641 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:51,642 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:51,642 INFO L85 PathProgramCache]: Analyzing trace with hash -1913319335, now seen corresponding path program 1 times [2025-03-16 18:45:51,642 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:51,642 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [72709351] [2025-03-16 18:45:51,642 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:51,642 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:51,668 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 163 statements into 1 equivalence classes. [2025-03-16 18:45:51,683 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 163 of 163 statements. [2025-03-16 18:45:51,688 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:51,688 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:51,958 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 106 trivial. 0 not checked. [2025-03-16 18:45:51,959 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:51,959 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [72709351] [2025-03-16 18:45:51,959 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [72709351] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:45:51,959 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [470575615] [2025-03-16 18:45:51,959 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:51,959 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:45:51,960 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:45:51,962 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:45:51,963 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2025-03-16 18:45:52,135 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 163 statements into 1 equivalence classes. [2025-03-16 18:45:52,284 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 163 of 163 statements. [2025-03-16 18:45:52,285 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:52,285 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:52,291 INFO L256 TraceCheckSpWp]: Trace formula consists of 1375 conjuncts, 2 conjuncts are in the unsatisfiable core [2025-03-16 18:45:52,300 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:45:52,333 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 112 trivial. 0 not checked. [2025-03-16 18:45:52,333 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:45:52,334 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [470575615] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:52,334 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:45:52,334 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [8] total 9 [2025-03-16 18:45:52,334 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [832777954] [2025-03-16 18:45:52,334 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:52,334 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:52,335 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:52,335 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:52,335 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:45:52,336 INFO L87 Difference]: Start difference. First operand 576 states and 834 transitions. Second operand has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (28), 2 states have call predecessors, (28), 2 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:45:52,370 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:52,371 INFO L93 Difference]: Finished difference Result 894 states and 1276 transitions. [2025-03-16 18:45:52,371 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:52,372 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (28), 2 states have call predecessors, (28), 2 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 163 [2025-03-16 18:45:52,372 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:52,375 INFO L225 Difference]: With dead ends: 894 [2025-03-16 18:45:52,376 INFO L226 Difference]: Without dead ends: 577 [2025-03-16 18:45:52,378 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 170 GetRequests, 163 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:45:52,379 INFO L435 NwaCegarLoop]: 831 mSDtfsCounter, 0 mSDsluCounter, 829 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 1660 SdHoareTripleChecker+Invalid, 3 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:52,379 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 1660 Invalid, 3 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:52,380 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 577 states. [2025-03-16 18:45:52,406 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 577 to 577. [2025-03-16 18:45:52,407 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 577 states, 429 states have (on average 1.4685314685314685) internal successors, (630), 440 states have internal predecessors, (630), 103 states have call successors, (103), 44 states have call predecessors, (103), 44 states have return successors, (102), 101 states have call predecessors, (102), 102 states have call successors, (102) [2025-03-16 18:45:52,410 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 577 states to 577 states and 835 transitions. [2025-03-16 18:45:52,411 INFO L78 Accepts]: Start accepts. Automaton has 577 states and 835 transitions. Word has length 163 [2025-03-16 18:45:52,412 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:52,412 INFO L471 AbstractCegarLoop]: Abstraction has 577 states and 835 transitions. [2025-03-16 18:45:52,412 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (28), 2 states have call predecessors, (28), 2 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:45:52,412 INFO L276 IsEmpty]: Start isEmpty. Operand 577 states and 835 transitions. [2025-03-16 18:45:52,437 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 177 [2025-03-16 18:45:52,438 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:52,438 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:52,447 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2025-03-16 18:45:52,638 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:45:52,639 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:52,639 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:52,640 INFO L85 PathProgramCache]: Analyzing trace with hash 1265628738, now seen corresponding path program 1 times [2025-03-16 18:45:52,640 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:52,640 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1970033703] [2025-03-16 18:45:52,640 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:52,640 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:52,671 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 176 statements into 1 equivalence classes. [2025-03-16 18:45:52,683 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 176 of 176 statements. [2025-03-16 18:45:52,684 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:52,684 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:52,927 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 107 trivial. 0 not checked. [2025-03-16 18:45:52,927 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:52,927 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1970033703] [2025-03-16 18:45:52,927 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1970033703] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:45:52,927 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1776271572] [2025-03-16 18:45:52,927 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:52,927 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:45:52,927 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:45:52,929 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:45:52,931 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2025-03-16 18:45:53,086 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 176 statements into 1 equivalence classes. [2025-03-16 18:45:53,245 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 176 of 176 statements. [2025-03-16 18:45:53,246 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:53,246 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:53,252 INFO L256 TraceCheckSpWp]: Trace formula consists of 1418 conjuncts, 3 conjuncts are in the unsatisfiable core [2025-03-16 18:45:53,259 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:45:53,282 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 112 trivial. 0 not checked. [2025-03-16 18:45:53,284 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:45:53,284 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1776271572] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:53,284 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:45:53,285 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [8] total 9 [2025-03-16 18:45:53,285 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1890227757] [2025-03-16 18:45:53,285 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:53,285 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:53,285 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:53,286 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:53,286 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:45:53,287 INFO L87 Difference]: Start difference. First operand 577 states and 835 transitions. Second operand has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:45:53,330 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:53,330 INFO L93 Difference]: Finished difference Result 1175 states and 1732 transitions. [2025-03-16 18:45:53,331 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:53,331 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 176 [2025-03-16 18:45:53,331 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:53,336 INFO L225 Difference]: With dead ends: 1175 [2025-03-16 18:45:53,336 INFO L226 Difference]: Without dead ends: 671 [2025-03-16 18:45:53,338 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 183 GetRequests, 176 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:45:53,340 INFO L435 NwaCegarLoop]: 852 mSDtfsCounter, 162 mSDsluCounter, 785 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 180 SdHoareTripleChecker+Valid, 1637 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:53,340 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [180 Valid, 1637 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:53,343 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 671 states. [2025-03-16 18:45:53,371 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 671 to 663. [2025-03-16 18:45:53,372 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 663 states, 501 states have (on average 1.4850299401197604) internal successors, (744), 512 states have internal predecessors, (744), 117 states have call successors, (117), 44 states have call predecessors, (117), 44 states have return successors, (116), 115 states have call predecessors, (116), 116 states have call successors, (116) [2025-03-16 18:45:53,376 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 663 states to 663 states and 977 transitions. [2025-03-16 18:45:53,377 INFO L78 Accepts]: Start accepts. Automaton has 663 states and 977 transitions. Word has length 176 [2025-03-16 18:45:53,378 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:53,378 INFO L471 AbstractCegarLoop]: Abstraction has 663 states and 977 transitions. [2025-03-16 18:45:53,378 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:45:53,378 INFO L276 IsEmpty]: Start isEmpty. Operand 663 states and 977 transitions. [2025-03-16 18:45:53,381 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 171 [2025-03-16 18:45:53,382 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:53,382 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:53,390 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2025-03-16 18:45:53,582 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2025-03-16 18:45:53,583 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:53,583 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:53,584 INFO L85 PathProgramCache]: Analyzing trace with hash -1453259908, now seen corresponding path program 1 times [2025-03-16 18:45:53,584 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:53,584 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1623255375] [2025-03-16 18:45:53,584 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:53,584 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:53,603 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 170 statements into 1 equivalence classes. [2025-03-16 18:45:53,613 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 170 of 170 statements. [2025-03-16 18:45:53,613 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:53,613 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:53,859 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 107 trivial. 0 not checked. [2025-03-16 18:45:53,859 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:53,859 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1623255375] [2025-03-16 18:45:53,859 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1623255375] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:45:53,859 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1712689561] [2025-03-16 18:45:53,859 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:53,859 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:45:53,860 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:45:53,861 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:45:53,864 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2025-03-16 18:45:54,030 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 170 statements into 1 equivalence classes. [2025-03-16 18:45:54,159 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 170 of 170 statements. [2025-03-16 18:45:54,159 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:54,159 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:54,166 INFO L256 TraceCheckSpWp]: Trace formula consists of 1393 conjuncts, 10 conjuncts are in the unsatisfiable core [2025-03-16 18:45:54,171 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:45:54,268 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 94 trivial. 0 not checked. [2025-03-16 18:45:54,268 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:45:54,268 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1712689561] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:54,268 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:45:54,268 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [8] total 14 [2025-03-16 18:45:54,268 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1267985916] [2025-03-16 18:45:54,268 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:54,268 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:45:54,268 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:54,269 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:45:54,269 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=31, Invalid=151, Unknown=0, NotChecked=0, Total=182 [2025-03-16 18:45:54,269 INFO L87 Difference]: Start difference. First operand 663 states and 977 transitions. Second operand has 8 states, 6 states have (on average 16.5) internal successors, (99), 8 states have internal predecessors, (99), 4 states have call successors, (28), 2 states have call predecessors, (28), 4 states have return successors, (23), 3 states have call predecessors, (23), 4 states have call successors, (23) [2025-03-16 18:45:54,382 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:54,383 INFO L93 Difference]: Finished difference Result 1276 states and 1894 transitions. [2025-03-16 18:45:54,383 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:45:54,384 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 16.5) internal successors, (99), 8 states have internal predecessors, (99), 4 states have call successors, (28), 2 states have call predecessors, (28), 4 states have return successors, (23), 3 states have call predecessors, (23), 4 states have call successors, (23) Word has length 170 [2025-03-16 18:45:54,384 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:54,388 INFO L225 Difference]: With dead ends: 1276 [2025-03-16 18:45:54,388 INFO L226 Difference]: Without dead ends: 665 [2025-03-16 18:45:54,390 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 178 GetRequests, 165 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 15 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=35, Invalid=175, Unknown=0, NotChecked=0, Total=210 [2025-03-16 18:45:54,390 INFO L435 NwaCegarLoop]: 821 mSDtfsCounter, 4 mSDsluCounter, 4909 mSDsCounter, 0 mSdLazyCounter, 83 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 5730 SdHoareTripleChecker+Invalid, 83 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 83 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:54,390 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 5730 Invalid, 83 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 83 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:54,391 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 665 states. [2025-03-16 18:45:54,414 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 665 to 665. [2025-03-16 18:45:54,415 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 665 states, 502 states have (on average 1.4840637450199203) internal successors, (745), 514 states have internal predecessors, (745), 117 states have call successors, (117), 44 states have call predecessors, (117), 45 states have return successors, (118), 115 states have call predecessors, (118), 116 states have call successors, (118) [2025-03-16 18:45:54,418 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 665 states to 665 states and 980 transitions. [2025-03-16 18:45:54,419 INFO L78 Accepts]: Start accepts. Automaton has 665 states and 980 transitions. Word has length 170 [2025-03-16 18:45:54,420 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:54,420 INFO L471 AbstractCegarLoop]: Abstraction has 665 states and 980 transitions. [2025-03-16 18:45:54,420 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 16.5) internal successors, (99), 8 states have internal predecessors, (99), 4 states have call successors, (28), 2 states have call predecessors, (28), 4 states have return successors, (23), 3 states have call predecessors, (23), 4 states have call successors, (23) [2025-03-16 18:45:54,420 INFO L276 IsEmpty]: Start isEmpty. Operand 665 states and 980 transitions. [2025-03-16 18:45:54,422 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 179 [2025-03-16 18:45:54,423 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:54,423 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:54,431 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2025-03-16 18:45:54,625 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,4 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:45:54,626 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:54,626 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:54,626 INFO L85 PathProgramCache]: Analyzing trace with hash 2123795391, now seen corresponding path program 1 times [2025-03-16 18:45:54,626 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:54,627 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [909137917] [2025-03-16 18:45:54,627 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:54,627 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:54,645 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 178 statements into 1 equivalence classes. [2025-03-16 18:45:54,653 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 178 of 178 statements. [2025-03-16 18:45:54,653 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:54,653 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:54,814 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 101 trivial. 0 not checked. [2025-03-16 18:45:54,814 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:54,814 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [909137917] [2025-03-16 18:45:54,814 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [909137917] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:45:54,814 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [970650747] [2025-03-16 18:45:54,814 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:54,814 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:45:54,814 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:45:54,817 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:45:54,818 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2025-03-16 18:45:54,979 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 178 statements into 1 equivalence classes. [2025-03-16 18:45:55,109 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 178 of 178 statements. [2025-03-16 18:45:55,109 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:55,109 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:55,115 INFO L256 TraceCheckSpWp]: Trace formula consists of 1424 conjuncts, 8 conjuncts are in the unsatisfiable core [2025-03-16 18:45:55,120 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:45:55,172 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 94 trivial. 0 not checked. [2025-03-16 18:45:55,172 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2025-03-16 18:45:55,172 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [970650747] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:55,172 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2025-03-16 18:45:55,172 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [9] total 13 [2025-03-16 18:45:55,172 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1351558845] [2025-03-16 18:45:55,172 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:55,172 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2025-03-16 18:45:55,172 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:55,173 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2025-03-16 18:45:55,173 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=26, Invalid=130, Unknown=0, NotChecked=0, Total=156 [2025-03-16 18:45:55,173 INFO L87 Difference]: Start difference. First operand 665 states and 980 transitions. Second operand has 6 states, 5 states have (on average 21.2) internal successors, (106), 6 states have internal predecessors, (106), 3 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:45:55,250 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:55,251 INFO L93 Difference]: Finished difference Result 1277 states and 1898 transitions. [2025-03-16 18:45:55,251 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2025-03-16 18:45:55,252 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 21.2) internal successors, (106), 6 states have internal predecessors, (106), 3 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) Word has length 178 [2025-03-16 18:45:55,252 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:55,256 INFO L225 Difference]: With dead ends: 1277 [2025-03-16 18:45:55,256 INFO L226 Difference]: Without dead ends: 667 [2025-03-16 18:45:55,258 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 186 GetRequests, 175 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=26, Invalid=130, Unknown=0, NotChecked=0, Total=156 [2025-03-16 18:45:55,258 INFO L435 NwaCegarLoop]: 821 mSDtfsCounter, 2 mSDsluCounter, 3267 mSDsCounter, 0 mSdLazyCounter, 64 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 4088 SdHoareTripleChecker+Invalid, 64 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 64 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:55,258 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 4088 Invalid, 64 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 64 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:55,259 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 667 states. [2025-03-16 18:45:55,282 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 667 to 667. [2025-03-16 18:45:55,283 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 667 states, 503 states have (on average 1.4831013916500995) internal successors, (746), 516 states have internal predecessors, (746), 117 states have call successors, (117), 44 states have call predecessors, (117), 46 states have return successors, (123), 115 states have call predecessors, (123), 116 states have call successors, (123) [2025-03-16 18:45:55,287 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 667 states to 667 states and 986 transitions. [2025-03-16 18:45:55,288 INFO L78 Accepts]: Start accepts. Automaton has 667 states and 986 transitions. Word has length 178 [2025-03-16 18:45:55,288 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:55,288 INFO L471 AbstractCegarLoop]: Abstraction has 667 states and 986 transitions. [2025-03-16 18:45:55,289 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 21.2) internal successors, (106), 6 states have internal predecessors, (106), 3 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:45:55,289 INFO L276 IsEmpty]: Start isEmpty. Operand 667 states and 986 transitions. [2025-03-16 18:45:55,291 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 180 [2025-03-16 18:45:55,291 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:55,291 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:55,299 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2025-03-16 18:45:55,491 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,5 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:45:55,492 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:55,492 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:55,492 INFO L85 PathProgramCache]: Analyzing trace with hash 52366856, now seen corresponding path program 1 times [2025-03-16 18:45:55,492 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:55,492 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [561046198] [2025-03-16 18:45:55,492 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:55,493 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:55,523 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 179 statements into 1 equivalence classes. [2025-03-16 18:45:55,534 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 179 of 179 statements. [2025-03-16 18:45:55,534 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:55,534 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:55,697 INFO L134 CoverageAnalysis]: Checked inductivity of 113 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 107 trivial. 0 not checked. [2025-03-16 18:45:55,697 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:55,697 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [561046198] [2025-03-16 18:45:55,697 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [561046198] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:55,697 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:55,697 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2025-03-16 18:45:55,697 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [76363686] [2025-03-16 18:45:55,697 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:55,698 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:45:55,698 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:55,698 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:45:55,698 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2025-03-16 18:45:55,698 INFO L87 Difference]: Start difference. First operand 667 states and 986 transitions. Second operand has 8 states, 6 states have (on average 17.0) internal successors, (102), 8 states have internal predecessors, (102), 4 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:45:55,802 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:55,802 INFO L93 Difference]: Finished difference Result 1265 states and 1885 transitions. [2025-03-16 18:45:55,803 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:45:55,803 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 17.0) internal successors, (102), 8 states have internal predecessors, (102), 4 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) Word has length 179 [2025-03-16 18:45:55,803 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:55,808 INFO L225 Difference]: With dead ends: 1265 [2025-03-16 18:45:55,808 INFO L226 Difference]: Without dead ends: 667 [2025-03-16 18:45:55,810 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=55, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:45:55,811 INFO L435 NwaCegarLoop]: 822 mSDtfsCounter, 4 mSDsluCounter, 4915 mSDsCounter, 0 mSdLazyCounter, 76 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 5737 SdHoareTripleChecker+Invalid, 76 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 76 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:55,812 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 5737 Invalid, 76 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 76 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:55,813 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 667 states. [2025-03-16 18:45:55,838 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 667 to 667. [2025-03-16 18:45:55,839 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 667 states, 503 states have (on average 1.4831013916500995) internal successors, (746), 516 states have internal predecessors, (746), 117 states have call successors, (117), 44 states have call predecessors, (117), 46 states have return successors, (122), 115 states have call predecessors, (122), 116 states have call successors, (122) [2025-03-16 18:45:55,842 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 667 states to 667 states and 985 transitions. [2025-03-16 18:45:55,844 INFO L78 Accepts]: Start accepts. Automaton has 667 states and 985 transitions. Word has length 179 [2025-03-16 18:45:55,845 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:55,845 INFO L471 AbstractCegarLoop]: Abstraction has 667 states and 985 transitions. [2025-03-16 18:45:55,845 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 17.0) internal successors, (102), 8 states have internal predecessors, (102), 4 states have call successors, (29), 2 states have call predecessors, (29), 3 states have return successors, (24), 3 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:45:55,846 INFO L276 IsEmpty]: Start isEmpty. Operand 667 states and 985 transitions. [2025-03-16 18:45:55,848 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 181 [2025-03-16 18:45:55,848 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:55,848 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:55,848 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2025-03-16 18:45:55,848 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:55,850 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:55,850 INFO L85 PathProgramCache]: Analyzing trace with hash -831243454, now seen corresponding path program 2 times [2025-03-16 18:45:55,851 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:55,851 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1233988661] [2025-03-16 18:45:55,851 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2025-03-16 18:45:55,851 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:55,873 INFO L108 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 partitioned 180 statements into 2 equivalence classes. [2025-03-16 18:45:55,903 INFO L111 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) and asserted 180 of 180 statements. [2025-03-16 18:45:55,903 INFO L114 AnnotateAndAsserter]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2025-03-16 18:45:55,903 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:56,022 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 108 trivial. 0 not checked. [2025-03-16 18:45:56,023 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:56,023 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1233988661] [2025-03-16 18:45:56,023 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1233988661] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:56,023 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:56,023 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2025-03-16 18:45:56,023 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [585773478] [2025-03-16 18:45:56,023 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:56,023 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2025-03-16 18:45:56,023 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:56,024 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2025-03-16 18:45:56,024 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2025-03-16 18:45:56,024 INFO L87 Difference]: Start difference. First operand 667 states and 985 transitions. Second operand has 6 states, 5 states have (on average 20.4) internal successors, (102), 6 states have internal predecessors, (102), 3 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:45:56,090 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:56,090 INFO L93 Difference]: Finished difference Result 1262 states and 1879 transitions. [2025-03-16 18:45:56,091 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2025-03-16 18:45:56,091 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 20.4) internal successors, (102), 6 states have internal predecessors, (102), 3 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) Word has length 180 [2025-03-16 18:45:56,091 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:56,095 INFO L225 Difference]: With dead ends: 1262 [2025-03-16 18:45:56,095 INFO L226 Difference]: Without dead ends: 667 [2025-03-16 18:45:56,097 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2025-03-16 18:45:56,097 INFO L435 NwaCegarLoop]: 822 mSDtfsCounter, 2 mSDsluCounter, 3271 mSDsCounter, 0 mSdLazyCounter, 59 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 4093 SdHoareTripleChecker+Invalid, 59 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 59 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:56,097 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 4093 Invalid, 59 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 59 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:56,098 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 667 states. [2025-03-16 18:45:56,119 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 667 to 667. [2025-03-16 18:45:56,120 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 667 states, 503 states have (on average 1.4831013916500995) internal successors, (746), 516 states have internal predecessors, (746), 117 states have call successors, (117), 44 states have call predecessors, (117), 46 states have return successors, (121), 115 states have call predecessors, (121), 116 states have call successors, (121) [2025-03-16 18:45:56,123 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 667 states to 667 states and 984 transitions. [2025-03-16 18:45:56,124 INFO L78 Accepts]: Start accepts. Automaton has 667 states and 984 transitions. Word has length 180 [2025-03-16 18:45:56,124 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:56,125 INFO L471 AbstractCegarLoop]: Abstraction has 667 states and 984 transitions. [2025-03-16 18:45:56,125 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 20.4) internal successors, (102), 6 states have internal predecessors, (102), 3 states have call successors, (29), 2 states have call predecessors, (29), 2 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2025-03-16 18:45:56,125 INFO L276 IsEmpty]: Start isEmpty. Operand 667 states and 984 transitions. [2025-03-16 18:45:56,127 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 175 [2025-03-16 18:45:56,127 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:56,127 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:56,127 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2025-03-16 18:45:56,127 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:56,128 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:56,128 INFO L85 PathProgramCache]: Analyzing trace with hash 1175161318, now seen corresponding path program 1 times [2025-03-16 18:45:56,128 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:56,128 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1161764242] [2025-03-16 18:45:56,128 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:56,128 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:56,144 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 174 statements into 1 equivalence classes. [2025-03-16 18:45:56,155 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 174 of 174 statements. [2025-03-16 18:45:56,155 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:56,155 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:56,334 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 108 trivial. 0 not checked. [2025-03-16 18:45:56,335 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:56,335 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1161764242] [2025-03-16 18:45:56,335 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1161764242] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:56,335 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:56,335 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2025-03-16 18:45:56,335 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1119370498] [2025-03-16 18:45:56,335 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:56,336 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2025-03-16 18:45:56,336 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:56,336 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2025-03-16 18:45:56,336 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2025-03-16 18:45:56,337 INFO L87 Difference]: Start difference. First operand 667 states and 984 transitions. Second operand has 8 states, 6 states have (on average 16.333333333333332) internal successors, (98), 8 states have internal predecessors, (98), 4 states have call successors, (28), 2 states have call predecessors, (28), 3 states have return successors, (23), 3 states have call predecessors, (23), 4 states have call successors, (23) [2025-03-16 18:45:56,437 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:56,437 INFO L93 Difference]: Finished difference Result 1267 states and 1886 transitions. [2025-03-16 18:45:56,438 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2025-03-16 18:45:56,438 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 6 states have (on average 16.333333333333332) internal successors, (98), 8 states have internal predecessors, (98), 4 states have call successors, (28), 2 states have call predecessors, (28), 3 states have return successors, (23), 3 states have call predecessors, (23), 4 states have call successors, (23) Word has length 174 [2025-03-16 18:45:56,438 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:56,443 INFO L225 Difference]: With dead ends: 1267 [2025-03-16 18:45:56,443 INFO L226 Difference]: Without dead ends: 669 [2025-03-16 18:45:56,446 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=55, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:45:56,446 INFO L435 NwaCegarLoop]: 823 mSDtfsCounter, 3 mSDsluCounter, 4920 mSDsCounter, 0 mSdLazyCounter, 83 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 5743 SdHoareTripleChecker+Invalid, 83 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 83 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:56,446 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 5743 Invalid, 83 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 83 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:56,447 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 669 states. [2025-03-16 18:45:56,471 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 669 to 669. [2025-03-16 18:45:56,473 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 669 states, 504 states have (on average 1.4821428571428572) internal successors, (747), 518 states have internal predecessors, (747), 117 states have call successors, (117), 44 states have call predecessors, (117), 47 states have return successors, (123), 115 states have call predecessors, (123), 116 states have call successors, (123) [2025-03-16 18:45:56,477 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 669 states to 669 states and 987 transitions. [2025-03-16 18:45:56,478 INFO L78 Accepts]: Start accepts. Automaton has 669 states and 987 transitions. Word has length 174 [2025-03-16 18:45:56,479 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:56,479 INFO L471 AbstractCegarLoop]: Abstraction has 669 states and 987 transitions. [2025-03-16 18:45:56,479 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 6 states have (on average 16.333333333333332) internal successors, (98), 8 states have internal predecessors, (98), 4 states have call successors, (28), 2 states have call predecessors, (28), 3 states have return successors, (23), 3 states have call predecessors, (23), 4 states have call successors, (23) [2025-03-16 18:45:56,479 INFO L276 IsEmpty]: Start isEmpty. Operand 669 states and 987 transitions. [2025-03-16 18:45:56,482 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 183 [2025-03-16 18:45:56,482 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:56,482 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:56,482 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2025-03-16 18:45:56,483 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:56,483 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:56,483 INFO L85 PathProgramCache]: Analyzing trace with hash -1042050206, now seen corresponding path program 1 times [2025-03-16 18:45:56,483 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:56,483 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1235754863] [2025-03-16 18:45:56,483 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:56,483 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:56,502 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 182 statements into 1 equivalence classes. [2025-03-16 18:45:56,512 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 182 of 182 statements. [2025-03-16 18:45:56,512 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:56,512 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:56,659 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 101 trivial. 0 not checked. [2025-03-16 18:45:56,659 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:56,659 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1235754863] [2025-03-16 18:45:56,660 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1235754863] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:56,660 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:56,660 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2025-03-16 18:45:56,660 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1151252127] [2025-03-16 18:45:56,660 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:56,660 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2025-03-16 18:45:56,660 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:56,661 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2025-03-16 18:45:56,661 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2025-03-16 18:45:56,661 INFO L87 Difference]: Start difference. First operand 669 states and 987 transitions. Second operand has 9 states, 7 states have (on average 15.428571428571429) internal successors, (108), 8 states have internal predecessors, (108), 4 states have call successors, (29), 2 states have call predecessors, (29), 4 states have return successors, (24), 4 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:45:56,803 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:56,804 INFO L93 Difference]: Finished difference Result 1266 states and 1888 transitions. [2025-03-16 18:45:56,804 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2025-03-16 18:45:56,804 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 7 states have (on average 15.428571428571429) internal successors, (108), 8 states have internal predecessors, (108), 4 states have call successors, (29), 2 states have call predecessors, (29), 4 states have return successors, (24), 4 states have call predecessors, (24), 4 states have call successors, (24) Word has length 182 [2025-03-16 18:45:56,805 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:56,809 INFO L225 Difference]: With dead ends: 1266 [2025-03-16 18:45:56,809 INFO L226 Difference]: Without dead ends: 671 [2025-03-16 18:45:56,811 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=23, Invalid=87, Unknown=0, NotChecked=0, Total=110 [2025-03-16 18:45:56,811 INFO L435 NwaCegarLoop]: 817 mSDtfsCounter, 4 mSDsluCounter, 5689 mSDsCounter, 0 mSdLazyCounter, 171 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 6 SdHoareTripleChecker+Valid, 6506 SdHoareTripleChecker+Invalid, 172 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 171 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:56,811 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [6 Valid, 6506 Invalid, 172 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 171 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2025-03-16 18:45:56,812 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 671 states. [2025-03-16 18:45:56,835 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 671 to 671. [2025-03-16 18:45:56,836 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 671 states, 505 states have (on average 1.4811881188118812) internal successors, (748), 520 states have internal predecessors, (748), 117 states have call successors, (117), 44 states have call predecessors, (117), 48 states have return successors, (128), 115 states have call predecessors, (128), 116 states have call successors, (128) [2025-03-16 18:45:56,840 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 671 states to 671 states and 993 transitions. [2025-03-16 18:45:56,841 INFO L78 Accepts]: Start accepts. Automaton has 671 states and 993 transitions. Word has length 182 [2025-03-16 18:45:56,842 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:56,842 INFO L471 AbstractCegarLoop]: Abstraction has 671 states and 993 transitions. [2025-03-16 18:45:56,842 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 7 states have (on average 15.428571428571429) internal successors, (108), 8 states have internal predecessors, (108), 4 states have call successors, (29), 2 states have call predecessors, (29), 4 states have return successors, (24), 4 states have call predecessors, (24), 4 states have call successors, (24) [2025-03-16 18:45:56,842 INFO L276 IsEmpty]: Start isEmpty. Operand 671 states and 993 transitions. [2025-03-16 18:45:56,844 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 184 [2025-03-16 18:45:56,844 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:56,844 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:56,845 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2025-03-16 18:45:56,845 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:56,845 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:56,845 INFO L85 PathProgramCache]: Analyzing trace with hash -1815975032, now seen corresponding path program 1 times [2025-03-16 18:45:56,845 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:56,845 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [325215272] [2025-03-16 18:45:56,845 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:56,846 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:56,863 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 183 statements into 1 equivalence classes. [2025-03-16 18:45:56,872 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 183 of 183 statements. [2025-03-16 18:45:56,873 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:56,873 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:56,960 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:45:56,960 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:56,961 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [325215272] [2025-03-16 18:45:56,961 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [325215272] provided 0 perfect and 1 imperfect interpolant sequences [2025-03-16 18:45:56,961 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1176787393] [2025-03-16 18:45:56,961 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:56,961 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2025-03-16 18:45:56,961 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2025-03-16 18:45:56,963 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2025-03-16 18:45:56,965 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2025-03-16 18:45:57,150 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 183 statements into 1 equivalence classes. [2025-03-16 18:45:57,300 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 183 of 183 statements. [2025-03-16 18:45:57,300 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:57,301 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:57,306 INFO L256 TraceCheckSpWp]: Trace formula consists of 1429 conjuncts, 3 conjuncts are in the unsatisfiable core [2025-03-16 18:45:57,312 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2025-03-16 18:45:57,336 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:45:57,336 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2025-03-16 18:45:57,445 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:45:57,445 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1176787393] provided 0 perfect and 2 imperfect interpolant sequences [2025-03-16 18:45:57,445 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2025-03-16 18:45:57,446 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 7 [2025-03-16 18:45:57,446 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1717684894] [2025-03-16 18:45:57,446 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2025-03-16 18:45:57,446 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2025-03-16 18:45:57,447 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:57,447 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2025-03-16 18:45:57,447 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2025-03-16 18:45:57,447 INFO L87 Difference]: Start difference. First operand 671 states and 993 transitions. Second operand has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (36), 2 states have call predecessors, (36), 2 states have return successors, (31), 2 states have call predecessors, (31), 2 states have call successors, (31) [2025-03-16 18:45:57,630 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:57,631 INFO L93 Difference]: Finished difference Result 1527 states and 2334 transitions. [2025-03-16 18:45:57,631 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2025-03-16 18:45:57,631 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (36), 2 states have call predecessors, (36), 2 states have return successors, (31), 2 states have call predecessors, (31), 2 states have call successors, (31) Word has length 183 [2025-03-16 18:45:57,632 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:57,639 INFO L225 Difference]: With dead ends: 1527 [2025-03-16 18:45:57,640 INFO L226 Difference]: Without dead ends: 1210 [2025-03-16 18:45:57,642 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 368 GetRequests, 363 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2025-03-16 18:45:57,643 INFO L435 NwaCegarLoop]: 878 mSDtfsCounter, 766 mSDsluCounter, 2176 mSDsCounter, 0 mSdLazyCounter, 100 mSolverCounterSat, 21 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 820 SdHoareTripleChecker+Valid, 3054 SdHoareTripleChecker+Invalid, 121 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 21 IncrementalHoareTripleChecker+Valid, 100 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:57,643 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [820 Valid, 3054 Invalid, 121 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [21 Valid, 100 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2025-03-16 18:45:57,644 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1210 states. [2025-03-16 18:45:57,698 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1210 to 1186. [2025-03-16 18:45:57,701 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1186 states, 941 states have (on average 1.538788522848034) internal successors, (1448), 956 states have internal predecessors, (1448), 196 states have call successors, (196), 44 states have call predecessors, (196), 48 states have return successors, (217), 194 states have call predecessors, (217), 195 states have call successors, (217) [2025-03-16 18:45:57,708 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1186 states to 1186 states and 1861 transitions. [2025-03-16 18:45:57,710 INFO L78 Accepts]: Start accepts. Automaton has 1186 states and 1861 transitions. Word has length 183 [2025-03-16 18:45:57,711 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:57,711 INFO L471 AbstractCegarLoop]: Abstraction has 1186 states and 1861 transitions. [2025-03-16 18:45:57,711 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (36), 2 states have call predecessors, (36), 2 states have return successors, (31), 2 states have call predecessors, (31), 2 states have call successors, (31) [2025-03-16 18:45:57,711 INFO L276 IsEmpty]: Start isEmpty. Operand 1186 states and 1861 transitions. [2025-03-16 18:45:57,716 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 189 [2025-03-16 18:45:57,717 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:57,717 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:57,727 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2025-03-16 18:45:57,917 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2025-03-16 18:45:57,918 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:57,919 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:57,919 INFO L85 PathProgramCache]: Analyzing trace with hash -145625004, now seen corresponding path program 1 times [2025-03-16 18:45:57,919 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:57,919 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1080443400] [2025-03-16 18:45:57,919 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:57,919 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:57,936 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 188 statements into 1 equivalence classes. [2025-03-16 18:45:57,947 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 188 of 188 statements. [2025-03-16 18:45:57,948 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:57,948 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:57,984 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:45:57,984 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:57,984 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1080443400] [2025-03-16 18:45:57,984 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1080443400] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:57,984 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:57,984 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:57,984 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1387304266] [2025-03-16 18:45:57,984 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:57,985 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:57,985 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:57,986 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:57,986 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:57,986 INFO L87 Difference]: Start difference. First operand 1186 states and 1861 transitions. Second operand has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:45:58,039 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:58,040 INFO L93 Difference]: Finished difference Result 2737 states and 4362 transitions. [2025-03-16 18:45:58,041 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:58,041 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 188 [2025-03-16 18:45:58,041 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:58,052 INFO L225 Difference]: With dead ends: 2737 [2025-03-16 18:45:58,052 INFO L226 Difference]: Without dead ends: 1675 [2025-03-16 18:45:58,056 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:58,057 INFO L435 NwaCegarLoop]: 841 mSDtfsCounter, 160 mSDsluCounter, 819 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 178 SdHoareTripleChecker+Valid, 1660 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:58,057 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [178 Valid, 1660 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:58,059 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1675 states. [2025-03-16 18:45:58,159 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1675 to 1667. [2025-03-16 18:45:58,162 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1667 states, 1343 states have (on average 1.5517498138495904) internal successors, (2084), 1358 states have internal predecessors, (2084), 275 states have call successors, (275), 44 states have call predecessors, (275), 48 states have return successors, (306), 273 states have call predecessors, (306), 274 states have call successors, (306) [2025-03-16 18:45:58,170 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1667 states to 1667 states and 2665 transitions. [2025-03-16 18:45:58,172 INFO L78 Accepts]: Start accepts. Automaton has 1667 states and 2665 transitions. Word has length 188 [2025-03-16 18:45:58,173 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:58,173 INFO L471 AbstractCegarLoop]: Abstraction has 1667 states and 2665 transitions. [2025-03-16 18:45:58,173 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:45:58,173 INFO L276 IsEmpty]: Start isEmpty. Operand 1667 states and 2665 transitions. [2025-03-16 18:45:58,181 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 183 [2025-03-16 18:45:58,181 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:58,181 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:58,182 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13 [2025-03-16 18:45:58,182 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:58,182 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:58,182 INFO L85 PathProgramCache]: Analyzing trace with hash -406580937, now seen corresponding path program 1 times [2025-03-16 18:45:58,182 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:58,182 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [622045036] [2025-03-16 18:45:58,182 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:58,183 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:58,199 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 182 statements into 1 equivalence classes. [2025-03-16 18:45:58,212 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 182 of 182 statements. [2025-03-16 18:45:58,212 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:58,212 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:58,248 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:45:58,248 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:58,248 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [622045036] [2025-03-16 18:45:58,248 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [622045036] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:58,248 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:58,248 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:58,248 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1591116129] [2025-03-16 18:45:58,248 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:58,249 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:58,249 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:58,249 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:58,249 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:58,249 INFO L87 Difference]: Start difference. First operand 1667 states and 2665 transitions. Second operand has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:45:58,319 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:58,319 INFO L93 Difference]: Finished difference Result 3931 states and 6350 transitions. [2025-03-16 18:45:58,320 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:58,320 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 182 [2025-03-16 18:45:58,320 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:58,335 INFO L225 Difference]: With dead ends: 3931 [2025-03-16 18:45:58,335 INFO L226 Difference]: Without dead ends: 2446 [2025-03-16 18:45:58,341 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:58,342 INFO L435 NwaCegarLoop]: 840 mSDtfsCounter, 158 mSDsluCounter, 824 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 176 SdHoareTripleChecker+Valid, 1664 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:58,343 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [176 Valid, 1664 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:58,345 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2446 states. [2025-03-16 18:45:58,429 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2446 to 2438. [2025-03-16 18:45:58,433 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2438 states, 1995 states have (on average 1.5669172932330826) internal successors, (3126), 2010 states have internal predecessors, (3126), 394 states have call successors, (394), 44 states have call predecessors, (394), 48 states have return successors, (425), 392 states have call predecessors, (425), 393 states have call successors, (425) [2025-03-16 18:45:58,442 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2438 states to 2438 states and 3945 transitions. [2025-03-16 18:45:58,445 INFO L78 Accepts]: Start accepts. Automaton has 2438 states and 3945 transitions. Word has length 182 [2025-03-16 18:45:58,445 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:58,445 INFO L471 AbstractCegarLoop]: Abstraction has 2438 states and 3945 transitions. [2025-03-16 18:45:58,445 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:45:58,445 INFO L276 IsEmpty]: Start isEmpty. Operand 2438 states and 3945 transitions. [2025-03-16 18:45:58,455 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 191 [2025-03-16 18:45:58,455 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:58,455 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:58,455 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14 [2025-03-16 18:45:58,456 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:58,456 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:58,456 INFO L85 PathProgramCache]: Analyzing trace with hash -1474108845, now seen corresponding path program 1 times [2025-03-16 18:45:58,456 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:58,456 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [644239010] [2025-03-16 18:45:58,456 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:58,456 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:58,474 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 190 statements into 1 equivalence classes. [2025-03-16 18:45:58,485 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 190 of 190 statements. [2025-03-16 18:45:58,486 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:58,486 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:58,540 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:45:58,540 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:58,540 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [644239010] [2025-03-16 18:45:58,540 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [644239010] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:58,540 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:58,540 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:58,540 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1703085607] [2025-03-16 18:45:58,540 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:58,540 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:58,540 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:58,541 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:58,541 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:58,541 INFO L87 Difference]: Start difference. First operand 2438 states and 3945 transitions. Second operand has 3 states, 3 states have (on average 36.666666666666664) internal successors, (110), 3 states have internal predecessors, (110), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:45:58,626 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:58,627 INFO L93 Difference]: Finished difference Result 5741 states and 9384 transitions. [2025-03-16 18:45:58,627 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:58,627 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 36.666666666666664) internal successors, (110), 3 states have internal predecessors, (110), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 190 [2025-03-16 18:45:58,628 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:58,648 INFO L225 Difference]: With dead ends: 5741 [2025-03-16 18:45:58,649 INFO L226 Difference]: Without dead ends: 3631 [2025-03-16 18:45:58,656 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:58,657 INFO L435 NwaCegarLoop]: 831 mSDtfsCounter, 156 mSDsluCounter, 820 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 174 SdHoareTripleChecker+Valid, 1651 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:58,657 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [174 Valid, 1651 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:58,660 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 3631 states. [2025-03-16 18:45:58,767 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 3631 to 3623. [2025-03-16 18:45:58,773 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 3623 states, 3018 states have (on average 1.5798542080848244) internal successors, (4768), 3033 states have internal predecessors, (4768), 556 states have call successors, (556), 44 states have call predecessors, (556), 48 states have return successors, (603), 554 states have call predecessors, (603), 555 states have call successors, (603) [2025-03-16 18:45:58,794 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 3623 states to 3623 states and 5927 transitions. [2025-03-16 18:45:58,797 INFO L78 Accepts]: Start accepts. Automaton has 3623 states and 5927 transitions. Word has length 190 [2025-03-16 18:45:58,797 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:58,797 INFO L471 AbstractCegarLoop]: Abstraction has 3623 states and 5927 transitions. [2025-03-16 18:45:58,798 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 36.666666666666664) internal successors, (110), 3 states have internal predecessors, (110), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:45:58,798 INFO L276 IsEmpty]: Start isEmpty. Operand 3623 states and 5927 transitions. [2025-03-16 18:45:58,811 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 192 [2025-03-16 18:45:58,811 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:58,811 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:58,812 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15 [2025-03-16 18:45:58,812 INFO L396 AbstractCegarLoop]: === Iteration 17 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:58,813 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:58,813 INFO L85 PathProgramCache]: Analyzing trace with hash -2039026923, now seen corresponding path program 1 times [2025-03-16 18:45:58,814 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:58,814 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1354260943] [2025-03-16 18:45:58,814 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:58,814 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:58,830 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 191 statements into 1 equivalence classes. [2025-03-16 18:45:58,841 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 191 of 191 statements. [2025-03-16 18:45:58,841 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:58,841 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:58,898 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:45:58,898 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:58,898 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1354260943] [2025-03-16 18:45:58,898 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1354260943] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:58,898 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:58,899 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:58,899 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [777367843] [2025-03-16 18:45:58,899 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:58,899 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:58,899 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:58,900 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:58,900 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:58,900 INFO L87 Difference]: Start difference. First operand 3623 states and 5927 transitions. Second operand has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:45:59,007 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:59,007 INFO L93 Difference]: Finished difference Result 8595 states and 14188 transitions. [2025-03-16 18:45:59,008 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:59,008 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) Word has length 191 [2025-03-16 18:45:59,008 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:59,035 INFO L225 Difference]: With dead ends: 8595 [2025-03-16 18:45:59,035 INFO L226 Difference]: Without dead ends: 5542 [2025-03-16 18:45:59,046 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:59,046 INFO L435 NwaCegarLoop]: 831 mSDtfsCounter, 154 mSDsluCounter, 820 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 172 SdHoareTripleChecker+Valid, 1651 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:59,046 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [172 Valid, 1651 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:59,051 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 5542 states. [2025-03-16 18:45:59,256 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 5542 to 5534. [2025-03-16 18:45:59,264 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 5534 states, 4684 states have (on average 1.590734415029889) internal successors, (7451), 4699 states have internal predecessors, (7451), 801 states have call successors, (801), 44 states have call predecessors, (801), 48 states have return successors, (874), 799 states have call predecessors, (874), 800 states have call successors, (874) [2025-03-16 18:45:59,287 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 5534 states to 5534 states and 9126 transitions. [2025-03-16 18:45:59,290 INFO L78 Accepts]: Start accepts. Automaton has 5534 states and 9126 transitions. Word has length 191 [2025-03-16 18:45:59,291 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:45:59,291 INFO L471 AbstractCegarLoop]: Abstraction has 5534 states and 9126 transitions. [2025-03-16 18:45:59,291 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (29), 2 states have call predecessors, (29), 1 states have return successors, (24), 2 states have call predecessors, (24), 2 states have call successors, (24) [2025-03-16 18:45:59,292 INFO L276 IsEmpty]: Start isEmpty. Operand 5534 states and 9126 transitions. [2025-03-16 18:45:59,306 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 186 [2025-03-16 18:45:59,306 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:45:59,306 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:45:59,306 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable16 [2025-03-16 18:45:59,307 INFO L396 AbstractCegarLoop]: === Iteration 18 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:45:59,307 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:45:59,307 INFO L85 PathProgramCache]: Analyzing trace with hash -1145637767, now seen corresponding path program 1 times [2025-03-16 18:45:59,307 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:45:59,307 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [803453296] [2025-03-16 18:45:59,307 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:45:59,307 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:45:59,326 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 185 statements into 1 equivalence classes. [2025-03-16 18:45:59,336 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 185 of 185 statements. [2025-03-16 18:45:59,336 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:45:59,336 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:45:59,378 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:45:59,378 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:45:59,378 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [803453296] [2025-03-16 18:45:59,379 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [803453296] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:45:59,379 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:45:59,379 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:45:59,379 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2021148102] [2025-03-16 18:45:59,379 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:45:59,379 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:45:59,379 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:45:59,380 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:45:59,380 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:59,380 INFO L87 Difference]: Start difference. First operand 5534 states and 9126 transitions. Second operand has 3 states, 3 states have (on average 35.666666666666664) internal successors, (107), 3 states have internal predecessors, (107), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:45:59,605 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:45:59,605 INFO L93 Difference]: Finished difference Result 13387 states and 22185 transitions. [2025-03-16 18:45:59,606 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:45:59,606 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 35.666666666666664) internal successors, (107), 3 states have internal predecessors, (107), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 185 [2025-03-16 18:45:59,606 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:45:59,642 INFO L225 Difference]: With dead ends: 13387 [2025-03-16 18:45:59,642 INFO L226 Difference]: Without dead ends: 8779 [2025-03-16 18:45:59,656 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:45:59,656 INFO L435 NwaCegarLoop]: 842 mSDtfsCounter, 152 mSDsluCounter, 818 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 170 SdHoareTripleChecker+Valid, 1660 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:45:59,656 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [170 Valid, 1660 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:45:59,663 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 8779 states. [2025-03-16 18:45:59,906 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 8779 to 8771. [2025-03-16 18:45:59,919 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8771 states, 7428 states have (on average 1.5868336025848142) internal successors, (11787), 7443 states have internal predecessors, (11787), 1294 states have call successors, (1294), 44 states have call predecessors, (1294), 48 states have return successors, (1411), 1292 states have call predecessors, (1411), 1293 states have call successors, (1411) [2025-03-16 18:46:00,028 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 8771 states to 8771 states and 14492 transitions. [2025-03-16 18:46:00,033 INFO L78 Accepts]: Start accepts. Automaton has 8771 states and 14492 transitions. Word has length 185 [2025-03-16 18:46:00,033 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:46:00,033 INFO L471 AbstractCegarLoop]: Abstraction has 8771 states and 14492 transitions. [2025-03-16 18:46:00,033 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 35.666666666666664) internal successors, (107), 3 states have internal predecessors, (107), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:46:00,033 INFO L276 IsEmpty]: Start isEmpty. Operand 8771 states and 14492 transitions. [2025-03-16 18:46:00,053 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 187 [2025-03-16 18:46:00,053 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:46:00,054 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:46:00,054 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17 [2025-03-16 18:46:00,054 INFO L396 AbstractCegarLoop]: === Iteration 19 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:46:00,054 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:46:00,054 INFO L85 PathProgramCache]: Analyzing trace with hash -1476783115, now seen corresponding path program 1 times [2025-03-16 18:46:00,055 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:46:00,055 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [499022946] [2025-03-16 18:46:00,055 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:46:00,055 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:46:00,070 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 186 statements into 1 equivalence classes. [2025-03-16 18:46:00,077 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 186 of 186 statements. [2025-03-16 18:46:00,078 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:46:00,078 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:46:00,108 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:46:00,108 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:46:00,108 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [499022946] [2025-03-16 18:46:00,108 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [499022946] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:46:00,108 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:46:00,108 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:46:00,108 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [990070379] [2025-03-16 18:46:00,109 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:46:00,109 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:46:00,109 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:46:00,109 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:46:00,110 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:46:00,110 INFO L87 Difference]: Start difference. First operand 8771 states and 14492 transitions. Second operand has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:46:00,398 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:46:00,398 INFO L93 Difference]: Finished difference Result 21951 states and 36561 transitions. [2025-03-16 18:46:00,398 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:46:00,398 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 186 [2025-03-16 18:46:00,399 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:46:00,455 INFO L225 Difference]: With dead ends: 21951 [2025-03-16 18:46:00,455 INFO L226 Difference]: Without dead ends: 14570 [2025-03-16 18:46:00,478 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:46:00,478 INFO L435 NwaCegarLoop]: 835 mSDtfsCounter, 150 mSDsluCounter, 823 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 168 SdHoareTripleChecker+Valid, 1658 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:46:00,478 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [168 Valid, 1658 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:46:00,489 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 14570 states. [2025-03-16 18:46:01,032 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 14570 to 14562. [2025-03-16 18:46:01,054 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14562 states, 12397 states have (on average 1.593611357586513) internal successors, (19756), 12412 states have internal predecessors, (19756), 2116 states have call successors, (2116), 44 states have call predecessors, (2116), 48 states have return successors, (2311), 2114 states have call predecessors, (2311), 2115 states have call successors, (2311) [2025-03-16 18:46:01,110 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 14562 states to 14562 states and 24183 transitions. [2025-03-16 18:46:01,117 INFO L78 Accepts]: Start accepts. Automaton has 14562 states and 24183 transitions. Word has length 186 [2025-03-16 18:46:01,117 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:46:01,117 INFO L471 AbstractCegarLoop]: Abstraction has 14562 states and 24183 transitions. [2025-03-16 18:46:01,118 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:46:01,118 INFO L276 IsEmpty]: Start isEmpty. Operand 14562 states and 24183 transitions. [2025-03-16 18:46:01,146 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 188 [2025-03-16 18:46:01,147 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:46:01,147 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:46:01,147 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18 [2025-03-16 18:46:01,147 INFO L396 AbstractCegarLoop]: === Iteration 20 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:46:01,148 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:46:01,148 INFO L85 PathProgramCache]: Analyzing trace with hash 1416701594, now seen corresponding path program 1 times [2025-03-16 18:46:01,148 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:46:01,148 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [495989544] [2025-03-16 18:46:01,148 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:46:01,149 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:46:01,169 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 187 statements into 1 equivalence classes. [2025-03-16 18:46:01,180 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 187 of 187 statements. [2025-03-16 18:46:01,180 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:46:01,180 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:46:01,227 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:46:01,227 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:46:01,227 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [495989544] [2025-03-16 18:46:01,227 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [495989544] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:46:01,227 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:46:01,228 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:46:01,228 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1785465382] [2025-03-16 18:46:01,228 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:46:01,228 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:46:01,228 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:46:01,229 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:46:01,229 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:46:01,229 INFO L87 Difference]: Start difference. First operand 14562 states and 24183 transitions. Second operand has 3 states, 3 states have (on average 36.333333333333336) internal successors, (109), 3 states have internal predecessors, (109), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:46:01,791 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:46:01,791 INFO L93 Difference]: Finished difference Result 35005 states and 57909 transitions. [2025-03-16 18:46:01,792 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:46:01,792 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 36.333333333333336) internal successors, (109), 3 states have internal predecessors, (109), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 187 [2025-03-16 18:46:01,792 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:46:01,885 INFO L225 Difference]: With dead ends: 35005 [2025-03-16 18:46:01,885 INFO L226 Difference]: Without dead ends: 22920 [2025-03-16 18:46:01,925 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:46:01,927 INFO L435 NwaCegarLoop]: 848 mSDtfsCounter, 148 mSDsluCounter, 794 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 166 SdHoareTripleChecker+Valid, 1642 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:46:01,927 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [166 Valid, 1642 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:46:01,952 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 22920 states. [2025-03-16 18:46:02,622 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 22920 to 22912. [2025-03-16 18:46:02,656 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 22912 states, 19544 states have (on average 1.5685120753172328) internal successors, (30655), 19559 states have internal predecessors, (30655), 3319 states have call successors, (3319), 44 states have call predecessors, (3319), 48 states have return successors, (3658), 3317 states have call predecessors, (3658), 3318 states have call successors, (3658) [2025-03-16 18:46:02,723 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 22912 states to 22912 states and 37632 transitions. [2025-03-16 18:46:02,733 INFO L78 Accepts]: Start accepts. Automaton has 22912 states and 37632 transitions. Word has length 187 [2025-03-16 18:46:02,734 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:46:02,734 INFO L471 AbstractCegarLoop]: Abstraction has 22912 states and 37632 transitions. [2025-03-16 18:46:02,734 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 36.333333333333336) internal successors, (109), 3 states have internal predecessors, (109), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:46:02,734 INFO L276 IsEmpty]: Start isEmpty. Operand 22912 states and 37632 transitions. [2025-03-16 18:46:02,767 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 189 [2025-03-16 18:46:02,768 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:46:02,768 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:46:02,768 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19 [2025-03-16 18:46:02,768 INFO L396 AbstractCegarLoop]: === Iteration 21 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:46:02,769 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:46:02,769 INFO L85 PathProgramCache]: Analyzing trace with hash 1442950100, now seen corresponding path program 1 times [2025-03-16 18:46:02,769 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:46:02,769 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [669165001] [2025-03-16 18:46:02,769 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:46:02,769 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:46:02,787 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 188 statements into 1 equivalence classes. [2025-03-16 18:46:02,795 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 188 of 188 statements. [2025-03-16 18:46:02,795 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:46:02,795 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:46:02,830 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:46:02,830 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:46:02,830 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [669165001] [2025-03-16 18:46:02,830 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [669165001] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:46:02,830 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:46:02,830 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:46:02,830 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [542215575] [2025-03-16 18:46:02,830 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:46:02,831 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:46:02,831 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:46:02,831 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:46:02,831 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:46:02,831 INFO L87 Difference]: Start difference. First operand 22912 states and 37632 transitions. Second operand has 3 states, 3 states have (on average 36.666666666666664) internal successors, (110), 3 states have internal predecessors, (110), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:46:03,696 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:46:03,696 INFO L93 Difference]: Finished difference Result 60417 states and 99616 transitions. [2025-03-16 18:46:03,697 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:46:03,697 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 36.666666666666664) internal successors, (110), 3 states have internal predecessors, (110), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 188 [2025-03-16 18:46:03,698 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:46:03,871 INFO L225 Difference]: With dead ends: 60417 [2025-03-16 18:46:03,871 INFO L226 Difference]: Without dead ends: 40736 [2025-03-16 18:46:03,923 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:46:03,924 INFO L435 NwaCegarLoop]: 831 mSDtfsCounter, 146 mSDsluCounter, 824 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 164 SdHoareTripleChecker+Valid, 1655 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:46:03,924 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [164 Valid, 1655 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:46:03,950 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 40736 states. [2025-03-16 18:46:05,396 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 40736 to 40728. [2025-03-16 18:46:05,448 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 40728 states, 34910 states have (on average 1.5690346605557146) internal successors, (54775), 34925 states have internal predecessors, (54775), 5769 states have call successors, (5769), 44 states have call predecessors, (5769), 48 states have return successors, (6382), 5767 states have call predecessors, (6382), 5768 states have call successors, (6382) [2025-03-16 18:46:05,557 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 40728 states to 40728 states and 66926 transitions. [2025-03-16 18:46:05,576 INFO L78 Accepts]: Start accepts. Automaton has 40728 states and 66926 transitions. Word has length 188 [2025-03-16 18:46:05,577 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:46:05,577 INFO L471 AbstractCegarLoop]: Abstraction has 40728 states and 66926 transitions. [2025-03-16 18:46:05,578 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 36.666666666666664) internal successors, (110), 3 states have internal predecessors, (110), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:46:05,578 INFO L276 IsEmpty]: Start isEmpty. Operand 40728 states and 66926 transitions. [2025-03-16 18:46:05,611 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 190 [2025-03-16 18:46:05,611 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:46:05,611 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:46:05,611 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable20 [2025-03-16 18:46:05,612 INFO L396 AbstractCegarLoop]: === Iteration 22 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:46:05,613 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:46:05,613 INFO L85 PathProgramCache]: Analyzing trace with hash -274592549, now seen corresponding path program 1 times [2025-03-16 18:46:05,613 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:46:05,613 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [326399887] [2025-03-16 18:46:05,613 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:46:05,613 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:46:05,631 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 189 statements into 1 equivalence classes. [2025-03-16 18:46:05,639 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 189 of 189 statements. [2025-03-16 18:46:05,640 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:46:05,640 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:46:05,672 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:46:05,673 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:46:05,673 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [326399887] [2025-03-16 18:46:05,673 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [326399887] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:46:05,673 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:46:05,673 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:46:05,673 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1927844968] [2025-03-16 18:46:05,673 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:46:05,674 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:46:05,674 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:46:05,674 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:46:05,674 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:46:05,674 INFO L87 Difference]: Start difference. First operand 40728 states and 66926 transitions. Second operand has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:46:07,167 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:46:07,169 INFO L93 Difference]: Finished difference Result 110279 states and 182238 transitions. [2025-03-16 18:46:07,170 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:46:07,170 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 189 [2025-03-16 18:46:07,171 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:46:07,440 INFO L225 Difference]: With dead ends: 110279 [2025-03-16 18:46:07,440 INFO L226 Difference]: Without dead ends: 73888 [2025-03-16 18:46:07,513 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:46:07,516 INFO L435 NwaCegarLoop]: 832 mSDtfsCounter, 144 mSDsluCounter, 823 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 162 SdHoareTripleChecker+Valid, 1655 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:46:07,517 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [162 Valid, 1655 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:46:07,564 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 73888 states. [2025-03-16 18:46:09,896 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 73888 to 73880. [2025-03-16 18:46:09,975 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 73880 states, 63549 states have (on average 1.573699035390014) internal successors, (100007), 63564 states have internal predecessors, (100007), 10282 states have call successors, (10282), 44 states have call predecessors, (10282), 48 states have return successors, (11427), 10280 states have call predecessors, (11427), 10281 states have call successors, (11427) [2025-03-16 18:46:10,183 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 73880 states to 73880 states and 121716 transitions. [2025-03-16 18:46:10,211 INFO L78 Accepts]: Start accepts. Automaton has 73880 states and 121716 transitions. Word has length 189 [2025-03-16 18:46:10,212 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:46:10,212 INFO L471 AbstractCegarLoop]: Abstraction has 73880 states and 121716 transitions. [2025-03-16 18:46:10,212 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 37.0) internal successors, (111), 3 states have internal predecessors, (111), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:46:10,212 INFO L276 IsEmpty]: Start isEmpty. Operand 73880 states and 121716 transitions. [2025-03-16 18:46:10,248 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 191 [2025-03-16 18:46:10,248 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:46:10,248 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:46:10,249 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable21 [2025-03-16 18:46:10,249 INFO L396 AbstractCegarLoop]: === Iteration 23 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:46:10,249 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:46:10,249 INFO L85 PathProgramCache]: Analyzing trace with hash 1230262259, now seen corresponding path program 1 times [2025-03-16 18:46:10,249 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:46:10,249 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1539196658] [2025-03-16 18:46:10,250 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:46:10,250 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:46:10,266 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 190 statements into 1 equivalence classes. [2025-03-16 18:46:10,276 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 190 of 190 statements. [2025-03-16 18:46:10,277 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:46:10,277 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:46:10,309 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:46:10,309 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:46:10,309 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1539196658] [2025-03-16 18:46:10,309 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1539196658] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:46:10,310 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:46:10,310 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2025-03-16 18:46:10,310 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1073206069] [2025-03-16 18:46:10,310 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:46:10,311 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2025-03-16 18:46:10,311 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:46:10,311 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2025-03-16 18:46:10,311 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:46:10,311 INFO L87 Difference]: Start difference. First operand 73880 states and 121716 transitions. Second operand has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:46:12,739 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2025-03-16 18:46:12,740 INFO L93 Difference]: Finished difference Result 137940 states and 228130 transitions. [2025-03-16 18:46:12,740 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2025-03-16 18:46:12,741 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) Word has length 190 [2025-03-16 18:46:12,741 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2025-03-16 18:46:13,434 INFO L225 Difference]: With dead ends: 137940 [2025-03-16 18:46:13,435 INFO L226 Difference]: Without dead ends: 137623 [2025-03-16 18:46:13,509 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2025-03-16 18:46:13,512 INFO L435 NwaCegarLoop]: 840 mSDtfsCounter, 138 mSDsluCounter, 830 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 155 SdHoareTripleChecker+Valid, 1670 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2025-03-16 18:46:13,512 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [155 Valid, 1670 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2025-03-16 18:46:13,606 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 137623 states. [2025-03-16 18:46:17,155 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 137623 to 137615. [2025-03-16 18:46:17,287 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 137615 states, 118916 states have (on average 1.573362709811968) internal successors, (187098), 118931 states have internal predecessors, (187098), 18650 states have call successors, (18650), 44 states have call predecessors, (18650), 48 states have return successors, (20841), 18648 states have call predecessors, (20841), 18649 states have call successors, (20841) [2025-03-16 18:46:18,074 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 137615 states to 137615 states and 226589 transitions. [2025-03-16 18:46:18,171 INFO L78 Accepts]: Start accepts. Automaton has 137615 states and 226589 transitions. Word has length 190 [2025-03-16 18:46:18,176 INFO L84 Accepts]: Finished accepts. word is rejected. [2025-03-16 18:46:18,176 INFO L471 AbstractCegarLoop]: Abstraction has 137615 states and 226589 transitions. [2025-03-16 18:46:18,176 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (28), 2 states have call predecessors, (28), 1 states have return successors, (23), 2 states have call predecessors, (23), 2 states have call successors, (23) [2025-03-16 18:46:18,176 INFO L276 IsEmpty]: Start isEmpty. Operand 137615 states and 226589 transitions. [2025-03-16 18:46:18,223 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 199 [2025-03-16 18:46:18,223 INFO L210 NwaCegarLoop]: Found error trace [2025-03-16 18:46:18,224 INFO L218 NwaCegarLoop]: trace histogram [8, 8, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2025-03-16 18:46:18,224 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable22 [2025-03-16 18:46:18,224 INFO L396 AbstractCegarLoop]: === Iteration 24 === Targeting outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__before__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2025-03-16 18:46:18,224 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2025-03-16 18:46:18,224 INFO L85 PathProgramCache]: Analyzing trace with hash -1874984145, now seen corresponding path program 1 times [2025-03-16 18:46:18,224 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2025-03-16 18:46:18,225 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [870257019] [2025-03-16 18:46:18,225 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2025-03-16 18:46:18,225 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2025-03-16 18:46:18,241 INFO L108 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 198 statements into 1 equivalence classes. [2025-03-16 18:46:18,251 INFO L111 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 198 of 198 statements. [2025-03-16 18:46:18,252 INFO L114 AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) [2025-03-16 18:46:18,252 INFO L115 AnnotateAndAsserter]: Conjunction of SSA is unsat [2025-03-16 18:46:18,540 INFO L134 CoverageAnalysis]: Checked inductivity of 114 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 114 trivial. 0 not checked. [2025-03-16 18:46:18,541 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2025-03-16 18:46:18,541 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [870257019] [2025-03-16 18:46:18,541 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [870257019] provided 1 perfect and 0 imperfect interpolant sequences [2025-03-16 18:46:18,541 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2025-03-16 18:46:18,541 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2025-03-16 18:46:18,541 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1857345933] [2025-03-16 18:46:18,541 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2025-03-16 18:46:18,541 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2025-03-16 18:46:18,542 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2025-03-16 18:46:18,542 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2025-03-16 18:46:18,542 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=25, Invalid=157, Unknown=0, NotChecked=0, Total=182 [2025-03-16 18:46:18,542 INFO L87 Difference]: Start difference. First operand 137615 states and 226589 transitions. Second operand has 14 states, 12 states have (on average 9.833333333333334) internal successors, (118), 12 states have internal predecessors, (118), 7 states have call successors, (29), 4 states have call predecessors, (29), 4 states have return successors, (24), 7 states have call predecessors, (24), 7 states have call successors, (24)